Additional scan result of Farbar Recovery Scan Tool (x64) Version:14-12-2015 Ran by ramya_000 (2015-12-14 15:51:37) Running from C:\Users\ramya_000\Desktop Windows 10 Home (X64) (2015-08-05 03:31:27) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1210309332-3358197912-3402527016-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1210309332-3358197912-3402527016-503 - Limited - Disabled) Guest (S-1-5-21-1210309332-3358197912-3402527016-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1210309332-3358197912-3402527016-1004 - Limited - Enabled) ramya_000 (S-1-5-21-1210309332-3358197912-3402527016-1002 - Administrator - Enabled) => C:\Users\ramya_000 ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated) Adobe Audition CS6 (HKLM-x32\...\{30FD541D-3C9D-41C4-B240-A994EE4E0231}) (Version: 5.0.2 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.11) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated) Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.) Apple Application Support (32-bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Awesomium.NET Redistribution Module (x32 Version: 1.7.4.2 - ©2014 Awesomium Technologies LLC) Hidden bl (x32 Version: 1.0.0 - Your Company Name) Hidden Conexant SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.40.0 - Conexant) CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version: 3.0 - CutePDF.com) CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.0.0.2 - Dell Inc.) Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.0.0.2 - Dell Inc.) Dell Customer Connect (HKLM-x32\...\{FEFDCDCF-C49C-45D0-AAF8-5345858ADEC7}) (Version: 1.2.1.0 - Dell Inc.) Dell Data Vault (Version: 4.2.2.0 - Dell Inc.) Hidden Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.1.6664.93 - Dell) Dell SupportAssistAgent (HKLM-x32\...\{287348C8-8B47-4C36-AF28-441A3B7D8722}) (Version: 1.0.2.57295 - Dell) Dell Touchpad (HKLM\...\Elantech) (Version: 11.3.1.4 - ELAN Microelectronic Corp.) Dell Update (HKLM-x32\...\{4D3BE820-0FC3-40E7-9252-A94FEA4592CA}) (Version: 1.7.1034.0 - Dell Inc.) Dropbox (HKU\S-1-5-21-1210309332-3358197912-3402527016-1002\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.) FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden gorillaprice (HKLM-x32\...\gorillaprice) (Version: - ) HP Unified Functional Testing (HKLM\...\{F4562C53-DCB0-4DBF-8A17-7EBF2E5F2DF7}) (Version: 12.01.1112.1 - HP) iCloud (HKLM\...\{B33C558F-772F-4308-A059-390FBF9BAAAE}) (Version: 5.0.2.61 - Apple Inc.) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{7854AA22-A2F0-4F29-A2E9-D0C5A2B685E7}) (Version: 2.5.0.0248 - Motorola Solutions, Inc) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation) Intel(R) Turbo Boost Technology Monitor 2.6 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.6.2.0 - Intel) Intel(R) WiDi (HKLM\...\{EDBA2433-0910-4C72-8C5B-8FEDAE3EF18E}) (Version: 3.5.34.0 - Intel Corporation) Intel® Hardware Accelerated Execution Manager (HKLM\...\{ECCB31F5-435D-4F37-A98D-5854D3C62718}) (Version: 1.1.1 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation) IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit) iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.) Java 7 Update 79 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417079FF}) (Version: 7.0.790 - Oracle) Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation) Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Java SE Development Kit 7 Update 79 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170790}) (Version: 1.7.0.790 - Oracle) join.me (HKU\S-1-5-21-1210309332-3358197912-3402527016-1002\...\JoinMe) (Version: 1.14.0.132 - LogMeIn, Inc.) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.226.1 - McAfee, Inc.) McAfee SecurityCenter (HKLM-x32\...\MSC) (Version: 14.0.4121 - McAfee, Inc.) Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Mozilla Firefox 35.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 en-US)) (Version: 35.