Inactive My firewall was attacked now i can't access internet

Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

  • Double click to run it.
  • Make sure you checkmark Addition.txt box.
  • Press Scan button.
  • Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:04-10-2015
Ran by USER (administrator) on VAIO-CHAN (16-12-2016 02:02:52)
Running from C:\Users\USER\Documents\Bluetooth Folder
Loaded Profiles: USER (Available Profiles: USER)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: HYPERLINK ""

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
(Sony Corporation) C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Blue Onion Software) C:\Program Files (x86)\Mountain Lion Skin Pack\DeskDrive\DeskDrive.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Mountain Lion Skin Pack\RocketDock\RocketDock.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
() C:\Program Files (x86)\Mountain Lion Skin Pack\UberIcon\UberIcon.exe
() C:\Program Files (x86)\Mountain Lion Skin Pack\Winroll\winroll.exe
(Y'z) C:\Program Files (x86)\Mountain Lion Skin Pack\YzShadow\YzShadow.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Sony of America Corporation) C:\Program Files\Sony\VAIO Care\listener.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-I Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.EXE


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2885904 2012-03-13] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1156712 2012-03-13] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1020576 2012-02-24] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2012-02-24] (Atheros Commnucations)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-22] (Intel Corporation)
HKLM-x32\...\Run: [TkBellExe] => c:\program files (x86)\real\realplayer\Update\realsched.exe [295512 2013-06-07] (RealNetworks, Inc.)
HKLM-x32\...\Run: [Reader Application Helper] => C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [899400 2014-05-23] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] => c:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [693608 2012-02-22] (Sony Corporation)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [60552 2011-09-21] (Sony Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-30] (Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [37960 2013-05-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-05] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: D - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {00be119b-64a5-11e6-a870-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {3e21f268-b6e8-11e5-b90f-844bf5ca1442} - F:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {424c5515-20ce-11e4-b4d6-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {424c5546-20ce-11e4-b4d6-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {424c563c-20ce-11e4-b4d6-001e101f3315} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {5e8385ec-b051-11e3-9c6a-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {5e8385fb-b051-11e3-9c6a-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {7b89fa3b-b3e9-11e5-8b7f-844bf5ca1442} - F:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {7b89fa56-b3e9-11e5-8b7f-844bf5ca1442} - F:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {861f071f-22ec-11e4-b47d-001e101fb681} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {8d71bde3-663a-11e6-851a-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {ba753457-c590-11e3-9e0e-001e101f35c2} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {ba7535e6-c590-11e3-9e0e-001e101f35c2} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {bd25524f-fa77-11e5-bf37-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {cfc2795d-6633-11e6-9c11-001e101f9843} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {cfc2796a-6633-11e6-9c11-001e101f9843} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {db5aaf5c-0188-11e6-bcdf-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {db5aaf76-0188-11e6-bcdf-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {f0de57b3-3189-11e2-b3b9-844bf5ca1442} - D:\autorun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-11] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-11] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-11] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2016-12-12]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DeskDrive.lnk [2016-12-12]
ShortcutTarget: DeskDrive.lnk -> C:\Program Files (x86)\Mountain Lion Skin Pack\DeskDrive\DeskDrive.exe (Blue Onion Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RocketDock.lnk [2016-12-12]
ShortcutTarget: RocketDock.lnk -> C:\Program Files (x86)\Mountain Lion Skin Pack\RocketDock\RocketDock.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UberIcon.lnk [2016-12-12]
ShortcutTarget: UberIcon.lnk -> C:\Program Files (x86)\Mountain Lion Skin Pack\UberIcon\UberIcon.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Winroll.lnk [2016-12-12]
ShortcutTarget: Winroll.lnk -> C:\Program Files (x86)\Mountain Lion Skin Pack\Winroll\winroll.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\YzShadow.lnk [2016-12-12]
ShortcutTarget: YzShadow.lnk -> C:\Program Files (x86)\Mountain Lion Skin Pack\YzShadow\YzShadow.exe (Y'z)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{6A8F38F1-925F-46C1-A683-3D01DC28B6AC}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{92EDD8D2-6A03-493A-990E-528A3AEB34EB}: [NameServer] 203.115.0.46,203.115.0.47

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131247515542472912&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avast.com/AV772/search/web?q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avast.com/AV772/search/web?q={searchTerms}
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131247515542762929&GUID=00000000-0000-0000-0000-000000000000
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://search.avast.com/AV772/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-211944695-2324473550-4201926417-1000 -> DefaultScope {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-211944695-2324473550-4201926417-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=APLAzB7LLPRSIl7uHgEuIM___uo?q={searchTerms}
SearchScopes: HKU\S-1-5-21-211944695-2324473550-4201926417-1000 -> {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO-x32: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> No File
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-04-16] (RealDownloader)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-24] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-02-24] (Atheros Commnucations)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11] (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-24] (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11] (Microsoft Corporation.)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll [2013-08-25] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1212152.dll [2014-05-30] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-04-08] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-03-13] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-03-13] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-07-31] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-09-08] (Pando Networks)
FF Plugin-x32: @playstation.com/PsndlCheck,version=1.00 -> C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll [2011-08-04] (Sony Computer Entertainment Inc.)
FF Plugin-x32: @real.com/nppl3260;version=16.0.2.32 -> c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll [2013-06-07] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.2 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-04-16] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.2 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-04-16] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.2 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-04-16] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.2.32 -> c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll [2013-06-07] (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-04-16] (RealDownloader)
FF Plugin-x32: @sony.com/ReaderDesktop -> C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll [2014-05-23] (Sony Corporation)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2011-08-02] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-04-14] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-05-10] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-211944695-2324473550-4201926417-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-09-08] (Pando Networks)
FF HKLM-x32\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-06-07]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\USER\AppData\Roaming\IDM\idmmzcc3
FF Extension: IDM CC - C:\Users\USER\AppData\Roaming\IDM\idmmzcc3 [2012-11-17]
FF HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\USER\AppData\Roaming\IDM\idmmzcc3

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.lk/
CHR StartupUrls: Default -> "hxxp://www.google.lk/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\WidevineCdm\1.4.8.903\_platform_specific\win_x64\widevinecdmadapter.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\PepperFlash\pepflashplayer.dll => No File
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Learn French - Très Bien) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeifanonhefcaphaeeknpklkfnjjmpec [2014-06-01]
CHR Extension: (Basic Microbiology Lab Techniques Lite) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\agnikcihfnmjclpchdhfmbagkijejckn [2014-06-01]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2014-06-01]
CHR Extension: (Duolingo on the Web) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2014-06-01]
CHR Extension: (Flash Cards) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\anihbclmkckkhgomjcnebkhckbgflbid [2014-06-01]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-01]
CHR Extension: (Note Board Web) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apgackkfllmckgkbdfmbfodpinmnnpab [2014-06-01]
CHR Extension: (App Launcher for Messenger) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\bllmngcdibgbgjnginpehneeofhbmdjm [2016-06-19]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-01]
CHR Extension: (Flashcard Stash) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgopclnilgekngdlkfkegddejocmmmim [2014-06-01]
CHR Extension: (Remember The Milk) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chdiaibgndcpagmnpkjoelgfkommjbni [2014-06-01]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-01]
CHR Extension: (the quiet place) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbbkjidgehnkkhcppdpnicohbhblkfdp [2014-06-01]
CHR Extension: (Drillster) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbmomjeimciggnjmhmdildpiahnmooeo [2014-06-01]
CHR Extension: (Instant Anatomy) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddjpnphbpjaknodefjdfbifojgbgpgfd [2014-06-01]
CHR Extension: (Read Later Fast) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\decdfngdidijkdjgbknlnepdljfaepji [2014-10-02]
CHR Extension: (FlashCards) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\diejjofgldkjkhmfjagdjdodjebpglhb [2014-06-01]
CHR Extension: (IELTS 3600 Words) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmjibbiloicpoebmoeilmijlfehabfdm [2014-06-01]
CHR Extension: (Chemical Elements) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\eilhonghnelklfkaekhjibgnbfelgbho [2014-06-01]
CHR Extension: (Genetic Decoder) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\faokffokgpgnhbbohpefincnicidiogb [2014-06-01]
CHR Extension: (Wunderlist - To-do and Task list) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjliknjliaohjgjajlgolhijphojjdkc [2014-06-01]
CHR Extension: (AdBlock) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-06]
CHR Extension: (Science Penguin) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gimenpegjajnbdolclaoenakboibojfd [2014-06-01]
CHR Extension: (Betternet Unlimited Free VPN Proxy) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjknjjomckknofjidppipffbpoekiipm [2016-07-21]
CHR Extension: (Translator by Dictionary.com) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\glacllipodbjfijgkcdifnlhmoddlkon [2014-06-01]
CHR Extension: (Anatomy Skills - Bones) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\hceicicieekfooimifknlpmgdokmdajn [2013-11-23]
CHR Extension: (The Elementals) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfhfehlnocjpbnbcabcjjnemkkkghaak [2014-06-01]
CHR Extension: (StudentBook) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiimjijildjkajollpjecaocbbjfobed [2014-06-01]
CHR Extension: (Cabra Flashcards) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipdbdkehfdnnhhifipnpkejnijbijam [2014-06-01]
CHR Extension: (Heap Note) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkpiejadkdojdbfgfocaoahhbepnlpph [2014-06-01]
CHR Extension: (Notebook) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoecnkggfbggadilpmdhpmocnokhpgmp [2014-06-01]
CHR Extension: (Biology Pop) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\iilgfigobpmkhcgjimogffafghlhfokh [2014-06-01]
CHR Extension: (CK-12) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilmbnmigihncgeckjgmkehcgkdeohkhl [2014-06-01]
CHR Extension: (iPiccy Photo Editor) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\imokeandodnlammaoenbgcnbhigjbpjh [2014-06-01]
CHR Extension: (Japanese LinguaLift) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlmpbdkpokljmladanckgailmjbjmdel [2014-06-01]
CHR Extension: (Anatomy Games) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbplkkegndhkgnendpdhcffamoplajga [2014-06-01]
CHR Extension: (Focus on Plant Lite) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\keokjfponbijjhpmlnceokedmlcakelc [2014-06-01]
CHR Extension: (MomoNote) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\keopbahlldeedfhgiajhndlkjdiekfpl [2014-06-01]
CHR Extension: (Hatsune Miku) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\kigfdicgjnpjkhbnngdfgjfffmdaonfg [2016-08-24]
CHR Extension: (JAPANESE 1) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbpipicjdmcoocdcnjlijbgclebahlno [2014-06-01]
CHR Extension: (duuble.me) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\lejmffhcobpchifjhnaapafgccomckld [2014-06-01]
CHR Extension: (WhatsApp Web) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljmljimhhghliifeamgjolinmbikehbe [2015-02-19]
CHR Extension: (Pocket) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2015-11-08]
CHR Extension: (UltraSurf Security, Privacy & Unblock VPN) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjnbclmflcpookeapghfhapeffmpodij [2016-10-14]
CHR Extension: (ChemReference: Periodic Table) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjpnebljmdbglkmlnijcaplhfhkhdnib [2014-06-01]
CHR Extension: (My Study Life) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjdjjiobjicmlhnjlogfgbibihjhkeo [2014-06-01]
CHR Extension: (Spongelab) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnlpkdnafgfiodakkfafffnkolnlnpjk [2014-06-01]
CHR Extension: (KinPlot) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpmopmopiddnigbpjldflbcihklgfopj [2014-06-01]
CHR Extension: (StudyStack) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nboldpjijadohjhnkadkdbonjlgbjadd [2014-06-01]
CHR Extension: (Do It (Tomorrow)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfagjoblnoeagfhfhohcdklnddjaiglo [2014-06-01]
CHR Extension: (Save to Pocket) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2015-11-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (MURAL) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnhlnnalackljjehlfocmheepffkiihf [2014-06-01]
CHR Extension: (Todo.ly) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\obhefmbclkekanpjjpkbciloojcmpkap [2014-06-01]
CHR Extension: (My School Note) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofmaboegknjgkeijgblgppfdhnlnjhbf [2014-06-01]
CHR Extension: (JotStory) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojeefpngogkaihjidbjphffomfbojfmi [2014-06-01]
CHR Extension: ( The scale of the universe) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooidlchfdlimcgilcmpckfjleogaobka [2014-06-01]
CHR Extension: (mySchoolNotebook.com) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pamfapbnciponedgddhhlaodehbfhaai [2014-06-01]
CHR Extension: (Cacoo - Diagramming & Real-Time Collaboration) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcflmbddgcmomcfngehfhlajjapabojh [2014-06-01]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-01]
CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-10]
CHR Extension: (Anatomicus - Human Anatomy Atlas) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkgfngehhjplndcgejapgknnjpdgfpag [2014-06-01]
CHR Extension: (Learn Spanish - Qué Onda) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcdjmebmeoobmdghjbjhbifoocbcmaj [2014-06-01]
CHR Extension: (Connected Mind) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmkffmgahaepmhkhkblhopnpleeikokc [2014-06-01]
CHR Extension: (iReader) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppelffpjgkifjfgnbaaldcehkpajlmbc [2013-10-06]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-04-16]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144 2012-02-24] (Atheros Commnucations) [File not signed]
S3 DCDhcpService; C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe [112256 2012-03-21] (Atheros Communication Inc.) [File not signed]
S3 GoogleDesktopManager-051210-111108; C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [30192 2013-03-22] (Google)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-13] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-03-13] (Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4317648 2016-11-29] (Malwarebytes)
R2 PMBDeviceInfoProvider; c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [473960 2012-02-22] (Sony Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [258048 2013-03-05] (Sony Corporation) [File not signed]
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2016-12-13] (Microsoft Corporation) [File not signed]
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-I Visual Effects 2\uCamMonitor.exe [105024 2011-02-24] (ArcSoft, Inc.)
R2 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [960160 2011-12-30] (Sony Corporation)
S3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1656600 2016-03-31] (Sony Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2012-02-24] (Atheros) [File not signed]
S3 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
S3 Sony SCSI Helper Service; no ImagePath
 
