Additional scan result of Farbar Recovery Scan Tool (x64) Version:04-10-2015
Ran by venkat (2017-01-12 22:53:42)
Running from C:\Users\venkat\Desktop\New folder
Windows 7 Home Premium Service Pack 1 (X64) (2010-01-13 22:08:49)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3623452270-2088294941-995359613-500 - Administrator - Disabled)
Apoorva (S-1-5-21-3623452270-2088294941-995359613-1001 - Administrator - Enabled) => C:\Users\Apoorva
Guest (S-1-5-21-3623452270-2088294941-995359613-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3623452270-2088294941-995359613-1002 - Limited - Enabled)
venkat (S-1-5-21-3623452270-2088294941-995359613-1003 - Administrator - Enabled) => C:\Users\venkat
__vmware_user__ (S-1-5-21-3623452270-2088294941-995359613-1007 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 24 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Reader 9.1 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.5 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.5.9.620 - Adobe Systems, Inc.)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.0 - Atheros)
BitTorrent (HKU\S-1-5-21-3623452270-2088294941-995359613-1003\...\BitTorrent) (Version: 7.9.7.42331 - BitTorrent Inc.)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cisco WebEx Meetings (HKU\S-1-5-21-3623452270-2088294941-995359613-1003\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC)
CodeSite 3.0.1 Client Tools (HKLM-x32\...\CodeSite 3.0.1 Client Tools) (Version: 3.0 - Raize Software, Inc.)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.98.60.50 - Conexant)
CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.3101 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3115 - CyberLink Corp.)
D4300 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
DJ_SF_03_D4300_Software_Min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
FirstClass® Client (HKLM-x32\...\{2869279D-7AE2-4A13-96B8-46078BA3F75B}) (Version: 11.0 (build 11.005) - Open Text Corporation.)
FlashGet 3.3 (HKLM-x32\...\FlashGet 3.3) (Version: 3.3.0.1092 -
http://www.FlashGet.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HDAUDIO Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDA_HSF) (Version: 7.80.4.50 - Conexant Systems)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Advisor (HKLM-x32\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.9652.3188 - Hewlett-Packard)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Deskjet D4300 Printer Driver Software 13.0 Rel. 3 (HKLM\...\{382300D4-777B-4233-A98C-99EA0F6B881F}) (Version: 13.0 - HP)
HP DVD Play 3.7 (HKLM-x32\...\{45D707E9-F3C4-11D9-A373-0050BAE317E1}) (Version: 3.7.0.6623 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.71 - WildTangent)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.15.1 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}) (Version: 1.2.3220.3079 - Hewlett-Packard)
HP Smart Web Printing (HKLM-x32\...\HP Smart Web Printing) (Version: 131.1.35898 - Hewlett-Packard)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Support Assistant (HKLM-x32\...\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC}) (Version: 8.2.8.25 - HP)
HP Support Solutions Framework (HKLM-x32\...\{5F084DD8-AF2C-4004-9C92-820C32E4BD55}) (Version: 12.4.18.7 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP User Guides 0156 (HKLM-x32\...\{64A7418C-6BD4-48BE-A2E3-CAEC3BCD9E81}) (Version: 1.02.0001 - Hewlett-Packard)
HP Wireless Assistant (HKLM-x32\...\{4E432692-A736-4F77-AF77-F9078CF88D31}) (Version: 3.50.11.2 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.2202 - Intel Corporation)
Java(TM) 6 Update 14 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416014FF}) (Version: 6.0.140 - Sun Microsystems, Inc.)
Java(TM) 6 Update 24 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216014FF}) (Version: 6.0.240 - Sun Microsystems, Inc.)
Junk Mail filter update (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1913 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.1913 - CyberLink Corp.) Hidden
LightScribe System Software (HKLM-x32\...\{82EF29B1-9B60-4142-A155-0599216DD053}) (Version: 1.18.6.1 - LightScribe)
Malwarebytes version 3.0.5.1299 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.5.1299 - Malwarebytes)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
McAfee Virtual Technician (HKLM-x32\...\McAfee Virtual Technician) (Version: 8.1.0.174 - McAfee, Inc.)
Metric Collection SDK (x32 Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.3 (HKLM-x32\...\{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}) (Version: 2.0.2313.0 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM-x32\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM-x32\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{6D52C408-B09A-4520-9B18-475B81D393F1}) (Version: 08.05.0818 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.2.2 - Notepad++ Team)
PASW Statistics 18 (HKLM-x32\...\{C25215FC-5900-48B0-B93C-8D3379027312}) (Version: 18.0.0 - SPSS Inc.)
