[Solved] ERR_EMPTY_RESPONSE

I tried #3 on this list. this is the report it gave. It's my home computer that has the issues. I have to head to work. I will have to try the other suggestions later today

# AdwCleaner v6.000 - Logfile created 17/08/2016 at 07:26:26
# Updated on 12/08/2016 by ToolsLib
# Database : 2016-08-17.2 [Server]
# Operating System : Windows 10 Pro (X64)
# Username : Devin - SKYWALKER
# Running from : C:\Users\Owner\Downloads\AdwCleaner.exe
# Mode: Clean
# Support : https://toolslib.net/forum



***** [ Services ] *****

[-] Service deleted: ReimageRealTimeProtector
[-] Service deleted: YahooAUService


***** [ Folders ] *****

[-] Folder deleted: C:\Program Files\Reimage
[-] Folder deleted: C:\rei
[-] Folder deleted: C:\ProgramData\apn
[-] Folder deleted: C:\ProgramData\Reimage Protector
[#] Folder deleted on reboot: C:\ProgramData\Application Data\apn
[#] Folder deleted on reboot: C:\ProgramData\Application Data\Reimage Protector
[-] Folder deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reimage repair


***** [ Files ] *****

[-] File deleted: C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
[-] File deleted: C:\WINDOWS\Reimage.ini


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****

[-] Task deleted: Reimage Reminder
[-] Task deleted: ReimageUpdater
[-] Task deleted: Reimage Reminder
[-] Task deleted: ReimageUpdater


***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Key deleted: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Key deleted: HKLM\SOFTWARE\Classes\Sample.BrowserHandler
[-] Key deleted: HKLM\SOFTWARE\Classes\Sample.BrowserHandler.1
[-] Key deleted: HKLM\SOFTWARE\Classes\Sample.YTBPartnerSample
[-] Key deleted: HKLM\SOFTWARE\Classes\Sample.YTBPartnerSample.1
[-] Key deleted: HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar
[-] Key deleted: HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar.1
[-] Key deleted: [x64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key deleted: [x64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
[-] Key deleted: [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key deleted: [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key deleted: [x64] HKLM\SOFTWARE\Classes\Interface\{371AD4A5-1520-4AA2-A8A4-F9AD3BAC6957}
[-] Key deleted: [x64] HKLM\SOFTWARE\Classes\Interface\{7F124846-5453-4BB8-A41D-E11481FFC9DF}
[-] Key deleted: [x64] HKLM\SOFTWARE\Classes\Interface\{8FD65019-BF09-45DA-AD81-E95AE911F1FD}
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\{7375D127-3955-4654-8E7D-1949A7A9C902}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{371AD4A5-1520-4AA2-A8A4-F9AD3BAC6957}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{7F124846-5453-4BB8-A41D-E11481FFC9DF}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{8FD65019-BF09-45DA-AD81-E95AE911F1FD}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{F6C2BABA-9E4C-425F-9AEC-24AB8F2B640D}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Key deleted: [x64] HKLM\SOFTWARE\Reimage
[-] Key deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
[-] Key deleted: HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\APN PIP
[-] Key deleted: HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\Reimage
[-] Key deleted: HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\Softonic
[-] Key deleted: HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\Yahoo\Companion
[-] Key deleted: HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\Yahoo\YFriendsBar
[-] Key deleted: HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Key deleted: HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\AppDataLow\Software\Yahoo\Companion
[#] Key deleted on reboot: HKCU\Software\APN PIP
[#] Key deleted on reboot: HKCU\Software\Reimage
[#] Key deleted on reboot: HKCU\Software\Softonic
[#] Key deleted on reboot: HKCU\Software\Yahoo\Companion
[#] Key deleted on reboot: HKCU\Software\Yahoo\YFriendsBar
[#] Key deleted on reboot: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Key deleted on reboot: HKCU\Software\AppDataLow\Software\Yahoo\Companion
[-] Key deleted: HKLM\SOFTWARE\PIP
[-] Key deleted: HKLM\SOFTWARE\Yahoo\Companion
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe


***** [ Web browsers ] *****

[-] [mysearch.avg.com] [Search Provider] Deleted: mysearch.avg.com
[-] [search.conduit.com] [Search Provider] Deleted: search.conduit.com
[-] [aol.com] [Search Provider] Deleted: aol.com
[-] [ask.com] [Search Provider] Deleted: ask.com
[-] [C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: igjjkeeamkpihpncmmbgdkhdnjpcfmfb
[-] [mysearch.avg.com] [Search Provider] Deleted: mysearch.avg.com
[-] [search.conduit.com] [Search Provider] Deleted: search.conduit.com
[-] [aol.com] [Search Provider] Deleted: aol.com
[-] [ask.com] [Search Provider] Deleted: ask.com
[-] [C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: igjjkeeamkpihpncmmbgdkhdnjpcfmfb


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [6353 Bytes] - [17/08/2016 07:26:26]
C:\AdwCleaner\AdwCleaner[S0].txt - [6584 Bytes] - [17/08/2016 07:26:07]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [6499 Bytes] ##########

 

Here are my reports.
MBAM scan report
Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8/17/2016
Scan Time: 7:48 PM
Logfile:
Administrator: Yes

Version: 2.2.1.1043
Malware Database: v2016.08.17.14
Rootkit Database: v2016.08.15.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 10
CPU: x64
File System: NTFS
User: Devin

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 472844
Time Elapsed: 6 min, 16 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

FRST.Txt

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-08-2016
Ran by Devin (administrator) on SKYWALKER (17-08-2016 20:15:54)
Running from C:\Users\Owner\Downloads
Loaded Profiles: Devin & (Available Profiles: Devin & dsw98)
Platform: Windows 10 Pro Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Carbonite, Inc. (www.carbonite.com)) C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
(Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\3.40.25\LogiOptionsMgr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Carbonite, Inc.) C:\Program Files\Carbonite\Carbonite Mirror Image\CarboniteMirrorImage.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(AWS Convergence Technologies, Inc.) C:\Program Files (x86)\AWS\WeatherBug\Weather.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(Akamai Technologies, Inc.) C:\Users\Owner\AppData\Local\Akamai\netsession_win.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
(Akamai Technologies, Inc.) C:\Users\Owner\AppData\Local\Akamai\netsession_win.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
(GoPro) C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Zhorn Software) C:\Program Files (x86)\Stickies\stickies.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Autodesk, Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Carbonite, Inc.) C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(VertoAnalytics Oy) C:\Program Files (x86)\SmartApp\SmartAppMonitor.exe
(Corsair Components, Inc.) C:\Program Files (x86)\Corsair\CorsairLINK2\CorsairLINK_HardwareMonitor.exe
(Verto Analytics Inc) C:\Program Files (x86)\SmartApp\SmartApp.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6827664 2013-06-10] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-12] (NVIDIA Corporation)
HKLM\...\Run: [LogiOptionsAppBroker] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1580312 2015-05-07] (Logitech, Inc.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3100440 2014-05-19] (Logitech, Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [831064 2016-07-25] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-04-23] (Apple Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1641368 2013-02-01] (Autodesk, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-15] (Apple Inc.)
HKLM-x32\...\Run: [GoPro Studio Importer] => C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe [3217672 2015-07-02] (GoPro)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-07-25] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [529480 2016-02-23] (Autodesk Inc.)
HKLM-x32\...\Run: [Carbonite Backup] => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe [1153536 2016-06-23] (Carbonite, Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1400232 2016-07-31] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Run: [Messenger (Yahoo!)] => C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe [6595928 2012-05-25] (Yahoo! Inc.)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Run: [Weather] => C:\Program Files (x86)\AWS\WeatherBug\Weather.exe [1653760 2013-01-11] (AWS Convergence Technologies, Inc.)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Owner\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Run: [HP Officejet 6700 (NET)] => C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Run: [GoogleChromeAutoLaunch_721577D41E77D440C916E2687EBA0267] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [961352 2016-08-02] (Google Inc.)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1400232 2016-07-31] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Policies\Explorer: []
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [583680 2016-06-30] (Microsoft Corporation)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Messenger (Yahoo!)] => C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe [6595928 2012-05-25] (Yahoo! Inc.)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Weather] => C:\Program Files (x86)\AWS\WeatherBug\Weather.exe [1653760 2013-01-11] (AWS Convergence Technologies, Inc.)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Akamai NetSession Interface] => C:\Users\Owner\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [HP Officejet 6700 (NET)] => C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GoogleChromeAutoLaunch_721577D41E77D440C916E2687EBA0267] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [961352 2016-08-02] (Google Inc.)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1400232 2016-07-31] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\Explorer: []
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [583680 2016-06-30] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1400232 2016-07-31] (Garmin Ltd. or its subsidiaries)
ShellIconOverlayIdentifiers: [ Carbonite.Green] -> {95A27763-F62A-4114-9072-E81D87DE3B68} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll [2016-06-23] (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [ Carbonite.Partial] -> {E300CD91-100F-4E67-9AF3-1384A6124015} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll [2016-06-23] (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [ Carbonite.Yellow] -> {5E529433-B50E-4bef-A63B-16A6B71B071A} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll [2016-06-23] (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2015-02-05] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2014-04-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2014-04-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2014-04-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2014-04-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ Carbonite.Green] -> {95A27763-F62A-4114-9072-E81D87DE3B68} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll [2016-06-23] (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: [ Carbonite.Partial] -> {E300CD91-100F-4E67-9AF3-1384A6124015} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll [2016-06-23] (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: [ Carbonite.Yellow] -> {5E529433-B50E-4bef-A63B-16A6B71B071A} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll [2016-06-23] (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-10] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.exe.lnk [2013-06-13]
ShortcutTarget: Adobe Gamma Loader.exe.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GoPro Importer.lnk [2015-03-17]
ShortcutTarget: GoPro Importer.lnk -> C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe (GoPro)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Stickies.lnk [2013-05-30]
ShortcutTarget: Stickies.lnk -> C:\Program Files (x86)\Stickies\stickies.exe (Zhorn Software)
Startup: C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2014-03-24]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk [2013-09-04]
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [S-1-5-21-3884958803-2590088924-408680957-1001] => Proxy is enabled.
ProxyServer: [S-1-5-21-3884958803-2590088924-408680957-1001] => http=127.0.0.1:64550;https=127.0.0.1:64550
ProxyEnable: [S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] => Proxy is enabled.
ProxyServer: [S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] => http=127.0.0.1:64550;https=127.0.0.1:64550
Tcpip\Parameters: [DhcpNameServer] 75.75.76.76 75.75.75.75
Tcpip\..\Interfaces\{c589e31c-3575-41f5-96e5-323abfcbb1fa}: [DhcpNameServer] 75.75.76.76 75.75.75.75
ManualProxies: 1http=127.0.0.1:64550;https=127.0.0.1:64550

Internet Explorer:
==================
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?pc=UE01&ocid=UE01DHP
SearchScopes: HKU\S-1-5-21-3884958803-2590088924-408680957-1001 -> {180780f0-b348-4b44-8210-94a8f3ee15b2} URL = hxxp://search.comcast.net/search/?cat=Web&con=toolbar&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {180780f0-b348-4b44-8210-94a8f3ee15b2} URL = hxxp://search.comcast.net/search/?cat=Web&con=toolbar&q={searchTerms}
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2014-05-19] (Logitech, Inc.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-03-14] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2014-05-19] (Logitech, Inc.)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_202.dll [2013-05-15] ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\system32\npDeployJava1.dll [2013-05-15] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-03] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll [2013-05-15] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [2012-05-25] (Yahoo! Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-06-21] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-06-21] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-03] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Users\Owner\AppData\Roaming\mozilla\plugins\npatgpc.dll [2014-01-07] (Cisco WebEx LLC)
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-06-23] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2015-11-25] [not signed]