===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-27] (ArcSoft, Inc.)
U3 aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [79216 2016-08-24] (AVAST Software)
R3 BTATH_VDP; C:\Windows\System32\drivers\btath_vdp.sys [421664 2012-02-24] (Atheros)
U5 DiagTrack; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-11] (Broadcom Corporation)
S3 lehidmini; C:\Windows\system32\drivers\leath_hid.sys [36128 2012-02-24] (Atheros)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 SmbDrv; C:\Windows\system32\drivers\Smb_driver.sys [21264 2012-03-13] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2015-08-17] (Duplex Secure Ltd.)
S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-16 01:48 - 2016-12-16 01:48 - 00000000 ___RD C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2016-12-16 01:43 - 2016-12-16 01:45 - 00002020 _____ C:\Users\USER\Desktop\Rkill.txt
2016-12-16 01:43 - 2016-12-16 01:43 - 00000000 ____D C:\Users\USER\Desktop\rkill
2016-12-16 01:26 - 2016-12-16 01:27 - 05659917 _____ (Swearware) C:\Users\USER\Desktop\your_name.exe
2016-12-15 23:27 - 2016-12-15 23:27 - 00000000 ____D C:\32788R22FWJFW
2016-12-15 23:08 - 2016-12-15 23:08 - 00000000 ____D C:\MSI512e9.tmp
2016-12-15 21:39 - 2016-12-15 21:39 - 00000000 ____D C:\Users\USER\Documents\My Books
2016-12-15 17:52 - 2016-12-15 17:52 - 00010008 _____ C:\Users\USER\Desktop\JRT.txt
2016-12-15 17:42 - 2016-12-15 17:42 - 00000000 ____D C:\AdwCleaner
2016-12-15 17:11 - 2016-12-15 23:11 - 00250816 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-12-15 17:11 - 2016-12-15 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2016-12-15 17:11 - 2016-11-29 06:27 - 00077408 _____ C:\Windows\system32\Drivers\mbae64.sys
2016-12-15 17:10 - 2016-12-15 17:10 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-12-15 17:10 - 2016-12-15 17:10 - 00000000 ____D C:\Program Files\Malwarebytes
2016-12-15 08:59 - 2016-12-15 08:59 - 00028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-12-15 08:58 - 2016-12-15 08:58 - 00000818 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2016-12-15 08:58 - 2016-12-15 08:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-12-15 08:58 - 2016-12-15 08:58 - 00000000 ____D C:\Program Files\RogueKiller
2016-12-15 08:57 - 2016-12-15 16:57 - 00000000 ____D C:\ProgramData\RogueKiller
2016-12-15 07:32 - 2016-12-16 02:02 - 00000000 ____D C:\FRST
2016-12-15 03:19 - 2016-12-15 23:11 - 00001945 _____ C:\Windows\epplauncher.mif
2016-12-15 03:18 - 2016-12-15 03:18 - 00000000 ____D C:\MSIbb166.tmp
2016-12-15 03:17 - 2016-12-15 03:17 - 00000000 ____D C:\_089973_
2016-12-13 05:04 - 2016-12-13 05:04 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2016-12-13 04:39 - 2009-06-11 02:30 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts.bak
2016-12-13 04:38 - 2016-12-13 04:38 - 00000000 ____D C:\Users\USER\AppData\Roaming\Rizonesoft
2016-12-13 01:03 - 2016-12-13 01:03 - 00000000 ____D C:\Users\Public\Desktop\CC Support
2016-12-12 23:04 - 2016-12-12 23:04 - 00000000 ____D C:\Windows\ERDNT
2016-12-07 05:58 - 2016-12-07 05:58 - 00002025 _____ C:\Users\Public\Desktop\Reader for PC.lnk
2016-12-07 05:58 - 2016-12-07 05:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reader for PC
2016-12-07 05:57 - 2016-12-07 05:57 - 00000000 ____D C:\MSIada75.tmp
2016-12-07 05:54 - 2016-12-07 05:54 - 00000000 ____D C:\MSI73bf6.tmp
2016-12-07 02:35 - 2016-12-07 05:48 - 00550976 _____ C:\Users\USER\Downloads\Richard Castle - Driving Heat (Nikki Heat 07).epub
2016-12-07 02:34 - 2016-12-07 02:35 - 00000000 ____D C:\Users\USER\Downloads\Christie Agatha ePub Collection
2016-12-07 01:59 - 2016-12-07 01:59 - 00000000 ____D C:\MSIe4e8d.tmp
2016-12-07 01:56 - 2016-12-07 01:56 - 00000000 ____D C:\MSIdc931.tmp
2016-12-07 01:55 - 2016-12-07 01:55 - 00000000 ____D C:\MSId2036.tmp
2016-12-01 20:17 - 2016-12-01 20:17 - 00000000 ____D C:\Users\USER\Downloads\Kimi no Na wa
2016-11-30 13:29 - 2016-11-30 13:29 - 00000000 ____H C:\Users\USER\AppData\Local\BITF551.tmp
2016-11-30 13:28 - 2016-11-30 13:29 - 00000000 _____ C:\Users\USER\AppData\Local\{A063ACA7-4DC1-4E2A-B18E-111A4496F0DB}
2016-11-30 00:19 - 2016-11-30 00:19 - 00188525 _____ C:\Users\USER\Downloads\Richard_Castle_-_Heat_Wave.epub
2016-11-30 00:00 - 2016-11-30 00:00 - 00427343 _____ C:\Users\USER\Downloads\Castle, Richard - [Nikki Heat 06] Raging Heat.epub
2016-11-29 23:58 - 2016-11-30 00:09 - 00000000 ____D C:\Users\USER\Downloads\Richard Castle Collection
2016-11-26 02:13 - 2016-11-26 02:13 - 00578115 _____ C:\Users\USER\Downloads\The Glass Cage Automation and U - Nicholas Carr.epub
2016-11-26 02:12 - 2016-11-26 02:12 - 00000000 ____D C:\Users\USER\Downloads\Ebook Series - Scifan - Arthur C. Clarke - Rama Series - (4 Ebooks)
2016-11-26 02:02 - 2016-11-26 02:02 - 03305382 _____ C:\Users\USER\Downloads\The Spy by Paulo Coelho.epub
2016-11-23 17:47 - 2016-11-23 17:47 - 00000000 ____D C:\MSI984f8.tmp
2016-11-22 22:44 - 2016-11-22 22:44 - 00000000 ____D C:\MSIc32a.tmp
2016-11-22 22:43 - 2016-11-22 22:43 - 00000000 ____D C:\MSIc31a.tmp
2016-11-22 02:55 - 2016-11-22 02:55 - 00219256 _____ C:\Users\USER\Downloads\Seth_speaks_-_Jane_Roberts.epub
2016-11-21 03:09 - 2016-11-21 03:09 - 09985349 _____ C:\Users\USER\Downloads\M6.htm
2016-11-21 03:08 - 2016-11-21 03:08 - 10347779 _____ C:\Users\USER\Downloads\M5.htm
2016-11-21 03:06 - 2016-11-21 03:07 - 10495412 _____ C:\Users\USER\Downloads\M4.htm
2016-11-21 03:06 - 2016-11-21 03:06 - 09512470 _____ C:\Users\USER\Downloads\2016.htm
2016-11-21 03:00 - 2016-11-21 03:00 - 20693416 _____ C:\Users\USER\Downloads\M3.htm
2016-11-21 02:58 - 2016-11-21 02:58 - 20971081 _____ C:\Users\USER\Downloads\M2.htm
2016-11-21 02:56 - 2016-11-21 02:56 - 20065368 _____ C:\Users\USER\Downloads\M1.htm
2016-11-21 02:13 - 2016-11-21 02:13 - 00878909 _____ C:\Users\USER\Downloads\Messages31.htm
2016-11-21 02:11 - 2016-11-21 02:11 - 03013814 _____ C:\Users\USER\Downloads\Messages30.htm
2016-11-21 02:08 - 2016-11-21 02:08 - 02987047 _____ C:\Users\USER\Downloads\Messages29.htm
2016-11-21 02:05 - 2016-11-21 02:05 - 02835734 _____ C:\Users\USER\Downloads\Messages28.htm
2016-11-21 02:03 - 2016-11-21 02:03 - 02898077 _____ C:\Users\USER\Downloads\Messages27.htm
2016-11-21 02:00 - 2016-11-21 02:00 - 04876461 _____ C:\Users\USER\Downloads\Messages26.htm
2016-11-21 01:58 - 2016-11-21 01:58 - 05726507 _____ C:\Users\USER\Downloads\Messages25.htm
2016-11-21 01:54 - 2016-11-21 01:54 - 08333780 _____ C:\Users\USER\Downloads\Messages24.htm
2016-11-21 01:51 - 2016-11-21 01:51 - 08900140 _____ C:\Users\USER\Downloads\Messages23.htm
2016-11-21 01:49 - 2016-11-21 01:49 - 02918496 _____ C:\Users\USER\Downloads\Messages22.htm
2016-11-21 01:48 - 2016-11-21 01:48 - 02858842 _____ C:\Users\USER\Downloads\Messages21.htm
2016-11-21 01:47 - 2016-11-21 01:47 - 02855892 _____ C:\Users\USER\Downloads\Messages20.htm
2016-11-21 01:45 - 2016-11-21 01:45 - 01664430 _____ C:\Users\USER\Downloads\Messages19.htm
2016-11-21 01:43 - 2016-11-21 01:43 - 01652713 _____ C:\Users\USER\Downloads\Messages18.htm
2016-11-21 01:42 - 2016-11-21 01:42 - 01646172 _____ C:\Users\USER\Downloads\Messages17.htm
2016-11-21 01:40 - 2016-11-21 01:40 - 01627535 _____ C:\Users\USER\Downloads\Messages16.htm
2016-11-21 01:38 - 2016-11-21 01:38 - 03159720 _____ C:\Users\USER\Downloads\Messages15.htm
2016-11-21 01:37 - 2016-11-21 01:37 - 00693506 _____ C:\Users\USER\Downloads\Messages14.htm
2016-11-21 01:34 - 2016-11-21 01:34 - 00668863 _____ C:\Users\USER\Downloads\Messages13.htm
2016-11-21 01:30 - 2016-11-21 01:30 - 06599062 _____ C:\Users\USER\Downloads\Messages12.htm
2016-11-21 01:27 - 2016-11-21 01:27 - 05083918 _____ C:\Users\USER\Downloads\Messages11.htm
2016-11-21 01:25 - 2016-11-21 01:25 - 08588865 _____ C:\Users\USER\Downloads\Messages10.htm
2016-11-21 01:24 - 2016-11-21 01:24 - 00617592 _____ C:\Users\USER\Downloads\Messages9.htm
2016-11-21 01:23 - 2016-11-21 01:23 - 00619804 _____ C:\Users\USER\Downloads\Messages8.htm
2016-11-21 01:20 - 2016-11-21 01:20 - 19615967 _____ C:\Users\USER\Downloads\Messages7.htm
2016-11-21 01:17 - 2016-11-21 01:17 - 07010336 _____ C:\Users\USER\Downloads\Messages6.htm
2016-11-21 01:15 - 2016-11-21 01:15 - 06793810 _____ C:\Users\USER\Downloads\Messages5.htm
2016-11-21 01:11 - 2016-11-21 01:11 - 06614798 _____ C:\Users\USER\Downloads\Messages4.htm
2016-11-21 01:10 - 2016-11-21 01:10 - 02782448 _____ C:\Users\USER\Downloads\Messages3.htm
2016-11-21 01:06 - 2016-11-21 01:06 - 13951674 _____ C:\Users\USER\Downloads\Messages 2.htm
2016-11-21 00:58 - 2016-11-21 00:58 - 209101831 _____ C:\Users\USER\Downloads\Messages.htm
2016-11-21 00:44 - 2016-11-21 00:44 - 00000000 ____D C:\Users\USER\AppData\Roaming\WinRAR
2016-11-21 00:43 - 2016-11-21 00:43 - 00000000 ____D C:\Program Files\WinRAR
2016-11-21 00:23 - 2016-11-21 02:14 - 00000000 ____D C:\Users\USER\Downloads\Jane Roberts - Seth - Way Towards Health [OCR]
2016-11-21 00:19 - 2016-11-21 03:52 - 00000000 ____D C:\Users\USER\Downloads\Jane Roberts - The Nature of Personal Reality--A Seth book
2016-11-17 20:38 - 2016-11-17 20:38 - 00000000 _____ C:\Users\USER\AppData\Local\{666039A5-74BA-41B8-A18C-46DB4EED8E6A}