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla) OpenOffice.org 3.4.1 (HKLM-x32\...\{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}) (Version: 3.41.9593 - Apache Software Foundation) Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden ph (x32 Version: 1.0.0 - Your Company Name) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.248 - Google, Inc.) Picasa Web Albums Live Publisher (HKLM-x32\...\{5B7F33B3-C72C-4408-8AF9-B855775F51DB}) (Version: 2.4.0 - PicasaWebPublisher) Pinnacle Studio 16 - Install Manager (HKLM-x32\...\{F1886CD7-9F73-417A-92E9-7E0AB0F0E099}) (Version: 16.10.115 - Corel Corporation) Pinnacle Studio 16 (HKLM-x32\...\{284BFDBC-DAC6-43EC-85A8-E1CEC0D3A114}) (Version: 16.1.0.121 - Corel Corporation) Pinnacle Video Driver (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems) POWERPREP II (HKLM-x32\...\{2687340C-C114-47DC-9F0E-C1BA85FEB001}) (Version: 2.00.0000 - ETS) Preset Manager 2.0 (HKLM-x32\...\{FCFE3F81-C977-4D31-877B-2778BB2A02DE}) (Version: 2.0.114 - Sony) Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.005 - Dell Inc.) QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.) Snagit 12 (HKLM-x32\...\{5813f11a-0c26-4d32-880a-463abb90a6a6}) (Version: 12.3.2.2909 - TechSmith Corporation) Snagit 12 (x32 Version: 12.3.2 - TechSmith Corporation) Hidden Soda PDF 6 (HKLM-x32\...\Soda6) (Version: 1.0.18.17237 - LULU Software Limited) Soda PDF 6 View Module (x32 Version: 6.4.8.18629 - LULU Software Limited) Hidden Transition Pack 1 Demo (HKLM\...\Transition Pack 1 Demo) (Version: 3.1.4 - FilmImpact.net) Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{0FA8AE0C-69AE-4F60-A1AB-F79C6BA5A999}) (Version: - Microsoft) Vegas Pro 12.0 (64-bit) (HKLM\...\{59BEEE71-1A39-11E3-8E5C-F04DA23A5C58}) (Version: 12.0.714 - Sony) VLC media player 1.0.1 (HKLM-x32\...\VLC media player) (Version: 1.0.1 - VideoLAN Team) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation) WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\ramya_000\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\ramya_000\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\ramya_000\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\ramya_000\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\ramya_000\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\ramya_000\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\ramya_000\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\ramya_000\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\ramya_000\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\ramya_000\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1210309332-3358197912-3402527016-1002_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\ramya_000\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File ==================== Restore Points ========================= 14-12-2015 09:38:35 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 08:25 - 2015-12-02 17:53 - 00000858 ____A C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.1 mssplus.mcafee.com ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {03344531-A01D-41A7-9B9A-9D428039F91B} - System32\Tasks\Nairoomurmsa => C:\ProgramData\Nairoomurmsa\1.0.6.1\olacirew.exe Task: {067BDFBA-FFA6-45C2-A79B-C8C4489C87E0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.) Task: {0BE25672-7F5E-42ED-9F36-EFB1C09DFD96} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION Task: {0C73EC16-F732-46F3-ABFB-2AB3329AC6FD} - System32\Tasks\impo => C:\Windows\system32\bs1.exe Task: {0E7419C6-A39C-4C3B-978D-44F8B87EF6B3} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION Task: {1871F92B-B741-4F43-9447-300AB2E0B08B} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1210309332-3358197912-3402527016-1002Core => C:\Users\ramya_000\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-11-07] (Dropbox, Inc.) Task: {1CD7DC51-D7EB-4FB5-9B6F-CA0B8352500C} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2015-09-01] (McAfee, Inc.) Task: {1DFE88F9-CCFE-46EC-9EBC-076939E3F94C} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-10-29] (PC-Doctor, Inc.) Task: {2096F0CB-FFBA-4F77-A85D-00ADFD15D739} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation) Task: {26698577-B0B2-4835-8C9A-A81D5605E9CF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {274DB5C4-4E4E-4319-95F8-4EBB0108B269} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {3884CD7A-4F1C-456C-9579-86AFDD57033B} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe [2015-07-21] (McAfee, Inc.) Task: {3F7C3892-4536-4E97-8B2C-6432EE8C5BAD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-08] (Adobe Systems Incorporated) Task: {4341357F-3960-4CEB-8895-2397ACE3687D} - System32\Tasks\Beeyq => C:\PROGRA~1\SHOPPE~1\Inibcu.bat Task: {488742FF-18D1-47DF-B035-4339D812C81E} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1210309332-3358197912-3402527016-1002UA => C:\Users\ramya_000\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-11-07] (Dropbox, Inc.) Task: {4DBE7266-677B-4E06-BA54-B43D71CB38DB} - System32\Tasks\{F4B7EAC0-C5F4-4EC0-8526-2390850FDEC9} => pcalua.exe -a "C:\Program Files\DomaIQ Uninstaller\DomaIQUninstall.exe" Task: {4E32E964-430A-4E7E-91EF-E5E21D134892} - System32\Tasks\Hucbi => C:\PROGRA~1\GROOVE~1\Ubewo.bat Task: {4FC3FB8F-7D9E-4B75-935A-D168CB4B2B78} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION Task: {514D2C0B-A666-4F55-B38C-B86D1D159F9E} - System32\Tasks\import => C:\Windows\system32\Mint.exe Task: {51541C0A-497C-4D83-B836-5CDF464BC33D} - System32\Tasks\TopArcadeHits => C:\Users\ramya_000\AppData\Local\TopArcadeHits\updater.exe Task: {57AB79CC-19E3-4EFB-8601-9DDE747EF14B} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft) Task: {688422FE-41EF-406F-9226-FBA1ABE7E8D3} - System32\Tasks\MyDailyBackup => C:\Windows\system32\winupd.exe <==== ATTENTION Task: {69338FEA-F81D-40D9-AFB8-5DDC8CAB3C16} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-03-04] (Dell Inc.) Task: {6DD78B84-6B13-464F-A714-646FA0E09815} - System32\Tasks\{7C5E8807-35CA-4750-9D6D-04B584691151} => pcalua.exe -a C:\Users\ramya_000\Downloads\karinor21rt.exe -d C:\Users\ramya_000\Downloads Task: {789FA9ED-ED84-40FA-9470-312D28DF2340} - System32\Tasks\GoogleUp => C:\Windows\system32\hsysinfo.exe Task: {81948D54-56E4-4C4A-92B1-7E8A02845D83} - System32\Tasks\TechSmith Updater => C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [2014-07-31] (TechSmith Corporation) Task: {83952B6B-98A7-4343-ABE5-00F9D9869546} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-10-29] (PC-Doctor, Inc.) Task: {8E2CA03C-10D9-4A5F-B5DE-92F0E4573C8D} - System32\Tasks\DataWiper => c:\programdata\{8f2499ef-9b77-41a0-8f24-499ef9b767be}\samsung_usb_driver_for_mobile_phones_v1.5.33.0.exe <==== ATTENTION Task: {90CB3C13-2C2F-4475-8B8E-BA4C290A9FE9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION Task: {93EDE9E8-9039-434B-B533-DBF015A7B4AA} - System32\Tasks\Seagate_Install_Launch => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Dashboard.exe Task: {A05A5E63-80CA-42BE-9354-7143A8839AC5} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {A7887504-6CDE-4E21-9B4F-D6F98E137E3F} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe Task: {AA41E4A5-DF48-41F3-9130-0E6964E7F7BD} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation) Task: {AA8ED5F0-1CA4-49AC-BC63-4B85C46F8360} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent Task: {B2124124-F628-4AC5-B37C-701611C73FDD} - System32\Tasks\win => C:\Windows\system32\win.exe Task: {B2CC6303-BCC2-4EC1-BB20-99F81701CFD6} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation) Task: {B574BF7D-ACA9-4C10-9D37-D58ECD90C1EC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION Task: {C9E32032-3A3C-4B47-8D64-5098D13E9C4F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-09] (Microsoft Corporation) Task: {CA62C5AA-3144-4402-B3B2-8E1CC9E51CE7} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation) Task: {D9B12BC4-DD88-41B1-BE91-9354D7B652EB} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-ramyaramkumar88@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21] (Adobe Systems Incorporated) Task: {DAB52155-10F6-41F8-AC20-6E9D15F6FEA0} - System32\Tasks\Googleuptodate => C:\Windows\system32\Wimboldon.