Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Checkup following ESET certificate issues on reddit.com


  • This topic is locked This topic is locked
4 replies to this topic

#1 HighTide1

HighTide1

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:06:58 PM

Posted 18 September 2017 - 06:16 PM

Hello everyone. Following my worries over any possible malware infection, I've followed quietman7's advice and run FRST on my computer. The log files for them are as follows:



BC AdBot (Login to Remove)

 


#2 HighTide1

HighTide1
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:06:58 PM

Posted 18 September 2017 - 06:18 PM

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-09-2017 01
Ran by ProBook (administrator) on PROBOOK-HP (18-09-2017 18:56:44)
Running from C:\Users\ProBook\Downloads
Loaded Profiles: ProBook (Available Profiles: ProBook)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(ESET) C:\Program Files\ESET\ESET Internet Security\ekrn.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
() C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2018\Moldflow\bin\mitsijm.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(ArcSoft, Inc.) C:\Windows\SysWOW64\ArcVCapRender\uArcCapture.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(National Instruments Corporation) C:\Windows\SysWOW64\nipalsm.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(National Instruments Corporation) C:\Windows\SysWOW64\nipxism.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(ESET) C:\Program Files\ESET\ESET Internet Security\egui.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Registry (Whitelisted) ====================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM-x32\...\Run: [] => [X]
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP: C:\Windows\SysWOW64\DeviceNP.dll [2012-01-31] (Hewlett-Packard Company)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-25] (Qualcomm®Atheros®)
HKU\S-1-5-21-2532254925-3227192101-289463352-1001\...\MountPoints2: {68be8b80-7542-11e3-9cd3-2016d83e34b4} - H:\LaunchU3.exe -a
HKU\S-1-5-21-2532254925-3227192101-289463352-1001\...\MountPoints2: {c4de4b22-d949-11e4-a109-b4b52f7f9964} - D:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-2532254925-3227192101-289463352-1001\...\MountPoints2: {d09a9ff2-f263-11e6-bd57-b4b52f7f9964} - V:\SETUP.EXE
HKU\S-1-5-18\...\Run: [EEDSpeedLauncher] => rundll32.exe C:\windows\system32\eed_ec.dll,SpeedLauncher
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2007576 2017-02-03] (Autodesk, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
GroupPolicy: Restriction <==== ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Winsock: Catalog5 10 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [24280 2010-06-23] (National Instruments Corporation)
Winsock: Catalog5-x64 10 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [26328 2010-06-23] (National Instruments Corporation)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76 75.75.76.76
Tcpip\..\Interfaces\{BC78A225-DE81-40FD-B7EB-66D094C16D53}: [DhcpNameServer] 75.75.75.75 75.75.76.76 75.75.76.76
Tcpip\..\Interfaces\{EBDBD776-BDCF-4C9F-B02B-E5C93A8DB775}: [DhcpNameServer] 75.75.75.75 75.75.76.76 75.75.76.76
 
Internet Explorer:
==================
HKU\S-1-5-21-2532254925-3227192101-289463352-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPCOM/1
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-08-20] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-23] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2017-03-14] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-23] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: Dell Toolbar -> {09B71986-2AC5-482d-B6CB-42EA34F4F85B} -> C:\Program Files\Dell Printable Web\toolband.dll [2008-12-10] ()
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-08-07] (Hewlett-Packard)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-25] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
Toolbar: HKLM-x32 - Dell Toolbar - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll [2008-12-10] ()
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-2532254925-3227192101-289463352-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-19] (Microsoft Corporation)
 
FireFox:
========
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-01-29] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll [2014-12-11] ()
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-23] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll [2014-12-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-23] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-11-18] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-11-18] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-07-29] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin HKU\S-1-5-21-2532254925-3227192101-289463352-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\ProBook\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-18] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2532254925-3227192101-289463352-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-01-01] ()
 
Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> lp
CHR Profile: C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default [2017-08-23]
CHR Extension: (Google Docs) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-03]
CHR Extension: (Google Drive) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-29]
CHR Extension: (MindMeister) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2017-08-21]
CHR Extension: (YouTube) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (Adblock Plus) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-08-20]
CHR Extension: (Google Search) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Google Docs Offline) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2017-08-21]
CHR Extension: (HP Network Check Launcher) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2017-02-11]
CHR Extension: (Little Alchemy) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2016-02-13]
CHR Extension: (Google Classroom) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\mfhehppjhmmnlfbbopchdfldgimhfhfk [2014-10-29]
CHR Extension: (Flashcontrol) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\mfidmkgnfgnkihnjeklbekckimkipmoe [2017-08-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-21]
CHR Extension: (Gmail) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-21]
CHR Profile: C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default [2017-09-18]
CHR Extension: (Google Slides) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-08-23]
CHR Extension: (Google Docs) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-08-23]
CHR Extension: (Google Drive) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-23]
CHR Extension: (MindMeister) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2017-08-23]
CHR Extension: (YouTube) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-23]
CHR Extension: (Adblock Plus) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-08-23]
CHR Extension: (Google Sheets) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-08-23]
CHR Extension: (Google Docs Offline) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-23]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2017-09-14]
CHR Extension: (Little Alchemy) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2017-08-23]
CHR Extension: (Google Classroom) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhehppjhmmnlfbbopchdfldgimhfhfk [2017-08-23]
CHR Extension: (Flashcontrol) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidmkgnfgnkihnjeklbekckimkipmoe [2017-08-23]
CHR Extension: (Chrome Web Store Payments) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Gmail) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-23]
CHR Extension: (Chrome Media Router) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-23]
CHR Profile: C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\System Profile [2017-08-21]
CHR Extension: (Google Slides) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-01]
CHR Extension: (Google Docs) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-01]
CHR Extension: (Google Drive) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-01]
CHR Extension: (YouTube) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-01]
CHR Extension: (Google Search) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-01]
CHR Extension: (Google Sheets) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-01]
CHR Extension: (Gmail) - C:\Users\ProBook\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1353208 2017-06-15] (Autodesk Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-25] (Windows ® Win 7 DDK provider) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042544 2017-03-14] (Microsoft Corporation)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [493904 2012-04-28] (DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Internet Security\ekrn.exe [2625368 2017-06-13] (ESET)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [477088 2012-09-04] (Hewlett-Packard Company)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [528096 2014-06-08] (Futuremark)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [487488 2017-08-23] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8163392 2017-08-23] (GOG.com)
S2 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-17] (Hewlett-Packard)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [321896 2017-07-06] (HP Inc.)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131032 2013-11-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165336 2013-11-18] (Intel Corporation)
R2 LkCitadelServer; C:\windows\SysWOW64\lkcitdl.exe [695136 2010-03-05] (National Instruments, Inc.)
R2 lkClassAds; C:\windows\SysWOW64\lkads.exe [45168 2010-06-16] (National Instruments Corporation)
R2 lkTimeSync; C:\windows\SysWOW64\lktsrv.exe [55416 2010-06-16] (National Instruments Corporation)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [3894760 2017-06-26] (Paramount Software UK Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-21] (Malwarebytes)
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2013-03-27] () [File not signed]
R2 mitsijm2018; C:\Program Files\Autodesk\Inventor 2018\Moldflow\bin\mitsijm.exe [967664 2016-09-25] (Autodesk, Inc.)
R2 mxssvr; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [12696 2010-06-18] (National Instruments Corporation)
R2 nidevldu; C:\windows\SysWOW64\nipalsm.exe [12696 2010-03-24] (National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [360568 2010-06-16] (National Instruments Corporation)
S4 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1007616 2010-05-17] (Macrovision Corporation) [File not signed]
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [193712 2010-06-23] (National Instruments Corporation)
R2 nipxirmu; C:\windows\SysWOW64\nipxism.exe [18584 2010-06-14] (National Instruments Corporation)
R2 niSvcLoc; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [47768 2010-06-22] (National Instruments Corporation)
R2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [752304 2010-06-17] (National Instruments Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1719552 2017-02-15] (PDF Complete Inc)
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [75136 2015-01-01] ()
R2 Samsung Network Fax Server; C:\windows\system32\spool\drivers\x64\3\NetFaxServer64.exe [801472 2015-03-10] (Samsung Electronics Co., Ltd.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2013-03-04] (IDT, Inc.) [File not signed]
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [498352 2012-04-05] (ArcSoft, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros) [File not signed]
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 amdkmpfd; C:\windows\System32\DRIVERS\amdkmpfd.sys [32896 2012-03-19] (Advanced Micro Devices, Inc.)
R3 ARCVCAM; C:\windows\System32\DRIVERS\ArcSoftVCapture.sys [42816 2012-02-02] (ArcSoft, Inc.)
S3 BTATH_LWFLT; C:\windows\System32\DRIVERS\btath_lwflt.sys [77464 2013-09-25] (Qualcomm Atheros)
S3 DAMDrv; C:\windows\System32\DRIVERS\DAMDrv64.sys [64832 2012-11-09] (Hewlett-Packard Company)
R1 eamonm; C:\windows\System32\DRIVERS\eamonm.sys [132824 2017-06-22] (ESET)
R0 edevmon; C:\windows\System32\DRIVERS\edevmon.sys [107344 2017-05-04] (ESET)
R1 ehdrv; C:\windows\System32\DRIVERS\ehdrv.sys [178056 2017-05-04] (ESET)
R2 ekbdflt; C:\windows\System32\DRIVERS\ekbdflt.sys [50752 2017-05-04] (ESET)
R1 epfw; C:\windows\System32\DRIVERS\epfw.sys [78192 2017-05-04] (ESET)
R1 EpfwLWF; C:\windows\System32\DRIVERS\EpfwLWF.sys [60544 2017-05-04] (ESET)
R1 epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [101648 2017-05-04] (ESET)
R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [77440 2017-08-25] ()
S3 lvalarmk; C:\windows\system32\drivers\lvalarmk.sys [25224 2008-12-05] (National Instruments Corporation)
R2 MBAMChameleon; C:\windows\system32\drivers\MBAMChameleon.sys [192960 2017-08-25] (Malwarebytes)
S3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [101824 2017-09-06] (Malwarebytes)
S3 MBAMProtection; C:\windows\system32\drivers\mbam.sys [45472 2017-09-06] (Malwarebytes)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [253888 2017-09-18] (Malwarebytes)
S3 MBAMWebProtection; C:\windows\system32\drivers\mwac.sys [84256 2017-09-07] (Malwarebytes)
S3 mbedComposite; C:\windows\System32\DRIVERS\mbedComposite_x64.sys [49200 2009-09-30] (ARM Ltd)
S3 mbedSerial_x64; C:\windows\System32\DRIVERS\mbedSerial_x64.sys [61488 2009-09-30] (ARM Ltd)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [91432 2013-03-27] (McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158760 2013-03-27] (McAfee, Inc.)
S3 ni1006k; C:\windows\system32\drivers\ni1006k.sys [30800 2010-06-21] (National Instruments Corporation)
S3 ni1045k; C:\windows\system32\drivers\ni1045kl.sys [11856 2010-06-21] (National Instruments Corporation)
S3 ni1065k; C:\windows\system32\drivers\ni1065k.sys [26704 2010-06-21] (National Instruments Corporation)
S3 nicdrk; C:\windows\system32\drivers\nicdrkl.sys [11864 2009-07-17] (National Instruments Corporation)
S3 nicmrk; C:\windows\system32\drivers\nicmrkl.sys [11952 2010-07-01] (National Instruments Corporation)
S3 nicsrk; C:\windows\system32\drivers\nicsrkl.sys [11920 2010-07-01] (National Instruments Corporation)
R3 nidimk; C:\windows\system32\drivers\nidimkl.sys [11944 2010-06-11] (National Instruments Corporation)
S3 nidmxfk; C:\windows\system32\drivers\nidmxfkl.sys [11848 2010-02-25] (National Instruments Corporation)
S3 nidsark; C:\windows\system32\drivers\nidsarkl.sys [11856 2010-02-06] (National Instruments Corporation)
S3 niemrk; C:\windows\system32\drivers\niemrkl.sys [11920 2010-07-01] (National Instruments Corporation)
S3 niesrk; C:\windows\system32\drivers\niesrkl.sys [11920 2010-06-15] (National Instruments Corporation)
S3 nifslk; C:\windows\system32\drivers\nifslkl.sys [11864 2010-02-02] (National Instruments Corporation)
R3 nimdbgk; C:\windows\system32\drivers\nimdbgkl.sys [11936 2010-06-11] (National Instruments Corporation)
R3 nimru2k; C:\windows\system32\drivers\nimru2kl.sys [11872 2009-08-24] (National Instruments Corporation)
S3 nimsdrk; C:\windows\system32\drivers\nimsdrkl.sys [12416 2010-02-02] (National Instruments Corporation)
R3 nimstsk; C:\windows\system32\drivers\nimstskl.sys [12384 2010-02-02] (National Instruments Corporation)
R3 nimxdfk; C:\windows\system32\drivers\nimxdfkl.sys [11928 2010-06-18] (National Instruments Corporation)
S3 nimxpk; C:\windows\system32\drivers\nimxpkl.sys [12392 2010-02-02] (National Instruments Corporation)
S3 ninshsdk; C:\windows\system32\drivers\ninshsdkl.sys [11872 2010-02-05] (National Instruments Corporation)
S3 niorbk; C:\windows\system32\drivers\niorbkl.sys [11856 2009-06-14] (National Instruments Corporation)
S3 nipalfwedl; C:\windows\System32\drivers\nipalfwedl.sys [12992 2010-06-02] (National Instruments Corporation)
R0 NIPALK; C:\windows\System32\drivers\nipalk.sys [892056 2010-06-02] (National Instruments Corporation)
S3 nipalusbedl; C:\windows\System32\drivers\nipalusbedl.sys [12992 2010-06-02] (National Instruments Corporation)
R0 nipbcfk; C:\windows\System32\drivers\nipbcfk.sys [16984 2010-03-24] (National Instruments Corporation)
R0 nipxibaf; C:\windows\System32\drivers\nipxibaf.sys [82568 2010-06-21] (National Instruments Corporation)
R0 nipxibrc; C:\windows\System32\drivers\nipxibrc.sys [54424 2010-06-21] (National Instruments Corporation)
S3 nipxigpk; C:\windows\system32\drivers\nipxigpk.sys [22680 2010-06-14] (National Instruments Corporation)
R2 nipxirmk; C:\windows\system32\drivers\nipxirmkl.sys [11928 2010-06-14] (National Instruments Corporation)
S3 niraptrk; C:\windows\system32\drivers\niraptrkl.sys [11912 2010-07-01] (National Instruments Corporation)
S3 niraptrkw; C:\windows\System32\DRIVERS\niraptrkw.sys [11400 2010-07-01] (National Instruments Corporation)
S3 niscdk; C:\windows\system32\drivers\niscdkl.sys [11888 2009-07-14] (National Instruments Corporation)
S3 nisdigk; C:\windows\system32\drivers\nisdigkl.sys [11864 2010-02-25] (National Instruments Corporation)
S3 nisftk; C:\windows\system32\drivers\nisftkl.sys [11856 2010-02-05] (National Instruments Corporation)
S3 nispdk; C:\windows\system32\drivers\nispdkl.sys [11888 2009-07-14] (National Instruments Corporation)
S3 nissrk; C:\windows\system32\drivers\nissrkl.sys [11920 2010-06-15] (National Instruments Corporation)
S3 nistc2k; C:\windows\system32\drivers\nistc2kl.sys [11824 2009-01-05] (National Instruments Corporation)
S3 nistc3rk; C:\windows\system32\drivers\nistc3rkl.sys [11912 2010-05-03] (National Instruments Corporation)
S3 nistcrk; C:\windows\system32\drivers\nistcrkl.sys [11872 2009-08-31] (National Instruments Corporation)
S3 niswdk; C:\windows\system32\drivers\niswdkl.sys [11848 2009-09-01] (National Instruments Corporation)
S3 nitiork; C:\windows\system32\drivers\nitiorkl.sys [11872 2010-02-06] (National Instruments Corporation)
S3 niufurk; C:\windows\system32\drivers\niufurkl.sys [11944 2010-07-01] (National Instruments Corporation)
S3 niufurkw; C:\windows\System32\DRIVERS\niufurkw.sys [11432 2010-07-01] (National Instruments Corporation)
S3 niwfrk; C:\windows\system32\drivers\niwfrkl.sys [11920 2010-06-15] (National Instruments Corporation)
S3 nixsrk; C:\windows\system32\drivers\nixsrkl.sys [11920 2010-07-01] (National Instruments Corporation)
S3 PSMounterEx; C:\Windows\system32\drivers\psmounterex.sys [168968 2015-10-12] (Windows ® Win 7 DDK provider)
S3 PSVolAcc; C:\Windows\System32\Drivers\PSVolAcc.sys [12760 2014-07-21] (Paramount Software UK Ltd)
S3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-11-18] (Synaptics Incorporated)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [2621128 2015-07-16] (Sonix Tech. Co., Ltd.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [37624 2014-11-30] ()
R3 VBoxNetAdp; C:\windows\System32\DRIVERS\VBoxNetAdp6.sys [196040 2017-07-27] (Oracle Corporation)
R1 VBoxNetLwf; C:\windows\System32\DRIVERS\VBoxNetLwf.sys [206976 2017-07-27] (Oracle Corporation)
S3 VBoxUSB; C:\windows\System32\Drivers\VBoxUSB.sys [137920 2017-01-16] (Oracle Corporation)
S3 vpnva; C:\windows\System32\DRIVERS\vpnva64-6.sys [52592 2016-07-10] (Cisco Systems, Inc.)
S3 cpuz136; \??\C:\windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 cpuz137; \??\C:\windows\TEMP\cpuz137\cpuz137_x64.sys [X]
S3 usb6xxxk; \??\C:\windows\system32\drivers\usb6xxxkl.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-09-18 18:56 - 2017-09-18 19:00 - 000035639 _____ C:\Users\ProBook\Downloads\FRST.txt
2017-09-18 18:56 - 2017-09-18 18:56 - 000000000 ____D C:\FRST
2017-09-18 18:55 - 2017-09-18 18:56 - 002399744 _____ (Farbar) C:\Users\ProBook\Downloads\FRST64.exe
2017-09-18 18:16 - 2015-07-09 13:57 - 000193536 _____ (Microsoft Corporation) C:\windows\perfc.dll
2017-09-18 18:16 - 2015-07-09 13:57 - 000193536 _____ (Microsoft Corporation) C:\windows\perfc.dat
2017-09-18 18:15 - 2015-07-09 13:57 - 000193536 ____R (Microsoft Corporation) C:\windows\perfc
2017-09-18 17:25 - 2017-09-18 17:26 - 000001078 _____ C:\windows\system32dbgraw.bmp
2017-09-17 19:09 - 2017-09-17 19:09 - 002599506 _____ C:\Users\ProBook\Downloads\certificate_notice.bmp
2017-09-14 18:08 - 2017-09-14 18:08 - 009390672 _____ (Piriform Ltd) C:\Users\ProBook\Downloads\ccsetup529.exe
2017-09-14 18:00 - 2017-09-14 18:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-09-14 18:00 - 2017-09-14 18:00 - 000000000 ____D C:\ProgramData\ESET
2017-09-14 17:43 - 2017-09-18 17:49 - 000000000 ____D C:\AdwCleaner
2017-09-14 17:42 - 2017-09-14 17:42 - 008182736 _____ (Malwarebytes) C:\Users\ProBook\Downloads\AdwCleaner.exe
2017-09-13 21:17 - 2017-09-13 21:17 - 000088944 _____ C:\Users\ProBook\Downloads\Unofficial Transcript.pdf
2017-09-13 17:15 - 2017-08-19 11:28 - 000197120 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2017-09-13 17:15 - 2017-08-19 11:10 - 000180224 _____ (Microsoft Corporation) C:\windows\SysWOW64\shdocvw.dll
2017-09-13 17:15 - 2017-08-16 11:29 - 000806912 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2017-09-13 17:15 - 2017-08-16 11:10 - 000629760 _____ (Microsoft Corporation) C:\windows\SysWOW64\usp10.dll
2017-09-13 17:15 - 2017-08-16 10:57 - 003224576 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2017-09-13 17:15 - 2017-08-15 21:10 - 000395976 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2017-09-13 17:15 - 2017-08-15 20:25 - 000347336 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2017-09-13 17:15 - 2017-08-15 11:29 - 014182400 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2017-09-13 17:15 - 2017-08-15 11:29 - 001867264 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2017-09-13 17:15 - 2017-08-15 11:10 - 012880896 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2017-09-13 17:15 - 2017-08-15 11:10 - 001499648 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2017-09-13 17:15 - 2017-08-15 10:06 - 015260160 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2017-09-13 17:15 - 2017-08-15 10:01 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2017-09-13 17:15 - 2017-08-15 10:01 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2017-09-13 17:15 - 2017-08-15 10:01 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2017-09-13 17:15 - 2017-08-15 09:58 - 013673984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2017-09-13 17:15 - 2017-08-14 13:35 - 003203584 _____ (Microsoft Corporation) C:\windows\system32\mmcndmgr.dll
2017-09-13 17:15 - 2017-08-14 13:35 - 002150912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mmcndmgr.dll
2017-09-13 17:15 - 2017-08-14 13:35 - 000355328 _____ (Microsoft Corporation) C:\windows\system32\mmcbase.dll
2017-09-13 17:15 - 2017-08-14 13:35 - 000303104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mmcbase.dll
2017-09-13 17:15 - 2017-08-14 13:35 - 000172544 _____ (Microsoft Corporation) C:\windows\SysWOW64\cic.dll
2017-09-13 17:15 - 2017-08-14 13:35 - 000131072 _____ (Microsoft Corporation) C:\windows\system32\mmcshext.dll
2017-09-13 17:15 - 2017-08-14 13:35 - 000128512 _____ (Microsoft Corporation) C:\windows\SysWOW64\mmcshext.dll
2017-09-13 17:15 - 2017-08-14 13:34 - 000211968 _____ (Microsoft Corporation) C:\windows\system32\cic.dll
2017-09-13 17:15 - 2017-08-13 17:37 - 002144256 _____ (Microsoft Corporation) C:\windows\system32\mmc.exe
2017-09-13 17:15 - 2017-08-13 17:30 - 001401344 _____ (Microsoft Corporation) C:\windows\SysWOW64\mmc.exe
2017-09-13 17:15 - 2017-08-13 14:58 - 025730560 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2017-09-13 17:15 - 2017-08-13 13:24 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2017-09-13 17:15 - 2017-08-13 13:24 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2017-09-13 17:15 - 2017-08-13 13:06 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2017-09-13 17:15 - 2017-08-13 13:05 - 000576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2017-09-13 17:15 - 2017-08-13 13:05 - 000417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2017-09-13 17:15 - 2017-08-13 13:05 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2017-09-13 17:15 - 2017-08-13 13:05 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2017-09-13 17:15 - 2017-08-13 13:04 - 002899968 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2017-09-13 17:15 - 2017-08-13 12:56 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2017-09-13 17:15 - 2017-08-13 12:55 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2017-09-13 17:15 - 2017-08-13 12:54 - 020269056 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2017-09-13 17:15 - 2017-08-13 12:52 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2017-09-13 17:15 - 2017-08-13 12:51 - 005981696 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2017-09-13 17:15 - 2017-08-13 12:51 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2017-09-13 17:15 - 2017-08-13 12:51 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2017-09-13 17:15 - 2017-08-13 12:50 - 000817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2017-09-13 17:15 - 2017-08-13 12:50 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2017-09-13 17:15 - 2017-08-13 12:46 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2017-09-13 17:15 - 2017-08-13 12:41 - 000968704 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2017-09-13 17:15 - 2017-08-13 12:38 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2017-09-13 17:15 - 2017-08-13 12:30 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2017-09-13 17:15 - 2017-08-13 12:29 - 000499200 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2017-09-13 17:15 - 2017-08-13 12:29 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2017-09-13 17:15 - 2017-08-13 12:29 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2017-09-13 17:15 - 2017-08-13 12:29 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2017-09-13 17:15 - 2017-08-13 12:29 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2017-09-13 17:15 - 2017-08-13 12:28 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2017-09-13 17:15 - 2017-08-13 12:27 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2017-09-13 17:15 - 2017-08-13 12:24 - 002291200 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2017-09-13 17:15 - 2017-08-13 12:24 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2017-09-13 17:15 - 2017-08-13 12:23 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2017-09-13 17:15 - 2017-08-13 12:22 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2017-09-13 17:15 - 2017-08-13 12:21 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2017-09-13 17:15 - 2017-08-13 12:20 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2017-09-13 17:15 - 2017-08-13 12:19 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2017-09-13 17:15 - 2017-08-13 12:18 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2017-09-13 17:15 - 2017-08-13 12:17 - 000663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2017-09-13 17:15 - 2017-08-13 12:17 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2017-09-13 17:15 - 2017-08-13 12:17 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2017-09-13 17:15 - 2017-08-13 12:07 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2017-09-13 17:15 - 2017-08-13 12:04 - 000807936 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2017-09-13 17:15 - 2017-08-13 12:04 - 000726528 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2017-09-13 17:15 - 2017-08-13 12:02 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2017-09-13 17:15 - 2017-08-13 12:01 - 002134528 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2017-09-13 17:15 - 2017-08-13 12:01 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2017-09-13 17:15 - 2017-08-13 12:01 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-09-13 17:15 - 2017-08-13 12:00 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2017-09-13 17:15 - 2017-08-13 11:57 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2017-09-13 17:15 - 2017-08-13 11:53 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2017-09-13 17:15 - 2017-08-13 11:48 - 004547072 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2017-09-13 17:15 - 2017-08-13 11:46 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2017-09-13 17:15 - 2017-08-13 11:44 - 000694784 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2017-09-13 17:15 - 2017-08-13 11:43 - 002058752 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2017-09-13 17:15 - 2017-08-13 11:43 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2017-09-13 17:15 - 2017-08-13 11:40 - 003241472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2017-09-13 17:15 - 2017-08-13 11:27 - 001544704 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2017-09-13 17:15 - 2017-08-13 11:18 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2017-09-13 17:15 - 2017-08-13 11:17 - 002767872 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2017-09-13 17:15 - 2017-08-13 11:14 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2017-09-13 17:15 - 2017-08-13 11:13 - 001314816 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2017-09-13 17:15 - 2017-08-11 02:42 - 000631176 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2017-09-13 17:15 - 2017-08-11 02:38 - 005547752 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2017-09-13 17:15 - 2017-08-11 02:38 - 000706792 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2017-09-13 17:15 - 2017-08-11 02:38 - 000154856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2017-09-13 17:15 - 2017-08-11 02:38 - 000095464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2017-09-13 17:15 - 2017-08-11 02:36 - 001732864 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 002065408 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 001212928 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000757248 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000512000 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000346112 _____ (Microsoft Corporation) C:\windows\system32\ntprint.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000313856 _____ (Microsoft Corporation) C:\windows\system32\Wldap32.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\nsisvc.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000025600 _____ (Microsoft Corporation) C:\windows\system32\winnsi.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2017-09-13 17:15 - 2017-08-11 02:35 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\nsi.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 001460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 001163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000971776 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000731648 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000166400 _____ (Microsoft Corporation) C:\windows\system32\inetpp.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\inetppui.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:24 - 004001000 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2017-09-13 17:15 - 2017-08-11 02:24 - 003945704 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2017-09-13 17:15 - 2017-08-11 02:21 - 001314112 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2017-09-13 17:15 - 2017-08-11 02:20 - 000071680 _____ C:\windows\system32\PrintBrmUi.exe
2017-09-13 17:15 - 2017-08-11 02:20 - 000061952 _____ (Microsoft Corporation) C:\windows\system32\ntprint.exe
2017-09-13 17:15 - 2017-08-11 02:20 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\wpnpinst.exe
2017-09-13 17:15 - 2017-08-11 02:19 - 001417728 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000554496 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000497664 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32spl.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000299008 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntprint.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000275456 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000271360 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wldap32.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000016384 _____ (Microsoft Corporation) C:\windows\SysWOW64\winnsi.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000008704 _____ (Microsoft Corporation) C:\windows\SysWOW64\nsi.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 02:12 - 000025088 _____ (Microsoft Corporation) C:\windows\system32\netbtugc.exe
2017-09-13 17:15 - 2017-08-11 02:09 - 000061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntprint.exe
2017-09-13 17:15 - 2017-08-11 02:07 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2017-09-13 17:15 - 2017-08-11 02:07 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2017-09-13 17:15 - 2017-08-11 02:07 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2017-09-13 17:15 - 2017-08-11 02:06 - 000064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2017-09-13 17:15 - 2017-08-11 02:03 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2017-09-13 17:15 - 2017-08-11 02:03 - 000026624 _____ (Microsoft Corporation) C:\windows\SysWOW64\netbtugc.exe
