Win 10, Trotux eingefangen

stratos2k · 12.02.2017, 20:29

Zu guter Letzt noch die Addition.txt in zwei Teilen:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2017
Ran by Strat_000 (12-02-2017 20:24:11)
Running from C:\Users\Strat_000\Desktop
Windows 10 Pro Version 1607 (X64) (2016-09-28 20:15:17)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-968931954-2191872932-1542864395-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-968931954-2191872932-1542864395-503 - Limited - Disabled)
Guest (S-1-5-21-968931954-2191872932-1542864395-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-968931954-2191872932-1542864395-1003 - Limited - Enabled)
Strat_000 (S-1-5-21-968931954-2191872932-1542864395-1001 - Administrator - Enabled) => C:\Users\Strat_000

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3D XML Player (HKLM\...\{383D9F1B-A4F6-4C6C-A925-05A2636A0176}) (Version: 16.7.14143 - Dassault Systemes)
3Dconnexion 3DxWare 10 (64-bit) (HKLM-x32\...\{BAFCA6AC-8B37-405B-B57E-C1D45DE70ACC}) (Version: 10.3.0 - 3Dconnexion)
3Dconnexion 3DxWinCore (Version: 17.3.0.12346 - 3Dconnexion) Hidden
3Dconnexion Add-In for AutoCAD (Version: 5.1.0 - 3Dconnexion) Hidden
3Dconnexion Add-In for Inventor 11 - 2016 (Version: 2.1.1 - 3Dconnexion) Hidden
3Dconnexion Add-In for Solid Edge V18 - ST8 (Version: 3.3.0 - 3Dconnexion) Hidden
3Dconnexion Add-In for SOLIDWORKS 2005 - 2016 (Version: 3.3.0 - 3Dconnexion) Hidden
3Dconnexion Add-On for XSI v5.0 - 2015 (Version: 3.0.3 - 3Dconnexion) Hidden
3Dconnexion Collage (x32 Version: 1.3.0 - 3Dconnexion) Hidden
3Dconnexion Extension for SketchUp (Version: 4.2.1 - 3Dconnexion) Hidden
3Dconnexion LCD Applets for SpacePilot Pro (Version: 1.3.3 - 3Dconnexion) Hidden
3Dconnexion Navigation Library Server (x32 Version: 1.0.2.12216 - 3Dconnexion) Hidden
3Dconnexion Plug-In for 3ds Max 2008 - 2016 (Version: 6.1.2 - 3Dconnexion) Hidden
3Dconnexion Plug-in for Acrobat 3D (x32 Version: 1.4.0 - 3Dconnexion) Hidden
3Dconnexion Plug-In for Maya v8.5 - 2016 (Version: 5.1.1 - 3Dconnexion) Hidden
3Dconnexion Plug-In for NX v4.0 - v11.0 (Version: 3.3.0 - 3Dconnexion) Hidden
3Dconnexion Plug-In for Photoshop CS3 - CS6 and CC (Version: 2.4.0 - 3Dconnexion) Hidden
3Dconnexion Plug-In for Pro/ENGINEER Wildfire 3.0 - Creo 3.0 (Version: 2.2.4 - 3Dconnexion) Hidden
3Dconnexion Trainer (x32 Version: 3.2.3 - 3Dconnexion) Hidden
3Dconnexion Viewer and Assembly Demo (x32 Version: 0.9.0.0 - 3Dconnexion) Hidden
7-Zip 16.00 (x64) (HKLM\...\7-Zip) (Version: 16.00 - Igor Pavlov)
A360 Desktop (HKLM\...\{7758802D-9486-4883-9927-CCAC366A3BA4}) (Version: 7.2.3.1800 - Autodesk)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.023.20056 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
Apple Application Support (32-Bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arduino (HKLM-x32\...\Arduino) (Version: 1.6.7 - Arduino LLC)
AutoCAD Electrical 2014 - Deutsch (German) (Version: 11.0.57.0 - Autodesk) Hidden
AutoCAD Electrical 2014 Language Pack - Deutsch (German) (Version: 11.0.57.0 - Autodesk) Hidden
Autodesk 123D Catch (HKLM-x32\...\{413A0A2B-D154-4457-833F-3299DB3183FF}) (Version: 1.0.654 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk)
Autodesk AutoCAD Electrical 2014 - Deutsch (German) (HKLM\...\AutoCAD Electrical 2014 - Deutsch (German)) (Version: 11.0.57.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)
Autodesk Configurator 360 addin (HKLM-x32\...\{E3EE083F-6856-44AB-BC82-445E2FFB8C1A}) (Version: 21.0.11700 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk Design Review 2013 (x32 Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk DWG TrueView 2014 (HKLM\...\DWG TrueView 2014) (Version: 19.1.18.0 - Autodesk)
Autodesk Fusion 360 (HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.2449 - Autodesk, Inc.)
Autodesk Inventor Content Center Libraries 2014 (Desktop Content) (HKLM\...\{B46DECD1-1864-4EF1-0000-22D71E81877C}) (Version: 18.0.17000.0000 - Autodesk)
Autodesk Inventor Content Center Libraries 2017 (Desktop Content) (HKLM\...\{B46DECD1-2164-4EF1-0000-22D71E81877C}) (Version: 21.0.14200.0000 - Autodesk)
Autodesk Inventor Professional 2014 - Deutsch (German) (HKLM\...\Autodesk Inventor Professional 2014) (Version: 18.1.22200.0000 - Autodesk)
Autodesk Inventor Professional 2014 (Version: 18.1.22200.0000 - Autodesk) Hidden
Autodesk Inventor Professional 2014 Language Pack - Deutsch (German) (Version: 18.0.17000.0000 - Autodesk) Hidden
Autodesk Inventor Professional 2014 SP1 (HKLM\...\Autodesk Inventor Professional 2014 SP1) (Version: 18.1.22200.0000 - Autodesk)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2014 (HKLM-x32\...\{5C29CC1F-218F-4C30-948A-11066CAC59FB}) (Version: 4.0.19.0 - Autodesk)
Autodesk Product Design Suite 2014 (HKLM\...\Autodesk Product Design Suite 2014) (Version: 3.0.100.017 - Autodesk)
Autodesk Product Design Suite 2014 (Version: 3.0.100.017 - Autodesk) Hidden
Autodesk Product Design Suite 2014 Language Pack (Version: 3.0.100.017 - Autodesk) Hidden
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.27 - Autodesk)
Autodesk ReCap (Version: 1.0.43.27 - Autodesk) Hidden
Autodesk ReCap 360 (HKLM\...\Autodesk ReCap 360) (Version: 3.0.0.52 - Autodesk)
Autodesk ReCap 360 (Version: 3.0.0.52 - Autodesk) Hidden
Autodesk ReCap Language Pack-English (Version: 1.0.43.27 - Autodesk) Hidden
Autodesk Revit Interoperability for Inventor 2014 (HKLM\...\Autodesk Revit Interoperability for Inventor 2014) (Version: 13.02.15161 - Autodesk)
Autodesk Revit Interoperability for Inventor 2014 (Version: 13.02.15161 - Autodesk) Hidden
Autodesk Workflows 2014 (HKLM\...\{11672AB2-3D48-4D38-9123-719E5FF93333}) (Version: 4.0.19.0 - Autodesk, Inc.)
Berkeley Madonna (HKLM-x32\...\{27AB9BD6-4A3E-4BBD-8381-CD445E474936}) (Version:  - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.2.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MX920 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX920_series) (Version: 1.00 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Cisco AnyConnect Secure Mobility Client  (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.05187 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.05187 - Cisco Systems, Inc.) Hidden
Cliqz (HKLM-x32\...\{5A0C0737-6AFE-4DC6-A8B4-6DFE509ACD75}_is1) (Version: 0.5.22 - Cliqz.com)
Cura 15.04 (HKLM-x32\...\Cura_15.04) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)
Dassault Systemes Software VC10 Prerequisites x86-x64 (HKLM\...\{7C534131-6431-4ECB-9069-525CB5F75CC8}) (Version: 10.1.1 - Dassault Systemes)
Dassault Systemes Software VC11 Prerequisites x86-x64 (HKLM\...\{C857169D-3F1A-4530-99A0-CAE966CE267E}) (Version: 11.0.1 - Dassault Systemes)
Dassault Systemes Software VC9 Prerequisites x86-x64 (HKLM\...\{F2F2DEA7-36AB-4E13-907C-D8BDE775EF97}) (Version: 9.1.2 - Dassault Systemes)
Dassault Systemes Software Version 5-6 Release 2015 (B25) (HKLM\...\Dassault Systemes B25_0) (Version:  - )
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.0 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{03A9F528-A754-460F-B2C1-AC125A147114}) (Version: 2.8.5000.0 - Dell Products, LP)
Dell System Detect (HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\58d94f3ce2c27db0) (Version: 7.11.0.6 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 17.0.13.0 - Synaptics Incorporated)
D-Fend Reloaded 1.4.4 (deinstallieren) (HKLM-x32\...\D-Fend Reloaded) (Version: 1.4.4 - Alexander Herzog)
Dota 2 (HKLM\...\Steam App 570) (Version:  - Valve)
Dropbox (HKLM-x32\...\Dropbox) (Version: 19.4.13 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
DWG TrueView 2014 (Version: 19.1.18.0 - Autodesk) Hidden
Eco Materials Adviser for Autodesk Inventor 2014 (64-bit) (HKLM\...\{530B8614-C5DE-475B-AF6F-71BED461552C}) (Version: 4.4.1.0 - Granta Design Limited)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
EVE Online (HKLM\...\Steam App 8500) (Version:  - CCP)
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production)
FARO LS 1.1.504.10 (64bit) (HKLM-x32\...\{08828409-24D2-4FD6-9EC4-DF2D8CCC183B}) (Version: 5.4.10.43135 - FARO Scanner Production)
FileZilla Client 3.14.0 (HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\FileZilla Client) (Version: 3.14.0 - Tim Kosse)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free Audio Converter (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.98.721 - Digital Wave Ltd)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.24.627 - Digital Wave Ltd)
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version:  - )
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.2103 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.7.1000 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{6e3d3c5f-ea0c-4457-850d-9dd60b6ab95a}) (Version: 16.8.0 - Intel Corporation)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
JabRef 2.10 (HKLM-x32\...\JabRef 2.10) (Version: 2.10 - JabRef Team)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java SE Development Kit 8 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.15 - Oracle Corporation)
Java SE Development Kit 8 Update 60 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180600}) (Version: 8.0.600.27 - Oracle Corporation)
JCreator Pro 5.00 (HKLM-x32\...\JCreator Pro_is1) (Version:  - Xinox Software)
KeyShot 5 Floating 64 bit (HKLM-x32\...\KeyShot 5 Floating_64) (Version: 5.0 64 bit Floating - Luxion ApS)
KISSsoft 03-2015 (HKLM-x32\...\{C0293A42-6D5D-4F71-9042-74007EBAFA55}) (Version: 15.03.000 - KISSsoft AG)
K-Lite Codec Pack 12.6.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.6.5 - KLCP)
Kontur-Scanner (HKLM-x32\...\{04270C05-149B-46F3-BDB3-22AF8A8B54C2}) (Version: 1.0.5 - Keller)
Logger Pro 3.10.1 (HKLM-x32\...\{B91FFD97-1C41-4877-7B97-9D62814E50AD}) (Version: 5.182.666 - Vernier Software & Technology)
Logitech Gaming Software 8.81 (HKLM\...\Logitech Gaming Software) (Version: 8.81.15 - Logitech Inc.)
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.82 - Logitech)
MakerBot_Bundle_BETA_3.9.1.1346_x64 (HKLM-x32\...\MakerBot) (Version: 3.9.1.1346 - MakerBot)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Malwarebytes Version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Mathcad PDSi viewable support (HKLM-x32\...\Mathcad PDSi viewable support) (Version: 9.0.0 - Adobe Systems)
Mathcad PDSi viewable support (x32 Version: 9.0.0 - Adobe Systems) Hidden
Math-Kernel-Bibliotheken (64 Bit) (Version: 1.0.23.0 - National Instruments) Hidden
Math-Kernel-Bibliotheken (x32 Version: 1.0.23.0 - National Instruments) Hidden
MATLAB R2016a (HKLM\...\Matlab R2016a) (Version: 9.0 - MathWorks)
Maxx Audio Installer (x64) (Version: 2.6.6570.1 - Waves Audio Ltd.) Hidden
MDESIGN 2014 (HKLM-x32\...\MDESIGN explorer 15) (Version: 15 - TEDATA)
Mendeley Desktop 1.14 (HKLM-x32\...\Mendeley Desktop) (Version: 1.14 - Mendeley Ltd.)
Mesh Enabler (HKLM-x32\...\{539C1162-6FC6-4011-B59A-FC20916F575E}) (Version: 1.0.5 - Autodesk)
Meshmixer (HKLM\...\Meshmixer_x64) (Version: 11.0.544 - Autodesk, Inc.)
Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2013 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 15.0.4893.1002 - Microsoft Corporation)
Microsoft Project Professional 2013 (HKLM-x32\...\Office15.PRJPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Core Components (x64) ENU  (HKLM\...\{8CCBEC22-D2DB-4DC9-A58A-E1A1F3A38C8A}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU  (HKLM\...\{03AC245F-4C64-425C-89CF-7783C1D3AB2C}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{4fd02573-5f12-4ae4-8027-c63f8e1115af}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MiKTeX 2.9 (HKLM-x32\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
Mockup 360 Addin 2015 (HKLM-x32\...\{E4D4242C-FC14-4B4F-B1D9-6760D8C241D5}) (Version: 1.1.0 - Autodesk)
Mount & Blade: Warband (HKLM\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Mount & Blade: With Fire and Sword (HKLM\...\Steam App 48720) (Version:  - TaleWorlds Entertainment)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.6.0.6200 - Mozilla)
Mozilla Thunderbird 45.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.6.0 (x86 de)) (Version: 45.6.0 - Mozilla)
Myo Connect (HKLM-x32\...\Thalmic Labs Myo Connect) (Version: 1.0.1 - Thalmic Labs)
MySQL Connector C++ 1.1.4 (HKLM\...\{1F5C1E97-AE40-4EE7-9959-3D8038B6EAC8}) (Version: 1.1.4 - Oracle and/or its affiliates)
MySQL Connector/C 6.1 (HKLM\...\{4E2AAB30-1E42-4ACA-B1A9-3AE8629D0C89}) (Version: 6.1.5 - Oracle Corporation)
MySQL Connector/ODBC 5.3 (HKLM\...\{A1991404-2634-47E1-BC45-8F3B5014B1D1}) (Version: 5.3.4 - Oracle Corporation)
MySQL Documents 5.5 (HKLM-x32\...\{BCF64211-43D1-4152-A152-7E30D0D7570D}) (Version: 5.5.40 - Oracle Corporation)
MySQL Examples and Samples 5.5 (HKLM-x32\...\{33A3D172-0E98-4D16-80DD-9CB3D4AC814D}) (Version: 5.5.40 - Oracle Corporation)
MySQL Installer (HKLM-x32\...\{2D5C73E8-EA6C-4A0A-8B27-FF48B04977E5}) (Version: 1.3.7.0 - Oracle Corporation)
MySQL Notifier 1.1.6 (HKLM-x32\...\{CB76A6E9-B184-461D-A8BE-7D0D73199545}) (Version: 1.1.6 - Oracle)
MySQL Utilities (HKLM-x32\...\{0B18AA75-6A44-4950-A0A2-A486C2D839A0}) (Version: 1.4.4 - Oracle Corporation)
National Instruments - Software (HKLM-x32\...\NI Uninstaller) (Version:  - National Instruments)
NI Authentication 12.0.0 (64-bit) (Version: 12.0.367.0 - National Instruments) Hidden
NI Authentication 12.0.0 (x32 Version: 12.0.367.0 - National Instruments) Hidden
NI Certificates Deployment Support (x32 Version: 1.03.49152 - National Instruments) Hidden
NI Curl 12.0.0 (64-bit) (Version: 12.0.412.0 - National Instruments) Hidden
NI Curl 12.0.0 (x32 Version: 12.0.412.0 - National Instruments) Hidden
NI EulaDepot (x32 Version: 3.10.393 - National Instruments) Hidden
NI GMP Windows 32-bit Installer 12.0.0 (x32 Version: 12.0.46.0 - National Instruments) Hidden
NI GMP Windows 64-bit Installer 12.0.0 (Version: 12.0.46.0 - National Instruments) Hidden
NI LabVIEW 2012 Deployment Framework (x32 Version: 12.0.369.0 - National Instruments) Hidden
NI LabVIEW 2012 Real-Time NBFifo (x32 Version: 12.0.219.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2012 f3 (x32 Version: 12.0.435.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2012 (x32 Version: 12.0.204.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Webserver 2012 (x32 Version: 12.0.406.0 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Low-Level Driver (Original) (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Low-Level Driver (Updated) (x32 Version: 10.0.1434 - National Instruments) Hidden
NI Logos 5.4 (64 Bit) (Version: 5.4.303.0 - National Instruments) Hidden
NI Logos 5.4 (x32 Version: 5.4.303.0 - National Instruments) Hidden
NI Logos XT Support (x32 Version: 5.4.295.0 - National Instruments) Hidden
NI Logos64 XT Support (Version: 5.4.295.0 - National Instruments) Hidden
NI MDF Support (x32 Version: 3.10.393 - National Instruments) Hidden
NI mDNS Responder 2.1 for Windows 64-bit (Version: 2.10.49152 - National Instruments) Hidden
NI mDNS Responder 2.1.0 (x32 Version: 2.10.49152 - National Instruments) Hidden
NI SSL LabVIEW RTE 2012 Support (x32 Version: 12.0.125.0 - National Instruments) Hidden
NI System State Publisher (64-bit) (Version: 12.0.218.0 - National Instruments) Hidden
NI System State Publisher (x32 Version: 12.0.358.0 - National Instruments) Hidden
NI System Web Server 12.0 (x32 Version: 12.0.414.0 - National Instruments) Hidden
NI System Web Server Base 12.0.0 (64-bit) (Version: 12.0.407.0 - National Instruments) Hidden
NI System Web Server Base 12.0.0 (x32 Version: 12.0.407.0 - National Instruments) Hidden
NI TDM Streaming 2.4 (64 Bit) (Version: 2.4.55.0 - National Instruments) Hidden
NI TDM Streaming 2.4 (x32 Version: 2.4.55.0 - National Instruments) Hidden
NI Trace Engine (64-bit) (Version: 12.0.401.0 - National Instruments) Hidden
NI Trace Engine (x32 Version: 12.0.401.0 - National Instruments) Hidden
NI Uninstaller (x32 Version: 3.10.393 - National Instruments) Hidden
NI Unterstützung für nicht englische Versionen der Runtime-Engine von LabVIEW 2012. (x32 Version: 12.0.363.0 - National Instruments) Hidden
NI VC2008MSMs x64 (Version: 9.0.401 - National Instruments) Hidden
NI VC2008MSMs x86 (x32 Version: 9.0.401 - National Instruments) Hidden
NI Web Application Server 12.0 (64 Bit) (Version: 12.0.422.0 - National Instruments) Hidden
NI Web Application Server 12.0 (x32 Version: 12.0.422.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.3 (x32 Version: 2.7.180.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.3 64-bit (Version: 2.7.190.0 - National Instruments) Hidden
NI-ActiveX-Container (64-bit) (Version: 12.0.14.0 - National Instruments) Hidden
NI-ActiveX-Container (x32 Version: 12.0.14.0 - National Instruments) Hidden
NI-DIM 1.13.0f0 (x32 Version: 1.130.49152 - National Instruments) Hidden
NI-DIM 1.13.0f0 for 64 Bit Windows (Version: 1.130.49152 - National Instruments) Hidden
NI-Fehlerprotokolle 2012 (x32 Version: 12.0.172.0 - National Instruments) Hidden
NI-ORB 1.10.0f0 (x32 Version: 1.100.49152 - National Instruments) Hidden
NI-ORB 1.10.0f0 for 64 Bit Windows (Version: 1.100.49152 - National Instruments) Hidden
NI-PAL 2.8.1f0 (x32 Version: 10.91.49152 - National Instruments) Hidden
NI-PAL 2.8.1f0 for 64 Bit Windows (Version: 10.91.49152 - National Instruments) Hidden
NI-RPC 4.3.0f0 (x32 Version: 4.30.49152 - National Instruments) Hidden
NI-RPC 4.3.0f0 for 64 Bit Windows (Version: 4.30.49152 - National Instruments) Hidden
NI-VISA Runtime 5.2.0 (x32 Version: 5.20.49152 - National Instruments) Hidden
NI-VISA x64 support 5.2.0 (Version: 5.20.49152 - National Instruments) Hidden
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.3 - Notepad++ Team)
NVIDIA Graphics Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA nView 140.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 140.75 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA WMI 2.15.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.15.0 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Outils de vérification linguistique 2013 de Microsoft Office*- Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
partypoker (HKLM-x32\...\PartyPoker) (Version:  - PartyGaming)
PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.24.16092 - pdfforge GmbH)
PDF Architect 2 View Module (HKLM-x32\...\{C960FF38-431D-429D-AD1F-FBD12A45B7C5}) (Version: 2.0.17.17583 - pdfforge GmbH)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
PTC Mathcad Prime 3.1 (HKLM\...\{3A4F83E8-C604-4970-8A1F-8963B3507630}) (Version: 3.1.0 - PTC)
PureSync (x32 Version: 4.4.2 - Jumping Bytes) Hidden
PureSync 4.4.2 (HKLM-x32\...\PureSync) (Version: 4.4.2 - Jumping Bytes)
PyScripter 2.6.0 (HKLM\...\PyScripter_is1) (Version: 2.6.0 - PyScripter)
Python 3.4.4 (64-bit) (HKLM\...\{56ebf7cf-f2b2-30ed-9de5-307fc2ce3449}) (Version: 3.4.4150 - Python Software Foundation)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.026 - Dell Inc.)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21236 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.)
Risen 2 - Dark Waters (HKLM\...\Steam App 40390) (Version:  - Piranha Bytes)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
SketchUp-Import (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
SMSC LAN7500 Device Driver (HKLM\...\{DE2877F8-0FD0-471D-9A5C-79B8FD6EEE61}) (Version: 13.08.08.0 - SMSC)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.11.0046 - ST Microelectronics)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold 2 (HKLM\...\Steam App 40960) (Version:  - FireFly Studios)
Stronghold Crusader Extreme HD (HKLM\...\Steam App 16700) (Version:  - Firefly Studios)
Stronghold Crusader HD (HKLM\...\Steam App 40970) (Version:  - FireFly Studios)
Stronghold HD (HKLM\...\Steam App 40950) (Version:  - FireFly Studios)
Stronghold Legends (HKLM\...\Steam App 40980) (Version:  - FireFly Studios)
SWITCHdrive (HKLM-x32\...\SWITCHdrive) (Version: 1.8.1.328 - SWITCH)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Texmaker (HKLM-x32\...\Texmaker) (Version:  - )
TI-Nspire™ Computer Link (HKLM-x32\...\{6C5AC088-3136-4043-8985-8B0772A9580E}) (Version: 3.9.0.455 - Texas Instruments Inc.)
TI-Nspire™ CX CAS Student Software (HKLM-x32\...\{E994956D-8CA7-4091-BFF5-0C749470BA2E}) (Version: 4.0.0.235 - Texas Instruments Inc.)
Unterstützung für NI SSL (64 Bit) (Version: 12.0.408.0 - National Instruments) Hidden
Unterstützung für NI SSL (x32 Version: 12.0.408.0 - National Instruments) Hidden
Update for Skype for Business 2015 (KB3141468) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PRJPROR_{0BA3C700-ABED-4994-BB60-2FD66DFAF674}) (Version:  - Microsoft)
Verfügbare Autodesk-Apps (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
VISA Shared Components 64-Bit (HKLM-x32\...\VISASharedComponents) (Version:  - )
VISA Shared Components 64-Bit (Version: 1.4.0 - IVI Foundation Inc.) Hidden
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: 0.0.0.0 - Blizzard Entertainment)
Webocton - Scriptly 0.8.95.6 (HKLM-x32\...\Webocton - Scriptly_is1) (Version: 0.8.95.6 - Webocton)
WhatsApp (HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\WhatsApp) (Version: 0.2.2732 - WhatsApp)
Windows Driver Package - MakerBot Industries (WinUsb) USBDevice  (09/11/2015 100.2.0.0) (HKLM\...\D015024C58122C3796867839B7E92961E6A4C307) (Version: 09/11/2015 100.2.0.0 - MakerBot Industries)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports  (09/11/2015 100.2.0.0) (HKLM\...\04E27032638FDAAC836AACDBF2A93300A4E13BD1) (Version: 09/11/2015 100.2.0.0 - MakerBot Industries, LLC)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports  (09/11/2015 100.2.0.0) (HKLM\...\0ED5517650E58DD9FB879217FC7CF165DEC4583B) (Version: 09/11/2015 100.2.0.0 - MakerBot Industries, LLC)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports  (09/11/2015 100.2.0.0) (HKLM\...\67352CAC0149049BD2BE7B68AB77464472C339CD) (Version: 09/11/2015 100.2.0.0 - MakerBot Industries, LLC)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports  (09/11/2015 100.2.0.0) (HKLM\...\9F57D28C2B5AEBAF582F84C4BE4F2AB1798631C9) (Version: 09/11/2015 100.2.0.0 - MakerBot Industries, LLC)
Windows Driver Package - Texas Instruments Inc. (SilvrLnk) USB  (06/11/2009 1.0.0.0) (HKLM\...\EC3E466026556D3EB760B01C4772277614354E11) (Version: 06/11/2009 1.0.0.0 - Texas Instruments Inc.)
Windows Driver Package - Texas Instruments Inc. (TIEHDUSB) USB  (09/02/2009 1.0.0.1) (HKLM\...\7511B29C86C398B4D11A0B0E4176CAD68D1B7057) (Version: 09/02/2009 1.0.0.1 - Texas Instruments Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
XAMPP (HKLM-x32\...\xampp) (Version: 1.8.3-5 - Bitnami)
yEd Graph Editor 3.13 (HKLM-x32\...\3309-7404-0599-8908) (Version: 3.13 - yWorks GmbH)
Yousician Launcher version 1.0 (HKLM-x32\...\{EF45EAE9-523E-47C3-8634-A81923B11DD5}_is1) (Version: 1.0 - Yousician)
Z88Aurora V3 (HKLM\...\{3AFDAB60-DBBD-449F-974E-6EF6430440E3}) (Version: 2.0 - Lehrstuhl fuer Konstruktionlehre und CAD, Universitaet Bayreuth)
Zip Motion Block Video codec (Remove Only) (HKLM-x32\...\ZMBV) (Version:  - DOSBox Team)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1029ABC3-2457-11D5-8E9D-0010B541CD80}\localserver32 -> D:\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\iDrop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{244298EC-E661-11d4-BC13-0010B5891E89}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\TI.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll ()
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{32CDFF57-8CBA-4960-89B1-EC3FA58FB17A}\InprocServer32 -> D:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3897B445-D5B8-410d-899A-9789B8ADB643}\localserver32 -> D:\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3C3F63EA-C7BA-11d4-8E60-0010B541CD80}\localserver32 -> D:\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2014\en-US\dwgviewrficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4D29B490-49B2-11D0-93C3-7E0706000000}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxTest.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{62FBB030-24C7-11D3-B78D-0060B0F159EF}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> D:\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtCp.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{76283A80-50DD-11D3-A7E3-00C04F79D7BC}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> D:\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{97E17F04-17DF-11d5-BC38-0010B5891E89}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\BodyReceiver.dll ()
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BBF9FDF1-52DC-11D0-8C04-0800090BE8EC}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> D:\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxApprenticeServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\Autodesk\webdeploy\production\b8535b136583feacdb288f6ed972e6555b191b85\NPreview10.dll ()
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ColorButton.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ColorButton.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\AcInetUI.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxInventorUtilities.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> D:\Autodesk\AutoCAD 2014\de-DE\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E60F81E1-49B3-11D0-93C3-7E0706000000}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> D:\Program Files\Autodesk\Inventor 2017\Bin\DTInterop.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\InvResc.dll (Autodesk)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\InvTXTStack.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll => No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01AC3BCD-91B5-442A-838C-06A4AECEDB68} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-08] (Dropbox, Inc.)
Task: {10FF88E4-4F5C-4210-9CF1-FCF6FE125565} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-03-09] (Realtek Semiconductor)
Task: {276A56A3-61FE-48EF-A91B-6A45BF7A44F3} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {29ED19C1-4DB1-4E68-9D61-D58D1F051D58} - System32\Tasks\MATLAB R2016a Startup Accelerator => C:\Program Files\MATLAB\R2016a\bin\win64\MATLABStartupAccelerator.exe [2015-12-28] ()
Task: {34442C84-E788-4C75-810E-2C62198AF600} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe 
Task: {3CDB011F-78FE-464C-ACF0-73C56EDE66D0} - System32\Tasks\3DconnexionCreateProcess_3DxService.exe => D:\Program Files\3Dconnexion\3DxWinCore64\3DxService.exe [2015-12-10] (3Dconnexion, INC)
Task: {6A0B907B-24B9-40C9-BD32-913B05D1D72B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {6ACCE957-2398-43C6-AE25-584C75C63E4B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
Task: {6DD54919-F068-4A0A-8871-0CA3EA898CB5} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-08] (Dropbox, Inc.)
Task: {6E8B881F-E3C2-4164-8878-2876EA2DE1D9} - System32\Tasks\{88AC59FD-2726-4F6F-A67C-F19C07F7D797} => pcalua.exe -a C:\Users\Strat_000\Downloads\Arduino\CDM_v2.12.00_WHQL_Certified.exe -d C:\Users\Strat_000\Downloads\Arduino
Task: {71F5F33F-9F6D-4917-A791-46476F8F8196} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-06] (Synaptics Incorporated)
Task: {81E0FC16-5D40-4E14-A306-744E9744283D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
Task: {855DD682-45F8-422C-97BC-413992ED2AF5} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-12-01] ()
Task: {944BDA3A-5EFE-477C-9B12-1DFFF82E983D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)
Task: {A49DA27C-BFD6-4512-B975-40563AFC6375} - System32\Tasks\MySQLNotifierTask => C:\Program Files (x86)\MySQL\MySQL Notifier 1.1.6\MySQLNotifier.exe [2014-09-03] (Oracle Corporation)
Task: {AA028DCF-8E68-4658-8FBE-995D7AB78540} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {ACCFAFE1-0665-4ED4-81E6-0D3585C8AE6C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => %ProgramFiles%\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe 
Task: {B4808A2E-A8D2-4050-B621-AB299C0F4D4D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {BFF9D5AA-8F2F-4682-81C3-6F259CB8BFA8} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\MATLAB R2016a Startup Accelerator.job => C:\Program Files\MATLAB\R2016a\bin\win64\MATLABStartupAccelerator.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Strat_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wurm Online\Wurm Online.lnk -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://www.wurmonline.com/client/wurmclient.jnlp "C:\Users\Strat_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\5fef8269-714a391b"

