Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

svchost infection - internet won't work


  • Please log in to reply
21 replies to this topic

#1 Jimrost

Jimrost

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:12:58 PM

Posted 31 March 2013 - 11:20 AM

I am working on a friends laptop.  Dell XPS 15z.

It appears to be infected with a trojan in the svchost.exe file.

I have read a few of the posts here and ran some of the software recommended.

But still no good.

One of the problems that I have not heard from others is that my internet is disabled on the laptop.

It connects to the router fine, but just will not let me receive any traffic.

Help Please!



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:58 AM

Posted 31 March 2013 - 11:23 AM

You need to copy the tools to infected PC using a flash drive

 

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    tds2.jpg

  • Check Loaded Modules and Detect TDLFS file system. Do not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    2012081514h0118.png

  • Click Start Scan and allow the scan process to run
  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    tds6.jpg
  • Click Reboot computer
  • Please post the contents of TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply
  • Due to forum upgrade you may face issues posting the TDSSkiller log.Just last few lines of log is sufficient

===================================================

RKILL
  • Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another.) and save it to your desktop:
  • Link 1
  • Link 2

  • In order for Rkill to run properly you must disable your anti-malware software. Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • Note: You may have to run Rkill a few times before it is successful. You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear. Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again. If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


 


Farbar's MiniToolBox

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.

  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply

===================================================

Farbar's Service Scanner

Please download Farbar Service Scanner, save it to your desktop, and run it.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services

  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.



#3 Jimrost

Jimrost
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:12:58 PM

Posted 31 March 2013 - 11:55 AM

TDSkiller log - Let me know if you want more than this.

13:42:19.0878 4388  Scan finished
13:42:19.0878 4388  ============================================================
13:42:19.0893 6864  Detected object count: 1
13:42:19.0893 6864  Actual detected object count: 1
13:42:36.0304 6864  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
13:42:36.0304 6864  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
 

 

RKILL log

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/31/2013 01:44:55 PM in x64 mode.
Windows Version: Windows 7 Professional Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 03/31/2013 01:47:23 PM
Execution time: 0 hours(s), 2 minute(s), and 28 seconds(s)
 

 

Mini Tool Kit

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by Val (administrator) on 31-03-2013 at 13:50:19
Running from "C:\Users\Val\Desktop"
Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6230 = Wireless Network Connection (Connected)
Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Val-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : sbcglobal.net

Wireless LAN adapter Wireless Network Connection 3:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
   Physical Address. . . . . . . . . : 88-53-2E-6F-DB-24
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 88-53-2E-6F-DB-24
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 88-53-2E-6F-DB-27
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : sbcglobal.net
   Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6230
   Physical Address. . . . . . . . . : 88-53-2E-6F-DB-23
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::1e4:8a13:591f:9124%13(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.7(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, March 31, 2013 1:40:48 PM
   Lease Expires . . . . . . . . . . : Monday, April 01, 2013 1:40:47 PM
   Default Gateway . . . . . . . . . : 192.168.0.254
   DHCP Server . . . . . . . . . . . : 192.168.0.254
   DHCPv6 IAID . . . . . . . . . . . : 243815214
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-60-AB-5E-84-8F-69-B4-98-39
   DNS Servers . . . . . . . . . . . : 68.94.156.1
                                       68.94.157.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : XW-DL
   Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : 84-8F-69-B4-98-39
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 16:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.sbcglobal.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : sbcglobal.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 18:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{CE53C82E-C445-43A0-B1CC-A49A9CAE050D}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{6967B5C8-8D52-4C52-B91D-89DE0906258E}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.XW-DL:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{2AAF2690-4480-4F0A-B107-9ECDA1A6C7EA}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #7
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  68.94.156.1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Ping request could not find host google.com. Please check the name and try again.
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  68.94.156.1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Ping request could not find host yahoo.com. Please check the name and try again.

Pinging 127.0.0.1 with 32 bytes of data:
General failure.
General failure.

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),
===========================================================================
Interface List
 17...88 53 2e 6f db 24 ......Microsoft Virtual WiFi Miniport Adapter #2
 16...88 53 2e 6f db 24 ......Microsoft Virtual WiFi Miniport Adapter
 14...88 53 2e 6f db 27 ......Bluetooth Device (Personal Area Network)
 13...88 53 2e 6f db 23 ......Intel® Centrino® Advanced-N 6230
 11...84 8f 69 b4 98 39 ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 18...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
 28...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 25...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 57...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 26...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
 59...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
 27...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #7
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.0.254      192.168.0.7     30
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.7    286
      192.168.0.7  255.255.255.255         On-link       192.168.0.7    286
    192.168.0.255  255.255.255.255         On-link       192.168.0.7    286
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.7    286
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.7    286
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 13    286 fe80::/64                On-link
 13    286 fe80::1e4:8a13:591f:9124/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    286 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/31/2013 01:51:18 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The server name or address could not be resolved

Error: (03/31/2013 01:43:54 PM) (Source: Google Update) (User: Val-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http s

Error: (03/31/2013 01:43:32 PM) (Source: CVHSVC) (User: )
Description: Information only.
Click-2-Run package registration failure.

Error: (03/31/2013 01:43:32 PM) (Source: Application Virtualization Client) (User: )
Description: {tid=E64}
The Application Virtualization Client could not connect to stream URL 'http://c2r.microsoft.com/ConsumerC2R/en-us/14.0.4763.1000/ConsumerC2R.en-us_14.0.6126.5003.sft' (rc 2460420A-40002EE7, original rc 2460420A-40002EE7).

Error: (03/31/2013 01:43:01 PM) (Source: McLogEvent) (User: NT AUTHORITY)
Description: MCSCAN32 Engine Initialisation failed.
Engine returned error : 3

Error: (03/31/2013 01:40:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/31/2013 01:39:17 PM) (Source: Google Update) (User: Val-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http s

Error: (03/31/2013 01:38:14 PM) (Source: McLogEvent) (User: NT AUTHORITY)
Description: MCSCAN32 Engine Initialisation failed.
Engine returned error : 3

Error: (03/31/2013 01:38:06 PM) (Source: CVHSVC) (User: )
Description: Information only.
Click-2-Run package registration failure.

Error: (03/31/2013 01:38:06 PM) (Source: Application Virtualization Client) (User: )
Description: {tid=D54}
The Application Virtualization Client could not connect to stream URL 'http://c2r.microsoft.com/ConsumerC2R/en-us/14.0.4763.1000/ConsumerC2R.en-us_14.0.6126.5003.sft' (rc 2460420A-40002EE7, original rc 2460420A-40002EE7).


System errors:
=============
Error: (03/31/2013 01:43:00 PM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service failed to start due to the following error:
%%1053

Error: (03/31/2013 01:43:00 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Dell Digital Delivery Service service to connect.

Error: (03/31/2013 01:41:57 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (03/31/2013 01:41:27 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (03/31/2013 01:38:11 PM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service failed to start due to the following error:
%%1053

Error: (03/31/2013 01:38:11 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Dell Digital Delivery Service service to connect.

Error: (03/31/2013 01:37:57 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \...\DR1.

Error: (03/31/2013 01:37:54 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, is not ready for access yet.

Error: (03/31/2013 01:37:52 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, is not ready for access yet.

Error: (03/31/2013 01:37:52 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, is not ready for access yet.


Microsoft Office Sessions:
=========================
Error: (03/31/2013 01:51:18 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The server name or address could not be resolved

Error: (03/31/2013 01:43:54 PM) (Source: Google Update)(User: Val-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http s

Error: (03/31/2013 01:43:32 PM) (Source: CVHSVC)(User: )
Description: Click-2-Run package registration failure.