PostgreSQL 9.6 (HKLM\...\PostgreSQL 9.6) (Version: 9.6 - PostgreSQL Global Development Group)
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3101 - CyberLink Corp.)
Power2Go (x32 Version: 6.0.3101 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3101 - CyberLink Corp.)
PowerDirector (x32 Version: 7.0.3101 - CyberLink Corp.) Hidden
PowerRecover (x32 Version: 5.5.1923 - CyberLink Corp.) Hidden
QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden
Realtek 8136 8168 8169 Ethernet Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0007 - Realtek)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7100.30093 - Realtek Semiconductor Corp.)
RogueKiller version 12.9.2.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.9.2.0 - Adlice Software)
RPS CRT (x32 Version: 9.0.40 - Bell) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.650.0 - SAMSUNG Electronics Co., Ltd.)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.6.8442 - Skype Technologies S.A.)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.2.0 - Synaptics Incorporated)
TeamPostgreSQL 1.07 (HKLM-x32\...\0115-9748-2388-7305) (Version: 1.07 - Webworks SA)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VCRedistSetup (x32 Version: 1.0.0 - Nero AG) Hidden
VEX Programming Driver 64-bit (HKLM-x32\...\{00B74926-F27A-4661-8827-6BFCAFD35AF0}) (Version: 1.0.0.2 - VEX Robotics, Inc.)
VEXnet Firmware Upgrade Utility (HKLM-x32\...\VEXnet Firmware Upgrade Utility_is1) (Version: - )
VLC media player 1.1.7 (HKLM-x32\...\VLC media player) (Version: 1.1.7 - VideoLAN)
VMware Workstation (HKLM-x32\...\{A3FF5CB2-FB35-4658-8751-9EDE1D65B3AA}) (Version: 6.5.1.5078 - VMware, Inc.)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live OneCare safety scanner (HKLM-x32\...\Windows Live OneCare safety scanner) (Version: - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
07-01-2017 13:31:11 Removed Nero 8 Essentials. Available with Windows Installer version 1.2 and later.
07-01-2017 14:06:24 Removed Toad for Oracle
10-01-2017 15:57:07 JRT Pre-Junkware Removal
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-01-05 16:17 - 2017-01-10 21:13 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {04C79267-0EC4-4985-882D-E7E935DB911B} - System32\Tasks\{F2F30F23-07ED-45A3-849C-B55476ECCFAF} => C:\Program Files (x86)\FirstClass\fcc32.exe [2011-02-15] (Open Text Inc.)
Task: {0E1DB523-5AB8-4747-85EA-BEEB91AA4867} - System32\Tasks\{E7958005-452C-41D7-9DF8-14E78BEBCCB6} => Chrome.exe
http://ui.skype.com/ui/0/5.3.0.116....google-chrome:notoffered;ienotdefaultbrowser2
Task: {13F33A43-6318-47FD-A3C7-16E5BE070570} - System32\Tasks\{05D8699E-CC8C-47DF-99BE-26F68EB63901} => pcalua.exe -a F:\venkat\DATA\OracleXEClient.exe -d F:\venkat\DATA
Task: {1AA42887-21B2-4795-BF03-B9A3BD780FAF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-07-07] (HP Inc.)
Task: {1FB92414-E13F-45B9-A2A4-B2C29EEA3D05} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)
Task: {21D3B24C-5B7C-460F-B519-25DA61FEF396} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-08] (Hewlett-Packard)
Task: {3AB3CA47-0F53-487F-9244-90E5D4042065} - System32\Tasks\{EA460A63-A1D1-4BFF-AD39-98B87763B670} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2016-11-15] (Skype Technologies S.A.)
Task: {400A1DFE-1699-46DC-AD0E-AB676CE8C7D3} - System32\Tasks\{FAF9B758-61CE-4ECD-BF20-E49B8D2241F6} => pcalua.exe -a C:\Users\Apoorva\Downloads\Shockwave_Installer_Slim.exe -d C:\Users\Apoorva\Downloads
Task: {4ACE4019-02FA-4113-AAC4-5A1139E418F3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3623452270-2088294941-995359613-1001UA => C:\Users\Apoorva\AppData\Local\Google\Update\GoogleUpdate.exe [2016-05-18] (Google Inc.)