2017-09-13 17:15 - 2017-08-11 02:02 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2017-09-13 17:15 - 2017-08-11 02:01 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2017-09-13 17:15 - 2017-08-11 02:00 - 000262656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netbt.sys
2017-09-13 17:15 - 2017-08-11 02:00 - 000159744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2017-09-13 17:15 - 2017-08-11 02:00 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2017-09-13 17:15 - 2017-08-11 01:59 - 000460800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2017-09-13 17:15 - 2017-08-11 01:59 - 000405504 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2017-09-13 17:15 - 2017-08-11 01:59 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2017-09-13 17:15 - 2017-08-11 01:59 - 000168448 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2017-09-13 17:15 - 2017-08-11 01:59 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2017-09-13 17:15 - 2017-08-11 01:58 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2017-09-13 17:15 - 2017-08-11 01:58 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2017-09-13 17:15 - 2017-08-11 01:58 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\Drivers\nsiproxy.sys
2017-09-13 17:15 - 2017-08-11 01:56 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2017-09-13 17:15 - 2017-08-11 01:56 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2017-09-13 17:15 - 2017-08-11 01:56 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2017-09-13 17:15 - 2017-08-11 01:56 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2017-09-13 17:15 - 2017-08-11 01:55 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2017-09-13 17:15 - 2017-08-11 01:55 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 01:55 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 01:55 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-09-13 17:15 - 2017-08-11 01:55 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-09-07 20:54 - 2017-09-07 23:12 - 000000000 ____D C:\Users\ProBook\AppData\Roaming\Electrum
2017-09-07 20:19 - 2017-09-07 20:19 - 026955209 _____ C:\Users\ProBook\Downloads\electrum-2.9.3.exe
2017-09-06 21:52 - 2017-09-06 21:52 - 000174928 _____ C:\Users\ProBook\Downloads\sfs_cybercorps_application_2016-17_fillable_form.pdf
2017-09-06 21:52 - 2017-09-06 21:52 - 000121885 _____ C:\Users\ProBook\Downloads\sfs_agreement_-_final_2012.pdf
2017-09-05 21:41 - 2017-09-05 21:41 - 000002497 _____ C:\Users\ProBook\Documents\reg_back.7z
2017-08-26 21:07 - 2017-08-26 21:07 - 001804688 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2017-08-26 21:07 - 2017-08-26 21:07 - 000740440 _____ (Synaptics Incorporated) C:\windows\system32\SynCOM.dll
2017-08-26 21:07 - 2017-08-26 21:07 - 000572504 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\SynTP.sys
2017-08-26 21:07 - 2017-08-26 21:07 - 000439904 _____ (Synaptics Incorporated) C:\windows\system32\SynTPCo19.dll
2017-08-26 21:07 - 2017-08-26 21:07 - 000417880 _____ (Synaptics Incorporated) C:\windows\SysWOW64\SynCom.dll
2017-08-26 21:07 - 2017-08-26 21:07 - 000269400 _____ (Synaptics Incorporated) C:\windows\system32\SynTPAPI.dll
2017-08-26 21:07 - 2017-08-26 21:07 - 000186976 _____ (Synaptics Incorporated) C:\windows\SysWOW64\SynTPCom.dll
2017-08-24 20:08 - 2017-08-24 20:08 - 000000000 ____D C:\Users\ProBook\Documents\3dsMax
2017-08-24 19:35 - 2017-08-24 19:35 - 000000753 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EAGLE.lnk
2017-08-24 19:23 - 2017-08-24 19:23 - 000001031 _____ C:\Users\Public\Desktop\WinDirStat.lnk
2017-08-24 19:23 - 2017-08-24 19:23 - 000001031 _____ C:\ProgramData\Desktop\WinDirStat.lnk
2017-08-24 19:23 - 2017-08-24 19:23 - 000000000 ____D C:\Users\ProBook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat
2017-08-24 19:23 - 2017-08-24 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat
2017-08-24 19:23 - 2017-08-24 19:23 - 000000000 ____D C:\Program Files (x86)\WinDirStat
2017-08-24 19:21 - 2017-08-24 19:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinCDEmu
2017-08-24 19:20 - 2017-08-24 20:13 - 000000000 ____D C:\Users\ProBook\Desktop\Autodesk
2017-08-24 18:50 - 2017-08-24 18:50 - 000000000 ____D C:\Users\Public\Documents\.forever
2017-08-24 18:50 - 2017-08-24 18:50 - 000000000 ____D C:\ProgramData\Documents\.forever
2017-08-24 18:22 - 2017-08-24 18:22 - 000000000 ____D C:\Program Files\Common Files\Macrovision Shared
2017-08-24 18:20 - 2017-08-24 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2017-08-24 17:14 - 2017-08-24 19:43 - 000000000 ____D C:\Autodesk
2017-08-23 23:26 - 2017-08-23 23:26 - 000110144 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge-64.dll
2017-08-23 23:26 - 2017-08-23 23:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-08-23 23:24 - 2017-08-23 23:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2017-08-23 22:06 - 2017-08-23 22:06 - 000000000 ____D C:\Users\ProBook\AppData\Local\GOG.com
2017-08-23 21:00 - 2017-08-23 21:00 - 000000950 _____ C:\Users\Public\Desktop\PuTTY.lnk
2017-08-23 21:00 - 2017-08-23 21:00 - 000000950 _____ C:\ProgramData\Desktop\PuTTY.lnk
2017-08-23 21:00 - 2017-08-23 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-08-23 21:00 - 2017-08-23 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PuTTY (64-bit)
2017-08-23 21:00 - 2017-08-23 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-08-23 21:00 - 2017-08-23 21:00 - 000000000 ____D C:\Program Files\PuTTY
2017-08-23 21:00 - 2017-08-23 21:00 - 000000000 ____D C:\Program Files\7-Zip
2017-08-23 20:27 - 2017-08-23 20:27 - 000000000 ____D C:\Users\ProBook\AppData\LocalLow\YandereDev
2017-08-23 20:23 - 2017-08-23 20:23 - 000001076 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2017-08-23 20:23 - 2017-08-23 20:23 - 000001076 _____ C:\ProgramData\Desktop\Oracle VM VirtualBox.lnk
2017-08-23 20:23 - 2017-08-23 20:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2017-08-23 20:22 - 2017-08-23 20:22 - 000000000 ____D C:\Program Files\Oracle
2017-08-23 20:22 - 2017-07-27 13:34 - 000965984 _____ (Oracle Corporation) C:\windows\system32\Drivers\VBoxDrv.sys
2017-08-23 20:22 - 2017-07-27 13:33 - 000149816 _____ (Oracle Corporation) C:\windows\system32\Drivers\VBoxUSBMon.sys
2017-08-23 19:17 - 2017-08-23 19:18 - 001857536 _____ (Oriko Industries) C:\Users\ProBook\Downloads\YandereSimLauncher.exe
2017-08-23 19:10 - 2017-09-07 04:32 - 000084256 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys
2017-08-23 19:10 - 2017-09-06 18:19 - 000101824 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt.sys
2017-08-23 19:10 - 2017-09-06 18:19 - 000045472 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2017-08-23 19:10 - 2017-08-25 15:01 - 000192960 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMChameleon.sys
2017-08-23 19:09 - 2017-09-18 17:27 - 000253888 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2017-08-23 19:09 - 2017-08-25 15:01 - 000077440 _____ C:\windows\system32\Drivers\mbae64.sys
2017-08-23 19:09 - 2017-08-23 19:09 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-08-23 19:09 - 2017-08-23 19:09 - 000001867 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2017-08-23 19:09 - 2017-08-23 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-08-23 19:08 - 2017-08-23 19:08 - 000000000 ____D C:\Program Files\Malwarebytes
2017-08-23 18:29 - 2017-09-18 17:28 - 000003198 _____ C:\windows\System32\Tasks\HPCeeScheduleForProBook
2017-08-23 18:29 - 2017-09-18 17:28 - 000000340 _____ C:\windows\Tasks\HPCeeScheduleForProBook.job
2017-08-21 19:55 - 2017-08-21 19:55 - 000000000 ____D C:\Users\ProBook\Documents\Reflect
2017-08-21 19:37 - 2017-08-21 19:37 - 000001933 _____ C:\Users\Public\Desktop\Reflect.lnk
2017-08-21 19:37 - 2017-08-21 19:37 - 000001933 _____ C:\ProgramData\Desktop\Reflect.lnk
2017-08-21 19:37 - 2017-08-21 19:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macrium
2017-08-21 19:37 - 2017-08-21 19:37 - 000000000 ____D C:\Program Files\Macrium
2017-08-21 19:33 - 2017-08-21 19:51 - 000000000 ____D C:\ProgramData\Macrium
2017-08-21 19:33 - 2017-08-21 19:33 - 000000000 ____D C:\Users\ProBook\Documents\NSA Co-Op
2017-08-21 19:33 - 2017-03-20 17:53 - 000676282 _____ C:\Users\ProBook\Documents\SFP.pdf
2017-08-21 19:33 - 2017-03-20 17:53 - 000178269 _____ C:\Users\ProBook\Documents\HRFP.pdf
2017-08-21 19:00 - 2017-09-06 20:37 - 000000000 ____D C:\Users\ProBook\Documents\Device Backups
2017-08-21 00:57 - 2017-08-23 20:27 - 000000000 ____D C:\Users\ProBook\Downloads\YandereSimulator_Data
2017-08-20 11:54 - 2017-07-07 11:29 - 001143296 _____ (Microsoft Corporation) C:\windows\system32\DXPTaskRingtone.dll
2017-08-20 11:54 - 2017-07-07 11:10 - 000973312 _____ (Microsoft Corporation) C:\windows\SysWOW64\DXPTaskRingtone.dll
2017-08-20 11:49 - 2017-07-29 10:56 - 000117248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdx.sys
2017-08-20 11:49 - 2017-07-21 10:26 - 000518144 _____ C:\windows\SysWOW64\msjetoledb40.dll
2017-08-20 11:49 - 2017-07-21 10:26 - 000409600 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexch40.dll
2017-08-20 11:49 - 2017-07-21 10:26 - 000290816 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjtes40.dll
2017-08-20 11:49 - 2017-07-21 10:26 - 000282624 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstext40.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 002319872 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 002222080 _____ (Microsoft Corporation) C:\windows\system32\mssrch.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 002058240 _____ (Microsoft Corporation) C:\windows\system32\Query.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 000778240 _____ (Microsoft Corporation) C:\windows\system32\mssvp.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 000491520 _____ (Microsoft Corporation) C:\windows\system32\mssph.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 000486400 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 000288256 _____ (Microsoft Corporation) C:\windows\system32\mssphtb.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 000115200 _____ (Microsoft Corporation) C:\windows\system32\mssitlb.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 000099840 _____ (Microsoft Corporation) C:\windows\system32\mssprxy.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 000075264 _____ (Microsoft Corporation) C:\windows\system32\msscntrs.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\werdiagcontroller.dll
2017-08-20 11:49 - 2017-07-14 11:29 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\msshooks.dll
2017-08-20 11:49 - 2017-07-14 11:12 - 000591872 _____ (Microsoft Corporation) C:\windows\system32\SearchIndexer.exe
2017-08-20 11:49 - 2017-07-14 11:12 - 000249856 _____ (Microsoft Corporation) C:\windows\system32\SearchProtocolHost.exe
2017-08-20 11:49 - 2017-07-14 11:11 - 000113664 _____ (Microsoft Corporation) C:\windows\system32\SearchFilterHost.exe
2017-08-20 11:49 - 2017-07-14 11:10 - 001549824 _____ (Microsoft Corporation) C:\windows\SysWOW64\tquery.dll
2017-08-20 11:49 - 2017-07-14 11:10 - 001400320 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssrch.dll
2017-08-20 11:49 - 2017-07-14 11:10 - 001363968 _____ (Microsoft Corporation) C:\windows\SysWOW64\Query.dll
2017-08-20 11:49 - 2017-07-14 11:10 - 000666624 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssvp.dll
2017-08-20 11:49 - 2017-07-14 11:10 - 000382976 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2017-08-20 11:49 - 2017-07-14 11:10 - 000337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssph.dll
2017-08-20 11:49 - 2017-07-14 11:10 - 000197120 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssphtb.dll
2017-08-20 11:49 - 2017-07-14 11:10 - 000104448 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssitlb.dll
2017-08-20 11:49 - 2017-07-14 11:10 - 000059392 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscntrs.dll
2017-08-20 11:49 - 2017-07-14 11:10 - 000034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssprxy.dll
2017-08-20 11:49 - 2017-07-14 11:00 - 000427520 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchIndexer.exe
2017-08-20 11:49 - 2017-07-14 11:00 - 000164352 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchProtocolHost.exe
2017-08-20 11:49 - 2017-07-14 10:59 - 000086528 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchFilterHost.exe
2017-08-20 11:49 - 2017-07-14 10:59 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\msshooks.dll
2017-08-20 11:49 - 2017-07-14 10:57 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\wermgr.exe
2017-08-20 11:49 - 2017-07-14 10:50 - 000054272 _____ (Microsoft Corporation) C:\windows\SysWOW64\wermgr.exe
2017-08-20 11:49 - 2017-07-14 10:50 - 000028672 _____ (Microsoft Corporation) C:\windows\SysWOW64\werdiagcontroller.dll
2017-08-20 11:49 - 2017-07-08 11:34 - 000370920 _____ (Microsoft Corporation) C:\windows\system32\clfs.sys
2017-08-20 11:49 - 2017-07-07 11:33 - 000363752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volmgrx.sys
2017-08-20 11:49 - 2017-07-07 11:29 - 000149504 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2017-08-20 11:49 - 2017-07-07 11:11 - 000109568 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2017-08-20 11:49 - 2017-07-06 00:56 - 000119296 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthpan.sys
2017-08-20 11:49 - 2017-07-01 09:05 - 001311744 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjet40.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000866816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswdat10.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000641536 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswstr10.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000616448 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrepl40.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000475648 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxbde40.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000375808 _____ (Microsoft Corporation) C:\windows\SysWOW64\mspbde40.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000343552 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000339968 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000310272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000240640 _____ (Microsoft Corporation) C:\windows\SysWOW64\msltus40.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000144896 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjint40.dll
2017-08-20 11:49 - 2017-07-01 09:05 - 000083968 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjter40.dll
2017-08-20 11:49 - 2017-06-15 16:23 - 000753664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2017-08-20 11:49 - 2017-06-12 18:49 - 001363456 _____ (Microsoft Corporation) C:\windows\system32\wdc.dll
2017-08-20 11:49 - 2017-06-12 18:49 - 000594432 _____ (Microsoft Corporation) C:\windows\system32\wvc.dll
2017-08-20 11:49 - 2017-06-12 18:49 - 000475136 _____ (Microsoft Corporation) C:\windows\system32\sysmon.ocx
2017-08-20 11:49 - 2017-06-12 18:49 - 000058880 _____ (Microsoft Corporation) C:\windows\system32\pdhui.dll
2017-08-20 11:49 - 2017-06-12 18:29 - 001227264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdc.dll
2017-08-20 11:49 - 2017-06-12 18:29 - 000444928 _____ (Microsoft Corporation) C:\windows\SysWOW64\wvc.dll
2017-08-20 11:49 - 2017-06-12 18:29 - 000390144 _____ (Microsoft Corporation) C:\windows\SysWOW64\sysmon.ocx
2017-08-20 11:49 - 2017-06-12 18:28 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\pdhui.dll
2017-08-20 11:49 - 2017-06-12 18:14 - 000379392 _____ (Microsoft Corporation) C:\windows\system32\msinfo32.exe
2017-08-20 11:49 - 2017-06-12 18:14 - 000172544 _____ (Microsoft Corporation) C:\windows\system32\perfmon.exe
2017-08-20 11:49 - 2017-06-12 18:14 - 000103936 _____ (Microsoft Corporation) C:\windows\system32\resmon.exe
2017-08-20 11:49 - 2017-06-12 18:06 - 000303616 _____ (Microsoft Corporation) C:\windows\SysWOW64\msinfo32.exe
2017-08-20 11:49 - 2017-06-12 18:06 - 000157184 _____ (Microsoft Corporation) C:\windows\SysWOW64\perfmon.exe
2017-08-20 11:49 - 2017-06-12 18:06 - 000103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\resmon.exe
2017-08-20 11:49 - 2017-06-09 11:33 - 001680616 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2017-08-20 11:49 - 2017-06-02 04:10 - 000733696 _____ (Microsoft Corporation) C:\windows\HelpPane.exe
2017-08-20 11:49 - 2017-05-30 00:56 - 001895656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2017-08-20 11:49 - 2017-05-30 00:56 - 000377576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2017-08-20 11:49 - 2017-05-30 00:56 - 000287976 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2017-08-20 11:49 - 2017-05-21 00:24 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2017-08-20 11:49 - 2017-05-21 00:06 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2017-08-20 11:49 - 2017-05-16 11:35 - 000986856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2017-08-20 11:49 - 2017-05-16 11:35 - 000265448 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2017-08-20 11:49 - 2017-05-16 11:30 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2017-08-20 11:49 - 2017-05-12 14:26 - 000382696 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2017-08-20 11:49 - 2017-05-12 14:22 - 000405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2017-08-20 11:49 - 2017-05-12 14:22 - 000100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2017-08-20 11:49 - 2017-05-12 14:22 - 000046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2017-08-20 11:49 - 2017-05-12 14:22 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2017-08-20 11:49 - 2017-05-12 14:22 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2017-08-20 11:49 - 2017-05-12 14:07 - 000308456 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2017-08-20 11:49 - 2017-05-12 14:03 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2017-08-20 11:49 - 2017-05-12 14:03 - 000070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2017-08-20 11:49 - 2017-05-12 14:03 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2017-08-20 11:49 - 2017-05-12 14:03 - 000010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2017-08-20 11:49 - 2017-05-12 13:43 - 000034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2017-08-20 11:49 - 2017-05-12 12:25 - 001251328 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2017-08-20 11:49 - 2017-05-12 11:58 - 001648128 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2017-08-20 11:49 - 2017-05-12 11:58 - 001180160 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2017-08-20 11:49 - 2017-05-10 11:33 - 000091368 _____ (Microsoft Corporation) C:\windows\system32\MigAutoPlay.exe
2017-08-20 11:49 - 2017-05-10 11:29 - 003165184 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2017-08-20 11:49 - 2017-05-10 11:29 - 000192512 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2017-08-20 11:49 - 2017-05-10 11:29 - 000098816 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2017-08-20 11:49 - 2017-05-10 11:28 - 000091136 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2017-08-20 11:49 - 2017-05-10 11:16 - 000091368 _____ (Microsoft Corporation) C:\windows\SysWOW64\MigAutoPlay.exe
2017-08-20 11:49 - 2017-05-10 11:14 - 002651136 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2017-08-20 11:49 - 2017-05-10 11:13 - 000709120 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2017-08-20 11:49 - 2017-05-10 11:13 - 000140288 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2017-08-20 11:49 - 2017-05-10 11:13 - 000037888 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2017-08-20 11:49 - 2017-05-10 11:13 - 000037888 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2017-08-20 11:49 - 2017-05-10 11:13 - 000036864 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2017-08-20 11:49 - 2017-05-10 11:13 - 000012288 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2017-08-20 11:49 - 2017-05-10 11:12 - 000174080 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2017-08-20 11:49 - 2017-05-10 11:00 - 000573440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2017-08-20 11:49 - 2017-05-10 11:00 - 000093696 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2017-08-20 11:49 - 2017-05-10 11:00 - 000035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2017-08-20 11:49 - 2017-05-10 11:00 - 000030208 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2017-08-20 11:49 - 2017-05-07 11:33 - 000094440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2017-08-20 11:49 - 2017-05-07 11:29 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2017-08-20 11:49 - 2017-03-30 11:03 - 000046080 _____ (Microsoft Corporation) C:\windows\system32\rundll32.exe
2017-08-20 11:49 - 2017-03-30 10:58 - 000045056 _____ (Microsoft Corporation) C:\windows\SysWOW64\rundll32.exe
2017-08-20 11:44 - 2017-05-03 11:34 - 000094952 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2017-08-20 11:44 - 2017-05-03 11:29 - 001206272 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2017-08-20 11:44 - 2017-05-03 09:05 - 001555968 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2017-08-20 11:44 - 2017-05-03 09:05 - 000620544 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2017-08-20 11:44 - 2017-05-03 09:05 - 000535552 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2017-08-20 11:44 - 2017-05-03 09:05 - 000325632 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2017-08-20 11:44 - 2017-05-03 09:05 - 000311296 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2017-08-20 11:44 - 2017-05-03 09:05 - 000217088 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2017-08-20 11:44 - 2017-05-03 09:05 - 000127488 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2017-08-20 11:44 - 2017-03-22 22:06 - 001691136 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-09-18 18:39 - 2014-06-18 06:18 - 000000894 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore1cf8ade9e20a4b9.job
2017-09-18 18:27 - 2012-04-16 06:58 - 000000000 ____D C:\ProgramData\PDFC
2017-09-18 18:17 - 2014-06-18 06:18 - 000000898 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA1cf8ade9e52a19f.job
2017-09-18 17:36 - 2015-08-17 16:29 - 000000550 _____ C:\windows\Tasks\MATLAB R2015a Startup Accelerator.job
2017-09-18 17:36 - 2009-07-14 00:45 - 000031536 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-09-18 17:36 - 2009-07-14 00:45 - 000031536 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-09-18 17:26 - 2014-10-24 18:34 - 000000894 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore1cfefdab664329e.job
2017-09-18 17:25 - 2009-07-14 01:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2017-09-17 18:59 - 2013-01-19 21:10 - 000003942 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{7AD4E1D7-82FE-4643-ADBB-0ED72486E912}
2017-09-15 03:41 - 2009-07-13 23:20 - 000000000 ____D C:\windows\rescache
2017-09-14 18:01 - 2014-05-16 19:27 - 000000000 ____D C:\Users\ProBook\AppData\Local\ESET
2017-09-14 18:01 - 2009-07-13 23:20 - 000000000 ____D C:\windows\inf
2017-09-14 18:00 - 2013-01-21 20:24 - 000000000 ____D C:\Program Files\ESET
2017-09-13 17:54 - 2009-07-14 01:13 - 000788008 _____ C:\windows\system32\PerfStringBackup.INI
2017-09-13 17:46 - 2009-07-14 00:45 - 000477704 _____ C:\windows\system32\FNTCACHE.DAT
2017-09-13 17:34 - 2013-08-05 13:41 - 000000000 ____D C:\windows\system32\MRT
2017-09-13 17:28 - 2013-01-19 21:09 - 138202976 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2017-09-13 17:19 - 2012-04-16 06:49 - 000780622 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2017-09-07 21:50 - 2013-01-19 21:33 - 000000000 ____D C:\Program Files (x86)\Steam
2017-09-07 16:55 - 2015-08-14 12:15 - 000000000 ____D C:\Users\ProBook\Documents\College Documents
2017-09-06 21:43 - 2016-08-16 14:20 - 000000000 ____D C:\Users\ProBook\.VirtualBox
2017-09-05 23:11 - 2016-11-19 13:26 - 000000000 ____D C:\Users\ProBook\AppData\Roaming\vlc
2017-09-05 22:47 - 2015-05-23 15:51 - 000000000 ____D C:\Users\ProBook\AppData\Roaming\VERIZON
2017-09-05 21:58 - 2013-06-08 11:43 - 000000000 ____D C:\Users\ProBook\Documents\Paradox Interactive
2017-09-05 20:02 - 2015-09-14 09:16 - 000000000 ____D C:\Users\ProBook\AppData\Local\Akamai
2017-08-28 17:25 - 2014-02-05 08:23 - 000002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-24 20:57 - 2015-06-07 22:09 - 000000000 ____D C:\ProgramData\boost_interprocess
2017-08-24 20:11 - 2015-09-14 09:19 - 000000000 ____D C:\ProgramData\Autodesk
2017-08-24 20:10 - 2015-09-14 09:39 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2017-08-24 20:08 - 2015-09-14 09:19 - 000000000 ____D C:\Users\ProBook\AppData\Roaming\Autodesk
2017-08-24 20:06 - 2015-09-14 09:43 - 000000000 ____D C:\Program Files (x86)\Autodesk
2017-08-24 19:59 - 2015-09-14 09:39 - 000000000 ____D C:\Program Files\Autodesk
2017-08-24 19:43 - 2013-01-19 21:10 - 000141080 _____ C:\Users\ProBook\AppData\Local\GDIPFONTCACHEV1.DAT
2017-08-24 19:37 - 2014-06-21 23:41 - 000000000 ____D C:\ProgramData\Package Cache
2017-08-24 19:21 - 2017-02-18 18:40 - 000000000 ____D C:\Program Files (x86)\WinCDEmu
2017-08-24 19:19 - 2015-09-14 17:28 - 000000000 ____D C:\Users\ProBook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2017-08-24 19:18 - 2015-09-14 09:39 - 000000000 ____D C:\Users\ProBook\AppData\Local\Autodesk
2017-08-24 19:00 - 2015-09-14 17:08 - 000000000 ____D C:\Users\Public\Documents\Autodesk
2017-08-24 19:00 - 2015-09-14 17:08 - 000000000 ____D C:\ProgramData\Documents\Autodesk
2017-08-24 19:00 - 2015-09-14 10:23 - 000000000 ____D C:\Users\ProBook\Documents\Inventor
2017-08-24 18:03 - 2013-01-19 21:06 - 000000000 ____D C:\Users\ProBook
2017-08-23 23:32 - 2013-01-19 20:53 - 000000000 ____D C:\Users\ProBook\.grasp_settings
2017-08-23 23:25 - 2014-10-04 21:32 - 000000000 ____D C:\Program Files\Java
2017-08-23 23:19 - 2014-07-03 11:01 - 000000000 ____D C:\Program Files (x86)\Java
2017-08-23 23:09 - 2009-07-14 01:32 - 000000000 ____D C:\windows\Downloaded Program Files
2017-08-23 22:06 - 2015-06-07 22:00 - 000000000 ____D C:\Program Files (x86)\GalaxyClient
2017-08-23 21:58 - 2017-01-08 18:35 - 000000287 _____ C:\windows\WinInit.Ini
2017-08-23 21:00 - 2016-11-19 13:24 - 000000000 ____D C:\Program Files (x86)\VideoLAN
2017-08-23 19:08 - 2014-05-19 16:16 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-23 18:51 - 2014-12-27 21:12 - 000000000 ____D C:\Program Files (x86)\Samsung
2017-08-23 18:51 - 2012-04-16 07:07 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-08-23 18:48 - 2009-07-13 23:20 - 000000000 ____D C:\windows\system
2017-08-23 17:21 - 2011-07-28 19:51 - 000000000 ____D C:\swsetup
2017-08-21 19:13 - 2013-01-19 20:51 - 000000000 ____D C:\Users\ProBook\AppData\Roaming\Google
2017-08-21 00:57 - 2017-07-09 21:36 - 018176512 _____ C:\Users\ProBook\Downloads\YandereSimulator.exe
2017-08-20 12:53 - 2015-04-15 20:34 - 000000000 ____D C:\windows\system32\appraiser
2017-08-20 12:52 - 2009-07-13 23:20 - 000000000 ____D C:\windows\SysWOW64\migwiz
2017-08-20 12:52 - 2009-07-13 23:20 - 000000000 ____D C:\windows\system32\migwiz
2017-08-20 12:48 - 2014-07-25 06:48 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2017-08-20 12:48 - 2014-07-25 06:48 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-08-20 12:45 - 2014-07-25 06:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-08-20 11:22 - 2014-07-29 21:39 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-08-20 11:21 - 2014-07-29 21:36 - 000000000 ____D C:\Program Files\Microsoft Office 15
2017-08-20 11:19 - 2016-04-09 23:22 - 000000000 ____D C:\MSYS64
 