Error: (03/31/2013 01:43:32 PM) (Source: Application Virtualization Client)(User: )
Description: {tid=E64}
http://c2r.microsoft.com/ConsumerC2R/en-us/14.0.4763.1000/ConsumerC2R.en-us_14.0.6126.5003.sft2460420A-40002EE72460420A-40002EE7

Error: (03/31/2013 01:43:01 PM) (Source: McLogEvent)(User: NT AUTHORITY)
Description: 3

Error: (03/31/2013 01:40:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/31/2013 01:39:17 PM) (Source: Google Update)(User: Val-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http s

Error: (03/31/2013 01:38:14 PM) (Source: McLogEvent)(User: NT AUTHORITY)
Description: 3

Error: (03/31/2013 01:38:06 PM) (Source: CVHSVC)(User: )
Description: Click-2-Run package registration failure.

Error: (03/31/2013 01:38:06 PM) (Source: Application Virtualization Client)(User: )
Description: {tid=D54}
http://c2r.microsoft.com/ConsumerC2R/en-us/14.0.4763.1000/ConsumerC2R.en-us_14.0.6126.5003.sft2460420A-40002EE72460420A-40002EE7


CodeIntegrity Errors:
===================================
  Date: 2013-03-31 13:05:26.394
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-03-31 13:05:26.378
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-03-31 11:54:55.166
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-31 11:54:55.166
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-31 11:54:55.150
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-31 10:13:35.539
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-31 10:13:35.539
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-31 10:13:35.523
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-30 23:15:36.820
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-30 23:15:36.820
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 7.2.8)
Adobe AIR (Version: 2.6.0.19120)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Reader X (10.1.4) MUI (Version: 10.1.4)
Advanced Audio FX Engine (Version: 1.12.05)
BufferChm (Version: 140.0.212.000)
Consumer In-Home Service Agreement (Version: 2.0.0)
Cypress TrackPad (Version: 2.3.6.12)
D110 (Version: 140.0.283.000)
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software (Version: 9.4.61)
Dell DataSafe Local Backup (Version: 9.4.61)
Dell Digital Delivery (Version: 2.2.4000.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell MusicStage (Version: 1.5.201.0)
Dell PhotoStage (Version: 1.5.0.65)
Dell Stage (Version: 1.7.209.0)
Dell Support Center (Version: 3.2.6032.55)
Dell VideoStage  (Version: 1.2.0.1712)
Dell Webcam Central (Version: 2.00.44)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
DirectX 9 Runtime (Version: 1.00.0000)
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Google Chrome (Version: 23.0.1271.64)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
GPBaseService2 (Version: 140.0.211.000)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
High-Definition Video Playback (Version: 11.1.11500.4.273)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.${CAB_VERSION})
HP Photosmart D110 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Product Detection (Version: 11.14.0001)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.003.001.001)
HPAppStudio (Version: 140.0.95.000)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2455)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.2.0.0587)
Intel® PROSet/Wireless WiFi Software (Version: 14.2.0000)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
Intel® WiDi (Version: 2.1.39.0)
Intel® Wireless Display
Internet Explorer (Version: 8)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 27 (64-bit) (Version: 6.0.270)
Java™ 6 Update 27 (Version: 6.0.270)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MarketResearch (Version: 140.0.212.000)
McAfee SecurityCenter (Version: 11.6.435)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Neat ADF Scanner 2008 Driver (Version: 2.0.0.61)
Neat ADF Scanner Driver (Version: 2.0.0.56)
Neat Mobile Scanner (Silver) Driver (Version: 2.0.0.63)
Neat Mobile Scanner 2008 Driver (Version: 2.0.0.69)
Neat Mobile Scanner Driver (Version: 2.0.0.122)
NeatWorks (Version: 4.9.5.5)
NeatWorks Core Files (Version: 4.9.5.5)
Nero 10 Movie ThemePack Basic (Version: 10.6.10000.1.0)
Nero Control Center 10 (Version: 10.6.13000.0.11)
Nero ControlCenter 10 Help (CHM) (Version: 10.2.10800)
Nero Core Components 10 (Version: 2.0.20000.9.12)
Nero Update (Version: 11.0.11500.28.0)
Network64 (Version: 140.0.215.000)
Network64 (Version: 140.0.221.000)
NVIDIA 3D Vision Driver 268.30 (Version: 268.30)
NVIDIA Control Panel 268.30 (Version: 268.30)
NVIDIA Graphics Driver 268.30 (Version: 268.30)
NVIDIA HD Audio Driver 1.2.22.1 (Version: 1.2.22.1)
NVIDIA Install Application (Version: 2.265.41.0)
NVIDIA Optimus 1.0.21 (Version: 1.0.21)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6830)
NVIDIA Update Components (Version: 1.0.21)
PhotoShowExpress (Version: 2.0.063)
PlayReady PC Runtime x86 (Version: 1.3.0)
PS_AIO_07_D110_SW_Min (Version: 140.0.142.000)
Quickset64 (Version: 11.0.21)
QuickTransfer (Version: 140.0.98.000)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6383)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Scan (Version: 140.0.80.000)
Shared C Run-time for x64 (Version: 10.0.0)
Shop for HP Supplies (Version: 14.0)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.214.000)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Status (Version: 140.0.256.000)
SyncUP (Version: 1.12.11200.10.102)
SyncUP (Version: 10.2.15400)
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
WebReg (Version: 140.0.212.017)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Devices: ================================

Name: ACPI Sleep Button
Description: ACPI Sleep Button
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft ISATAP Adapter #4
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Cypress Input Device
Description: Cypress Input Device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Cypress Semiconductor, Inc.
Service: cyhid

Name: Remote Access IPv6 ARP Driver
Description: Remote Access IPv6 ARP Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wanarpv6

Name: Intel® Core™ i5-2430M CPU @ 2.40GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: McAfee Inc. mfefirek
Description: McAfee Inc. mfefirek
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mfefirek

Name: Sftvol
Description: Sftvol
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Sftvol

Name: IWD Bus Enumerator
Description: IWD Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: iwdbus

Name: HID Keyboard Device
Description: HID Keyboard Device
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: kbdhid

Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft Windows Management Interface for ACPI
Description: Microsoft Windows Management Interface for ACPI
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: WmiAcpi

Name: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Adapter
Description: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Intel Corporation
Service: BTHUSB

Name: F:\
Description: SD/MMC          
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: JMCR    
Service: WUDFRd

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: UMBus Root Bus Enumerator
Description: UMBus Root Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: Kernel Mode Driver Frameworks service
Description: Kernel Mode Driver Frameworks service
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wdf01000

Name: JMicron PCIe SD/MMC Host Controller
Description: JMicron PCIe SD/MMC Host Controller
Class Guid: {4d36e970-e325-11ce-bfc1-08002be10318}
Manufacturer: JMicron Technology Corp.
Service: JMCR

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr

Name: McAfee Inc. mfehidk
Description: McAfee Inc. mfehidk
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mfehidk

Name: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 1 - 1C10
Description: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 1 - 1C10
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C2D
Description: Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C2D
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbehci

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: NETBT
Description: NETBT
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NetBT

Name: Microsoft Virtual Drive Enumerator Driver
Description: Microsoft Virtual Drive Enumerator Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: vdrvroot

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: WFP Lightweight Filter
Description: WFP Lightweight Filter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WfpLwf

Name: ACPI Thermal Zone
Description: ACPI Thermal Zone
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Generic USB Hub
Description: Generic USB Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Generic USB Hub)
Service: usbhub