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\DataWiper.job => c:\programdata\{8f2499ef-9b77-41a0-8f24-499ef9b767be}\samsung_usb_driver_for_mobile_phones_v1.5.33.0.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1210309332-3358197912-3402527016-1002Core.job => C:\Users\ramya_000\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1210309332-3358197912-3402527016-1002UA.job => C:\Users\ramya_000\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\TopArcadeHits.job => C:\Users\ramya_000\AppData\Local\TopArcadeHits\updater.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\ramya_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> "microsoft-edge:hxxp://www%2dsearching.com/?prd=set_epc&s=FCAzftpbl2,c7fab034-7633-4465-ad87-2520a94809c0," <==== ATTENTION ==================== Loaded Modules (Whitelisted) ============== 2015-07-10 06:00 - 2015-07-10 06:00 - 00028160 _____ () C:\WINDOWS\SYSTEM32\efsext.dll 2015-08-05 17:07 - 2015-07-14 21:04 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll 2013-05-15 13:48 - 2012-10-04 18:49 - 00087152 _____ () C:\WINDOWS\System32\cpwmon64.dll 2015-08-18 16:28 - 2015-08-11 04:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll 2015-12-09 22:00 - 2015-12-09 22:00 - 00222208 _____ () C:\Users\ramya_000\AppData\Local\Temp\nsn547B.tmp 2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-10-13 04:45 - 2015-10-13 04:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2012-11-11 21:25 - 2012-04-24 21:43 - 00254512 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe 2014-09-19 13:21 - 2014-09-19 13:21 - 00266240 _____ () C:\Program Files\sarconsogulpe\sarconsogulpe.exe 2015-09-30 18:12 - 2015-09-17 01:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-09-30 18:12 - 2015-09-17 01:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-09-15 13:58 - 2015-09-15 13:58 - 08901184 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll 2015-09-30 18:12 - 2015-09-17 00:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-12-09 16:58 - 2015-11-24 23:20 - 06569472 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-12-09 16:57 - 2015-11-24 23:17 - 00471040 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-12-09 16:57 - 2015-11-24 23:17 - 01808384 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-09-30 18:12 - 2015-09-17 00:43 - 02274816 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-12-09 17:00 - 2015-12-09 17:01 - 00012800 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2015-12-09 17:00 - 2015-12-09 17:01 - 11542016 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2015-12-02 18:10 - 2015-12-02 18:10 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2015-12-03 03:56 - 2015-12-03 03:56 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\65607c70ae367cc924192920dc5ed071\PSIClient.ni.dll 2012-11-11 21:19 - 2012-06-25 13:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2012-11-11 21:24 - 2012-06-07 22:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll 2012-06-08 12:34 - 2012-06-08 12:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll 2015-03-11 16:18 - 2015-03-11 16:18 - 00050688 _____ () C:\Program Files (x86)\TechSmith\Snagit 12\ScrollingCapture.dll 2015-03-11 16:18 - 2015-03-11 16:18 - 02099200 _____ () C:\Program Files (x86)\TechSmith\Snagit 12\opencv_core249.dll 2015-03-11 16:18 - 2015-03-11 16:18 - 01914368 _____ () C:\Program Files (x86)\TechSmith\Snagit 12\opencv_imgproc249.dll 2015-05-31 12:53 - 2015-05-31 12:53 - 03925104 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll 2015-09-15 13:58 - 2015-09-15 13:58 - 08901184 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\Temp:4B7BEAFF AlternateDataStreams: C:\ProgramData\Temp:96D0C06F AlternateDataStreams: C:\Users\ramya_000\Cookies:1NL6Q18Ri8XTbsBEaqe2TCRlXkV7 ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1210309332-3358197912-3402527016-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\ramya_000\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\kuttyjoey.