==================== Files in the root of some directories =======
 
2017-04-05 23:51 - 2017-04-05 23:51 - 000002116 _____ () C:\Users\ProBook\AppData\Local\recently-used.xbel
2013-01-21 21:31 - 2013-05-03 23:47 - 000007605 _____ () C:\Users\ProBook\AppData\Local\Resmon.ResmonCfg
2014-02-10 20:53 - 2017-01-08 18:36 - 002316622 _____ () C:\ProgramData\dlee.log
2014-02-03 18:50 - 2015-12-31 19:43 - 000096336 _____ () C:\ProgramData\dleeJSW.log
2014-02-03 18:39 - 2017-01-08 18:36 - 000036203 _____ () C:\ProgramData\dleescan.log
2014-02-03 18:50 - 2014-02-03 18:50 - 000000252 _____ () C:\ProgramData\FastPics.log
2015-09-07 14:21 - 2015-09-07 17:48 - 000089296 _____ () C:\ProgramData\hpcsmmsilogs.log
2014-12-27 19:30 - 2014-12-27 19:30 - 000928993 _____ () C:\ProgramData\SPL1D7.tmp
2015-11-04 17:09 - 2015-11-04 17:09 - 000444119 _____ () C:\ProgramData\SPL3A60.tmp
2014-09-30 19:34 - 2014-09-30 19:34 - 001391159 _____ () C:\ProgramData\SPL510C.tmp
2015-11-18 10:12 - 2015-11-18 10:12 - 000444119 _____ () C:\ProgramData\SPL57C0.tmp
2014-09-23 23:00 - 2014-09-23 23:00 - 000955476 _____ () C:\ProgramData\SPL5DF9.tmp
2014-10-03 06:21 - 2014-10-03 06:21 - 000932283 _____ () C:\ProgramData\SPL6142.tmp
2015-10-15 19:18 - 2015-10-15 19:18 - 000444119 _____ () C:\ProgramData\SPL79D0.tmp
2015-10-15 19:13 - 2015-10-15 19:13 - 000444119 _____ () C:\ProgramData\SPL80CF.tmp
2015-10-29 20:48 - 2015-10-29 20:48 - 000444119 _____ () C:\ProgramData\SPL904.tmp
2014-06-28 15:07 - 2014-06-28 15:07 - 001095666 _____ () C:\ProgramData\SPLEF46.tmp
2014-02-03 18:35 - 2014-02-03 18:35 - 000000000 _____ () C:\ProgramData\UpdaterLog.txt
 
Some files in TEMP:
====================
2013-06-04 09:30 - 2013-06-04 09:30 - 000050432 ____R () C:\Users\ProBook\AppData\Local\Temp\Extract.exe
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2017-09-15 03:33
 