Name: Volume Manager
Description: Volume Manager
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: volmgr

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: ACPI Thermal Zone
Description: ACPI Thermal Zone
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: McAfee NDIS Light Filter
Description: McAfee NDIS Light Filter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mfenlfk

Name: NSI proxy service driver.
Description: NSI proxy service driver.
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: nsiproxy

Name: JMicron PCIe MS Host Controller
Description: JMicron PCIe MS Host Controller
Class Guid: {4d36e970-e325-11ce-bfc1-08002be10318}
Manufacturer: JMicron Technology Corp.
Service: JMCR

Name: HL-DT-ST DVD+-RW GS30N
Description: CD-ROM Drive
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard CD-ROM drives)
Service: cdrom

Name: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 2 - 1C12
Description: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 2 - 1C12
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Intel® Management Engine Interface
Description: Intel® Management Engine Interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: MEIx64

Name: Generic USB Hub
Description: Generic USB Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Generic USB Hub)
Service: usbhub

Name: Microsoft ACPI-Compliant System
Description: Microsoft ACPI-Compliant System
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: ACPI

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Winsock IFS Driver
Description: Winsock IFS Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ws2ifsl

Name: McAfee Inc. mferkdet
Description: McAfee Inc. mferkdet
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mferkdet

Name: Microsoft AC Adapter
Description: Microsoft AC Adapter
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: CmBatt

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: Microsoft Bluetooth Enumerator
Description: Microsoft Bluetooth Enumerator
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Microsoft
Service: BthEnum

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: User Mode Driver Frameworks Platform Driver
Description: User Mode Driver Frameworks Platform Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WudfPf

Name: JMCR SD/MMC SCSI Disk Device
Description: Disk drive
Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: Null
Description: Null
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Null

Name: McAfee Inc. mfewfpk
Description: McAfee Inc. mfewfpk
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mfewfpk

Name: Cypress TrackPad
Description: Cypress TrackPad
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Cypress Semiconductor, Inc
Service: i8042prt

Name: JMicron PCIe xD Host Controller
Description: JMicron PCIe xD Host Controller
Class Guid: {4d36e970-e325-11ce-bfc1-08002be10318}
Manufacturer: JMicron Technology Corp.
Service: JMCR

Name: Bluetooth Device (Personal Area Network)
Description: Bluetooth Device (Personal Area Network)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan

Name: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 4 - 1C16
Description: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 4 - 1C16
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Programmable interrupt controller
Description: Programmable interrupt controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Intel® HM67 Express Chipset Family LPC Interface Controller - 1C4B
Description: Intel® HM67 Express Chipset Family LPC Interface Controller - 1C4B
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: msisadrv

Name: Microsoft System Management BIOS Driver
Description: Microsoft System Management BIOS Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: mssmbios

Name: Performance Counters for Windows Driver
Description: Performance Counters for Windows Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: pcw

Name: ST9750420AS
Description: Disk drive
Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: Mount Point Manager
Description: Mount Point Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mountmgr

Name: ACPI Fixed Feature Button
Description: ACPI Fixed Feature Button
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Ancillary Function Driver for Winsock
Description: Ancillary Function Driver for Winsock
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AFD

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Bitlocker Drive Encryption Filter Driver
Description: Bitlocker Drive Encryption Filter Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: fvevol

Name: WAN Miniport (IKEv2)
Description: WAN Miniport (IKEv2)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasAgileVpn

Name: System timer
Description: System timer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Bluetooth Device (RFCOMM Protocol TDI)
Description: Bluetooth Device (RFCOMM Protocol TDI)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RFCOMM

Name: PEAUTH
Description: PEAUTH
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: PEAUTH

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Windows Firewall Authorization Driver
Description: Windows Firewall Authorization Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mpsdrv

Name: HTTP
Description: HTTP
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: HTTP

Name: Intel® Core™ i5-2430M CPU @ 2.40GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: High precision event timer
Description: High precision event timer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Rasl2tp

Name: Intel® Centrino® Advanced-N 6230
Description: Intel® Centrino® Advanced-N 6230
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: NETwNs64

Name: Bluetooth Audio
Description: Bluetooth Audio
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: btmaudio

Name: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 5 - 1C18
Description: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 5 - 1C18
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Beep
Description: Beep
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Beep

Name: Microsoft 6to4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Hardware Policy Driver
Description: Hardware Policy Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: hwpolicy

Name: Realtek High Definition Audio
Description: Realtek High Definition Audio
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: IntcAzAudAddService

Name: Direct memory access controller
Description: Direct memory access controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: WAN Miniport (Network Monitor)
Description: WAN Miniport (Network Monitor)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: Microsoft 6to4 Adapter #2
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: QoS Packet Scheduler
Description: QoS Packet Scheduler
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Psched

Name: Renesas Electronics USB 3.0 Root Hub
Description: Renesas Electronics USB 3.0 Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Renesas Electronics
Service: nusb3hub

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: KSecDD
Description: KSecDD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: KSecDD

Name: Integrated PS/2 Keyboard
Description: Integrated PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: Cypress Semiconductor, Inc
Service: i8042prt

Name: TCP/IP Protocol Driver
Description: TCP/IP Protocol Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Tcpip

Name: WAN Miniport (IP)
Description: WAN Miniport (IP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Renesas Electronics USB 3.0 Host Controller
Description: Renesas Electronics USB 3.0 Host Controller
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Renesas Electronics
Service: nusb3xhc

Name: KSecPkg
Description: KSecPkg
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: KSecPkg

Name: 2nd generation Intel® Core™ processor family PCI Express Controller - 0101
Description: 2nd generation Intel® Core™ processor family PCI Express Controller - 0101
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 6 - 1C1A
Description: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 6 - 1C1A
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: PCI bus
Description: PCI bus
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: pci

Name: TCP/IP Registry Compatibility
Description: TCP/IP Registry Compatibility
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tcpipreg

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: WAN Miniport (IPv6)
Description: WAN Miniport (IPv6)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: RDPCDD
Description: RDPCDD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPCDD

Name: McAfee Inc. cfwids
Description: McAfee Inc. cfwids
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: cfwids

Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: System CMOS/real time clock
Description: System CMOS/real time clock
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Intel® Core™ i5-2430M CPU @ 2.40GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: Link-Layer Topology Discovery Mapper I/O Driver
Description: Link-Layer Topology Discovery Mapper I/O Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: lltdio

Name: Bluetooth Server
Description: Bluetooth Server
Class Guid: {34446e8e-37b4-4b16-9da6-bea2db33465a}
Manufacturer: Intel Corporation
Service: btmaux

Name: NetIO Legacy TDI Support Driver
Description: NetIO Legacy TDI Support Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tdx

Name: WAN Miniport (PPPOE)
Description: WAN Miniport (PPPOE)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasPppoe

Name: RDP Encoder Mirror Driver
Description: RDP Encoder Mirror Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPENCDD

Name: Common Log (CLFS)
Description: Common Log (CLFS)
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CLFS

Name: Microsoft ISATAP Adapter #6
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: NVIDIA GeForce GT 525M
Description: NVIDIA GeForce GT 525M
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: NVIDIA
Service: nvlddmkm

Name: Turbo Boost UI Monitor driver
Description: Turbo Boost UI Monitor driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: TurboB

Name: Microsoft ISATAP Adapter #7
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: CNG
Description: CNG
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CNG

Name: 2nd generation Intel® Core™ processor family DRAM Controller - 0104
Description: 2nd generation Intel® Core™ processor family DRAM Controller - 0104
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service:

Name: High Definition Audio Controller
Description: High Definition Audio Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HDAudBus

Name: Reflector Display Driver used to gain access to graphics data
Description: Reflector Display Driver used to gain access to graphics data
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPREFMP

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp

Name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: PptpMiniport

Name: msisadrv
Description: msisadrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: msisadrv

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: VgaSave
Description: VgaSave
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: VgaSave

Name: Numeric data processor
Description: Numeric data processor
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Offline Files Driver
Description: Offline Files Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CSC

Name: UMBus Enumerator
Description: UMBus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: Link-Layer Topology Discovery Responder
Description: Link-Layer Topology Discovery Responder
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: rspndr

Name: WAN Miniport (SSTP)
Description: WAN Miniport (SSTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasSstp

Name: ACPI x64-based PC
Description: ACPI x64-based PC
Class Guid: {4d36e966-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard computers)
Service: \Driver\ACPI_HAL

Name: Intel® Display Audio
Description: Intel® Display Audio
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel® Corporation
Service: IntcDAud

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: McAfee Inc. mfeapfk
Description: McAfee Inc. mfeapfk
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mfeapfk

Name: Microsoft ACPI-Compliant Embedded Controller
Description: Microsoft ACPI-Compliant Embedded Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: USB Composite Device
Description: USB Composite Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbccgp

Name: Security Driver
Description: Security Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: secdrv

Name: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter
Description: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter
Class Guid: {b0755d59-9657-467d-b89d-74c1f645aeb3}
Manufacturer: Intel Corporation
Service: AMPPAL

Name: Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
Description: Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Atheros
Service: L1C

Name: Intel® Core™ i5-2430M CPU @ 2.40GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: NativeWiFi Filter
Description: NativeWiFi Filter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NativeWifiP

Name: Intel® HD Graphics Family
Description: Intel® HD Graphics Family
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: igfx

Name: Intel® 6 Series/C200 Series Chipset Family SMBus Controller - 1C22
Description: Intel® 6 Series/C200 Series Chipset Family SMBus Controller - 1C22
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service:

Name: Generic PnP Monitor
Description: Generic PnP Monitor
Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard monitor types)
Service: monitor

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp

Name: UMBus Enumerator
Description: UMBus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: System Attribute Cache
Description: System Attribute Cache
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: discache

Name: Dynamic Volume Manager
Description: Dynamic Volume Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: volmgrx

Name: McAfee Inc. mfeavfk
Description: McAfee Inc. mfeavfk
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mfeavfk

Name: File as Volume Driver
Description: File as Volume Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: blbdrive

Name: Microsoft ACPI-Compliant Control Method Battery
Description: Microsoft ACPI-Compliant Control Method Battery
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: CmBatt

Name: Sftfs
Description: Sftfs
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Sftfs

Name: Remote Desktop Device Redirector Bus
Description: Remote Desktop Device Redirector Bus
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: rdpbus

Name: NDIS System Driver
Description: NDIS System Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDIS

Name: Integrated Webcam
Description: USB Video Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo

Name: ACPI Power Button
Description: ACPI Power Button
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: LDDM Graphics Subsystem
Description: LDDM Graphics Subsystem
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: DXGKrnl

Name: Composite Bus Enumerator
Description: Composite Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: CompositeBus

Name: Storage volumes
Description: Storage volumes
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: volsnap

Name: McAfee Inc.
Description: McAfee Inc.
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mfeavfk01

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: Terminal Server Keyboard Driver
Description: Terminal Server Keyboard Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: TermDD

Name: Sftplay
Description: Sftplay
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Sftplay

Name: HID-compliant mouse
Description: HID-compliant mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: mouhid

Name: NDIS Usermode I/O Protocol
Description: NDIS Usermode I/O Protocol
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Ndisuio

Name: SDA Standard Compliant SD Host Controller
Description: SDA Standard Compliant SD Host Controller
Class Guid: {a0a588a4-c46f-4b37-b7ea-c82fe89870c6}
Manufacturer: SDA Standard Compliant SD Host Controller Vendor
Service: sdbus

Name: ACPI Lid
Description: ACPI Lid
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft Composite Battery
Description: Microsoft Composite Battery
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: Compbatt

Name: Terminal Server Mouse Driver
Description: Terminal Server Mouse Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: TermDD

Name: Intel® Mobile Express Chipset SATA AHCI Controller
Description: Intel® Mobile Express Chipset SATA AHCI Controller
Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: iaStor

Name: Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C26
Description: Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C26
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbehci

Name: Virtual WiFi Filter Driver
Description: Virtual WiFi Filter Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: vwififlt

Name: Microsoft ISATAP Adapter #3
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: NDProxy
Description: NDProxy
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDProxy

Name: Plug and Play Software Device Enumerator
Description: Plug and Play Software Device Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: swenum


========================= Memory info: ===================================

Percentage of memory in use: 24%
Total physical RAM: 8086.17 MB
Available physical RAM: 6088.12 MB
Total Pagefile: 16170.53 MB
Available Pagefile: 14078.44 MB
Total Virtual: 4095.88 MB
Available Virtual: 3967.33 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:679 GB) (Free:628.49 GB) NTFS
3 Drive f: () (Removable) (Total:3.69 GB) (Free:1.85 GB) FAT32

========================= Users: ========================================

User accounts for \\VAL-PC

Administrator            Guest                    UpdatusUser              
Val                      


**** End of log ****
 

 

FSS

Farbar Service Scanner Version: 03-03-2013
Ran by Val (administrator) on 31-03-2013 at 13:52:11
Running from "C:\Users\Val\Desktop"
Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
LAN connected.
Attempt to access Google IP returned error. Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo IP returned error. Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:58 AM

Posted 01 April 2013 - 02:17 AM

Can you connect to internet in safemode with networking?

 

Temporarily uninstall mcafee and see if that helps restoring the internet connection



#5 Jimrost

Jimrost
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:12:58 PM

Posted 01 April 2013 - 05:34 AM

I will try again.  But have not been able to in safe mode so far.  Even when I disable Mcafee.

I do have other computers that I can get on the internet with.


Edited by Jimrost, 01 April 2013 - 05:34 AM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:58 AM

Posted 01 April 2013 - 05:53 AM

Are you have issues booting into safemode?

 

Actually i want you to boot into safemode with networking and not safemode



#7 Jimrost

Jimrost
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:12:58 PM

Posted 01 April 2013 - 11:41 AM

No, I have no issues getting into safe mode.

At work until later.  Will log in with networking when I get home.

What do you want me to do when I do?

I will of course check to see if I can get online.

I will also uninstall Mcafee.



#8 Jimrost

Jimrost
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:12:58 PM

Posted 01 April 2013 - 09:08 PM

Ok, uninstalled Mcafee.  Could not get on the internet in normal mode.  Restarted in safe mode, can get on the internet in safe mode now.



#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:58 AM

Posted 01 April 2013 - 09:16 PM

You need to restart the PC after uninstalling mcafee and then check internet in normal mode.

 

Boot into normal mode and test your internet again.Nice to know that internet works in safemode with networking.



#10 Jimrost

Jimrost
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:12:58 PM

Posted 01 April 2013 - 09:22 PM

Ok, restarted back into normal mode, and now am able to get online there too.
And to answer your question. I did restart a couple times in normal mode before going to safe mode. Was not getting online. Once I got into safe mode, I was online there. Restarted back into normal and am now online there as well.

Edited by Jimrost, 01 April 2013 - 09:23 PM.