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 23:17 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-28 20:59 - 2016-08-01 13:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-08-22 17:17 - 2016-05-24 08:51 - 00116416 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-02-22 23:12 - 2016-02-22 23:12 - 00138240 _____ () D:\Program Files\Makerbot\MakerWare\jsoncpp.dll
2015-12-07 20:18 - 2015-12-07 20:18 - 00111616 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\_ctypes.pyd
2015-12-07 20:18 - 2015-12-07 20:18 - 00047616 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\_socket.pyd
2015-12-07 20:18 - 2015-12-07 20:18 - 01210368 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\_ssl.pyd
2015-12-07 20:18 - 2015-12-07 20:18 - 00474624 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\_hashlib.pyd
2015-12-07 20:18 - 2015-12-07 20:18 - 00010752 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\select.pyd
2015-12-07 20:18 - 2015-12-07 20:18 - 00689664 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\unicodedata.pyd
2015-08-19 22:48 - 2015-08-19 22:48 - 02596352 _____ () D:\Program Files\Makerbot\MakerWare\vtkCommon.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 03111424 _____ () D:\Program Files\Makerbot\MakerWare\vtkFiltering.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 04569600 _____ () D:\Program Files\Makerbot\MakerWare\vtkIO.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 05822464 _____ () D:\Program Files\Makerbot\MakerWare\vtkGraphics.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 02572288 _____ () D:\Program Files\Makerbot\MakerWare\opencv_core2410.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 01200640 _____ () D:\Program Files\Makerbot\MakerWare\opencv_calib3d2410.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 02236928 _____ () D:\Program Files\Makerbot\MakerWare\opencv_imgproc2410.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 02413056 _____ () D:\Program Files\Makerbot\MakerWare\opencv_highgui2410.dll
2014-08-06 14:30 - 2014-08-06 14:30 - 00050688 _____ () D:\Program Files\Makerbot\MakerWare\boost_date_time-vc120-mt-1_56.dll
2014-08-06 14:30 - 2014-08-06 14:30 - 00116224 _____ () D:\Program Files\Makerbot\MakerWare\boost_filesystem-vc120-mt-1_56.dll
2014-08-06 14:29 - 2014-08-06 14:29 - 00019456 _____ () D:\Program Files\Makerbot\MakerWare\boost_system-vc120-mt-1_56.dll
2014-08-06 14:30 - 2014-08-06 14:30 - 00100864 _____ () D:\Program Files\Makerbot\MakerWare\boost_thread-vc120-mt-1_56.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00243200 _____ () D:\Program Files\Makerbot\MakerWare\vtksys.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00116736 _____ () D:\Program Files\Makerbot\MakerWare\vtkDICOMParser.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00159232 _____ () D:\Program Files\Makerbot\MakerWare\vtkverdict.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00783360 _____ () D:\Program Files\Makerbot\MakerWare\vtkNetCDF.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00110592 _____ () D:\Program Files\Makerbot\MakerWare\vtkNetCDF_cxx.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00080896 _____ () D:\Program Files\Makerbot\MakerWare\LSDyna.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00127488 _____ () D:\Program Files\Makerbot\MakerWare\vtkpng.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00611328 _____ () D:\Program Files\Makerbot\MakerWare\vtkmetaio.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00065024 _____ () D:\Program Files\Makerbot\MakerWare\vtkzlib.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00141312 _____ () D:\Program Files\Makerbot\MakerWare\vtkjpeg.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00314880 _____ () D:\Program Files\Makerbot\MakerWare\vtktiff.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00128000 _____ () D:\Program Files\Makerbot\MakerWare\vtkexpat.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 00656896 _____ () D:\Program Files\Makerbot\MakerWare\opencv_flann2410.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 00869888 _____ () D:\Program Files\Makerbot\MakerWare\opencv_features2d2410.dll
2014-08-06 14:29 - 2014-08-06 14:29 - 00028672 _____ () D:\Program Files\Makerbot\MakerWare\boost_chrono-vc120-mt-1_56.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 02085888 _____ () D:\Program Files\Makerbot\MakerWare\vtkhdf5.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00097280 _____ () D:\Program Files\Makerbot\MakerWare\vtkhdf5_hl.dll
2016-02-23 00:11 - 2016-02-23 00:11 - 00107520 _____ () D:\Program Files\Makerbot\MakerWare\tinything.dll
2016-12-14 23:17 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2015-09-16 13:12 - 2015-09-16 13:12 - 00043480 _____ () D:\Program Files\FileZilla\FileZilla FTP Client\fzshellext_64.dll
2015-05-14 16:36 - 2015-05-14 16:36 - 00059904 _____ () C:\Program Files (x86)\SWITCHdrive\shellext\OCUtil_x64.dll
2016-07-06 19:10 - 2016-07-06 19:10 - 01249792 _____ () C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll
2016-09-29 19:13 - 2016-09-29 19:13 - 00959168 _____ () C:\Users\Strat_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-05-27 14:50 - 2016-11-01 23:05 - 00401896 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-09-29 06:53 - 2016-09-29 06:53 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 17:39 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2014-04-04 09:15 - 2013-11-22 01:22 - 00484880 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe
2017-01-25 12:58 - 2017-01-25 12:58 - 03865600 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1701.10102.0_x64__8wekyb3d8bbwe\Calculator.exe
2016-11-23 19:23 - 2016-11-23 19:24 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-11-23 19:23 - 2016-11-23 19:24 - 20433408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-06 19:06 - 2016-06-06 19:09 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-11-23 19:23 - 2016-11-23 19:24 - 01046528 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2016-11-23 19:23 - 2016-11-23 19:24 - 00353792 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Photos.Inking.dll
2016-03-27 18:07 - 2016-03-27 18:08 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2017-01-11 17:39 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 17:39 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 17:39 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 17:39 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 17:39 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-10-16 00:48 - 2014-10-16 00:48 - 00063376 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2014-08-21 20:47 - 2016-02-24 05:48 - 00062024 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2014-08-21 20:47 - 2016-02-24 05:47 - 00110664 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2016-06-29 18:14 - 2016-07-22 07:26 - 00114664 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2016-06-29 18:14 - 2016-07-22 07:24 - 00108008 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2016-06-29 18:14 - 2016-07-22 07:24 - 00024040 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2016-06-29 18:14 - 2016-07-22 07:24 - 00048104 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2012-05-29 18:07 - 2012-05-29 18:07 - 01958560 _____ () C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\niwsrp.dll
2014-04-04 09:09 - 2013-09-12 05:37 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-04-04 09:15 - 2013-11-21 23:00 - 01904928 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\STRestoreAPI.dll
2014-04-04 09:15 - 2012-11-26 06:20 - 01153384 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\libxml2.dll
2014-04-04 09:15 - 2012-11-26 06:20 - 00117608 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\zlib1.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

stratos2k · 12.02.2017, 20:29

Und noch der zweite Teil der Addition.txt:

Code:

ATTFilter

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2017-02-09 17:57 - 00000832 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-968931954-2191872932-1542864395-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Strat_000\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "Launch LCore"
HKLM\...\StartupApproved\Run: => "3DxWare Service"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\StartupFolder: => "Synology Cloud Station Drive.lnk"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "Autodesk Sync"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "Boxcryptor.exe"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "Dropbox Update"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "PureSync"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => LPort=808
FirewallRules: [UDP Query User{4FC1D526-EF5A-4967-8B8F-BBA348CF3B98}C:\program files\ansys inc\v162\aisol\bin\winx64\readerhostu.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\readerhostu.exe
FirewallRules: [TCP Query User{1D91F143-4DBA-4103-BF7C-8F0A0BE214CE}C:\program files\ansys inc\v162\aisol\bin\winx64\readerhostu.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\readerhostu.exe
FirewallRules: [UDP Query User{3AA47883-2275-4002-93AB-3EB175A00776}C:\program files\ansys inc\v162\aisol\bin\winx64\ansmeshingserver.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\ansmeshingserver.exe
FirewallRules: [TCP Query User{77A98965-8254-4441-B3FA-72487E2F3A66}C:\program files\ansys inc\v162\aisol\bin\winx64\ansmeshingserver.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\ansmeshingserver.exe
FirewallRules: [{0FEB7A54-AB1C-4113-8581-88A1A1D9DCB0}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [{0A43AFC9-B2D6-4905-B033-885849EB19EF}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [{7A9ED19D-239E-4B26-A0CA-CF258389F525}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{D59B3327-671A-4933-8525-E1F8AED67A7A}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{8EA6FB88-0402-4E29-98F9-153E6A793B7F}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [{6C1E5429-92B1-42C1-8810-294F55BD83A4}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [{CF54E191-727B-44E7-8728-23DF668614FC}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{A8C03A37-6B8A-45D2-9239-C0813D13363A}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{628D3104-C402-4D92-965A-4FCDA6A06B27}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F6608F61-5D07-477D-89F5-1CA76A7BA4E2}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F8AAB0F8-8D2E-45C8-8664-3674A8BBDEE5}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BE5BCB22-7F43-435B-BD76-BBDDF18A45E2}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{382C072E-19EA-46A9-80D3-B3CD6391FAB4}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe
FirewallRules: [TCP Query User{694FB801-CD9C-42F3-9F15-D710543E0EAE}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe
FirewallRules: [UDP Query User{E958FC1D-5113-42CE-8858-96E7C482E13C}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\catiatopro.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\catiatopro.exe
FirewallRules: [TCP Query User{76C6585F-23DD-49ED-A105-F43F2D4A8270}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\catiatopro.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\catiatopro.exe
FirewallRules: [UDP Query User{CEA97193-0A27-4872-86DC-A75D60E9D0C3}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe
FirewallRules: [TCP Query User{0AC9B4CE-B421-4F89-AC4F-F19E88CE6981}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe
FirewallRules: [UDP Query User{1DBB1F1E-3DAA-4E2C-A835-5995134E66C6}C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{7D867815-9417-4D85-80D7-FA16BE154953}C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe
FirewallRules: [{CD9F58CA-4C3C-455B-9C79-E1DBB81D4271}] => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{B64B6C2F-A98F-4696-A97C-DA0C0E03DA55}] => C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{4219914F-17B0-4082-8FDE-9C8059F7FC0D}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{96163E11-ABF0-437A-BE15-3DF1A44E85E6}] => LPort=2869
FirewallRules: [{03BD1AF7-0BF8-4012-853F-2D3E1098C809}] => LPort=1900
FirewallRules: [{D0D1F8C9-1A69-4B45-A82F-D1DAD5E2882F}] => LPort=50248
FirewallRules: [{F5C16F57-13AC-4E4E-AD71-3ED80DB1F69D}] => C:\Users\Strat_000\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{69137F3E-852F-45E4-B39F-F2D19F70E1D5}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C4A08B79-F7ED-4FC3-934D-0EC4ACE17959}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D46F595B-D3D0-42A4-9025-ADB6FD0A3FF5}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{362F7CE5-DD2B-46E8-967E-F4DF562E434B}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3B20DC80-CA8C-4E0A-A5CB-28239D6D0F79}] => D:\SteamLibrary\SteamApps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [{D9DA139F-DB0D-44D3-9B1E-2D06D1028AB9}] => D:\SteamLibrary\SteamApps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [TCP Query User{4DD5C3D0-DC83-44FA-913B-378EF54D3E1A}C:\program files\maple 18\jre\bin\maple.exe] => C:\program files\maple 18\jre\bin\maple.exe
FirewallRules: [UDP Query User{58ADCCEA-75D9-4A26-9941-7D901358A306}C:\program files\maple 18\jre\bin\maple.exe] => C:\program files\maple 18\jre\bin\maple.exe
FirewallRules: [TCP Query User{F857059D-70CD-4D81-8D60-3DE90559AC03}C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe
FirewallRules: [UDP Query User{7AD4CCDF-0565-4FDB-99AA-7AA01273F289}C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{0B9814D1-FC19-492C-AE86-AB79AED4839F}C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{0FD323B4-107E-4B03-BD43-07665AC0A506}C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe
FirewallRules: [TCP Query User{C21D6139-02D4-4948-B04D-B0AF2642F1E3}\\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe] => \\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe
FirewallRules: [UDP Query User{18335C91-410A-4437-84C7-DD71E2A62563}\\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe] => \\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe
FirewallRules: [{EC70B2A1-0D56-4AF3-8F04-1A2EE8175FE7}] => \\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe
FirewallRules: [{C8F5D359-5F4D-4627-9557-78573F067B76}] => \\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe
FirewallRules: [TCP Query User{AB75A300-9988-450E-A5B1-4202056FCA9F}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\cat3dxmlplayergo.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\cat3dxmlplayergo.exe
FirewallRules: [UDP Query User{2CE85C3B-A38E-48D7-9D14-7A7DE61F945C}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\cat3dxmlplayergo.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\cat3dxmlplayergo.exe
FirewallRules: [TCP Query User{3B10EA8E-072F-4384-8471-59C49A30FAE5}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\dsysysirmanager.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\dsysysirmanager.exe
FirewallRules: [UDP Query User{85F8B39D-3772-4595-88CF-58B436D29126}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\dsysysirmanager.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\dsysysirmanager.exe
FirewallRules: [TCP Query User{493AF417-C7DA-4F7E-9BE6-240D41BDE959}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\3dxmlplayer.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\3dxmlplayer.exe
FirewallRules: [UDP Query User{DCAFC2C2-BEC9-4FF7-A219-450332461C36}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\3dxmlplayer.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\3dxmlplayer.exe
FirewallRules: [TCP Query User{B53F4142-AEDB-4004-93B4-F4B4859CC4D8}C:\xampp\mysql\bin\mysqld.exe] => C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{5DF53F0B-30DE-41EB-BAE3-60EF23D59F53}C:\xampp\mysql\bin\mysqld.exe] => C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{144BC75D-01B8-40F4-B134-38335FC12A0E}C:\xampp\filezillaftp\filezillaserver.exe] => C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{FAA398A9-7117-4E50-8EBA-4DD6EF3C1DB7}C:\xampp\filezillaftp\filezillaserver.exe] => C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{9378CA38-2FD3-41CA-B828-2EAE02F1BE50}C:\xampp\apache\bin\httpd.exe] => C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{54E92ACA-1BBD-4BF8-8761-0710C591ACCE}C:\xampp\apache\bin\httpd.exe] => C:\xampp\apache\bin\httpd.exe
FirewallRules: [{61BF9771-BABF-4D83-871A-E16EC7D8D67D}] => C:\xampp\apache\bin\httpd.exe
FirewallRules: [{C1ECCFF2-9EF4-4312-BC27-19512642FBB2}] => C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{0E1FEDE8-60E0-44CE-A227-4BBC7A8ACA67}C:\xampp\filezillaftp\filezillaserver.exe] => C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{D37FF8CF-7892-42EA-BAC6-A83D707907A4}C:\xampp\filezillaftp\filezillaserver.exe] => C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{F3ABD6E7-23CF-445F-A263-4CAA404187DF}C:\xampp\mysql\bin\mysqld.exe] => C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{EE2C15DC-BD81-4238-BA39-105836117D84}C:\xampp\mysql\bin\mysqld.exe] => C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{EEB6B15F-F713-4305-9227-3B292294E8E0}] => D:\SteamLibrary\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe
FirewallRules: [{59E77C5F-7298-45CB-8AF5-1A26041EDFD9}] => D:\SteamLibrary\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe
FirewallRules: [{72CD02D7-BF4E-43AE-B215-50436129B642}] => D:\SteamLibrary\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe
FirewallRules: [{A9A62307-0B6B-4BB0-AE1C-1638A11D1B2B}] => D:\SteamLibrary\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe
FirewallRules: [TCP Query User{6A486716-3E48-44FB-B7AD-68CC21B8EADA}C:\users\strat_000\appdata\roaming\dropbox\bin\dropbox.exe] => C:\users\strat_000\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{177443EE-7A65-4474-B6DC-B1AF157BD1B9}C:\users\strat_000\appdata\roaming\dropbox\bin\dropbox.exe] => C:\users\strat_000\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{3428BF3C-D727-40DA-A6BF-BC23B059220C}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FC3D896C-EE69-469D-9008-91C48EE803AC}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{4A8D0D80-FA38-4165-9F77-960658A79D74}D:\program files\eve\bin\exefile.exe] => D:\program files\eve\bin\exefile.exe
FirewallRules: [UDP Query User{645DD761-18C8-4BF6-8878-9BBD9A1DFC9A}D:\program files\eve\bin\exefile.exe] => D:\program files\eve\bin\exefile.exe
FirewallRules: [TCP Query User{D82CB044-B7D8-48BD-8D64-3E979659CA7F}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{444CDFF3-F3DB-4E39-A01B-371A73CD5F47}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{B5492246-9F29-41F2-89D0-E0CFB779A1DD}C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{C2F78D9F-DCD2-4AF0-A619-583134BC30E7}C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe
FirewallRules: [{DB02F1F2-6255-4B6A-90B5-8760337107FD}] => D:\Program Files\KeyShot5\bin\keyshot_daemon.exe
FirewallRules: [{9E6B2974-AAD0-4DFC-816E-5A07477E24FB}] => D:\Program Files\KeyShot5 Floating\bin\keyshot_daemon.exe
FirewallRules: [{AE1B1B82-6510-49A5-97C2-D6AB2E264713}] => D:\Program Files\KeyShot5 Floating\bin\keyshot5_floating.exe
FirewallRules: [{C57DD757-BEFA-4075-8137-ED652A3E4C5B}] => D:\Program Files\KeyShot5 Floating\bin\keyshot_daemon.exe
FirewallRules: [{999671FD-B130-4014-90A2-5DBF46894415}] => D:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
FirewallRules: [{8CC548E3-B545-4727-B24C-B6E0E840EC93}] => D:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
FirewallRules: [{F0C5460A-89EA-4E98-B041-813F56FD667A}] => D:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64.exe
FirewallRules: [{CC7D2887-A136-4369-ACF9-701A98074FE8}] => D:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64.exe
FirewallRules: [{D264EAD3-CC5B-41DE-B1B0-F93461B80A18}] => D:\SteamLibrary\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{17CE46FF-7AC8-44E0-BF02-CD46E6F7F4EC}] => D:\SteamLibrary\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{3EDDAB82-E901-40A6-ABF7-9F130A06B8DC}] => D:\SteamLibrary\SteamApps\common\Life is Feudal Your Own\yo_cm_client.exe
FirewallRules: [{E7493A85-12E5-439D-A513-ACC86D4675A2}] => D:\SteamLibrary\SteamApps\common\Life is Feudal Your Own\yo_cm_client.exe
FirewallRules: [TCP Query User{A6D8B041-213F-4151-98F6-5500A8A6D08D}D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe] => D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe
FirewallRules: [UDP Query User{819CFFB3-B805-4865-9104-6B993B6C6141}D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe] => D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe
FirewallRules: [{0D872B4E-17EC-41A9-B1DD-615EF8847BEA}] => D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe
FirewallRules: [{AA621320-F1A7-4ED8-900D-3C7A15C15017}] => D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe
FirewallRules: [TCP Query User{8D07783B-DA13-42DC-9B72-4D6C9CA6A4B4}C:\program files (x86)\arduino\java\bin\javaw.exe] => C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{85A28987-0094-4B0E-B5C2-780FA027351F}C:\program files (x86)\arduino\java\bin\javaw.exe] => C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{F84B1795-70D6-40C9-A91E-FF12A20A1A4F}] => C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{EA5F0A2F-C16C-40FD-AB8D-11429ACEA69F}] => C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [TCP Query User{9FB94BC4-7B30-4FEB-953D-6D463685DB15}D:\program files\eclipse\eclipse\eclipse.exe] => D:\program files\eclipse\eclipse\eclipse.exe
FirewallRules: [UDP Query User{EE95D0B7-8E4B-4F20-A735-91B975B0ADCC}D:\program files\eclipse\eclipse\eclipse.exe] => D:\program files\eclipse\eclipse\eclipse.exe
FirewallRules: [TCP Query User{F6E70320-65CE-4976-A39A-B6AAF5A319CD}C:\program files\matlab\r2015a\bin\win64\matlab.exe] => C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [UDP Query User{3A69E616-CBF2-4FB6-B702-CE19BF7516C9}C:\program files\matlab\r2015a\bin\win64\matlab.exe] => C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [TCP Query User{837A0BDF-94A2-47BE-8E17-98D4F88E50B6}C:\program files\matlab\r2015a\bin\win64\matlab.exe] => C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [UDP Query User{B0746FDD-D0A0-47C0-BE3D-CC8B4C9C115B}C:\program files\matlab\r2015a\bin\win64\matlab.exe] => C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [TCP Query User{35905164-CEE2-4D49-961B-7183F74E5982}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [UDP Query User{81C96AF5-83A9-433D-82DC-9AFC8BE49318}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [{27DE4CEC-30E0-4DFA-B9CF-82B0F08A496A}] => C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
FirewallRules: [{F030DCD2-3F64-45AD-85C8-3E9A6735553C}] => C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
FirewallRules: [{3C3A58F8-E2F4-49FB-94F8-DAD7C7E8E353}] => C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe
FirewallRules: [{A593FF79-ACB9-48DB-8709-A94B08EBFDCE}] => C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe
FirewallRules: [TCP Query User{595CD3E5-958C-450A-A696-F5423FC63089}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [UDP Query User{E12775D5-9ABC-49D2-A648-BBF3D2AC663B}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [{38DCFB8D-1AC8-4A96-8465-07DDDFCE5BFD}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{92916C34-CBE1-46E4-A0C1-BA3D9095CC38}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{555CA95E-B415-4760-8579-9A25B27C0290}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [{EE383DA8-2CB1-44EC-8C00-3CC26A2E6269}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{52AD202E-2C28-43F1-BD59-89A589FCF739}D:\program files\filezilla\filezilla ftp client\filezilla.exe] => D:\program files\filezilla\filezilla ftp client\filezilla.exe
FirewallRules: [UDP Query User{9CE4D3D2-C94D-431A-B788-6F2F908F6A32}D:\program files\filezilla\filezilla ftp client\filezilla.exe] => D:\program files\filezilla\filezilla ftp client\filezilla.exe
FirewallRules: [{DBF794C6-F82E-4926-8E53-E8CEE24E25B7}] => D:\SteamLibrary\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{C17CA1D3-B21D-41BB-A770-ABB9BBD08860}] => D:\SteamLibrary\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{D092E2F0-A4D6-4258-A8FD-0B77E05CFAB6}] => D:\SteamLibrary\SteamApps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
FirewallRules: [{E3A068FE-81EF-424E-9854-719DD5EEE083}] => D:\SteamLibrary\SteamApps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
FirewallRules: [{34A8704A-1BA5-4E78-AE0B-736CC9A3355C}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D87EC244-1E2E-43ED-89FC-8C9DCEC28D30}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{45F797C4-66D8-4C5A-B707-4D601535FDAB}D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe] => D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe
FirewallRules: [UDP Query User{6E0022AA-86AF-43A4-9721-8201D69881B1}D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe] => D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe
FirewallRules: [TCP Query User{06893087-BA65-4E47-87C6-1A9DEFB5C07D}D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe] => D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe
FirewallRules: [UDP Query User{6FC16076-9FF8-4819-AC04-151EE42692F2}D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe] => D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe
FirewallRules: [TCP Query User{5B2E33F7-6A80-4124-BDD5-486C3F687A1C}D:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe] => D:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe
FirewallRules: [UDP Query User{0DFE5C54-CF2F-4A4F-823A-15EE77A1F7C7}D:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe] => D:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe
FirewallRules: [TCP Query User{74BB7B1E-E2A4-4AAE-A83A-CAC0CFF0F292}D:\program files\ti education\ti-nspire computer link\jre\bin\java.exe] => D:\program files\ti education\ti-nspire computer link\jre\bin\java.exe
FirewallRules: [UDP Query User{F6A2F389-D056-4477-9236-99BEDD8AB990}D:\program files\ti education\ti-nspire computer link\jre\bin\java.exe] => D:\program files\ti education\ti-nspire computer link\jre\bin\java.exe
FirewallRules: [TCP Query User{C219EEC9-9304-43DA-A02E-47C5550FB0CF}D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe] => D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe
FirewallRules: [UDP Query User{90A4EAC3-1B74-4840-9A98-C1AE55BCF5A2}D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe] => D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe
FirewallRules: [{71CB189F-2F53-4995-96AB-EE3A08C7C8C3}] => C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{AAC4EB8F-7A39-4524-8451-E545A0D8BF50}] => C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [TCP Query User{B5729983-4D23-48C7-B3B5-C85ECD54D4D8}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe
FirewallRules: [UDP Query User{B953E78C-6AFF-4145-9876-9F8268A9FC21}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe
FirewallRules: [{813B74C6-24B6-4FAF-8686-C417EB2109B0}] => D:\Program Files\Makerbot\MakerWare\conveyor-svc.exe
FirewallRules: [{FBB017AE-A882-494C-8953-8A477337BB00}] => D:\Program Files\Makerbot\MakerWare\conveyor-svc.exe
FirewallRules: [TCP Query User{4D29F7EA-B63D-4D82-AA19-5FF380ACACB2}D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe] => D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe
FirewallRules: [UDP Query User{73F279FA-53CF-48FE-A553-1E0B8FC166B8}D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe] => D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe
FirewallRules: [TCP Query User{6DE1E719-63B5-4576-B897-D0F84381DEF8}C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe] => C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe
FirewallRules: [UDP Query User{F9F9238C-3D94-4313-A36B-F12286D6E3FC}C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe] => C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe
FirewallRules: [TCP Query User{1EBD238E-E99B-4FA9-A265-A23D236A8E65}C:\program files\ansys inc\v162\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v162\framework\bin\win64\ansysfww.exe
FirewallRules: [UDP Query User{F851EE0D-3A49-4439-8C68-A69C6D9CEEA9}C:\program files\ansys inc\v162\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v162\framework\bin\win64\ansysfww.exe
FirewallRules: [TCP Query User{C17A6E90-307B-4DC3-9532-A72BA28D7E13}C:\program files\ansys inc\v162\rsm\bin\ans.rsm.jmhost.exe] => C:\program files\ansys inc\v162\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [UDP Query User{B970B650-6B58-46DE-A066-6A50591E1372}C:\program files\ansys inc\v162\rsm\bin\ans.rsm.jmhost.exe] => C:\program files\ansys inc\v162\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [TCP Query User{4885D9A4-32E1-4EE4-A6D6-2CD6A165F75E}C:\program files\ansys inc\v162\commonfiles\help\helpviewer\ansyshelpviewer.exe] => C:\program files\ansys inc\v162\commonfiles\help\helpviewer\ansyshelpviewer.exe
FirewallRules: [UDP Query User{917B4B7E-E7CC-4B0E-B1F0-125B3B6D5984}C:\program files\ansys inc\v162\commonfiles\help\helpviewer\ansyshelpviewer.exe] => C:\program files\ansys inc\v162\commonfiles\help\helpviewer\ansyshelpviewer.exe
FirewallRules: [TCP Query User{ACEC9B2F-DF32-4388-A0EA-4D2D3C70FFD5}C:\program files\ansys inc\v162\ekm\programs\jre1.7.0_60\bin\javaw.exe] => C:\program files\ansys inc\v162\ekm\programs\jre1.7.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{582E496F-B3A3-4386-8766-57BE89BD4B1B}C:\program files\ansys inc\v162\ekm\programs\jre1.7.0_60\bin\javaw.exe] => C:\program files\ansys inc\v162\ekm\programs\jre1.7.0_60\bin\javaw.exe
FirewallRules: [TCP Query User{BB0B7764-C3C8-44E5-8B52-7653B442EF30}C:\program files\ansys inc\v162\aisol\bin\winx64\ansyswbu.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [UDP Query User{51D51782-0836-4ED0-8566-6C2F121A9206}C:\program files\ansys inc\v162\aisol\bin\winx64\ansyswbu.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [TCP Query User{4A78CA10-FC43-4BD2-ADEB-4A47B746AE3A}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe
FirewallRules: [UDP Query User{D2254D85-9005-4F98-93D0-52A8C2ED9525}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe
FirewallRules: [TCP Query User{2DEC6473-76A8-41EA-A1A0-C0B7C9CEE5DA}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe
FirewallRules: [UDP Query User{A57FFF96-FF6C-433D-A24B-61F6189CDA82}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe
FirewallRules: [TCP Query User{FF580F0A-613B-47ED-B66B-C4C2F7A53FC5}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [UDP Query User{299694CD-1A03-40CF-8D18-227E42292E3D}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [TCP Query User{D536004E-885D-48A6-93A0-E9F7523AA42E}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe
FirewallRules: [UDP Query User{1D5E4472-2548-4043-AB60-EC42950134F6}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe
FirewallRules: [TCP Query User{F33BA93F-F801-462A-B847-54A7DA65D394}C:\program files (x86)\ptc\creo\platform\3.119\creoagent.exe] => C:\program files (x86)\ptc\creo\platform\3.119\creoagent.exe
FirewallRules: [UDP Query User{89140C2A-C301-440F-9B0B-55A1430F42F8}C:\program files (x86)\ptc\creo\platform\3.119\creoagent.exe] => C:\program files (x86)\ptc\creo\platform\3.119\creoagent.exe
FirewallRules: [TCP Query User{4972AA5E-476F-45E9-BD9A-AB6BBADE6B20}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe
FirewallRules: [UDP Query User{1FF0173E-13B4-4BB1-906C-129DD6A070F7}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe
FirewallRules: [TCP Query User{80E67AB3-DB1B-42C5-98F1-C5DC7F732118}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe
FirewallRules: [UDP Query User{6EC3A2E6-D98E-4EAA-9279-D3B1DCB1D873}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe
FirewallRules: [TCP Query User{5B5441CC-56B0-419E-83AE-3E373E83CED7}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [UDP Query User{69EC30FA-BE3F-4362-97A1-3000220A2465}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [TCP Query User{75BC380F-63F4-4AAF-8F2D-86FC7B46ADB5}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe
FirewallRules: [UDP Query User{EDCCE7AB-6A5A-4A5D-8785-4339DEE39CE0}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe
FirewallRules: [{0A636003-3528-479F-8A40-20195C0BAD19}] => D:\Program Files\Steam\Steam.exe
FirewallRules: [{5738DAF4-AD22-4F63-A7E7-5CA0BB909BBF}] => D:\Program Files\Steam\Steam.exe
FirewallRules: [{A62542E4-7F5D-45F8-A2B0-4CA9D2A4BBEC}] => D:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{C0775954-FCAC-4C2F-B276-D9F05337E5F1}] => D:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{5515167E-A3F5-48F5-AEA8-1685AE0269D0}] => D:\Program Files\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{4C84F3A0-9CC9-4F32-9C47-17FBBD06D737}] => D:\Program Files\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [TCP Query User{97DE6410-F758-4E29-9CFB-20600C2CD63B}C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe
FirewallRules: [UDP Query User{71BD6B01-060A-4125-81F1-FF8EF36174CB}C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe
FirewallRules: [TCP Query User{5CC2725D-23C4-453E-B829-828BF6862000}C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe
FirewallRules: [UDP Query User{F903E9B5-DEF2-4B28-8B5B-77476C142E87}C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe
FirewallRules: [TCP Query User{3A2C031E-F5BE-49A9-950D-8617A663A885}C:\program files\ansys inc\v171\aisol\bin\winx64\ansyswbu.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [UDP Query User{654AC3D1-940C-4C80-BACC-7E0DF0BAB385}C:\program files\ansys inc\v171\aisol\bin\winx64\ansyswbu.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [TCP Query User{7EA91798-653B-4713-BA6D-C35C5FC66161}C:\users\strat_000\appdata\local\akamai\netsession_win.exe] => C:\users\strat_000\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{00173B88-63BE-410F-999B-D0BDF30559EA}C:\users\strat_000\appdata\local\akamai\netsession_win.exe] => C:\users\strat_000\appdata\local\akamai\netsession_win.exe
FirewallRules: [{4D9CF4CC-8906-485F-A554-9FF6616F8243}] => LPort=50493
FirewallRules: [{5BFEFDB5-F338-43E5-B4A3-B7447F59592A}] => LPort=5000
FirewallRules: [TCP Query User{D1104671-7D82-4552-8374-503FEFC7B173}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [UDP Query User{F1C4EE4E-7133-4A70-8A5B-EB715DECB5DB}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [{F4EBC012-4C9B-4B0A-9055-5536ABCA72A0}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [{8C3B5AE5-D1B4-4CCE-8ED6-D165DCD70224}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [TCP Query User{181AFDF0-B145-494C-B1A8-AD05EB416DC7}C:\program files\matlab\r2016a\bin\win64\matlab.exe] => C:\program files\matlab\r2016a\bin\win64\matlab.exe
FirewallRules: [UDP Query User{0964230A-1291-4FC4-943E-30A6BA863DDA}C:\program files\matlab\r2016a\bin\win64\matlab.exe] => C:\program files\matlab\r2016a\bin\win64\matlab.exe
FirewallRules: [{C14C2B35-2BBB-4FA6-996E-58A62F434429}] => C:\program files\matlab\r2016a\bin\win64\matlab.exe
FirewallRules: [{9CD0AAF4-97AC-40A2-A76D-BEDEA81C38ED}] => C:\program files\matlab\r2016a\bin\win64\matlab.exe
FirewallRules: [TCP Query User{C3C87D8E-2C32-439A-8F0F-719898DD5826}C:\matlab\supportpackages\r2016a\arduino-1.6.1\java\bin\java.exe] => C:\matlab\supportpackages\r2016a\arduino-1.6.1\java\bin\java.exe
FirewallRules: [UDP Query User{DEB563F4-3720-4101-97E9-672EF2052C51}C:\matlab\supportpackages\r2016a\arduino-1.6.1\java\bin\java.exe] => C:\matlab\supportpackages\r2016a\arduino-1.6.1\java\bin\java.exe
FirewallRules: [TCP Query User{D5720B77-6C66-485F-A890-AE3C1FDD4D5D}C:\users\strat_000\appdata\local\akamai\netsession_win.exe] => C:\users\strat_000\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{14236913-4D2D-4B50-891D-70654771B034}C:\users\strat_000\appdata\local\akamai\netsession_win.exe] => C:\users\strat_000\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{46FF2D9A-0F3F-4749-8962-71D740E7BD8C}C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [UDP Query User{3FDF8896-5053-4299-896A-5ED8651D03CD}C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [TCP Query User{1947A3A6-BDAD-4763-A046-0C9E6D5B6771}C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [UDP Query User{039B220B-08A5-4922-9AFE-9B053FE53476}C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [{F70DB554-098B-4EF5-B2F3-9C347B478D6D}] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [{46263FF4-0425-425D-92E7-327CA4A7825D}] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [{B0695D51-3E61-4BB7-A8FF-63FC28B5E5AC}] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [{20096A1E-9D0E-4E3C-AC1B-3188FC7530DE}] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [{106A88F1-F0A2-4C7F-95F5-76440A08A109}] => D:\Program Files\Steam\steamapps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
FirewallRules: [{694EF472-82E0-4B7D-9EEB-06E46A391E8C}] => D:\Program Files\Steam\steamapps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
FirewallRules: [{4F0AB3CD-890E-4BDA-9033-DE79A3086B02}] => D:\Program Files\Steam\steamapps\common\Eve Online\eve.exe
FirewallRules: [{04D43F88-030A-4275-90D9-B882D7B65DCB}] => D:\Program Files\Steam\steamapps\common\Eve Online\eve.exe
FirewallRules: [TCP Query User{20FA449C-E079-41C2-8DA1-F447D545414C}D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe] => D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe
FirewallRules: [UDP Query User{EF374B26-590B-40F1-B24A-FEA487E921D9}D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe] => D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe
FirewallRules: [{32CDE5DF-70E7-4F3C-A8B5-A29D48CA988A}] => D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe
FirewallRules: [{F4D862D1-D1A1-4A3F-AF09-2078C5CBB85D}] => D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe
FirewallRules: [TCP Query User{69775E32-E8E9-4362-97C3-F7A9CBDA8525}D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe] => D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe
FirewallRules: [UDP Query User{4A620198-4132-4148-B93E-F8D86B2B9D25}D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe] => D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe
FirewallRules: [{4A67E9AE-AACC-4961-9B75-1F3439B9543F}] => D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe
FirewallRules: [{3B976257-3BFA-4EBE-8BB2-A298998E620C}] => D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe
FirewallRules: [TCP Query User{64A35C27-ECCA-4350-9E9D-6F48F563B16F}D:\program files\warcraft iii\war3.exe] => D:\program files\warcraft iii\war3.exe
FirewallRules: [UDP Query User{C194F2B0-14E4-4202-B1EB-A17AAFBE472F}D:\program files\warcraft iii\war3.exe] => D:\program files\warcraft iii\war3.exe
FirewallRules: [{27694D1D-CE53-4337-A629-6438BC9B595F}] => D:\program files\warcraft iii\war3.exe
FirewallRules: [{5DD6108B-F61F-444A-A634-0D589383E649}] => D:\program files\warcraft iii\war3.exe
FirewallRules: [TCP Query User{CF9F0323-F072-41EE-A4CD-4E84DE85A040}C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe
FirewallRules: [UDP Query User{5282506B-AE01-498B-A92B-1D12F4494477}C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe
FirewallRules: [{E4899B7C-A00E-42E1-B2B7-BE38D598F81D}] => C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe
FirewallRules: [{1C74F810-9F65-45A2-9DAB-7F97D157C1FE}] => C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe
FirewallRules: [TCP Query User{81F94168-96C9-45EB-8652-BE3BD3F2B9F4}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe
FirewallRules: [UDP Query User{F6A69B8B-99EF-4BD9-8D85-E04716828D68}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe
FirewallRules: [TCP Query User{CE76F80C-48AA-49BE-9A9F-BB919E849C38}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe
FirewallRules: [UDP Query User{4594E7F3-EEFB-4329-B389-B9EBABB92B6A}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe
FirewallRules: [{C92CDDCF-7D42-4A37-923A-04D4F6EA03FA}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe
FirewallRules: [{28D42510-D9E4-486E-935F-8ADD84027A22}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe
FirewallRules: [TCP Query User{8D518D0C-9081-43D1-A35E-4A3D61ECAA26}C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe
FirewallRules: [UDP Query User{E6DDC5CA-990D-4429-87FC-429787D074BC}C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe
FirewallRules: [TCP Query User{A9308F64-3D8A-49D5-9780-9D5272C10846}C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe
FirewallRules: [UDP Query User{1EF6429A-E3A4-463B-8D24-664237591AE5}C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe
FirewallRules: [TCP Query User{CA864C90-D777-424C-9067-AE34B478CA81}C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe
FirewallRules: [UDP Query User{B56F3383-3890-4B7D-9A9A-B7CF30770440}C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe
FirewallRules: [{1E2D9886-F380-4CC3-9D56-EBCE047B98C5}] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe
FirewallRules: [{85A45DD1-885B-448A-9847-9EED796FC0AE}] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe
FirewallRules: [TCP Query User{D6EAD59A-051B-4164-8D14-92B0FB3FA209}C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe
FirewallRules: [UDP Query User{AFD99344-E596-4C15-8D09-43C01C6F5147}C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe
FirewallRules: [{A963F426-DD88-4783-9D87-EC3196206352}] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe
FirewallRules: [{14EA7183-AEC1-429B-A934-88FE71957385}] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe
FirewallRules: [{4FF6F839-621D-4491-BC40-481DF3A19C3B}] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe
FirewallRules: [{5D8BEBD9-40C4-4F16-BA6F-4CEB81EBADD2}] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe
FirewallRules: [{53BA2B6B-7B76-4BF6-9F28-51D8247E91C7}] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe
FirewallRules: [{51E257FE-69C3-4533-A2BF-87FDF4071BDF}] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe
FirewallRules: [{DF1FBDD4-D8FB-4F17-906B-C47C5D624AD0}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe
FirewallRules: [{18143208-C801-4688-B8BB-FF6F7378727F}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe
FirewallRules: [{F7663B8E-CFAF-4CF7-8A7D-D03E77013CFD}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{22B27A22-A3EB-40B6-AA3A-8789F8C685EF}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D1245765-4B2B-4084-8997-28FC0ACF475C}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{50C231A1-9929-46DE-AADD-807BDF05C814}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{87934A71-4B39-4944-A8E3-90F676C4A92E}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D63EBAAC-B876-422E-81B5-5BB553605661}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{91E0B6DC-23B6-4396-B1DD-D9B19EB86A4E}] => D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5F2186F5-EE4E-43F9-9B85-2D397956E30C}] => D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6491CDB2-3611-4C02-9CDE-737D98D6D464}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E634B76F-4585-4DBE-A792-E9B02D8AAB34}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BF7A02F5-D851-46C1-A7AA-EE92C087AE9E}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{772C1C15-151E-486D-B246-E93ADFA57B7E}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F76B77B6-20E9-4A11-812F-96EEE09AD674}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CF1F6B31-7E25-4BD7-9684-F6E7DE3264AD}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{16B2691B-1D96-4DD6-A464-CF435E3BBBF0}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{739CA301-3C83-4909-A25E-5D095F10AF80}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3B848BF1-A2CB-49D8-BEDD-6E15C4BDB929}] => C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
FirewallRules: [{22EC3136-CADE-4416-9D77-F40268D55AD2}] => C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
FirewallRules: [{C229CA86-D1D2-4089-A45B-2E31E803BAF1}] => C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
FirewallRules: [{4F08CF52-B016-4A68-944C-1304C9C0BE35}] => C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
FirewallRules: [{CD4A55A3-AC69-4910-B11D-11764353D2A1}] => C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
FirewallRules: [{E9F3CA92-CAD3-46F6-BDA4-C9D733553497}] => C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
FirewallRules: [{EE18F89F-A23A-4E32-97A7-6130C9EE58F9}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{177C89B0-4EA5-426D-AF16-50FF2F619991}C:\python27\python.exe] => C:\python27\python.exe
FirewallRules: [UDP Query User{9FD36F7A-96E2-4353-B5E3-FDF73C79E680}C:\python27\python.exe] => C:\python27\python.exe
FirewallRules: [{9F6029FF-4CC7-4BAD-8731-0F7014432B76}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{336C1EC1-46B7-4511-ADF1-6F9189281BEE}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{67F283D0-13BF-42AA-8B84-DED70E4BB1B6}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C80AD0C9-2D15-42FE-BEBE-CFCA134132C2}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5FA80B06-0608-4989-AEE8-F34289CACB2D}] => D:\Program Files\Steam\steamapps\common\Stronghold\Stronghold.exe
FirewallRules: [{0F8CF37E-9E3B-4498-AACC-881A689E8D02}] => D:\Program Files\Steam\steamapps\common\Stronghold\Stronghold.exe
FirewallRules: [{4DB7C15D-5483-4EE7-9942-F2D610C4C259}] => D:\Program Files\Steam\steamapps\common\Stronghold Legends\FFLauncher.exe
FirewallRules: [{B52D4938-2A70-4EBD-BDCC-829EF072AE13}] => D:\Program Files\Steam\steamapps\common\Stronghold Legends\FFLauncher.exe
FirewallRules: [{5B6C4EA5-9266-4C63-8B68-10FA23492FB6}] => D:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{54F453BB-4C87-4F62-BE60-7B0729365AB1}] => D:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{351C1CC4-64DE-4D5F-ABAC-7BF7C2347AEC}] => D:\Program Files\Steam\steamapps\common\Stronghold 2\Stronghold2.exe
FirewallRules: [{044A6B93-D306-4825-B95B-D743067ECAAB}] => D:\Program Files\Steam\steamapps\common\Stronghold 2\Stronghold2.exe
FirewallRules: [{15A66BEC-7E64-45E5-864E-AF6822B0CF11}] => D:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{DC60EA33-BBA8-483B-80DF-DEAA10E33C64}] => D:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{A1E5E47B-4195-461D-8CAE-DA868D6F43B2}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9F051BF0-FC11-487A-927A-8F2437AF7B54}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{723D36AD-083D-4C5A-A22E-B002AE15BCBF}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B4D7AA00-3790-4020-B77B-7F57931A417C}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E9135C4D-51E5-484D-B4BC-0C61F0335FE1}] => D:\Program Files\Steam\steamapps\common\Risen 2\system\Risen2.exe
FirewallRules: [{95FC9F15-2B45-477A-87F9-B826F7BA3099}] => D:\Program Files\Steam\steamapps\common\Risen 2\system\Risen2.exe
FirewallRules: [{AA10F175-C941-43F5-A3A2-A72009C3C90E}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{79851F8F-EE44-4131-89BE-3DADD6AE3036}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{D715EC5C-D0BF-4C58-BE58-729955EC782B}C:\python27\python.exe] => C:\python27\python.exe
FirewallRules: [UDP Query User{B828D04C-D74B-4C96-AABB-54C982E4B185}C:\python27\python.exe] => C:\python27\python.exe
FirewallRules: [TCP Query User{531F659E-39C5-4577-8966-836B4C42D79B}C:\python34\python.exe] => C:\python34\python.exe
FirewallRules: [UDP Query User{7CD72028-EA1D-4721-A985-E3CD2FEE964D}C:\python34\python.exe] => C:\python34\python.exe
FirewallRules: [{26F2EFD9-72A1-42E7-9866-344CEC330888}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8C9F4D70-C2F8-4DD5-8A5D-938F4040A0CD}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{11E81A1B-0517-4146-83F2-7552DFFBC9FD}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{4BBCB332-05EF-4C18-AF9D-16D4F81F58C1}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

==================== Restore Points =========================

12-02-2017 16:13:02 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/12/2017 08:24:42 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (02/12/2017 08:22:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (02/12/2017 08:21:59 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (02/12/2017 06:51:05 PM) (Source: MsiInstaller) (EventID: 11310) (User: STRATOS)
Description: Produkt: Akamai NetSession Interface -- Fehler 1310. Fehler beim Schreiben in die Datei: C:\Users\Strat_000\AppData\Local\Akamai\admintool.exe.  Systemfehler 0. Stellen Sie sicher, dass Sie auf das Verzeichnis zugreifen können.