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-16 01:56 - 2009-07-14 10:15 - 00020928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-16 01:56 - 2009-07-14 10:15 - 00020928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-16 01:51 - 2012-07-18 03:26 - 01703891 _____ C:\Windows\WindowsUpdate.log
2016-12-16 01:51 - 2009-07-14 10:43 - 00782322 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-16 01:47 - 2012-11-16 09:23 - 00000000 ____D C:\Users\USER\AppData\Roaming\Atheros
2016-12-16 01:47 - 2009-07-14 10:38 - 00032582 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-12-16 01:47 - 2009-07-14 10:38 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-16 01:47 - 2009-07-14 10:21 - 00296278 _____ C:\Windows\setupact.log
2016-12-16 01:43 - 2012-11-16 09:24 - 00000000 ___RD C:\Users\USER\Documents\Bluetooth Folder
2016-12-15 21:10 - 2013-03-22 14:23 - 00000000 ____D C:\Users\USER\AppData\Roaming\vlc
2016-12-15 20:50 - 2013-06-14 13:06 - 00000000 ____D C:\Users\USER\Documents\iReader
2016-12-15 17:31 - 2013-03-30 22:24 - 00000000 ____D C:\ProgramData\EbyoaokkBroWase
2016-12-15 16:58 - 2010-11-21 09:17 - 01196614 _____ C:\Windows\PFRO.log
2016-12-14 05:15 - 2016-05-14 00:00 - 00000000 ____D C:\Users\USER\Documents\Calibre Library
2016-12-13 06:11 - 2009-07-14 10:15 - 00506208 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-13 06:10 - 2013-03-22 01:09 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-13 06:06 - 2009-07-14 08:04 - 00000514 _____ C:\Windows\win.ini
2016-12-13 06:03 - 2012-11-16 09:21 - 00121216 _____ C:\Users\USER\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-13 06:02 - 2011-02-11 04:33 - 00782322 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-12-13 03:43 - 2013-08-23 17:57 - 129063424 ___SH C:\Users\USER\Downloads\Thumbs.db
2016-12-13 00:32 - 2012-11-16 09:21 - 00000000 ____D C:\Windows\pss
2016-12-13 00:25 - 2012-11-16 11:01 - 00000000 ____D C:\Users\USER\AppData\Roaming\Skype
2016-12-13 00:23 - 2016-06-10 14:55 - 00000000 ____D C:\Users\USER\Tracing
2016-12-13 00:18 - 2013-03-21 23:37 - 00000000 ____D C:\Program Files (x86)\Mountain Lion Skin Pack
2016-12-13 00:16 - 2010-11-21 08:53 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2016-12-13 00:16 - 2009-07-14 05:25 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2016-12-13 00:16 - 2009-07-14 05:24 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2016-12-13 00:09 - 2015-03-11 13:36 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-12-12 18:59 - 2016-07-08 10:59 - 00000000 ____D C:\Users\USER\AppData\Roaming\uTorrent
2016-12-12 18:55 - 2014-06-23 03:47 - 00000000 ____D C:\Users\USER\AppData\Local\Windows Live
2016-12-12 02:42 - 2012-11-16 10:19 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-12-11 21:27 - 2016-10-24 21:45 - 00003340 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-211944695-2324473550-4201926417-1000
2016-12-11 21:27 - 2016-10-24 21:45 - 00003204 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-211944695-2324473550-4201926417-1000
2016-12-07 05:58 - 2012-11-16 09:22 - 00000000 ____D C:\Users\USER\AppData\Local\Sony Corporation
2016-12-07 05:58 - 2012-04-28 12:06 - 00000000 ____D C:\Program Files (x86)\Sony
2016-12-07 05:56 - 2014-01-31 00:37 - 00000000 ____D C:\Users\USER\Downloads\Edexcel AS Chemistry Active Book
2016-12-07 05:51 - 2016-08-19 23:45 - 00000000 ____D C:\Program Files (x86)\Dialog Mobile Broadband
2016-12-07 05:51 - 2014-04-16 19:10 - 00000000 ____D C:\ProgramData\DatacardService
2016-12-07 01:58 - 2016-05-13 23:59 - 00000920 _____ C:\Users\Public\Desktop\calibre - E-book management.lnk
2016-12-07 01:58 - 2016-05-13 23:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2016-12-07 01:58 - 2016-05-13 23:59 - 00000000 ____D C:\Program Files (x86)\Calibre2
2016-12-01 16:10 - 2013-04-26 13:41 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-11-28 23:20 - 2016-07-21 01:26 - 00000000 ____D C:\Program Files (x86)\Opera
2016-11-26 22:43 - 2016-08-08 13:33 - 00003848 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1470643380
2016-11-23 17:48 - 2016-07-07 09:04 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-23 17:48 - 2012-04-28 13:26 - 00000000 ____D C:\ProgramData\Skype
2016-11-22 22:44 - 2014-06-23 23:02 - 00002002 _____ C:\Users\Public\Desktop\Google Slides.lnk
2016-11-22 22:44 - 2014-06-23 23:02 - 00002000 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2016-11-22 22:44 - 2014-06-23 23:02 - 00001990 _____ C:\Users\Public\Desktop\Google Docs.lnk
2016-11-22 22:44 - 2014-06-23 23:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-11-21 00:43 - 2013-03-22 01:18 - 00000000 ____D C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-21 00:43 - 2012-11-16 10:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-16 13:40 - 2013-03-22 21:38 - 00000000 ____D C:\Users\USER\Documents\Science Geek
2016-11-16 02:17 - 2013-03-22 13:56 - 00000000 ____D C:\Users\USER\Documents\Otaku World

==================== Files in the root of some directories =======

2016-11-30 13:29 - 2016-11-30 13:29 - 0000000 ____H () C:\Users\USER\AppData\Local\BITF551.tmp
2016-11-17 20:38 - 2016-11-17 20:38 - 0000000 _____ () C:\Users\USER\AppData\Local\{666039A5-74BA-41B8-A18C-46DB4EED8E6A}
2016-11-30 13:28 - 2016-11-30 13:29 - 0000000 _____ () C:\Users\USER\AppData\Local\{A063ACA7-4DC1-4E2A-B18E-111A4496F0DB}
2016-02-17 22:48 - 2016-02-17 22:48 - 0000000 _____ () C:\Users\USER\AppData\Local\{CF490EE5-93B1-46F6-A7F2-35293EF9B222}

Some files in TEMP:
====================
C:\Users\USER\AppData\Local\Temp\askToolbarInstaller.exe
C:\Users\USER\AppData\Local\Temp\COMAP.EXE
C:\Users\USER\AppData\Local\Temp\dllnt_dump.dll
C:\Users\USER\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\USER\AppData\Local\Temp\Foxit Updater.exe
C:\Users\USER\AppData\Local\Temp\GLF114.EXE
C:\Users\USER\AppData\Local\Temp\GLF1236.EXE
C:\Users\USER\AppData\Local\Temp\GLF308B.EXE
C:\Users\USER\AppData\Local\Temp\GLF5413.EXE
C:\Users\USER\AppData\Local\Temp\GLF780D.EXE
C:\Users\USER\AppData\Local\Temp\GLF84D9.EXE
C:\Users\USER\AppData\Local\Temp\GLF98E.EXE
C:\Users\USER\AppData\Local\Temp\GLFA3CA.EXE
C:\Users\USER\AppData\Local\Temp\GLFA84D.EXE
C:\Users\USER\AppData\Local\Temp\GLFC1B9.EXE
C:\Users\USER\AppData\Local\Temp\GLFCACD.EXE
C:\Users\USER\AppData\Local\Temp\GLFFC04.EXE
C:\Users\USER\AppData\Local\Temp\GomEncDnInstaller.exe
C:\Users\USER\AppData\Local\Temp\GoogleUpdateSetup_latest.exe
C:\Users\USER\AppData\Local\Temp\libeay32.dll
C:\Users\USER\AppData\Local\Temp\lowproc.exe
C:\Users\USER\AppData\Local\Temp\msvcr120.dll
C:\Users\USER\AppData\Local\Temp\ose00000.exe
C:\Users\USER\AppData\Local\Temp\SkypeSetup.exe
C:\Users\USER\AppData\Local\Temp\sqlite3.dll
C:\Users\USER\AppData\Local\Temp\stubhelper.dll
C:\Users\USER\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\USER\AppData\Local\Temp\uninst1.exe
C:\Users\USER\AppData\Local\Temp\utiC916.exe
C:\Users\USER\AppData\Local\Temp\utt7C0E.tmp.exe
C:\Users\USER\AppData\Local\Temp\utt9DBB.tmp.exe
C:\Users\USER\AppData\Local\Temp\VCPerfService32.exe
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.1.0.18.exe
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.1.1.19.exe
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.2.1.22.exe
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.3.0.29.exe
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.3.0.30.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-11-16 18:40