Task: {4B95C303-C0C1-4521-936B-3EB156890FAB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-02-17] (Hewlett-Packard)
Task: {4D45399D-586E-42BF-BCD2-573CAB8B6119} - System32\Tasks\{6823A56D-DDC6-4B70-B152-0D965D06C1A3} => F:\adobe-master-cs4-keygen.exe
Task: {5309CFE5-ED98-40BB-B579-0914BAE25204} - System32\Tasks\{A86CC31E-76A7-4341-89DD-75CE59D7457D} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{5B35C417-2649-11D6-83D1-0050FC01225C}\setup.exe" -c -runfromtemp -l0x0009 -uninst -removeonly
Task: {53DF5D7F-66C9-4DE1-AE88-D45C11632981} - System32\Tasks\{97AE6B8B-F48F-4D2B-8286-745C193C3C2C} => F:\adobe-master-cs4-keygen.exe
Task: {65A3F676-92BC-4873-9F12-6B183064BC8B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-17] (Hewlett-Packard Company)
Task: {761F6C41-F669-4B38-AB34-C0E89AB3028A} - System32\Tasks\{5FE19C52-A260-4A87-AC2C-1DB8E2FD4111} => pcalua.exe -a "C:\Program Files (x86)\Windows Live Safety Center\wlschost.exe" -c -Uninstall
Task: {7A746220-D1E7-4DE8-B7C1-2A98F0C76856} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3623452270-2088294941-995359613-1001Core => C:\Users\Apoorva\AppData\Local\Google\Update\GoogleUpdate.exe [2016-05-18] (Google Inc.)
Task: {7B23C974-6F2B-4C8D-9E6B-2F4593FB6682} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {7B261AA9-7538-43ED-9927-C498780007AF} - System32\Tasks\ba30338763033876 => C:\Program Files (x86)\Cappuccinos\intravenous.exe
Task: {80BBF6EC-4102-4BBA-B843-3A55F21260AA} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {84F43933-098E-4187-BC12-ED32FB2D859B} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-10-11] (McAfee, Inc.)
Task: {8AC9B359-2774-4C42-945D-96972DDDD3C2} - System32\Tasks\{A62FE67E-04F7-4FA7-ADAE-6AAE7C264E12} => F:\adobe-master-cs4-keygen.exe
Task: {9315B6A8-3E47-463E-9AEF-7CA62B1EEDC3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-06-15] (HP Inc.)
Task: {A100F944-0708-46F3-B701-70A612F256F7} - System32\Tasks\McAfeeLogon => C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe
Task: {A8C5C8E1-A339-4625-9317-2950683F350F} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-06-15] (HP Inc.)
Task: {D2D44C00-FD62-4039-AE4B-FA5E4BF9C508} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {D92E1664-B5CB-4742-B020-DA5C814F91B3} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {DB481021-DDF9-4603-B123-946F004563B8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {DCDC0242-F5FE-48C2-8944-D77046A0C242} - System32\Tasks\{B6493AA2-6DCF-4DB4-8540-1313591AD2B7} => F:\adobe-master-cs4-keygen.exe
Task: {E3E4A235-E952-40C3-85FC-2789F325AAE5} - System32\Tasks\bak3033876k3033876 => C:\Program Files (x86)\leander\leander.exe
Task: {EF3D6DEF-1AE9-4A8B-8A71-6114B5E4CBF2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-17] (Hewlett-Packard Company)
Task: {F5ED44E4-7C17-4D17-AC67-BD0DA4B35077} - System32\Tasks\{420B1986-45F9-4D13-9576-68D05B728CDD} => F:\adobe-master-cs4-keygen.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3623452270-2088294941-995359613-1001Core.job => C:\Users\Apoorva\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3623452270-2088294941-995359613-1001UA.job => C:\Users\Apoorva\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2016-12-29 23:23 - 2016-10-25 05:08 - 00182784 _____ () C:\Program Files\PostgreSQL\9.6\bin\LIBPQ.dll
2009-08-21 13:55 - 2009-01-21 13:47 - 00247152 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2016-12-29 23:28 - 2016-08-01 05:29 - 02264576 _____ () C:\Program Files\PostgreSQL\9.6\bin\libxml2.dll
2016-12-31 15:19 - 2016-10-06 23:26 - 00197120 _____ () C:\Program Files (x86)\TeamPostgreSQL\misc\teampostgresql-service.exe