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\Run: => "SmartAudio" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "Sound+" HKLM\...\StartupApproved\Run32: => "IAStorIcon" HKLM\...\StartupApproved\Run32: => "RemoteControl10" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKLM\...\StartupApproved\Run32: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "NielsenOnline" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run32: => "mcpltui_exe" HKLM\...\StartupApproved\Run32: => "Adobe ARM" HKLM\...\StartupApproved\Run32: => "popup" HKU\S-1-5-21-1210309332-3358197912-3402527016-1002\...\StartupApproved\StartupFolder: => "OpenOffice.org 3.4.1.lnk" HKU\S-1-5-21-1210309332-3358197912-3402527016-1002\...\StartupApproved\StartupFolder: => "Dropbox.lnk" HKU\S-1-5-21-1210309332-3358197912-3402527016-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_DAEF4915F68B97DB6793E91E064628FB" HKU\S-1-5-21-1210309332-3358197912-3402527016-1002\...\StartupApproved\Run: => "Birds" HKU\S-1-5-21-1210309332-3358197912-3402527016-1002\...\StartupApproved\Run: => "iCloudServices" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{48D04287-2872-4DDD-AA26-747D2C123054}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe FirewallRules: [{54372ED7-29C5-417B-B02D-F4537FE02686}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe FirewallRules: [{200FF081-68A6-4B8D-B2F2-46C6836D2F92}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe FirewallRules: [{FE018E34-2BCF-4454-AE88-9C8E271F4073}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe FirewallRules: [{C5D97CEE-2F53-4010-998B-BDF80521E752}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{5856B928-522C-43A9-98F1-860FBECF9FA7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{31B066A8-A187-4975-8606-82BEAD98445B}] => (Allow) LPort=8298 FirewallRules: [{8ED934A4-084C-458E-926A-B889C5B503F6}] => (Allow) LPort=8888 FirewallRules: [{4FA9D4FE-BA8F-43F4-8A61-6712EBEB615C}] => (Allow) LPort=8888 FirewallRules: [{B4ECF2C7-6506-4D0B-B13F-1E96B5ED9ACC}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{CB3F9924-A53D-4A7B-AC60-3A6B50C2A2D1}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{DC59E32F-1DFE-4029-8AF9-6CB9E42429ED}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{C99B31E4-23FF-4667-8FEB-81D723005BFE}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{6EA80178-B0AB-4471-B48C-8AE30C59F865}] => (Allow) C:\Windows\SysWOW64\dllhost.exe FirewallRules: [{C35B5E4C-9985-4F29-B37E-9AF0B278C66D}] => (Allow) C:\Windows\SysWOW64\dllhost.exe FirewallRules: [{F278492F-2A89-4976-8863-DB39A9BDC3E4}] => (Allow) C:\Program Files (x86)\HP\Unified Functional Testing\bin\AQTRmtAgent.exe FirewallRules: [{35C3A7D1-CC37-462F-8C34-AECE7F0DB2C7}] => (Allow) C:\Program Files (x86)\HP\Unified Functional Testing\bin\AQTRmtAgent.exe FirewallRules: [{CE50015A-2D1D-44C7-8F56-C733DDDF3C6A}] => (Allow) LPort=135 FirewallRules: [{739903AE-72A5-4856-AADF-B6CE101610D9}] => (Allow) C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{01451279-7C6A-441D-B104-D940E356CD67}] => (Allow) C:\Users\ramya_000\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{A2339812-FE01-49A4-8D43-5639EAEFB081}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\UMI.exe FirewallRules: [{AD7F13C9-C0A7-4B4F-9520-83F11C714E17}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\UMI.exe FirewallRules: [{27E4AE1C-E223-46BC-AEB9-E9586BF6252F}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\NGStudio.exe FirewallRules: [{9889B4ED-AF93-4F2E-8A46-8EEC2E08870A}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\NGStudio.exe