Chrome:
=======
CHR HomePage: Default -> hxxps://www.swipeclock.com/sc/clock/webclock.asp
CHR StartupUrls: Default -> "hxxps://www.swipeclock.com/sc/clock/webclock.asp","hxxp://espn.go.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll => No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\Windows\SysWOW64\npDeployJava1.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll => No File
CHR Profile: C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2014-11-03]
CHR Extension: (Downloads) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahigpjeolkfgjdaeodlmaceggigbpeoh [2015-09-26]
CHR Extension: (Google Docs) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-03]
CHR Extension: (Google Drive) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-20]
CHR Extension: (YouTube) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google Search) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2015-06-23]
CHR Extension: (Avira SafeSearch) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\eglgfnfolcgijipffhlhbbnefdcbjbml [2016-08-15]
CHR Extension: (Google Docs Offline) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-14]
CHR Extension: (AdBlock) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-28]
CHR Extension: (Sniper Team Game Collection) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hclgbbaloijjnkpigapgmocdpoblnlec [2016-02-07]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (Gmail) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-27]
CHR Extension: (Chrome Media Router) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-16]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-23] (Autodesk Inc.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [989696 2016-07-25] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [472112 2016-07-25] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [472112 2016-07-25] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1453696 2016-07-25] (Avira Operations GmbH & Co. KG)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [319648 2016-07-25] (Avira Operations GmbH & Co. KG)
R2 Carbonite-Mirror-Image-Svc; C:\Program Files\Carbonite\Carbonite Mirror Image\CarboniteMirrorImage.exe [6541080 2015-10-28] (Carbonite, Inc.)
R2 CarboniteService; C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe [9009664 2016-06-23] (Carbonite, Inc. (www.carbonite.com)) [File not signed]
R2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [809488 2016-07-31] (Garmin Ltd. or its subsidiaries)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-12] (NVIDIA Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 mi-raysat_3dsmax2014_64; C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [86016 2011-09-14] () [File not signed]
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4737024 2008-07-29] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-12] (NVIDIA Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-06-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [144664 2016-07-25] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [154392 2016-07-25] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-16] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [78208 2016-05-14] (Avira Operations GmbH & Co. KG)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-17] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R3 WinRing0_1_2_0; C:\Program Files (x86)\Corsair\CorsairLINK2\CorsairLINK_HardwareMonitor.sys [14544 2016-08-17] (OpenLibSys.org)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-17 20:15 - 2016-08-17 20:16 - 00031194 _____ C:\Users\Owner\Downloads\FRST.txt
2016-08-17 19:56 - 2016-08-17 20:15 - 00000000 ____D C:\FRST
2016-08-17 19:56 - 2016-08-17 19:56 - 02394624 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe
2016-08-17 19:45 - 2016-08-17 19:45 - 22851472 _____ (Malwarebytes ) C:\Users\Owner\Downloads\mbam-setup-2.2.1.1043 (1).exe
2016-08-17 07:25 - 2016-08-17 07:26 - 00000000 ____D C:\AdwCleaner
2016-08-17 07:24 - 2016-08-17 07:24 - 03784256 _____ C:\Users\Owner\Downloads\AdwCleaner.exe
2016-08-17 07:15 - 2016-08-17 07:15 - 00603824 _____ (Reimage) C:\Users\Owner\Downloads\ReimageRepair.exe
2016-08-17 07:11 - 2016-08-17 07:11 - 18131880 _____ C:\Users\Owner\Downloads\SCUDownloader.exe
2016-08-17 07:11 - 2016-08-17 07:11 - 00074703 _____ C:\WINDOWS\SysWOW64\mfc45.dat
2016-08-17 07:11 - 2016-08-17 07:11 - 00003626 _____ C:\WINDOWS\System32\Tasks\iolo SCU task one
2016-08-17 07:11 - 2016-08-17 07:11 - 00001249 _____ C:\Users\Owner\Desktop\System Checkup.lnk
2016-08-17 07:11 - 2016-08-17 07:11 - 00000000 ____D C:\Users\Owner\AppData\Roaming\iolo
2016-08-17 07:11 - 2016-08-17 07:11 - 00000000 ____D C:\ProgramData\iolo
2016-08-17 07:11 - 2016-08-17 07:11 - 00000000 ____D C:\Program Files (x86)\iolo
2016-08-11 10:35 - 2016-08-11 10:35 - 00000000 ____D C:\Users\dsw98\AppData\Local\WinZip
2016-08-11 10:34 - 2016-08-11 10:34 - 315832716 _____ C:\Users\dsw98\Downloads\NYOUGKXJNMIDFWEPXQTMALNLPHY4WHPA3ILBKFEK4NXFVJV3NR7Q====.ZIP
2016-08-11 09:54 - 2016-08-11 10:23 - 00000000 ____D C:\Users\dsw98\AppData\Local\Comms
2016-08-11 09:54 - 2016-08-11 09:54 - 00000000 ____D C:\Users\dsw98\AppData\Local\ActiveSync
2016-08-11 09:53 - 2016-08-15 21:22 - 00000000 ____D C:\Users\dsw98\AppData\Roaming\stickies
2016-08-11 09:53 - 2016-08-15 18:37 - 00000000 ____D C:\Users\dsw98\AppData\Roaming\Autodesk
2016-08-11 09:53 - 2016-08-15 18:37 - 00000000 ____D C:\Users\dsw98\AppData\Local\Autodesk
2016-08-11 09:53 - 2016-08-11 09:53 - 00002402 _____ C:\Users\dsw98\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-11 09:53 - 2016-08-11 09:53 - 00000000 ___RD C:\Users\dsw98\OneDrive
2016-08-11 09:53 - 2016-08-11 09:53 - 00000000 ____D C:\Users\dsw98\Documents\Autodesk Application Manager
2016-08-11 09:53 - 2016-08-11 09:53 - 00000000 ____D C:\Users\dsw98\AppData\Roaming\Logitech
2016-08-11 09:53 - 2016-08-11 09:53 - 00000000 ____D C:\Users\dsw98\AppData\Roaming\Logishrd
2016-08-11 09:53 - 2016-08-11 09:53 - 00000000 ____D C:\Users\dsw98\AppData\Roaming\Apple Computer
2016-08-11 09:53 - 2016-08-11 09:53 - 00000000 ____D C:\Users\dsw98\AppData\Local\NVIDIA Corporation
2016-08-11 09:53 - 2016-08-11 09:53 - 00000000 ____D C:\Users\dsw98\AppData\Local\GoPro
2016-08-11 09:53 - 2016-08-11 09:53 - 00000000 ____D C:\Users\dsw98\AppData\Local\Adobe
2016-08-11 09:52 - 2016-08-11 11:35 - 00000000 ____D C:\Users\dsw98\AppData\Local\Google
2016-08-11 09:52 - 2016-08-11 10:36 - 00000000 ____D C:\Users\dsw98\AppData\Local\Packages
2016-08-11 09:52 - 2016-08-11 09:53 - 00002332 _____ C:\Users\dsw98\Desktop\Google Chrome.lnk
2016-08-11 09:52 - 2016-08-11 09:53 - 00000000 ____D C:\Users\dsw98\AppData\Roaming\Adobe
2016-08-11 09:52 - 2016-08-11 09:53 - 00000000 ____D C:\Users\dsw98
2016-08-11 09:52 - 2016-08-11 09:52 - 00000020 ___SH C:\Users\dsw98\ntuser.ini
2016-08-11 09:52 - 2016-08-11 09:52 - 00000000 _SHDL C:\Users\dsw98\My Documents
2016-08-11 09:52 - 2016-08-11 09:52 - 00000000 _SHDL C:\Users\dsw98\Documents\My Videos
2016-08-11 09:52 - 2016-08-11 09:52 - 00000000 _SHDL C:\Users\dsw98\Documents\My Pictures
2016-08-11 09:52 - 2016-08-11 09:52 - 00000000 _SHDL C:\Users\dsw98\Documents\My Music
2016-08-11 09:52 - 2016-08-11 09:52 - 00000000 ____D C:\Users\dsw98\AppData\Local\VirtualStore
2016-08-11 09:52 - 2016-08-11 09:52 - 00000000 ____D C:\Users\dsw98\AppData\Local\TileDataLayer
2016-08-11 09:52 - 2016-08-11 09:52 - 00000000 ____D C:\Users\dsw98\AppData\Local\Publishers
2016-08-11 09:52 - 2016-08-11 09:52 - 00000000 ____D C:\Users\dsw98\AppData\Local\NVIDIA
2016-08-11 09:52 - 2015-11-25 21:25 - 00000000 ____D C:\Users\dsw98\Documents\Visual Studio 2008
2016-08-11 09:52 - 2015-11-25 21:25 - 00000000 ____D C:\Users\dsw98\AppData\Roaming\Macromedia
2016-08-11 09:52 - 2015-11-25 21:25 - 00000000 ____D C:\Users\dsw98\AppData\Local\Microsoft Help
2016-08-10 23:25 - 2016-08-17 20:00 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-10 23:25 - 2016-08-17 19:45 - 00001171 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-08-10 23:25 - 2016-08-17 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-08-10 23:25 - 2016-08-17 19:45 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-08-10 23:25 - 2016-08-10 23:25 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-10 23:25 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-08-10 23:25 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-08-10 23:25 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-08-10 23:24 - 2016-08-10 23:24 - 22851472 _____ (Malwarebytes ) C:\Users\Owner\Downloads\mbam-setup-2.2.1.1043.exe
2016-08-10 22:19 - 2016-08-10 22:20 - 152370968 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\msert.exe
2016-08-09 22:58 - 2016-08-03 05:14 - 01505984 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-09 22:58 - 2016-08-03 05:14 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-09 22:58 - 2016-08-03 05:14 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-09 22:58 - 2016-08-03 04:36 - 07469408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-09 22:58 - 2016-08-03 04:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-09 22:58 - 2016-08-03 04:36 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-09 22:58 - 2016-08-03 04:30 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-09 22:58 - 2016-08-03 04:23 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-09 22:58 - 2016-08-03 04:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-08-09 22:58 - 2016-08-03 04:22 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-09 22:58 - 2016-08-03 04:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-09 22:58 - 2016-08-03 04:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-08-09 22:58 - 2016-08-03 04:21 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-09 22:58 - 2016-08-03 04:21 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-09 22:58 - 2016-08-03 04:21 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-09 22:58 - 2016-08-03 04:20 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-09 22:58 - 2016-08-03 04:20 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-09 22:58 - 2016-08-03 04:19 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-09 22:58 - 2016-08-03 04:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-09 22:58 - 2016-08-03 04:13 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-09 22:58 - 2016-08-03 04:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-09 22:58 - 2016-08-03 04:13 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-09 22:58 - 2016-08-03 03:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-08-09 22:58 - 2016-08-03 03:51 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-09 22:58 - 2016-08-03 03:46 - 22384128 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-09 22:58 - 2016-08-03 03:44 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-09 22:58 - 2016-08-03 03:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-08-09 22:58 - 2016-08-03 03:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-08-09 22:58 - 2016-08-03 03:43 - 16985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-09 22:58 - 2016-08-03 03:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-08-09 22:58 - 2016-08-03 03:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-08-09 22:58 - 2016-08-03 03:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-08-09 22:58 - 2016-08-03 03:40 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-08-09 22:58 - 2016-08-03 03:40 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-09 22:58 - 2016-08-03 03:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-09 22:58 - 2016-08-03 03:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-08-09 