2017-01-07 13:43 - 2017-01-11 17:44 - 02259232 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-01-10 13:06 - 2017-01-11 17:44 - 02247632 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2016-07-23 04:23 - 2010-03-15 00:58 - 00052224 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2016-11-27 12:55 - 2016-11-27 12:55 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2009-07-01 17:44 - 2009-07-01 17:44 - 00632888 _____ () C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
2016-12-14 15:57 - 2016-12-08 03:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-14 15:57 - 2016-12-08 03:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2017-01-12 22:23 - 2017-01-12 22:23 - 00852798 _____ () C:\Users\venkat\Downloads\SecurityCheck.exe
2017-01-11 11:22 - 2017-01-11 11:22 - 31167576 _____ () C:\Users\venkat\AppData\Local\Google\Chrome\User Data\PepperFlash\24.0.0.194\pepflashplayer.dll
2008-10-28 12:38 - 2008-10-28 12:38 - 00970288 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2008-10-28 12:38 - 2008-10-28 12:38 - 00068656 _____ () C:\Program Files (x86)\VMware\VMware Workstation\zlib1.dll
2011-03-28 19:40 - 2006-05-25 15:20 - 00241664 _____ () C:\Program Files (x86) (x86)\Lexmark 3400 Series\iptk.dll
2017-01-09 13:37 - 2017-01-09 13:36 - 00204800 _____ () C:\Program Files (x86)\Notepad++\plugins\ComparePlugin.dll
2016-11-27 12:55 - 2016-11-27 12:55 - 00021680 _____ () C:\Program Files (x86)\Notepad++\plugins\NppExport.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3623452270-2088294941-995359613-1003\...\kuaiche.com -> hxxp://software.kuaiche.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3623452270-2088294941-995359613-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\venkat\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 209.18.47.61 - 209.18.47.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{AEFE6630-389E-44DF-82F3-9485A7A6FD6A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector\PDR.EXE
FirewallRules: [{CD3BBA8F-D17B-418B-B56F-F8B2608FFAAB}] => (Allow) C:\Program Files (x86)\HP\QuickPlay\QP.exe
FirewallRules: [{3D774B82-31A0-4C83-881F-4A06ED7619BA}] => (Allow) C:\Program Files (x86)\HP\QuickPlay\QPService.exe
FirewallRules: [{14C6C2AC-2EDB-4705-9A83-364F97376224}] => (Allow) C:\Users\Apoorva\Downloads\Bitcomet\BitComet.exe
FirewallRules: [{73288AF7-2806-4D81-A131-053D89D47F0C}] => (Allow) C:\Users\Apoorva\Downloads\Bitcomet\BitComet.exe
FirewallRules: [{47FC9419-5892-47CA-B917-915EA4362EA5}] => (Allow) C:\Program Files (x86)\Samsung\Samsung New PC Studio\npsasvr.exe
FirewallRules: [{9F022428-26EC-44CC-A40F-F6E7C0191156}] => (Allow) C:\Program Files (x86)\Samsung\Samsung New PC Studio\npsasvr.exe
FirewallRules: [{0C4814E0-119B-4F84-9444-7989C1985B37}] => (Allow) C:\Program Files (x86)\Samsung\Samsung New PC Studio\npsvsvr.exe
FirewallRules: [{F3DC371C-4528-494E-8DE9-5C35ED44EAD1}] => (Allow) C:\Program Files (x86)\Samsung\Samsung New PC Studio\npsvsvr.exe
FirewallRules: [{46D10E6C-F4DC-4E78-9BCC-E9DAF8919A5F}] => (Allow) C:\Program Files (x86)\BitComet\BitComet.exe
FirewallRules: [{F48B909D-B583-42E0-AF37-3197053845FA}] => (Allow) C:\Program Files (x86)\BitComet\BitComet.exe