==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-09-2017 01
Ran by ProBook (18-09-2017 19:00:54)
Running from C:\Users\ProBook\Downloads
Windows 7 Professional Service Pack 1 (X64) (2013-01-20 01:06:48)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2532254925-3227192101-289463352-500 - Administrator - Disabled)
Guest (S-1-5-21-2532254925-3227192101-289463352-501 - Limited - Disabled)
ProBook (S-1-5-21-2532254925-3227192101-289463352-1001 - Administrator - Enabled) => C:\Users\ProBook
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: ESET Internet Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Internet Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personal firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
80 Days (HKLM-x32\...\Steam App 381780) (Version:  - inkle Ltd)
A360 Desktop (HKLM\...\{B65CD59E-A771-4354-AA4B-C3E01B496BCD}) (Version: 8.2.3.1800 - Autodesk)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.176 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version:  - Hidden Path Entertainment, Ensemble Studios)
Akamai NetSession Interface (HKU\S-1-5-21-2532254925-3227192101-289463352-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
AMD Catalyst Install Manager (HKLM\...\{8642397F-CF08-6B30-A477-A039BBAA511E}) (Version: 3.0.868.0 - Advanced Micro Devices, Inc.)
Amnesia: The Dark Descent (HKLM-x32\...\Steam App 57300) (Version:  - Frictional Games)
ArcSoft TotalMedia (HKLM-x32\...\{B3B67519-2201-4C38-8002-D54473D651F9}) (Version: 1.0.61.25 - ArcSoft) Hidden
ArcSoft TotalMedia (HKLM-x32\...\ArcSoft TotalMedia) (Version: 2.0.39.42 - ArcSoft)
ArcSoft Webcam Sharing Manager (HKLM-x32\...\{190A7D93-3823-439C-91B9-ADCE3EC2A6A2}) (Version: 2.0.0.39 - ArcSoft)
Autodesk 3ds Max 2018 (HKLM\...\{52B37EC7-D836-0410-0764-3C24BCED2010}) (Version: 20.0.0.966 - Autodesk) Hidden
Autodesk 3ds Max 2018 (HKLM\...\Autodesk 3ds Max 2018) (Version: 20.0.0.966 - Autodesk)
Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk)
Autodesk Backburner 2018.0 (HKLM-x32\...\{0038F5AA-8482-4BB2-8A28-3FEA1D58D78A}) (Version: 18.0.0.0 - Autodesk)
Autodesk Certificate Package  (x64) - 5.1.4 (HKLM\...\{79D5E475-5EAB-4474-84F5-BD612337A175}) (Version: 5.1.4.100 - Autodesk)
Autodesk Civil View for 3ds Max 2018 64-bit (HKLM\...\{51C8EDF7-FFDA-430A-8B5E-1895FF14ACB7}) (Version: 20.0.0.0 - Autodesk)
Autodesk Configurator 360 addin (HKLM-x32\...\{6560F7BC-74E2-4618-A46B-4073A3E54E6D}) (Version: 22.0.10400 - Autodesk, Inc.)
Autodesk Design Review (HKLM-x32\...\{139C013B-5BAC-4101-BC6C-B2A78C0125A4}) (Version: 14.0.0.176 - Autodesk) Hidden
Autodesk Design Review (HKLM-x32\...\Autodesk Design Review) (Version: 14.0.0.176 - Autodesk)
Autodesk Desktop App (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.6.378 - Autodesk)
Autodesk Desktop Connect Service (HKLM\...\{FC772454-BB19-0000-0440-44B459520227}) (Version: 4.40.0 - Autodesk)
Autodesk DWG TrueView 2018 - English (HKLM\...\DWG TrueView 2018 - English) (Version: 22.0.50.0 - Autodesk)
Autodesk Guided Tutorial Plugin (HKLM\...\{B3AFC608-D811-0003-0440-21FB25B48D6E}) (Version: 4.40.0 - Autodesk)
Autodesk Inventor Content Center Libraries 2018 (Desktop Content) (HKLM\...\{B46DECD1-2264-4EF1-0000-22D71E81877C}) (Version: 22.0.11200.0000 - Autodesk,Inc.)
Autodesk Inventor Electrical Catalog Browser 2018 - English (HKLM\...\{28B89EEF-1007-0000-7102-CF3F3A09B77D}) (Version: 15.0.50.0 - Autodesk) Hidden
Autodesk Inventor Electrical Catalog Browser 2018 - English (HKLM\...\Autodesk Inventor Electrical Catalog Browser 2018 - English) (Version: 15.0.50.0 - Autodesk)
Autodesk Inventor Electrical Catalog Browser 2018 Language Pack - English (HKLM\...\{28B89EEF-1007-0409-8102-CF3F3A09B77D}) (Version: 15.0.50.0 - Autodesk) Hidden
Autodesk Inventor Professional 2018 - English (HKLM\...\Autodesk Inventor Professional 2018) (Version: 22.0.11200.0000 - Autodesk)
Autodesk Inventor Professional 2018 (HKLM\...\{7F4DD591-2264-0001-0000-7107D70F3DB4}) (Version: 22.0.11200.0000 - Autodesk) Hidden
Autodesk Inventor Professional 2018 English Language Pack (HKLM\...\{7F4DD591-2264-0001-1033-7107D70F3DB4}) (Version: 22.0.11200.0000 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max 2018 (HKLM\...\{1984E20A-184B-4073-87F4-6755F3EE5769}) (Version: 20.0 - Autodesk)
Autodesk License Service (x64) - 5.1.4 (HKLM\...\{3609A8D9-FC0C-4C9B-9F58-0B1D1A4FE556}) (Version: 5.1.4.0 - Autodesk)
Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2018 (HKLM-x32\...\{1B0F011A-66B4-4865-98B7-0FE132841035}) (Version: 16.11.1.0 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2018 (HKLM-x32\...\{6EC5DA32-D02D-47D4-A3C4-988C1BC1A5FE}) (Version: 16.11.1.0 - Autodesk)
Autodesk ReCap (HKLM\...\{6ED27C84-0000-1033-0102-D4DAEFFC23C2}) (Version: 4.0.0.28 - Autodesk) Hidden
Autodesk ReCap (HKLM\...\Autodesk ReCap 360) (Version: 4.0.0.28 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2018 (HKLM\...\{0BB716E0-1800-0610-0000-097DC2F354DF}) (Version: 18.0.0.412 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max 2018 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2018) (Version: 18.0.0.412 - Autodesk)
Autodesk Revit Interoperability for Inventor 2018 (HKLM\...\{0BB716E0-1800-0210-0000-097DC2F354DF}) (Version: 18.0.0.412 - Autodesk) Hidden
Autodesk Revit Interoperability for Inventor 2018 (HKLM\...\Autodesk Revit Interoperability for Inventor 2018) (Version: 18.0.0.412 - Autodesk)
Autodesk Vault Basic 2018 (Client) (HKLM\...\{CF526A26-2364-0000-0000-02E95019B628}) (Version: 23.0.76.0 - Autodesk) Hidden
Autodesk Vault Basic 2018 (Client) (HKLM\...\Autodesk Vault Basic 2018 (Client)) (Version: 23.0.76.0 - Autodesk)
Autodesk Vault Basic 2018 (Client) English Language Pack (HKLM\...\{266597A9-2364-0000-0100-DCBF2B69166B}) (Version: 23.0.76.0 - Autodesk) Hidden
Cisco AnyConnect Secure Mobility Client  (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.3.01095 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{D9677CF3-B6C9-4010-8537-7CA37AD710E9}) (Version: 4.3.01095 - Cisco Systems, Inc.) Hidden
Cisco AnyConnect Start Before Login Module (HKLM-x32\...\{78171889-02DB-4545-BCE5-997291076A43}) (Version: 4.3.01095 - Cisco Systems, Inc.)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
Counter-Strike: Source Beta (HKLM-x32\...\Steam App 260) (Version:  - )
Crimson Editor SVN286 (HKLM-x32\...\Crimson Editor SVN286) (Version: SVN286 - Emerald Editor Community)
Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version:  - Paradox Development Studio)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Toolbar (HKLM-x32\...\{09B71986-2AC5-482d-B6CB-42EA34F4F85B}) (Version: 1.8.12.0 - )
Democracy 3 (HKLM-x32\...\Steam App 245470) (Version:  - Positech Games)
Deus Ex: Game of the Year Edition (HKLM-x32\...\Steam App 6910) (Version:  - Ion Storm)
Device Access Manager for HP ProtectTools (HKLM\...\{55B52830-024A-443E-AF61-61E1E71AFA1B}) (Version: 7.1.2.0 - Hewlett-Packard Company)
Dishonored (HKLM\...\Steam App 205100) (Version:  - Arkane Studios)
DLC Quest (HKLM-x32\...\Steam App 230050) (Version:  - )
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
Door Kickers (HKLM\...\Steam App 248610) (Version:  - KillHouse Games)
Drive Encryption For HP ProtectTools (HKLM\...\{27F1E086-5691-4EB8-8BA1-5CBA87D67EB5}) (Version: 7.0.41.36204 - Hewlett-Packard Company)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
DWG TrueView 2018 - English (HKLM\...\{28B89EEF-1028-0409-0100-CF3F3A09B77D}) (Version: 22.0.50.0 - Autodesk) Hidden
EAGLE 8.3.1 (HKLM\...\{AUTODESK-EAGLE-8-3-1}_is1) (Version: 8.3.1 - Autodesk, Inc.)
Eco Materials Adviser for Autodesk Inventor 2016 (64-bit) (HKLM\...\{1A56BE00-916E-432D-A576-EB00D2FF8450}) (Version: 5.6.4.44 - Granta Design Limited)
Eco Materials Adviser for Autodesk Inventor 2018 (64-bit) (HKLM\...\{C279B393-1B29-4F67-901A-F4D9EA1178A1}) (Version: 6.7.7.0 - Granta Design Limited)
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
ESET Internet Security (HKLM\...\{67740CB4-7371-4C8A-A8E3-8E551AF2FF44}) (Version: 10.1.219.0 - ESET, spol. s r.o.)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version:  - SCS Software)
Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version:  - Paradox Development Studio)
Evernote v. 4.5.4 (HKLM-x32\...\{550BFF6E-7376-11E1-99EA-984BE15F174E}) (Version: 4.5.4.6487 - Evernote Corp.)
Face Recognition for HP ProtectTools (HKLM\...\{D3A775F2-2674-4452-8D80-1FC1446052EE}) (Version: 7.2.1.4548 - Hewlett-Packard Company) Hidden
Face Recognition for HP ProtectTools (HKLM\...\Face Recognition for HP ProtectTools) (Version: 7.2.1.4548 - Hewlett-Packard Company)
Fallout (HKLM-x32\...\Fallout) (Version:  - )
Fallout 3 - Game of the Year Edition (HKLM-x32\...\Steam App 22370) (Version:  - Bethesda Game Studios)
FARO LS 1.1.503.3 (64bit) (HKLM-x32\...\{1C05E654-FB81-4274-BF32-292E3707701D}) (Version: 5.3.3.38662 - FARO Scanner Production)
FARO LS 1.1.600.6 (64bit) (HKLM-x32\...\{510A08AF-1649-4844-94E5-EAC43A023685}) (Version: 6.0.6.5 - FARO Scanner Production)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - )
Futuremark SystemInfo (HKLM-x32\...\{4115C9AA-35E0-45D8-9363-47635B8750C7}) (Version: 4.29.438.0 - Futuremark)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Gunpoint (HKLM-x32\...\Steam App 206190) (Version:  - Suspicious Developments)
Hacknet (HKLM\...\Steam App 365450) (Version:  - Team Fractal Alligator)
Half-Life (HKLM-x32\...\Steam App 70) (Version:  - Valve)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{6C8684DD-B238-4806-9E93-BDD12CD11998}) (Version: 5.1.12.1 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{5DCA44EB-03F6-44A3-A294-F3E5DE98D7F6}) (Version: 4.4.10.1 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{A351CC1B-C92C-4F37-8109-9F6D33ACF5EF}) (Version: 1.1.1.0 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{240B2BF7-E7E6-425C-A2A4-A3149189BF7F}) (Version: 2.3.1 - Hewlett-Packard Company)
HP File Sanitizer (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 8.1.1.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1113.1_WHQL - Sonix)
HP Hotkey Support (HKLM-x32\...\{7F7E2060-7212-4A53-9875-55173E4BA3F0}) (Version: 5.0.21.1 - Hewlett-Packard Company)
HP Power Assistant (HKLM\...\{84642787-58C0-44AE-8B26-E2F544E380A1}) (Version: 2.5.0.16 - Hewlett-Packard Company)
HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 7.0.1.1199 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15453.4066 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{FE465061-894A-4023-8580-56FCDD4F23F9}) (Version: 3.4.4.0 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{675D093B-815D-47FD-AB2C-192EC751E8E2}) (Version: 4.6.10.1 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{658A8756-7B1E-44FD-A434-D777DD906232}) (Version: 8.5.2.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.4.19.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.7.27.15 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{3A61A282-4F08-4D43-920C-DC30ECE528E8}) (Version: 2.6.1 - Hewlett-Packard Company)
HP Wallpaper (HKLM-x32\...\{11C9A461-DD9D-4C71-85A4-6DCE7F99CC44}) (Version: 3.0.0.1 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6435.0 - IDT)
Inform 7 (HKLM-x32\...\Inform 7) (Version:  - )
Intel® Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3090 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
Inventor Connected Design (HKLM\...\{1FA52755-1FBC-0001-0440-7CEA1F3736D8}) (Version: 4.40.0 - Autodesk)
Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java SE Development Kit 8 Update 144 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180144}) (Version: 8.0.1440.1 - Oracle Corporation)
jGRASP (HKLM-x32\...\jGRASP) (Version: 2.0.1_01 - )
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.76.1 - JMicron Technology Corp.)
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche)
Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version:  - JC2-MP Team)
Kerbal Space Program (HKLM\...\Steam App 220200) (Version:  - Squad)
Long Live The Queen (HKLM-x32\...\Steam App 251990) (Version:  - Hanako Games)
Macrium Reflect Free Edition (HKLM\...\{6085136C-5E0B-4516-BA48-2B909062778A}) (Version: 6.3.1835 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 6.3 - Paramount Software (UK) Ltd.)
Malwarebytes version 3.2.2.2018 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2018 - Malwarebytes)
MATLAB R2015a (HKLM\...\Matlab R2015a) (Version: 8.5 - MathWorks)
MAXtoA for 3ds Max 2018 (HKLM\...\{471069C7-09E2-4289-8EB7-852237FD867E}) (Version: 1.0.712.0 - Solid Angle)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Access 2013 - en-us (HKLM\...\AccessRetail - en-us) (Version: 15.0.4953.1001 - Microsoft Corporation)
Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSYS2 64bit (HKU\S-1-5-21-2532254925-3227192101-289463352-1001\...\{f8241460-5408-463d-97da-cdf7c210022f}) (Version: 20160205 - The MSYS2 Developers)
MultiBit 0.5.14 (HKLM-x32\...\MultiBit 0.5.14) (Version: 0.5.14 - )
National Instruments Software (HKLM-x32\...\NI Uninstaller) (Version:  - National Instruments)
NI AFW Channel Configuration Tool (HKLM-x32\...\{73726D40-91B7-4889-8F06-F31797D2A4D9}) (Version: 7.0.181.0 - National Instruments) Hidden
NI AFW Custom UI (HKLM-x32\...\{2F6FE209-77BD-4F66-A285-87336EB8EEF2}) (Version: 7.0.182.0 - National Instruments) Hidden
NI AFW Custom UI Assemblies (HKLM-x32\...\{71EB7C12-7E89-48E3-847D-23FB069E93FA}) (Version: 7.0.8.0 - National Instruments) Hidden
NI AFW UI Assemblies (HKLM-x32\...\{397E268E-FB51-4C23-A496-1031B8F1CCEE}) (Version: 7.2.8.0 - National Instruments) Hidden
NI Assistant Framework (HKLM-x32\...\{44CD79C3-375F-41C8-977E-97BB3E520B30}) (Version: 7.0.192.0 - National Instruments) Hidden
NI Assistant Framework 64-bit (HKLM\...\{DD358747-BDE7-4041-A91B-982519694DA0}) (Version: 7.0.77.0 - National Instruments) Hidden
NI Authentication 1.0 (64-bit) (HKLM\...\{6F11F8FE-35DE-4CAE-9D73-2C394DCFD889}) (Version: 1.0.58.0 - National Instruments) Hidden
NI Authentication 1.0 (HKLM-x32\...\{B4D09BE5-59C1-434C-85D9-DBF135A44CB6}) (Version: 1.0.73.0 - National Instruments) Hidden
NI Calibration Provider for MAX 4.7.0 (HKLM-x32\...\{C44C83FA-9F49-4D6A-B3E5-DD67FE0F9535}) (Version: 4.70.49154 - National Instruments) Hidden
NI Calibration Provider Help for 64 Bit Windows (HKLM\...\{1A514129-B144-4492-B241-21220613ED7A}) (Version: 4.70.49154 - National Instruments) Hidden
NI Certificates Deployment Support (HKLM-x32\...\{82D29FE9-9F5A-4EF7-BBA1-EF107DDB2E64}) (Version: 1.02.49152 - National Instruments) Hidden
NI Common Digital 1.11.0 (HKLM-x32\...\{AB47CDC5-94D2-4329-AD2B-3E2BF2EED84C}) (Version: 1.110.49152 - National Instruments) Hidden
NI Common Digital for 64 Bit Windows 1.11.0 (HKLM\...\{3D044B45-DEAA-49AE-AF3A-910EC0157053}) (Version: 1.110.49152 - National Instruments) Hidden
NI DAQ Assistant 1.13.0 (HKLM-x32\...\{C671D88B-4579-426F-BE35-D35E40A07737}) (Version: 1.130.49152 - National Instruments) Hidden
NI DAQ Assistant 64-bit 1.13.0 (HKLM\...\{DA669414-6A09-433F-8FE4-67E1968DA51C}) (Version: 1.130.49152 - National Instruments) Hidden
NI DN 2.0 Language Pack installer (HKLM-x32\...\{F8ECD2D6-659C-49EB-8454-5F8F7B526FCF}) (Version: 2.00.49152 - National Instruments) Hidden
NI DN 2.0 SP1 installer (HKLM-x32\...\{B937AF41-B4B5-44FF-8670-46110C2EFCDE}) (Version: 2.10.49152 - National Instruments) Hidden
NI Dynamic Signal Acquisition for 64 Bit Windows 2.0.0 (HKLM\...\{72755D86-90D9-4B0D-95EF-FDC29AB34C30}) (Version: 2.00.49152 - National Instruments) Hidden
NI Dynamic Signal Acquisition Installer 2.0.0 (HKLM-x32\...\{986590F8-6647-410E-8674-EDB483FA5E45}) (Version: 2.00.49152 - National Instruments) Hidden
NI ELVIS 64bit Support (HKLM\...\{7729A234-C9B0-4A68-AE09-357516EC8C42}) (Version: 1.0.301.0 - National Instruments) Hidden
NI ELVISmx 4.2.2 (HKLM-x32\...\{B77F0E1D-FED6-4EF8-857C-3FD63765A5BA}) (Version: 4.2.71.0 - National Instruments) Hidden
NI ELVISmx Instrument Launcher (HKLM-x32\...\{1C0DC662-FECF-4F78-A6E1-B59965863119}) (Version: 1.1.32.0 - National Instruments) Hidden
NI EULA Depot (HKLM-x32\...\{DCA3D701-664B-4C87-9C31-2DBD47BACC2F}) (Version: 2.80.295 - National Instruments) Hidden
NI FSL Installer 1.10.0 (HKLM-x32\...\{50734064-7E5F-4767-93C9-D084BB290306}) (Version: 1.100.49153 - National Instruments) Hidden
NI FSL Installer for 64-Bit Windows 1.10.0 (HKLM\...\{007C23D9-46E4-4C1F-B648-7E14C08D1C54}) (Version: 1.100.49153 - National Instruments) Hidden
NI Help Assistant (64bit) (HKLM\...\{21903252-3854-48D6-8F0C-F648CFA818C9}) (Version: 1.0.10 - National Instruments) Hidden
NI Help Assistant (HKLM-x32\...\{6F7D11DC-DE87-45C8-A37E-A35B724FC771}) (Version: 1.0.10 - National Instruments) Hidden
NI LabVIEW 2009 SP1 Run-Time Engine Web Services (HKLM-x32\...\{D361B9E5-E918-48CB-BEC3-8E44A5F6E624}) (Version: 9.0.234.0 - National Instruments) Hidden
NI LabVIEW 2010 Real-Time Error Dialog (HKLM-x32\...\{0D3F2D86-F2F2-4B05-BB46-83C15DC88CD1}) (Version: 10.0.85.0 - National Instruments) Hidden
NI LabVIEW Broker (64 bit) (HKLM\...\{B9254715-D10D-4B4B-B002-54CBA61E6F64}) (Version: 6.8.10.0 - National Instruments) Hidden
NI LabVIEW Broker (HKLM-x32\...\{F37CC885-1E37-4F2A-93F3-7F1E1EEBBEBB}) (Version: 6.8.10.0 - National Instruments) Hidden
NI LabVIEW C Interface (HKLM-x32\...\{DEC25D81-2317-47F6-8B26-D54A939DA1EE}) (Version: 1.0.1 - National Instruments) Hidden
NI LabVIEW Real-Time FIFO for Runtime (HKLM-x32\...\{7E3668CB-1228-416E-B721-C2FA3247B985}) (Version: 8.2.74.0 - National Instruments) Hidden
NI LabVIEW Real-Time NBFifo (HKLM-x32\...\{5C0BBD9F-2D3F-4093-AD7B-3F7377E0EDCA}) (Version: 9.0.319.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2009 SP1 (HKLM-x32\...\{0AAB121C-8EA7-49F5-B37C-DF117FB46771}) (Version: 9.0.1074.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 8.2.1 (HKLM-x32\...\{45FA54F6-8574-49D2-9E2D-0BDDE6237822}) (Version: 8.2.379.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2009 (HKLM-x32\...\{0FCE0BA9-8AD4-4622-9ADF-EFF0355EEAE7}) (Version: 9.0.146.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2010 Datatypes (HKLM-x32\...\{6B0A94E3-31BA-4939-8BFE-2367D9FB11BB}) (Version: 4.0.191.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2010 Tools (HKLM-x32\...\{7A302275-FAB9-4369-BE7B-68CE3EA989CB}) (Version: 4.0.191.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (HKLM-x32\...\{FE24BCDF-9231-450D-AA08-D3550B81EE41}) (Version: 9.0.185.0 - National Instruments) Hidden
NI LabWindows/CVI 2009 Code Generator (HKLM-x32\...\{56C9725B-CA13-4FAE-8CDB-E70906AFAEE3}) (Version: 9.1.0427 - National Instruments) Hidden
NI License Manager (HKLM-x32\...\{D581FB60-4827-4AB0-9BF0-A1159C1D0579}) (Version: 3.5.23 - National Instruments) Hidden
NI Logos 5.2.0 (HKLM-x32\...\{01CF3725-EE33-4308-BBF9-90BF6AC43814}) (Version: 5.2.25.0 - National Instruments) Hidden
NI Logos XT Support (HKLM-x32\...\{A27F9884-D0F7-4788-B016-CC55FA3015D3}) (Version: 5.2.21.0 - National Instruments) Hidden
NI Logos64 5.2.0 (HKLM\...\{F7B62B13-5E47-4511-B317-4F9FBA627BA6}) (Version: 5.2.25.0 - National Instruments) Hidden
NI Logos64 XT Support (HKLM\...\{48F51087-D7F3-44A9-AB97-4C13C4BB1090}) (Version: 5.2.21.0 - National Instruments) Hidden
NI LVBrokerAux 8.2.1 (HKLM-x32\...\{0FB31DF8-38DF-4C9D-B313-AFAFC3FBA02B}) (Version: 8.2.303.0 - National Instruments) Hidden
NI Math Kernel Libraries (64-bit) (HKLM\...\{4EBBC187-6988-4B10-A846-E1DBD2AD2B8D}) (Version: 1.0.14.0 - National Instruments) Hidden
NI Math Kernel Libraries (HKLM-x32\...\{ABD79E99-F9E3-413B-8D18-11070754355F}) (Version: 1.0.28.0 - National Instruments) Hidden
NI Math Kernel Libraries (HKLM-x32\...\{DB2C5648-700D-4AEF-83E1-70C72F0C34FA}) (Version: 1.0.861.0 - National Instruments) Hidden
NI MAX Remote Configuration 64-bit Installer 4.7 (HKLM\...\{B2855A2D-9CEE-4D9F-B6D9-8C1D5914A45E}) (Version: 4.70.49153 - National Instruments) Hidden
NI MAX Remote Configuration Installer 4.7 (HKLM-x32\...\{6CD33838-7432-4BD3-93FE-A5C40A068BBB}) (Version: 4.70.49153 - National Instruments) Hidden
NI MAX Support for 64 Bit Windows (HKLM\...\{749B0CBD-781F-4231-B356-7D79A110AFE7}) (Version: 4.70.49156 - National Instruments) Hidden
NI MDF Support (HKLM-x32\...\{BF903074-1312-47E4-8845-267BCA9586C2}) (Version: 2.80.295 - National Instruments) Hidden
NI mDNS Responder 1.3 for Windows 64-bit (HKLM\...\{ACEE65EF-99E2-41C2-A013-DDE7BBFB21D5}) (Version: 1.30.49157 - National Instruments) Hidden
NI mDNS Responder 1.3.0 (HKLM-x32\...\{A8BE8637-98A7-4CFA-B064-44253A96DD69}) (Version: 1.30.49157 - National Instruments) Hidden
NI Measurement & Automation Explorer 4.7.0 (HKLM-x32\...\{4E97AAFD-E743-43FE-B876-CD29D40AEA29}) (Version: 4.70.49156 - National Instruments) Hidden
NI Measurement Studio 8.6 Enterprise RunTime for VS2005 (HKLM-x32\...\{EC45867D-83A8-4ECF-911A-154CD98BD592}) (Version: 8.6.10466 - National Instruments) Hidden
NI Measurement Studio Common .NET Assemblies for .NET 2.0 (HKLM-x32\...\{E07DFE00-428C-4505-9E0E-BB1D6BE2BF6E}) (Version: 8.9.00302 - National Instruments) Hidden
NI Measurement Studio Recipe Processor (HKLM-x32\...\{4159DD60-49C1-4323-A1A5-FB060CBA35C5}) (Version: 8.0.0101 - National Instruments) Hidden
NI MetaSuite Installer (HKLM-x32\...\{41A0986C-CED7-4C93-AFF2-DC8566253B7B}) (Version: 2.71.130 - National Instruments) Hidden
NI MIO Device Drivers 2.4.6 (HKLM-x32\...\{30B3DD1C-FE4D-4C5D-A57F-415019DE65CA}) (Version: 2.46.49154 - National Instruments) Hidden
NI MIO Device Drivers for 64 Bit Windows 2.4.6 (HKLM\...\{CA7617BA-E5CF-400C-A631-5B81BA165DDD}) (Version: 2.46.49154 - National Instruments) Hidden
NI MXS 4.7.0 (HKLM-x32\...\{1E5C217C-FEE5-4A54-8A07-F6308D112CB3}) (Version: 4.70.49152 - National Instruments) Hidden
NI MXS 4.7.0 for 64 Bit Windows (HKLM\...\{535CDE4E-70A7-4A40-9F9B-27058C21F7D0}) (Version: 4.70.49152 - National Instruments) Hidden
NI OPC Support (HKLM-x32\...\{59B7E8FF-7BE3-4C91-A8E9-0D998D578329}) (Version: 10.0.158.0 - National Instruments) Hidden
NI Portable Configuration 4.7.0 (HKLM-x32\...\{55AF38A4-B9BB-4052-86D8-F6C3A2D5DB78}) (Version: 4.70.49152 - National Instruments) Hidden
NI Portable Configuration for 64 Bit Windows 4.7.0 (HKLM\...\{382C8A75-9A2B-444D-A649-F28C3E331B3A}) (Version: 4.70.49152 - National Instruments) Hidden
NI PXI Hardware 64-bit Support 2.5.6 (HKLM\...\{37489ACA-49FA-4D80-BD62-DCF172DCFA1F}) (Version: 2.56.49152 - National Instruments) Hidden
NI PXI Platform Framework 1.3.0 (HKLM-x32\...\{B378AD16-8A9F-47B2-8225-3CB339465FAF}) (Version: 1.30.49152 - National Instruments) Hidden
NI PXI Platform Framework 1.3.0 64-bit (HKLM\...\{032A9FD2-114E-4DB7-9CE3-4179D40B71C3}) (Version: 1.30.49152 - National Instruments) Hidden
NI PXI Platform Services 2.5.6 (HKLM-x32\...\{1052C0CF-35BC-4B3D-BCB2-D0CE96CA81E9}) (Version: 2.56.49152 - National Instruments) Hidden
NI PXI Platform Services 2.5.6 Configuration Support (HKLM-x32\...\{CCE4D322-0CBA-4C3D-8930-07A018C175D3}) (Version: 2.56.49152 - National Instruments) Hidden
NI PXI Platform Services 2.5.6 Expert (HKLM-x32\...\{FEC4FA99-C469-4449-98E2-6AC68D8DFDAD}) (Version: 2.56.49152 - National Instruments) Hidden
NI PXI SystemAPI Expert 2.5.6 (HKLM-x32\...\{CAE1E75A-00F5-4876-A3D7-196F201D570E}) (Version: 2.56.49152 - National Instruments) Hidden
NI PXI SystemAPI Expert 64-bit 2.5.6 (HKLM\...\{0DFAFEAE-B42B-493B-8B9E-AA6E147C70C0}) (Version: 2.56.49152 - National Instruments) Hidden
NI Registration Wizard (HKLM-x32\...\{E69A31C9-F24F-4A1A-BEAD-B1AA255760C1}) (Version: 1.3.87.0 - National Instruments) Hidden
NI Remote Provider for MAX 4.7.0 (HKLM-x32\...\{BD7905FA-8134-4B25-88D0-0A944B5BA4F7}) (Version: 4.70.49153 - National Instruments) Hidden
NI Remote PXI Provider for MAX 4.7.0 (HKLM-x32\...\{A5B57591-4E0C-4EF0-8954-11781BC5CCA1}) (Version: 4.70.49152 - National Instruments) Hidden
NI SCXI 1.13.5 (HKLM-x32\...\{A263CB7A-0BBF-4D9C-A749-F226AE92AAFD}) (Version: 1.135.49152 - National Instruments) Hidden
NI SCXI for 64 Bit Windows 1.13.5 (HKLM\...\{DD5D1F57-3BF3-46FF-BE2C-05B26B0C35EF}) (Version: 1.135.49152 - National Instruments) Hidden
NI Software Provider for MAX 4.7.0 (HKLM-x32\...\{2C751795-11E7-41B4-8E42-DC361717DBCB}) (Version: 4.70.49152 - National Instruments) Hidden
NI SSL Support (64-bit) (HKLM\...\{B45EAADF-545B-40B5-9F9F-78981FCD0DF1}) (Version: 10.0.22.0 - National Instruments) Hidden