==================== End of FRST.txt ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version:04-10-2015
Ran by USER (2016-12-16 02:03:56)
Running from C:\Users\USER\Documents\Bluetooth Folder
Windows 7 Home Premium Service Pack 1 (X64) (2012-11-16 03:51:32)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-211944695-2324473550-4201926417-500 - Administrator - Disabled)
Guest (S-1-5-21-211944695-2324473550-4201926417-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-211944695-2324473550-4201926417-1012 - Limited - Enabled)
USER (S-1-5-21-211944695-2324473550-4201926417-1000 - Administrator - Enabled) => C:\Users\USER

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\uTorrent) (Version: 3.4.9.42973 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACID Music Studio 8.0 (x32 Version: 8.0.178 - Sony) Hidden
Adobe Photoshop CS (HKLM-x32\...\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}) (Version: CS - Adobe Systems, Inc.)
Adobe Reader X (10.1.7) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.7 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.2.152 - Adobe Systems, Inc.)
Apple Application Support (HKLM-x32\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2F72F540-1F60-4266-9506-952B21D6640D}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Application Manager for VAIO (HKLM-x32\...\Application Manager for VAIO) (Version: - )
ArcSoft Magic-I Visual Effects 2 (HKLM-x32\...\{61438020-DDD4-42FA-99A2-50225441980A}) (Version: 2.0.1.161 - ArcSoft)
ArcSoft WebCam Companion 4 (HKLM-x32\...\{C793AD32-2BB8-4CC4-ABD3-A1469C21593C}) (Version: 4.0.21.485 - ArcSoft)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.125 - Atheros)
Bing Bar (HKLM-x32\...\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}) (Version: 7.1.391.0 - Microsoft Corporation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
calibre (HKLM-x32\...\{7303645B-7FEE-4435-887C-20F58362A18F}) (Version: 2.73.0 - Kovid Goyal)
CDisplayEx 1.10.29 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
COWON Media Center - jetAudio Basic VX (HKLM-x32\...\{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}) (Version: 8.0.9 - COWON)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.5009.52 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DVD Architect Studio 5.0 (x32 Version: 5.0.157 - Sony) Hidden
Evernote v. 4.5.2 (HKLM-x32\...\{8CE152BA-1D16-11E1-867D-984BE15F174E}) (Version: 4.5.2.5904 - Evernote Corp.)
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
FormatFactory 2.60 (HKLM-x32\...\FormatFactory) (Version: 2.60 - Free Time)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.7.143.923 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.2.3.815 - Foxit Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Desktop (HKLM-x32\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Drive (HKLM-x32\...\{8696116E-F4C2-4C64-AD7E-FF365E244FA4}) (Version: 1.32.3889.0961 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
iCloud (HKLM\...\{704C0303-D20C-45AF-BD2B-556EAF31BE09}) (Version: 2.1.2.8 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2618 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
iTunes (HKLM\...\{76FF0F03-B707-4332-B5D1-A56C8303514E}) (Version: 11.0.4.4 - Apple Inc.)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Keyboard_Shortcuts (x32 Version: 1.1.0.12190 - Sony Corporation) Hidden
KUx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Malwarebytes version 3.0.4.1269 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.4.1269 - Malwarebytes)
Media Gallery (HKLM\...\{0EB7792D-EFA2-42AB-9A22-F33D9458E974}) (Version: 2.1.0.13300 - Sony Corporation)
Media Go (x32 Version: 2.0.317 - Sony) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MiniTool Partition Wizard Free 9.0 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Mobily Connect Card (HKLM-x32\...\{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}) (Version: 1.0.0.0 - Mobily)
Mountain Lion Skin Pack 4.0-Win7X64 (HKLM-x32\...\Mountain Lion Skin Pack) (Version: 4.0-Win7X64 - skinpack)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Oasis2Service (HKLM-x32\...\{E50FC5DB-7CBD-407D-A46E-0C13E45BC386}) (Version: 1.0.4 - DDNi)
Opera Stable 41.0.2353.69 (HKLM-x32\...\Opera 41.0.2353.69) (Version: 41.0.2353.69 - Opera Software)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
PlayMemories Home (x32 Version: 6.1.01.14210 - Sony Corporation) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayStation(R)Network Downloader (x32 Version: 2.07.00849 - Sony Computer Entertainment Inc.) Hidden
PlayStation(R)Store (x32 Version: 4.5.15.13232 - Sony Computer Entertainment Inc.) Hidden
Qualcomm Atheros Direct Connect (x32 Version: 3.1 - Qualcomm Atheros) Hidden
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{E727B31A-8B24-4C1C-934A-69634E0D2C0B}) (Version: 3.0 - Qualcomm Atheros)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Reader for PC (HKLM-x32\...\{38FB32F7-5A2A-40E4-B106-4C35F75725CD}) (Version: 2.4.00.05230 - Sony Corporation)
RealDownloader (x32 Version: 1.3.2 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.2 - RealNetworks)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6564 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.91 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Remote Keyboard (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden
Remote Play with PlayStation(R)3 (x32 Version: 1.1.0.21090 - Sony Corporation) Hidden
RogueKiller version 12.8.5.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.8.5.0 - Adlice Software)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.14.0 - SAMSUNG Electronics Co., Ltd.)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Sound Forge Audio Studio 10.0 (x32 Version: 10.0.176 - Sony) Hidden
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.0.1.0 - Synaptics Incorporated)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: - )
TrackID(TM) with BRAVIA (x32 Version: 1.2.0.09270 - Sony Corportaion) Hidden
TriDef 3D (Sony) 2.0.5 (HKLM-x32\...\experience-sony-bundle) (Version: 2.0.5 - Dynamic Digital Depth Australia Pty Ltd)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
V3DPx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VAIO - Microsoft Visual C++ 2010 SP1 Runtime 10.0.40219.325 (HKLM\...\{34EB42BE-F4D3-44C1-B28E-9740115DB72C}) (Version: 1.0.00.01300 - Sony Corporation)
VAIO - PlayMemories Home Plug-in (HKLM\...\{886C0C18-F905-49B2-90BA-EFC0FEDF27C6}) (Version: 2.0.00.14200 - Sony Corporation)
VAIO - Remote Keyboard (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden
VAIO - Remote Keyboard with PlayStation®3 (x32 Version: 1.2.0.09210 - Sony Corporation) Hidden
VAIO - Remote Play with PlayStation®3 (x32 Version: 1.1.0.21090 - Sony Corporation) Hidden
VAIO - TrackID™ with BRAVIA (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden
VAIO 3D Portal (x32 Version: 1.2.0.10131 - Sony Corporation) Hidden
VAIO Care (HKLM\...\{471F7C0A-CA3A-4F4C-8346-DE36AD5E23D1}) (Version: 7.3.0.14170 - Sony Corporation)
VAIO Control Center (x32 Version: 5.2.1.15070 - Sony Corporation) Hidden
VAIO CPU Fan Diagnostic (x32 Version: 1.1.0.09200 - Sony Corporation) Hidden
VAIO Data Restore Tool (x32 Version: 1.9.0.13190 - Sony Corporation) Hidden
VAIO Easy Connect (x32 Version: 1.1.2.01120 - Sony Corporation) Hidden
VAIO Gate (x32 Version: 2.4.1.09230 - Sony Corporation) Hidden
VAIO Gate Default (x32 Version: 2.5.2.02090 - Sony Corporation) Hidden
VAIO Gesture Control (x32 Version: 1.0.0.12300 - Sony Corporation) Hidden
VAIO Help and Support (x32 Version: 17.00.0109 - Sony Corporation) Hidden
VAIO Improvement (x32 Version: 1.3.0.12280 - Sony Corporation) Hidden
VAIO Manual (x32 Version: 2.3.0.12300 - Sony Corporation) Hidden
VAIO Messenger (HKLM-x32\...\VAIO Messenger) (Version: 2.0.550.0 - DDNi)
VAIO OOBE (x32 Version: 12.2.1.2483 - Sony Corporation) Hidden
VAIO Sample Contents (x32 Version: 1.4.0.09010 - Sony Corporation) Hidden
VAIO Satisfaction Survey. (x32 Version: 3.0 - Sony Electronics Inc.) Hidden
VAIO Smart Network (x32 Version: 3.14.1.07010 - Sony Corporation) Hidden
VAIO Transfer Support (x32 Version: 1.7.1.06040 - Sony Corporation) Hidden
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.2.0.16270 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Vegas Movie Studio HD Platinum 11.0 (x32 Version: 11.0.256 - Sony) Hidden
VHD (x32 Version: 1.0.0 - Microsoft) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VLC media player 2.0.6 (HKLM-x32\...\VLC media player) (Version: 2.0.6 - VideoLAN)
VMLx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSNx64 (Version: 1.0.0 - Sony Corporation) Hidden
VSNx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VUx64 (Version: 1.2.0 - Sony Corporation) Hidden
VUx86 (x32 Version: 1.2.0 - Sony Corporation) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - )
Wunderlist (HKLM-x32\...\{3974208a-940a-4080-8c1d-cc948f3b6ecd}) (Version: 2.2.1.22 - 6 Wunderkinder GmbH)
Wunderlist (HKLM-x32\...\{d39fc300-e243-431b-83ed-d828dae7c0c8}) (Version: 2.1.1.19 - 6 Wunderkinder GmbH)
Wunderlist (x32 Version: 2.2.1.22 - 6 Wunderkinder GmbH) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-211944695-2324473550-4201926417-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\USER\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File

==================== Restore Points =========================

07-06-2016 02:44:16 Scheduled Checkpoint
07-06-2016 15:12:32 Installed calibre
07-06-2016 23:18:17 Installed Evernote v. 5.0.3
16-06-2016 04:25:21 SkinPack
22-06-2016 02:06:33 Windows Update
27-06-2016 23:07:28 SkinPack
28-06-2016 13:12:29 SkinPack
28-06-2016 14:51:45 Restore Operation
07-07-2016 00:48:22 Removed MYTV
07-07-2016 00:52:13 Restore Operation
07-07-2016 08:59:00 Removed VAIO Update
07-07-2016 09:05:28 Installed VAIO Update
26-07-2016 09:21:05 Installed Evernote v. 6.1.2
02-08-2016 20:45:09 Scheduled Checkpoint
21-08-2016 01:49:44 Windows Update
24-08-2016 22:00:20 Removed Adobe Reader X (10.1.7) MUI.
28-08-2016 21:19:31 Removed VAIO Update
28-08-2016 21:21:10 Installed VAIO Update
28-08-2016 21:30:43 Installed VAIO Control Center
03-10-2016 00:39:41 Installed VAIO Smart Network
01-11-2016 03:03:15 Windows Update
21-11-2016 18:24:27 Scheduled Checkpoint
28-11-2016 01:48:32 Windows Defender Checkpoint
28-11-2016 01:52:59 Windows Update
07-12-2016 05:52:55 Removed Reader for PC.
07-12-2016 05:58:02 Installed Reader for PC.