FirewallRules: [{851948C0-4711-404B-897C-B7550E0E5137}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\RM.exe FirewallRules: [{09EBE334-DC62-4807-ABD0-E6C5C9E07600}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\RM.exe FirewallRules: [{3026A4BC-5363-4614-A958-D0FD3E8882DE}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe FirewallRules: [{FC0AD4F9-198A-401D-8A14-BB23A6534C6C}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe FirewallRules: [{E7CB7005-9721-4F8F-8E97-764C2FAA4ED2}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe FirewallRules: [{221BB894-4FDE-4E32-B0F9-0646F14B4017}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe FirewallRules: [{7472A744-B0F5-4834-BF55-F1F6157FCD48}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe FirewallRules: [{9A472EEA-A8D1-4ED6-AF9A-641D73F777FB}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe FirewallRules: [{488A7B0A-6BDD-49C8-9697-53F5DD01E4F0}] => (Allow) C:\Users\ramya_000\AppData\Roaming\Zoom\bin\Zoom.exe FirewallRules: [{8C444DE8-C4FF-4222-84AC-230C29AA9708}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll FirewallRules: [{31AAE272-09FD-4B12-B825-0BC7D5220094}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll FirewallRules: [{0F03B71B-B5B8-45CB-A8B8-DAFA64D3D10E}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll FirewallRules: [{E4EBF582-13FA-4630-B016-6B309D71A03C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll FirewallRules: [{48C00A2E-FA24-4398-8936-F2F230131506}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll FirewallRules: [{D1FBCCF8-AE80-41C2-9CBA-45FCE8310450}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll FirewallRules: [{EF2E8133-4422-4AAB-8B0C-A2A9B6D71876}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll FirewallRules: [{86A4CC96-38AD-467D-9558-394D0BA8A842}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll FirewallRules: [{57815B81-E6EA-4BBA-AF3A-2D296A5BB64E}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll FirewallRules: [{AC1C9BED-226A-43E8-B1BD-BDDE1CE0CA82}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll FirewallRules: [{E761DC75-FEF6-44D7-BBB2-B9526E0BFC3C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll FirewallRules: [{3719D3F2-2840-41F8-B17D-EBDDF42F2D78}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll FirewallRules: [{F8DC620D-CDDB-46A6-A959-EF398D52A5B3}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe FirewallRules: [{A5FDE60A-8E98-4450-91AB-1DCE965AAE8C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe FirewallRules: [{963B9718-6F9F-4C78-85B0-1E03FA7E2E2C}] => (Allow) C:\Users\rumzie\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{627687BF-0A0F-40FB-A039-A2A5D0AF2084}] => (Allow) C:\Users\rumzie\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{FBF782A2-A4E1-4F0F-BB58-106129C2E13B}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe FirewallRules: [{C4023A81-5A89-4DBD-A601-3BF6E3279E37}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe FirewallRules: [{6BFCEF30-0906-4D44-8DA4-792521A4CCAE}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe FirewallRules: [{808A6986-C4AE-4133-B517-E3529679028D}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe FirewallRules: [{1DDC9023-3531-4424-A2DB-6A1198B73528}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{C848E7A9-5D23-4656-BB11-9B957F8E28C6}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{79092531-44DC-480B-A281-6DEEAE9E5792}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{37F1780D-E06C-45A3-9194-ADA7C00C4FDF}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{AC14739B-DB5D-4E6B-A565-0F4684B20B39}] => (Allow) C:\Users\ramya_000\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{AAAB8BA0-6B51-472C-A27C-68C3DB26C56D}] => (Allow) C:\Users\ramya_000\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9EDF58DD-CD80-41F8-99F5-77BEF4D2DB37}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe FirewallRules: [{096C198D-4E07-4ED1-A5A5-C739F3D38CE6}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe FirewallRules: [{6E8B9E00-A418-458F-8AF1-A23348C6E3CC}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe FirewallRules: [{857BAC47-5542-4200-A161-DDD53B06F109}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE FirewallRules: [{B1B59137-40B8-4319-B650-5F3DAB6102DA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe FirewallRules: [{63EE22BA-7A88-407B-86C1-268AF9042A10}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE FirewallRules: [{14A15E76-9A52-4E47-BAE7-281220F62B35}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{85D00302-C749-4D1E-B34F-6F24406D536A}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{EB1CA1C1-5130-4E52-8A97-2E3565EDBEF8}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{44FD2830-9D3B-448D-A3FF-B8FC69DF9B49}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{CACED799-84D3-406C-87AE-3C98E8B23C75}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{7FFB465A-CE59-412B-BCA9-4F2851E1CC3E}] => (Allow) LPort=2869 FirewallRules: [{1EC7A4C9-D474-4AB2-99BF-72ADC11A1E2F}] => (Allow) LPort=1900 FirewallRules: [{71441360-31EF-4CF2-9C00-35638ECAF9E8}] => (Allow) C:\Users\ramya_000\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{2EF66BC1-B3B8-4C10-A707-430DD0C2F67C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{00AABC69-00E1-4F7B-B4B3-7B348460AD2A}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{3AA115EC-80D7-42BB-A073-16F95A76F7F7}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{9DBFB5A0-37E0-435A-855C-A2E0EA247CDB}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{1C332CE7-3C9E-4196-91CD-6690C7C10B52}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{D579C33B-39A3-4BB2-AD11-2ECB8231F8B7}] => (Allow) 㩃啜敳獲牜浡慹た〰䅜灰慄慴剜慯業杮獜湳獜湳攮數 FirewallRules: [{0247949E-8B8E-4669-B16F-0BE34F8D3D6B}] => (Allow) 㩃啜敳獲牜浡慹た〰䅜灰慄慴剜慯業杮獜湳畜摰獳⹮硥e FirewallRules: [{D907CD48-BC42-4203-B23F-38B8A56DA479}] => (Allow) 㩃停潲牧浡䘠汩獥⠠㡸⤶睜湩敷畢敳睜湩敷畢敳攮數 FirewallRules: [{D86ACB9F-3BD8-4A5D-AA3E-C77F8EF78868}] => (Allow) 㩃停潲牧浡䘠汩獥⠠㡸⤶睜湩敷畢敳睜湩敷畢敳⹟硥e ==================== Faulty Device Manager Devices ============= Name: USB-IF xHCI USB Host Controller Description: USB-IF xHCI USB Host Controller Class Guid: {8a2edc79-c759-46f2-88af-9d4efe3b5eee} Manufacturer: Intel Corporation Service: XHCIPort Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver ==================== Event log errors: ========================= Application errors: ================== Error: (12/14/2015 03:13:21 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: AUDIODG.EXE, version: 10.0.10240.16384, time stamp: 0x559f3a8d Faulting module name: CX64AP71.dll, version: 4.80.70.0, time stamp: 0x501ae8c8 Exception code: 0xc0000005 Fault offset: 0x00000000000ff9f9 Faulting process id: 0x1a8c Faulting application start time: 0xAUDIODG.EXE0 Faulting application path: AUDIODG.EXE1 Faulting module path: AUDIODG.EXE2 Report Id: AUDIODG.EXE3 Faulting package full name: AUDIODG.EXE4 Faulting package-relative application ID: AUDIODG.EXE5 Error: (12/14/2015 03:13:21 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: AUDIODG.EXE, version: 10.0.10240.16384, time stamp: 0x559f3a8d Faulting module name: CX64AP71.dll, version: 4.80.70.0, time stamp: 0x501ae8c8 Exception code: 0xc0000005 Fault offset: 0x00000000000ff9f9 Faulting process id: 0x1a1c Faulting application start time: 0xAUDIODG.EXE0 Faulting application path: AUDIODG.EXE1 Faulting module path: AUDIODG.EXE2 Report Id: AUDIODG.EXE3 Faulting package full name: AUDIODG.EXE4 Faulting package-relative application ID: AUDIODG.EXE5 Error: (12/14/2015 03:13:21 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: AUDIODG.EXE, version: 10.0.10240.16384, time stamp: 0x559f3a8d Faulting module name: CX64AP71.dll, version: 4.80.70.0, time stamp: 0x501ae8c8 Exception code: 0xc0000005 Fault offset: 0x00000000000ff9f9 Faulting