Error: (02/12/2017 06:50:47 PM) (Source: MsiInstaller) (EventID: 11310) (User: STRATOS)
Description: Produkt: Akamai NetSession Interface -- Fehler 1310. Fehler beim Schreiben in die Datei: C:\Users\Strat_000\AppData\Local\Akamai\admintool.exe.  Systemfehler 0. Stellen Sie sicher, dass Sie auf das Verzeichnis zugreifen können.

Error: (02/12/2017 04:13:04 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (02/12/2017 02:44:13 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (02/12/2017 02:43:15 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (02/12/2017 02:42:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\Strat_000\Desktop\esetsmartinstaller_deu.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (02/12/2017 02:42:34 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\Strat_000\Desktop\esetsmartinstaller_deu.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.


System errors:
=============
Error: (02/12/2017 02:45:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The eapihdrv service failed to start due to the following error: 
This driver has been blocked from loading

Error: (02/12/2017 02:45:55 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\STRAT_~1\AppData\Local\Temp\ehdrv.sys

Error: (02/12/2017 02:45:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The eapihdrv service failed to start due to the following error: 
This driver has been blocked from loading

Error: (02/12/2017 02:45:54 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\STRAT_~1\AppData\Local\Temp\ehdrv.sys

Error: (02/12/2017 02:45:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The eapihdrv service failed to start due to the following error: 
This driver has been blocked from loading

Error: (02/12/2017 02:45:54 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\STRAT_~1\AppData\Local\Temp\ehdrv.sys

Error: (02/12/2017 02:44:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The eapihdrv service failed to start due to the following error: 
This driver has been blocked from loading

Error: (02/12/2017 02:44:09 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\STRAT_~1\AppData\Local\Temp\ehdrv.sys

Error: (02/12/2017 02:44:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The eapihdrv service failed to start due to the following error: 
This driver has been blocked from loading

Error: (02/12/2017 02:44:08 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\STRAT_~1\AppData\Local\Temp\ehdrv.sys


CodeIntegrity:
===================================
  Date: 2017-02-02 20:23:01.621
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-02-02 20:23:01.621
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-02-02 20:23:01.620
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-02-02 20:23:01.620
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-02-02 20:23:01.620
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-01-18 15:02:37.473
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-18 15:02:37.192
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-15 15:36:28.904
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-15 15:36:28.659
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-08 12:31:47.580
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-4702HQ CPU @ 2.20GHz
Percentage of memory in use: 28%
Total physical RAM: 16287.06 MB
Available physical RAM: 11670.26 MB
Total Virtual: 18719.06 MB
Available Virtual: 13841.25 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:226.66 GB) (Free:41.57 GB) NTFS
Drive d: (DATA) (Fixed) (Total:465.64 GB) (Free:180.49 GB) NTFS
Drive x: (WINRETOOLS) (Fixed) (Total:2 GB) (Free:1.67 GB) NTFS
Drive y: (PBR Image) (Fixed) (Total:8.7 GB) (Free:0.73 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 993AD5C7)

Partition: GPT.

========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 36A8EBAC)

Partition: GPT.

==================== End of Addition.txt ============================

Tician · 13.02.2017, 21:39

Gute gemacht

Schritt 1:

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

C:\Program Files (x86)\Common Files\DVDVideoSoft\ExtOffer.exe
C:\Users\Strat_000\Downloads\computerbild\CC_Tiberiumkonflikt_CB-DL-Manager.exe
C:\Users\Strat_000\Downloads\computerbild\SWTOR_setup_CB-DL-Manager.exe
C:\Users\Strat_000\Downloads\LaTeX\LyX-2.1.2-Bundle-1 - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\LaTeX\Texmaker - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\Mozilla\FileZilla - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\mySQL\MySQL - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\Samsung\Samsung Kies - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\Scriptly\Webocton Scriptly - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\SyncToy\Microsoft SyncToy 64 Bit - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\Texmaker\Texmaker - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\TinyCAD\TinyCAD - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\VLC\VLC media player 64 Bit - CHIP-Installer.exe
D:\Downloads\FreeYouTubeDownload_4.1.24.627.exe

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Schritt 2:

Deinstalliere Malwarebytes Anti-Malware bitte über die Systemsteuerung.

Lässt sich der Defender nun aktivieren?

stratos2k · 13.02.2017, 21:57

Hi

Hier ist die Fixlog.txt:

Code:

ATTFilter

Fix result of Farbar Recovery Scan Tool (x64) Version: 12-02-2017
Ran by Strat_000 (13-02-2017 21:45:34) Run:3
Running from C:\Users\Strat_000\Desktop
Loaded Profiles: Strat_000 (Available Profiles: Strat_000 & Guest & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
C:\Program Files (x86)\Common Files\DVDVideoSoft\ExtOffer.exe
C:\Users\Strat_000\Downloads\computerbild\CC_Tiberiumkonflikt_CB-DL-Manager.exe
C:\Users\Strat_000\Downloads\computerbild\SWTOR_setup_CB-DL-Manager.exe
C:\Users\Strat_000\Downloads\LaTeX\LyX-2.1.2-Bundle-1 - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\LaTeX\Texmaker - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\Mozilla\FileZilla - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\mySQL\MySQL - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\Samsung\Samsung Kies - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\Scriptly\Webocton Scriptly - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\SyncToy\Microsoft SyncToy 64 Bit - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\Texmaker\Texmaker - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\TinyCAD\TinyCAD - CHIP-Installer.exe
C:\Users\Strat_000\Downloads\VLC\VLC media player 64 Bit - CHIP-Installer.exe
D:\Downloads\FreeYouTubeDownload_4.1.24.627.exe
         
*****************

C:\Program Files (x86)\Common Files\DVDVideoSoft\ExtOffer.exe => moved successfully
C:\Users\Strat_000\Downloads\computerbild\CC_Tiberiumkonflikt_CB-DL-Manager.exe => moved successfully
C:\Users\Strat_000\Downloads\computerbild\SWTOR_setup_CB-DL-Manager.exe => moved successfully
C:\Users\Strat_000\Downloads\LaTeX\LyX-2.1.2-Bundle-1 - CHIP-Installer.exe => moved successfully
C:\Users\Strat_000\Downloads\LaTeX\Texmaker - CHIP-Installer.exe => moved successfully
C:\Users\Strat_000\Downloads\Mozilla\FileZilla - CHIP-Installer.exe => moved successfully
C:\Users\Strat_000\Downloads\mySQL\MySQL - CHIP-Installer.exe => moved successfully
C:\Users\Strat_000\Downloads\Samsung\Samsung Kies - CHIP-Installer.exe => moved successfully
C:\Users\Strat_000\Downloads\Scriptly\Webocton Scriptly - CHIP-Installer.exe => moved successfully
C:\Users\Strat_000\Downloads\SyncToy\Microsoft SyncToy 64 Bit - CHIP-Installer.exe => moved successfully
C:\Users\Strat_000\Downloads\Texmaker\Texmaker - CHIP-Installer.exe => moved successfully
C:\Users\Strat_000\Downloads\TinyCAD\TinyCAD - CHIP-Installer.exe => moved successfully
C:\Users\Strat_000\Downloads\VLC\VLC media player 64 Bit - CHIP-Installer.exe => moved successfully
D:\Downloads\FreeYouTubeDownload_4.1.24.627.exe => moved successfully

==== End of Fixlog 21:45:42 ====

Leider kann ich den Defender noch nicht wieder starten

Kommt nach wie vor die Fehlermeldung: "This app is turned off by group policy"

Gruss Stratos

Tician · 14.02.2017, 15:02

Also gut,

Malware ist soweit ich sehen kann keine mehr vorhanden.

Wir schauen mal ob wir den Dienst wieder hin bekommen, aber versprechen tu ich nichts, es könnte darauf hinaus laufen das du dir im Windows-Bereich des Forums ein Thema aufmachen musst, dann können auch andere Personen helfen

Schauen wir uns erstmal den Status an.

Schritt 1:

Downloade Dir bitte MBAM-clean.exe
und speichere die Datei auf dem Desktop

Starte die mbam-clean.exe.
Das Tool wird einen Neustart verlangen. Dies bitte zulassen.

Schritt 1:

Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Untersuchen.
FRST erstellt nun zwei Logdateien (FRST.txt und Addition.txt).
Poste mir beide Logdateien mit deiner nächsten Antwort.

Downloade dir bitte Farbar's Service Scanner

Starte das Tool mit Doppelklick auf die FSS.exe
Gehe sicher, dass folgende Optionen angehakt sind.
- Internet Services
- Windows Firewall
- System Restore
- Security Center/Action Center
- Windows Update
- Windows Defender
- Other Services
Klicke auf Scan.
Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.

stratos2k · 14.02.2017, 17:34

Hallo Tician

Das sind schonmal grossartige Neuigkeiten

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-02-2017
Ran by Strat_000 (administrator) on STRATOS (14-02-2017 17:31:20)
Running from C:\Users\Strat_000\Desktop
Loaded Profiles: Strat_000 (Available Profiles: Strat_000 & Guest & DefaultAppPool)
Platform: Windows 10 Pro Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dassault Systemes) C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CATSysDemon.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(3Dconnexion) D:\Program Files\3Dconnexion\3DxWinCore64\Mgl3DCtlrRPCService.exe
(MakerBot) D:\Program Files\Makerbot\MakerWare\conveyor-svc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Autodesk, Inc.) D:\Autodesk\Inventor 2014\Moldflow\bin\mitsijm.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(National Instruments Corporation) C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Akamai Technologies, Inc.) C:\Users\Strat_000\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Strat_000\AppData\Local\Akamai\netsession_win.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [111976 2013-08-03] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8721656 2016-03-09] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1416440 2016-03-09] (Realtek Semiconductor)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5773640 2013-08-23] (Dell Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-10-28] (Intel Corporation)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1416440 2016-03-09] (Realtek Semiconductor)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [401896 2016-11-01] ()
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2747680 2013-11-14] ()
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3111880 2015-07-23] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15120504 2016-02-18] (Logitech Inc.)
HKLM\...\Run: [3DxWare Service] => D:\Program Files\3Dconnexion\3DxWinCore64\3DxService.exe [2160512 2015-12-10] (3Dconnexion, INC)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2780400 2013-09-06] (Synaptics Incorporated)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-29] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-12-06] (Apple Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [529480 2016-02-24] (Autodesk Inc.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452272 2012-08-31] (CANON INC.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => D:\Program Files\Mathcad PDSi\Acrobat\Acrotray.exe [640376 2008-10-01] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [707472 2014-10-16] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26220296 2017-02-07] (Dropbox, Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google)
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\Run: [PureSync] => C:\Program Files (x86)\Jumping Bytes\PureSync\PureSyncTray.exe [1059696 2016-06-17] (Jumping Bytes)
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\Run: [Chromium] => c:\users\strat_000\appdata\local\chromium\application\chrome.exe [1068544 2016-03-18] (The Chromium Authors)
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Strat_000\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\RunOnce: [Uninstall C:\Users\Strat_000\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Strat_000\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [37376 2016-07-16] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  OCError] -> {0960F090-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\SWITCHdrive\shellext\OCOverlays_x64.dll [2015-05-14] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [  OCErrorShared] -> {0960F091-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\SWITCHdrive\shellext\OCOverlays_x64.dll [2015-05-14] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [  OCOK] -> {0960F092-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\SWITCHdrive\shellext\OCOverlays_x64.dll [2015-05-14] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [  OCOKShared] -> {0960F093-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\SWITCHdrive\shellext\OCOverlays_x64.dll [2015-05-14] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [  OCSync] -> {0960F094-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\SWITCHdrive\shellext\OCOverlays_x64.dll [2015-05-14] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [  OCSyncShared] -> {0960F095-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\SWITCHdrive\shellext\OCOverlays_x64.dll [2015-05-14] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [  OCWarning] -> {0960F096-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\SWITCHdrive\shellext\OCOverlays_x64.dll [2015-05-14] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [  OCWarningShared] -> {0960F097-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\SWITCHdrive\shellext\OCOverlays_x64.dll [2015-05-14] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Strat_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-09-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Strat_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-09-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Strat_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileSyncShell64.dll [2016-09-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll [2016-07-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll [2016-07-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Strat_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-09-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Strat_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-09-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Strat_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-09-29] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2016-12-21]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation)
Startup: C:\Users\Strat_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2017-01-31]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [24320 2012-05-31] (National Instruments Corporation)
Winsock: Catalog5-x64 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [26368 2012-05-31] (National Instruments Corporation)
Tcpip\Parameters: [DhcpNameServer] 62.2.17.61 62.2.24.158 62.2.17.60 62.2.24.162
Tcpip\..\Interfaces\{967ad987-0ffd-4422-95f2-d84719f0d1ec}: [DhcpNameServer] 62.2.17.61 62.2.24.158 62.2.17.60 62.2.24.162
ManualProxies: 

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = 
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\Software\Microsoft\Internet Explorer\Main,Start Page = 
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKU\S-1-5-21-968931954-2191872932-1542864395-1001 -> DefaultScope {CA0DAA8E-8BDE-4309-AD1D-7AC2B53D2658} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-07-23] (Logitech, Inc.)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-05] (Oracle Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-07-23] (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-05] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default [2017-02-14]
FF NewTab: Mozilla\Firefox\Profiles\bcrhru5j.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\bcrhru5j.default -> Google
FF Homepage: Mozilla\Firefox\Profiles\bcrhru5j.default -> www.startpage.com
FF Keyword.URL: Mozilla\Firefox\Profiles\bcrhru5j.default -> user_pref("keyword.URL", true);
FF Extension: (Codebender.cc Plugin) - C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\Extensions\codebender@codebender.cc [2016-04-14]
FF Extension: (Speed Manager Plus) - C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\Extensions\{936216dc-1346-4a00-9d4d-ee8a61977a6d}.xpi [2016-05-18] [not signed]
FF Extension: (Speed Addon) - C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\Extensions\{afebcc45-0538-4b91-9ab9-4390df4928c2}.xpi [2015-12-19] [not signed]
FF SearchPlugin: C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\searchplugins\ecosia.xml [2016-04-19]
FF SearchPlugin: C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\searchplugins\google-images.xml [2014-10-29]
FF SearchPlugin: C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\searchplugins\google-maps.xml [2014-10-29]
FF SearchPlugin: C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\searchplugins\qwantcom.xml [2015-04-08]
FF SearchPlugin: C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\searchplugins\start-page.xml [2016-11-21]
FF SearchPlugin: C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\searchplugins\startpage---deutsch.xml [2017-01-21]
FF SearchPlugin: C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\searchplugins\startpage-https---deutsch.xml [2017-02-13]
FF SearchPlugin: C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\searchplugins\wikispaces-arduino-info.xml [2016-02-19]
FF SearchPlugin: C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\searchplugins\youtube.xml [2015-11-21]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-09-03] [not signed]
FF HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Strat_000\AppData\Roaming\Mozilla\Firefox\Profiles\bcrhru5j.default\extensions\cliqz@cliqz.com => not found
FF Plugin: @3ds.com/3dxml -> C:\Program Files\Dassault Systemes\3D XML Player\win_b64\code\bin\NP3DXMLPlugin.dll [2014-05-23] ()
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-24] ()
FF Plugin: @videolan.org/vlc,version=2.2.1 -> D:\Program Files\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> D:\Program Files\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @3ds.com/3dxml -> C:\Program Files\Dassault Systemes\3D XML Player\win_b64\code\bin32\NP3DXMLPlugin.dll [2013-07-10] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-24] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-12] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-08-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-21] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-06-26] (pdfforge GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nplv2012win32.dll [2012-10-04] (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome: 
=======
CHR DefaultProfile: ChromeDefaultData
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-24] (Autodesk Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 BBDemon; C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CATSysDemon.exe [53520 2014-12-12] (Dassault Systemes)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042032 2016-12-13] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-08] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-08] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46400 2017-02-07] (Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [391656 2016-07-22] (Digital Wave Ltd.)
R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [115632 2013-08-03] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [148688 2013-08-03] (Intel Corporation)
S2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [124880 2013-08-03] (Intel Corporation)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-10-28] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-19] (Intel Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-12] (Intel Corporation)
R2 LkCitadelServer; C:\WINDOWS\SysWOW64\lkcitdl.exe [695136 2011-05-06] (National Instruments, Inc.)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [50328 2012-06-05] (National Instruments Corporation)
R2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [60568 2012-06-05] (National Instruments Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-02-18] (Logitech Inc.)
R2 MakerBot Conveyor Service; D:\Program Files\Makerbot\MakerWare\conveyor-svc.exe [85504 2016-01-01] (MakerBot) [File not signed]
R2 Mgl3DCtlrRPCService; D:\Program Files\3Dconnexion\3DxWinCore64\Mgl3DCtlrRPCService.exe [57856 2015-12-10] (3Dconnexion) [File not signed]
R2 mitsijm2014; D:\Autodesk\Inventor 2014\Moldflow\bin\mitsijm.exe [952608 2013-01-25] (Autodesk, Inc.)
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [53960 2012-05-22] (National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [76488 2012-05-22] (National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [370328 2012-06-05] (National Instruments Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [236768 2012-06-06] (National Instruments Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [258776 2012-05-31] (National Instruments Corporation)
R2 niSvcLoc; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [53952 2012-05-22] (National Instruments Corporation)
R2 NVWMI; C:\Windows\system32\nvwmi64.exe [2273568 2013-11-14] (NVIDIA Corporation)
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-06-26] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-06-26] (pdfforge GmbH)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [316152 2016-03-09] (Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
S2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915920 2013-11-22] (SoftThinks SAS)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S3 WMSVC; C:\WINDOWS\system32\inetsrv\wmsvc.exe [12288 2016-09-29] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 3dxhid; C:\WINDOWS\System32\drivers\3dxhid.sys [39184 2015-11-07] (3Dconnexion SAM)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 DptfDevDram; C:\WINDOWS\system32\DRIVERS\DptfDevDram.sys [143568 2013-08-03] (Intel Corporation)
R3 DptfDevGen; C:\WINDOWS\system32\DRIVERS\DptfDevGen.sys [76432 2013-08-03] (Intel Corporation)
R3 DptfDevPch; C:\WINDOWS\system32\DRIVERS\DptfDevPch.sys [114680 2013-08-03] (Intel Corporation)
R3 DptfDevProc; C:\WINDOWS\system32\DRIVERS\DptfDevProc.sys [287160 2013-08-03] (Intel Corporation)
R3 DptfManager; C:\WINDOWS\system32\DRIVERS\DptfManager.sys [494272 2013-08-03] (Intel Corporation)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-10-02] (Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-10-02] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77416 2017-01-20] ()
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [349960 2016-07-12] (Intel Corporation)
R3 KMJHidMini; C:\WINDOWS\System32\drivers\3dxkmj.sys [18944 2015-11-07] (3Dconnextion Inc.)
R3 KMJShim; C:\WINDOWS\System32\drivers\3dxshim.sys [7168 2015-11-07] (3Dconnextion Inc.)
S3 LAN7500; C:\WINDOWS\system32\DRIVERS\lan7500-x64-n630f.sys [105960 2015-07-22] (SMSC)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
R1 LUMDriver; C:\Windows\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-12] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NETwNb64; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [4112656 2015-09-23] (Intel Corporation)
S3 nidimk; C:\WINDOWS\system32\drivers\nidimkl.sys [12968 2012-01-27] (National Instruments Corporation)
S3 niorbk; C:\WINDOWS\system32\drivers\niorbkl.sys [12952 2011-07-01] (National Instruments Corporation)
S3 nipalfwedl; C:\WINDOWS\System32\drivers\nipalfwedl.sys [12520 2012-06-06] (National Instruments Corporation)
R0 NIPALK; C:\WINDOWS\System32\drivers\nipalk.sys [914624 2012-06-06] (National Instruments Corporation)
S3 nipalusbedl; C:\WINDOWS\System32\drivers\nipalusbedl.sys [12520 2012-06-06] (National Instruments Corporation)
R0 nipbcfk; C:\WINDOWS\System32\drivers\nipbcfk.sys [16984 2012-01-12] (National Instruments Corporation)
S3 NiViPciK; C:\WINDOWS\System32\drivers\NiViPciKl.sys [13008 2012-06-06] (National Instruments Corporation)
R2 NiViPxiK; C:\WINDOWS\System32\drivers\NiViPxiKl.sys [13008 2012-06-06] (National Instruments Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
R3 SensorsAlsDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-09-06] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 ST_Accel; C:\WINDOWS\system32\DRIVERS\ST_Accel.sys [83456 2013-08-06] (STMicroelectronics)
S3 USBTINSP; C:\WINDOWS\System32\drivers\tinspusb.sys [142848 2010-03-29] (Texas Instruments)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [52592 2014-03-12] (Cisco Systems, Inc.)
R3 VSTWinDriver6; C:\WINDOWS\system32\drivers\VSTwindrvr6.sys [252928 2015-08-27] (Jungo)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 MBAMProtection; \??\C:\WINDOWS\system32\drivers\mbam.sys [X]
S3 MBAMWebProtection; \??\C:\WINDOWS\system32\drivers\mwac.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-14 17:31 - 2017-02-14 17:31 - 00035934 _____ C:\Users\Strat_000\Desktop\FRST.txt
2017-02-14 17:28 - 2017-02-14 17:28 - 00566128 _____ (Malwarebytes) C:\Users\Strat_000\Desktop\mbam-clean-2.3.0.1001.exe
2017-02-14 09:54 - 2017-02-14 09:54 - 00061690 _____ C:\Users\Strat_000\Desktop\3001.pdf
2017-02-13 21:43 - 2017-02-13 21:45 - 00002697 _____ C:\Users\Strat_000\Desktop\Fixlog.txt
2017-02-12 20:24 - 2017-02-12 20:24 - 00147493 _____ C:\Users\Strat_000\Desktop\Addition_2 (2).txt
2017-02-12 20:23 - 2017-02-12 20:24 - 00053683 _____ C:\Users\Strat_000\Desktop\FRST_3.txt
2017-02-12 14:41 - 2017-02-12 14:41 - 02870984 _____ (ESET) C:\Users\Strat_000\Desktop\esetsmartinstaller_deu.exe
2017-02-12 14:40 - 2017-02-12 14:40 - 00000960 _____ C:\Users\Strat_000\Desktop\Fixlog_3.txt
2017-02-11 18:40 - 2017-02-11 18:40 - 00000109 _____ C:\Users\Strat_000\Desktop\2.txt
2017-02-11 18:31 - 2017-02-11 18:36 - 00031413 _____ C:\Users\Strat_000\Desktop\Fixlog_2.txt
2017-02-11 18:30 - 2017-02-14 17:31 - 00000000 ____D C:\Users\Strat_000\Desktop\FRST-OlderVersion
2017-02-09 18:45 - 2017-02-11 18:42 - 00143418 _____ C:\Users\Strat_000\Desktop\Addition_2.txt
2017-02-09 18:44 - 2017-02-09 18:45 - 00075490 _____ C:\Users\Strat_000\Desktop\FRST_alt (2).txt
2017-02-09 18:41 - 2017-02-09 18:41 - 00010727 _____ C:\Users\Strat_000\Desktop\mbam.txt
2017-02-09 18:07 - 2017-02-09 18:07 - 55566792 _____ (Malwarebytes ) C:\Users\Strat_000\Desktop\mb3-setup-consumer-3.0.6.1469.exe
2017-02-09 18:04 - 2017-02-09 18:04 - 00001133 _____ C:\Users\Strat_000\Desktop\JRT.txt
2017-02-09 18:02 - 2017-02-09 18:02 - 01663040 _____ (Malwarebytes) C:\Users\Strat_000\Desktop\JRT.exe
2017-02-09 17:57 - 2017-02-09 17:57 - 00000008 __RSH C:\ProgramData\ntuser.pol
2017-02-09 17:50 - 2017-02-09 17:50 - 04015056 _____ C:\Users\Strat_000\Desktop\AdwCleaner_6.043.exe
2017-02-09 17:43 - 2017-02-09 17:43 - 00000875 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-02-09 17:43 - 2017-02-09 17:43 - 00000000 ____D C:\Users\Strat_000\Desktop\Revo Uninstaller
2017-02-09 17:43 - 2017-02-09 17:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-02-09 17:41 - 2017-02-09 17:41 - 07097928 _____ (VS Revo Group ) C:\Users\Strat_000\Desktop\revo202setup.exe
2017-02-08 16:58 - 2017-02-08 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-02-08 16:45 - 2017-02-08 16:45 - 00237083 _____ C:\Users\Strat_000\Desktop\Addition_alt.txt
2017-02-08 16:44 - 2017-02-14 17:31 - 00000000 ____D C:\FRST
2017-02-08 16:44 - 2017-02-08 16:45 - 00083934 _____ C:\Users\Strat_000\Desktop\FRST_alt.txt
2017-02-08 16:38 - 2017-02-08 16:38 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\09CF649C.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046400 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-02-02 21:00 - 2017-02-14 17:31 - 02422272 _____ (Farbar) C:\Users\Strat_000\Desktop\FRST64.exe
2017-02-02 20:22 - 2017-01-20 07:47 - 00077416 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-02-02 20:09 - 2017-02-02 20:09 - 00007000 _____ C:\Users\Strat_000\Desktop\AdwCleaner[C0]_alt.txt
2017-02-02 20:08 - 2017-02-02 20:08 - 00000000 ____D C:\WINDOWS\Panther
2017-02-02 20:04 - 2017-02-09 17:57 - 00000000 ____D C:\AdwCleaner
2017-01-30 15:54 - 2017-01-30 15:54 - 00000000 ____D C:\Python34
2017-01-30 15:54 - 2017-01-30 15:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 3.4
2017-01-30 15:54 - 2017-01-30 15:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PyScripter-x64
2017-01-30 15:54 - 2017-01-30 15:54 - 00000000 ____D C:\Program Files\PyScripter
2017-01-25 14:06 - 2017-01-25 14:06 - 00000000 ____D C:\Users\Strat_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2017-01-25 14:05 - 2017-01-25 14:06 - 00000000 ____D C:\Users\Strat_000\AppData\Local\Deployment
2017-01-25 14:05 - 2017-01-25 14:05 - 00000000 ____D C:\Users\Strat_000\AppData\Local\Apps\2.0
2017-01-25 12:59 - 2016-12-21 08:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-01-25 12:59 - 2016-12-21 05:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-01-24 21:36 - 2017-01-24 21:36 - 00000000 ____D C:\Users\Strat_000\Downloads\temp
2017-01-24 20:21 - 2017-01-24 20:21 - 00000000 ____D C:\WINDOWS\3F5C371F8EA24F259D3DD0B4526E3AEA.TMP
2017-01-24 20:21 - 2017-01-24 20:21 - 00000000 ____D C:\Users\Strat_000\AppData\Local\Risen2
2017-01-20 20:12 - 2017-01-20 20:12 - 00000000 ____D C:\ProgramData\Firefly Studios
2017-01-20 20:11 - 2017-01-20 20:14 - 00000000 ____D C:\Users\Strat_000\Documents\Stronghold 2
2017-01-20 20:11 - 2017-01-20 20:11 - 00000000 ____D C:\Users\Strat_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2017-01-20 20:11 - 2017-01-20 20:11 - 00000000 ____D C:\Program Files (x86)\GameSpy Arcade
2017-01-20 17:15 - 2017-01-20 19:14 - 00000000 ____D C:\Users\Strat_000\Documents\Stronghold
2017-01-15 14:56 - 2017-01-15 15:40 - 00000000 ____D C:\Users\Strat_000\AppData\Roaming\Notepad++
2017-01-15 14:56 - 2017-01-15 14:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-01-15 14:56 - 2017-01-15 14:56 - 00000000 ____D C:\Program Files\Notepad++