22:58 - 2016-08-03 03:38 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-09 22:58 - 2016-08-03 03:37 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-09 22:58 - 2016-08-03 03:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-09 22:58 - 2016-08-03 03:36 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-09 22:58 - 2016-08-03 03:35 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-09 22:58 - 2016-08-03 03:35 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-09 22:58 - 2016-08-03 03:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-08-09 22:58 - 2016-08-03 03:31 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-08-09 22:58 - 2016-08-03 03:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-08-09 22:58 - 2016-08-03 03:30 - 24613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-09 22:58 - 2016-08-03 03:30 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-09 22:58 - 2016-08-03 03:29 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-09 22:58 - 2016-08-03 03:29 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-09 22:58 - 2016-08-03 03:29 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-09 22:58 - 2016-08-03 03:29 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-09 22:58 - 2016-08-03 03:29 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-09 22:58 - 2016-08-03 03:28 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-08-09 22:58 - 2016-08-03 03:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-09 22:58 - 2016-08-03 03:28 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-08-09 22:58 - 2016-08-03 03:27 - 07536640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-09 22:58 - 2016-08-03 03:27 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-09 22:58 - 2016-08-03 03:27 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-09 22:58 - 2016-08-03 03:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-09 22:58 - 2016-08-03 03:20 - 13390336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-09 22:58 - 2016-08-03 03:18 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-09 22:58 - 2016-08-03 03:18 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-09 22:58 - 2016-08-03 03:18 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-09 22:58 - 2016-08-03 03:17 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-09 22:58 - 2016-08-03 03:16 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-09 22:58 - 2016-08-03 03:16 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-09 22:58 - 2016-08-03 03:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-09 22:58 - 2016-08-03 03:16 - 01732096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-09 22:58 - 2016-08-03 03:15 - 07833088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-09 22:58 - 2016-08-03 03:14 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-09 22:58 - 2016-08-03 03:14 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-09 22:58 - 2016-08-03 03:13 - 03025920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-09 22:58 - 2016-08-03 03:13 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-09 22:58 - 2016-08-03 03:12 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-08-09 22:58 - 2016-08-03 03:11 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-09 22:58 - 2016-08-02 23:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-09 22:58 - 2016-08-02 23:34 - 00501592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-09 22:58 - 2016-08-02 23:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-08-09 22:58 - 2016-08-02 23:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-08-09 22:58 - 2016-08-02 23:31 - 02921368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-09 22:58 - 2016-08-02 23:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-09 22:58 - 2016-08-02 23:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-09 22:58 - 2016-08-02 23:30 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-09 22:58 - 2016-08-02 23:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-09 22:58 - 2016-08-02 23:30 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-08-09 22:58 - 2016-08-02 22:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-08-09 22:58 - 2016-08-02 22:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-08-09 22:58 - 2016-08-02 22:47 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-09 22:58 - 2016-08-02 22:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-09 22:58 - 2016-08-02 22:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-09 22:58 - 2016-08-02 22:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-08-09 22:58 - 2016-08-02 22:40 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-09 22:58 - 2016-08-02 22:39 - 19351040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-09 22:58 - 2016-08-02 22:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-08-09 22:58 - 2016-08-02 22:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2016-08-09 22:58 - 2016-08-02 22:34 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-08-09 22:58 - 2016-08-02 22:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-09 22:58 - 2016-08-02 22:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-09 22:58 - 2016-08-02 22:33 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-09 22:58 - 2016-08-02 22:33 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-09 22:58 - 2016-08-02 22:32 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-09 22:58 - 2016-08-02 22:32 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-09 22:58 - 2016-08-02 22:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-09 22:58 - 2016-08-02 22:32 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-08-09 22:58 - 2016-08-02 22:31 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-09 22:58 - 2016-08-02 22:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-09 22:58 - 2016-08-02 22:29 - 12133376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-09 22:58 - 2016-08-02 22:28 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-09 22:58 - 2016-08-02 22:25 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-09 22:58 - 2016-08-02 22:25 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-09 22:58 - 2016-08-02 22:23 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-09 22:58 - 2016-08-02 22:23 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-08-09 22:58 - 2016-08-02 22:22 - 02501120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-09 22:58 - 2016-08-02 22:22 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-09 22:58 - 2016-08-02 22:21 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-08-09 22:58 - 2016-08-02 22:19 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-08-09 22:57 - 2016-08-03 04:22 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-09 22:57 - 2016-08-03 04:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-08-09 22:57 - 2016-08-03 04:21 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-09 22:57 - 2016-08-03 04:11 - 00422744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-09 22:57 - 2016-08-03 03:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-08-09 22:57 - 2016-08-03 03:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-09 22:57 - 2016-08-03 03:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-09 22:57 - 2016-08-03 03:34 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-09 22:57 - 2016-08-03 03:33 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-08-09 22:57 - 2016-08-03 03:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-08-09 22:57 - 2016-08-03 03:30 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-09 22:57 - 2016-08-02 22:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-09 22:57 - 2016-08-02 22:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-08-01 17:47 - 2016-08-01 17:47 - 00002205 _____ C:\Users\Public\Desktop\Carbonite InfoCenter.lnk
2016-08-01 17:47 - 2016-08-01 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Carbonite
2016-08-01 17:01 - 2016-08-01 17:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2016-07-28 18:19 - 2016-07-28 18:19 - 00462857 _____ C:\Users\Owner\Downloads\10yrapp.pdf
2016-07-28 17:55 - 2016-07-28 17:55 - 00463654 _____ C:\Users\Owner\Desktop\10yrapp OLD.pdf
2016-07-28 17:33 - 2016-07-28 18:14 - 00462857 _____ C:\Users\Owner\Desktop\10yrapp.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-17 20:16 - 2013-05-15 09:51 - 00000021 _____ C:\Users\Owner\AppData\Roaming\config_data.dat
2016-08-17 20:08 - 2015-11-25 21:27 - 00879220 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-17 20:08 - 2015-10-30 01:21 - 00000000 ____D C:\WINDOWS\INF
2016-08-17 20:07 - 2013-11-21 22:37 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2A134B9D-0390-4844-87B9-F30BE38350AA}
2016-08-17 20:03 - 2013-05-15 08:13 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-08-17 20:00 - 2015-11-25 21:30 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-17 20:00 - 2015-11-25 21:17 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-17 20:00 - 2015-07-12 20:56 - 00003394 _____ C:\WINDOWS\System32\Tasks\SmartAppMonitor
2016-08-17 20:00 - 2013-05-30 13:33 - 00000000 ____D C:\Users\Owner\AppData\Roaming\stickies
2016-08-17 20:00 - 2013-05-29 22:34 - 00000922 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-17 19:59 - 2015-10-30 00:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2016-08-17 19:43 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-17 19:20 - 2013-05-29 22:34 - 00000926 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-17 18:45 - 2015-10-30 01:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-17 07:33 - 2013-06-01 17:13 - 00000000 ____D C:\Users\Owner\AppData\Local\Adobe
2016-08-17 07:07 - 2015-07-12 20:56 - 00004168 _____ C:\WINDOWS\System32\Tasks\SmartAppLiveUpdater
2016-08-16 23:01 - 2013-09-29 17:54 - 00000000 ____D C:\Journal 9.29.13
2016-08-16 19:16 - 2013-06-13 20:49 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-16 19:16 - 2013-05-30 22:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-08-11 09:52 - 2013-05-30 23:09 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-10 23:41 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\Resources
2016-08-10 23:11 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-10 12:33 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-10 12:33 - 2015-10-30 01:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-10 09:15 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\rescache
2016-08-09 23:51 - 2015-10-30 03:07 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-09 23:51 - 2015-10-30 01:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-09 23:51 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-09 23:08 - 2013-07-13 12:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-09 23:08 - 2013-05-15 08:25 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-08 22:20 - 2013-05-29 22:35 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-03 18:14 - 2015-11-26 10:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-08-01 17:01 - 2016-07-01 22:07 - 00003624 _____ C:\WINDOWS\System32\Tasks\GarminUpdaterTask
2016-08-01 17:01 - 2016-07-01 22:07 - 00001963 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2016-08-01 17:01 - 2016-07-01 22:07 - 00000000 ____D C:\Program Files (x86)\Garmin
2016-07-28 17:15 - 2013-05-29 22:34 - 00003984 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-28 17:15 - 2013-05-29 22:34 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-25 17:58 - 2013-05-30 22:25 - 00154392 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2016-07-25 17:58 - 2013-05-30 22:25 - 00144664 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys

==================== Files in the root of some directories =======

2013-05-15 09:51 - 2016-08-17 20:16 - 0000021 _____ () C:\Users\Owner\AppData\Roaming\config_data.dat
2014-05-07 22:06 - 2014-05-07 22:06 - 0000385 _____ () C:\Users\Owner\AppData\Roaming\CreatePhotoCalendars_state.xml
2013-12-05 11:28 - 2013-12-05 11:28 - 0000057 _____ () C:\ProgramData\Ament.ini
2013-06-04 18:27 - 2013-06-04 18:27 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\dsw98\AppData\Local\Temp\avgnt.exe
C:\Users\Owner\AppData\Local\Temp\avgnt.exe
C:\Users\Owner\AppData\Local\Temp\libeay32.dll
C:\Users\Owner\AppData\Local\Temp\msvcr120.dll
C:\Users\Owner\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Owner\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-08-11 09:11

==================== End of FRST.txt ============================


Addition.Txt.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-08-2016
Ran by Devin (17-08-2016 20:16:13)
Running from C:\Users\Owner\Downloads
Windows 10 Pro Version 1511 (X64) (2015-11-26 06:14:29)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3884958803-2590088924-408680957-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3884958803-2590088924-408680957-503 - Limited - Disabled)
Devin (S-1-5-21-3884958803-2590088924-408680957-1001 - Administrator - Enabled) => C:\Users\Owner
dsw98 (S-1-5-21-3884958803-2590088924-408680957-1005 - Limited - Enabled) => C:\Users\dsw98
Guest (S-1-5-21-3884958803-2590088924-408680957-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3884958803-2590088924-408680957-1004 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe After Effects 6.0 (HKLM-x32\...\{1EC60864-A294-44BF-984A-3E8867D74EA2}) (Version: 6.0 - Adobe Systems Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 19.0.0.241 - Adobe Systems Incorporated)
Adobe Encore CS6 Library (HKLM-x32\...\{07E80932-FFB1-402D-9198-18C58EBAF216}) (Version: 6.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.7.700.202 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop 6.0 (HKLM-x32\...\Adobe Photoshop 6.0) (Version: 6.0 - Adobe Systems, Inc.)
Adobe Premiere Pro (HKLM-x32\...\{084709F7-38C5-4609-B55F-2417939315EB}) (Version: 7.0 - Adobe Systems, Inc.)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CS6 Functional Content (HKLM-x32\...\{614020C8-2E16-4E16-A5F0-04DE2AB96097}) (Version: 6.0.0 - Adobe Systems Incorporated)
Adobe SVG Viewer (HKLM-x32\...\Adobe SVG Viewer) (Version: 1.0 - Adobe Systems, Inc.)
Akamai NetSession Interface (HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Akamai NetSession Interface (HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Akamai) (Version: - Akamai Technologies, Inc)
Akamai NetSession Interface Service (HKLM-x32\...\Akamai) (Version: - Akamai Technologies, Inc)
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
AutoCAD 2014 - English (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD 2014 Language Pack - English (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD Architecture 2012 - English (HKLM\...\AutoCAD Architecture 2012 - English) (Version: 6.7.49.0 - Autodesk)
AutoCAD Architecture 2012 - English (Version: 6.7.49.0 - Autodesk) Hidden
AutoCAD Architecture 2012 Language Pack - English (Version: 18.2.51.0 - Autodesk) Hidden
Autodesk 3ds Max Design 2014 (HKLM\...\Autodesk 3ds Max Design 2014) (Version: 16.0.420.0 - Autodesk)
Autodesk 3ds Max Design 2014 (Version: 16.0.420.0 - Autodesk) Hidden
Autodesk 3ds Max Design 2014 64-bit Populate Data (HKLM\...\{2BCAFE22-BE25-4437-815C-54596D630397}) (Version: 1.0.0.1 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk)
Autodesk AutoCAD 2014 - English (HKLM\...\AutoCAD 2014 - English) (Version: 19.1.18.0 - Autodesk)
Autodesk Backburner 2014 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 14.0.0.0 - Autodesk, Inc.)
Autodesk BIM 360 Revit 2016 Add-in 64 bit (HKLM\...\{C5A83116-8654-47A3-A3B1-B76905C8A198}) (Version: 4.35.3969 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk Design Review 2013 (x32 Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk DirectConnect 2014 64-bit (HKLM\...\Autodesk DirectConnect 2014 64-bit) (Version: 8.0.56.1 - Autodesk)
Autodesk DirectConnect 2014 64-bit (Version: 8.0.56.1 - Autodesk) Hidden
Autodesk Download Manager (HKLM-x32\...\{2F48C80C-3A76-495A-A4B5-C0CC946FEEBD}) (Version: 2.0.6.0 - Autodesk, Inc.)
Autodesk DWG TrueView 2016 - English (HKLM\...\DWG TrueView 2016 - English) (Version: 20.1.49.0 - Autodesk)
Autodesk Essential Skills Movies for 3ds Max Design 2014 64-bit (HKLM\...\{280881E4-0E3C-40E6-9B76-E05A865551BB}) (Version: 1.1.0.0 - Autodesk)
Autodesk Inventor Fusion plug-in for AutoCAD 2012 (HKLM\...\Autodesk Inventor Fusion plug-in for AutoCAD 2012) (Version: 0.0.1.138 - Autodesk)
Autodesk Inventor Fusion plug-in for AutoCAD 2012 (Version: 0.0.1.138 - Autodesk) Hidden
Autodesk Inventor Fusion plug-in language pack for AutoCAD 2012 (Version: 0.0.1.138 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max Design 2014 64-bit (HKLM\...\{CBC74B06-FE35-482C-89D6-CE95A0289C06}) (Version: 16.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.18 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.18 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2014 (HKLM-x32\...\{5C29CC1F-218F-4C30-948A-11066CAC59FB}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2016 (HKLM-x32\...\{FA5DF4D1-CD59-4183-B3D4-779A56498786}) (Version: 6.3.0.18 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2013 (HKLM-x32\...\{58760EEC-8B6A-43F4-81AA-696E381DFADD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2014 (HKLM-x32\...\{A0633D4E-5AF2-4E3E-A70A-FE9C2BD8A958}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2016 (HKLM-x32\...\{415A5A54-325E-4815-9940-62A889CA3877}) (Version: 6.3.0.18 - Autodesk)
Autodesk Navisworks Simulate 2014 - 2008 DWG File Reader (Version: 11.0.983.73 - Autodesk) Hidden
Autodesk Navisworks Simulate 2014 - 2009 DWG File Reader (Version: 11.0.983.73 - Autodesk) Hidden
Autodesk Navisworks Simulate 2014 - 2010 DWG File Reader (Version: 11.0.983.73 - Autodesk) Hidden
Autodesk Navisworks Simulate 2014 - 2011 DWG File Reader (Version: 11.0.983.73 - Autodesk) Hidden
Autodesk Navisworks Simulate 2014 - 2012 DWG File Reader (Version: 11.0.983.73 - Autodesk) Hidden
Autodesk Navisworks Simulate 2014 - 2013 DWG File Reader (Version: 11.0.983.73 - Autodesk) Hidden
Autodesk Navisworks Simulate 2014 - 2014 DWG File Reader (Version: 11.0.983.73 - Autodesk) Hidden
Autodesk Navisworks Simulate 2014 (HKLM\...\Autodesk Navisworks Simulate 2014) (Version: 11.0.983.73 - Autodesk)
Autodesk Navisworks Simulate 2014 (Version: 11.0.983.73 - Autodesk) Hidden
Autodesk Navisworks Simulate 2014 English Language Pack (HKLM\...\Autodesk Navisworks Simulate 2014 English Language Pack) (Version: 11.0.983.73 - Autodesk)
Autodesk Navisworks Simulate 2014 English Language Pack (Version: 11.0.983.73 - Autodesk) Hidden
Autodesk Revit 2013 UR1 (HKLM\...\Autodesk Revit 2013 UR1) (Version: 1 - Autodesk)
Autodesk Revit 2014 (HKLM\...\Autodesk Revit 2014) (Version: 13.03.08151 - Autodesk)
Autodesk Revit Architecture 2016 (HKLM\...\Autodesk Revit Architecture 2016) (Version: 16.0.428.0 - Autodesk)
Autodesk Revit Architecture Content Libraries 2016 (HKLM\...\Autodesk Revit Architecture Content Libraries 2016) (Version: 16.0.428.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2014 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2014) (Version: 13.02.15161 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2014 (Version: 13.02.15161 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit (HKLM\...\{06E18300-BB64-1664-8E6A-2593FC67BB74}) (Version: 1.0.0.1 - Autodesk)
Autodesk Revit Interoperability for Showcase 2014 (HKLM\...\Autodesk Revit Interoperability for Showcase 2014) (Version: 13.02.15161 - Autodesk)
Autodesk Revit Interoperability for Showcase 2014 (Version: 13.02.15161 - Autodesk) Hidden
Autodesk Showcase 2014 64-bit (HKLM\...\Autodesk Showcase 2014 64-bit) (Version: 8.0.0.314 - Autodesk)
Autodesk Showcase 2014 64-bit (Version: 8.0.0.314 - Autodesk) Hidden
Autodesk SketchBook Designer 2012 - English (HKLM\...\Autodesk SketchBook Designer 2012 - English) (Version: 2.00.0000 - Autodesk)
Autodesk SketchBook Designer 2012 - English (Version: 2.00.0000 - Autodesk) Hidden
Autodesk SketchBook Designer for AutoCAD 2012 - English (HKLM\...\Autodesk SketchBook Designer for AutoCAD 2012 - English) (Version: 2.00.0000 - Autodesk)
Autodesk SketchBook Designer for AutoCAD 2012 - English (Version: 2.00.0000 - Autodesk) Hidden
Autodesk Workflows 2014 (HKLM\...\{11672AB2-3D48-4D38-9123-719E5FF93333}) (Version: 4.0.19.0 - Autodesk, Inc.)
Autodesk Workflows 2016 (HKLM\...\{535CDED0-D690-4738-83EE-09056A365BAC}) (Version: 6.3.0.18 - Autodesk, Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.18.354 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{05f7f410-0274-45d0-91dc-712a62aadd96}) (Version: 1.2.68.19138 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.2.68.19138 - Avira Operations GmbH & Co. KG) Hidden
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Carbonite (HKLM-x32\...\{A73F678F-9911-43D6-8670-D0FAD64BF8DC}) (Version: 6.0.0 build 6397 (Jun-23-2016) - Carbonite)
Carbonite Mirror Image (64-bit) (Version: 5.1.14703.2115 - x64) Hidden
Cisco WebEx Meetings (HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC)
Cisco WebEx Meetings (HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC)
Composite 2012 64-bit (HKLM\...\{EA234BC3-39FE-4734-B72F-076086889F6D}) (Version: 7.0.0 - Autodesk)
Composite 2013 64-bit (HKLM\...\{2F808931-D235-4FC7-90CD-F8A890C97B2F}) (Version: 8.0.0 - Autodesk)
Corsair Link(TM) USB Dongle (Driver Removal) (HKLM-x32\...\CMIUSB&1B1C&1C00) (Version: - Corsair Memory, Inc.)
CorsairLINK2 (HKLM-x32\...\{658EFB3F-8606-4576-8FEC-B0CED48F1E68}) (Version: 2.3.4816 - Corsair)
Create Photo Calendars (HKLM-x32\...\CreatePhotoCalendars.5D53B1AD5E35C0AAC823426DAB2CFDAF2F7F5C07.1) (Version: 1.32 - Spectrum Software, Inc)
Create Photo Calendars (x32 Version: 1.32 - Spectrum Software, Inc) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Dropbox) (Version: 2.6.33 - Dropbox, Inc.)
Dropbox (HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Dropbox) (Version: 2.6.33 - Dropbox, Inc.)
DWG TrueView 2013 (HKLM\...\DWG TrueView 2013) (Version: 19.0.55.0 - Autodesk)
DWG TrueView 2013 (Version: 19.0.55.0 - Autodesk) Hidden
DWG TrueView 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden
Elevated Installer (x32 Version: 4.1.25.0 - Garmin Ltd or its subsidiaries) Hidden
Evernote v. 5.2.1 (HKLM-x32\...\{5E6D0ABA-ABDE-11E3-9AED-00163E98E7D6}) (Version: 5.2.1.3108 - Evernote Corp.)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
FARO LS 1.1.408.2 (HKLM-x32\...\{91221AAC-F2A0-4028-8016-C7DAF63CB6CC}) (Version: 4.8.2.25521 - FARO Scanner Production)
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
FARO LS 4.8.2.25521 (HKLM-x32\...\FARO LS_is1) (Version: - FARO Technologies)
Fiddler (HKLM-x32\...\Fiddler2) (Version: 4.6.1.5 - Telerik)
Freemake Video Converter version 4.0.1 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.0.1 - Ellora Assets Corporation)
Garmin Express (HKLM-x32\...\{686d881a-083e-4030-80db-52c493bf89d3}) (Version: 4.1.25.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 4.1.25.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 4.1.25.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Earth Plug-in (HKLM-x32\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GoPro App (x32 Version: 5.6.509 - GoPro, Inc.) Hidden
GoPro Studio 2.5.6 (HKLM-x32\...\{8850d4d9-a0fc-453f-ba03-ec084375d0c2}) (Version: 2.5.6.509 - GoPro, Inc.)
HP Officejet 6700 Basic Device Software (HKLM\...\{A1CFA587-90D4-4DE6-B200-68CC0F92252F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6700 Help (HKLM-x32\...\{E1AE0CB7-1333-4728-8520-CB3F88A252B4}) (Version: 140.0.2.2 - Hewlett Packard)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Image Resizer for Windows (64 bit) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
iTunes (HKLM\...\{1CF5754A-545B-4360-BFDE-2847BC728DFC}) (Version: 11.2.0.115 - Apple Inc.)
K-Lite Codec Pack 9.9.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.9.0 - )
K-Lite Codec Pack 9.9.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.9.0 - )
Logitech Options (HKLM\...\LogiOptions) (Version: - Logitech)
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 (HKLM-x32\...\Encoder_4.0.3205.0) (Version: 4.0.3205.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 Screen Capture Codec (HKLM-x32\...\{F9EC30D1-F688-4708-9850-CB5120074AAA}) (Version: 4.0.3205.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU Service Pack 1 (KB945140) (HKLM-x32\...\{90A80D89-A0E4-33C1-B13D-B93CB3496867}.KB945140) (Version: 1 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
NVIDIA 3D Vision Controller Driver 320.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 320.49 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 320.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 320.49 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA Graphics Driver 320.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 320.49 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.24.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.24.2 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0604 - NVIDIA Corporation)
OpenOffice.org 3.4.1 (HKLM-x32\...\{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}) (Version: 3.41.9593 - Apache Software Foundation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
Revit 2014 (Version: 13.03.08151 - Autodesk) Hidden
Revit 2014 Language Pack - English (Version: 13.03.08151 - Autodesk) Hidden
Revit Architecture 2016 (Version: 16.0.428.0 - Autodesk) Hidden
Revit Architecture Content Libraries 2016 (Version: 16.0.428.0 - Autodesk) Hidden
SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
Skype™ 7.15 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.15.103 - Skype Technologies S.A.)
SmartApp (HKLM-x32\...\{2DFEC0A8-7E94-4B7C-A232-7D669D3B3D90}) (Version: 2.4.0.41 - SmartApp)
SpiceMASTER 2.5 Premiere (HKLM-x32\...\SpiceMASTER 2.5 Premiere) (Version: 2.5 - Pixelan Software)
Stickies 7.1e (HKLM-x32\...\ZhornStickies) (Version: - Zhorn Software)
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 6.5.4.0 - 2BrightSparks)
System Checkup 4.0 (HKLM-x32\...\{918D30D3-AD9B-43A8-9EF7-463075DC93CD}_is1) (Version: 4.0.0.150 - iolo technologies, LLC)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer)
VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
WeatherBug (HKLM-x32\...\{DAFA6315-EAE5-4B9E-9D18-0DC51D1DB0F0}) (Version: 7.0.0.12 - Earth Networks, Inc.)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012 - GoPro)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DD}) (Version: 17.5.10562 - WinZip Computing, S.L. )
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Owner\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{083C82AE-568E-45dd-A92C-01422CA45760}\InprocServer32 -> C:\Program Files\Autodesk\Revit 2013\Program\APIContext.dll => No File
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\DWG TrueView 2016 - English\dwgviewr.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2016 - English\en-US\dwgviewrficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Architecture 2012\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Owner\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Architecture 2012\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Architecture 2012\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Architecture 2012\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD Architecture 2012\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1E6336C1-6CB7-412E-8853-53429F590A41} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2016-07-31] ()