NI SSL Support (HKLM-x32\...\{4058873D-3915-449A-9879-17149E06EA2F}) (Version: 10.0.22.0 - National Instruments) Hidden
NI STC 1.8.0 (HKLM-x32\...\{74441ED8-D862-4C37-B34D-AAC69C4E8BFB}) (Version: 1.80.49152 - National Instruments) Hidden
NI STC for 64 Bit Windows 1.8.0 (HKLM\...\{883B8083-3502-4DC6-A371-283B0ACB69A7}) (Version: 1.80.49152 - National Instruments) Hidden
NI System API Windows 32-bit 1.1.0 (HKLM-x32\...\{CFA85017-6556-4FBA-B6C8-6C831DDA87CF}) (Version: 1.10.554.0 - National Instruments) Hidden
NI System API Windows 64-bit 1.1.0 (HKLM\...\{4195A254-DE24-48B7-B07A-98F12FDD8C49}) (Version: 1.10.551.0 - National Instruments) Hidden
NI System Configuration 1.1.0 (HKLM-x32\...\{C77D7C5C-613E-4A4B-B654-CF416A0E97AB}) (Version: 1.10.335.0 - National Instruments) Hidden
NI System Configuration 1.1.0 for Windows 64-bit (HKLM\...\{595A0146-87E6-4B62-9B57-7EEED7A07253}) (Version: 1.10.337.0 - National Instruments) Hidden
NI System Configuration 1.1.0 LabVIEW Support (HKLM-x32\...\{03183CF3-BCA6-4922-86F4-7D0F9752439D}) (Version: 1.10.257.0 - National Instruments) Hidden
NI System Web Server 1.0 (HKLM-x32\...\{E9A1C394-7F4D-4548-920C-6665C5E5EF5F}) (Version: 10.0.278.0 - National Instruments) Hidden
NI System Web Server Base 1.0 (64-bit) (HKLM\...\{3D59804B-BF69-4088-9793-A2F9775DB5A5}) (Version: 1.0.59.0 - National Instruments) Hidden
NI System Web Server Base 1.0 (HKLM-x32\...\{2254CBFE-56BB-47BD-9958-5103AA58C5F7}) (Version: 1.0.104.0 - National Instruments) Hidden
NI TDMS (64-bit) (HKLM\...\{29D1842C-8761-4B62-BD63-8F8037EED45C}) (Version: 2.0.350.0 - National Instruments) Hidden
NI TDMS (HKLM-x32\...\{B1CFB647-2185-4AB9-BF38-FDD5D9B5F53B}) (Version: 2.0.350.0 - National Instruments) Hidden
NI Timing for 64 Bit Windows 2.1.0 (HKLM\...\{539CCDFC-CF52-4572-8F89-A3A8E70D40B9}) (Version: 2.10.49152 - National Instruments) Hidden
NI Timing Installer 2.1.0 (HKLM-x32\...\{659DB5F3-D59C-4DFF-B6EF-685A4BEA9DE4}) (Version: 2.10.49152 - National Instruments) Hidden
NI Trace Engine (64-bit) (HKLM\...\{9E3B041A-3151-4C51-9ABC-25D9DEAFB421}) (Version: 10.0.237.0 - National Instruments) Hidden
NI Trace Engine (HKLM-x32\...\{3AC465DB-700E-4A68-9AC9-33F61A2E7ABA}) (Version: 10.0.237.0 - National Instruments) Hidden
NI Uninstaller (HKLM-x32\...\{7F5571D1-1FFD-4961-99D5-97A621D69506}) (Version: 2.80.295 - National Instruments) Hidden
NI Update Service (HKLM-x32\...\{41313B23-25A9-4CDF-BA6E-F721FAE53664}) (Version: 1.10.65.0 - National Instruments) Hidden
NI Update Service Full (HKLM-x32\...\{F934D447-1831-4D39-BD7E-CB86DE4C6125}) (Version: 1.10.65.0 - National Instruments) Hidden
NI Variable Engine (64-bit) (HKLM\...\{986365BA-F43B-44CC-9117-6019DD8F9F6A}) (Version: 2.4.158.0 - National Instruments) Hidden
NI Variable Engine 2.4.0 (HKLM-x32\...\{C2AD80E1-9484-42F4-BA13-B3B045723ACB}) (Version: 2.4.159.0 - National Instruments) Hidden
NI VC2005MSMs x64 (HKLM\...\{B092C4EE-F80B-48DD-B57D-C42B66543BE0}) (Version: 8.02.0 - National Instruments) Hidden
NI VC2005MSMs x86 (HKLM-x32\...\{63E19B33-DD24-4EAB-9E77-6735C2171CE4}) (Version: 8.02.0 - National Instruments) Hidden
NI VC2008MSMs x64 (HKLM\...\{945CF655-4A32-4667-B085-70A9D53C5A86}) (Version: 9.0.201 - National Instruments) Hidden
NI VC2008MSMs x86 (HKLM-x32\...\{EC8BF669-EFEA-40D9-8894-9074E407FC07}) (Version: 9.0.201 - National Instruments) Hidden
NI Xalan Delay Load 1.10.1 (HKLM-x32\...\{7C62B54A-E524-4F3D-83E7-0F2ABAFC978A}) (Version: 1.10.46.0 - National Instruments) Hidden
NI Xalan Delay Load 1.10.1 64-bit (HKLM\...\{0B7AFE8D-1265-4025-AD23-3624CEAD4F3C}) (Version: 1.10.47.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.1 (HKLM-x32\...\{08133ED0-B6EB-49CD-B0EF-60502E41D15E}) (Version: 2.7.123.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.1 64-bit (HKLM\...\{0CADBEE0-59CA-4382-9A67-BA5CB07B6EFC}) (Version: 2.7.128.0 - National Instruments) Hidden
NI-653x Installer 1.9.2 (HKLM-x32\...\{82EDDD8D-D07B-4E3F-912D-70D966AB95F2}) (Version: 1.92.49152 - National Instruments) Hidden
NI-653x Installer for 64 Bit Windows 1.9.2 (HKLM\...\{C09D867B-F1D6-4F74-A8E3-6E58736FD98A}) (Version: 1.92.49152 - National Instruments) Hidden
NI-APAL 2.0 64-Bit Error Files (HKLM\...\{8C089519-64BD-48F5-AFDB-CACB1FF51FC4}) (Version: 2.00.49152 - National Instruments) Hidden
NI-APAL 2.0 Error Files (HKLM-x32\...\{86CD8FBB-39DA-4E20-B258-EC34D6437D88}) (Version: 2.00.49152 - National Instruments) Hidden
NI-DAQ C and VB6 API 2.1.0 (HKLM-x32\...\{7F8DF8BD-8D20-4F43-954A-36230221C046}) (Version: 2.10.49152 - National Instruments) Hidden
NI-DAQ Document Set 9.1.5 (HKLM-x32\...\{2AC3708F-0150-443B-BAD5-0FE7EFE43A91}) (Version: 9.15.49152 - National Instruments) Hidden
NI-DAQ INF Files 19.1.6 (HKLM-x32\...\{6632332C-CE73-4E34-8DFE-8D10B629BA93}) (Version: 19.16.3000 - National Instruments) Hidden
NI-DAQmx 9.1.6 (HKLM-x32\...\{2B3E7B0C-044F-476B-9CCD-4CD27847CFCA}) (Version: 9.16.49153 - National Instruments) Hidden
NI-DAQmx ADE Support 9.1.6 (HKLM-x32\...\{3D043B37-CC7C-4BF5-A49A-2E6D9E7EA366}) (Version: 9.16.49153 - National Instruments) Hidden
NI-DAQmx Documentation 9.1.5 (HKLM-x32\...\{2FC890C7-B8D2-4CCE-B9A6-7DC38B4980CD}) (Version: 9.15.49152 - National Instruments) Hidden
NI-DAQmx Documentation for 64 bit Windows 9.1.5 (HKLM\...\{6042F098-F642-4DE4-A69C-C090843B6B57}) (Version: 9.15.49152 - National Instruments) Hidden
NI-DAQmx MAX Configuration Support 9.1.6 (HKLM-x32\...\{E4C43362-8406-4C82-8C93-CE5C95C370CF}) (Version: 9.16.49153 - National Instruments) Hidden
NI-DAQmx MAX Support 64-bit 1.15.0 (HKLM\...\{F5BCCDD4-B1D2-475A-8BF4-D6D955279CAC}) (Version: 1.150.49153 - National Instruments) Hidden
NI-DAQmx Switch Core 2.0.1 (HKLM-x32\...\{6C5BE2A1-00CA-4971-9A07-A3EBD9D363DF}) (Version: 2.01.49152 - National Instruments) Hidden
NI-DAQmx Switch Core for 64 Bit Windows 2.0.1 (HKLM\...\{16DC2C06-7F29-40AB-9D83-B3D1A7A5BF02}) (Version: 2.01.49152 - National Instruments) Hidden
NI-DAQmx/LabVIEW shared documentation 1.7.5 (HKLM-x32\...\{C1C8BDB9-8FBA-4200-B5D4-18EB27850916}) (Version: 1.75.49152 - National Instruments) Hidden
NI-DAQmx/LabVIEW shared documentation for 64 Bit Windows 1.7.5 (HKLM\...\{3328DCD6-B311-4E61-8435-7F13AE9B4029}) (Version: 1.75.49152 - National Instruments) Hidden
NI-DIM 1.11.0f0 (HKLM-x32\...\{501DACFF-9399-4DBC-AA59-F35C9C6970D2}) (Version: 1.110.49152 - National Instruments) Hidden
NI-DIM 1.11.0f0 for 64 Bit Windows (HKLM\...\{895C2A25-8CB1-4DFE-9816-030841464F74}) (Version: 1.110.49152 - National Instruments) Hidden
NI-MDBG 1.10.0f0 (HKLM-x32\...\{1CC6055C-CF22-4FF3-A92E-2B8F7B505173}) (Version: 1.100.49152 - National Instruments) Hidden
NI-MDBG 1.10.0f0 for 64 Bit Windows (HKLM\...\{3268C8FE-AEA7-48A0-ACA5-776CF8A9852F}) (Version: 1.100.49152 - National Instruments) Hidden
NI-MRU 2.11.1f0 (HKLM-x32\...\{BA0C74BC-3CE2-4BDE-BEC8-C330EAB9A3B1}) (Version: 2.112.49152 - National Instruments) Hidden
NI-MRU 2.11.1f0 for 64 Bit Windows (HKLM\...\{36EA334E-C5A9-4A63-8C6C-0145A1242760}) (Version: 2.112.49152 - National Instruments) Hidden
NI-MX Expert Framework 2.5.0 (HKLM-x32\...\{058D1518-7DE5-43D0-9563-6740DD71E2A5}) (Version: 2.50.49152 - National Instruments) Hidden
NI-MX Expert Framework for 64 Bit Windows 2.5.0 (HKLM\...\{11D084D6-68D6-4922-AD9E-FD517C097C1B}) (Version: 2.50.49152 - National Instruments) Hidden
NI-MXDF 1.11.5f1 (HKLM-x32\...\{4C6F8199-E1B2-4F60-9099-A9298D8EA4D6}) (Version: 1.115.49153 - National Instruments) Hidden
NI-MXDF 1.11.5f1 for 64 Bit Windows (HKLM\...\{59AEDF7C-0D51-48A1-8829-3B4343319B68}) (Version: 1.115.49153 - National Instruments) Hidden
NI-MXLC Core (32-bit) (HKLM-x32\...\{88E32636-59E6-4ABA-89D6-0A58797927F7}) (Version: 1.35.39.0 - National Instruments) Hidden
NI-MXLC Core (64-bit) (HKLM\...\{80CFD487-FA39-4958-A126-9353048759C9}) (Version: 1.35.38.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2009 Support (HKLM\...\{94414DBF-432A-41C9-9785-94AD360AABE0}) (Version: 1.35.40.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2009 Support (HKLM-x32\...\{917961E5-1E72-4373-9F5A-C095DBD3C5E5}) (Version: 1.35.40.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2010 Support (HKLM\...\{B4B14A82-8EAA-4A52-91B0-D4FF7100244F}) (Version: 1.35.47.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2010 Support (HKLM-x32\...\{E899657B-60CA-4C1B-8DB5-FB0DA297A030}) (Version: 1.35.40.0 - National Instruments) Hidden
NI-MXLC LabVIEW 8.5 Support (HKLM-x32\...\{61A4B79C-85E0-4063-B56E-5E8AF8ECB204}) (Version: 1.35.40.0 - National Instruments) Hidden
NI-MXLC LabVIEW 8.6 Support (HKLM-x32\...\{BC3A030D-494A-44C7-BF26-CE3E440FA4F8}) (Version: 1.35.40.0 - National Instruments) Hidden
NI-ORB 1.9.3f0 (HKLM-x32\...\{98B874D4-D8A4-40BE-B82A-36E902C84289}) (Version: 1.94.49152 - National Instruments) Hidden
NI-ORB 1.9.3f0 for 64 Bit Windows (HKLM\...\{4E07E126-991F-4BA4-A0B9-35A54DAB3B33}) (Version: 1.94.49152 - National Instruments) Hidden
NI-PAL 2.5.4f0 (HKLM-x32\...\{9CF52CBF-7F12-4194-B80B-8B73C2C03C1D}) (Version: 10.64.49152 - National Instruments) Hidden
NI-PAL 2.5.4f0 for 64 Bit Windows (HKLM\...\{4B1D7007-5EB1-47D3-A71D-1417A5A33692}) (Version: 10.64.49152 - National Instruments) Hidden
NI-RPC 4.2.0f0 (HKLM-x32\...\{89FC36E5-5C62-499B-8207-9014C484F65C}) (Version: 4.20.49152 - National Instruments) Hidden
NI-RPC 4.2.0f0 for 64 Bit Windows (HKLM\...\{1C4F2A17-1B60-4575-8CB1-1555CF0D5206}) (Version: 4.20.49152 - National Instruments) Hidden
NI-RPC 4.2.0f0 for Phar Lap ETS (HKLM-x32\...\{112FE5D5-EB7A-4795-B906-79FB08E936C6}) (Version: 4.20.49152 - National Instruments) Hidden
NVIDIA mental ray and IRay feature plugins for 3ds Max 2018 (HKLM\...\{C76BBD60-09DB-43B3-B5B0-BF00C80B500C}) (Version: 19.0.0.0 - Autodesk)
NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4953.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4953.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.4953.1001 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden
Oracle VM VirtualBox 5.1.26 (HKLM\...\{11A88BD5-F059-4743-81D9-1432AC9C3D4E}) (Version: 5.1.26 - Oracle Corporation)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version:  - 3909)
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.2.11 - PDF Complete, Inc)
POSTAL 2 (HKLM-x32\...\Steam App 223470) (Version:  - Running With Scissors)
Prison Architect (HKLM\...\Steam App 233450) (Version:  - Introversion Software)
Privacy Manager for HP ProtectTools (HKLM\...\{29AB47F0-C5A3-401F-8A84-3324F2DC8E46}) (Version: 7.0.1.892 - Hewlett-Packard Company)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham)
PX Profile Update (HKLM-x32\...\{89FC4558-3689-C109-772E-3A6D5B96F019}) (Version: 1.00.1. - AMD) Hidden
Python 2.7.9 (64-bit) (HKLM\...\{79F081BF-7454-43DB-BD8F-9EE596813233}) (Version: 2.7.9150 - Python Software Foundation)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.306 - Qualcomm Atheros Communications)
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
Quartus II 9.1sp2 Web Edition (HKLM-x32\...\{4A8CFC2B-2E30-4D00-98A5-A9D32E747C28}) (Version: 9.1sp2 - Altera Corporation)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.58.411.2012 - Realtek)
Rogue Legacy (HKLM-x32\...\Steam App 241600) (Version:  - Cellar Door Games)
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 1.06.60 (3/17/2015) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.79.00(3/26/2015) - Samsung Electronics Co., Ltd.)
Samsung Easy Wireless Setup (HKLM-x32\...\Easy Wireless Setup) (Version: 3.70.18.0 - Samsung Electronics Co., Ltd.)
Samsung M2070 Series (HKLM-x32\...\Samsung M2070 Series) (Version: 1.19 (12/3/2014) - Samsung Electronics Co., Ltd.)
Samsung Network PC Fax (HKLM-x32\...\Samsung Network PC Fax) (Version: 1.11.28 (3/10/2015) - Samsung Electronics Co., Ltd.)
Samsung OCR Software (HKLM-x32\...\Samsung OCR Software) (Version: 1.01.12 (10/15/2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Diagnostics (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.3.2 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.25 - Samsung Electronics Co., Ltd.) Hidden
SCASM (HKLM-x32\...\ST6UNST #1) (Version:  - )
SDK (HKLM-x32\...\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}) (Version: 2.30.042 - Portrait Displays, Inc.) Hidden
Sentinel Protection Installer 7.1.0 (HKLM\...\{4C1A3B65-E284-4F04-822F-3774E0CEEF67}) (Version: 7.1.0 - Safenet Inc,)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SHENZHEN I/O (HKLM\...\Steam App 504210) (Version:  - Zachtronics)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd)
Star Wars: Knights of the Old Republic (HKLM-x32\...\Steam App 32370) (Version:  - BioWare)
Stardew Valley (HKLM\...\Steam App 413150) (Version:  - ConcernedApe)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Sunless Sea (HKLM-x32\...\Steam App 304650) (Version:  - Failbetter Games)
Surgeon Simulator 2013 (HKLM-x32\...\Steam App 233720) (Version:  - )
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
System Shock 2 (HKLM-x32\...\Steam App 238210) (Version:  - Irrational Games)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
Team Fortress 2 Beta (HKLM-x32\...\Steam App 520) (Version:  - Valve)
teenSMART UAC (HKLM\...\{443e579d-41ad-4f89-8680-2dd410815800}.sdb) (Version:  - )
teenSMART v3 (HKLM-x32\...\teenSMART v3 2012.03.06.i_v3) (Version: 2012.03.06.i_v3 - ADEPT)
Tera Term 4.92 (HKLM-x32\...\Tera Term_is1) (Version:  - )
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version:  - Edmund McMillen and Florian Himsl)
The Witcher: Enhanced Edition (HKLM-x32\...\Steam App 20900) (Version:  - CD Projekt RED)
Theft Recovery for HP ProtectTools (HKLM-x32\...\{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.0.10 - Hewlett-Packard Company) Hidden
Theft Recovery for HP ProtectTools (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.0.10 - Hewlett-Packard Company)
TIS-100 (HKLM\...\Steam App 370360) (Version:  - Zachtronics)
Tropico 4 (HKLM\...\Steam App 57690) (Version:  - Haemimont Games)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Undertale (HKLM\...\Steam App 391540) (Version:  - tobyfox)
Unity (HKLM-x32\...\Unity) (Version: 5.1.3f1 - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-2532254925-3227192101-289463352-1001\...\UnityWebPlayer) (Version: 5.1.3f1 - Unity Technologies ApS)
Universe Sandbox (HKLM-x32\...\Steam App 72200) (Version:  - Giant Army)
Validity Fingerprint Sensor Driver (HKLM\...\{ADAA7361-54B8-4FC8-804E-94EC6C11ED68}) (Version: 4.5.133.0 - Validity Sensors, Inc.)
Victoria II (HKLM-x32\...\Steam App 42960) (Version:  - Paradox Development Studio)
View User's Guide (HKLM-x32\...\View User Guide) (Version: 3.60.43.0 - )
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VPython 6.11 (HKLM\...\VPython for Python 2.7_is1) (Version:  - )
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
WinDirStat 1.1.2 (HKU\S-1-5-21-2532254925-3227192101-289463352-1001\...\WinDirStat) (Version:  - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinZip 15.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CF}) (Version: 15.0.10039 - WinZip Computing, S.L. )
World of Goo (HKLM\...\Steam App 22000) (Version:  - 2D BOY)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\iDrop.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\RxTest.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\DtCp.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\RxApprenticeServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\AcInetUI.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\RxInventorUtilities.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\DTInterop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\InvResc.dll (Autodesk)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\InvTXTStack.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FD703B01-4362-423E-9BDB-91BDCB16C1C9}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2018\Bin\DTInterop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll => No File
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\windows\system32\AcSignIcon.dll [2017-02-15] (Autodesk, Inc.)
ContextMenuHandlers1: [!NetFax0] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\windows\system32\spool\drivers\x64\3\NetFaxShell64.dll [2015-03-10] (Samsung Electronics Co., Ltd.)
ContextMenuHandlers1: [!NetFax1] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\windows\system32\spool\drivers\x64\3\NetFaxShell64.dll [2015-03-10] (Samsung Electronics Co., Ltd.)
ContextMenuHandlers1: [!NetFax2] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\windows\system32\spool\drivers\x64\3\NetFaxShell64.dll [2015-03-10] (Samsung Electronics Co., Ltd.)
ContextMenuHandlers1: [!NetFax3] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\windows\system32\spool\drivers\x64\3\NetFaxShell64.dll [2015-03-10] (Samsung Electronics Co., Ltd.)
ContextMenuHandlers1: [!NetFax4] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\windows\system32\spool\drivers\x64\3\NetFaxShell64.dll [2015-03-10] (Samsung Electronics Co., Ltd.)
ContextMenuHandlers1: [!NetFax5] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\windows\system32\spool\drivers\x64\3\NetFaxShell64.dll [2015-03-10] (Samsung Electronics Co., Ltd.)
ContextMenuHandlers1: [!NetFax6] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\windows\system32\spool\drivers\x64\3\NetFaxShell64.dll [2015-03-10] (Samsung Electronics Co., Ltd.)
ContextMenuHandlers1: [!NetFax7] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\windows\system32\spool\drivers\x64\3\NetFaxShell64.dll [2015-03-10] (Samsung Electronics Co., Ltd.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2017-02-15] (Autodesk)
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2013-09-25] (Qualcomm®Atheros®)
ContextMenuHandlers1-x32: [Autodesk.DWF.ContextMenu] -> {6C18531F-CA85-45F7-8278-FF33CF0A5964} => C:\Program Files (x86)\Common Files\Autodesk Shared\DWF Common\DWFShellExtension.dll [2017-02-05] (Autodesk, Inc.)
ContextMenuHandlers1-x32: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Internet Security\shellExt.dll [2017-06-13] (ESET)
ContextMenuHandlers1-x32: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2015-10-12] (Paramount Software UK Ltd)
ContextMenuHandlers1-x32: [ShredContextMenu] -> {85EFA470-665A-4322-AB1E-1EB9C70F61C8} => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\ShredContextMenu.dll [2013-03-06] ()
ContextMenuHandlers1-x32: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU)
ContextMenuHandlers1-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-10] (WinZip Computing, S.L.)
ContextMenuHandlers2: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Internet Security\shellExt.dll [2017-06-13] (ESET)
ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2015-10-12] (Paramount Software UK Ltd)
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2013-09-25] (Qualcomm®Atheros®)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers4: [ShredContextMenu] -> {85EFA470-665A-4322-AB1E-1EB9C70F61C8} => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\ShredContextMenu.dll [2013-03-06] ()
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-10] (WinZip Computing, S.L.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2012-03-30] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2012-03-26] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers6: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Internet Security\shellExt.dll [2017-06-13] (ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-10] (WinZip Computing, S.L.)
ContextMenuHandlers6_S-1-5-21-2532254925-3227192101-289463352-1001: [InventorMenu] -> {6FDE7A70-351B-11d6-988B-0010B57A8BB7} => C:\Program Files\Autodesk\Inventor 2018\Bin\DtBridge.dll [2017-02-16] (Autodesk, Inc.)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0834DA4C-90DB-4754-8131-10FAB5180F03} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation)
Task: {0C86A25F-87AB-407F-9CCF-78913EA567B3} - System32\Tasks\GoogleUpdateTaskMachineUA1d04030d095ad10 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {1579A5B6-722F-4603-9601-8DB56E9AC3D4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-09-01] (HP Inc.)
Task: {17EE7BD4-0B35-415D-AF07-E3A889083978} - System32\Tasks\MATLAB R2015a Startup Accelerator => C:\Program Files\MATLAB\R2015a\bin\win64\MATLABStartupAccelerator.exe [2014-12-29] ()
Task: {2158B04C-40F1-4D5C-81C9-86DF5A78EE42} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {237B43C1-B316-4C51-93B3-0F554C397531} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2017-03-14] (Microsoft Corporation)
Task: {29A20B9F-4FF3-4269-A134-CCC4BCB623E1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {50E8367F-E4D7-4112-936F-4738575CAF32} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {5CA09E48-F3F2-4CF7-A92B-EBEA3B7B959F} - System32\Tasks\ProBook => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\NBCore.exe
Task: {6409650F-AB7E-4F6D-BC2C-BC73BD80C1D2} - System32\Tasks\HPCeeScheduleForProBook => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {67561936-FF99-4D66-B162-C66C408464FF} - System32\Tasks\{05BF34CF-3712-4FFB-921C-0B77B5B48A39} => C:\windows\system32\pcalua.exe -a "C:\Users\ProBook\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I63F7OTC\vc_web.exe" -d C:\Users\ProBook\Desktop
Task: {680B4C4E-02F8-4F5D-9BA9-89F1B80FE31A} - System32\Tasks\Seagate_Install_Launch => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Dashboard.exe
Task: {700A1D3F-C1BD-4295-8FF8-930C16763EC7} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8ade9e20a4b9 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {75F83D60-A06D-4F02-A604-C4556A9B9393} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {78262F05-45B7-42E8-ADAD-002C3249BC6D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-04-11] (Microsoft Corporation)
Task: {8873379B-AF8B-46D5-BBB8-92CB67A52F31} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {910FDCA0-7F63-4CD6-AE39-8202404B03C0} - System32\Tasks\GoogleUpdateTaskMachineCore1cfefdab664329e => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {9783B170-D9D3-4CF9-BA67-6D0B09270C1F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant printer driver installation => C:\windows\TEMP\sp81442.exe [2017-08-08] (Hewlett-Packard Company ) <==== ATTENTION
Task: {B2BC9C00-CB02-48EC-8DEF-9F87513D53EC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {BBD26FB9-CDAE-41D6-9DC9-A1ADCCCEC98E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2017-03-14] (Microsoft Corporation)
Task: {D1A78A68-9823-4B0F-BC82-D182EAE77943} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8ade9e52a19f => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {F27F990F-713C-45BB-B839-A5F47BB02D57} - System32\Tasks\GoogleUpdateTaskMachineCore1d04030cffd54ff => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore1cf8ade9e20a4b9.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore1cfefdab664329e.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA1cf8ade9e52a19f.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForProBook.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\windows\Tasks\MATLAB R2015a Startup Accelerator.job => C:\Program Files\MATLAB\R2015a\bin\win64\MATLABStartupAccelerator.exe
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
ShortcutWithArgument: C:\Users\ProBook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MinGW-w64 Win32 Shell.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /A /Q /K D:\Development_Environment\MSYS32\mingw32_shell.bat
ShortcutWithArgument: C:\Users\ProBook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MinGW-w64 Win64 Shell.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /A /Q /K D:\Development_Environment\MSYS32\mingw64_shell.bat
ShortcutWithArgument: C:\Users\ProBook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSYS2 64bit\MinGW-w64 Win32 Shell.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /A /Q /K C:\MSYS64\mingw32_shell.bat
ShortcutWithArgument: C:\Users\ProBook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSYS2 64bit\MinGW-w64 Win64 Shell.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /A /Q /K C:\MSYS64\mingw64_shell.bat
ShortcutWithArgument: C:\Users\ProBook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSYS2 64bit\MSYS2 Shell.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /A /Q /K C:\MSYS64\msys2_shell.bat
 