FirewallRules: [{7393CE50-32F0-48CC-A376-EC1B9F59E385}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{ADF450EF-2A82-4C17-AC44-006380307EC6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{01AD65CD-19EA-4FA8-A727-7F95AF4E8574}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{DEE232A2-F0BE-4EB1-9E1C-0109C368E6EF}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{C5D0C97C-7162-477A-902E-C069810DF6C0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{8662FEFB-4A27-4D64-A82D-73ABE4C1C88A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{6BF1A9AF-9E34-477A-8CF1-7B41546E1E47}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{17ED5779-2164-46E0-8E9F-01A66A91DCF7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{C4ED4A68-B3ED-4552-AC94-894659188A51}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{BFCB4B69-A999-4840-8C2C-AE4A83A48F37}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{FF52AFEB-0A7E-4049-8FA6-745427DC305F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{EBB4F998-53A1-4361-AEAB-1CF260C6C585}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{68B26E8D-C2AF-40B9-8390-7F701DC8A6CA}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{16C4A618-F814-4845-8A60-0B4ECD8E8A32}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{C7B04456-7990-43AA-B8F4-BB700129395B}] => (Allow) svchost.exe
FirewallRules: [{433D8BC5-FC16-444C-AF78-7A9630EC5976}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{9D896ACF-4069-49CF-850B-E29E594015F9}] => (Allow) C:\Windows\SysWOW64\lxcycoms.exe
FirewallRules: [{954892B4-46AF-43D2-8FC4-F2A27ED3F2FE}] => (Allow) C:\Windows\SysWOW64\lxcycoms.exe
FirewallRules: [{C8BC2726-ACC8-4AB4-A3B9-00762493D0F6}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 3400 Series\lxcymon.exe
FirewallRules: [{4FDCF821-2B16-45C3-9EA6-AE259B4E6764}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 3400 Series\lxcymon.exe
FirewallRules: [{4E82F33F-C870-44BA-8642-4D75868180E8}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 3400 Series\lxcyaiox.exe
FirewallRules: [{C1828FFF-05CF-488B-A7CE-EA3E54888C6E}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 3400 Series\lxcyaiox.exe
FirewallRules: [{B6B4FE57-8DE8-473E-89BE-BA346E80B818}] => (Allow) C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
FirewallRules: [{EAFC6447-CCF0-4ACB-A4DB-6128764B0CB5}] => (Allow) C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
FirewallRules: [{4DDB8838-4FB0-4C42-B881-A0B0BA19E0FA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{197BDDFC-5E69-4551-ACB7-10CF33684645}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{F7C17022-D05C-4358-B584-6EAFC61F0590}C:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe] => (Block) C:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe
FirewallRules: [UDP Query User{370E9F8A-6264-4DB5-BB55-E45F3E8C9FC2}C:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe] => (Block) C:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe
FirewallRules: [{E3D44FAE-A6D8-4378-AA27-F55F0DAF83C4}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{1A6CA6B5-C57A-4F0D-8D20-474FF804A814}] => (Allow) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
FirewallRules: [{D378E215-5A71-4506-80FF-6FA1BBFF9645}] => (Allow) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
FirewallRules: [{8609C6CF-FC48-4942-9D81-AA44483D2804}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\paswstat.exe
FirewallRules: [{EDA7D9FD-3485-41A7-BAC7-7308CDC798F6}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\paswstat.com
FirewallRules: [{7B6AE310-337D-4302-858F-EDFD2E2D8F24}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\WinWrapIDE.exe
FirewallRules: [{2C0FE087-8539-4604-A7AD-492226CCA3A4}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\paswstat.com
FirewallRules: [{E4E5E4BE-AFB3-4BE3-B4DA-9F8A65AA78BB}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\paswstat.exe
FirewallRules: [{CB34981A-B7C8-4CF5-B04D-DB2B898FCE79}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\WinWrapIDE.exe