#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:58 AM

Posted 01 April 2013 - 09:24 PM

ESET Online Scanner

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    esetsmartinstaller_enu.png

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. Note: If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button

Malwarebytes

Please download Malwarebytes Anti-Malware and save it to your desktop. If you already have it installed launch the program and update the database.

  • Make sure you are connected to the Internet and double-click on the it to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

===================================================

AdwCleaner by Xplode - Search for Adware

  • Please download AdwCleaner by Xplode onto your desktop.
  • Security softwares may flag it as malicious.This is a false positive and can be ignored.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • Click YES if you receive a warning for reboot
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well

===================================================

Autoruns

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply

Edited by narenxp, 01 April 2013 - 09:39 PM.


#12 Jimrost

Jimrost
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:12:58 PM

Posted 01 April 2013 - 09:37 PM

Ok, thank you.  How do I know if eset is actually doing something.  There was no continue button or anything after I selected the advanced options.  And there doesn't seem to ba any activity.



#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:58 AM

Posted 01 April 2013 - 09:42 PM

There was no continue button or anything after I selected the advanced options.

 

There will be a START button



#14 Jimrost

Jimrost
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:12:58 PM

Posted 01 April 2013 - 09:45 PM

I do not see a start button

I am downloading the installer and will try that way.

Ok, that seems to be working.


Edited by Jimrost, 01 April 2013 - 09:53 PM.


#15 Jimrost

Jimrost
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:12:58 PM

Posted 02 April 2013 - 06:12 AM

Etes

 

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe    a variant of Win32/HiddenStart.A application    cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\31.03.2013_12.00.13\mbr0000\tdlfs0000\tsk0000.dta    Win32/Olmarik.AYI trojan    cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\31.03.2013_12.00.13\mbr0000\tdlfs0000\tsk0001.dta    Win64/Olmarik.AM trojan    cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\31.03.2013_12.00.13\mbr0000\tdlfs0000\tsk0004.dta    a variant of Win32/Rootkit.Kryptik.OX trojan    cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\31.03.2013_12.00.13\mbr0000\tdlfs0000\tsk0005.dta    Win64/Olmarik.AN trojan    cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\31.03.2013_12.00.13\mbr0000\tdlfs0000\tsk0009.dta    Win32/Olmarik.AFK trojan    cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\31.03.2013_12.00.13\mbr0000\tdlfs0000\tsk0010.dta    Win64/Olmarik.AK trojan    cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\31.03.2013_12.00.13\mbr0000\tdlfs0000\tsk0014.dta    Win32/Olmarik.AYI trojan    cleaned by deleting - quarantined
C:\Users\Val\Downloads\iLividSetupV1.exe    Win32/Toolbar.SearchSuite application    cleaned by deleting - quarantined
C:\Users\Val\Downloads\mozilla firefox setup.exe    a variant of Win32/Soft32Downloader.C application    cleaned by deleting - quarantined
C:\Windows\Downloaded Installations\{D764D5AB-33E4-49F7-A517-5898AB6E5564}\YouSendIt Express.msi    a variant of Win32/Bundled.Toolbar.Ask application    deleted - quarantined
 

 

Malwarebytes

 

Malwarebytes Anti-Malware (Trial) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.04.02.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Val :: VAL-PC [administrator]

Protection: Enabled

4/2/2013 7:31:02 AM
mbam-log-2013-04-02 (07-31-02).txt

Scan type: Full scan (C:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 378598
Time elapsed: 30 minute(s), 33 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 

Adwcleaner

 

# AdwCleaner v2.115 - Logfile created 04/02/2013 at 08:03:38
# Updated 17/03/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : Val - VAL-PC
# Boot Mode : Normal
# Running from : C:\Users\Val\Desktop\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

Folder Found : C:\Users\Val\AppData\Local\APN
Folder Found : C:\Users\Val\AppData\Local\Ilivid Player

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\Freecause
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E8DAAA30-6CAA-4B58-9603-8E54238219E2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E8DAAA30-6CAA-4B58-9603-8E54238219E2}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E8DAAA30-6CAA-4B58-9603-8E54238219E2}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E8DAAA30-6CAA-4B58-9603-8E54238219E2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Found : HKU\S-1-5-21-1963040044-3022630764-729632885-1002\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16450

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0.2 (en-US)

File : C:\Users\Val\AppData\Roaming\Mozilla\Firefox\Profiles\xgto5tx2.default\prefs.js

[OK] File is clean.

File : C:\Users\Val\AppData\Roaming\Mozilla\Firefox\Profiles\zdddrpbn.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v26.0.1410.43

File : C:\Users\Val\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found [l.31] : icon_url = "hxxp://www.ask.com/favicon.ico",
Found [l.34] : keyword = "ask.com",
Found [l.38] : search_url = "hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=YSI2&o=APN10114&locale=en_US&apn_uid=b315bac4-9345-40b5-ab42-4de9c3ae1ca0&apn_ptnrs=%5EA5P&apn_sauid=E959C1B5-F681-49FA-9233-ABC6906E0257&apn_dtid=%5EYYYYYY%5EYY%5EUS&q={searchTerms}",
Found [l.39] : suggest_url = "hxxp://ss.websearch.ask.com/query?qsrc=2922&li=ff&sstype=prefix&q={searchTerms}"

*************************

AdwCleaner[R1].txt - [4769 octets] - [02/04/2013 08:03:38]

########## EOF - C:\AdwCleaner[R1].txt - [4829 octets] ##########
 

Autoruns

 