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 08:04 - 2016-12-13 04:39 - 00000836 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05D24E21-D041-494E-83D7-CF7F62003B51} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-19] (Google Inc.)
Task: {149B02B1-1946-467A-9A37-73C250D060BE} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-211944695-2324473550-4201926417-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {167501A3-36F0-4E5D-A313-041C2CB19ADD} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {17197EC6-217A-40B3-BEF0-7D03BBA87313} - System32\Tasks\Sony Corporation\VAIO Smart Network\VSN Logon Start => net
Task: {1D8B6CA3-FA11-4CE6-973F-6BDF8C923FA6} - System32\Tasks\VAIO® Messenger (USER) => C:\Program Files (x86)\DDNi\Oasis\VAIO Messenger.exe [2013-07-03] (Digital Delivery Networks, Inc.)
Task: {1F1B0708-A084-4106-B109-9149FDC30F53} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-02-01] (Sony Corporation)
Task: {31740433-9E24-414E-9C41-D7CA284F0C09} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2016-03-31] (Sony Corporation)
Task: {33101FF5-FE01-4903-9C7B-225D0BD25FE2} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-21] (Microsoft Corporation)
Task: {37496AC8-4B05-4C63-97F2-D5693A52DF4A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-19] (Google Inc.)
Task: {37AD4FDA-78D9-4313-BBBD-868E820A63AD} - System32\Tasks\{75B62AAF-AB5E-46CB-B1E5-4C969A9F7904} => Chrome.exe HYPERLINK "http://ui.skype.com/ui/0/6.20.0.104/en/abandoninstall?source=lightinstaller&amp;page=tsInstall"http://ui.skype.com/ui/0/6.20.0.104/en/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {3AA27E73-C229-44E8-9BB2-AACB9407FA53} - System32\Tasks\{D9B5A24D-8886-40C2-B598-A90D37E44919} => Chrome.exe HYPERLINK "http://ui.skype.com/ui/0/6.14.60.104/en/abandoninstall?page=tsProgressBar"http://ui.skype.com/ui/0/6.14.60.104/en/abandoninstall?page=tsProgressBar
Task: {4EE6B093-184F-4D7D-B70A-B84B7592F2C1} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-07-07] (AVAST Software)
Task: {54D954D5-E207-432C-93E9-DC9FB23126F8} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-211944695-2324473550-4201926417-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {554BC61A-B4A1-4E4C-9003-F9FB55F30645} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2016-04-25] (Sony Corporation)
Task: {605057C1-225C-4CCE-A2E9-931ED6EE6BE7} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {6834F418-787C-41B1-81B3-7E182AF8ACC5} - System32\Tasks\{9639EF25-114F-481C-81C8-1C4F43470179} => Chrome.exe HYPERLINK "http://ui.skype.com/ui/0/6.20.0.104/en/abandoninstall?source=lightinstaller&amp;page=tsInstall"http://ui.skype.com/ui/0/6.20.0.104/en/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {6E56F2BB-66A3-4859-B911-70D2BC0AEE23} - System32\Tasks\{B681FFE4-7293-4119-9B33-A44201EFAC94} => Chrome.exe HYPERLINK "http://ui.skype.com/ui/0/6.20.0.104/en/abandoninstall?source=lightinstaller&amp;page=tsInstall"http://ui.skype.com/ui/0/6.20.0.104/en/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {711DC3D4-DE56-4134-B953-F56111A26B7E} - System32\Tasks\Sony Corporation\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2011-09-24] (Sony Corporation)
Task: {7B0B7411-28B2-45F3-9C05-3B5AF244F1F7} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [2016-02-20] (Microsoft Corporation)
Task: {7B1BFF23-9A42-453A-A3D6-72EF1D0405D6} - System32\Tasks\Sony Corporation\VAIO Care\AutoCheckMessage => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-02-01] (Sony Corporation)
Task: {7C188943-D68B-4C56-9EEC-25CE4BA1248F} - System32\Tasks\Sony\Keyboard Shortcuts => C:\Program Files (x86)\Sony\Keyboard Shortcuts\KeyboardShortcuts.exe [2012-03-21] ()
Task: {7E7C00D0-03F3-42FE-8482-8B64DDF37449} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-211944695-2324473550-4201926417-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {82A7894A-D3AC-4C79-B00B-B446F991C7C6} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2011-09-24] (Sony Corporation)
Task: {916A4853-2D7F-45C4-986F-335C63A24544} - System32\Tasks\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-02-24] (Sony Corporation)
Task: {958E7D1C-800B-4A4D-8626-6EF5B091F7E8} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorUser => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-03-29] (Sony Corporation)
Task: {9791AB0B-1D60-4F0D-A168-CA9BCA5C65C5} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-02-01] (Sony Corporation)
Task: {988AD7E1-562A-425C-9FD3-33F1DA4ADD78} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: {9ACDB9AE-64CB-4F9A-8C96-A69230D6F379} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorSystem => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-03-29] (Sony Corporation)
Task: {9E6370C5-AF1E-4C85-98F5-4322DE974706} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2011-12-28] (Sony Corporation)
Task: {A26CA3D5-8C9D-4769-97D6-3BC50D4EF3AD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {ACC54A0E-D527-4110-B19F-0B04E71043C0} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-03-08] (Sony Corporation)
Task: {B6E91603-DB39-4FE1-8AD1-313A5C461DB5} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-02-01] (Sony Corporation)
Task: {BA372E36-096C-4274-9ED0-9B4206CF495A} - System32\Tasks\Sony Corporation\VAIO Care\VAU => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-02-01] (Sony Corporation)
Task: {BE40CD11-289A-40FE-A9E3-6BE5EEC35B8C} - System32\Tasks\USER_ESRV_SVC => Wscript.exe //B //NoLogo "C:\Program Files\Sony\VAIO Care\esrv\task.vbs"
Task: {C0BE4431-145C-48D8-8ADE-4AE3233FACD2} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-211944695-2324473550-4201926417-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {C0DC21FD-2BD2-4981-BAA1-A084E86D4B13} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-03-08] (Sony Corporation)
Task: {C58E0DBB-CD5E-433F-BDBA-79F5154E8BB3} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-02-01] (Sony Corporation)
Task: {C92EF5C7-C71D-4017-A303-9A15052991FB} - System32\Tasks\DDNi Startup => C:\Program Files (x86)\DDNi\Oasis\DDNiStartup.exe [2013-07-03] (Digital Delivery Networks, Inc.)
Task: {CFAE0AAE-32D5-4CE2-8F45-2D33CE817EF5} - System32\Tasks\Sony Corporation\VAIO Care\CRMReminder => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-02-01] (Sony Corporation)
Task: {DB3D294C-8508-427A-B68E-EBA086197498} - System32\Tasks\Opera scheduled Autoupdate 1470643380 => C:\Program Files (x86)\Opera\launcher.exe [2016-11-21] (Opera Software)
Task: {FDDDC136-7EF1-49D4-8D13-AF6B0C784768} - System32\Tasks\VAIO® Messenger (Administrator) => C:\Program Files (x86)\DDNi\Oasis\VAIO Messenger.exe [2013-07-03] (Digital Delivery Networks, Inc.)
Task: {FFC6FE68-FDED-4019-9C27-2468761B0822} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2011-12-28] (Sony Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2012-04-28 11:53 - 2012-03-13 21:31 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2013-04-16 03:07 - 2013-04-16 03:07 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2012-03-15 02:24 - 2012-03-14 13:27 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2007-09-02 15:58 - 2007-09-02 15:58 - 00495616 _____ () C:\Program Files (x86)\Mountain Lion Skin Pack\RocketDock\RocketDock.exe
2007-08-17 21:10 - 2007-08-17 21:10 - 00159744 _____ () C:\Program Files (x86)\Mountain Lion Skin Pack\UberIcon\UberIcon.exe
2006-01-02 03:57 - 2006-01-02 03:57 - 00015872 _____ () C:\Program Files (x86)\Mountain Lion Skin Pack\Winroll\winroll.exe
2013-01-28 13:08 - 2013-01-28 13:08 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-01-28 13:08 - 2013-01-28 13:08 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-04-28 12:55 - 2012-03-08 07:27 - 00021128 _____ () C:\Program Files (x86)\Sony\VAIO Control Center\VESBasePS.dll
2004-04-06 21:30 - 2004-04-06 21:30 - 00008704 _____ () C:\Program Files (x86)\Mountain Lion Skin Pack\Winroll\winroll.dll
2007-03-10 08:39 - 2007-03-10 08:39 - 00090112 _____ () C:\Program Files (x86)\Mountain Lion Skin Pack\UberIcon\UberIcon.dll
2014-05-23 19:13 - 2014-05-23 19:13 - 00880640 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\fsk.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00040264 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskMediaPlayers.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00239944 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\Fskin.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00026952 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskinLocalize.dll
2014-04-25 22:27 - 2014-04-25 22:27 - 00798720 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskSecurity.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00125256 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskDocumentViewer.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00016200 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskPower.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00024904 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskNetInterface.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00017224 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskMobileMediaDevice.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00015176 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskTimeHardware.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00034632 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ticket.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00018760 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ebookDeviceNotifier.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00092488 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ebookUsb.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00149832 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\readerAppHelper.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00178504 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\USBDetector.dll
2007-09-02 15:57 - 2007-09-02 15:57 - 00069632 _____ () C:\Program Files (x86)\Mountain Lion Skin Pack\RocketDock\RocketDock.dll
2006-07-18 01:15 - 2006-07-18 01:15 - 00057344 _____ () C:\Program Files (x86)\Mountain Lion Skin Pack\UberIcon\Plugins\iZoom\fx.dll
2009-03-21 18:19 - 2009-03-21 18:19 - 00040960 _____ () C:\Program Files (x86)\Mountain Lion Skin Pack\YzShadow\Languages\English.lang
2014-10-31 18:57 - 2014-10-31 18:57 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\92a1650dbe9fad5f46633b835420e1a8\IsdiInterop.ni.dll
2012-04-28 11:58 - 2011-11-30 08:30 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-04-28 11:53 - 2012-03-13 21:32 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-211944695-2324473550-4201926417-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\USER\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Finderbar.lnk => C:\Windows\pss\Finderbar.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SkinPackMenu.lnk => C:\Windows\pss\SkinPackMenu.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^VirtuaWin.lnk => C:\Windows\pss\VirtuaWin.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^USER^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk => C:\Windows\pss\EvernoteClipper.lnk.Startup
MSCONFIG\startupreg: autodetect => C:\Windows\SysWOW64\SupportAppXL\AutoDect.exe
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Google Desktop Search => "C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" /startup
MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: PrivitizeVPN => C:\Program Files (x86)\PrivitizeVPN\PrivitizeVPN.exe /autorun
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Viber => "C:\Users\USER\AppData\Local\Viber\Viber.exe"
MSCONFIG\startupreg: Wunderlist => "C:\Program Files (x86)\Wunderlist2\Wunderlist.exe" /silent
MSCONFIG\startupreg: XLaunchpad => C:\Program Files (x86)\Mountain Lion Skin Pack\RocketDock\XLaunchPad\XLaunchpad.exe start
MSCONFIG\startupreg: xwidget => C:\Program Files (x86)\Mountain Lion Skin Pack\RocketDock\Xwidget\XWidge
 
==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [TCP Query User{2D2F76DA-7A9C-4E17-8F6D-2C91D9BFD051}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{775FCAD1-E0D0-428F-8C28-11EA64B1953C}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\TriDef 3D\TriDef\TriDefMediaPlayer\TriDefMediaPlayer.exe] => Enabled:TriDef 3D Media Player

==================== Faulty Device Manager Devices =============

Name: Realtek PCIE CardReader
Description: Realtek PCIE CardReader
Class Guid: {4d36e970-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek Semiconduct Corp.
Service: RSPCIESTOR
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: VBoxAsw Support Driver
Description: VBoxAsw Support Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: VBoxAswDrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/16/2016 01:47:24 AM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 0Initialize call failed, bailing out

Error: (12/16/2016 01:35:57 AM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 0Initialize call failed, bailing out

Error: (12/16/2016 01:29:45 AM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 0Initialize call failed, bailing out

Error: (12/16/2016 01:12:50 AM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 0Initialize call failed, bailing out

Error: (12/16/2016 01:12:11 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
Could not query the status of the EventSystem service.