FirewallRules: [{94A7E039-4028-4F49-A11D-00E709D996C2}] => (Allow) C:\Program Files (x86)\Lexmark 3400 Series\lxcymon.exe
FirewallRules: [{FF753986-7706-4B2C-A39C-9C96EB1FE880}] => (Allow) C:\Program Files (x86)\Lexmark 3400 Series\lxcymon.exe
FirewallRules: [{8EA72A0D-BD79-4ED2-8BF5-4C2737B06E0E}] => (Allow) C:\Program Files (x86)\Lexmark 3400 Series\lxcyaiox.exe
FirewallRules: [{729F16B0-117F-493A-B125-AE2D36AA2B2C}] => (Allow) C:\Program Files (x86)\Lexmark 3400 Series\lxcyaiox.exe
FirewallRules: [{D5A1A7A3-074D-4010-8152-848D7772DA60}] => (Allow) C:\Windows\System32\lxcycoms.exe
FirewallRules: [{4B8026D1-DC47-4723-A2EB-5702476D268E}] => (Allow) C:\Windows\System32\lxcycoms.exe
FirewallRules: [{893F4CF6-6E71-4140-B976-65E37B87C634}] => (Allow) LPort=135
FirewallRules: [{4723771B-437C-4765-95FA-278C9E7E0455}] => (Allow) LPort=5000
FirewallRules: [{98FAB258-07BE-462B-BD2D-C99E621C7463}] => (Allow) LPort=5001
FirewallRules: [{337E4CE1-CD3D-414A-B956-5BCD0DDFA588}] => (Allow) LPort=5002
FirewallRules: [{D1B32D62-5643-44C2-8237-9ECEC69FA6F5}] => (Allow) LPort=5003
FirewallRules: [{AAB6F790-7E12-42B4-AA84-8B7D5DBBD127}] => (Allow) LPort=5004
FirewallRules: [{40505419-B36F-4ED9-99E1-333C30352BBE}] => (Allow) LPort=5005
FirewallRules: [{79F935B9-5F45-4749-B1E9-46B53833A916}] => (Allow) LPort=5006
FirewallRules: [{9B1C853D-5AF9-4398-8790-F33A30F41CC9}] => (Allow) LPort=5007
FirewallRules: [{7A7DD6BE-A3FD-466B-8AEF-B6EF42656EAA}] => (Allow) LPort=5008
FirewallRules: [{BF392420-ABB5-4021-A31B-11959EA4D6F4}] => (Allow) LPort=5009
FirewallRules: [{E4E85B71-49EE-4C9E-8386-FFA06766BB02}] => (Allow) LPort=5010
FirewallRules: [{79C52F32-7ABB-4A07-8B95-763A4AA511AD}] => (Allow) LPort=5011
FirewallRules: [{F746FA93-DB05-42A5-8AEC-F2ED445AB863}] => (Allow) LPort=5012
FirewallRules: [{98EC8327-FA6C-4DCC-AA5B-F2BBF58BCE12}] => (Allow) LPort=5013
FirewallRules: [{24D4CA68-6B12-417E-955A-8F05673BDD37}] => (Allow) LPort=5014
FirewallRules: [{E5D31E9E-DFFD-4A4B-A73B-E7D856740894}] => (Allow) LPort=5015
FirewallRules: [{39F739A5-8154-4D47-9F08-AF4D754ED623}] => (Allow) LPort=5016
FirewallRules: [{A4C08BDE-D1AA-48A8-A116-8662DD488E14}] => (Allow) LPort=5017
FirewallRules: [{D2A12F58-F605-4230-90FB-6856FDD8CA2C}] => (Allow) LPort=5018
FirewallRules: [{ACD18103-2A45-435F-BB0A-35DC7EB216BE}] => (Allow) LPort=5019
FirewallRules: [{D515A646-46D6-45B5-8D82-ABE09399B6A3}] => (Allow) LPort=5020
FirewallRules: [{90D50485-A642-4384-B7FA-98D91C227441}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [{5790F44F-371D-45A6-89D7-52200AE8ED1F}] => (Allow) C:\Users\venkat\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{27E47AA8-1635-451E-9B12-6D3B39F0FB7C}] => (Allow) C:\Users\venkat\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{0E8E89E2-E554-4C77-8774-25C0619E5E1A}] => (Allow) C:\Users\venkat\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{8873BAFF-3CE1-4F6C-8D2F-D41F2A936F60}] => (Allow) C:\Users\venkat\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{4A845098-E8BF-4FB5-879E-ABDC2EAA4C24}] => (Allow) C:\Users\venkat\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{01222CD2-A8E5-47D6-8622-79FB6885A97B}] => (Allow) C:\Users\venkat\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{BE191360-1E8D-40FC-A910-673F07745296}] => (Allow) C:\Users\venkat\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{1267A1C0-8A4B-490B-8BF2-CDD32655589E}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{8AF4AB71-B2CC-46DE-8C86-4D9D2A8BD1B3}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{3A2BE009-AD59-49F2-8788-61AE5F20B5DC}] => (Allow) C:\Program Files (x86)\McAfee\Supportability\MVT\MvtApp.exe