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""    "3/31/2013 1:21 PM"
+ "BTMTrayAgent"    "Bluetooth Shell Extension"    "Intel Corporation"    "c:\program files (x86)\intel\bluetooth\btmshell.dll"    "5/18/2011 5:11 PM"
+ "CyCpIo"    "Current User Trackpad Monitor"    "Cypress Semiconductor Corporation"    "c:\program files\cypress\trackpad\cycpio.exe"    "8/24/2011 9:44 PM"
+ "CyHidWin"    "Data Aquisition for Gesture Engine"    "Cypress Semiconductor, Inc."    "c:\program files\cypress\trackpad\cyhidwin.exe"    "8/22/2011 4:00 AM"
+ "DellStage"    "Dell Stage"    ""    "c:\program files (x86)\dell stage\dell stage\stage_primary.exe"    "1/31/2012 6:47 PM"
+ "HotKeysCmds"    "hkcmd Module"    "Intel Corporation"    "c:\windows\system32\hkcmd.exe"    "7/19/2011 5:11 PM"
+ "IgfxTray"    "igfxTray Module"    "Intel Corporation"    "c:\windows\system32\igfxtray.exe"    "7/19/2011 5:12 PM"
+ "IntelPAN"    "Intel® PROSet/Wireless Framework"    "Intel® Corporation"    "c:\program files\common files\intel\wirelesscommon\ifrmewrk.exe"    "7/27/2011 11:51 PM"
+ "IntelTBRunOnce"    ""    ""    "c:\program files\intel\turboboost\runtbgadgetonce.vbs"    "11/29/2010 4:59 PM"
+ "NVHotkey"    "NVIDIA Hotkey Service, Version 268.30"    "NVIDIA Corporation"    "c:\windows\system32\nvhotkey.dll"    "4/21/2011 9:19 PM"
+ "Persistence"    "persistence Module"    "Intel Corporation"    "c:\windows\system32\igfxpers.exe"    "7/19/2011 5:11 PM"
+ "RtHDVBg"    "HD Audio Background Process"    "Realtek Semiconductor"    "c:\program files\realtek\audio\hda\ravbg64.exe"    "5/17/2011 3:17 AM"
+ "RTHDVCPL"    "Realtek HD Audio Manager"    "Realtek Semiconductor"    "c:\program files\realtek\audio\hda\rtkngui64.exe"    "5/25/2011 4:51 AM"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""    "4/2/2013 8:05 AM"
+ "AccuWeatherWidget"    "AccuWeather.com desktop weather widget"    ""    "c:\program files (x86)\dell stage\dell stage\accuweather\accuweather.exe"    "1/31/2012 6:50 PM"
+ "Adobe ARM"    "Adobe Reader and Acrobat Manager"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"    "12/3/2012 3:34 AM"
+ "Adobe Reader Speed Launcher"    "Adobe Acrobat SpeedLauncher"    "Adobe Systems Incorporated"    "c:\program files (x86)\adobe\reader 10.0\reader\reader_sl.exe"    "12/18/2012 8:59 AM"
+ "Dell Webcam Central"    "Webcam Central"    "Creative Technology Ltd"    "c:\program files (x86)\dell webcam\dell webcam central\webcamdell2.exe"    "4/12/2011 10:39 PM"
+ "Desktop Disc Tool"    "Roxio Burn Launcher"    ""    "c:\program files (x86)\roxio\oem\roxio burn\roxioburnlauncher.exe"    "11/17/2010 2:31 PM"
+ "HP Software Update"    "hpwuSchd Application"    "Hewlett-Packard"    "c:\program files (x86)\hp\hp software update\hpwuschd2.exe"    "4/27/2010 4:58 AM"
+ "NeroLauncher"    ""    ""    "c:\program files (x86)\nero\syncup\nerolauncher.exe"    "11/11/2011 3:21 AM"
+ "RoxWatchTray"    "RoxMMTrayApp Module"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\sharedcom\roxwatchtray12oem.exe"    "11/25/2010 9:07 AM"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup"    ""    ""    ""    "3/31/2013 2:02 AM"
+ "HP Digital Imaging Monitor.lnk"    "HP Digital Imaging Monitor"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe"    "11/18/2009 8:41 AM"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""    "2/10/2011 12:26 PM"
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files\windows mail\winmail.exe"    "7/13/2009 7:58 PM"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components"    ""    ""    ""    "2/10/2011 12:26 PM"
+ "Google Chrome"    "Google Chrome"    "Google Inc."    "c:\program files (x86)\google\chrome\application\26.0.1410.43\installer\chrmstp.exe"    "3/21/2013 4:35 PM"
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files (x86)\windows mail\winmail.exe"    "7/13/2009 7:42 PM"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""    "3/31/2013 1:15 PM"
+ "Facebook Update"    "Facebook Installer"    "Facebook Inc."    "c:\users\val\appdata\local\facebook\update\facebookupdate.exe"    "7/2/2012 5:07 PM"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""    "7/14/2009 12:53 AM"
+ "BTMSentToExt"    "Bluetooth Shell Extension"    "Intel Corporation"    "c:\program files (x86)\intel\bluetooth\btmshell.dll"    "5/18/2011 5:11 PM"
+ "Roxio Burn"    "TODO: <File description>"    "TODO: <Company name>"    "c:\program files\roxio\roxio burn\rb_contextmenu64.dll"    "11/11/2010 2:53 AM"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""    "7/14/2009 12:53 AM"
+ "Roxio Burn"    "TODO: <File description>"    "TODO: <Company name>"    "c:\program files (x86)\roxio\oem\roxio burn\rb_contextmenu.dll"    "11/17/2010 2:32 PM"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""    "7/14/2009 12:53 AM"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"    "12/14/2012 4:52 PM"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""    "7/14/2009 12:53 AM"
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files\windows sidebar\sbdrop.dll"    "7/13/2009 9:32 PM"
+ "igfxcui"    "igfxpph Module"    "Intel Corporation"    "c:\windows\system32\igfxpph.dll"    "7/19/2011 5:11 PM"
+ "NvCplDesktopContext"    ""    "NVIDIA Corporation"    "c:\windows\system32\nvshext.dll"    "4/21/2011 9:21 PM"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""    "7/14/2009 12:53 AM"
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files (x86)\windows sidebar\sbdrop.dll"    "7/13/2009 9:09 PM"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""    "11/24/2011 8:19 PM"
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"    "12/18/2012 9:02 AM"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""    "11/24/2011 8:19 PM"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"    "12/14/2012 4:52 PM"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""    "3/31/2013 1:06 PM"
+ "Google Toolbar Helper"    "Google Toolbar"    "Google Inc."    "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"    "12/7/2012 7:02 PM"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Sun Microsystems, Inc."    "c:\program files\java\jre6\bin\jp2ssv.dll"    "7/19/2011 6:45 AM"
+ "McAfee Phishing Filter"    ""    ""    "File not found: c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL"    ""
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"    "9/21/2010 5:47 PM"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""    "4/2/2013 8:05 AM"
+ "Adobe PDF Link Helper"    "Adobe PDF Helper for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"    "12/18/2012 8:32 AM"
+ "Google Toolbar Helper"    "Google Toolbar"    "Google Inc."    "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"    "12/7/2012 7:15 PM"
+ "HP Print Enhancer"    "HP Smart Web Printing add-on for Internet Explorer"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_printenhancer.dll"    "10/13/2009 6:13 PM"
+ "HP Smart BHO Class"    "HP Smart Web Printing add-on for Internet Explorer"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"    "10/13/2009 6:13 PM"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Sun Microsystems, Inc."    "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"    "7/19/2011 9:05 AM"
+ "McAfee Phishing Filter"    ""    ""    "File not found: c:\progra~1\mcafee\msk\mskapbho.dll"    ""
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"    "9/21/2010 5:01 PM"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""    "3/31/2013 1:06 PM"
+ "Google Toolbar"    "Google Toolbar"    "Google Inc."    "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"    "12/7/2012 7:02 PM"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""    "9/22/2012 9:44 PM"