Task: {2995416E-E5FC-4ADB-9AAA-D0B06D4E0B4B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {3A234A68-9B5D-4020-97B2-4E4C06556524} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {4B4EE5EB-4EE0-4A25-87C2-35E13F3D363F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {4EC3B54C-3D94-43F2-A9E0-8E7169475765} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {50E99274-C21E-4D20-BCDF-0852A12E5216} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {536CC161-A44A-4818-8A1F-7B73E893481F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {5872B103-0394-430A-8E0B-C0950BAEB848} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {59356CDB-5441-4ABF-AF9B-16B907BA0E00} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-08-09] (Microsoft Corporation)
Task: {59592049-97B4-4BE0-B7E4-46C602E4D108} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-15] (Adobe Systems Incorporated)
Task: {5C55D16E-FCEA-4980-8909-4FBA4BB0BAB3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {85DAEA5E-ABFC-4046-BD9A-A6EF18919292} - System32\Tasks\SmartAppMonitor => C:\Program Files (x86)\SmartApp\SmartAppMonitor.exe [2015-10-05] (VertoAnalytics Oy)
Task: {86F5DDA1-E9B6-416A-BA89-8DDB900181F4} - System32\Tasks\2BrightSparks\SyncBackFree\SKYWALKER-Owner\SyncBackFree MAIN BACK UP => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2013-08-05] (2BrightSparks Pte Ltd)
Task: {8D7684DA-8FF2-4EBE-90BC-0A6DD6971E76} - System32\Tasks\AdobeAAMUpdater-1.0-SKYWALKER-Owner => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {A0A5C9F7-527E-4054-878B-6B26FD0AE969} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A1AAC255-2ACE-4C5E-B890-AF25C6D07BD7} - System32\Tasks\iolo SCU task one => C:\ProgramData\iolo\SCU\sculnch.lnk [Argument = /toaster]
Task: {A4DD293F-8558-4C30-9C0D-B68517461D67} - System32\Tasks\Start CorsairLINK Hardware Monitor => C:\Program Files (x86)\Corsair\CorsairLINK2\CorsairLINK_HardwareMonitor.exe [2013-03-09] (Corsair Components, Inc.)
Task: {B3974CB9-A267-432D-8D51-D22FC4FDEE5B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {BB2451A5-EE82-41CF-9295-6352B4E15BFF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {BC486340-39AB-4E5E-A7B6-B33262C60B5D} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {BEDA2435-D0A1-47F2-BFED-EF57CF5DEBBC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C6586CFD-A4CF-431D-AD3D-E0ABC96CFC9F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {C7771DBA-EAF3-4C47-8333-B2E68A0B63A1} - System32\Tasks\SmartAppLiveUpdater => C:\Program Files (x86)\SmartApp\SmartAppLiveUpdater.exe [2015-10-05] ()
Task: {CBF466AD-5279-40B7-BEF3-BE47E8F11A89} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {D2E4BE03-C7D2-441A-ABF8-606069FC23F1} - System32\Tasks\{5F6010C8-60E5-41f3-BF5B-C3AF5DBE12D4} => C:\ProgramData\Carbonite\Carbonite Backup\CarboniteUpgrade.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 01:18 - 2015-10-30 01:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-11-25 21:17 - 2015-08-06 18:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-07-12 20:09 - 2016-06-30 22:48 - 02656408 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-12 20:09 - 2016-06-30 22:48 - 02656408 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-19 20:11 - 2016-05-19 20:11 - 00959168 _____ () C:\Users\Owner\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2015-12-17 19:28 - 2015-12-06 22:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-12 20:10 - 2016-06-30 21:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-07-12 20:09 - 2016-06-30 21:27 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-12 20:09 - 2016-06-30 21:21 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-12 20:09 - 2016-06-30 21:22 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-12 20:09 - 2016-06-30 21:24 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2011-02-14 14:45 - 2011-02-14 14:45 - 01277440 _____ () C:\Program Files\Carbonite\Carbonite Mirror Image\QtNetwork4.dll
2011-02-14 14:45 - 2011-02-14 14:45 - 02869760 _____ () C:\Program Files\Carbonite\Carbonite Mirror Image\QtCore4.dll
2011-02-14 14:45 - 2011-02-14 14:45 - 00840704 _____ () C:\Program Files\Carbonite\Carbonite Mirror Image\QtSql4.dll
2009-11-14 22:21 - 2009-11-14 22:21 - 01800704 _____ () C:\Program Files\Carbonite\Carbonite Mirror Image\LIBEAY32.dll
2009-11-14 22:22 - 2009-11-14 22:22 - 00284160 _____ () C:\Program Files\Carbonite\Carbonite Mirror Image\SSLEAY32.dll
2009-11-14 22:14 - 2009-11-14 22:14 - 00076288 _____ () C:\Program Files\Carbonite\Carbonite Mirror Image\ZLIB1.dll
2011-09-14 22:19 - 2011-09-14 22:19 - 00086016 _____ () C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
2016-04-18 17:34 - 2016-04-18 17:34 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2014-04-23 16:05 - 2014-04-23 16:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 16:04 - 2014-04-23 16:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-11-19 18:52 - 2016-02-23 22:47 - 00110664 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2015-11-19 18:52 - 2016-02-23 22:48 - 00062024 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2016-07-31 14:54 - 2016-07-31 14:54 - 00073216 _____ () C:\Program Files (x86)\Garmin\Device Interaction Service\FixBootSector.dll
2013-05-30 21:36 - 2012-05-25 04:25 - 00921600 _____ () C:\Program Files (x86)\Yahoo!\Messenger\yui.dll
2013-05-30 21:35 - 2012-05-25 04:25 - 00078336 _____ () C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll
2016-05-19 20:11 - 2016-05-19 20:11 - 00679624 _____ () C:\Users\Owner\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2015-07-02 23:31 - 2015-07-02 23:31 - 02287616 _____ () C:\Program Files (x86)\GoPro\Tools\Importer\gopro-lib-win-analytics.dll
2013-05-30 13:33 - 2013-05-30 13:33 - 00049152 _____ () C:\Program Files (x86)\Stickies\shook70.dll
2014-03-14 16:50 - 2014-03-14 16:50 - 00433664 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
2014-03-14 16:50 - 2014-03-14 16:50 - 00315392 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
2012-08-10 16:51 - 2012-08-10 16:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2013-05-15 09:51 - 2013-03-09 11:09 - 00053760 _____ () C:\Program Files (x86)\Corsair\CorsairLINK2\SynchronousIO.Native.dll
2014-04-12 09:55 - 2014-02-10 13:44 - 04592128 _____ () C:\Users\Owner\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-04-12 09:55 - 2014-02-10 13:44 - 00112128 _____ () C:\Users\Owner\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2016-08-08 22:20 - 2016-08-02 17:54 - 17602240 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll
2016-04-18 17:34 - 2016-04-18 17:34 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-18 17:34 - 2016-04-18 17:34 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:054203E4 [262]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 07:25 - 2013-08-22 07:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Owner\AppData\Local\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Owner\AppData\Local\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-3884958803-2590088924-408680957-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 75.75.76.76 - 75.75.75.75
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{F758884C-00DF-4BC0-9099-F05D55593CDD}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{E8DEF383-32AF-490D-B042-02BFD2BB8B1B}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{750CF79B-88A1-4F87-AF2B-B8D0A1843C02}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{DD9988A7-D881-4BAA-8422-8AA3BA6A53A3}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{83ECAAD5-C851-4A5F-B2D0-039580C6290C}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{C1E29F40-9DB1-474E-9139-99564DC050B2}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{0A7DB58D-DD59-41F2-9026-ADFF73882C46}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F2401EE1-BD8C-4EBC-9728-039D8CA223B0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{2E44664F-0FA7-45DE-9A7D-CC2B8B051A75}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{1714583A-E0A8-4DCF-88D9-61B5C485DFF5}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{2C959DC8-5162-4638-91ED-3AD33582C441}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{16A07F4D-233A-4801-B6C8-7C06D3360D8C}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{53775CDE-8420-40F5-AB52-70251C56C4EF}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{45ED950B-1B88-46F7-ABD0-CB496DE9C3DD}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\server.exe
FirewallRules: [{50C0EC26-C115-4ACF-BDC9-62EEF2930B04}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\server.exe
FirewallRules: [{5C0B223B-FF57-466F-A3A9-38DF2FD7F6F7}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\manager.exe
FirewallRules: [{CEB4BD58-C1AA-4EB6-942B-F1ACBF3FB922}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\manager.exe
FirewallRules: [{C5DC761C-0C06-41B7-AFC5-E9DF48C2D421}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\monitor.exe
FirewallRules: [{1632063D-1678-4E45-9A87-C22577BF1827}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\monitor.exe
FirewallRules: [{D094F834-48DC-4F1D-8102-E300E40A00A3}] => (Allow) LPort=50248
FirewallRules: [{C29A5674-A476-44B0-AA58-71B3E898C215}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64.exe
FirewallRules: [{5C99E732-952B-4066-A027-DEDEF1DE625C}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64.exe
FirewallRules: [{49CAF7C0-2F39-49DD-95F6-7C837511195F}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
FirewallRules: [{A4A08550-FB93-428B-9072-C68E50E6F0F3}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
FirewallRules: [{D81FB0CF-1117-4791-A5C9-91725C7B0FAE}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{E53CDAA8-5C6C-49F5-9854-6162CA81691C}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
FirewallRules: [{33C1ED27-B6D9-4B90-8B1F-BE5DC1475799}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\DeviceSetup.exe
FirewallRules: [{41378442-B1B4-4343-A4E7-C64F007AE5F7}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\SendAFax.exe
FirewallRules: [{82466D2C-36C3-49D2-BCBF-13C93067FD10}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\DigitalWizards.exe
FirewallRules: [{A65ED579-3125-4BE0-A657-8EEEADED8C1E}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\FaxApplications.exe
FirewallRules: [UDP Query User{56968121-CD99-4AF7-8B80-12FC6E157BC5}C:\program files\autodesk\showcase 2013\bin\showcase.exe] => (Allow) C:\program files\autodesk\showcase 2013\bin\showcase.exe
FirewallRules: [TCP Query User{541590B3-57F7-401C-B579-225A5FEB1883}C:\program files\autodesk\showcase 2013\bin\showcase.exe] => (Allow) C:\program files\autodesk\showcase 2013\bin\showcase.exe
FirewallRules: [{6EBDAA3D-7994-4FA9-B732-05C26429F07E}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\3dsmax.exe
FirewallRules: [{DB794336-55CD-4006-80F8-8280740C7467}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\3dsmax.exe
FirewallRules: [{4F8BC46F-F234-48F0-9A59-68593FC65A51}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64.exe
FirewallRules: [{FE5B680C-71A4-453D-B3F8-F6178E7629BE}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64.exe
FirewallRules: [{4FEB385C-6D27-43ED-986E-70EE3AAD7A89}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe
FirewallRules: [{73AB92A2-0368-4CCF-8E66-0B3411DD6496}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe
FirewallRules: [{90C39B54-601E-4146-BAFF-2F21BD8AC25F}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{DC2A3EA6-C75A-471A-B4C1-EE5D143BD203}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{AF0E9482-865F-4850-ACB4-4DACF47606E8}] => (Allow) C:\Users\Owner\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{CB0A421B-E194-4BF9-AE84-180EFC422935}] => (Allow) C:\Users\Owner\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{118FE721-D9A5-4CF8-837B-4C8199A545D8}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{8A2C424B-B626-45D6-9809-E529AF767D65}] => (Allow) LPort=2869
FirewallRules: [{636639D9-846F-4C03-8971-9DD7345681B6}] => (Allow) LPort=1900
FirewallRules: [{12870095-8EA0-4DDE-94E8-E740A47BED0D}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
FirewallRules: [{CB0A6344-901F-4444-8DEB-2EF24840619B}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
FirewallRules: [{BC266A52-473A-4EFF-B242-C41E603C0B45}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2012\mentalimages\satellite\raysat_3dsmax2012_64.exe
FirewallRules: [{2520CF4C-2282-4489-9841-1B80A0F5EA27}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2012\mentalimages\satellite\raysat_3dsmax2012_64.exe
FirewallRules: [{855E8C9D-E6DD-4EDD-835E-6EFB559320C9}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2012\3dsmax.exe
FirewallRules: [{CADFB13C-2131-4F48-95E3-76B983CEFDD8}] => (Allow) C:\Program Files\Autodesk\3ds Max Design 2012\3dsmax.exe
FirewallRules: [{65847F25-DF63-4DE1-BA47-51F5185052EA}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\monitor.exe
FirewallRules: [{6ABBF4A2-C9DA-409A-A2EE-3C4A468840E2}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\monitor.exe
FirewallRules: [{072660B7-E58A-4E7E-8B72-4A07EC0C8001}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\manager.exe
FirewallRules: [{93FA065D-7248-4F54-8A74-D05AF796638C}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\manager.exe
FirewallRules: [{64AF192B-433B-4C8E-B9D6-A99418FE554F}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\server.exe
FirewallRules: [{993B0843-CAC9-40A6-9DC6-98CD3574A87E}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\server.exe
FirewallRules: [{CE16F432-1F04-413D-857A-2415F4E0A9BD}] => (Allow) C:\Users\Owner\AppData\Local\Akamai\netsession_win.exe
FirewallRules: [{F955675C-7822-43A8-B22E-3B618AB5C475}] => (Allow) C:\Users\Owner\AppData\Local\Akamai\netsession_win.exe
FirewallRules: [TCP Query User{13314703-5252-4E50-83D6-72063F52F4AA}C:\users\owner\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\owner\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{2E234EC9-EBDA-4C7F-AB72-18209886378C}C:\users\owner\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\owner\appdata\local\akamai\netsession_win.exe
FirewallRules: [{07A91C5E-13A3-4373-B711-2D75882680D0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{5FE11EFC-1721-48D9-82FA-FE4768AE4EC7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{CF006E20-F24D-4E5E-A970-F10E8A4593DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{EC4A8B6B-47BF-45B2-BC15-4AFD393093A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{2B995FD5-0181-467D-996F-C0B7ECBAB314}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4D67386A-3BE7-4022-920F-C72A09200628}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FF5F438F-ADD3-4AE3-AABD-E7737D6AF2E8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9CC0D0EE-8D38-42D8-B9D2-2421323B35FF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{633E5A28-971B-4216-A0EC-29936076909B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3AE19A4A-1EC5-468E-9D32-114FF95F4500}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{33815B44-4032-4EAB-8AD7-5E874582CA6E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