FirewallRules: [{3CE1E5FE-7010-4290-96EE-2B1B9E36D19F}] => (Allow) C:\Program Files (x86)\McAfee\Supportability\MVT\MvtApp.exe
FirewallRules: [{440517F2-B7C1-4770-878B-D163BBE82A9A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{6409F507-F069-48F1-8982-0846FE9C5906}C:\program files (x86)\spssinc\paswstatistics18\paswstat.exe] => (Allow) C:\program files (x86)\spssinc\paswstatistics18\paswstat.exe
FirewallRules: [UDP Query User{75C98348-52DF-4811-A14D-4D76A1CE13E7}C:\program files (x86)\spssinc\paswstatistics18\paswstat.exe] => (Allow) C:\program files (x86)\spssinc\paswstatistics18\paswstat.exe
FirewallRules: [TCP Query User{D5D0CA2B-67BE-46FB-9633-8327688037E0}C:\program files (x86)\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files (x86)\flashget network\flashget 3\flashget3.exe
FirewallRules: [UDP Query User{00EDC32E-363B-4443-87C3-29495E6499D4}C:\program files (x86)\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files (x86)\flashget network\flashget 3\flashget3.exe
FirewallRules: [TCP Query User{69ED8510-C0D7-4FE0-9B70-4C47219A27EB}C:\program files (x86)\teampostgresql\misc\teampostgresql.exe] => (Allow) C:\program files (x86)\teampostgresql\misc\teampostgresql.exe
FirewallRules: [UDP Query User{5223A622-1565-4093-89D5-AFD8738D2ED2}C:\program files (x86)\teampostgresql\misc\teampostgresql.exe] => (Allow) C:\program files (x86)\teampostgresql\misc\teampostgresql.exe
FirewallRules: [{D08B1B32-C4FB-4D27-B443-9CD2A71F6697}] => (Allow) 㩃停潲牧浡䘠汩獥⠠㡸⤶䵜獩牣慥楴湯畯楲潮䵜獩牣慥楴湯畯楲潮攮數
FirewallRules: [{2D129E07-FBFD-415B-AEFA-6D23C757F0D2}] => (Allow) 㩃停潲牧浡䘠汩獥⠠㡸⤶䵜獩牣慥楴湯畯楲潮䵜獩牣慥楴湯畯楲潮硥e
FirewallRules: [{D0BF5994-3AF8-417C-B83D-B0EF6E90D9DF}] => (Allow) C:\Program Files (x86)\Mutilated\intravenous.exe
FirewallRules: [{D7699F0F-66C1-4743-9E77-58E03F0CC99E}] => (Allow) C:\Program Files (x86)\Cappuccinos\intravenous.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe] => Enabled:Flashget3
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/12/2017 09:42:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbam.exe, version: 3.0.0.865, time stamp: 0x584ee8a0
Faulting module name: Qt5Core.dll, version: 5.6.2.0, time stamp: 0x5849a1dc
Exception code: 0xc0000005
Fault offset: 0x00192cf1
Faulting process id: 0x11b0
Faulting application start time: 0xmbam.exe0
Faulting application path: mbam.exe1
Faulting module path: mbam.exe2
Report Id: mbam.exe3
Error: (01/11/2017 01:10:35 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1511) (User: Apoorva-PC)
Description: Windows cannot find the local profile and is logging you on with a temporary profile. Changes you make to this profile will be lost when you log off.
Error: (01/11/2017 01:10:35 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1515) (User: Apoorva-PC)
Description: Windows has backed up this user profile. Windows will automatically try to use the backup profile the next time this user logs on.
Error: (01/11/2017 01:10:35 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1502) (User: Apoorva-PC)
Description: Windows cannot load the locally stored profile. Possible causes of this error include insufficient security rights or a corrupt local profile.
DETAIL - The process cannot access the file because it is being used by another process.
Error: (01/11/2017 01:10:35 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: Windows was unable to load the registry. This problem is often caused by insufficient memory or insufficient security rights.
DETAIL - The process cannot access the file because it is being used by another process.