+ "Google Toolbar"    "Google Toolbar"    "Google Inc."    "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"    "12/7/2012 7:15 PM"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions"    ""    ""    ""    "9/22/2012 9:44 PM"
+ "&Blog This in Windows Live Writer"    "Windows Live Writer Blog This Extension"    "Microsoft Corporation"    "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"    "11/10/2010 6:03 AM"
+ "Show or hide HP Smart Web Printing"    "HP Smart Web Printing add-on for Internet Explorer"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"    "10/13/2009 6:13 PM"
"Task Scheduler"    ""    ""    ""    ""
+ "\FacebookUpdateTaskUserS-1-5-21-1963040044-3022630764-729632885-1002Core"    "Facebook Installer"    "Facebook Inc."    "c:\users\val\appdata\local\facebook\update\facebookupdate.exe"    "7/2/2012 5:07 PM"
+ "\FacebookUpdateTaskUserS-1-5-21-1963040044-3022630764-729632885-1002UA"    "Facebook Installer"    "Facebook Inc."    "c:\users\val\appdata\local\facebook\update\facebookupdate.exe"    "7/2/2012 5:07 PM"
+ "\HP Photo Creations Communicator"    ""    ""    "c:\programdata\hp photo creations\messagecheck.exe"    "11/16/2011 4:24 AM"
+ "\JavaUpdateSched"    "Java™ Update Scheduler"    "Sun Microsystems, Inc."    "c:\program files (x86)\common files\java\java update\jusched.exe"    "6/9/2011 4:06 PM"
+ "\Microsoft\Windows Defender\MP Scheduled Scan"    "Microsoft Malware Protection Command Line Utility"    "Microsoft Corporation"    "c:\program files\windows defender\mpcmdrun.exe"    "7/13/2009 7:53 PM"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task"    "Windows Live Social Object Extractor Engine"    "Microsoft Corporation"    "c:\program files (x86)\windows live\soxe\wlsoxe.dll"    "11/10/2010 6:02 AM"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo"    ""    ""    "c:\windows\system32\gathernetworkinfo.vbs"    "6/10/2009 4:36 PM"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary"    "Windows Media Player Network Sharing Service Configuration Application"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnscfg.exe"    "7/13/2009 8:24 PM"
+ "\PCDEventLauncher"    "PC-Doctor Module"    "PC-Doctor, Inc."    "c:\program files\dell support center\sessionchecker.exe"    "8/17/2012 5:16 PM"
+ "\PCDoctorBackgroundMonitorTask"    "PC-Doctor Module"    "PC-Doctor, Inc."    "c:\program files\dell support center\uaclauncher.exe"    "8/17/2012 5:15 PM"
+ "\SystemToolsDailyTest"    ""    ""    "File not found: uaclauncher.exe"    ""
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""    "3/31/2013 1:28 PM"
+ "AdobeARMservice"    "Adobe Acrobat Updater keeps your Adobe software up to date."    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"    "12/3/2012 3:34 AM"
+ "AdobeFlashPlayerUpdateSvc"    "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes."    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"    "2/28/2013 10:40 PM"
+ "AERTFilters"    "Andrea filters APO access service (64-bit)"    "Andrea Electronics Corporation"    "c:\program files\realtek\audio\hda\aertsr64.exe"    "11/17/2009 12:17 PM"
+ "AMPPALR3"    "Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter"    "Intel Corporation"    "c:\program files\intel\bluetoothhs\bthsamppalservice.exe"    "8/8/2011 10:37 AM"
+ "Bluetooth Device Monitor"    "A process to monitor Bluetooth radio state and configure Bluetooth remote folders."    "Intel Corporation"    "c:\program files (x86)\intel\bluetooth\devmonsrv.exe"    "5/18/2011 5:03 PM"
+ "Bluetooth Media Service"    "Provides Bluetooth Media Profiles support"    "Intel Corporation"    "c:\program files (x86)\intel\bluetooth\mediasrv.exe"    "5/18/2011 5:03 PM"
+ "Bluetooth OBEX Service"    "Provides Bluetooth File Transfer Protocol support."    "Intel Corporation"    "c:\program files (x86)\intel\bluetooth\obexsrv.exe"    "5/18/2011 5:02 PM"
+ "BTHSSecurityMgr"    "Manages the 802.1x security between two Bluetooth® High Speed connections."    "Intel® Corporation"    "c:\program files\intel\bluetoothhs\bthssecuritymgr.exe"    "6/3/2011 3:51 PM"
+ "cvhsvc"    "Client Virtualization Handler Service (unlocalized description)"    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe"    "1/4/2012 10:15 AM"
+ "DellDigitalDelivery"    "Downloads and installs the applications that you purchased with your computer."    "Dell Products, LP."    "c:\program files (x86)\dell digital delivery\deliveryservice.exe"    "10/9/2012 1:22 PM"
+ "EvtEng"    "Manages the event trace messages for all the Intel® PROSet/Wireless Software components."    "Intel® Corporation"    "c:\program files\intel\wifi\bin\evteng.exe"    "7/28/2011 12:04 AM"
+ "gupdate"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files (x86)\google\update\googleupdate.exe"    "3/9/2010 2:10 AM"
+ "gupdatem"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files (x86)\google\update\googleupdate.exe"    "3/9/2010 2:10 AM"
+ "gusvc"    "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work."    "Google"    "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"    "3/2/2012 5:13 PM"
+ "hpqcxs08"    "HP CUE Context Manager Objects"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll"    "11/17/2009 11:42 PM"
+ "hpqddsvc"    "This service detects and monitors CUE devices on the system."    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll"    "11/18/2009 8:15 AM"
+ "HPSLPSVC"    "Discovers and monitors the state and the configuration of the HP devices attached to your network. If the service is stopped, and your network devices change IP addresses, they might become unavailable"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll"    "10/22/2010 4:06 PM"
+ "LMS"    "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces."    "Intel Corporation"    "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"    "12/20/2010 10:10 PM"
+ "MBAMScheduler"    "Malwarebytes Anti-Malware scheduler"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"    "12/14/2012 4:51 PM"
+ "MBAMService"    "Malwarebytes Anti-Malware service"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"    "12/14/2012 4:51 PM"
+ "mfevtp"    "Provides validation trust protection services"    "McAfee, Inc."    "c:\windows\system32\mfevtps.exe"    "2/13/2012 7:35 PM"
+ "MozillaMaintenance"    "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled."    "Mozilla Foundation"    "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"    "3/7/2013 8:32 AM"
+ "MyWiFiDHCPDNS"    "Wireless PAN DHCP and DNS Server"    ""    "c:\program files\intel\wifi\bin\pandhcpdns.exe"    "7/27/2011 11:48 PM"
+ "NAUpdate"    "Provides access to Nero application updates and manages Nero applications."    "Nero AG"    "c:\program files (x86)\nero\update\nasvc.exe"    "11/25/2011 11:11 AM"
+ "Net Driver HPZ12"    "Dot4Net Module"    "Hewlett-Packard"    "c:\windows\system32\hpzinw12.dll"    "8/6/2010 1:45 AM"
+ "NVSvc"    "NVIDIA Driver Helper Service, Version 268.30"    "NVIDIA Corporation"    "c:\windows\system32\nvvsvc.exe"    "4/21/2011 9:21 PM"
+ "nvUpdatusService"    "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server."    "NVIDIA Corporation"    "c:\program files (x86)\nvidia corporation\nvidia updatus\daemonu.exe"    "4/21/2011 8:27 PM"
+ "ose"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"    "1/10/2010 12:16 AM"
+ "osppsvc"    "Office Software Protection Platform Service (unlocalized description)"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"    "8/11/2009 10:00 PM"
+ "Pml Driver HPZ12"    "PmlDrv Module"    "Hewlett-Packard"    "c:\windows\system32\hpzipm12.dll"    "8/6/2010 1:45 AM"
+ "RegSrvc"    "Provides registry access to all Intel® PROSet/Wireless Software components"    "Intel® Corporation"    "c:\program files\common files\intel\wirelesscommon\regsrvc.exe"    "7/27/2011 11:44 PM"