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-14 17:30 - 2016-09-28 20:57 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-02-14 17:30 - 2016-03-27 09:41 - 00000000 __SHD C:\Users\Strat_000\IntelGraphicsProfiles
2017-02-14 17:29 - 2016-09-28 21:14 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-14 17:29 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-02-14 17:27 - 2016-10-12 16:10 - 00000000 ____D C:\Users\Strat_000\AppData\Local\Akamai
2017-02-14 13:59 - 2016-09-28 20:56 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-02-13 21:59 - 2014-04-04 09:15 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2017-02-13 21:56 - 2016-09-28 21:00 - 01763116 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-02-13 21:46 - 2014-08-22 18:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-02-13 21:45 - 2015-10-08 20:21 - 00000000 ____D C:\Users\Strat_000\Downloads\mySQL
2017-02-13 21:45 - 2015-07-08 20:29 - 00000000 ____D C:\Users\Strat_000\Downloads\LaTeX
2017-02-13 21:45 - 2015-07-06 18:13 - 00000000 ____D C:\Users\Strat_000\Downloads\TinyCAD
2017-02-13 21:45 - 2015-06-11 16:17 - 00000000 ____D C:\Users\Strat_000\Downloads\Texmaker
2017-02-13 21:45 - 2015-04-24 09:15 - 00000000 ____D C:\Users\Strat_000\Downloads\VLC
2017-02-13 21:45 - 2015-04-02 12:51 - 00000000 ____D C:\Users\Strat_000\Downloads\computerbild
2017-02-13 21:45 - 2015-01-04 11:14 - 00000000 ____D C:\Users\Strat_000\Downloads\SyncToy
2017-02-13 21:45 - 2014-12-06 12:15 - 00000000 ____D C:\Users\Strat_000\Downloads\Samsung
2017-02-13 21:45 - 2014-08-22 20:58 - 00000000 ____D C:\Users\Strat_000\Downloads\Scriptly
2017-02-13 21:45 - 2014-08-22 18:22 - 00000000 ____D C:\Users\Strat_000\Downloads\Mozilla
2017-02-13 20:07 - 2015-04-06 11:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2017-02-11 18:32 - 2015-08-06 08:55 - 00000000 ____D C:\Users\Strat_000\AppData\LocalLow\Temp
2017-02-11 18:31 - 2016-04-30 11:19 - 00002277 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-11 18:15 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-02-10 17:30 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-09 19:08 - 2014-08-21 22:11 - 00000000 ____D C:\Users\Strat_000\AppData\Local\Packages
2017-02-09 18:38 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-02-09 18:38 - 2014-09-23 15:50 - 00000000 ____D C:\Program Files (x86)\MDESIGN
2017-02-08 16:58 - 2016-11-08 20:54 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-02-08 16:38 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-02-02 21:53 - 2016-09-28 21:00 - 00000000 ____D C:\Users\Strat_000
2017-02-02 19:54 - 2016-12-21 17:02 - 00000000 ____D C:\Program Files (x86)\National Instruments
2017-02-02 19:54 - 2016-09-29 06:49 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-02-02 19:54 - 2014-08-22 21:03 - 00000000 ____D C:\Program Files (x86)\ControlCenter4
2017-01-30 15:50 - 2015-06-28 14:29 - 00000000 ____D C:\Users\Strat_000\AppData\Local\Eclipse
2017-01-30 15:50 - 2015-06-28 14:23 - 00000000 ____D C:\Users\Strat_000\.p2
2017-01-29 09:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-01-25 13:19 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-24 20:05 - 2015-10-16 09:42 - 00000000 ____D C:\Users\Strat_000\AppData\Roaming\Ansys
2017-01-24 16:36 - 2015-09-12 07:18 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-01-24 16:17 - 2016-10-05 16:11 - 00000760 _____ C:\Users\Strat_000\AppData\Roaming\MobileToolAnyConnectV4.ini
2017-01-24 16:17 - 2016-10-05 16:11 - 00000463 _____ C:\Users\Strat_000\AppData\Roaming\MobileTool-Global.ini
2017-01-24 10:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-01-24 10:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-01-24 10:06 - 2014-08-28 21:03 - 00000000 ____D C:\Users\Strat_000\AppData\Local\Adobe
2017-01-21 17:57 - 2015-11-04 21:42 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-01-21 12:40 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2017-01-21 10:32 - 2014-11-02 11:08 - 00000000 ___RD C:\Users\Strat_000\Dropbox
2017-01-20 17:15 - 2016-07-16 12:43 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2017-01-20 17:15 - 2016-07-16 12:43 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2017-01-20 17:15 - 2016-07-16 12:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2017-01-20 17:15 - 2016-07-16 12:43 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2017-01-20 17:15 - 2016-07-16 12:43 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll

==================== Files in the root of some directories =======

2016-02-16 20:23 - 2016-02-16 20:23 - 0001164 _____ () C:\Users\Strat_000\AppData\Roaming\CoolTerm_Prefs.plist
2016-10-05 16:11 - 2017-01-24 16:17 - 0000463 _____ () C:\Users\Strat_000\AppData\Roaming\MobileTool-Global.ini
2014-09-15 09:29 - 2016-10-05 16:27 - 0001390 _____ () C:\Users\Strat_000\AppData\Roaming\MobileToolAnyConnectV3.ini
2016-10-05 16:11 - 2017-01-24 16:17 - 0000760 _____ () C:\Users\Strat_000\AppData\Roaming\MobileToolAnyConnectV4.ini
2016-10-03 10:51 - 2016-10-04 16:20 - 0000103 _____ () C:\Users\Strat_000\AppData\Roaming\WB.CFG
2015-09-05 20:13 - 2015-09-06 16:34 - 0000337 _____ () C:\Users\Strat_000\AppData\Local\Perfmon.PerfmonCfg
2016-12-29 18:14 - 2016-12-29 18:14 - 0013951 _____ () C:\Users\Strat_000\AppData\Local\recently-used.xbel
2016-09-28 20:58 - 2016-09-28 20:58 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-08-21 20:45 - 2014-08-21 20:45 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-02-09 18:25

==================== End of FRST.txt ============================

--- --- ---

stratos2k · 14.02.2017, 17:35

Hier die Addition.txt in zwei Teilen:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-02-2017
Ran by Strat_000 (14-02-2017 17:31:46)
Running from C:\Users\Strat_000\Desktop
Windows 10 Pro Version 1607 (X64) (2016-09-28 20:15:17)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-968931954-2191872932-1542864395-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-968931954-2191872932-1542864395-503 - Limited - Disabled)
Guest (S-1-5-21-968931954-2191872932-1542864395-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-968931954-2191872932-1542864395-1003 - Limited - Enabled)
Strat_000 (S-1-5-21-968931954-2191872932-1542864395-1001 - Administrator - Enabled) => C:\Users\Strat_000