==================== Loaded Modules (Whitelisted) ==============
 
2012-01-17 17:57 - 2012-01-17 17:57 - 000298368 _____ () C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\BIOSDomainPlugin.dll
2013-03-27 12:11 - 2013-03-27 12:11 - 003346432 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpFve64.dll
2011-10-12 06:03 - 2011-10-12 06:03 - 000213328 _____ () C:\windows\system32\PassThroughOTP.dll
2010-09-06 14:18 - 2010-09-06 14:18 - 001412608 _____ () C:\windows\system32\LIBEAY32.dll
2014-02-03 18:39 - 2009-11-26 02:09 - 000053760 _____ () C:\windows\System32\DLEEPMON.DLL
2014-02-03 18:39 - 2009-01-13 09:15 - 005709824 _____ () C:\windows\System32\DLEEOEM.DLL
2015-07-01 10:43 - 2015-07-01 10:43 - 000022528 _____ () C:\windows\System32\ssm4mlm.dll
2014-07-29 21:36 - 2017-01-17 04:25 - 000117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-03-27 11:28 - 2013-03-27 11:28 - 001327104 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
2015-01-01 21:31 - 2015-01-01 21:31 - 000075136 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2016-07-28 20:14 - 2017-01-31 08:34 - 008909512 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-03-06 14:38 - 2013-03-06 14:38 - 003020504 _____ () c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\ShredContextMenu.dll
2013-09-25 04:01 - 2013-09-25 04:01 - 000086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2012-02-10 18:26 - 2012-02-10 18:26 - 001083392 _____ () C:\Program Files\Hewlett-Packard\HP Power Assistant\System.Data.SQLite.dll
2017-08-28 17:25 - 2017-08-23 04:48 - 003824472 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libglesv2.dll
2017-08-28 17:25 - 2017-08-23 04:48 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libegl.dll
2016-07-10 07:37 - 2016-07-10 07:37 - 000073728 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2017-08-24 19:18 - 2017-06-15 10:16 - 000061944 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll
2017-08-24 19:18 - 2017-06-15 10:15 - 000110584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll
2013-03-27 11:54 - 2013-03-27 11:54 - 002854912 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcEncryptionProviderPlugin.dll
2013-03-27 11:26 - 2013-03-27 11:26 - 000126976 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHostInterface.dll
2013-03-27 11:52 - 2013-03-27 11:52 - 003035136 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EpeOpalEncryptionProviderPlugin.dll
2013-03-27 11:57 - 2013-03-27 11:57 - 002867200 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpDpHostPlugin.dll
2013-03-27 11:55 - 2013-03-27 11:55 - 000053248 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EpeOpalATASec4SATA.dll
2013-03-27 11:30 - 2013-03-27 11:30 - 002043904 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeCoreEncryptionPlugin.dll
2013-03-27 11:31 - 2013-03-27 11:31 - 001949696 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeProductDetectionPlugin.dll
2009-07-15 18:15 - 2009-07-15 18:15 - 000274432 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\NISWCH.sdc
2009-06-06 02:32 - 2009-06-06 02:32 - 000005120 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NI5690.sdc
2009-06-06 02:32 - 2009-06-06 02:32 - 000012288 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIDWG.sdc
2009-06-06 02:32 - 2009-06-06 02:32 - 000021504 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIHSD.sdc
2009-06-06 02:32 - 2009-06-06 02:32 - 000006144 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIPS.sdc
2009-06-06 02:32 - 2009-06-06 02:32 - 000005632 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIRFSA.sdc
2009-06-06 02:32 - 2009-06-06 02:32 - 000013312 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NISL.sdc
2009-06-06 02:32 - 2009-06-06 02:32 - 000013824 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NISRC.sdc
2009-06-06 02:32 - 2009-06-06 02:32 - 000006656 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NISYNC.sdc
2009-06-06 02:32 - 2009-06-06 02:32 - 000007680 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NITNR.sdc
2009-06-06 02:32 - 2009-06-06 02:32 - 000009728 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NITSU.sdc
2017-09-13 18:06 - 2017-09-13 18:06 - 000172032 _____ () C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\af090eae04eb9e9104769a5c03783afc\IsdiInterop.ni.dll
2012-04-16 06:52 - 2012-02-01 21:25 - 000059904 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2012-11-21 14:14 - 2013-11-18 21:26 - 001200088 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
HKLM\...\.scr: EAGLESCR => "C:\Autodesk\EAGLE 8.3.1\eagle.exe" -C "" "%1" <==== ATTENTION
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-2532254925-3227192101-289463352-1001\...\wiley.com -> hxxps://bcs.wiley.com
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-13 22:34 - 2009-06-10 17:00 - 000000824 _____ C:\windows\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2532254925-3227192101-289463352-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ProBook\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 75.75.75.75 - 75.75.76.76
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Samsung Network PC Fax.lnk => C:\windows\pss\Samsung Network PC Fax.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^ProBook^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Verizon Wireless Software Utility Application for Android – Samsung.lnk => C:\windows\pss\Verizon Wireless Software Utility Application for Android – Samsung.lnk.Startup
MSCONFIG\startupreg: ADSKAppManager => "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\ProBook\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: AMD AVT => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
MSCONFIG\startupreg: amd_dc_opt => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
MSCONFIG\startupreg: Autodesk Desktop App => "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
MSCONFIG\startupreg: CDAServer => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
MSCONFIG\startupreg: Cisco AnyConnect Secure Mobility Agent for Windows => "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
MSCONFIG\startupreg: DBAgent => "C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe" /WinStart
MSCONFIG\startupreg: Dell V715w => "C:\Program Files (x86)\Dell V715w\fm3032.exe" /s
MSCONFIG\startupreg: dleemon.exe => "C:\Program Files (x86)\Dell V715w\dleemon.exe"
MSCONFIG\startupreg: DTRun => c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
MSCONFIG\startupreg: EEDSpeedLauncher => rundll32.exe C:\windows\system32\eed_ec.dll,SpeedLauncher
MSCONFIG\startupreg: EzPrint => "C:\Program Files (x86)\Dell V715w\ezprint.exe"
MSCONFIG\startupreg: File Sanitizer => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
MSCONFIG\startupreg: GalaxyClient => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
MSCONFIG\startupreg: HotKeysCmds => C:\windows\system32\hkcmd.exe
MSCONFIG\startupreg: HPConnectionManager => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
MSCONFIG\startupreg: HPPowerAssistant => C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: IgfxTray => C:\windows\system32\igfxtray.exe
MSCONFIG\startupreg: MfeEpePcMonitor => "C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
MSCONFIG\startupreg: NI Background Service => C:\Program Files (x86)\National Instruments\Shared\Update Service\niupdate.exe
MSCONFIG\startupreg: niDevMon => C:\Program Files (x86)\National Instruments\NI-DAQ\HWConfig\nidevmon.exe
MSCONFIG\startupreg: NIRegistrationWizard => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe -autoDiscover 1 -displayIfNoneFound 0 -displayRegisterOptions 1 -sleepIfNoneFound 0 -locale 1033
MSCONFIG\startupreg: PDF Complete => C:\Program Files (x86)\PDF Complete\pdfsty.exe
MSCONFIG\startupreg: Persistence => C:\windows\system32\igfxpers.exe
MSCONFIG\startupreg: QLBController => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: swg => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe
MSCONFIG\startupreg: Uploader => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{C417C0F7-9974-47D3-879C-CACADFF2C3BC}] => (Allow) C:\Program Files (x86)\Bluetooth Suite\Btvstack.exe
FirewallRules: [{0F40BF4C-EE1A-4A22-B82A-FFFCE640272D}] => (Allow) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
FirewallRules: [{E1C599B2-7B81-497A-B219-AF9FDFCF4D4F}] => (Allow) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
FirewallRules: [{5172FEF4-4953-48D7-814D-E8BA7888513E}] => (Allow) C:\Program Files (x86)\Bluetooth Suite\Win7Ui.exe
FirewallRules: [{876B3688-7910-4574-9778-60735D9EC6AC}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{48B24A48-974F-43D4-A270-BF2DB172A8CC}C:\program files (x86)\bluetooth suite\btvstack.exe] => (Block) C:\program files (x86)\bluetooth suite\btvstack.exe
FirewallRules: [UDP Query User{48862771-5839-4B26-9B33-5DA4C2DBA521}C:\program files (x86)\bluetooth suite\btvstack.exe] => (Block) C:\program files (x86)\bluetooth suite\btvstack.exe
FirewallRules: [TCP Query User{63F2D949-2E12-4AFD-B2BA-03834DC27AAF}C:\program files (x86)\bluetooth suite\bttray.exe] => (Block) C:\program files (x86)\bluetooth suite\bttray.exe
FirewallRules: [UDP Query User{FEAAAE54-B04B-4C96-9948-8F6128A4E92F}C:\program files (x86)\bluetooth suite\bttray.exe] => (Block) C:\program files (x86)\bluetooth suite\bttray.exe
FirewallRules: [{25A42F1B-4822-4B8F-930D-8537038908CE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2B1ACD98-8E98-4D18-A704-9172BC266283}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{1FD94B6C-D747-43D2-8A2F-D5D016866ABC}C:\program files (x86)\steam\steamapps\high_tide1\team fortress 2\hl2.exe] => (Block) C:\program files (x86)\steam\steamapps\high_tide1\team fortress 2\hl2.exe
FirewallRules: [UDP Query User{ADD3542D-1FE1-4570-9368-445E89E35A01}C:\program files (x86)\steam\steamapps\high_tide1\team fortress 2\hl2.exe] => (Block) C:\program files (x86)\steam\steamapps\high_tide1\team fortress 2\hl2.exe
FirewallRules: [TCP Query User{273F0566-1578-4F77-9AF2-3D08CB92DEDA}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{3BB83A0B-D0F8-4CF9-8602-D8F48CB15711}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [{A8439718-C97D-4FE9-8000-21A33B97AEC5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe
FirewallRules: [{028F1C48-970F-416C-8218-7018C82742A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe
FirewallRules: [TCP Query User{DD2D0AA1-EF94-415E-A2AF-C1CDD4F06E34}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{6BAF615A-18C4-4821-9E9F-DFDE454FB7B8}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{7D8D1104-429B-4D8F-9D11-38D8137B5F40}C:\program files\java\jdk1.7.0_11\bin\java.exe] => (Allow) C:\program files\java\jdk1.7.0_11\bin\java.exe
FirewallRules: [UDP Query User{1D31C64F-00CE-40D6-A1BD-3A6193B8DB58}C:\program files\java\jdk1.7.0_11\bin\java.exe] => (Allow) C:\program files\java\jdk1.7.0_11\bin\java.exe
FirewallRules: [TCP Query User{C8A22B92-0C28-4686-BEE0-F6049463C7C2}C:\program files (x86)\steam\steamapps\high_tide1\counter-strike source\hl2.exe] => (Allow) C:\program files (x86)\steam\steamapps\high_tide1\counter-strike source\hl2.exe
FirewallRules: [UDP Query User{F8729F06-E689-4311-BEBC-175C2842BF22}C:\program files (x86)\steam\steamapps\high_tide1\counter-strike source\hl2.exe] => (Allow) C:\program files (x86)\steam\steamapps\high_tide1\counter-strike source\hl2.exe
FirewallRules: [{E6339B2F-A4BE-4D76-B150-B565C4CE688A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86_steam_beta\3DMark.exe
FirewallRules: [{AD72FF9E-8A6E-4D73-9A5C-14FFD451B251}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86_steam_beta\3DMark.exe
FirewallRules: [{4FF21197-0672-4F5A-BCE4-58B04ECE7AEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64_steam_beta\3DMark.exe
FirewallRules: [{8B9B33F7-F294-47B1-AF51-A33BCE233FDC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64_steam_beta\3DMark.exe
FirewallRules: [{FF0FDCC9-C0E5-47CB-9182-F72770F5682B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2 Beta\hl2.exe
FirewallRules: [{49BD482B-7D25-4A6B-9433-A2EB3FCACD68}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2 Beta\hl2.exe
FirewallRules: [TCP Query User{2B356236-4FFB-42B0-8FD8-0E3E190F61D7}C:\program files (x86)\steam\steamapps\high_tide1\garrysmod\hl2.exe] => (Block) C:\program files (x86)\steam\steamapps\high_tide1\garrysmod\hl2.exe
FirewallRules: [UDP Query User{FD358E9F-FF83-4B3C-96EE-6F0C0E54E695}C:\program files (x86)\steam\steamapps\high_tide1\garrysmod\hl2.exe] => (Block) C:\program files (x86)\steam\steamapps\high_tide1\garrysmod\hl2.exe
FirewallRules: [{C1499CF2-F894-4922-8978-954E9EB228DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncherSteamBeta.exe
FirewallRules: [{2B3635DE-1FE6-4DBB-801B-2B9EAA281D1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncherSteamBeta.exe
FirewallRules: [{1EA4D399-1ACB-4A2A-8F88-9DEEFDD623DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\high_tide1\garrysmod\hl2.exe
FirewallRules: [{4A84FF99-C33C-4F8C-9AD1-090DBD218F8B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\high_tide1\garrysmod\hl2.exe
FirewallRules: [TCP Query User{D466A5A4-D8BE-4A8C-9A36-EA9B2F32CB01}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{28841A1C-BB20-4D14-B27C-524F8DD5CB8B}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{1B68F5AA-04D8-4B72-904B-A499475359A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{1CC4D79C-9C6C-40D1-AEBF-DB39E7EF1814}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{A64E3488-325C-468B-BDFA-1D37161D6CB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\high_tide1\team fortress classic\hl.exe
FirewallRules: [{408A83EC-9FCF-4388-9DF7-ABA9A104F4F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\high_tide1\team fortress classic\hl.exe
FirewallRules: [{E3CE77A6-74D1-452A-AC31-3CDCAF74850A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Universe Sandbox\Universe Sandbox.exe
FirewallRules: [{9FA86928-068D-4804-9DBB-0304E33E216D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Universe Sandbox\Universe Sandbox.exe
FirewallRules: [{C1CC47FC-724B-4939-B9B5-4C80D8F02D91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe
FirewallRules: [{E5D48A22-AD9D-42E6-A5A5-FA550E6C30C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe
FirewallRules: [TCP Query User{8AF24AD3-9879-4341-8905-CC7B8E5F195F}C:\program files (x86)\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files (x86)\bitcoin\bitcoin-qt.exe
FirewallRules: [UDP Query User{327B135F-C2E6-48A0-B297-AF47F3117896}C:\program files (x86)\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files (x86)\bitcoin\bitcoin-qt.exe
FirewallRules: [TCP Query User{44A50364-0529-47C3-832E-71A6A450762A}C:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe] => (Block) C:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe
FirewallRules: [UDP Query User{769A7C8F-4D9A-4C73-A85C-349E616EED23}C:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe] => (Block) C:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe
FirewallRules: [{D723D15A-0E8E-4A1C-B29B-7E857EFB09FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe
FirewallRules: [{5BF4E0B4-496C-4879-B483-31777FF2C05D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe
FirewallRules: [{5166FEF2-E337-4D2D-8B18-1B0106939FC8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\high_tide1\source sdk base 2007\hl2.exe
FirewallRules: [{02CE0950-D761-426C-A60B-D2B72685E530}] => (Allow) C:\Program Files (x86)\Steam\steamapps\high_tide1\source sdk base 2007\hl2.exe
FirewallRules: [{D3EAE661-7D32-489B-BDB4-A7C934675827}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DLC Quest\DLC.exe
FirewallRules: [{1A8B5780-DAAB-4A43-A476-AB681E0857A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DLC Quest\DLC.exe
FirewallRules: [{1913C11D-2CC3-4CA8-A3A7-ABBE6842FA9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{8DDC1566-5F74-47CF-9A4A-5D69041F8897}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{172DF75F-1BA6-4DC1-B612-4E8C6A4647E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mass Effect\docs\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{19097703-2C82-4A57-92BB-4FAFA29F5EB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mass Effect\docs\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{A0AE7023-F8C2-4393-B8E6-FCD3A34F71BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{F2083BB4-269C-485C-8D0E-DC80578CD875}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{6B4E5320-EC8F-467C-8A68-4977266C33B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{A2D3C7DA-B4C9-492F-B0CA-6CD4B4E1BF6D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{B8CCBC40-D127-4671-B8A0-E3172B197EA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{15C520EC-185E-4EE1-A497-40305C6F08D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{BC40CEB8-B2DB-45DE-9976-0AC7CCC95B31}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{F9CD1D96-C89F-4C16-A8CB-BEF61D0B38CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{430D6C79-7654-426E-8B17-89CFB1191B5E}C:\program files (x86)\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe] => (Block) C:\program files (x86)\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe
FirewallRules: [UDP Query User{213E8536-809B-43D9-8F7F-9112FBB2F86A}C:\program files (x86)\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe] => (Block) C:\program files (x86)\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe
FirewallRules: [TCP Query User{1E1BADF9-D6AB-4217-9981-61C6AD855FC4}C:\program files (x86)\steam\steamapps\common\europa universalis iv\eu4.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\europa universalis iv\eu4.exe
FirewallRules: [UDP Query User{3611120C-2197-428E-88A6-B708C27EFD0D}C:\program files (x86)\steam\steamapps\common\europa universalis iv\eu4.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\europa universalis iv\eu4.exe
FirewallRules: [{E378D754-E70C-46C7-A587-41612D271C5E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4_launch.exe
FirewallRules: [{FB27E163-005A-4F37-B80B-EC72E8E08EA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4_launch.exe
FirewallRules: [{8AC11533-60E9-49BE-A5B3-4E0EDB8FE52A}] => (Allow) C:\Program Files (x86)\Dell V715w\dleefax.exe
FirewallRules: [{857F5CF3-464E-4817-B18F-4C9FC83B1514}] => (Allow) C:\Program Files (x86)\Dell V715w\dleefax.exe
FirewallRules: [TCP Query User{2D1CAA58-E893-43FF-8718-2FC66879AA62}C:\program files\java\jdk1.7.0_11\bin\java.exe] => (Block) C:\program files\java\jdk1.7.0_11\bin\java.exe
FirewallRules: [UDP Query User{E525962B-142E-422C-8907-AE4C59E24961}C:\program files\java\jdk1.7.0_11\bin\java.exe] => (Block) C:\program files\java\jdk1.7.0_11\bin\java.exe
FirewallRules: [TCP Query User{9A8E7DEF-CAA7-49F3-90A0-9DD686B8C063}C:\program files (x86)\steam\steamapps\common\europa universalis iv\eu4.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\europa universalis iv\eu4.exe
FirewallRules: [UDP Query User{E3E29994-6FF4-406A-A0D0-FAA9C9AEE9E9}C:\program files (x86)\steam\steamapps\common\europa universalis iv\eu4.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\europa universalis iv\eu4.exe
FirewallRules: [{2C4BE864-ABAE-4248-A8E3-27B4AB4AE1D3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{42A9B47E-176A-404B-9A5E-AFCAF738DE63}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{7C8E1B87-1D96-4EC3-948F-60E429653FBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Victoria 2\victoria2.exe
FirewallRules: [{07C27369-8722-4F9B-9080-22D5D1D6CFAB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Victoria 2\victoria2.exe
FirewallRules: [TCP Query User{68C24E41-FF13-49CA-8989-36CC8C4721EA}C:\program files\java\jre8\bin\javaw.exe] => (Block) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [UDP Query User{B9E2E3DC-5B65-4337-8F52-6A70DE0568EE}C:\program files\java\jre8\bin\javaw.exe] => (Block) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [{A6A5939A-E157-4E95-A6F9-5B95FB7A08A8}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2CA39FD4-B316-494D-AEB3-C824782EACE6}] => (Allow) LPort=2869
FirewallRules: [{20F23AC6-7541-4C45-86BF-77A01A270781}] => (Allow) LPort=1900
FirewallRules: [{8F264A6F-5324-4474-88E9-74C1F1A1A2FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Democracy 3\Democracy3.exe
FirewallRules: [{00C2FC82-796D-490A-BD6D-4230ABB3DE2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Democracy 3\Democracy3.exe
FirewallRules: [TCP Query User{7DB5A2DE-0675-4DB0-8A83-3F07743700CD}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{AACF12A7-6C2A-4918-A268-2BC1D79F2F25}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [{4534FAA6-BF8E-4E2E-A281-D665638B2A69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{4316A0A4-B65F-4429-A2C1-0B0A60967BAC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{0086DA09-E21D-462B-AF5F-13F0E7EF8784}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{524EBA28-44BE-4F8D-82CA-3C838DD661DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{E659B650-B2A5-43ED-96C0-18F2B6470EC5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{81780AAD-9A84-4198-9136-10B3C9A1CA76}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{5BFF4AA8-9B7F-41C1-96A1-094B75F3B3E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{73185205-9570-436C-9F02-0DC9CE4BFF03}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{6598462A-AAEF-44DB-BB6D-BE4DFE3DB6D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SS2\Shock2.exe
FirewallRules: [{14645E10-5D80-43C3-B193-B642229C0E94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SS2\Shock2.exe
FirewallRules: [{049E8647-B61C-4313-85A6-6C34D2509300}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{73FC3CDE-A3DA-4108-8FB2-34D7A70C37AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{0DC0A147-8678-4E17-8B7D-91DA39F50C9C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{293EC338-9F8C-4B12-8192-BBDFCB7F2018}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [TCP Query User{36DBCDA4-162B-435B-95A6-C4595E323DA0}C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe
FirewallRules: [UDP Query User{A87F75B0-2C58-405D-8DDD-DC65EF8A55A5}C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe
FirewallRules: [TCP Query User{756E85F3-838F-47C1-9174-CEF46D878649}C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe
FirewallRules: [UDP Query User{C1AC2899-4473-42DA-9422-8CBC777C6B7D}C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.1sv\bin\packettracer6.exe
FirewallRules: [{CBEDBDDD-ADB4-4326-833E-36D42F87FAF2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe
FirewallRules: [{B98A6F50-A08A-4CB9-8C2B-240FDF5D73FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe
FirewallRules: [TCP Query User{9B3B31E0-C4DF-4E1F-AB0D-38ADAF6B6662}C:\program files\java\jdk1.8.0_05\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_05\bin\java.exe
FirewallRules: [UDP Query User{71EFA67D-8C22-4E48-AFC3-5C6EACD5228F}C:\program files\java\jdk1.8.0_05\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_05\bin\java.exe
FirewallRules: [{BD11F040-CD2F-4B15-891A-B7D1C7F1E95F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{43E0AEB7-E997-47CF-AD56-A76572723989}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{B1657310-CC6A-4C15-9A18-0B3D91AA14B6}D:\programs\processing\java\bin\java.exe] => (Allow) D:\programs\processing\java\bin\java.exe
FirewallRules: [UDP Query User{35DA6E42-536E-4B03-83D6-BE1E233561F3}D:\programs\processing\java\bin\java.exe] => (Allow) D:\programs\processing\java\bin\java.exe
FirewallRules: [TCP Query User{10778A9F-30C5-4347-8E62-9FA39E68E805}D:\programs\tools\java\bin\java.exe] => (Allow) D:\programs\tools\java\bin\java.exe
FirewallRules: [UDP Query User{838FC3D0-D338-47CE-84E6-17C45CACBCAB}D:\programs\tools\java\bin\java.exe] => (Allow) D:\programs\tools\java\bin\java.exe
FirewallRules: [TCP Query User{3ED53337-13A7-4C9C-ADA7-68AF4C9239B5}D:\programs\tools\java\jre1.8.0_20\bin\jp2launcher.exe] => (Allow) D:\programs\tools\java\jre1.8.0_20\bin\jp2launcher.exe
FirewallRules: [UDP Query User{C6A694FE-0E54-4A64-B305-6AFE33D94370}D:\programs\tools\java\jre1.8.0_20\bin\jp2launcher.exe] => (Allow) D:\programs\tools\java\jre1.8.0_20\bin\jp2launcher.exe
FirewallRules: [TCP Query User{1FE4B40A-2191-401E-9808-744202888E09}C:\program files\java\jdk1.8.0_20\bin\jmc.exe] => (Block) C:\program files\java\jdk1.8.0_20\bin\jmc.exe
FirewallRules: [UDP Query User{CF14BFC1-09BB-4218-A272-A03A0BB00E5E}C:\program files\java\jdk1.8.0_20\bin\jmc.exe] => (Block) C:\program files\java\jdk1.8.0_20\bin\jmc.exe
FirewallRules: [TCP Query User{78459D66-B62F-43D6-B1B4-00008674B601}C:\program files\java\jre1.8.0_20\bin\jp2launcher.exe] => (Allow) C:\program files\java\jre1.8.0_20\bin\jp2launcher.exe
FirewallRules: [UDP Query User{34C38C95-1C65-4EAC-917A-BFD01D2890B5}C:\program files\java\jre1.8.0_20\bin\jp2launcher.exe] => (Allow) C:\program files\java\jre1.8.0_20\bin\jp2launcher.exe
FirewallRules: [{87C7BE1E-701D-4AED-A641-79850FB97832}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{F07E5D28-9121-47C3-8057-D3A12F5664D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{F212690D-B241-4DA3-B9CA-1355B9648AE1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe
FirewallRules: [{0E66031F-D254-4D68-B82B-85B4E379B9C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe
FirewallRules: [TCP Query User{589CBF8B-FE57-4A5C-8198-1E0524FDE3A4}C:\program files\java\jdk1.8.0_20\bin\java.exe] => (Block) C:\program files\java\jdk1.8.0_20\bin\java.exe
FirewallRules: [UDP Query User{68E2C817-2CE9-4143-9B80-52D34E15F6A7}C:\program files\java\jdk1.8.0_20\bin\java.exe] => (Block) C:\program files\java\jdk1.8.0_20\bin\java.exe
FirewallRules: [{D76CA166-C024-46E1-AA56-4FFCAFE1F183}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{F1B83444-00F3-4710-870A-5C4FB1470BBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{3034F600-63F2-4528-B8AD-B0BA8A416FB6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{2857D28A-A2C1-4476-B81B-DC1A85ACDBF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [TCP Query User{11F4646F-0857-455B-B2DF-38FEEE806699}C:\program files\java\jdk1.8.0_20\bin\java.exe] => (Block) C:\program files\java\jdk1.8.0_20\bin\java.exe
FirewallRules: [UDP Query User{FE5686B7-CAEC-48FC-AB81-5F84850BD7E7}C:\program files\java\jdk1.8.0_20\bin\java.exe] => (Block) C:\program files\java\jdk1.8.0_20\bin\java.exe
FirewallRules: [TCP Query User{07AA1601-5529-4D57-8F0A-8B2FCDFF5A1D}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [UDP Query User{B94A1012-5062-40D1-9A1C-796E55819DF7}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [TCP Query User{EF3ACACF-C098-4055-B030-C808F72F6AB0}C:\users\probook\appdata\local\blackboard\blackboard collaborate launcher\embedded\java\jre1.7.0_40\bin\javaw.exe] => (Block) C:\users\probook\appdata\local\blackboard\blackboard collaborate launcher\embedded\java\jre1.7.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{CE7F3A3E-C966-4A94-96BE-A76A863DA2CB}C:\users\probook\appdata\local\blackboard\blackboard collaborate launcher\embedded\java\jre1.7.0_40\bin\javaw.exe] => (Block) C:\users\probook\appdata\local\blackboard\blackboard collaborate launcher\embedded\java\jre1.7.0_40\bin\javaw.exe
FirewallRules: [{55701D53-1DB4-4FE8-BA3B-1C78ED61C520}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe
FirewallRules: [{9139D456-0AFB-4501-808B-5ACE781010D4}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe
FirewallRules: [{C4ECDF05-C545-472B-9C1B-11C52F40219F}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{F9A56BEF-F3AF-4290-9AC7-4EDB9A71C422}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{F9B1D0E0-AAE2-435B-B43A-2339A8F0D6AF}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{BD1E44E0-C709-4B1C-81F1-A1D1856CFA26}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{6DC4315C-2CC6-49EE-823B-736DA6ACDAE9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{3D05173E-4857-49C8-A884-4789079DEC6D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{2B072E83-CA4C-42D0-9443-FCBD9897B9A7}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{85CCDEA7-267E-4EFE-B5AE-64F338BBC1FB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe
FirewallRules: [{0383B0A2-DEA6-47CE-BC49-478EA233BD7D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe
FirewallRules: [{9CCCBD1D-A1FA-42D1-B116-73D45D8EE37A}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{7D7F9505-6B0B-4C48-9F53-D751D6C536EC}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{D4E2F981-4276-4E1E-AB75-D8B2F0CEDF8C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{1AAD40AE-2C2D-4899-A06D-A3966F92F4BC}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{202C35C4-246F-4552-B7F5-7E955D8828C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{D424F318-3BAF-4516-A5BF-27E11C3B8C2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{05722D4A-E37C-4469-91F5-78892082773A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{5AFA3639-3C10-4A46-B3AF-3287C29450F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{08FE1172-0571-44DA-9999-558150D2B30A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{203586B2-A9B5-42AA-80C4-435A26CBB6E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{6500B21E-0A6E-4AEB-8794-39C057D7A4CF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{862AF33A-D169-46A7-A725-757A88651D24}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{1B2262CD-A8B3-47B9-B194-86E267FBF9D8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{73AD8CC2-560B-47EE-A659-C511374CA775}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{04AF1BFA-4BE8-4EF3-AE6B-1C2348D561B1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{87BC6AF6-330A-45E3-B1F5-82B665AEA2DB}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [TCP Query User{6971A2B8-E6E0-4DC9-A749-96FADF5B2471}C:\program files\eclipse\eclipse.exe] => (Allow) C:\program files\eclipse\eclipse.exe
FirewallRules: [UDP Query User{86FFD2CA-AD65-4CC1-937C-E1A8DC1E4067}C:\program files\eclipse\eclipse.exe] => (Allow) C:\program files\eclipse\eclipse.exe
FirewallRules: [{308A9547-AD7A-4873-A023-A14829F7BE31}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{CFBCA5ED-7092-47E9-927C-182B25B56BB6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [TCP Query User{DD8D3FD1-40FC-41D1-8657-3F2B42645FEB}C:\program files (x86)\seagate\seagate dashboard 2.0\dashboard.exe] => (Allow) C:\program files (x86)\seagate\seagate dashboard 2.0\dashboard.exe
FirewallRules: [UDP Query User{35FB0C05-6D08-4511-8ECB-59AE6AF18BB0}C:\program files (x86)\seagate\seagate dashboard 2.0\dashboard.exe] => (Allow) C:\program files (x86)\seagate\seagate dashboard 2.0\dashboard.exe
FirewallRules: [TCP Query User{ACD402D1-603F-4854-9E00-8E916AE9B003}C:\program files\java\jdk1.8.0_31\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_31\bin\java.exe
FirewallRules: [UDP Query User{764A0789-9D4B-4399-BC09-14361FECDCF5}C:\program files\java\jdk1.8.0_31\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_31\bin\java.exe
FirewallRules: [TCP Query User{CAADAE7F-FF90-42CB-ABC8-FF0220029081}C:\program files\java\jdk1.8.0_31\bin\java.exe] => (Block) C:\program files\java\jdk1.8.0_31\bin\java.exe
FirewallRules: [UDP Query User{792229D8-5E93-4F2F-A584-9C82D8667DE2}C:\program files\java\jdk1.8.0_31\bin\java.exe] => (Block) C:\program files\java\jdk1.8.0_31\bin\java.exe
FirewallRules: [TCP Query User{85CAE93D-7E98-43B8-ACDE-A4F5089A6E58}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [UDP Query User{FC2EDD88-A662-4AE4-AE4A-0DF2F084F956}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [TCP Query User{7217FF0C-036F-45DE-9EBF-DD2400F1C154}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [UDP Query User{775C30F1-B7EC-4089-935F-4B7670AB3791}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [{F1160841-9A30-4D34-A4D4-30535DD8D813}] => (Allow) LPort=8888
FirewallRules: [TCP Query User{E127152E-4708-4CFE-BE55-6176D3354329}D:\development environment\eclipse\eclipse.exe] => (Allow) D:\development environment\eclipse\eclipse.exe
FirewallRules: [UDP Query User{711C929D-100B-4672-A06A-B2AF24B98297}D:\development environment\eclipse\eclipse.exe] => (Allow) D:\development environment\eclipse\eclipse.exe
FirewallRules: [{3EA75A61-4EF0-4423-ACB7-0CA7A2D50BC5}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe
FirewallRules: [{09D0A8AA-C94E-410E-BE14-2418FFD79D1D}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe
FirewallRules: [{6178A9C8-3CF9-4DA1-9876-E438FF305113}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{2512103B-6C9E-4585-9761-57D17AC337CB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{0ED9E211-F189-426C-B8E1-6318C47E517E}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{A4B638F1-6092-4B1B-B9EE-F123DFA6CE66}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{5ECDDEE4-231E-4FD2-B290-7ADC5C03214F}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{34AB977E-1C2D-454C-A8E5-DBCBC5D7FA41}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{7A0A5F5D-44E1-4E92-8286-ABB5F65F350C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{E170A384-9A7D-4DEC-828F-9B9EDBB70DE9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{82E0B902-E0AA-41A8-BB92-95CD65521664}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{395D518E-102B-4BB4-996A-D562743CD36D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe
FirewallRules: [{FE1B0E3C-62DB-49AB-B5BA-3C4DB0C514EE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe
FirewallRules: [{A60A562B-A219-4474-85DC-758124B63436}] => (Allow) C:\Program Files (x86)\Samsung\Network PC Fax\drv\NetFaxMon64.exe
FirewallRules: [{A18BE8D8-512F-4B68-8EDB-6388FCCCD131}] => (Allow) C:\Program Files (x86)\Samsung\Network PC Fax\drv\NetFaxMon.exe
FirewallRules: [{E713EB74-6720-40A8-A1C6-BDD231D0ABEF}] => (Allow) C:\windows\system32\spool\drivers\x64\3\NetFaxMon64.exe
FirewallRules: [{F2B76C71-0C0C-48BF-A186-FF0F051B2B2A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{209598D6-074C-4FEA-B817-B81F789F59CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{07D314DD-D9E5-48E2-BB4B-9660A45D6CB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Santa's Rampage\Binaries\Win64\UDK.exe
FirewallRules: [{F24B1FEF-A498-47DA-AD3C-264FC875BCE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Santa's Rampage\Binaries\Win64\UDK.exe
FirewallRules: [{AC5A2253-5A4E-4FEF-9257-3B2CF14E897C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LongLiveTheQueen\LongLiveTheQueen.exe
FirewallRules: [{AEEE5F93-3050-412C-9372-E350F1BCEEE7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LongLiveTheQueen\LongLiveTheQueen.exe
FirewallRules: [{46BE0D34-A0B8-448B-82A6-77DE6892022B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{D7509DDB-524B-4387-9D58-272CE6CE8161}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{0AD1CECC-EDB1-47DE-94A1-E4FB98C53975}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{8972D75C-C82C-4E3B-B8D4-34C860AE293D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [TCP Query User{8A9D623C-2429-4C27-B724-B6A885A5C6FE}C:\program files\eclipse\eclipse.exe] => (Block) C:\program files\eclipse\eclipse.exe
FirewallRules: [UDP Query User{FBB31015-E381-4EDE-87BA-468D5686AFE7}C:\program files\eclipse\eclipse.exe] => (Block) C:\program files\eclipse\eclipse.exe
FirewallRules: [TCP Query User{B8E39803-C01E-401A-81EB-6593E015BDAF}C:\program files\java\jdk1.8.0_31\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_31\bin\jmc.exe
FirewallRules: [UDP Query User{015230FF-F0B1-469E-8827-47069E3ECEAB}C:\program files\java\jdk1.8.0_31\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_31\bin\jmc.exe
FirewallRules: [{BDEFE8AE-7585-4EB7-B484-489295F5DE0D}] => (Block) C:\program files\java\jdk1.8.0_31\bin\jmc.exe
FirewallRules: [{D391C55D-AA4F-4C8D-90D8-E46D599623A2}] => (Block) C:\program files\java\jdk1.8.0_31\bin\jmc.exe
FirewallRules: [TCP Query User{CD61A0F6-0968-4897-97A2-A61220F5FFA9}C:\users\probook\downloads\whereismyhammer-64bitonly\windowsnoeditor\whereismyhammer\binaries\win64\whereismyhammer.exe] => (Allow) C:\users\probook\downloads\whereismyhammer-64bitonly\windowsnoeditor\whereismyhammer\binaries\win64\whereismyhammer.exe
FirewallRules: [UDP Query User{6B7F0524-FCA3-452B-8510-4A252EC53354}C:\users\probook\downloads\whereismyhammer-64bitonly\windowsnoeditor\whereismyhammer\binaries\win64\whereismyhammer.exe] => (Allow) C:\users\probook\downloads\whereismyhammer-64bitonly\windowsnoeditor\whereismyhammer\binaries\win64\whereismyhammer.exe
FirewallRules: [TCP Query User{5B0107FE-D437-4D12-84E6-FACFE169BD70}C:\program files (x86)\seagate\seagate dashboard 2.0\dashboard.exe] => (Block) C:\program files (x86)\seagate\seagate dashboard 2.0\dashboard.exe
FirewallRules: [UDP Query User{9726EDF3-DF02-4635-9D91-82B9D0D15B13}C:\program files (x86)\seagate\seagate dashboard 2.0\dashboard.exe] => (Block) C:\program files (x86)\seagate\seagate dashboard 2.0\dashboard.exe
FirewallRules: [{FC42C82C-1C8F-4840-A052-D152D7FE7327}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{DC0BFDD8-D8C1-4F5B-8810-7073F497FBA9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{7517CCA7-DE72-4B8E-9AA5-675D144EE335}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{563FFDE2-F4BB-46A4-864B-BF6240EFE635}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{E8EEED5E-5E2B-4C7E-A7C8-76C89E1964FC}C:\program files\matlab\r2015a\bin\win64\matlab.exe] => (Allow) C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [UDP Query User{68BEA134-8048-4A5B-9AFC-CFF9C505B237}C:\program files\matlab\r2015a\bin\win64\matlab.exe] => (Allow) C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [{AB2DE906-4BE7-47F9-8E92-FD5BB0C39628}] => (Block) C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [{78D45364-6DC6-4B88-9B8A-F795E67F0477}] => (Block) C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [TCP Query User{8F76A00D-30ED-4614-8241-241D2081B0A4}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe
FirewallRules: [UDP Query User{9A772E6B-E084-4BD6-9C1B-8E39EAABF341}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe
FirewallRules: [{2822D5DB-B268-48BA-A7CC-341E561E02F5}] => (Block) C:\program files\unity\editor\unity.exe
FirewallRules: [{54EEBB0D-1258-4EAA-B3E9-2424A64C5F28}] => (Block) C:\program files\unity\editor\unity.exe
FirewallRules: [TCP Query User{D47A2F6F-1AFA-458B-AB04-FA288506EE82}C:\program files\unity\monodevelop\bin\monodevelop.exe] => (Block) C:\program files\unity\monodevelop\bin\monodevelop.exe
FirewallRules: [UDP Query User{F22E7736-5C18-441C-977C-D6D25EA296BA}C:\program files\unity\monodevelop\bin\monodevelop.exe] => (Block) C:\program files\unity\monodevelop\bin\monodevelop.exe
FirewallRules: [TCP Query User{63F6CB3E-71F8-4DB9-95E3-7458583B0A82}C:\users\probook\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\probook\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{FE00AA56-E4C9-4E54-915A-7D54C96FF373}C:\users\probook\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\probook\appdata\local\akamai\netsession_win.exe
FirewallRules: [{B8FA5B4C-23F1-4840-AE25-8AEBB97D1090}] => (Block) C:\users\probook\appdata\local\akamai\netsession_win.exe
FirewallRules: [{386162E0-1C33-4A8A-B790-E73B97595ABC}] => (Block) C:\users\probook\appdata\local\akamai\netsession_win.exe
FirewallRules: [{A2B14BDE-F571-41ED-82A1-B11C963D47F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{DFD65136-5135-4919-80AE-3252B9E7C5F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{B57F06C5-E852-45FA-8F59-7C4B30C1CD2F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\POSTAL2Complete\ShareThePain\System\Postal2MP.exe
FirewallRules: [{8883019D-C42F-4C36-9FD9-B8C5C82C9861}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\POSTAL2Complete\ShareThePain\System\Postal2MP.exe
FirewallRules: [{6FFB1C19-7AFF-40B7-803C-BDB37D8B38D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\POSTAL2Complete\Paradise Lost\System\ParadiseLost.exe
FirewallRules: [{FA07DED5-619C-4399-9CEE-A09107BF0E75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\POSTAL2Complete\Paradise Lost\System\ParadiseLost.exe
FirewallRules: [TCP Query User{41517C00-19AD-43FB-865A-0E0161C2F853}C:\program files\java\jdk1.8.0_60\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_60\bin\java.exe
FirewallRules: [UDP Query User{DCF41F0C-81D8-4EA0-9918-1882E456E3DC}C:\program files\java\jdk1.8.0_60\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_60\bin\java.exe
FirewallRules: [TCP Query User{0418C0E7-9013-4B55-9A07-09F378836586}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{41CEABB3-56FF-4D37-945A-94E913FBEF87}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{7B58E808-8447-4CC9-828F-2D40A5193CC2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gunpoint\Gunpoint.exe
FirewallRules: [{584086C9-5470-4795-8DFA-E8C005D7D14D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gunpoint\Gunpoint.exe
FirewallRules: [{AD391FAB-78DE-4F9B-A807-72A73184B445}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\swkotor\swkotor.exe
FirewallRules: [{A4F929AF-0C00-4333-B828-9996C137D222}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\swkotor\swkotor.exe
FirewallRules: [{B02EFEF9-0CE3-4211-A98B-BE5B9A56672C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Amnesia The Dark Descent\Amnesia.exe
FirewallRules: [{074415CE-FA2B-4CE3-8D3A-BC6FBBB4DD47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Amnesia The Dark Descent\Amnesia.exe
FirewallRules: [{49B27AA1-8243-4337-BFB7-A1684D6B48E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Amnesia The Dark Descent\Launcher.exe
FirewallRules: [{38A3FD1D-6D75-475B-94C8-5C90D9FCE1FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Amnesia The Dark Descent\Launcher.exe
FirewallRules: [{2E2F39A0-7FBA-4E6E-83F2-877A55AC1693}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SunlessSea\Sunless Sea.exe
FirewallRules: [{A8790319-BE63-48F1-A551-26F53F091ABE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SunlessSea\Sunless Sea.exe
FirewallRules: [{94F2BCE0-3EDE-4FA3-A8D1-93788BB6B119}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{6EC3B961-A433-4F81-A8FB-459F1BD548B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{EA85DDE4-7E37-4F87-A1AD-97AB95148398}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\80 Days\80 Days.exe
FirewallRules: [{2135FF88-9FA5-4D4C-AA5A-36E2140135F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\80 Days\80 Days.exe
FirewallRules: [TCP Query User{A6DFD832-7F8E-4A50-9BAC-ECB573AF1C98}C:\program files\java\jdk1.8.0_72\bin\java.exe] => (Block) C:\program files\java\jdk1.8.0_72\bin\java.exe
FirewallRules: [UDP Query User{15B12E25-B3AB-47E8-BC71-78FA21974E8B}C:\program files\java\jdk1.8.0_72\bin\java.exe] => (Block) C:\program files\java\jdk1.8.0_72\bin\java.exe
FirewallRules: [TCP Query User{61070AF8-694D-4C44-868E-04AA4B938C8F}C:\program files\java\jdk1.8.0_66\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_66\bin\java.exe
FirewallRules: [UDP Query User{6089AE67-4E3D-4568-98CA-892CE81D0F5A}C:\program files\java\jdk1.8.0_66\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_66\bin\java.exe
FirewallRules: [{02D5D18D-1FCA-49EB-8C31-634F745905FC}] => (Block) C:\program files\java\jdk1.8.0_66\bin\java.exe
FirewallRules: [{32F6B044-2563-485D-85D2-167D4DE50732}] => (Block) C:\program files\java\jdk1.8.0_66\bin\java.exe
FirewallRules: [{CD4A55A3-AC69-4910-B11D-11764353D2A1}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
FirewallRules: [{E9F3CA92-CAD3-46F6-BDA4-C9D733553497}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
FirewallRules: [{EB28FDA9-8A0F-4DDC-818C-F3991275BCEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe
FirewallRules: [{8CC2E60C-3595-40A6-A474-629D7E1E9478}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe
FirewallRules: [{70E44943-41B4-44DE-8C16-38B0B4D62B38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{02952F1B-0E12-4408-B1AA-79764259AE2F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{1572DC77-690A-4E88-86F3-96C87F40486F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe
FirewallRules: [{316F6454-A325-4352-B401-78523F38BA92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe
FirewallRules: [{489BE432-4530-4B14-BA36-387B2B95AA49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 4\Tropico4.exe
FirewallRules: [{54972197-7749-4F6E-8E98-A63B9496652C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 4\Tropico4.exe
FirewallRules: [{8CB073F0-7CB3-407A-AD96-3D0732A46B23}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DoorKickers\DoorKickers.exe
FirewallRules: [{DFF61B06-8AB3-4555-8AD9-3EF72C37D3B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DoorKickers\DoorKickers.exe
FirewallRules: [{A6D84E0F-3966-479E-9FB3-81C0CD36EC44}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{BD452B5F-629D-4399-BFA0-BB7D3BF72AFD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{3332932C-8F1B-45ED-B9E2-A8F2008FA50D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{70988094-1BF9-4BB0-A205-C00B73BB4AF6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{B3A639EA-3D0B-46C5-9A66-BF70325FC4A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{6E2925ED-FCE0-4716-92BC-0B8B3630E0C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{666B6F5A-02FD-4F31-AC88-2DB43D921426}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F6F29D69-CA6B-4B64-A5B8-9F37D5103860}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{DAC7C4F7-B67F-495C-9239-EC32F30EB3E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Goo\WorldOfGoo.exe
FirewallRules: [{9B2BDE1E-34FC-477D-8CF4-C847679A3E0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Goo\WorldOfGoo.exe
FirewallRules: [{D586D4AF-9A0D-4579-B62C-2B744511843C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TIS-100\tis100.exe
FirewallRules: [{0D549181-B6CB-4459-A0E2-7DD4E6EEDAB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TIS-100\tis100.exe
FirewallRules: [{7A74B882-BCDE-4149-A576-2F1501FF108B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SHENZHEN IO\Shenzhen.exe
FirewallRules: [{582A1A9C-4FDF-482E-993B-38A714D531FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SHENZHEN IO\Shenzhen.exe
FirewallRules: [{18149ADA-562D-4DD6-9659-3C8EC30AC5BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hacknet\Hacknet.exe
FirewallRules: [{E358719B-E2B4-4E7B-86A0-9D88F29B4013}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hacknet\Hacknet.exe
FirewallRules: [{BE405BAF-72A6-486E-9756-6751941DFC95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe
FirewallRules: [{F9B1F00B-7EDE-43D4-A202-F35C28F37971}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe
FirewallRules: [{F2A5E941-9DB0-4750-8C94-96C05D14AA43}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{C70E0AAF-D200-4E1F-A0F5-77DAAF5A3246}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{909F3DBF-B0CE-46E5-BEEB-032F138630AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{D869D8C1-F3AC-4D66-A920-76CC18BB79B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{BB54FC2C-D563-4E86-9E65-B146436BF732}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{6ADCEFF4-30CE-4BFB-A4C2-11C3261820A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{FBC9F455-22DB-4A7F-81B2-AACEDDF7E2BC}] => (Allow) C:\Program Files\Autodesk\Desktop Connect\forever\node.exe
FirewallRules: [{E1803A59-1776-48BD-86AA-5AC276F19C66}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Restore Points =========================
 