14-08-2016 16:56:30 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/17/2016 08:02:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 17 F.3.C.D.D.3.0.B.A.D.F.7.F.E.1.3.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR SkyWalker.local.

Error: (08/17/2016 08:02:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.40.5:5353 19 F.3.C.D.D.3.0.B.A.D.F.7.F.E.1.3.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR SkyWalker-2.local.

Error: (08/17/2016 08:02:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 17 F.B.4.8.3.B.3.7.B.0.6.C.F.B.4.B.0.A.E.2.4.0.C.4.1.8.6.0.1.0.6.2.ip6.arpa. PTR SkyWalker.local.

Error: (08/17/2016 08:02:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.40.5:5353 19 F.B.4.8.3.B.3.7.B.0.6.C.F.B.4.B.0.A.E.2.4.0.C.4.1.8.6.0.1.0.6.2.ip6.arpa. PTR SkyWalker-2.local.

Error: (08/17/2016 08:02:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 17 F.3.C.D.D.3.0.B.A.D.F.7.F.E.1.3.0.A.E.2.4.0.C.4.1.8.6.0.1.0.6.2.ip6.arpa. PTR SkyWalker.local.

Error: (08/17/2016 08:02:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.40.5:5353 19 F.3.C.D.D.3.0.B.A.D.F.7.F.E.1.3.0.A.E.2.4.0.C.4.1.8.6.0.1.0.6.2.ip6.arpa. PTR SkyWalker-2.local.

Error: (08/17/2016 08:02:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 17 5.40.168.192.in-addr.arpa. PTR SkyWalker.local.

Error: (08/17/2016 08:02:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.40.5:5353 19 5.40.168.192.in-addr.arpa. PTR SkyWalker-2.local.

Error: (08/17/2016 07:59:01 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/17/2016 07:47:11 PM) (Source: SideBySide) (EventID: 9) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.


System errors:
=============
Error: (08/17/2016 08:08:34 PM) (Source: cdrom) (EventID: 7) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (08/17/2016 08:08:27 PM) (Source: cdrom) (EventID: 7) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (08/17/2016 08:08:18 PM) (Source: cdrom) (EventID: 7) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (08/17/2016 08:08:07 PM) (Source: cdrom) (EventID: 7) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (08/17/2016 08:08:00 PM) (Source: cdrom) (EventID: 7) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (08/17/2016 08:07:45 PM) (Source: cdrom) (EventID: 7) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (08/17/2016 08:07:39 PM) (Source: cdrom) (EventID: 7) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (08/17/2016 08:07:28 PM) (Source: cdrom) (EventID: 7) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (08/17/2016 08:07:17 PM) (Source: cdrom) (EventID: 7) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (08/17/2016 08:07:11 PM) (Source: cdrom) (EventID: 7) (User: )
Description: The device, \Device\CdRom0, has a bad block.


CodeIntegrity:
===================================
Date: 2016-08-10 22:38:12.000
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-08-09 23:54:08.615
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-15 19:41:00.827
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-14 18:52:22.007
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-13 19:01:28.323
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-18 15:36:10.166
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-16 20:19:41.900
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-15 20:15:37.212
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-14 18:07:44.120
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-13 18:37:14.444
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 34%
Total physical RAM: 16330.89 MB
Available physical RAM: 10769.61 MB
Total Virtual: 18762.89 MB
Available Virtual: 13508.68 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.45 GB) (Free:49.97 GB) NTFS
Drive i: (My Book) (Fixed) (Total:465.75 GB) (Free:221.14 GB) NTFS
Drive j: (My Book) (Fixed) (Total:2794.49 GB) (Free:1861.87 GB) NTFS
Drive x: (New Volume) (Fixed) (Total:931.51 GB) (Free:182.52 GB) NTFS
Drive z: (New Volume) (Fixed) (Total:931.51 GB) (Free:409.43 GB) NTFS

==================== MBR & Partition Table ==================
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 3.

========================================================
Disk: 4 (Size: 465.8 GB) (Disk ID: 8D399BC0)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

 

There is a program I use Called Revit from Autodesk. To get the online subscription to work correctly I had to adjust proxy settings. I don't know what I actually did. I just followed their online instructions. So the Proxy has been set. But I only did it for that purpose.

 

well it was basically for the License to work correctly. The funny thing is, it worked the first time I used the program. But now it doesn't work again. Which is also very frustrating.

I will stand by for your fix.

 

below is what I got.

CKScanner 2.5 - Additional Security Risks - These are not necessarily bad
c:\autodesk\wi\autodesk building design suite premium 2014\x64\max\autodesk\3ds max design 2014\maps\substance\textures\cracked_plaster.sbsar
c:\program files\adobe\adobe premiere pro cs6\plug-ins\en_us\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cs6\plug-ins\en_us\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cs6\plug-ins\en_us\vstplugins\decrackler6.dll
c:\program files\adobe\adobe premiere pro cs6\plug-ins\zh_cn\vstplugins\decrackler1.dll
c:\program files\adobe\adobe premiere pro cs6\plug-ins\zh_cn\vstplugins\decrackler2.dll
c:\program files\adobe\adobe premiere pro cs6\plug-ins\zh_cn\vstplugins\decrackler6.dll
c:\program files\autodesk\3ds max design 2014\maps\substance\textures\cracked_plaster.sbsar
c:\program files\autodesk\revit 2014\help\en-us\wbh\contexthelp\hcontrol_revit_removewatch.htm
c:\program files\autodesk\revit architecture 2012\program\help\en-us\wbh\contexthelp\hcontrol_revit_removewatch.htm
c:\program files\autodesk\revit architecture content 2016\help\en-us\wbh\contexthelp\hcontrol_revit_removewatch.htm
c:\program files\pixelan\spicemaster 2.5 premiere\spices\spices\split\sp crack1 h.spg
c:\program files\pixelan\spicemaster 2.5 premiere\spices\spices\split\sp crack1 v.spg
c:\program files\pixelan\spicemaster 2.5 premiere\spices\spices\split\sp crack2 h.spg
c:\program files\pixelan\spicemaster 2.5 premiere\spices\spices\split\sp crack2 v.spg
c:\program files\pixelan\spicemaster 2.5 premiere\spices\spices\split\sp crack3 h.spg
c:\program files\pixelan\spicemaster 2.5 premiere\spices\spices\split\sp crack3 v.spg
c:\program files\pixelan\spicemaster 2.5 premiere\spices\spices\split\sp crack4 d.spg
c:\program files\pixelan\spicemaster 2.5 premiere\spices\spices\split\sp crack4 h.spg
c:\program files\pixelan\spicemaster 2.5 premiere\spices\spices\split\sp crack5 d.spg
c:\program files\pixelan\spicemaster 2.5 premiere\spices\spices\split\sp crack6 d.spg
c:\users\public\documents\pixelan\spicemaster 2.5 premiere\saved settings\cutting edge\crackstretch1.smf
scanner sequence 3.ZZ.11.BHLBE0
----- EOF -----

 

OK, here you go. I hope I did this right.