process id: 0x19a8 Faulting application start time: 0xAUDIODG.EXE0 Faulting application path: AUDIODG.EXE1 Faulting module path: AUDIODG.EXE2 Report Id: AUDIODG.EXE3 Faulting package full name: AUDIODG.EXE4 Faulting package-relative application ID: AUDIODG.EXE5 Error: (12/14/2015 03:13:19 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: AUDIODG.EXE, version: 10.0.10240.16384, time stamp: 0x559f3a8d Faulting module name: CX64AP71.dll, version: 4.80.70.0, time stamp: 0x501ae8c8 Exception code: 0xc0000005 Fault offset: 0x00000000000ff9f9 Faulting process id: 0x1830 Faulting application start time: 0xAUDIODG.EXE0 Faulting application path: AUDIODG.EXE1 Faulting module path: AUDIODG.EXE2 Report Id: AUDIODG.EXE3 Faulting package full name: AUDIODG.EXE4 Faulting package-relative application ID: AUDIODG.EXE5 Error: (12/14/2015 11:41:24 AM) (Source: Perflib) (EventID: 1010) (User: ) Description: C:\Windows\System32\winspool.drvSpooler8 Error: (12/14/2015 11:37:28 AM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (6268) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032. Error: (12/14/2015 11:37:28 AM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (6268) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ". The create file operation will fail with error -1032 (0xfffffbf8). Error: (12/14/2015 11:37:17 AM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (6268) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032. Error: (12/14/2015 11:37:17 AM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (6268) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ". The create file operation will fail with error -1032 (0xfffffbf8). Error: (12/14/2015 11:37:07 AM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (6268) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032. System errors: ============= Error: (12/14/2015 03:19:19 PM) (Source: DCOM) (EventID: 10005) (User: MITI) Description: 2mcpltsvcUnavailable{20966775-18A4-4299-B8E3-772C336B52A7} Error: (12/14/2015 03:19:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The McAfee Platform Services service failed to start due to the following error: %%2 Error: (12/14/2015 03:19:19 PM) (Source: DCOM) (EventID: 10005) (User: MITI) Description: 2mcpltsvcUnavailable{20966775-18A4-4299-B8E3-772C336B52A7} Error: (12/14/2015 03:19:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The McAfee Platform Services service failed to start due to the following error: %%2 Error: (12/14/2015 03:19:19 PM) (Source: DCOM) (EventID: 10010) (User: MITI) Description: {C98F04D7-CD30-4BB0-B7D7-8DD7448520F2} Error: (12/14/2015 03:17:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The McAfee VirusScan Announcer service failed to start due to the following error: %%2 Error: (12/14/2015 03:17:19 PM) (Source: DCOM) (EventID: 10010) (User: MITI) Description: {C98F04D7-CD30-4BB0-B7D7-8DD7448520F2} Error: (12/14/2015 03:15:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The McAfee VirusScan Announcer service failed to start due to the following error: %%2 Error: (12/14/2015 03:15:19 PM) (Source: DCOM) (EventID: 10005) (User: MITI) Description: 2mcpltsvcUnavailable{20966775-18A4-4299-B8E3-772C336B52A7} Error: (12/14/2015 03:15:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The McAfee Platform Services service failed to start due to the following error: %%2 CodeIntegrity: =================================== Date: 2015-12-09 21:03:43.673 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Sound+\SoundP.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz Percentage of memory in use: 37% Total physical RAM: 8061.27 MB Available physical RAM: 5050.47 MB Total Virtual: 16253.27 MB Available Virtual: 13165.9 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:917.67 GB) (Free:626.85 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 90D712A6) Partition: GPT. ==================== End of Addition.txt ============================