13-09-2017 17:16:46 Windows Update
14-09-2017 17:58:08 Installed ESET Internet Security
 
==================== Faulty Device Manager Devices =============
 
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (09/18/2017 05:27:04 PM) (Source: LabVIEW) (EventID: 3299) (User: )
Description: LabVIEW information:  Error: 404 "Not Found" for "national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646", file "c:/program files (x86)/national instruments/shared/ni webserver/www/national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646": Can't access URL       .
 
Error: (09/18/2017 05:27:04 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (09/17/2017 06:55:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (09/14/2017 06:04:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (09/14/2017 05:49:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (09/14/2017 05:36:16 PM) (Source: LabVIEW) (EventID: 3299) (User: )
Description: LabVIEW information:  Error: 404 "Not Found" for "national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646", file "c:/program files (x86)/national instruments/shared/ni webserver/www/national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646": Can't access URL       .
 
Error: (09/14/2017 05:36:16 PM) (Source: LabVIEW) (EventID: 3299) (User: )
Description: LabVIEW information:  Error: 404 "Not Found" for "national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646", file "c:/program files (x86)/national instruments/shared/ni webserver/www/national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646": Can't access URL       .
 
Error: (09/14/2017 05:36:16 PM) (Source: LabVIEW) (EventID: 3299) (User: )
Description: LabVIEW information:  Error: 404 "Not Found" for "national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646", file "c:/program files (x86)/national instruments/shared/ni webserver/www/national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646": Can't access URL       .
 
Error: (09/14/2017 05:36:16 PM) (Source: LabVIEW) (EventID: 3299) (User: )
Description: LabVIEW information:  Error: 404 "Not Found" for "national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646", file "c:/program files (x86)/national instruments/shared/ni webserver/www/national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646": Can't access URL       .
 
Error: (09/14/2017 05:36:16 PM) (Source: LabVIEW) (EventID: 3299) (User: )
Description: LabVIEW information:  Error: 404 "Not Found" for "national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646", file "c:/program files (x86)/national instruments/shared/ni webserver/www/national instruments/ni-rpc/interface/eadfc80d-1e6f-425b-8986-12ccef98f646": Can't access URL       .
 
 
System errors:
=============
Error: (09/18/2017 05:45:42 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.
 
Error: (09/18/2017 05:45:42 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.
 
Error: (09/18/2017 05:26:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The HP Auto service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.
 
Error: (09/18/2017 05:26:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the HP Auto service to connect.
 
Error: (09/18/2017 05:25:55 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Offline Files service terminated with the following error: 
The system cannot find the path specified.
 
Error: (09/17/2017 07:48:37 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} did not register with DCOM within the required timeout.
 
Error: (09/17/2017 06:54:03 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Offline Files service terminated with the following error: 
The system cannot find the path specified.
 
Error: (09/15/2017 06:04:20 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {995C996E-D918-4A8C-A302-45719A6F4EA7} did not register with DCOM within the required timeout.
 
Error: (09/14/2017 06:09:02 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.
 
Error: (09/14/2017 06:09:02 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.
 
 
CodeIntegrity:
===================================
  Date: 2017-05-15 04:50:24.624
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Internet Security\updfiles\base_nonnups\nod623A.dll.nup.raw because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-05-15 04:50:24.384
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Internet Security\updfiles\base_nonnups\nod623A.dll.nup.raw because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-05-15 04:50:24.184
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Internet Security\updfiles\base_nonnups\nod623A.dll.nup.raw because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-05-15 04:50:23.954
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Internet Security\updfiles\base_nonnups\nod623A.dll.nup.raw because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-05-15 04:50:23.694
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Internet Security\updfiles\base_nonnups\nod623A.dll.nup.raw because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-05-15 04:50:23.484
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Internet Security\updfiles\base_nonnups\nod623A.dll.nup.raw because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-05-15 04:50:22.414
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Internet Security\updfiles\base_nonnups\nod61C5.dll.nup.raw because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-05-15 04:50:22.164
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Internet Security\updfiles\base_nonnups\nod61C5.dll.nup.raw because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-05-15 04:50:21.644
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Internet Security\updfiles\base_nonnups\nod61C5.dll.nup.raw because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-05-15 04:50:21.194
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Internet Security\updfiles\base_nonnups\nod61C5.dll.nup.raw because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-3210M CPU @ 2.50GHz
Percentage of memory in use: 44%
Total physical RAM: 8073.44 MB
Available physical RAM: 4504.16 MB
Total Virtual: 16145.06 MB
Available Virtual: 12603.32 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:675.94 GB) (Free:241.84 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.97 GB) FAT32
Drive g: (HP_RECOVERY) (Fixed) (Total:20.4 GB) (Free:3.14 GB) NTFS ==>[system with boot components (obtained from drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: E201C75A)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=675.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=0C)
 
==================== End of Addition.txt ============================


#3 nasdaq

nasdaq

  • Malware Response Team
  • 38,548 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:58 PM

Posted 19 September 2017 - 08:27 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

No malware was found on your logs. This is just a cleanning of empty registry keys.

Press the Windows key + r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.
 
start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

HKLM-x32\...\Run: [] => [X]
GroupPolicy: Restriction <==== ATTENTION
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 cpuz136; \??\C:\windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 cpuz137; \??\C:\windows\TEMP\cpuz137\cpuz137_x64.sys [X]
S3 usb6xxxk; \??\C:\windows\system32\drivers\usb6xxxkl.sys [X]
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\iDrop.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll => No File

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

I think you will have to trust E-set.

This article is dated but may help you decide to change the status of the SSL certificate.
https://www.reddit.com/r/eset/comments/39bupz/eset_ssl_filter_ca/

Your call.
===

Please download Security Analysis by Rocket Grannie from here
  • Save it to your Desktop.
  • Close your security software to avoid potential conflicts.
  • Double click RGSA.exe
  • Click OK on the copyright-disclaimer
  • When finished, a Notepad window will open with the results of the scan.
  • The log named SALog.txt can also be found on the Desktop or in the same folder from where the tool is run if installed elsewhere.
  • For your security I suggest you update all the old programs.
Note: If you get a Warning from Windows about running the program, click on More info and then click Run Anyway to run it even though Windows says it might put your PC at risk.
Note: The link to the most current version of the program will always be in the first post of this topic.
Note: Windows 10 may pop up a warning message.
Note: The current java version on XP will show as "out of date".
Note: Flash Player is pre-installed in Google Chrome and updates automatically!
Note: Flash Player is pre-installed in IE/Hedge and updates automatically!

#4 HighTide1

HighTide1
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:06:58 PM

Posted 19 September 2017 - 05:38 PM

Hello nasdaq. I've done as instructed, and here's the results of the two logs:

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 17-09-2017 01
Ran by ProBook (19-09-2017 17:47:49) Run:1
Running from C:\Users\ProBook\Downloads
Loaded Profiles: ProBook (Available Profiles: ProBook)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
start
 
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
 
HKLM-x32\...\Run: [] => [X]
GroupPolicy: Restriction <==== ATTENTION
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 cpuz136; \??\C:\windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 cpuz137; \??\C:\windows\TEMP\cpuz137\cpuz137_x64.sys [X]
S3 usb6xxxk; \??\C:\windows\system32\drivers\usb6xxxkl.sys [X]
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\iDrop.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll => No File
 
End
*****************
 
Restore point was successfully created.
Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
C:\windows\system32\GroupPolicy\Machine => moved successfully
C:\windows\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\Software\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => value removed successfully
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => value removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\System\CurrentControlSet\Services\cpuz136 => key removed successfully
cpuz136 => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz137 => key removed successfully
cpuz137 => service removed successfully
HKLM\System\CurrentControlSet\Services\usb6xxxk => key removed successfully
usb6xxxk => service removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220} => key removed successfully
HKU\S-1-5-21-2532254925-3227192101-289463352-1001_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1} => key removed successfully
 
=========== EmptyTemp: ==========
 
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 35885861 B
Java, Flash, Steam htmlcache => 875685127 B
Windows/system/drivers => 2846211136 B
Edge => 0 B
Chrome => 512250467 B
Firefox => 0 B
Opera => 0 B
 
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 79414955 B
systemprofile32 => 33982923 B
LocalService => 105478 B
NetworkService => 297696 B
ProBook => 159571760 B
 
RecycleBin => 0 B
EmptyTemp: => 4.2 GB temporary data Removed.
 
================================
 
 
The system needed a reboot.
 
==== End of Fixlog 17:52:37 ====
 
Result of Security Analysis by Rocket Grannie (x86) Updated: 14th September, 2017
Running from:C:\Users\ProBook\Downloads (18:36:46 - 09/19/2017)
***---------------------------------------------------------***
Microsoft Windows 7 Professional X64 Service Pack 1
UAC is Enabled
Internet Explorer 11
Default Browser: Google Chrome
***------------Antivirus - Antispyware - Firewall-----------***
ESET Internet Security (Enabled - up to Date)
ESET Internet Security (Enabled - up to Date)
Malwarebytes (Disabled - up to Date)
Windows Defender (Enabled - up to Date)
ESET Personal firewall (Enabled)
***-------Security Programs - Browsers - Miscellaneous------***
Adobe Flash Player NPAPI is not installed
Google Chrome (60.0.3112.113)
Java (8.0.1440.1)
Malwarebytes (3.2.2.2018)
Microsoft Silverlight (5.1.50907.0)
Windows Live Essentials (16.4.3528.0331) ==> is no longer supported
 
***----------------Analysis Complete-------------------------***


#5 nasdaq

nasdaq

  • Malware Response Team
  • 38,548 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:58 PM

Posted 20 September 2017 - 07:17 AM

Hi,

Looking good.

If all is well.

To learn more about how to protect yourself while on the internet read this little guide best security practices keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/


https://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
Simple and easy ways to keep your computer safe and secure on the Internet.

Let me know if you still have some issues with this computer.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users