(FIXLIST)

HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Policies\Explorer: []
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\Explorer: []
ProxyEnable: [S-1-5-21-3884958803-2590088924-408680957-1001] => Proxy is enabled.
ProxyServer: [S-1-5-21-3884958803-2590088924-408680957-1001] => http=127.0.0.1:64550;https=127.0.0.1:64550
ProxyEnable: [S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] => Proxy is enabled.
ProxyServer: [S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] => http=127.0.0.1:64550;https=127.0.0.1:64550
ManualProxies: 1http=127.0.0.1:64550;https=127.0.0.1:64550
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2015-11-25] [not signed]
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll => No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => No File
CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\Windows\SysWOW64\npDeployJava1.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll => No File
C:\Users\dsw98\AppData\Local\Temp\avgnt.exe
C:\Users\Owner\AppData\Local\Temp\avgnt.exe
C:\Users\Owner\AppData\Local\Temp\libeay32.dll
C:\Users\Owner\AppData\Local\Temp\msvcr120.dll
C:\Users\Owner\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Owner\AppData\Local\Temp\sqlite3.dll
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{083C82AE-568E-45dd-A92C-01422CA45760}\InprocServer32 -> C:\Program Files\Autodesk\Revit 2013\Program\APIContext.dll => No File
Task: {2995416E-E5FC-4ADB-9AAA-D0B06D4E0B4B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {4B4EE5EB-4EE0-4A25-87C2-35E13F3D363F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {50E99274-C21E-4D20-BCDF-0852A12E5216} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {536CC161-A44A-4818-8A1F-7B73E893481F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {5872B103-0394-430A-8E0B-C0950BAEB848} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {5C55D16E-FCEA-4980-8909-4FBA4BB0BAB3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {A0A5C9F7-527E-4054-878B-6B26FD0AE969} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A1AAC255-2ACE-4C5E-B890-AF25C6D07BD7} - System32\Tasks\iolo SCU task one => C:\ProgramData\iolo\SCU\sculnch.lnk [Argument = /toaster]
Task: {BB2451A5-EE82-41CF-9295-6352B4E15BFF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {BC486340-39AB-4E5E-A7B6-B33262C60B5D} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {BEDA2435-D0A1-47F2-BFED-EF57CF5DEBBC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {CBF466AD-5279-40B7-BEF3-BE47E8F11A89} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:054203E4 [262]
CMD: ipconfig /flushdns
EmptyTemp:
RemoveProxy:
Hosts:

ESET FILE

C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSS.exe a variant of Win32/Systweak.L potentially unwanted application cleaned by deleting
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSHelper.dll a variant of Win32/Systweak.N potentially unwanted application cleaned by deleting
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSPrivacyProtector.exe a variant of Win32/Systweak.L potentially unwanted application cleaned by deleting
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegClean.exe a variant of Win32/Systweak.L potentially unwanted application cleaned by deleting
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegistryOptimizer.exe a variant of Win32/Systweak.L potentially unwanted application cleaned by deleting
C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSSystemCleaner.exe a variant of Win32/Systweak.L potentially unwanted application cleaned by deleting
C:\Program Files (x86)\Avira\AntiVir Desktop\apnic.dll a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting (after the next restart)
C:\Program Files (x86)\Avira\AntiVir Desktop\apnstub.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting (after the next restart)
C:\Program Files (x86)\Avira\AntiVir Desktop\apntoolbarinstaller.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting (after the next restart)
C:\Users\Owner\AppData\Local\Temp\LogiOptions\Updater\LogiOptions_3.40.25.exe a variant of Win32/WebBar.D potentially unwanted application deleted
C:\Windows\Installer\282bb26.msi a variant of Win32/Systweak.L potentially unwanted application deleted
C:\Windows\Installer\4fdb390.msi a variant of Win32/Bundled.Toolbar.Ask.C potentially unsafe application deleted
J:\C BackUP\AI_RecycleBin\{35A0AF2A-90DC-4EDC-9DF6-431DB4295BD4}\5\Strongvault\StrongVaultApp.exe a variant of MSIL/Adware.StrongVault.A application cleaned by deleting
J:\C BackUP\Documents and Settings\Owner\Application Data\Conduit\Uninstaller\CT3277370\CT3277370.firefox.uninstall.exe a variant of Win32/Toolbar.Conduit.AR potentially unwanted application cleaned by deleting
J:\C BackUP\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8i9lj4xh.default\extensions\extension21804@extension21804.com\chrome\content\core\xhr.js JS/Toolbar.Crossrider.G potentially unwanted application cleaned by deleting
J:\C BackUP\Documents and Settings\Owner\Application Data\OpenCandy\993C7072D574417DAEA709C2D0354685\frostwire-5.5.3.windows.exe Win32/OpenCandy potentially unsafe application deleted
J:\C BackUP\Documents and Settings\Owner\Local Settings\Application Data\Updater21804\Updater21804.exe a variant of Win32/Toolbar.CrossRider.C potentially unwanted application cleaned by deleting
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\avira_free_antivirus_en(1).exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\avira_free_antivirus_en.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\cbsidlm-tr1_10a-Sticky_Notes-SEO-10573348.exe Win32/DownloadAdmin.G potentially unwanted application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\DVDStyler-2.2-win32.exe Win32/DownWare.W potentially unwanted application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\firstrowsportapp_setup(11).exe Win32/Adware.1ClickDownload.AN application cleaned by deleting
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\FreemakeVideoConverterSetup(1).exe Win32/OpenCandy potentially unsafe application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\FreemakeVideoConverterSetup.exe Win32/OpenCandy potentially unsafe application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\image_editor.exe a variant of Win32/InstallIQ potentially unwanted application cleaned by deleting
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\Java Runtime Environment.exe a variant of Win32/AirAdInstaller.A potentially unwanted application cleaned by deleting
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\msn messenger setup.exe a variant of Win32/Soft32Downloader.C potentially unwanted application cleaned by deleting
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\PDFCreator-1_2_3_setup.exe Win32/Toolbar.Widgi potentially unwanted application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\PDFCreator-1_6_2_setup.exe Win32/InstallMonetizer.AQ potentially unwanted application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\prismpsetup.exe a variant of Win32/Toolbar.Conduit.H potentially unwanted application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\rcsetup143.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\WeatherBugSetup.msi a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application deleted
J:\C BackUP\Documents and Settings\Owner\My Documents\Downloads\Yahoo_Messenger.exe a variant of Win32/AirAdInstaller.A potentially unwanted application cleaned by deleting
J:\C BackUP\GBX XFER\Documents and Settings\All Users\Application Data\APN\APN-Stub\W3IV6-G\APNIC.7z a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted
J:\C BackUP\GBX XFER\Documents and Settings\All Users\Application Data\APN\APN-Stub\W3IV6-G\APNIC.dll a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Documents and Settings\All Users\Application Data\APN\APN-Stub\W3IV6-G\BIT452.tmp a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted
J:\C BackUP\GBX XFER\Documents and Settings\Owner\Application Data\OpenCandy\C0273B25105E4BA5AEA09640D8ABEB50\OCBrowserHelper_1.0.4.106.dll a variant of Win32/OpenCandy.A potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Documents and Settings\Owner\Application Data\OpenCandy\C0273B25105E4BA5AEA09640D8ABEB50\WeCare_ASPCA_ALL_p3v0.exe a variant of Win32/OpenCandy.A potentially unsafe application deleted
J:\C BackUP\GBX XFER\Documents and Settings\Owner\Application Data\OpenCandy\E7E8969C383443DCA3555B159771DA6F\StrongVault.exe multiple threats cleaned by deleting
J:\C BackUP\GBX XFER\Documents and Settings\Owner\Local Settings\Application Data\AskToolbar\avira.cab a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted
J:\C BackUP\GBX XFER\Documents and Settings\Owner\Local Settings\Application Data\AskToolbar\setup.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Documents and Settings\Owner\Local Settings\Application Data\AskToolbar\Downloaded Program Files\AviraBrowserSecurity.dll a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Documents and Settings\Owner\Local Settings\Application Data\AskToolbar\Downloaded Program Files\AviraIDWUPD.dll a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Documents and Settings\Owner\Local Settings\Application Data\AskToolbar\Downloaded Program Files\AviraTrans.dll a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Program Files\Ask.com\AviraBrowserSecurity.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Program Files\Ask.com\GenericAskToolbar.dll a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Program Files\Ask.com\precache.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Program Files\Ask.com\SaUpdate.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Program Files\Ask.com\UpdateTask.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
J:\C BackUP\GBX XFER\Program Files\Ask.com\Updater\Updater.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
J:\C BackUP\Program Files\Avira\AntiVir Desktop\apnic.dll a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
J:\C BackUP\Program Files\Avira\AntiVir Desktop\apnstub.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
J:\C BackUP\Program Files\Avira\AntiVir Desktop\apntoolbarinstaller.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
J:\C BackUP\WINDOWS\Installer\7fc628.msi a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted
X:\Backup 1\Program Files\WinZip\Utils\WzSysScan\WINZIPSS.exe a variant of Win32/Systweak.L potentially unwanted application cleaned by deleting
X:\Backup 1\Program Files\WinZip\Utils\WzSysScan\WINZIPSSHelper.dll a variant of Win32/Systweak.N potentially unwanted application cleaned by deleting
X:\Backup 1\Program Files\WinZip\Utils\WzSysScan\WINZIPSSPrivacyProtector.exe a variant of Win32/Systweak.L potentially unwanted application cleaned by deleting
X:\Backup 1\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegClean.exe a variant of Win32/Systweak.L potentially unwanted application cleaned by deleting
X:\Backup 1\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegistryOptimizer.exe a variant of Win32/Systweak.L potentially unwanted application cleaned by deleting
X:\Backup 1\Program Files\WinZip\Utils\WzSysScan\WINZIPSSSystemCleaner.exe a variant of Win32/Systweak.L potentially unwanted application cleaned by deleting
X:\Backup 1\Program Files (x86)\Avira\AntiVir Desktop\apnic.dll a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
X:\Backup 1\Program Files (x86)\Avira\AntiVir Desktop\apnstub.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\Backup 1\Program Files (x86)\Avira\AntiVir Desktop\apntoolbarinstaller.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
X:\Backup 1\Program Files (x86)\Avira\AntiVir Desktop\Offercast_AVIRAV7_.exe a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application cleaned by deleting
X:\Backup 1\ProgramData\APN\APN-Stub\W3IV6-G\APNIC.7z Win32/Bundled.Toolbar.Ask.B potentially unsafe application deleted
X:\Backup 1\ProgramData\APN\APN-Stub\W3IV6-G\APNIC.dll Win32/Bundled.Toolbar.Ask.B potentially unsafe application cleaned by deleting
X:\Backup 1\Users\Owner\AppData\Roaming\OpenCandy\61CF17018741478E8403393AF824EA9F\OCBrowserHelper_1.0.6.125.exe a variant of Win32/OpenCandy.A potentially unsafe application cleaned by deleting
X:\Backup 1\Users\Owner\Downloads\audacity_app_d153998.exe a variant of Win32/InstallIQ.A potentially unwanted application cleaned by deleting
X:\Backup 1\Users\Owner\Downloads\FreemakeVideoConverterSetup.exe Win32/OpenCandy potentially unsafe application deleted
X:\Backup 1\Users\Owner\Downloads\PDFCreator-1_7_0_setup.exe Win32/InstallMonetizer.AQ potentially unwanted application deleted
X:\Backup 1\Users\Owner\Downloads\SoftonicDownloader_for_macdrive (1).exe Win32/SoftonicDownloader.E potentially unwanted application cleaned by deleting
X:\Backup 1\Users\Owner\Downloads\SoftonicDownloader_for_macdrive.exe Win32/SoftonicDownloader.E potentially unwanted application cleaned by deleting
X:\Backup 1\Users\Owner\Downloads\WeatherBugSetup.exe a variant of Win32/Bundled.Toolbar.Ask.C potentially unsafe application deleted
X:\Backup 1\Users\Owner\Downloads\WinZip175.exe a variant of Win32/OpenInstall potentially unwanted application cleaned by deleting
X:\Backup 1\Windows\Installer\282bb26.msi a variant of Win32/Systweak.L potentially unwanted application deleted
X:\Backup 1\Windows\Installer\4fdb390.msi a variant of Win32/Bundled.Toolbar.Ask.C potentially unsafe application deleted
X:\GBX Xfer\Local Disk\AI_RecycleBin\{35A0AF2A-90DC-4EDC-9DF6-431DB4295BD4}\5\Strongvault\StrongVaultApp.exe a variant of MSIL/Adware.StrongVault.A application cleaned by deleting
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\Application Data\Conduit\Uninstaller\CT3277370\CT3277370.firefox.uninstall.exe a variant of Win32/Toolbar.Conduit.AR potentially unwanted application cleaned by deleting
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8i9lj4xh.default\extensions\extension21804@extension21804.com\chrome\content\core\xhr.js JS/Toolbar.Crossrider.G potentially unwanted application cleaned by deleting
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\Application Data\OpenCandy\993C7072D574417DAEA709C2D0354685\frostwire-5.5.3.windows.exe Win32/OpenCandy potentially unsafe application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\Local Settings\Application Data\Updater21804\Updater21804.exe a variant of Win32/Toolbar.CrossRider.C potentially unwanted application cleaned by deleting
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\Local Settings\temp\AskSLib.dll a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\avira_free_antivirus_en(1).exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\avira_free_antivirus_en.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\cbsidlm-tr1_10a-Sticky_Notes-SEO-10573348.exe Win32/DownloadAdmin.G potentially unwanted application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\ccsetup402.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\disk-defrag-setup.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\DVDStyler-2.2-win32.exe Win32/DownWare.W potentially unwanted application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\firstrowsportapp_setup(11).exe Win32/Adware.1ClickDownload.AN application cleaned by deleting
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\FreemakeVideoConverterSetup (1).exe Win32/OpenCandy potentially unsafe application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\FreemakeVideoConverterSetup(1).exe Win32/OpenCandy potentially unsafe application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\FreemakeVideoConverterSetup.exe Win32/OpenCandy potentially unsafe application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\image_editor.exe a variant of Win32/InstallIQ potentially unwanted application cleaned by deleting
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\msn messenger setup.exe a variant of Win32/Soft32Downloader.C potentially unwanted application cleaned by deleting
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\PDFCreator-1_2_3_setup.exe Win32/Toolbar.Widgi potentially unwanted application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\PDFCreator-1_6_2_setup.exe Win32/InstallMonetizer.AQ potentially unwanted application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\prismpsetup.exe a variant of Win32/Toolbar.Conduit.H potentially unwanted application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\rcsetup143.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\WeatherBugSetup.msi a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application deleted
X:\GBX Xfer\Local Disk\Documents and Settings\Owner\My Documents\Downloads\Yahoo_Messenger.exe a variant of Win32/AirAdInstaller.A potentially unwanted application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\All Users\Application Data\APN\APN-Stub\W3IV6-G\APNIC.7z a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\All Users\Application Data\APN\APN-Stub\W3IV6-G\APNIC.dll a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\All Users\Application Data\APN\APN-Stub\W3IV6-G\BIT452.tmp a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Application Data\OpenCandy\C0273B25105E4BA5AEA09640D8ABEB50\OCBrowserHelper_1.0.4.106.dll a variant of Win32/OpenCandy.A potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Application Data\OpenCandy\C0273B25105E4BA5AEA09640D8ABEB50\WeCare_ASPCA_ALL_p3v0.exe a variant of Win32/OpenCandy.A potentially unsafe application deleted
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Application Data\OpenCandy\E7E8969C383443DCA3555B159771DA6F\StrongVault.exe multiple threats cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\22\504e4dd6-10808373 a variant of Java/TrojanDownloader.Agent.NDJ trojan cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Application Data\AskToolbar\avira.cab a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Application Data\AskToolbar\setup.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Application Data\AskToolbar\Downloaded Program Files\AviraBrowserSecurity.dll a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Application Data\AskToolbar\Downloaded Program Files\AviraIDWUPD.dll a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Application Data\AskToolbar\Downloaded Program Files\AviraTrans.dll a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Temp\ApnIC.dll a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Temp\ApnStub.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Temp\AskSLib.dll a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Temp\FreemakeVideoConverter_3.2.1.1.exe Win32/OpenCandy potentially unsafe application deleted
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Temp\setup.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Temp\Strongvault.exe a variant of MSIL/Adware.StrongVault.A application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\GE1HPWZP\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Program Files\Ask.com\AviraBrowserSecurity.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Program Files\Ask.com\GenericAskToolbar.dll a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Program Files\Ask.com\precache.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Program Files\Ask.com\SaUpdate.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Program Files\Ask.com\UpdateTask.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\GBX XFER\Program Files\Ask.com\Updater\Updater.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\Program Files\Avira\AntiVir Desktop\apnic.dll a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\Program Files\Avira\AntiVir Desktop\apnstub.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\Program Files\Avira\AntiVir Desktop\apntoolbarinstaller.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application cleaned by deleting
X:\GBX Xfer\Local Disk\WINDOWS\Installer\7fc628.msi a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted

 

here it is again, Just FYI, every time I run the FRST my Avira pops up a window that it blocked something. Could that be causing a problem with the Fix scan?

Fix result of Farbar Recovery Scan Tool (x64) Version: 21-08-2016 01
Ran by Devin (21-08-2016 09:47:45) Run:3
Running from C:\Users\Owner\Downloads
Loaded Profiles: Devin & dsw98 (Available Profiles: Devin & dsw98)
Boot Mode: Normal
==============================================

fixlist content:
*****************
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\...\Policies\Explorer: []
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\Explorer: []
ProxyEnable: [S-1-5-21-3884958803-2590088924-408680957-1001] => Proxy is enabled.
ProxyServer: [S-1-5-21-3884958803-2590088924-408680957-1001] => http=127.0.0.1:64550;https=127.0.0.1:64550
ProxyEnable: [S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] => Proxy is enabled.
ProxyServer: [S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] => http=127.0.0.1:64550;https=127.0.0.1:64550
ManualProxies: 1http=127.0.0.1:64550;https=127.0.0.1:64550
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2015-11-25] [not signed]
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll => No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => No File
CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\Windows\SysWOW64\npDeployJava1.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll => No File
C:\Users\dsw98\AppData\Local\Temp\avgnt.exe
C:\Users\Owner\AppData\Local\Temp\avgnt.exe
C:\Users\Owner\AppData\Local\Temp\libeay32.dll
C:\Users\Owner\AppData\Local\Temp\msvcr120.dll
C:\Users\Owner\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Owner\AppData\Local\Temp\sqlite3.dll
CustomCLSID: HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{083C82AE-568E-45dd-A92C-01422CA45760}\InprocServer32 -> C:\Program Files\Autodesk\Revit 2013\Program\APIContext.dll => No File
Task: {2995416E-E5FC-4ADB-9AAA-D0B06D4E0B4B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {4B4EE5EB-4EE0-4A25-87C2-35E13F3D363F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {50E99274-C21E-4D20-BCDF-0852A12E5216} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {536CC161-A44A-4818-8A1F-7B73E893481F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {5872B103-0394-430A-8E0B-C0950BAEB848} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {5C55D16E-FCEA-4980-8909-4FBA4BB0BAB3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {A0A5C9F7-527E-4054-878B-6B26FD0AE969} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A1AAC255-2ACE-4C5E-B890-AF25C6D07BD7} - System32\Tasks\iolo SCU task one => C:\ProgramData\iolo\SCU\sculnch.lnk [Argument = /toaster]
Task: {BB2451A5-EE82-41CF-9295-6352B4E15BFF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {BC486340-39AB-4E5E-A7B6-B33262C60B5D} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {BEDA2435-D0A1-47F2-BFED-EF57CF5DEBBC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {CBF466AD-5279-40B7-BEF3-BE47E8F11A89} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:054203E4 [262]
CMD: ipconfig /flushdns
EmptyTemp:
RemoveProxy:
Hosts:




*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value not found.
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => value not found.
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => value not found.
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value removed successfully
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value not found.
HKU\S-1-5-21-3884958803-2590088924-408680957-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value not found.
HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies\\ => value removed successfully
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\fiddlerhook@fiddler2.com => value not found.
C:\Program Files (x86)\Fiddler2\FiddlerHook => not found.
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2015-11-25] [not signed] => not found
C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => not found.
C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\pdf.dll => not found.
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll => not found.
C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll => not found.
C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => not found.
C:\Windows\SysWOW64\npDeployJava1.dll => not found.
c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll => not found.
"C:\Users\dsw98\AppData\Local\Temp\avgnt.exe" => not found.
C:\Users\Owner\AppData\Local\Temp\avgnt.exe => moved successfully
"C:\Users\Owner\AppData\Local\Temp\libeay32.dll" => not found.
"C:\Users\Owner\AppData\Local\Temp\msvcr120.dll" => not found.
"C:\Users\Owner\AppData\Local\Temp\ReimagePackage.exe" => not found.
"C:\Users\Owner\AppData\Local\Temp\sqlite3.dll" => not found.
HKU\S-1-5-21-3884958803-2590088924-408680957-1001_Classes\CLSID\{083C82AE-568E-45dd-A92C-01422CA45760} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2995416E-E5FC-4ADB-9AAA-D0B06D4E0B4B} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B4EE5EB-4EE0-4A25-87C2-35E13F3D363F} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50E99274-C21E-4D20-BCDF-0852A12E5216} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{536CC161-A44A-4818-8A1F-7B73E893481F} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5872B103-0394-430A-8E0B-C0950BAEB848} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5C55D16E-FCEA-4980-8909-4FBA4BB0BAB3} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A0A5C9F7-527E-4054-878B-6B26FD0AE969} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1AAC255-2ACE-4C5E-B890-AF25C6D07BD7} => key not found.
C:\WINDOWS\System32\Tasks\iolo SCU task one => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iolo SCU task one => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB2451A5-EE82-41CF-9295-6352B4E15BFF} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BC486340-39AB-4E5E-A7B6-B33262C60B5D} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BEDA2435-D0A1-47F2-BFED-EF57CF5DEBBC} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CBF466AD-5279-40B7-BEF3-BE47E8F11A89} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => key not found.
"C:\ProgramData\TEMP" => ":054203E4" ADS not found.

========= ipconfig /flushdns =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========


========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-3884958803-2590088924-408680957-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
HKU\S-1-5-21-3884958803-2590088924-408680957-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-3884958803-2590088924-408680957-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully


========= End of RemoveProxy: =========

"C:\Windows\System32\Drivers\etc\hosts" => Could not move.
Could not restore Hosts.

=========== EmptyTemp: ==========

BITS transfer queue => 567412 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20217242 B
Java, Flash, Steam htmlcache => 643 B
Windows/system/drivers => 4310 B
Edge => 0 B
Chrome => 140061940 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 32882 B
NetworkService => 0 B
Owner => 18878589 B
dsw98 => 0 B

RecycleBin => 0 B
EmptyTemp: => 171.4 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 09:47:47 ====

 

The system seems to be running fine. But the ERR_EMPTY_RESPONSE problem is still there. Are these 2 issues unrelated?