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3D XML Player (HKLM\...\{383D9F1B-A4F6-4C6C-A925-05A2636A0176}) (Version: 16.7.14143 - Dassault Systemes)
3Dconnexion 3DxWare 10 (64-bit) (HKLM-x32\...\{BAFCA6AC-8B37-405B-B57E-C1D45DE70ACC}) (Version: 10.3.0 - 3Dconnexion)
3Dconnexion 3DxWinCore (Version: 17.3.0.12346 - 3Dconnexion) Hidden
3Dconnexion Add-In for AutoCAD (Version: 5.1.0 - 3Dconnexion) Hidden
3Dconnexion Add-In for Inventor 11 - 2016 (Version: 2.1.1 - 3Dconnexion) Hidden
3Dconnexion Add-In for Solid Edge V18 - ST8 (Version: 3.3.0 - 3Dconnexion) Hidden
3Dconnexion Add-In for SOLIDWORKS 2005 - 2016 (Version: 3.3.0 - 3Dconnexion) Hidden
3Dconnexion Add-On for XSI v5.0 - 2015 (Version: 3.0.3 - 3Dconnexion) Hidden
3Dconnexion Collage (x32 Version: 1.3.0 - 3Dconnexion) Hidden
3Dconnexion Extension for SketchUp (Version: 4.2.1 - 3Dconnexion) Hidden
3Dconnexion LCD Applets for SpacePilot Pro (Version: 1.3.3 - 3Dconnexion) Hidden
3Dconnexion Navigation Library Server (x32 Version: 1.0.2.12216 - 3Dconnexion) Hidden
3Dconnexion Plug-In for 3ds Max 2008 - 2016 (Version: 6.1.2 - 3Dconnexion) Hidden
3Dconnexion Plug-in for Acrobat 3D (x32 Version: 1.4.0 - 3Dconnexion) Hidden
3Dconnexion Plug-In for Maya v8.5 - 2016 (Version: 5.1.1 - 3Dconnexion) Hidden
3Dconnexion Plug-In for NX v4.0 - v11.0 (Version: 3.3.0 - 3Dconnexion) Hidden
3Dconnexion Plug-In for Photoshop CS3 - CS6 and CC (Version: 2.4.0 - 3Dconnexion) Hidden
3Dconnexion Plug-In for Pro/ENGINEER Wildfire 3.0 - Creo 3.0 (Version: 2.2.4 - 3Dconnexion) Hidden
3Dconnexion Trainer (x32 Version: 3.2.3 - 3Dconnexion) Hidden
3Dconnexion Viewer and Assembly Demo (x32 Version: 0.9.0.0 - 3Dconnexion) Hidden
7-Zip 16.00 (x64) (HKLM\...\7-Zip) (Version: 16.00 - Igor Pavlov)
A360 Desktop (HKLM\...\{7758802D-9486-4883-9927-CCAC366A3BA4}) (Version: 7.2.3.1800 - Autodesk)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.023.20056 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
Apple Application Support (32-Bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arduino (HKLM-x32\...\Arduino) (Version: 1.6.7 - Arduino LLC)
AutoCAD Electrical 2014 - Deutsch (German) (Version: 11.0.57.0 - Autodesk) Hidden
AutoCAD Electrical 2014 Language Pack - Deutsch (German) (Version: 11.0.57.0 - Autodesk) Hidden
Autodesk 123D Catch (HKLM-x32\...\{413A0A2B-D154-4457-833F-3299DB3183FF}) (Version: 1.0.654 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk)
Autodesk AutoCAD Electrical 2014 - Deutsch (German) (HKLM\...\AutoCAD Electrical 2014 - Deutsch (German)) (Version: 11.0.57.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)
Autodesk Configurator 360 addin (HKLM-x32\...\{E3EE083F-6856-44AB-BC82-445E2FFB8C1A}) (Version: 21.0.11700 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk Design Review 2013 (x32 Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk DWG TrueView 2014 (HKLM\...\DWG TrueView 2014) (Version: 19.1.18.0 - Autodesk)
Autodesk Fusion 360 (HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.2449 - Autodesk, Inc.)
Autodesk Inventor Content Center Libraries 2014 (Desktop Content) (HKLM\...\{B46DECD1-1864-4EF1-0000-22D71E81877C}) (Version: 18.0.17000.0000 - Autodesk)
Autodesk Inventor Content Center Libraries 2017 (Desktop Content) (HKLM\...\{B46DECD1-2164-4EF1-0000-22D71E81877C}) (Version: 21.0.14200.0000 - Autodesk)
Autodesk Inventor Professional 2014 - Deutsch (German) (HKLM\...\Autodesk Inventor Professional 2014) (Version: 18.1.22200.0000 - Autodesk)
Autodesk Inventor Professional 2014 (Version: 18.1.22200.0000 - Autodesk) Hidden
Autodesk Inventor Professional 2014 Language Pack - Deutsch (German) (Version: 18.0.17000.0000 - Autodesk) Hidden
Autodesk Inventor Professional 2014 SP1 (HKLM\...\Autodesk Inventor Professional 2014 SP1) (Version: 18.1.22200.0000 - Autodesk)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2014 (HKLM-x32\...\{5C29CC1F-218F-4C30-948A-11066CAC59FB}) (Version: 4.0.19.0 - Autodesk)
Autodesk Product Design Suite 2014 (HKLM\...\Autodesk Product Design Suite 2014) (Version: 3.0.100.017 - Autodesk)
Autodesk Product Design Suite 2014 (Version: 3.0.100.017 - Autodesk) Hidden
Autodesk Product Design Suite 2014 Language Pack (Version: 3.0.100.017 - Autodesk) Hidden
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.27 - Autodesk)
Autodesk ReCap (Version: 1.0.43.27 - Autodesk) Hidden
Autodesk ReCap 360 (HKLM\...\Autodesk ReCap 360) (Version: 3.0.0.52 - Autodesk)
Autodesk ReCap 360 (Version: 3.0.0.52 - Autodesk) Hidden
Autodesk ReCap Language Pack-English (Version: 1.0.43.27 - Autodesk) Hidden
Autodesk Revit Interoperability for Inventor 2014 (HKLM\...\Autodesk Revit Interoperability for Inventor 2014) (Version: 13.02.15161 - Autodesk)
Autodesk Revit Interoperability for Inventor 2014 (Version: 13.02.15161 - Autodesk) Hidden
Autodesk Workflows 2014 (HKLM\...\{11672AB2-3D48-4D38-9123-719E5FF93333}) (Version: 4.0.19.0 - Autodesk, Inc.)
Berkeley Madonna (HKLM-x32\...\{27AB9BD6-4A3E-4BBD-8381-CD445E474936}) (Version:  - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.2.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MX920 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX920_series) (Version: 1.00 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Cisco AnyConnect Secure Mobility Client  (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.05187 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.05187 - Cisco Systems, Inc.) Hidden
Cliqz (HKLM-x32\...\{5A0C0737-6AFE-4DC6-A8B4-6DFE509ACD75}_is1) (Version: 0.5.22 - Cliqz.com)
Cura 15.04 (HKLM-x32\...\Cura_15.04) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)
Dassault Systemes Software VC10 Prerequisites x86-x64 (HKLM\...\{7C534131-6431-4ECB-9069-525CB5F75CC8}) (Version: 10.1.1 - Dassault Systemes)
Dassault Systemes Software VC11 Prerequisites x86-x64 (HKLM\...\{C857169D-3F1A-4530-99A0-CAE966CE267E}) (Version: 11.0.1 - Dassault Systemes)
Dassault Systemes Software VC9 Prerequisites x86-x64 (HKLM\...\{F2F2DEA7-36AB-4E13-907C-D8BDE775EF97}) (Version: 9.1.2 - Dassault Systemes)
Dassault Systemes Software Version 5-6 Release 2015 (B25) (HKLM\...\Dassault Systemes B25_0) (Version:  - )
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.0 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{03A9F528-A754-460F-B2C1-AC125A147114}) (Version: 2.8.5000.0 - Dell Products, LP)
Dell System Detect (HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\58d94f3ce2c27db0) (Version: 7.11.0.6 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 17.0.13.0 - Synaptics Incorporated)
D-Fend Reloaded 1.4.4 (deinstallieren) (HKLM-x32\...\D-Fend Reloaded) (Version: 1.4.4 - Alexander Herzog)
Dota 2 (HKLM\...\Steam App 570) (Version:  - Valve)
Dropbox (HKLM-x32\...\Dropbox) (Version: 19.4.13 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
DWG TrueView 2014 (Version: 19.1.18.0 - Autodesk) Hidden
Eco Materials Adviser for Autodesk Inventor 2014 (64-bit) (HKLM\...\{530B8614-C5DE-475B-AF6F-71BED461552C}) (Version: 4.4.1.0 - Granta Design Limited)
EVE Online (HKLM\...\Steam App 8500) (Version:  - CCP)
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production)
FARO LS 1.1.504.10 (64bit) (HKLM-x32\...\{08828409-24D2-4FD6-9EC4-DF2D8CCC183B}) (Version: 5.4.10.43135 - FARO Scanner Production)
FileZilla Client 3.14.0 (HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\FileZilla Client) (Version: 3.14.0 - Tim Kosse)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free Audio Converter (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.98.721 - Digital Wave Ltd)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.24.627 - Digital Wave Ltd)
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version:  - )
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.2103 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.7.1000 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{6e3d3c5f-ea0c-4457-850d-9dd60b6ab95a}) (Version: 16.8.0 - Intel Corporation)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
JabRef 2.10 (HKLM-x32\...\JabRef 2.10) (Version: 2.10 - JabRef Team)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java SE Development Kit 8 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.15 - Oracle Corporation)
Java SE Development Kit 8 Update 60 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180600}) (Version: 8.0.600.27 - Oracle Corporation)
JCreator Pro 5.00 (HKLM-x32\...\JCreator Pro_is1) (Version:  - Xinox Software)
KeyShot 5 Floating 64 bit (HKLM-x32\...\KeyShot 5 Floating_64) (Version: 5.0 64 bit Floating - Luxion ApS)
KISSsoft 03-2015 (HKLM-x32\...\{C0293A42-6D5D-4F71-9042-74007EBAFA55}) (Version: 15.03.000 - KISSsoft AG)
K-Lite Codec Pack 12.6.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.6.5 - KLCP)
Kontur-Scanner (HKLM-x32\...\{04270C05-149B-46F3-BDB3-22AF8A8B54C2}) (Version: 1.0.5 - Keller)
Logger Pro 3.10.1 (HKLM-x32\...\{B91FFD97-1C41-4877-7B97-9D62814E50AD}) (Version: 5.182.666 - Vernier Software & Technology)
Logitech Gaming Software 8.81 (HKLM\...\Logitech Gaming Software) (Version: 8.81.15 - Logitech Inc.)
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.82 - Logitech)
MakerBot_Bundle_BETA_3.9.1.1346_x64 (HKLM-x32\...\MakerBot) (Version: 3.9.1.1346 - MakerBot)
Mathcad PDSi viewable support (HKLM-x32\...\Mathcad PDSi viewable support) (Version: 9.0.0 - Adobe Systems)
Mathcad PDSi viewable support (x32 Version: 9.0.0 - Adobe Systems) Hidden
Math-Kernel-Bibliotheken (64 Bit) (Version: 1.0.23.0 - National Instruments) Hidden
Math-Kernel-Bibliotheken (x32 Version: 1.0.23.0 - National Instruments) Hidden
MATLAB R2016a (HKLM\...\Matlab R2016a) (Version: 9.0 - MathWorks)
Maxx Audio Installer (x64) (Version: 2.6.6570.1 - Waves Audio Ltd.) Hidden
MDESIGN 2014 (HKLM-x32\...\MDESIGN explorer 15) (Version: 15 - TEDATA)
Mendeley Desktop 1.14 (HKLM-x32\...\Mendeley Desktop) (Version: 1.14 - Mendeley Ltd.)
Mesh Enabler (HKLM-x32\...\{539C1162-6FC6-4011-B59A-FC20916F575E}) (Version: 1.0.5 - Autodesk)
Meshmixer (HKLM\...\Meshmixer_x64) (Version: 11.0.544 - Autodesk, Inc.)
Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2013 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 15.0.4893.1002 - Microsoft Corporation)
Microsoft Project Professional 2013 (HKLM-x32\...\Office15.PRJPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Core Components (x64) ENU  (HKLM\...\{8CCBEC22-D2DB-4DC9-A58A-E1A1F3A38C8A}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU  (HKLM\...\{03AC245F-4C64-425C-89CF-7783C1D3AB2C}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{4fd02573-5f12-4ae4-8027-c63f8e1115af}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MiKTeX 2.9 (HKLM-x32\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
Mockup 360 Addin 2015 (HKLM-x32\...\{E4D4242C-FC14-4B4F-B1D9-6760D8C241D5}) (Version: 1.1.0 - Autodesk)
Mount & Blade: Warband (HKLM\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Mount & Blade: With Fire and Sword (HKLM\...\Steam App 48720) (Version:  - TaleWorlds Entertainment)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.7.0.6233 - Mozilla)
Mozilla Thunderbird 45.7.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.7.0 (x86 de)) (Version: 45.7.0 - Mozilla)
Myo Connect (HKLM-x32\...\Thalmic Labs Myo Connect) (Version: 1.0.1 - Thalmic Labs)
MySQL Connector C++ 1.1.4 (HKLM\...\{1F5C1E97-AE40-4EE7-9959-3D8038B6EAC8}) (Version: 1.1.4 - Oracle and/or its affiliates)
MySQL Connector/C 6.1 (HKLM\...\{4E2AAB30-1E42-4ACA-B1A9-3AE8629D0C89}) (Version: 6.1.5 - Oracle Corporation)
MySQL Connector/ODBC 5.3 (HKLM\...\{A1991404-2634-47E1-BC45-8F3B5014B1D1}) (Version: 5.3.4 - Oracle Corporation)
MySQL Documents 5.5 (HKLM-x32\...\{BCF64211-43D1-4152-A152-7E30D0D7570D}) (Version: 5.5.40 - Oracle Corporation)
MySQL Examples and Samples 5.5 (HKLM-x32\...\{33A3D172-0E98-4D16-80DD-9CB3D4AC814D}) (Version: 5.5.40 - Oracle Corporation)
MySQL Installer (HKLM-x32\...\{2D5C73E8-EA6C-4A0A-8B27-FF48B04977E5}) (Version: 1.3.7.0 - Oracle Corporation)
MySQL Notifier 1.1.6 (HKLM-x32\...\{CB76A6E9-B184-461D-A8BE-7D0D73199545}) (Version: 1.1.6 - Oracle)
MySQL Utilities (HKLM-x32\...\{0B18AA75-6A44-4950-A0A2-A486C2D839A0}) (Version: 1.4.4 - Oracle Corporation)
National Instruments - Software (HKLM-x32\...\NI Uninstaller) (Version:  - National Instruments)
NI Authentication 12.0.0 (64-bit) (Version: 12.0.367.0 - National Instruments) Hidden
NI Authentication 12.0.0 (x32 Version: 12.0.367.0 - National Instruments) Hidden
NI Certificates Deployment Support (x32 Version: 1.03.49152 - National Instruments) Hidden
NI Curl 12.0.0 (64-bit) (Version: 12.0.412.0 - National Instruments) Hidden
NI Curl 12.0.0 (x32 Version: 12.0.412.0 - National Instruments) Hidden
NI EulaDepot (x32 Version: 3.10.393 - National Instruments) Hidden
NI GMP Windows 32-bit Installer 12.0.0 (x32 Version: 12.0.46.0 - National Instruments) Hidden
NI GMP Windows 64-bit Installer 12.0.0 (Version: 12.0.46.0 - National Instruments) Hidden
NI LabVIEW 2012 Deployment Framework (x32 Version: 12.0.369.0 - National Instruments) Hidden
NI LabVIEW 2012 Real-Time NBFifo (x32 Version: 12.0.219.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2012 f3 (x32 Version: 12.0.435.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2012 (x32 Version: 12.0.204.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Webserver 2012 (x32 Version: 12.0.406.0 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Low-Level Driver (Original) (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Low-Level Driver (Updated) (x32 Version: 10.0.1434 - National Instruments) Hidden
NI Logos 5.4 (64 Bit) (Version: 5.4.303.0 - National Instruments) Hidden
NI Logos 5.4 (x32 Version: 5.4.303.0 - National Instruments) Hidden
NI Logos XT Support (x32 Version: 5.4.295.0 - National Instruments) Hidden
NI Logos64 XT Support (Version: 5.4.295.0 - National Instruments) Hidden
NI MDF Support (x32 Version: 3.10.393 - National Instruments) Hidden
NI mDNS Responder 2.1 for Windows 64-bit (Version: 2.10.49152 - National Instruments) Hidden
NI mDNS Responder 2.1.0 (x32 Version: 2.10.49152 - National Instruments) Hidden
NI SSL LabVIEW RTE 2012 Support (x32 Version: 12.0.125.0 - National Instruments) Hidden
NI System State Publisher (64-bit) (Version: 12.0.218.0 - National Instruments) Hidden
NI System State Publisher (x32 Version: 12.0.358.0 - National Instruments) Hidden
NI System Web Server 12.0 (x32 Version: 12.0.414.0 - National Instruments) Hidden
NI System Web Server Base 12.0.0 (64-bit) (Version: 12.0.407.0 - National Instruments) Hidden
NI System Web Server Base 12.0.0 (x32 Version: 12.0.407.0 - National Instruments) Hidden
NI TDM Streaming 2.4 (64 Bit) (Version: 2.4.55.0 - National Instruments) Hidden
NI TDM Streaming 2.4 (x32 Version: 2.4.55.0 - National Instruments) Hidden
NI Trace Engine (64-bit) (Version: 12.0.401.0 - National Instruments) Hidden
NI Trace Engine (x32 Version: 12.0.401.0 - National Instruments) Hidden
NI Uninstaller (x32 Version: 3.10.393 - National Instruments) Hidden
NI Unterstützung für nicht englische Versionen der Runtime-Engine von LabVIEW 2012. (x32 Version: 12.0.363.0 - National Instruments) Hidden
NI VC2008MSMs x64 (Version: 9.0.401 - National Instruments) Hidden
NI VC2008MSMs x86 (x32 Version: 9.0.401 - National Instruments) Hidden
NI Web Application Server 12.0 (64 Bit) (Version: 12.0.422.0 - National Instruments) Hidden
NI Web Application Server 12.0 (x32 Version: 12.0.422.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.3 (x32 Version: 2.7.180.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.3 64-bit (Version: 2.7.190.0 - National Instruments) Hidden
NI-ActiveX-Container (64-bit) (Version: 12.0.14.0 - National Instruments) Hidden
NI-ActiveX-Container (x32 Version: 12.0.14.0 - National Instruments) Hidden
NI-DIM 1.13.0f0 (x32 Version: 1.130.49152 - National Instruments) Hidden
NI-DIM 1.13.0f0 for 64 Bit Windows (Version: 1.130.49152 - National Instruments) Hidden
NI-Fehlerprotokolle 2012 (x32 Version: 12.0.172.0 - National Instruments) Hidden
NI-ORB 1.10.0f0 (x32 Version: 1.100.49152 - National Instruments) Hidden
NI-ORB 1.10.0f0 for 64 Bit Windows (Version: 1.100.49152 - National Instruments) Hidden
NI-PAL 2.8.1f0 (x32 Version: 10.91.49152 - National Instruments) Hidden
NI-PAL 2.8.1f0 for 64 Bit Windows (Version: 10.91.49152 - National Instruments) Hidden
NI-RPC 4.3.0f0 (x32 Version: 4.30.49152 - National Instruments) Hidden
NI-RPC 4.3.0f0 for 64 Bit Windows (Version: 4.30.49152 - National Instruments) Hidden
NI-VISA Runtime 5.2.0 (x32 Version: 5.20.49152 - National Instruments) Hidden
NI-VISA x64 support 5.2.0 (Version: 5.20.49152 - National Instruments) Hidden
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.3 - Notepad++ Team)
NVIDIA Graphics Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA nView 140.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 140.75 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA WMI 2.15.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.15.0 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Outils de vérification linguistique 2013 de Microsoft Office*- Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
partypoker (HKLM-x32\...\PartyPoker) (Version:  - PartyGaming)
PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.24.16092 - pdfforge GmbH)
PDF Architect 2 View Module (HKLM-x32\...\{C960FF38-431D-429D-AD1F-FBD12A45B7C5}) (Version: 2.0.17.17583 - pdfforge GmbH)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
PTC Mathcad Prime 3.1 (HKLM\...\{3A4F83E8-C604-4970-8A1F-8963B3507630}) (Version: 3.1.0 - PTC)
PureSync (x32 Version: 4.4.2 - Jumping Bytes) Hidden
PureSync 4.4.2 (HKLM-x32\...\PureSync) (Version: 4.4.2 - Jumping Bytes)
PyScripter 2.6.0 (HKLM\...\PyScripter_is1) (Version: 2.6.0 - PyScripter)
Python 3.4.4 (64-bit) (HKLM\...\{56ebf7cf-f2b2-30ed-9de5-307fc2ce3449}) (Version: 3.4.4150 - Python Software Foundation)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.026 - Dell Inc.)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21236 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.)
Risen 2 - Dark Waters (HKLM\...\Steam App 40390) (Version:  - Piranha Bytes)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
SketchUp-Import (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
SMSC LAN7500 Device Driver (HKLM\...\{DE2877F8-0FD0-471D-9A5C-79B8FD6EEE61}) (Version: 13.08.08.0 - SMSC)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.11.0046 - ST Microelectronics)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold 2 (HKLM\...\Steam App 40960) (Version:  - FireFly Studios)
Stronghold Crusader Extreme HD (HKLM\...\Steam App 16700) (Version:  - Firefly Studios)
Stronghold Crusader HD (HKLM\...\Steam App 40970) (Version:  - FireFly Studios)
Stronghold HD (HKLM\...\Steam App 40950) (Version:  - FireFly Studios)
Stronghold Legends (HKLM\...\Steam App 40980) (Version:  - FireFly Studios)
SWITCHdrive (HKLM-x32\...\SWITCHdrive) (Version: 1.8.1.328 - SWITCH)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Texmaker (HKLM-x32\...\Texmaker) (Version:  - )
TI-Nspire™ Computer Link (HKLM-x32\...\{6C5AC088-3136-4043-8985-8B0772A9580E}) (Version: 3.9.0.455 - Texas Instruments Inc.)
TI-Nspire™ CX CAS Student Software (HKLM-x32\...\{E994956D-8CA7-4091-BFF5-0C749470BA2E}) (Version: 4.0.0.235 - Texas Instruments Inc.)
Unterstützung für NI SSL (64 Bit) (Version: 12.0.408.0 - National Instruments) Hidden
Unterstützung für NI SSL (x32 Version: 12.0.408.0 - National Instruments) Hidden
Update for Skype for Business 2015 (KB3141468) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PRJPROR_{0BA3C700-ABED-4994-BB60-2FD66DFAF674}) (Version:  - Microsoft)
Verfügbare Autodesk-Apps (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
VISA Shared Components 64-Bit (HKLM-x32\...\VISASharedComponents) (Version:  - )
VISA Shared Components 64-Bit (Version: 1.4.0 - IVI Foundation Inc.) Hidden
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: 0.0.0.0 - Blizzard Entertainment)
Webocton - Scriptly 0.8.95.6 (HKLM-x32\...\Webocton - Scriptly_is1) (Version: 0.8.95.6 - Webocton)
WhatsApp (HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\WhatsApp) (Version: 0.2.2732 - WhatsApp)
Windows Driver Package - MakerBot Industries (WinUsb) USBDevice  (09/11/2015 100.2.0.0) (HKLM\...\D015024C58122C3796867839B7E92961E6A4C307) (Version: 09/11/2015 100.2.0.0 - MakerBot Industries)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports  (09/11/2015 100.2.0.0) (HKLM\...\04E27032638FDAAC836AACDBF2A93300A4E13BD1) (Version: 09/11/2015 100.2.0.0 - MakerBot Industries, LLC)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports  (09/11/2015 100.2.0.0) (HKLM\...\0ED5517650E58DD9FB879217FC7CF165DEC4583B) (Version: 09/11/2015 100.2.0.0 - MakerBot Industries, LLC)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports  (09/11/2015 100.2.0.0) (HKLM\...\67352CAC0149049BD2BE7B68AB77464472C339CD) (Version: 09/11/2015 100.2.0.0 - MakerBot Industries, LLC)
Windows Driver Package - MakerBot Industries, LLC (usbser) Ports  (09/11/2015 100.2.0.0) (HKLM\...\9F57D28C2B5AEBAF582F84C4BE4F2AB1798631C9) (Version: 09/11/2015 100.2.0.0 - MakerBot Industries, LLC)
Windows Driver Package - Texas Instruments Inc. (SilvrLnk) USB  (06/11/2009 1.0.0.0) (HKLM\...\EC3E466026556D3EB760B01C4772277614354E11) (Version: 06/11/2009 1.0.0.0 - Texas Instruments Inc.)
Windows Driver Package - Texas Instruments Inc. (TIEHDUSB) USB  (09/02/2009 1.0.0.1) (HKLM\...\7511B29C86C398B4D11A0B0E4176CAD68D1B7057) (Version: 09/02/2009 1.0.0.1 - Texas Instruments Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
XAMPP (HKLM-x32\...\xampp) (Version: 1.8.3-5 - Bitnami)
yEd Graph Editor 3.13 (HKLM-x32\...\3309-7404-0599-8908) (Version: 3.13 - yWorks GmbH)
Yousician Launcher version 1.0 (HKLM-x32\...\{EF45EAE9-523E-47C3-8634-A81923B11DD5}_is1) (Version: 1.0 - Yousician)
Z88Aurora V3 (HKLM\...\{3AFDAB60-DBBD-449F-974E-6EF6430440E3}) (Version: 2.0 - Lehrstuhl fuer Konstruktionlehre und CAD, Universitaet Bayreuth)
Zip Motion Block Video codec (Remove Only) (HKLM-x32\...\ZMBV) (Version:  - DOSBox Team)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1029ABC3-2457-11D5-8E9D-0010B541CD80}\localserver32 -> D:\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\iDrop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{244298EC-E661-11d4-BC13-0010B5891E89}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\TI.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll ()
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{32CDFF57-8CBA-4960-89B1-EC3FA58FB17A}\InprocServer32 -> D:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3897B445-D5B8-410d-899A-9789B8ADB643}\localserver32 -> D:\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3C3F63EA-C7BA-11d4-8E60-0010B541CD80}\localserver32 -> D:\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2014\en-US\dwgviewrficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4D29B490-49B2-11D0-93C3-7E0706000000}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxTest.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{62FBB030-24C7-11D3-B78D-0060B0F159EF}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> D:\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtCp.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{76283A80-50DD-11D3-A7E3-00C04F79D7BC}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> D:\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{97E17F04-17DF-11d5-BC38-0010B5891E89}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\BodyReceiver.dll ()
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BBF9FDF1-52DC-11D0-8C04-0800090BE8EC}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> D:\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxApprenticeServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\Autodesk\webdeploy\production\b8535b136583feacdb288f6ed972e6555b191b85\NPreview10.dll ()
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ColorButton.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ColorButton.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\AcInetUI.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\RxInventorUtilities.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> D:\Autodesk\AutoCAD 2014\de-DE\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E60F81E1-49B3-11D0-93C3-7E0706000000}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> D:\Program Files\Autodesk\Inventor 2017\Bin\DTInterop.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\InvResc.dll (Autodesk)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> D:\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> D:\Autodesk\Inventor 2014\Bin\InvTXTStack.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-968931954-2191872932-1542864395-1001_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll => No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01AC3BCD-91B5-442A-838C-06A4AECEDB68} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-08] (Dropbox, Inc.)
Task: {10FF88E4-4F5C-4210-9CF1-FCF6FE125565} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-03-09] (Realtek Semiconductor)
Task: {276A56A3-61FE-48EF-A91B-6A45BF7A44F3} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {29ED19C1-4DB1-4E68-9D61-D58D1F051D58} - System32\Tasks\MATLAB R2016a Startup Accelerator => C:\Program Files\MATLAB\R2016a\bin\win64\MATLABStartupAccelerator.exe [2015-12-28] ()
Task: {34442C84-E788-4C75-810E-2C62198AF600} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe 
Task: {3CDB011F-78FE-464C-ACF0-73C56EDE66D0} - System32\Tasks\3DconnexionCreateProcess_3DxService.exe => D:\Program Files\3Dconnexion\3DxWinCore64\3DxService.exe [2015-12-10] (3Dconnexion, INC)
Task: {6A0B907B-24B9-40C9-BD32-913B05D1D72B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {6ACCE957-2398-43C6-AE25-584C75C63E4B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
Task: {6DD54919-F068-4A0A-8871-0CA3EA898CB5} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-08] (Dropbox, Inc.)
Task: {6E8B881F-E3C2-4164-8878-2876EA2DE1D9} - System32\Tasks\{88AC59FD-2726-4F6F-A67C-F19C07F7D797} => pcalua.exe -a C:\Users\Strat_000\Downloads\Arduino\CDM_v2.12.00_WHQL_Certified.exe -d C:\Users\Strat_000\Downloads\Arduino
Task: {71F5F33F-9F6D-4917-A791-46476F8F8196} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-06] (Synaptics Incorporated)
Task: {81E0FC16-5D40-4E14-A306-744E9744283D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
Task: {855DD682-45F8-422C-97BC-413992ED2AF5} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-12-01] ()
Task: {944BDA3A-5EFE-477C-9B12-1DFFF82E983D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)
Task: {A49DA27C-BFD6-4512-B975-40563AFC6375} - System32\Tasks\MySQLNotifierTask => C:\Program Files (x86)\MySQL\MySQL Notifier 1.1.6\MySQLNotifier.exe [2014-09-03] (Oracle Corporation)
Task: {AA028DCF-8E68-4658-8FBE-995D7AB78540} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {ACCFAFE1-0665-4ED4-81E6-0D3585C8AE6C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => %ProgramFiles%\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe 
Task: {B4808A2E-A8D2-4050-B621-AB299C0F4D4D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {BFF9D5AA-8F2F-4682-81C3-6F259CB8BFA8} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\MATLAB R2016a Startup Accelerator.job => C:\Program Files\MATLAB\R2016a\bin\win64\MATLABStartupAccelerator.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Strat_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wurm Online\Wurm Online.lnk -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://www.wurmonline.com/client/wurmclient.jnlp "C:\Users\Strat_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\5fef8269-714a391b"

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 23:17 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-28 20:59 - 2016-08-01 13:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-08-22 17:17 - 2016-05-24 08:51 - 00116416 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-02-22 23:12 - 2016-02-22 23:12 - 00138240 _____ () D:\Program Files\Makerbot\MakerWare\jsoncpp.dll
2015-12-07 20:18 - 2015-12-07 20:18 - 00111616 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\_ctypes.pyd
2015-12-07 20:18 - 2015-12-07 20:18 - 00047616 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\_socket.pyd
2015-12-07 20:18 - 2015-12-07 20:18 - 01210368 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\_ssl.pyd
2015-12-07 20:18 - 2015-12-07 20:18 - 00474624 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\_hashlib.pyd
2015-12-07 20:18 - 2015-12-07 20:18 - 00010752 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\select.pyd
2015-12-07 20:18 - 2015-12-07 20:18 - 00689664 _____ () D:\Program Files\Makerbot\MakerWare\py27_dlls\unicodedata.pyd
2015-08-19 22:48 - 2015-08-19 22:48 - 02596352 _____ () D:\Program Files\Makerbot\MakerWare\vtkCommon.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 03111424 _____ () D:\Program Files\Makerbot\MakerWare\vtkFiltering.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 05822464 _____ () D:\Program Files\Makerbot\MakerWare\vtkGraphics.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 04569600 _____ () D:\Program Files\Makerbot\MakerWare\vtkIO.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 02572288 _____ () D:\Program Files\Makerbot\MakerWare\opencv_core2410.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 01200640 _____ () D:\Program Files\Makerbot\MakerWare\opencv_calib3d2410.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 02236928 _____ () D:\Program Files\Makerbot\MakerWare\opencv_imgproc2410.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 02413056 _____ () D:\Program Files\Makerbot\MakerWare\opencv_highgui2410.dll
2014-08-06 14:30 - 2014-08-06 14:30 - 00050688 _____ () D:\Program Files\Makerbot\MakerWare\boost_date_time-vc120-mt-1_56.dll
2014-08-06 14:30 - 2014-08-06 14:30 - 00116224 _____ () D:\Program Files\Makerbot\MakerWare\boost_filesystem-vc120-mt-1_56.dll
2014-08-06 14:29 - 2014-08-06 14:29 - 00019456 _____ () D:\Program Files\Makerbot\MakerWare\boost_system-vc120-mt-1_56.dll
2014-08-06 14:30 - 2014-08-06 14:30 - 00100864 _____ () D:\Program Files\Makerbot\MakerWare\boost_thread-vc120-mt-1_56.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00243200 _____ () D:\Program Files\Makerbot\MakerWare\vtksys.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00116736 _____ () D:\Program Files\Makerbot\MakerWare\vtkDICOMParser.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00783360 _____ () D:\Program Files\Makerbot\MakerWare\vtkNetCDF.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00110592 _____ () D:\Program Files\Makerbot\MakerWare\vtkNetCDF_cxx.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00080896 _____ () D:\Program Files\Makerbot\MakerWare\LSDyna.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00127488 _____ () D:\Program Files\Makerbot\MakerWare\vtkpng.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00611328 _____ () D:\Program Files\Makerbot\MakerWare\vtkmetaio.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00141312 _____ () D:\Program Files\Makerbot\MakerWare\vtkjpeg.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00065024 _____ () D:\Program Files\Makerbot\MakerWare\vtkzlib.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00314880 _____ () D:\Program Files\Makerbot\MakerWare\vtktiff.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00128000 _____ () D:\Program Files\Makerbot\MakerWare\vtkexpat.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00159232 _____ () D:\Program Files\Makerbot\MakerWare\vtkverdict.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 00656896 _____ () D:\Program Files\Makerbot\MakerWare\opencv_flann2410.dll
2015-08-19 22:46 - 2015-08-19 22:46 - 00869888 _____ () D:\Program Files\Makerbot\MakerWare\opencv_features2d2410.dll
2014-08-06 14:29 - 2014-08-06 14:29 - 00028672 _____ () D:\Program Files\Makerbot\MakerWare\boost_chrono-vc120-mt-1_56.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 02085888 _____ () D:\Program Files\Makerbot\MakerWare\vtkhdf5.dll
2015-08-19 22:48 - 2015-08-19 22:48 - 00097280 _____ () D:\Program Files\Makerbot\MakerWare\vtkhdf5_hl.dll
2016-02-23 00:11 - 2016-02-23 00:11 - 00107520 _____ () D:\Program Files\Makerbot\MakerWare\tinything.dll
2016-12-14 23:17 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2015-05-14 16:36 - 2015-05-14 16:36 - 00059904 _____ () C:\Program Files (x86)\SWITCHdrive\shellext\OCUtil_x64.dll
2015-09-16 13:12 - 2015-09-16 13:12 - 00043480 _____ () D:\Program Files\FileZilla\FileZilla FTP Client\fzshellext_64.dll
2016-07-06 19:10 - 2016-07-06 19:10 - 01249792 _____ () C:\Users\Strat_000\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll
2016-09-29 19:13 - 2016-09-29 19:13 - 00959168 _____ () C:\Users\Strat_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-05-27 14:50 - 2016-11-01 23:05 - 00401896 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-09-29 06:53 - 2016-09-29 06:53 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 17:39 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 17:39 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 17:39 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 17:39 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 17:39 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 17:39 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-10-16 00:48 - 2014-10-16 00:48 - 00063376 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2014-08-21 20:47 - 2016-02-24 05:48 - 00062024 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2014-08-21 20:47 - 2016-02-24 05:47 - 00110664 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2016-06-29 18:14 - 2016-07-22 07:26 - 00114664 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2016-06-29 18:14 - 2016-07-22 07:24 - 00024040 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2016-06-29 18:14 - 2016-07-22 07:24 - 00108008 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2016-06-29 18:14 - 2016-07-22 07:24 - 00048104 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2012-05-29 18:07 - 2012-05-29 18:07 - 01958560 _____ () C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\niwsrp.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2017-02-09 17:57 - 00000832 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-968931954-2191872932-1542864395-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Strat_000\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 62.2.17.61 - 62.2.24.158
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

stratos2k · 14.02.2017, 17:36

Und hier der zweite Teil der Addition.txt:

Code:

ATTFilter

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "Launch LCore"
HKLM\...\StartupApproved\Run: => "3DxWare Service"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\StartupFolder: => "Synology Cloud Station Drive.lnk"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "Autodesk Sync"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "Boxcryptor.exe"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "Dropbox Update"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-968931954-2191872932-1542864395-1001\...\StartupApproved\Run: => "PureSync"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => LPort=808
FirewallRules: [UDP Query User{4FC1D526-EF5A-4967-8B8F-BBA348CF3B98}C:\program files\ansys inc\v162\aisol\bin\winx64\readerhostu.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\readerhostu.exe
FirewallRules: [TCP Query User{1D91F143-4DBA-4103-BF7C-8F0A0BE214CE}C:\program files\ansys inc\v162\aisol\bin\winx64\readerhostu.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\readerhostu.exe
FirewallRules: [UDP Query User{3AA47883-2275-4002-93AB-3EB175A00776}C:\program files\ansys inc\v162\aisol\bin\winx64\ansmeshingserver.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\ansmeshingserver.exe
FirewallRules: [TCP Query User{77A98965-8254-4441-B3FA-72487E2F3A66}C:\program files\ansys inc\v162\aisol\bin\winx64\ansmeshingserver.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\ansmeshingserver.exe
FirewallRules: [{0FEB7A54-AB1C-4113-8581-88A1A1D9DCB0}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [{0A43AFC9-B2D6-4905-B033-885849EB19EF}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [{7A9ED19D-239E-4B26-A0CA-CF258389F525}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{D59B3327-671A-4933-8525-E1F8AED67A7A}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{8EA6FB88-0402-4E29-98F9-153E6A793B7F}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [{6C1E5429-92B1-42C1-8810-294F55BD83A4}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [{CF54E191-727B-44E7-8728-23DF668614FC}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{A8C03A37-6B8A-45D2-9239-C0813D13363A}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{628D3104-C402-4D92-965A-4FCDA6A06B27}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F6608F61-5D07-477D-89F5-1CA76A7BA4E2}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F8AAB0F8-8D2E-45C8-8664-3674A8BBDEE5}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BE5BCB22-7F43-435B-BD76-BBDDF18A45E2}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{382C072E-19EA-46A9-80D3-B3CD6391FAB4}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe
FirewallRules: [TCP Query User{694FB801-CD9C-42F3-9F15-D710543E0EAE}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe
FirewallRules: [UDP Query User{E958FC1D-5113-42CE-8858-96E7C482E13C}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\catiatopro.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\catiatopro.exe
FirewallRules: [TCP Query User{76C6585F-23DD-49ED-A105-F43F2D4A8270}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\catiatopro.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\catiatopro.exe
FirewallRules: [UDP Query User{CEA97193-0A27-4872-86DC-A75D60E9D0C3}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe
FirewallRules: [TCP Query User{0AC9B4CE-B421-4F89-AC4F-F19E88CE6981}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe
FirewallRules: [UDP Query User{1DBB1F1E-3DAA-4E2C-A835-5995134E66C6}C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{7D867815-9417-4D85-80D7-FA16BE154953}C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe
FirewallRules: [{CD9F58CA-4C3C-455B-9C79-E1DBB81D4271}] => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{B64B6C2F-A98F-4696-A97C-DA0C0E03DA55}] => C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{4219914F-17B0-4082-8FDE-9C8059F7FC0D}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{96163E11-ABF0-437A-BE15-3DF1A44E85E6}] => LPort=2869
FirewallRules: [{03BD1AF7-0BF8-4012-853F-2D3E1098C809}] => LPort=1900
FirewallRules: [{D0D1F8C9-1A69-4B45-A82F-D1DAD5E2882F}] => LPort=50248
FirewallRules: [{F5C16F57-13AC-4E4E-AD71-3ED80DB1F69D}] => C:\Users\Strat_000\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{69137F3E-852F-45E4-B39F-F2D19F70E1D5}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C4A08B79-F7ED-4FC3-934D-0EC4ACE17959}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D46F595B-D3D0-42A4-9025-ADB6FD0A3FF5}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{362F7CE5-DD2B-46E8-967E-F4DF562E434B}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3B20DC80-CA8C-4E0A-A5CB-28239D6D0F79}] => D:\SteamLibrary\SteamApps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [{D9DA139F-DB0D-44D3-9B1E-2D06D1028AB9}] => D:\SteamLibrary\SteamApps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [TCP Query User{4DD5C3D0-DC83-44FA-913B-378EF54D3E1A}C:\program files\maple 18\jre\bin\maple.exe] => C:\program files\maple 18\jre\bin\maple.exe
FirewallRules: [UDP Query User{58ADCCEA-75D9-4A26-9941-7D901358A306}C:\program files\maple 18\jre\bin\maple.exe] => C:\program files\maple 18\jre\bin\maple.exe
FirewallRules: [TCP Query User{F857059D-70CD-4D81-8D60-3DE90559AC03}C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe
FirewallRules: [UDP Query User{7AD4CCDF-0565-4FDB-99AA-7AA01273F289}C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{0B9814D1-FC19-492C-AE86-AB79AED4839F}C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{0FD323B4-107E-4B03-BD43-07665AC0A506}C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe
FirewallRules: [TCP Query User{C21D6139-02D4-4948-B04D-B0AF2642F1E3}\\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe] => \\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe
FirewallRules: [UDP Query User{18335C91-410A-4437-84C7-DD71E2A62563}\\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe] => \\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe
FirewallRules: [{EC70B2A1-0D56-4AF3-8F04-1A2EE8175FE7}] => \\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe
FirewallRules: [{C8F5D359-5F4D-4627-9557-78573F067B76}] => \\srv-lab-t-432\cadenas\software\bin\x86\32\cnslocal.exe
FirewallRules: [TCP Query User{AB75A300-9988-450E-A5B1-4202056FCA9F}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\cat3dxmlplayergo.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\cat3dxmlplayergo.exe
FirewallRules: [UDP Query User{2CE85C3B-A38E-48D7-9D14-7A7DE61F945C}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\cat3dxmlplayergo.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\cat3dxmlplayergo.exe
FirewallRules: [TCP Query User{3B10EA8E-072F-4384-8471-59C49A30FAE5}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\dsysysirmanager.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\dsysysirmanager.exe
FirewallRules: [UDP Query User{85F8B39D-3772-4595-88CF-58B436D29126}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\dsysysirmanager.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\dsysysirmanager.exe
FirewallRules: [TCP Query User{493AF417-C7DA-4F7E-9BE6-240D41BDE959}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\3dxmlplayer.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\3dxmlplayer.exe
FirewallRules: [UDP Query User{DCAFC2C2-BEC9-4FF7-A219-450332461C36}C:\program files\dassault systemes\3d xml player\win_b64\code\bin\3dxmlplayer.exe] => C:\program files\dassault systemes\3d xml player\win_b64\code\bin\3dxmlplayer.exe
FirewallRules: [TCP Query User{B53F4142-AEDB-4004-93B4-F4B4859CC4D8}C:\xampp\mysql\bin\mysqld.exe] => C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{5DF53F0B-30DE-41EB-BAE3-60EF23D59F53}C:\xampp\mysql\bin\mysqld.exe] => C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{144BC75D-01B8-40F4-B134-38335FC12A0E}C:\xampp\filezillaftp\filezillaserver.exe] => C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{FAA398A9-7117-4E50-8EBA-4DD6EF3C1DB7}C:\xampp\filezillaftp\filezillaserver.exe] => C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{9378CA38-2FD3-41CA-B828-2EAE02F1BE50}C:\xampp\apache\bin\httpd.exe] => C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{54E92ACA-1BBD-4BF8-8761-0710C591ACCE}C:\xampp\apache\bin\httpd.exe] => C:\xampp\apache\bin\httpd.exe
FirewallRules: [{61BF9771-BABF-4D83-871A-E16EC7D8D67D}] => C:\xampp\apache\bin\httpd.exe
FirewallRules: [{C1ECCFF2-9EF4-4312-BC27-19512642FBB2}] => C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{0E1FEDE8-60E0-44CE-A227-4BBC7A8ACA67}C:\xampp\filezillaftp\filezillaserver.exe] => C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{D37FF8CF-7892-42EA-BAC6-A83D707907A4}C:\xampp\filezillaftp\filezillaserver.exe] => C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{F3ABD6E7-23CF-445F-A263-4CAA404187DF}C:\xampp\mysql\bin\mysqld.exe] => C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{EE2C15DC-BD81-4238-BA39-105836117D84}C:\xampp\mysql\bin\mysqld.exe] => C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{EEB6B15F-F713-4305-9227-3B292294E8E0}] => D:\SteamLibrary\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe
FirewallRules: [{59E77C5F-7298-45CB-8AF5-1A26041EDFD9}] => D:\SteamLibrary\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe
FirewallRules: [{72CD02D7-BF4E-43AE-B215-50436129B642}] => D:\SteamLibrary\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe
FirewallRules: [{A9A62307-0B6B-4BB0-AE1C-1638A11D1B2B}] => D:\SteamLibrary\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe
FirewallRules: [TCP Query User{6A486716-3E48-44FB-B7AD-68CC21B8EADA}C:\users\strat_000\appdata\roaming\dropbox\bin\dropbox.exe] => C:\users\strat_000\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{177443EE-7A65-4474-B6DC-B1AF157BD1B9}C:\users\strat_000\appdata\roaming\dropbox\bin\dropbox.exe] => C:\users\strat_000\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{3428BF3C-D727-40DA-A6BF-BC23B059220C}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FC3D896C-EE69-469D-9008-91C48EE803AC}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{4A8D0D80-FA38-4165-9F77-960658A79D74}D:\program files\eve\bin\exefile.exe] => D:\program files\eve\bin\exefile.exe
FirewallRules: [UDP Query User{645DD761-18C8-4BF6-8878-9BBD9A1DFC9A}D:\program files\eve\bin\exefile.exe] => D:\program files\eve\bin\exefile.exe
FirewallRules: [TCP Query User{D82CB044-B7D8-48BD-8D64-3E979659CA7F}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{444CDFF3-F3DB-4E39-A01B-371A73CD5F47}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{B5492246-9F29-41F2-89D0-E0CFB779A1DD}C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{C2F78D9F-DCD2-4AF0-A619-583134BC30E7}C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe] => C:\program files\dassault systemes\b23\win_b64\code\bin\cnext.exe
FirewallRules: [{DB02F1F2-6255-4B6A-90B5-8760337107FD}] => D:\Program Files\KeyShot5\bin\keyshot_daemon.exe
FirewallRules: [{9E6B2974-AAD0-4DFC-816E-5A07477E24FB}] => D:\Program Files\KeyShot5 Floating\bin\keyshot_daemon.exe
FirewallRules: [{AE1B1B82-6510-49A5-97C2-D6AB2E264713}] => D:\Program Files\KeyShot5 Floating\bin\keyshot5_floating.exe
FirewallRules: [{C57DD757-BEFA-4075-8137-ED652A3E4C5B}] => D:\Program Files\KeyShot5 Floating\bin\keyshot_daemon.exe
FirewallRules: [{999671FD-B130-4014-90A2-5DBF46894415}] => D:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
FirewallRules: [{8CC548E3-B545-4727-B24C-B6E0E840EC93}] => D:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
FirewallRules: [{F0C5460A-89EA-4E98-B041-813F56FD667A}] => D:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64.exe
FirewallRules: [{CC7D2887-A136-4369-ACF9-701A98074FE8}] => D:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64.exe
FirewallRules: [{D264EAD3-CC5B-41DE-B1B0-F93461B80A18}] => D:\SteamLibrary\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{17CE46FF-7AC8-44E0-BF02-CD46E6F7F4EC}] => D:\SteamLibrary\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{3EDDAB82-E901-40A6-ABF7-9F130A06B8DC}] => D:\SteamLibrary\SteamApps\common\Life is Feudal Your Own\yo_cm_client.exe
FirewallRules: [{E7493A85-12E5-439D-A513-ACC86D4675A2}] => D:\SteamLibrary\SteamApps\common\Life is Feudal Your Own\yo_cm_client.exe
FirewallRules: [TCP Query User{A6D8B041-213F-4151-98F6-5500A8A6D08D}D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe] => D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe
FirewallRules: [UDP Query User{819CFFB3-B805-4865-9104-6B993B6C6141}D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe] => D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe
FirewallRules: [{0D872B4E-17EC-41A9-B1DD-615EF8847BEA}] => D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe
FirewallRules: [{AA621320-F1A7-4ED8-900D-3C7A15C15017}] => D:\steamlibrary\steamapps\common\life is feudal your own\server\cm_yo_server.exe
FirewallRules: [TCP Query User{8D07783B-DA13-42DC-9B72-4D6C9CA6A4B4}C:\program files (x86)\arduino\java\bin\javaw.exe] => C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{85A28987-0094-4B0E-B5C2-780FA027351F}C:\program files (x86)\arduino\java\bin\javaw.exe] => C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{F84B1795-70D6-40C9-A91E-FF12A20A1A4F}] => C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{EA5F0A2F-C16C-40FD-AB8D-11429ACEA69F}] => C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [TCP Query User{9FB94BC4-7B30-4FEB-953D-6D463685DB15}D:\program files\eclipse\eclipse\eclipse.exe] => D:\program files\eclipse\eclipse\eclipse.exe
FirewallRules: [UDP Query User{EE95D0B7-8E4B-4F20-A735-91B975B0ADCC}D:\program files\eclipse\eclipse\eclipse.exe] => D:\program files\eclipse\eclipse\eclipse.exe
FirewallRules: [TCP Query User{F6E70320-65CE-4976-A39A-B6AAF5A319CD}C:\program files\matlab\r2015a\bin\win64\matlab.exe] => C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [UDP Query User{3A69E616-CBF2-4FB6-B702-CE19BF7516C9}C:\program files\matlab\r2015a\bin\win64\matlab.exe] => C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [TCP Query User{837A0BDF-94A2-47BE-8E17-98D4F88E50B6}C:\program files\matlab\r2015a\bin\win64\matlab.exe] => C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [UDP Query User{B0746FDD-D0A0-47C0-BE3D-CC8B4C9C115B}C:\program files\matlab\r2015a\bin\win64\matlab.exe] => C:\program files\matlab\r2015a\bin\win64\matlab.exe
FirewallRules: [TCP Query User{35905164-CEE2-4D49-961B-7183F74E5982}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [UDP Query User{81C96AF5-83A9-433D-82DC-9AFC8BE49318}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [{27DE4CEC-30E0-4DFA-B9CF-82B0F08A496A}] => C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
FirewallRules: [{F030DCD2-3F64-45AD-85C8-3E9A6735553C}] => C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
FirewallRules: [{3C3A58F8-E2F4-49FB-94F8-DAD7C7E8E353}] => C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe
FirewallRules: [{A593FF79-ACB9-48DB-8709-A94B08EBFDCE}] => C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe
FirewallRules: [TCP Query User{595CD3E5-958C-450A-A696-F5423FC63089}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [UDP Query User{E12775D5-9ABC-49D2-A648-BBF3D2AC663B}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [{38DCFB8D-1AC8-4A96-8465-07DDDFCE5BFD}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{92916C34-CBE1-46E4-A0C1-BA3D9095CC38}] => C:\Program Files\Dassault Systemes\B25\win_b64\code\bin\CNEXT.exe
FirewallRules: [{555CA95E-B415-4760-8579-9A25B27C0290}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [{EE383DA8-2CB1-44EC-8C00-3CC26A2E6269}] => C:\program files\dassault systemes\b25\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{52AD202E-2C28-43F1-BD59-89A589FCF739}D:\program files\filezilla\filezilla ftp client\filezilla.exe] => D:\program files\filezilla\filezilla ftp client\filezilla.exe
FirewallRules: [UDP Query User{9CE4D3D2-C94D-431A-B788-6F2F908F6A32}D:\program files\filezilla\filezilla ftp client\filezilla.exe] => D:\program files\filezilla\filezilla ftp client\filezilla.exe
FirewallRules: [{DBF794C6-F82E-4926-8E53-E8CEE24E25B7}] => D:\SteamLibrary\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{C17CA1D3-B21D-41BB-A770-ABB9BBD08860}] => D:\SteamLibrary\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{D092E2F0-A4D6-4258-A8FD-0B77E05CFAB6}] => D:\SteamLibrary\SteamApps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
FirewallRules: [{E3A068FE-81EF-424E-9854-719DD5EEE083}] => D:\SteamLibrary\SteamApps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
FirewallRules: [{34A8704A-1BA5-4E78-AE0B-736CC9A3355C}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D87EC244-1E2E-43ED-89FC-8C9DCEC28D30}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{45F797C4-66D8-4C5A-B707-4D601535FDAB}D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe] => D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe
FirewallRules: [UDP Query User{6E0022AA-86AF-43A4-9721-8201D69881B1}D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe] => D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe
FirewallRules: [TCP Query User{06893087-BA65-4E47-87C6-1A9DEFB5C07D}D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe] => D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe
FirewallRules: [UDP Query User{6FC16076-9FF8-4819-AC04-151EE42692F2}D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe] => D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe
FirewallRules: [TCP Query User{5B2E33F7-6A80-4124-BDD5-486C3F687A1C}D:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe] => D:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe
FirewallRules: [UDP Query User{0DFE5C54-CF2F-4A4F-823A-15EE77A1F7C7}D:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe] => D:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe
FirewallRules: [TCP Query User{74BB7B1E-E2A4-4AAE-A83A-CAC0CFF0F292}D:\program files\ti education\ti-nspire computer link\jre\bin\java.exe] => D:\program files\ti education\ti-nspire computer link\jre\bin\java.exe
FirewallRules: [UDP Query User{F6A2F389-D056-4477-9236-99BEDD8AB990}D:\program files\ti education\ti-nspire computer link\jre\bin\java.exe] => D:\program files\ti education\ti-nspire computer link\jre\bin\java.exe
FirewallRules: [TCP Query User{C219EEC9-9304-43DA-A02E-47C5550FB0CF}D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe] => D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe
FirewallRules: [UDP Query User{90A4EAC3-1B74-4840-9A98-C1AE55BCF5A2}D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe] => D:\program files\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe
FirewallRules: [{71CB189F-2F53-4995-96AB-EE3A08C7C8C3}] => C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{AAC4EB8F-7A39-4524-8451-E545A0D8BF50}] => C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [TCP Query User{B5729983-4D23-48C7-B3B5-C85ECD54D4D8}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe
FirewallRules: [UDP Query User{B953E78C-6AFF-4145-9876-9F8268A9FC21}C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe] => C:\users\strat_000\appdata\local\cloudstation\cloudstation.app\bin\cloud-connect.exe
FirewallRules: [{813B74C6-24B6-4FAF-8686-C417EB2109B0}] => D:\Program Files\Makerbot\MakerWare\conveyor-svc.exe
FirewallRules: [{FBB017AE-A882-494C-8953-8A477337BB00}] => D:\Program Files\Makerbot\MakerWare\conveyor-svc.exe
FirewallRules: [TCP Query User{4D29F7EA-B63D-4D82-AA19-5FF380ACACB2}D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe] => D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe
FirewallRules: [UDP Query User{73F279FA-53CF-48FE-A553-1E0B8FC166B8}D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe] => D:\program files\ti education\ti-nspire cx cas student software\jre\bin\java.exe
FirewallRules: [TCP Query User{6DE1E719-63B5-4576-B897-D0F84381DEF8}C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe] => C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe
FirewallRules: [UDP Query User{F9F9238C-3D94-4313-A36B-F12286D6E3FC}C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe] => C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe
FirewallRules: [TCP Query User{1EBD238E-E99B-4FA9-A265-A23D236A8E65}C:\program files\ansys inc\v162\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v162\framework\bin\win64\ansysfww.exe
FirewallRules: [UDP Query User{F851EE0D-3A49-4439-8C68-A69C6D9CEEA9}C:\program files\ansys inc\v162\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v162\framework\bin\win64\ansysfww.exe
FirewallRules: [TCP Query User{C17A6E90-307B-4DC3-9532-A72BA28D7E13}C:\program files\ansys inc\v162\rsm\bin\ans.rsm.jmhost.exe] => C:\program files\ansys inc\v162\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [UDP Query User{B970B650-6B58-46DE-A066-6A50591E1372}C:\program files\ansys inc\v162\rsm\bin\ans.rsm.jmhost.exe] => C:\program files\ansys inc\v162\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [TCP Query User{4885D9A4-32E1-4EE4-A6D6-2CD6A165F75E}C:\program files\ansys inc\v162\commonfiles\help\helpviewer\ansyshelpviewer.exe] => C:\program files\ansys inc\v162\commonfiles\help\helpviewer\ansyshelpviewer.exe
FirewallRules: [UDP Query User{917B4B7E-E7CC-4B0E-B1F0-125B3B6D5984}C:\program files\ansys inc\v162\commonfiles\help\helpviewer\ansyshelpviewer.exe] => C:\program files\ansys inc\v162\commonfiles\help\helpviewer\ansyshelpviewer.exe
FirewallRules: [TCP Query User{ACEC9B2F-DF32-4388-A0EA-4D2D3C70FFD5}C:\program files\ansys inc\v162\ekm\programs\jre1.7.0_60\bin\javaw.exe] => C:\program files\ansys inc\v162\ekm\programs\jre1.7.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{582E496F-B3A3-4386-8766-57BE89BD4B1B}C:\program files\ansys inc\v162\ekm\programs\jre1.7.0_60\bin\javaw.exe] => C:\program files\ansys inc\v162\ekm\programs\jre1.7.0_60\bin\javaw.exe
FirewallRules: [TCP Query User{BB0B7764-C3C8-44E5-8B52-7653B442EF30}C:\program files\ansys inc\v162\aisol\bin\winx64\ansyswbu.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [UDP Query User{51D51782-0836-4ED0-8566-6C2F121A9206}C:\program files\ansys inc\v162\aisol\bin\winx64\ansyswbu.exe] => C:\program files\ansys inc\v162\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [TCP Query User{4A78CA10-FC43-4BD2-ADEB-4A47B746AE3A}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe
FirewallRules: [UDP Query User{D2254D85-9005-4F98-93D0-52A8C2ED9525}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe
FirewallRules: [TCP Query User{2DEC6473-76A8-41EA-A1A0-C0B7C9CEE5DA}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe
FirewallRules: [UDP Query User{A57FFF96-FF6C-433D-A24B-61F6189CDA82}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe
FirewallRules: [TCP Query User{FF580F0A-613B-47ED-B66B-C4C2F7A53FC5}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [UDP Query User{299694CD-1A03-40CF-8D18-227E42292E3D}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [TCP Query User{D536004E-885D-48A6-93A0-E9F7523AA42E}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe
FirewallRules: [UDP Query User{1D5E4472-2548-4043-AB60-EC42950134F6}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe
FirewallRules: [TCP Query User{F33BA93F-F801-462A-B847-54A7DA65D394}C:\program files (x86)\ptc\creo\platform\3.119\creoagent.exe] => C:\program files (x86)\ptc\creo\platform\3.119\creoagent.exe
FirewallRules: [UDP Query User{89140C2A-C301-440F-9B0B-55A1430F42F8}C:\program files (x86)\ptc\creo\platform\3.119\creoagent.exe] => C:\program files (x86)\ptc\creo\platform\3.119\creoagent.exe
FirewallRules: [TCP Query User{4972AA5E-476F-45E9-BD9A-AB6BBADE6B20}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe
FirewallRules: [UDP Query User{1FF0173E-13B4-4BB1-906C-129DD6A070F7}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\nms\nmsd.exe
FirewallRules: [TCP Query User{80E67AB3-DB1B-42C5-98F1-C5DC7F732118}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe
FirewallRules: [UDP Query User{6EC3A2E6-D98E-4EAA-9279-D3B1DCB1D873}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\xtop.exe
FirewallRules: [TCP Query User{5B5441CC-56B0-419E-83AE-3E373E83CED7}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [UDP Query User{69EC30FA-BE3F-4362-97A1-3000220A2465}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [TCP Query User{75BC380F-63F4-4AAF-8F2D-86FC7B46ADB5}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe
FirewallRules: [UDP Query User{EDCCE7AB-6A5A-4A5D-8785-4339DEE39CE0}C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe] => C:\program files\ptc\creo 3.0\m070\common files\x86e_win64\obj\mcp_applet_async.exe
FirewallRules: [{0A636003-3528-479F-8A40-20195C0BAD19}] => D:\Program Files\Steam\Steam.exe
FirewallRules: [{5738DAF4-AD22-4F63-A7E7-5CA0BB909BBF}] => D:\Program Files\Steam\Steam.exe
FirewallRules: [{A62542E4-7F5D-45F8-A2B0-4CA9D2A4BBEC}] => D:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{C0775954-FCAC-4C2F-B276-D9F05337E5F1}] => D:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{5515167E-A3F5-48F5-AEA8-1685AE0269D0}] => D:\Program Files\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{4C84F3A0-9CC9-4F32-9C47-17FBBD06D737}] => D:\Program Files\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [TCP Query User{97DE6410-F758-4E29-9CFB-20600C2CD63B}C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe
FirewallRules: [UDP Query User{71BD6B01-060A-4125-81F1-FF8EF36174CB}C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe
FirewallRules: [TCP Query User{5CC2725D-23C4-453E-B829-828BF6862000}C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe
FirewallRules: [UDP Query User{F903E9B5-DEF2-4B28-8B5B-77476C142E87}C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe] => C:\program files\ansys inc\v171\framework\bin\win64\ansysfww.exe
FirewallRules: [TCP Query User{3A2C031E-F5BE-49A9-950D-8617A663A885}C:\program files\ansys inc\v171\aisol\bin\winx64\ansyswbu.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [UDP Query User{654AC3D1-940C-4C80-BACC-7E0DF0BAB385}C:\program files\ansys inc\v171\aisol\bin\winx64\ansyswbu.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [TCP Query User{7EA91798-653B-4713-BA6D-C35C5FC66161}C:\users\strat_000\appdata\local\akamai\netsession_win.exe] => C:\users\strat_000\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{00173B88-63BE-410F-999B-D0BDF30559EA}C:\users\strat_000\appdata\local\akamai\netsession_win.exe] => C:\users\strat_000\appdata\local\akamai\netsession_win.exe
FirewallRules: [{4D9CF4CC-8906-485F-A554-9FF6616F8243}] => LPort=50493
FirewallRules: [{5BFEFDB5-F338-43E5-B4A3-B7447F59592A}] => LPort=5000
FirewallRules: [TCP Query User{D1104671-7D82-4552-8374-503FEFC7B173}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [UDP Query User{F1C4EE4E-7133-4A70-8A5B-EB715DECB5DB}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [{F4EBC012-4C9B-4B0A-9055-5536ABCA72A0}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [{8C3B5AE5-D1B4-4CCE-8ED6-D165DCD70224}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [TCP Query User{181AFDF0-B145-494C-B1A8-AD05EB416DC7}C:\program files\matlab\r2016a\bin\win64\matlab.exe] => C:\program files\matlab\r2016a\bin\win64\matlab.exe
FirewallRules: [UDP Query User{0964230A-1291-4FC4-943E-30A6BA863DDA}C:\program files\matlab\r2016a\bin\win64\matlab.exe] => C:\program files\matlab\r2016a\bin\win64\matlab.exe
FirewallRules: [{C14C2B35-2BBB-4FA6-996E-58A62F434429}] => C:\program files\matlab\r2016a\bin\win64\matlab.exe
FirewallRules: [{9CD0AAF4-97AC-40A2-A76D-BEDEA81C38ED}] => C:\program files\matlab\r2016a\bin\win64\matlab.exe
FirewallRules: [TCP Query User{C3C87D8E-2C32-439A-8F0F-719898DD5826}C:\matlab\supportpackages\r2016a\arduino-1.6.1\java\bin\java.exe] => C:\matlab\supportpackages\r2016a\arduino-1.6.1\java\bin\java.exe
FirewallRules: [UDP Query User{DEB563F4-3720-4101-97E9-672EF2052C51}C:\matlab\supportpackages\r2016a\arduino-1.6.1\java\bin\java.exe] => C:\matlab\supportpackages\r2016a\arduino-1.6.1\java\bin\java.exe
FirewallRules: [TCP Query User{D5720B77-6C66-485F-A890-AE3C1FDD4D5D}C:\users\strat_000\appdata\local\akamai\netsession_win.exe] => C:\users\strat_000\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{14236913-4D2D-4B50-891D-70654771B034}C:\users\strat_000\appdata\local\akamai\netsession_win.exe] => C:\users\strat_000\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{46FF2D9A-0F3F-4749-8962-71D740E7BD8C}C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [UDP Query User{3FDF8896-5053-4299-896A-5ED8651D03CD}C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [TCP Query User{1947A3A6-BDAD-4763-A046-0C9E6D5B6771}C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [UDP Query User{039B220B-08A5-4922-9AFE-9B053FE53476}C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [{F70DB554-098B-4EF5-B2F3-9C347B478D6D}] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [{46263FF4-0425-425D-92E7-327CA4A7825D}] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [{B0695D51-3E61-4BB7-A8FF-63FC28B5E5AC}] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [{20096A1E-9D0E-4E3C-AC1B-3188FC7530DE}] => C:\program files\ansys inc\v171\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [{106A88F1-F0A2-4C7F-95F5-76440A08A109}] => D:\Program Files\Steam\steamapps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
FirewallRules: [{694EF472-82E0-4B7D-9EEB-06E46A391E8C}] => D:\Program Files\Steam\steamapps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
FirewallRules: [{4F0AB3CD-890E-4BDA-9033-DE79A3086B02}] => D:\Program Files\Steam\steamapps\common\Eve Online\eve.exe
FirewallRules: [{04D43F88-030A-4275-90D9-B882D7B65DCB}] => D:\Program Files\Steam\steamapps\common\Eve Online\eve.exe
FirewallRules: [TCP Query User{20FA449C-E079-41C2-8DA1-F447D545414C}D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe] => D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe
FirewallRules: [UDP Query User{EF374B26-590B-40F1-B24A-FEA487E921D9}D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe] => D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe
FirewallRules: [{32CDE5DF-70E7-4F3C-A8B5-A29D48CA988A}] => D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe
FirewallRules: [{F4D862D1-D1A1-4A3F-AF09-2078C5CBB85D}] => D:\program files\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe
FirewallRules: [TCP Query User{69775E32-E8E9-4362-97C3-F7A9CBDA8525}D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe] => D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe
FirewallRules: [UDP Query User{4A620198-4132-4148-B93E-F8D86B2B9D25}D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe] => D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe
FirewallRules: [{4A67E9AE-AACC-4961-9B75-1F3439B9543F}] => D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe
FirewallRules: [{3B976257-3BFA-4EBE-8BB2-A298998E620C}] => D:\downloads\downloader_warcraft3_reign_of_chaos_dede.exe
FirewallRules: [TCP Query User{64A35C27-ECCA-4350-9E9D-6F48F563B16F}D:\program files\warcraft iii\war3.exe] => D:\program files\warcraft iii\war3.exe
FirewallRules: [UDP Query User{C194F2B0-14E4-4202-B1EB-A17AAFBE472F}D:\program files\warcraft iii\war3.exe] => D:\program files\warcraft iii\war3.exe
FirewallRules: [{27694D1D-CE53-4337-A629-6438BC9B595F}] => D:\program files\warcraft iii\war3.exe
FirewallRules: [{5DD6108B-F61F-444A-A634-0D589383E649}] => D:\program files\warcraft iii\war3.exe
FirewallRules: [TCP Query User{CF9F0323-F072-41EE-A4CD-4E84DE85A040}C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe
FirewallRules: [UDP Query User{5282506B-AE01-498B-A92B-1D12F4494477}C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe
FirewallRules: [{E4899B7C-A00E-42E1-B2B7-BE38D598F81D}] => C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe
FirewallRules: [{1C74F810-9F65-45A2-9DAB-7F97D157C1FE}] => C:\program files\ansys inc\v171\aisol\bin\winx64\readerhostu.exe
FirewallRules: [TCP Query User{81F94168-96C9-45EB-8652-BE3BD3F2B9F4}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe
FirewallRules: [UDP Query User{F6A69B8B-99EF-4BD9-8D85-E04716828D68}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe
FirewallRules: [TCP Query User{CE76F80C-48AA-49BE-9A9F-BB919E849C38}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe
FirewallRules: [UDP Query User{4594E7F3-EEFB-4329-B389-B9EBABB92B6A}C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe
FirewallRules: [{C92CDDCF-7D42-4A37-923A-04D4F6EA03FA}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe
FirewallRules: [{28D42510-D9E4-486E-935F-8ADD84027A22}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.taskhost.exe
FirewallRules: [TCP Query User{8D518D0C-9081-43D1-A35E-4A3D61ECAA26}C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe
FirewallRules: [UDP Query User{E6DDC5CA-990D-4429-87FC-429787D074BC}C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe
FirewallRules: [TCP Query User{A9308F64-3D8A-49D5-9780-9D5272C10846}C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe
FirewallRules: [UDP Query User{1EF6429A-E3A4-463B-8D24-664237591AE5}C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe
FirewallRules: [TCP Query User{CA864C90-D777-424C-9067-AE34B478CA81}C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe
FirewallRules: [UDP Query User{B56F3383-3890-4B7D-9A9A-B7CF30770440}C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe
FirewallRules: [{1E2D9886-F380-4CC3-9D56-EBCE047B98C5}] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe
FirewallRules: [{85A45DD1-885B-448A-9847-9EED796FC0AE}] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.slave.exe
FirewallRules: [TCP Query User{D6EAD59A-051B-4164-8D14-92B0FB3FA209}C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe
FirewallRules: [UDP Query User{AFD99344-E596-4C15-8D09-43C01C6F5147}C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe
FirewallRules: [{A963F426-DD88-4783-9D87-EC3196206352}] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe
FirewallRules: [{14EA7183-AEC1-429B-A934-88FE71957385}] => C:\program files\ansys inc\v171\aisol\bin\winx64\ansys.solvers.autodyn.exe
FirewallRules: [{4FF6F839-621D-4491-BC40-481DF3A19C3B}] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe
FirewallRules: [{5D8BEBD9-40C4-4F16-BA6F-4CEB81EBADD2}] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpid.exe
FirewallRules: [{53BA2B6B-7B76-4BF6-9F28-51D8247E91C7}] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe
FirewallRules: [{51E257FE-69C3-4533-A2BF-87FDF4071BDF}] => C:\program files\ansys inc\v171\commonfiles\mpi\platform\9.1.3.1\winx64\bin\mpirun.exe
FirewallRules: [{DF1FBDD4-D8FB-4F17-906B-C47C5D624AD0}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe
FirewallRules: [{18143208-C801-4688-B8BB-FF6F7378727F}] => C:\program files\ansys inc\v171\rsm\bin\ans.rsm.uphost.exe
FirewallRules: [{F7663B8E-CFAF-4CF7-8A7D-D03E77013CFD}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{22B27A22-A3EB-40B6-AA3A-8789F8C685EF}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D1245765-4B2B-4084-8997-28FC0ACF475C}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{50C231A1-9929-46DE-AADD-807BDF05C814}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{87934A71-4B39-4944-A8E3-90F676C4A92E}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D63EBAAC-B876-422E-81B5-5BB553605661}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{91E0B6DC-23B6-4396-B1DD-D9B19EB86A4E}] => D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5F2186F5-EE4E-43F9-9B85-2D397956E30C}] => D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6491CDB2-3611-4C02-9CDE-737D98D6D464}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E634B76F-4585-4DBE-A792-E9B02D8AAB34}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BF7A02F5-D851-46C1-A7AA-EE92C087AE9E}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{772C1C15-151E-486D-B246-E93ADFA57B7E}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F76B77B6-20E9-4A11-812F-96EEE09AD674}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CF1F6B31-7E25-4BD7-9684-F6E7DE3264AD}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{16B2691B-1D96-4DD6-A464-CF435E3BBBF0}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{739CA301-3C83-4909-A25E-5D095F10AF80}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3B848BF1-A2CB-49D8-BEDD-6E15C4BDB929}] => C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
FirewallRules: [{22EC3136-CADE-4416-9D77-F40268D55AD2}] => C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
FirewallRules: [{C229CA86-D1D2-4089-A45B-2E31E803BAF1}] => C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
FirewallRules: [{4F08CF52-B016-4A68-944C-1304C9C0BE35}] => C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
FirewallRules: [{CD4A55A3-AC69-4910-B11D-11764353D2A1}] => C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
FirewallRules: [{E9F3CA92-CAD3-46F6-BDA4-C9D733553497}] => C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
FirewallRules: [{EE18F89F-A23A-4E32-97A7-6130C9EE58F9}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{177C89B0-4EA5-426D-AF16-50FF2F619991}C:\python27\python.exe] => C:\python27\python.exe
FirewallRules: [UDP Query User{9FD36F7A-96E2-4353-B5E3-FDF73C79E680}C:\python27\python.exe] => C:\python27\python.exe
FirewallRules: [{9F6029FF-4CC7-4BAD-8731-0F7014432B76}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{336C1EC1-46B7-4511-ADF1-6F9189281BEE}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{67F283D0-13BF-42AA-8B84-DED70E4BB1B6}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C80AD0C9-2D15-42FE-BEBE-CFCA134132C2}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5FA80B06-0608-4989-AEE8-F34289CACB2D}] => D:\Program Files\Steam\steamapps\common\Stronghold\Stronghold.exe
FirewallRules: [{0F8CF37E-9E3B-4498-AACC-881A689E8D02}] => D:\Program Files\Steam\steamapps\common\Stronghold\Stronghold.exe
FirewallRules: [{4DB7C15D-5483-4EE7-9942-F2D610C4C259}] => D:\Program Files\Steam\steamapps\common\Stronghold Legends\FFLauncher.exe
FirewallRules: [{B52D4938-2A70-4EBD-BDCC-829EF072AE13}] => D:\Program Files\Steam\steamapps\common\Stronghold Legends\FFLauncher.exe
FirewallRules: [{5B6C4EA5-9266-4C63-8B68-10FA23492FB6}] => D:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{54F453BB-4C87-4F62-BE60-7B0729365AB1}] => D:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{351C1CC4-64DE-4D5F-ABAC-7BF7C2347AEC}] => D:\Program Files\Steam\steamapps\common\Stronghold 2\Stronghold2.exe
FirewallRules: [{044A6B93-D306-4825-B95B-D743067ECAAB}] => D:\Program Files\Steam\steamapps\common\Stronghold 2\Stronghold2.exe
FirewallRules: [{15A66BEC-7E64-45E5-864E-AF6822B0CF11}] => D:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{DC60EA33-BBA8-483B-80DF-DEAA10E33C64}] => D:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{A1E5E47B-4195-461D-8CAE-DA868D6F43B2}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9F051BF0-FC11-487A-927A-8F2437AF7B54}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{723D36AD-083D-4C5A-A22E-B002AE15BCBF}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B4D7AA00-3790-4020-B77B-7F57931A417C}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E9135C4D-51E5-484D-B4BC-0C61F0335FE1}] => D:\Program Files\Steam\steamapps\common\Risen 2\system\Risen2.exe
FirewallRules: [{95FC9F15-2B45-477A-87F9-B826F7BA3099}] => D:\Program Files\Steam\steamapps\common\Risen 2\system\Risen2.exe
FirewallRules: [{AA10F175-C941-43F5-A3A2-A72009C3C90E}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{79851F8F-EE44-4131-89BE-3DADD6AE3036}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{D715EC5C-D0BF-4C58-BE58-729955EC782B}C:\python27\python.exe] => C:\python27\python.exe
FirewallRules: [UDP Query User{B828D04C-D74B-4C96-AABB-54C982E4B185}C:\python27\python.exe] => C:\python27\python.exe
FirewallRules: [TCP Query User{531F659E-39C5-4577-8966-836B4C42D79B}C:\python34\python.exe] => C:\python34\python.exe
FirewallRules: [UDP Query User{7CD72028-EA1D-4721-A985-E3CD2FEE964D}C:\python34\python.exe] => C:\python34\python.exe
FirewallRules: [{26F2EFD9-72A1-42E7-9866-344CEC330888}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8C9F4D70-C2F8-4DD5-8A5D-938F4040A0CD}] => D:\Program Files\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{11E81A1B-0517-4146-83F2-7552DFFBC9FD}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{4BBCB332-05EF-4C18-AF9D-16D4F81F58C1}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