System Error:
A system shutdown is in progress.
.

Error: (12/15/2016 07:25:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4992

Error: (12/15/2016 07:25:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4992

Error: (12/15/2016 07:25:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/15/2016 06:46:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15600

Error: (12/15/2016 06:46:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15600


System errors:
=============
Error: (12/16/2016 01:47:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The VBoxAsw Support Driver service failed to start due to the following error:
%%3

Error: (12/16/2016 01:47:27 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Diagnostic Policy Service service terminated with the following error:
%%5

Error: (12/16/2016 01:46:56 AM) (Source: sptd) (EventID: 4) (User: )
Description: Driver detected an internal error in its data structures for .

Error: (12/16/2016 01:42:57 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (12/16/2016 01:42:57 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (12/16/2016 01:42:57 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (12/16/2016 01:42:57 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (12/16/2016 01:42:57 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (12/16/2016 01:42:57 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (12/16/2016 01:42:57 AM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}


CodeIntegrity:
===================================
Date: 2016-07-07 00:42:39.433
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\idmwfp.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-07 00:41:53.918
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-07 00:41:53.809
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-06 15:59:02.406
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\idmwfp.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-06 15:58:23.137
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-06 15:58:23.044
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-05 22:17:49.137
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\idmwfp.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-05 22:17:33.200
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-05 22:17:33.122
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-05 19:26:37.726
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\idmwfp.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
Percentage of memory in use: 26%
Total physical RAM: 6046.36 MB
Available physical RAM: 4452.93 MB
Total Virtual: 12090.92 MB
Available Virtual: 10342.18 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:577.33 GB) (Free:120.49 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 7774B45D)
Partition 1: (Not Active) - (Size=18.5 GB) - (Type=27)
Partition 2: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=577.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
 
redtarget.gif

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

redtarget.gif
Also, your Event Viewer lists the following error:
"The Network List Service service depends on the Network Location Awareness service which failed to start...."
Check this: https://answers.microsoft.com/en-us...-service/a5885fd7-fb56-e011-8dfc-68b599b31bf5
 

Attachments

  • fixlist.txt
    7.8 KB · Views: 3
Fix result of Farbar Recovery Scan Tool (x64) Version:04-10-2015
Ran by USER (2016-12-16 02:47:11) Run:1
Running from C:\Users\USER\Documents\Bluetooth Folder
Loaded Profiles: USER (Available Profiles: USER)
Boot Mode: Normal
==============================================

fixlist content:
*****************
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: D - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {00be119b-64a5-11e6-a870-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {3e21f268-b6e8-11e5-b90f-844bf5ca1442} - F:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {424c5515-20ce-11e4-b4d6-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {424c5546-20ce-11e4-b4d6-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {424c563c-20ce-11e4-b4d6-001e101f3315} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {5e8385ec-b051-11e3-9c6a-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {5e8385fb-b051-11e3-9c6a-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {7b89fa3b-b3e9-11e5-8b7f-844bf5ca1442} - F:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {7b89fa56-b3e9-11e5-8b7f-844bf5ca1442} - F:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {861f071f-22ec-11e4-b47d-001e101fb681} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {8d71bde3-663a-11e6-851a-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {ba753457-c590-11e3-9e0e-001e101f35c2} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {ba7535e6-c590-11e3-9e0e-001e101f35c2} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {bd25524f-fa77-11e5-bf37-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {cfc2795d-6633-11e6-9c11-001e101f9843} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {cfc2796a-6633-11e6-9c11-001e101f9843} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {db5aaf5c-0188-11e6-bcdf-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {db5aaf76-0188-11e6-bcdf-844bf5ca1442} - D:\AutoRun.exe
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\...\MountPoints2: {f0de57b3-3189-11e2-b3b9-844bf5ca1442} - D:\autorun.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO-x32: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avast.com/AV772/search/web?q={searchTerms}
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avast.com/AV772/search/web?q={searchTerms}
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://search.avast.com/AV772/
SearchScopes: HKU\S-1-5-21-211944695-2324473550-4201926417-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=APLAzB7LLPRSIl7uHgEuIM___uo?q={searchTerms}
S3 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
S3 Sony SCSI Helper Service; no ImagePath
U3 aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [79216 2016-08-24] (AVAST Software)
C:\Windows\system32\drivers\aswHdsKe.sys
S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
2016-12-13 06:10 - 2013-03-22 01:09 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-01 16:10 - 2013-04-26 13:41 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-11-30 13:29 - 2016-11-30 13:29 - 0000000 ____H () C:\Users\USER\AppData\Local\BITF551.tmp
2016-11-17 20:38 - 2016-11-17 20:38 - 0000000 _____ () C:\Users\USER\AppData\Local\{666039A5-74BA-41B8-A18C-46DB4EED8E6A}
2016-11-30 13:28 - 2016-11-30 13:29 - 0000000 _____ () C:\Users\USER\AppData\Local\{A063ACA7-4DC1-4E2A-B18E-111A4496F0DB}
2016-02-17 22:48 - 2016-02-17 22:48 - 0000000 _____ () C:\Users\USER\AppData\Local\{CF490EE5-93B1-46F6-A7F2-35293EF9B222}
C:\Users\USER\AppData\Local\Temp\askToolbarInstaller.exe
C:\Users\USER\AppData\Local\Temp\COMAP.EXE
C:\Users\USER\AppData\Local\Temp\dllnt_dump.dll
C:\Users\USER\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\USER\AppData\Local\Temp\Foxit Updater.exe
C:\Users\USER\AppData\Local\Temp\GLF114.EXE
C:\Users\USER\AppData\Local\Temp\GLF1236.EXE
C:\Users\USER\AppData\Local\Temp\GLF308B.EXE
C:\Users\USER\AppData\Local\Temp\GLF5413.EXE
C:\Users\USER\AppData\Local\Temp\GLF780D.EXE
C:\Users\USER\AppData\Local\Temp\GLF84D9.EXE
C:\Users\USER\AppData\Local\Temp\GLF98E.EXE
C:\Users\USER\AppData\Local\Temp\GLFA3CA.EXE
C:\Users\USER\AppData\Local\Temp\GLFA84D.EXE
C:\Users\USER\AppData\Local\Temp\GLFC1B9.EXE
C:\Users\USER\AppData\Local\Temp\GLFCACD.EXE
C:\Users\USER\AppData\Local\Temp\GLFFC04.EXE
C:\Users\USER\AppData\Local\Temp\GomEncDnInstaller.exe
C:\Users\USER\AppData\Local\Temp\GoogleUpdateSetup_latest.exe
C:\Users\USER\AppData\Local\Temp\libeay32.dll
C:\Users\USER\AppData\Local\Temp\lowproc.exe
C:\Users\USER\AppData\Local\Temp\msvcr120.dll
C:\Users\USER\AppData\Local\Temp\ose00000.exe
C:\Users\USER\AppData\Local\Temp\SkypeSetup.exe
C:\Users\USER\AppData\Local\Temp\sqlite3.dll
C:\Users\USER\AppData\Local\Temp\stubhelper.dll
C:\Users\USER\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\USER\AppData\Local\Temp\uninst1.exe
C:\Users\USER\AppData\Local\Temp\utiC916.exe
C:\Users\USER\AppData\Local\Temp\utt7C0E.tmp.exe
C:\Users\USER\AppData\Local\Temp\utt9DBB.tmp.exe
C:\Users\USER\AppData\Local\Temp\VCPerfService32.exe
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.1.0.18.exe
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.1.1.19.exe
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.2.1.22.exe
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.3.0.29.exe
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.3.0.30.exe
CustomCLSID: HKU\S-1-5-21-211944695-2324473550-4201926417-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\USER\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
Task: {4EE6B093-184F-4D7D-B70A-B84B7592F2C1} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-07-07] (AVAST Software)
C:\Program Files\Common Files\AV\avast! Antivirus
Task: {988AD7E1-562A-425C-9FD3-33F1DA4ADD78} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\Program Files\AVAST Software

*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D" => key removed successfully
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{00be119b-64a5-11e6-a870-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{00be119b-64a5-11e6-a870-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3e21f268-b6e8-11e5-b90f-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{3e21f268-b6e8-11e5-b90f-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{424c5515-20ce-11e4-b4d6-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{424c5515-20ce-11e4-b4d6-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{424c5546-20ce-11e4-b4d6-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{424c5546-20ce-11e4-b4d6-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{424c563c-20ce-11e4-b4d6-001e101f3315}" => key removed successfully
HKCR\CLSID\{424c563c-20ce-11e4-b4d6-001e101f3315} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5e8385ec-b051-11e3-9c6a-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{5e8385ec-b051-11e3-9c6a-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5e8385fb-b051-11e3-9c6a-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{5e8385fb-b051-11e3-9c6a-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7b89fa3b-b3e9-11e5-8b7f-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{7b89fa3b-b3e9-11e5-8b7f-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7b89fa56-b3e9-11e5-8b7f-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{7b89fa56-b3e9-11e5-8b7f-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{861f071f-22ec-11e4-b47d-001e101fb681}" => key removed successfully
HKCR\CLSID\{861f071f-22ec-11e4-b47d-001e101fb681} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8d71bde3-663a-11e6-851a-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{8d71bde3-663a-11e6-851a-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ba753457-c590-11e3-9e0e-001e101f35c2}" => key removed successfully
HKCR\CLSID\{ba753457-c590-11e3-9e0e-001e101f35c2} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ba7535e6-c590-11e3-9e0e-001e101f35c2}" => key removed successfully
HKCR\CLSID\{ba7535e6-c590-11e3-9e0e-001e101f35c2} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bd25524f-fa77-11e5-bf37-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{bd25524f-fa77-11e5-bf37-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cfc2795d-6633-11e6-9c11-001e101f9843}" => key removed successfully
HKCR\CLSID\{cfc2795d-6633-11e6-9c11-001e101f9843} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cfc2796a-6633-11e6-9c11-001e101f9843}" => key removed successfully
HKCR\CLSID\{cfc2796a-6633-11e6-9c11-001e101f9843} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{db5aaf5c-0188-11e6-bcdf-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{db5aaf5c-0188-11e6-bcdf-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{db5aaf76-0188-11e6-bcdf-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{db5aaf76-0188-11e6-bcdf-844bf5ca1442} => key not found.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0de57b3-3189-11e2-b3b9-844bf5ca1442}" => key removed successfully
HKCR\CLSID\{f0de57b3-3189-11e2-b3b9-844bf5ca1442} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1" => key removed successfully
HKCR\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2" => key removed successfully
HKCR\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3" => key removed successfully
HKCR\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt4" => key removed successfully
HKCR\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\IDM Shell Extension" => key removed successfully
"HKCR\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}" => key removed successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}" => key removed successfully
HKCR\Wow6432Node\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
"HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => key removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKU\S-1-5-21-211944695-2324473550-4201926417-1000\Software\Microsoft\Internet Explorer\Main\\Search Bar => value removed successfully
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}" => key removed successfully
HKCR\CLSID\{70D46D94-BF1E-45ED-B567-48701376298E} => key not found.
AvastVBoxSvc => service removed successfully
Sony SCSI Helper Service => service removed successfully
aswHdsKe => service removed successfully
C:\Windows\system32\drivers\aswHdsKe.sys => moved successfully
ewusbmbb => service removed successfully
ew_hwusbdev => service removed successfully
huawei_enumerator => service removed successfully
hwdatacard => service removed successfully
VBoxAswDrv => service removed successfully

"C:\ProgramData\AVAST Software" folder move:

Could not move "C:\ProgramData\AVAST Software" => Scheduled to move on reboot.