for C:\Users\venkat\ntuser.dat
Error: (01/10/2017 01:05:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbam.exe, version: 3.0.0.865, time stamp: 0x584ee8a0
Faulting module name: Qt5Core.dll, version: 5.6.2.0, time stamp: 0x5849a1dc
Exception code: 0xc0000005
Fault offset: 0x00192cf1
Faulting process id: 0xb60
Faulting application start time: 0xmbam.exe0
Faulting application path: mbam.exe1
Faulting module path: mbam.exe2
Report Id: mbam.exe3
Error: (01/10/2017 04:33:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: intravenous.exe, version: 1.0.0.0, time stamp: 0x586e06e5
Faulting module name: Flash64_24_0_0_186.ocx, version: 24.0.0.186, time stamp: 0x584c950f
Exception code: 0xc0000005
Fault offset: 0x000000000033eabe
Faulting process id: 0x%9
Faulting application start time: 0xintravenous.exe0
Faulting application path: intravenous.exe1
Faulting module path: intravenous.exe2
Report Id: intravenous.exe3
Error: (01/09/2017 09:10:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: intravenous.exe, version: 1.0.0.0, time stamp: 0x586e06e5
Faulting module name: Flash64_24_0_0_186.ocx, version: 24.0.0.186, time stamp: 0x584c950f
Exception code: 0xc0000005
Fault offset: 0x000000000033e4c8
Faulting process id: 0x%9
Faulting application start time: 0xintravenous.exe0
Faulting application path: intravenous.exe1
Faulting module path: intravenous.exe2
Report Id: intravenous.exe3
Error: (01/09/2017 06:15:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: intravenous.exe, version: 1.0.0.0, time stamp: 0x586e06e5
Faulting module name: Flash64_24_0_0_186.ocx, version: 24.0.0.186, time stamp: 0x584c950f
Exception code: 0xc0000005
Fault offset: 0x0000000000032d5e
Faulting process id: 0x%9
Faulting application start time: 0xintravenous.exe0
Faulting application path: intravenous.exe1
Faulting module path: intravenous.exe2
Report Id: intravenous.exe3
Error: (01/09/2017 11:11:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbamtray.exe, version: 3.0.0.865, time stamp: 0x584ee77c
Faulting module name: mbamtray.exe, version: 3.0.0.865, time stamp: 0x584ee77c
Exception code: 0xc0000005
Fault offset: 0x0000486b
Faulting process id: 0x1258
Faulting application start time: 0xmbamtray.exe0
Faulting application path: mbamtray.exe1
Faulting module path: mbamtray.exe2
Report Id: mbamtray.exe3
System errors:
=============
Error: (01/12/2017 10:01:28 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 4) (User: NT AUTHORITY)
Description: The time provider 'VMICTimeProvider' failed to start due to the following error: The specified module could not be found. (0x8007007E)
Error: (01/12/2017 09:59:36 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.235.70.0
Update Source: %NT AUTHORITY59
Update Stage: 4.10.209.00
Source Path: 4.10.209.01
Signature Type: %NT AUTHORITY602
Update Type: %NT AUTHORITY604
User: NT AUTHORITY\SYSTEM
Current Engine Version: %NT AUTHORITY605
Previous Engine Version: %NT AUTHORITY606
Error code: %NT AUTHORITY607
Error description: %NT AUTHORITY608
Error: (01/12/2017 09:59:06 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}
Error: (01/12/2017 09:24:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee CSP Service service failed to start due to the following error:
%%2
Error: (01/12/2017 09:24:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%2
Error: (01/12/2017 09:22:31 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 4) (User: NT AUTHORITY)
Description: The time provider 'VMICTimeProvider' failed to start due to the following error: The specified module could not be found. (0x8007007E)
Error: (01/12/2017 09:22:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Module Core Service service failed to start due to the following error:
%%2
Error: (01/12/2017 09:22:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Service Controller service failed to start due to the following error:
%%2
Error: (01/12/2017 09:22:27 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: The McAfee Boot Delay Start Service service depends the following service: mfevtp. This service might not be installed.
Error: (01/12/2017 09:22:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The lxcy_device service failed to start due to the following error:
%%2
CodeIntegrity:
===================================
Date: 2017-01-10 21:10:23.723
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-01-10 21:10:23.520
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-01-10 19:39:08.708
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe because the set of per-page image hashes could not be found on the system.
Date: 2017-01-10 19:38:38.264
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe because the set of per-page image hashes could not be found on the system.
Date: 2017-01-10 19:38:35.643
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe because the set of per-page image hashes could not be found on the system.
Date: 2017-01-10 19:38:35.612
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe because the set of per-page image hashes could not be found on the system.
Date: 2017-01-10 19:38:32.195
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe because the set of per-page image hashes could not be found on the system.
Date: 2017-01-10 19:38:32.180
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe because the set of per-page image hashes could not be found on the system.
Date: 2017-01-10 19:38:32.148
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe because the set of per-page image hashes could not be found on the system.
Date: 2017-01-10 19:38:32.117
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe because the set of per-page image hashes could not be found on the system.