==================== Restore Points =========================

12-02-2017 16:13:02 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/14/2017 05:30:22 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Users\Strat_000\AppData\Local\chromium\Application\chrome.exe".
Dependent Assembly 51.0.2683.0,language="*",type="win32",version="51.0.2683.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (02/14/2017 05:30:08 PM) (Source: LabVIEW) (EventID: 3299) (User: )
Description: LabVIEW information:  Error: Can't listen for HTTP on :8080       .

Error: (02/14/2017 05:30:08 PM) (Source: LabVIEW) (EventID: 3299) (User: )
Description: LabVIEW information:  Error: Can't open a socket on , port 8080       .

Error: (02/14/2017 05:30:01 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path validation failed. Error: typeId=43, authorId=9, vendorId=0, vendorType=0

Error: (02/14/2017 05:30:01 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path validation failed. Error: typeId=25, authorId=9, vendorId=0, vendorType=0

Error: (02/14/2017 05:30:01 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path validation failed. Error: typeId=17, authorId=9, vendorId=0, vendorType=0

Error: (02/14/2017 05:30:01 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path validation failed. Error: typeId=43, authorId=9, vendorId=0, vendorType=0

Error: (02/14/2017 05:30:01 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path validation failed. Error: typeId=25, authorId=9, vendorId=0, vendorType=0

Error: (02/14/2017 05:30:01 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path validation failed. Error: typeId=17, authorId=9, vendorId=0, vendorType=0

Error: (02/14/2017 05:30:01 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) The system cannot find the file specified.


System errors:
=============
Error: (02/14/2017 05:30:07 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/14/2017 05:29:35 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/14/2017 05:27:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/14/2017 02:15:12 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/14/2017 11:32:15 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/14/2017 08:31:00 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/14/2017 08:29:10 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/13/2017 10:04:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/13/2017 09:52:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/13/2017 09:51:29 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


CodeIntegrity:
===================================
  Date: 2017-02-02 20:23:01.621
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-02-02 20:23:01.621
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-02-02 20:23:01.620
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-02-02 20:23:01.620
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-02-02 20:23:01.620
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-01-18 15:02:37.473
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-18 15:02:37.192
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-15 15:36:28.904
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-15 15:36:28.659
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-08 12:31:47.580
  Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-4702HQ CPU @ 2.20GHz
Percentage of memory in use: 15%
Total physical RAM: 16287.06 MB
Available physical RAM: 13690.42 MB
Total Virtual: 18719.06 MB
Available Virtual: 16130.06 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:226.66 GB) (Free:40.92 GB) NTFS
Drive d: (DATA) (Fixed) (Total:465.64 GB) (Free:181.4 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 993AD5C7)

Partition: GPT.

========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 36A8EBAC)

Partition: GPT.

==================== End of Addition.txt ============================

Und dann noch die FSS.txt:

Code:

ATTFilter

Farbar Service Scanner Version: 27-01-2016
Ran by Strat_000 (administrator) on 14-02-2017 at 17:33:03
Running from "C:\Users\Strat_000\Desktop"
Microsoft Windows 10 Pro  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy: 
==================


System Restore:
============

System Restore Policy: 
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.


Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

Tician · 15.02.2017, 17:50

Hi,

du musst kurz selbst etwas aktiv werden, ließ bitte alles genau durch, bei Fragen oder Problemen unterbreche dein Vorhaben und wende dich hier in diesem Thread an mich.

Schritt 1:

Drücker die Windows-Taste + R
Gib gpedit.msc in das Feld ein und drücke Enter
Es sollte sich ein Fenster öffnen, navigiere dich links zu folgendem Punkt indem du die Ordner mit den kleinen Pfeilen daneben öffnest
- Computerkonfiguration \ Administrative Vorlagen \ Windows-Komponenten
Klicke direkt auf den 'Ordner' WIndows Defender (nicht auf den Pfeil daneben!)
Mach nun einen Doppelklick auf Windows Defender deaktivieren
Es sollte sich ein Fenster öffnen, oben links in dem Fenster den Punkt bei Nicht konfiguriert setzen
Unten in dem Fenster auf OK klicken
Das ganze Fenster für die Gruppenrichtlinien schließen

Alternativ gibt es auch eine englische Anleitung mit Bildern:
https://www.tenforums.com/tutorials/...a.html#option1

Schritt 2:

Starte Farbar Service Scanner mit Doppelklick auf die FSS.exe
Gehe sicher, dass folgende Optionen angehakt sind.
- Internet Services
- Windows Firewall
- System Restore
- Security Center/Action Center
- Windows Update
- Windows Defender
- Other Services
Klicke auf Scan.
Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.

stratos2k · 16.02.2017, 16:45

Hallo Tician

Punkt 1 erledigt.

Und hier die FSS.txt:

Code:

ATTFilter

Farbar Service Scanner Version: 27-01-2016
Ran by Strat_000 (administrator) on 16-02-2017 at 16:45:02
Running from "C:\Users\Strat_000\Desktop"
Microsoft Windows 10 Pro  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy: 
==================


System Restore:
============

System Restore Policy: 
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.


Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

Tician · 16.02.2017, 22:01

Gut gemacht

Schritt 1:

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender" /v DisableAntiSpyware /f
CMD: sc config WinDefend start=auto
Reboot:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Lässt sich der Defender nun starten?

Schritt 2:

Starte Farbar Service Scanner mit Doppelklick auf die FSS.exe
Gehe sicher, dass folgende Optionen angehakt sind.
- Internet Services
- Windows Firewall
- System Restore
- Security Center/Action Center
- Windows Update
- Windows Defender
- Other Services
Klicke auf Scan.
Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.

stratos2k · 17.02.2017, 17:13

Hallo Tician.

Es funktioniert!!! Defender läuft wieder

Hier die Fixlog:

Code:

ATTFilter

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-02-2017 02
Ran by Strat_000 (17-02-2017 17:08:44) Run:4
Running from C:\Users\Strat_000\Desktop
Loaded Profiles: Strat_000 (Available Profiles: Strat_000 & Guest & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender" /v DisableAntiSpyware /f
CMD: sc config WinDefend start=auto
Reboot:
*****************


========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender" /v DisableAntiSpyware /f =========

The operation completed successfully.



========= End of Reg: =========


========= sc config WinDefend start=auto =========

[SC] OpenService FAILED 5:

Access is denied.


========= End of CMD: =========



The system needed a reboot.

==== End of Fixlog 17:08:44 ====

Und die FSS.txt:

Code:

ATTFilter

Farbar Service Scanner Version: 27-01-2016
Ran by Strat_000 (administrator) on 17-02-2017 at 17:10:53
Running from "C:\Users\Strat_000\Desktop"
Microsoft Windows 10 Pro  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy: 
==================


System Restore:
============

System Restore Policy: 
========================


Security Center:
============

wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

Heisst das wir sind nun fertig?

Grüsse Stratos2k

Tician · 17.02.2017, 23:46

Hi!

Wir haben zwar den Windows Defender wieder zum Laufen gebracht aber jetzt scheint das Security Center nicht zu laufen.
Hast du das bewusst gemacht oder gab es doch Probleme beim aktivieren des Defenders?

stratos2k · 18.02.2017, 08:37

Hi Tician

Nein, das hab ich nicht bewusst gemacht. Ich wüsste nicht mal wie

Ich habe den Windows Defender gestartet, wodurch sich erstmals überhaupt wieder das Fenster öffnete.
Dann stand dort, dass der Defender nicht läuft. Also habe ich auf Start now geklickt.
Danach lief der Defender wieder. Mehr habe ich nicht gemacht.

Gruss Stratos2k

Edit:

Das ist jetzt etwas komisch. Habe jetzt gerade nochmals einen Scan mit FSS gemacht und wies aussieht läuft das security center nun. Auch wenn ich in den diensten nachschaue steht bei Status "running".

Hier die neue FSS.txt:

Code:

ATTFilter

Farbar Service Scanner Version: 27-01-2016
Ran by Strat_000 (administrator) on 18-02-2017 at 08:43:19
Running from "C:\Users\Strat_000\Desktop"
Microsoft Windows 10 Pro  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy: 
==================


System Restore:
============

System Restore Policy: 
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

Tician · 19.02.2017, 02:51

Der Dienst läuft, sieht alles gut aus!

Dein PC ist nun clean

Lade dir jetzt Delfix

herunter:

Schließe alle offenen Programme.
Starte die delfix.exe mit einem Doppelklick.
Setze vor jede Funktion ein Häkchen.
Klicke auf Start.

Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte deinen Rechner abschließend neu.

Malwarebytes Anti-Malware

und ESET

kannst du über die Systemsteuerung deinstallieren, ich würde dir allerdings raten beides zu behalten und deinen PC damit ab und an zu scannen.

Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Lass mich dir einen Rucksack voll mit Tipps und Hinweisen geben um ein Wiedersehen so gut wie möglich zu vermeiden

Absicherung:

Achte immer darauf einen Virenscanner zu verwenden und diesen aktuell zu halten.
Meine persönlichen Empfehlungen:
- Emsisoft
- Windows Defender
Der Internet Explorer ist nicht bekannt für seine Sicherheit, halte ihn aber trotzdem aktuell da einige Programme ihn benutzen. Benutze zum Surfen stattdessen einen der folgenden Browser:
- Moziall Firefox
- Google Chrome
Dazu kannst du noch das Add-On Adblock Plus verwenden, damit werden Werbungen und Pop-Ups blockiert.
Zu guter Letzt halte deine Software aktuell, die Updates gibt es nicht ohne Grund, mit ihnen werden wichtige Sicherheitslücken geschlossen.
Dazu gehören vor allem:
- Windows - stelle sicher das die automatischen Updates aktiviert sind
- Java x64 oder/und Java x86
- PDF Reader (Achtung: Häkchen vor dem Download entfernen)
- Flash Player (Achtung: Häkchen vor dem Download entfernen)
- Browser (Opera, Safari, Firefox, Chrome,...)

In deinem Fall bitte Java und Firefox aktualisieren

Hinweis: Java wird heute nur noch selten gebraucht, ich würde empfehlen es zu deinstallieren wenn du dir nicht sicher bist, dass eine deiner Anwendungen es braucht

Dein Verhalten im Internet:

Lade dir deine Software entweder direkt von der Herstellerseite oder von übersichtlichen und sauberen Seiten wie FilePony.de herunter.
Download-Seiten wie ~~Chip~~ oder ~~Softonic~~ mögen bequem erscheinen, sind aber nicht vertrauensvoll. Lies dir dazu am Besten das hier durch: CHIP-Installer - was ist das? - Anleitungen
Klicke nicht auf alles nur weil es groß ist und bunt leuchtet. Wenn die Möglichkeit besteht, dann wähle eine benutzerdefinierte Installation, in der wird dir meist die Gelegenheit gegeben zusätzliche Software (Toolbars, Suchmaschinen, etc) ab zu wählen.
Benutze nicht dasselbe Passwort für mehrere Seiten. Ein gutes Passwort besteht aus 7+ Zeichen und beinhaltet Großbuchstaben, Kleinbuchstaben und Sonderzeichen. Ein guter Weg sich ein Passwort zu erstellen ist die Anfangsbuchstaben eines Satzes zu nehmen.
Ein Beispiel: Ich sitze vor dem PC, und denke mir ein Passwort aus
Passwort: IsvdPC,udmePa
Solltest du bei Dateien/Downloads/Internetseiten mal nicht sicher sein ob diese sicher sind, dann schau doch einfach hier nach: https://www.virustotal.com/
Halte dich von Tools fern die versprechen deinen PC zu beschleunigen oder zu optimieren

Unterstütze uns!

Wenn du mit meiner Bereinigung zufrieden warst würden wir uns über eine Spende freuen. Dies kannst du hier tun: http://www.trojaner-board.de/79994-s...ndenkonto.html.

Auch über Feedback und Verbesserungsvorschläge freuen wir uns, schau dazu doch hier vorbei!

Ansonsten bleibt mir nur noch dir alles Gute zu wünschen und bedanke mich für deine Mitarbeit und dein Vertrauen

17.02.2017, 23:46	#28
Tician /// TB-Senior	Win 10, Trotux eingefangen Hi! Wir haben zwar den Windows Defender wieder zum Laufen gebracht aber jetzt scheint das Security Center nicht zu laufen. Hast du das bewusst gemacht oder gab es doch Probleme beim aktivieren des Defenders? __________________ Gruß Tician

Win 10, Trotux eingefangen

Plagegeister aller Art und deren Bekämpfung: Win 10, Trotux eingefangen