C:\Windows\System32\Tasks\avast! Emergency Update => moved successfully
C:\Users\USER\AppData\Local\BITF551.tmp => moved successfully
Could not move "C:\Users\USER\AppData\Local\{666039A5-74BA-41B8-A18C-46DB4EED8E6A}" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\{A063ACA7-4DC1-4E2A-B18E-111A4496F0DB}" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\{CF490EE5-93B1-46F6-A7F2-35293EF9B222}" => Scheduled to move on reboot.
C:\Users\USER\AppData\Local\Temp\askToolbarInstaller.exe => moved successfully
Could not move "C:\Users\USER\AppData\Local\Temp\COMAP.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\dllnt_dump.dll" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\Foxit Reader Updater.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\Foxit Updater.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLF114.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLF1236.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLF308B.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLF5413.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLF780D.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLF84D9.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLF98E.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLFA3CA.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLFA84D.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLFC1B9.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLFCACD.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GLFFC04.EXE" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GomEncDnInstaller.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\GoogleUpdateSetup_latest.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\libeay32.dll" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\lowproc.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\msvcr120.dll" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\ose00000.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\SkypeSetup.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\sqlite3.dll" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\stubhelper.dll" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\swt-win32-3349.dll" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\uninst1.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\utiC916.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\utt7C0E.tmp.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\utt9DBB.tmp.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\VCPerfService32.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.1.0.18.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.1.1.19.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.2.1.22.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.3.0.29.exe" => Scheduled to move on reboot.
Could not move "C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.3.0.30.exe" => Scheduled to move on reboot.
"HKU\S-1-5-21-211944695-2324473550-4201926417-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{4EE6B093-184F-4D7D-B70A-B84B7592F2C1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4EE6B093-184F-4D7D-B70A-B84B7592F2C1}" => key removed successfully
C:\Windows\System32\Tasks\AVAST Software\Avast settings backup => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Avast settings backup" => key removed successfully

"C:\Program Files\Common Files\AV\avast! Antivirus" folder move:

Could not move "C:\Program Files\Common Files\AV\avast! Antivirus" => Scheduled to move on reboot.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{988AD7E1-562A-425C-9FD3-33F1DA4ADD78}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{988AD7E1-562A-425C-9FD3-33F1DA4ADD78}" => key removed successfully
C:\Windows\System32\Tasks\avast! Emergency Update => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\avast! Emergency Update" => key removed successfully
"C:\Program Files\AVAST Software" => File/Folder not found.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-12-16 02:48:39)

C:\ProgramData\AVAST Software => Is moved successfully
C:\Users\USER\AppData\Local\{666039A5-74BA-41B8-A18C-46DB4EED8E6A} => Is moved successfully
C:\Users\USER\AppData\Local\{A063ACA7-4DC1-4E2A-B18E-111A4496F0DB} => Is moved successfully
C:\Users\USER\AppData\Local\{CF490EE5-93B1-46F6-A7F2-35293EF9B222} => Is moved successfully
C:\Users\USER\AppData\Local\Temp\COMAP.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\dllnt_dump.dll => Is moved successfully
C:\Users\USER\AppData\Local\Temp\Foxit Reader Updater.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\Foxit Updater.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLF114.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLF1236.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLF308B.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLF5413.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLF780D.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLF84D9.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLF98E.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLFA3CA.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLFA84D.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLFC1B9.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLFCACD.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GLFFC04.EXE => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GomEncDnInstaller.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\GoogleUpdateSetup_latest.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\libeay32.dll => Is moved successfully
C:\Users\USER\AppData\Local\Temp\lowproc.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\msvcr120.dll => Is moved successfully
C:\Users\USER\AppData\Local\Temp\ose00000.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\SkypeSetup.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\sqlite3.dll => Is moved successfully
C:\Users\USER\AppData\Local\Temp\stubhelper.dll => Is moved successfully
C:\Users\USER\AppData\Local\Temp\swt-win32-3349.dll => Is moved successfully
C:\Users\USER\AppData\Local\Temp\uninst1.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\utiC916.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\utt7C0E.tmp.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\utt9DBB.tmp.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\VCPerfService32.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.1.0.18.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.1.1.19.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.2.1.22.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.3.0.29.exe => Is moved successfully
C:\Users\USER\AppData\Local\Temp\Wunderlist-Setup2.3.0.30.exe => Is moved successfully
C:\Program Files\Common Files\AV\avast! Antivirus => Is moved successfully

==== End of Fixlog 02:48:39 ====
 
Did you check dependency services as well as indicated in my link?
If so, restart computer and check on your internet connection (wired/wireless).
 
Yes I turned the dependency services to manual. when I restared it showed limited access connection and when I tried it again it was connected but 'no Internet access' message showed.
 
Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7, 8 and 10 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.

Go to Step 3 and click on Check button next to 1. See If Check Disk Is Needed.
If the tool that the Check Disk is needed click on Do It button next to 2. Check Disk.
In that case make sure you restart computer.

p22012121.gif



Once the above is done go to Step 4 and allow it to run System File Check by clicking on Do It button:

p22012122.gif



Go to Step 5 and under "System Restore" click on Create button:

p22012123.gif



Go to Repairs tab and click Open Repairs button.

p22012124.gif


In next window....
Leave all checkmarks as they're.
Click on Start Repairs button.

p22012126.gif


Post Windows Repair log which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
 
Tweaking.com - Windows Repair v3.9.19
--------------------------------------------------------------------------------

System Variables
--------------------------------------------------------------------------------
OS: Windows 7 Home Premium
OS Architecture: 64-bit
OS Version: 6.1.7601
OS Service Pack: Service Pack 1
Computer Name: VAIO-CHAN
Windows Drive: C:\
Windows Path: C:\Windows
Program Files: C:\Program Files
Program Files (x86): C:\Program Files (x86)
Current Profile: C:\Users\USER
Current Profile SID: S-1-5-21-211944695-2324473550-4201926417-1000
Current Profile Classes: S-1-5-21-211944695-2324473550-4201926417-1000_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\Windows\ServiceProfiles
Local Settings AppData: C:\Users\USER\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 00:05:58

Process Count: 90
Commit Total: 1.64 GB
Commit Limit: 11.81 GB
Commit Peak: 1.69 GB
Handle Count: 21722
Kernel Total: 373.01 MB
Kernel Paged: 239.82 MB
Kernel Non Paged: 133.19 MB
System Cache: 601.82 MB
Thread Count: 997
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 5.90 GB
Memory Used: 1.58 GB(26.7593%)
Memory Avail.: 4.32 GB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 5.90 GB
Memory Used: 1.36 GB(23.0862%)
Memory Avail.: 4.54 GB
--------------------------------------------------------------------------------

Starting Repairs...
Started at (12/16/2016 4:26:12 AM)

Setting Any Missing 'InstallDate' From Uninstall Sections Before Running Repair...
Total Missing 'InstallDate' Fixed: 1

01 - Reset Registry Permissions
Restore Windows 7/8/10 Default Registry Permissions
Start (12/16/2016 4:26:15 AM)


Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\hku.7z
Done, 0.22 seconds.


Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\hklm.7z
Done, 3.78 seconds.

Running Repair Under System Account
Done (12/16/2016 4:28:21 AM)

Reset File Permissions: C:
C: & Sub Folders
Start (12/16/2016 4:28:21 AM)

Running Repair Under Current User Account
Done (12/16/2016 4:42:45 AM)

Reset File Permissions
Restore Windows 7/8/10 Default File Permissions
Start (12/16/2016 4:42:45 AM)


Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\default.7z
Done, 0.16 seconds.


Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\profile.7z
Done, 0.16 seconds.


Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\program_files.7z
Done, 0.19 seconds.


Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\program_files_x86.7z
Done, 0.19 seconds.


Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\programdata.7z
Done, 0.17 seconds.


Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\windows.7z
Done, 3.15 seconds.

Running Repair Under Current User Account
Done (12/16/2016 4:50:35 AM)

Reset File Permissions: Cleanup
Repairing Restricted Folders Permissions To Avoid Infinite Loops
Start (12/16/2016 4:50:35 AM)

Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:50:39 AM)

03 - Reset Service Permissions
Start (12/16/2016 4:50:39 AM)

Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:50:59 AM)

04 - Register System Files
Start (12/16/2016 4:50:59 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:51:53 AM)

05 - Repair WMI
Start (12/16/2016 4:51:53 AM)

Starting Security Center So We Can Export The Security Info.

Exporting Antivirus Info...
No Antivirus Products Reported.

Exporting AntiSpyware Info...
Windows Defender Exported.

Exporting 3rd Party Firewall Info...
No Firewall Products Reported.

Running Repair Under Current User Account
Done (12/16/2016 4:54:10 AM)

06 - Repair Windows Firewall
Start (12/16/2016 4:54:10 AM)

Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\services.7z
Done, 0.19 seconds.

Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:54:34 AM)

07 - Repair Internet Explorer
Start (12/16/2016 4:54:34 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:54:56 AM)

08 - Repair MDAC/MS Jet
Start (12/16/2016 4:54:56 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:55:07 AM)

09 - Repair Hosts File
Start (12/16/2016 4:55:07 AM)
Running Repair Under System Account
Done (12/16/2016 4:55:08 AM)

10 - Remove Policies Set By Infections
Start (12/16/2016 4:55:08 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:55:10 AM)

11 - Repair Start Menu Icons Removed By Infections
Start (12/16/2016 4:55:10 AM)
Running Repair Under System Account
Done (12/16/2016 4:55:11 AM)

12 - Repair Icons
Start (12/16/2016 4:55:11 AM)
Running Repair Under Current User Account
Done (12/16/2016 4:55:21 AM)

13 - Repair Network
Start (12/16/2016 4:55:21 AM)

Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\services.7z
Done, 0.23 seconds.

Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:55:45 AM)

14 - Remove Temp Files
Start (12/16/2016 4:55:45 AM)
Running Repair Under System Account
Done (12/16/2016 4:55:55 AM)

15 - Repair Proxy Settings
Start (12/16/2016 4:55:55 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:55:57 AM)

17 - Repair Windows Updates
Start (12/16/2016 4:55:57 AM)

Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\services.7z
Done, 0.19 seconds.

Running Repair Under Current User Account
Running Repair Under System Account
Setting Windows Updates Files That Are In Use To Be Removed At Next Boot.
Done (12/16/2016 4:56:26 AM)

18 - Repair CD/DVD Missing/Not Working
Start (12/16/2016 4:56:26 AM)
iTunes or GEARAspiWDM.sys not found, not applying UpperFilters iTunes Reg Key
Done (12/16/2016 4:56:26 AM)

19 - Repair Volume Shadow Copy Service
Start (12/16/2016 4:56:26 AM)

Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\services.7z
Done, 0.2 seconds.

Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:56:49 AM)

20 - Repair Windows Sidebar/Gadgets
Start (12/16/2016 4:56:49 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:56:53 AM)

21 - Repair MSI (Windows Installer)
Start (12/16/2016 4:56:53 AM)

Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\services.7z
Done, 0.19 seconds.

Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:09 AM)

22 - Repair Windows Snipping Tool
Start (12/16/2016 4:57:09 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:11 AM)

23.01 - Repair bat Association
Start (12/16/2016 4:57:11 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:13 AM)

23.02 - Repair cmd Association
Start (12/16/2016 4:57:13 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:16 AM)

23.03 - Repair com Association
Start (12/16/2016 4:57:16 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:18 AM)

23.04 - Repair Directory Association
Start (12/16/2016 4:57:18 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:20 AM)

23.05 - Repair Drive Association
Start (12/16/2016 4:57:20 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:22 AM)

23.06 - Repair exe Association
Start (12/16/2016 4:57:23 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:25 AM)

23.07 - Repair Folder Association
Start (12/16/2016 4:57:25 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:27 AM)

23.08 - Repair inf Association
Start (12/16/2016 4:57:27 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:29 AM)

23.09 - Repair lnk (Shortcuts) Association
Start (12/16/2016 4:57:29 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:32 AM)

23.10 - Repair msc Association
Start (12/16/2016 4:57:32 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:34 AM)

23.11 - Repair reg Association
Start (12/16/2016 4:57:34 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:36 AM)

23.12 - Repair scr Association
Start (12/16/2016 4:57:36 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:38 AM)

24 - Repair Windows Safe Mode
Start (12/16/2016 4:57:38 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:41 AM)

25 - Repair Print Spooler
Start (12/16/2016 4:57:41 AM)

Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\services.7z
Done, 0.2 seconds.

Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:57:57 AM)

26 - Restore Important Windows Services
Start (12/16/2016 4:57:57 AM)

Decompressing & Updating Windows Permission File C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\services.7z
Done, 0.19 seconds.

Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:58:07 AM)

27 - Set Windows Services To Default Startup
Start (12/16/2016 4:58:07 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:58:13 AM)

Skipping Repair.
Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
Current version: 6.1.7601

Skipping Repair.
Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
Current version: 6.1.7601

Skipping Repair.
Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
Current version: 6.1.7601

31 - Repair Windows 'New' Submenu
Start (12/16/2016 4:58:13 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:58:15 AM)

32 - Restore UAC (User Account Control) Settings
Start (12/16/2016 4:58:15 AM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (12/16/2016 4:58:18 AM)

33 - Repair Performance Counters
Start (12/16/2016 4:58:18 AM)
Running Repair Under Current User Account
Done (12/16/2016 4:58:30 AM)

Cleaning up empty logs...

All Selected Repairs Done.
Done at (12/16/2016 4:58:30 AM)
Total Repair Time: 00:32:20


...YOU MUST RESTART YOUR SYSTEM...
 
redtarget.gif
Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

redtarget.gif
Please download MiniToolBox, save it to your desktop and run it.

Checkmark following boxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Devices (do NOT change any settings)
Click Go and post the result.
 
Farbar Service Scanner Version: 27-01-2016
Ran by USER (administrator) on 16-12-2016 at 06:59:30
Running from "C:\Users\USER\Documents\Bluetooth Folder"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
LAN connected.
Attempt to access Google IP returned error. Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****
 
MiniToolBox by Farbar Version: 17-06-2016
Ran by USER (administrator) on 16-12-2016 at 07:03:58
Running from "C:\Users\USER\Documents\Bluetooth Folder"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Model: Manufacturer:
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.
========================= IP Configuration: ================================

Atheros AR9485WB-EG Wireless Network Adapter = Wireless Network Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . :
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 84-4B-F5-CA-14-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 30-F9-ED-B9-7C-89
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR9485WB-EG Wireless Network Adapter
Physical Address. . . . . . . . . : 84-4B-F5-CA-14-41
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2402:4000:bbfc:accd:a86d:988a:a85:d3bf(Preferred)
Temporary IPv6 Address. . . . . . : 2402:4000:bbfc:accd:48bc:94c5:ad0d:153(Preferred)
Link-local IPv6 Address . . . . . : fe80::a86d:988a:a85:d3bf%14(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.8.102(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, December 16, 2016 5:01:18 AM
Lease Expires . . . . . . . . . . : Saturday, December 17, 2016 6:50:18 AM
Default Gateway . . . . . . . . . : fe80::de09:4cff:fe69:7f49%14
192.168.8.1
DHCP Server . . . . . . . . . . . : 192.168.8.1
DNS Servers . . . . . . . . . . . : 192.168.8.1
192.168.8.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : A6-4B-F5-CA-14-41
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{92EDD8D2-6A03-493A-990E-528A3AEB34EB}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{FB06D168-405B-4B4D-88EA-A580CB3992B8}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{6A8F38F1-925F-46C1-A683-3D01DC28B6AC}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {1EB814C8-4EBF-4F0D-9857-166BDEF8DC2D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{BC0EB33D-B75B-4DFF-BE01-1380CF711F14}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: homerouter.cpe
Address: 192.168.8.1

Name: google.com
Addresses: 2404:6800:4003:c01::64
172.217.24.110

Ping request could not find host google.com. Please check the name and try again.
Server: homerouter.cpe
Address: 192.168.8.1

Name: yahoo.com
Addresses: 2001:4998:44:204::a7
2001:4998:c:a06::2:4008
2001:4998:58:c02::a9
98.139.183.24
98.138.253.109
206.190.36.45

Ping request could not find host yahoo.com. Please check the name and try again.

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...84 4b f5 ca 14 42 ......Bluetooth Device (Personal Area Network)
13...30 f9 ed b9 7c 89 ......Realtek PCIe GBE Family Controller
14...84 4b f5 ca 14 41 ......Atheros AR9485WB-EG Wireless Network Adapter
17...a6 4b f5 ca 14 41 ......Microsoft Virtual WiFi Miniport Adapter
1...........................Software Loopback Interface 1
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
36...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.8.1 192.168.8.102 26
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.8.0 255.255.255.0 On-link 192.168.8.102 281
192.168.8.102 255.255.255.255 On-link 192.168.8.102 281
192.168.8.255 255.255.255.255 On-link 192.168.8.102 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.8.102 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.8.102 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 41 ::/0 fe80::de09:4cff:fe69:7f49
1 306 ::1/128 On-link
14 33 2402:4000:bbfc:accd::/64 On-link
14 281 2402:4000:bbfc:accd:48bc:94c5:ad0d:153/128
On-link
14 281 2402:4000:bbfc:accd:a86d:988a:a85:d3bf/128
On-link
14 281 fe80::/64 On-link
14 281 fe80::a86d:988a:a85:d3bf/128
On-link
1 306 ff00::/8 On-link
14 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/16/2016 05:00:40 AM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown

Error: (12/16/2016 05:00:40 AM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown

Error: (12/16/2016 05:00:24 AM) (Source: Schedule) (User: )
Description: Schedule error: 0Initialize call failed, bailing out

Error: (12/16/2016 04:58:29 AM) (Source: Microsoft-Windows-LoadPerf) (User: VAIO-CHAN)
Description: Installing the performance counter strings for service .NET CLR Networking 4.0.0.0 () failed. The first DWORD in the Data section contains the error code.

Error: (12/16/2016 04:58:29 AM) (Source: Microsoft-Windows-LoadPerf) (User: VAIO-CHAN)
Description: Installing the performance counter strings for service .NET Data Provider for Oracle () failed. The first DWORD in the Data section contains the error code.

Error: (12/16/2016 04:25:27 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\System32\wbem\WmiPrvSE.exe; Description = Tweaking.com - Windows Repair; Error = 0x80042308).

Error: (12/16/2016 04:25:27 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Volume/disk not connected or not found.
Error context: GetComputerNameEx(3, NULL, [0]) [0].


Operation:
Processing BeginPrepareSnapshot
Snapshot Context

Context:
Execution Context: System Provider
Volume Name: HYPERLINK "\\\\?\\Volume{90efe0c1-d059-11e1-9961-806e6f6e6963}\\"\\?\Volume{90efe0c1-d059-11e1-9961-806e6f6e6963}\
Snapshot ID: {12bd58b2-7559-43d8-8a1f-43f32481fc18}

Error: (12/16/2016 04:20:46 AM) (Source: Schedule) (User: )
Description: Schedule error: 0Initialize call failed, bailing out

Error: (12/16/2016 03:59:14 AM) (Source: Schedule) (User: )
Description: Schedule error: 0Initialize call failed, bailing out

Error: (12/16/2016 03:52:21 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80040154, Class not registered
.


Operation:
Instantiating VSS server


System errors:
=============
Error: (12/16/2016 05:08:24 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (12/16/2016 05:05:08 AM) (Source: Service Control Manager) (User: )
Description: The VAIO Care Performance Service service hung on starting.

Error: (12/16/2016 04:59:32 AM) (Source: sptd) (User: )
Description: Driver detected an internal error in its data structures for .

Error: (12/16/2016 04:58:13 AM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (12/16/2016 04:56:00 AM) (Source: Service Control Manager) (User: )
Description: The Windows Modules Installer service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (12/16/2016 04:20:47 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Policy Service service terminated with the following error:
%%5 = Access is denied.


Error: (12/16/2016 04:20:14 AM) (Source: sptd) (User: )
Description: Driver detected an internal error in its data structures for .

Error: (12/16/2016 04:03:42 AM) (Source: Service Control Manager) (User: )
Description: The VAIO Care Performance Service service hung on starting.

Error: (12/16/2016 03:59:16 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Policy Service service terminated with the following error:
%%5 = Access is denied.


Error: (12/16/2016 03:58:50 AM) (Source: sptd) (User: )
Description: Driver detected an internal error in its data structures for .


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2016-07-07 00:42:39.433
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\idmwfp.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-07 00:41:53.918
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-07 00:41:53.809
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-06 15:59:02.406
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\idmwfp.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-06 15:58:23.137
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-06 15:58:23.044
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-05 22:17:49.137
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\idmwfp.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-05 22:17:33.200
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-05 22:17:33.122
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-05 19:26:37.726
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\idmwfp.sys because the set of per-page image hashes could not be found on the system.


========================= Devices: ================================

Name: Realtek PCIE CardReader
Description: Realtek PCIE CardReader
Class Guid: {4d36e970-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek Semiconduct Corp.
Service: RSPCIESTOR
Device ID: PCI\VEN_10EC&DEV_5209&SUBSYS_90AB104D&REV_01\4&78AB65A&0&00E1
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


**** End of log ****
 
  • Please download comintrep.zip and save it to your desktop
  • Unzip downloaded file. It'll create cintrepair folder. Inside that folder you'll find CIntRep.exe file
  • Double click on CIntRep.exe to run the tool
  • Place a checkmark next to the following entries:
  • Reset Internet Protocol (TCP/IP)
  • Repair Winsock (Reset Catalog)
  • Renew Internet Connections
  • Flush DNS Resolver Cache
  • Repair Internet Explorer xxxx
  • Clear Windows Update History
  • Repair Windows / Automatic Updates
  • Repair SSL / HTTPS / Cryptography
  • Reset Windows Firewall Configuration
  • Restore the default hosts file
  • Repair Workgroup Computers view
  • Click Go!
  • Ignore any error messages for now
  • Click OK to reboot your computer
  • Check your internet access
 
At this point I'm out of ideas.
Your computer is clean so I suggest new topic in Windows forum.
 
You must log in or register to reply here.

Similar threads

S
  • Locked
Inactive Am I infected?
Replies
8
Views
3K
Broni
Broni
A
Infected: Antivirus says it's Trojan:Script/Wacatac.H!ml
Replies
12
Views
2K
adidaman27
A
liltxkg
Inactive Cleanup Help - File Explorer Freezing
Replies
6
Views
2K
Broni
Broni

Latest posts

Back