+ "RoxMediaDB12OEM"    "Roxio RoxMediaDB12OEM Service"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\sharedcom\roxmediadb12oem.exe"    "11/25/2010 8:57 AM"
+ "RoxWatch12"    "RoxWatch12 Module"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\sharedcom\roxwatch12oem.exe"    "11/25/2010 8:55 AM"
+ "sftlist"    "Streams and manages applications."    "Microsoft Corporation"    "c:\program files (x86)\microsoft application virtualization client\sftlist.exe"    "9/30/2011 10:21 AM"
+ "SftService"    "SoftThinks Agent Service"    "SoftThinks SAS"    "c:\program files (x86)\dell datasafe local backup\sftservice.exe"    "8/12/2011 11:41 AM"
+ "sftvsa"    "Monitors global service events and launches virtual services."    "Microsoft Corporation"    "c:\program files (x86)\microsoft application virtualization client\sftvsa.exe"    "9/30/2011 10:19 AM"
+ "Stereo Service"    "Provides system support for NVIDIA Stereoscopic 3D driver"    "NVIDIA Corporation"    "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"    "4/21/2011 8:25 PM"
+ "stllssvr"    "SureThing Labelflash Disc Printer Service Module"    "MicroVision Development, Inc."    "c:\program files (x86)\common files\surething shared\stllssvr.exe"    "3/14/2009 1:19 AM"
+ "TurboBoost"    "Intel® Turbo Boost Technology Monitor 2.0"    "Intel® Corporation"    "c:\program files\intel\turboboost\turboboost.exe"    "11/29/2010 7:02 PM"
+ "UNS"    "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device."    "Intel Corporation"    "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"    "12/20/2010 10:15 PM"
+ "WinDefend"    "Protection against spyware and potentially unwanted software"    "Microsoft Corporation"    "c:\program files\windows defender\mpsvc.dll"    "7/13/2009 9:29 PM"
+ "wlidsvc"    "Enables Windows Live ID authentication."    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"    "9/21/2010 5:46 PM"
+ "WMPNetworkSvc"    "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnetwk.exe"    "11/20/2010 7:18 AM"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""    "3/31/2013 1:28 PM"
+ "adp94xx"    "Adaptec Windows SAS/SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adp94xx.sys"    "12/5/2008 7:54 PM"
+ "adpahci"    "Adaptec Windows SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpahci.sys"    "5/1/2007 1:30 PM"
+ "adpu320"    "Adaptec StorPort Ultra320 SCSI Driver (X64)"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpu320.sys"    "2/27/2007 8:04 PM"
+ "aliide"    "ALi mini IDE Driver"    "Acer Laboratories Inc."    "c:\windows\system32\drivers\aliide.sys"    "7/13/2009 7:19 PM"
+ "amdsata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdsata.sys"    "3/18/2010 8:45 PM"
+ "amdsbs"    "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform"    "AMD Technologies Inc."    "c:\windows\system32\drivers\amdsbs.sys"    "3/20/2009 2:36 PM"
+ "amdxata"    "Storage Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdxata.sys"    "3/19/2010 12:18 PM"
+ "AMPPAL"    "Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter"    "Windows ® Win 7 DDK provider"    "c:\windows\system32\drivers\amppal.sys"    "8/8/2011 10:32 AM"
+ "AMPPALP"    "Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol"    "Windows ® Win 7 DDK provider"    "c:\windows\system32\drivers\amppal.sys"    "8/8/2011 10:32 AM"
+ "arc"    "Adaptec RAID Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arc.sys"    "5/24/2007 5:27 PM"
+ "arcsas"    "Adaptec SAS RAID WS03 Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arcsas.sys"    "1/14/2009 3:27 PM"
+ "b06bdrv"    "Broadcom NetXtreme II GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\bxvbda.sys"    "2/13/2009 6:18 PM"
+ "b57nd60a"    "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver."    "Broadcom Corporation"    "c:\windows\system32\drivers\b57nd60a.sys"    "4/26/2009 7:14 AM"
+ "BrFiltLo"    "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltlo.sys"    "8/6/2006 9:51 PM"
+ "BrFiltUp"    "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltup.sys"    "8/6/2006 9:51 PM"
+ "Brserid"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserid.sys"    "8/6/2006 9:51 PM"
+ "BrSerWdm"    "Brother Serial driver (WDM version)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserwdm.sys"    "8/6/2006 9:51 PM"
+ "BrUsbMdm"    "Brother USB MDM Driver "    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbmdm.sys"    "8/6/2006 9:51 PM"
+ "BrUsbSer"    "Brother USB Serial Driver"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbser.sys"    "8/9/2006 8:11 AM"
+ "btmaudio"    "Bluetooth Audio Driver"    "Intel Corporation"    "c:\windows\system32\drivers\btmaud.sys"    "5/18/2011 5:11 PM"
+ "btmaux"    "Bluetooth Auxiliary Driver"    "Intel Corporation"    "c:\windows\system32\drivers\btmaux.sys"    "5/18/2011 5:11 PM"
+ "btmhsf"    "Bluetooth HighSpeed Filter Driver"    "Intel Corporation"    "c:\windows\system32\drivers\btmhsf.sys"    "7/12/2011 11:45 AM"
+ "catchme"    ""    ""    "File not found: C:\ComboFix\catchme.sys"    ""
+ "cfwids"    "McAfee Personal Firewall IDS Plugin"    "McAfee, Inc."    "c:\windows\system32\drivers\cfwids.sys"    "2/13/2012 7:40 PM"
+ "cmdide"    "CMD PCI IDE Bus Driver"    "CMD Technology, Inc."    "c:\windows\system32\drivers\cmdide.sys"    "7/13/2009 7:19 PM"
+ "CtClsFlt"    "Video Class Upper Filter Driver (64-bit)"    "Creative Technology Ltd."    "c:\windows\system32\drivers\ctclsflt.sys"    "1/19/2011 11:20 PM"
+ "cyhid"    ""    ""    "c:\windows\system32\drivers\cyhid.sys"    "8/22/2011 4:50 AM"
+ "cykbfltrService"    "Trackpad PS2 Keyboard Hotkey Filter Driver"    "Cypress Semiconductor, Inc."    "c:\windows\system32\drivers\cykbfltr.sys"    "8/21/2011 5:35 AM"
+ "cymfltrService"    "Trackpad PS2 Filter Driver"    "Cypress Semiconductor, Inc."    "c:\windows\system32\drivers\cymfltr.sys"    "8/22/2011 2:06 AM"
+ "ebdrv"    "Broadcom NetXtreme II 10 GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\evbda.sys"    "12/31/2008 12:29 PM"
+ "elxstor"    "Storport Miniport Driver for LightPulse HBAs"    "Emulex"    "c:\windows\system32\drivers\elxstor.sys"    "2/3/2009 6:52 PM"
+ "hcw85cir"    "Hauppauge WinTV 885 Consumer IR Driver for eHome"    "Hauppauge Computer Works, Inc."    "c:\windows\system32\drivers\hcw85cir.sys"    "5/11/2009 4:26 AM"
+ "HpSAMD"    "Smart Array SAS/SATA Controller Media Driver"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\hpsamd.sys"    "4/20/2010 2:32 PM"
+ "iaStor"    "Intel Rapid Storage Technology driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastor.sys"    "1/12/2011 9:50 PM"
+ "iaStorV"    "Intel Matrix Storage Manager driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastorv.sys"    "6/10/2010 8:46 PM"
+ "iBtFltCoex"    "Intel® Centrino® Wireless (Bluetooth Adapter) Driver"    "Intel Corporation"    "c:\windows\system32\drivers\ibtfltcoex.sys"    "7/19/2011 9:54 PM"
+ "igfx"    "Intel Graphics Kernel Mode Driver"    "Intel Corporation"    "c:\windows\system32\drivers\igdkmd64.sys"    "7/19/2011 5:39 PM"
+ "iirsp"    "Intel/ICP Raid Storport Driver"    "Intel Corp./ICP vortex GmbH"    "c:\windows\system32\drivers\iirsp.sys"    "12/13/2005 5:47 PM"
+ "Impcd"    "Intel® Turbo Boost Technology Driver"    "Intel Corporation"    "c:\windows\system32\drivers\impcd.sys"    "2/26/2010 7:32 PM"
+ "intaud_WaveExtensible"    "Intel® WiDi Solution"    "Intel Corporation"    "c:\windows\system32\drivers\intelaud.sys"    "3/9/2011 7:43 PM"
+ "IntcAzAudAddService"    "Realtek® High Definition Audio Function Driver"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rtkvhd64.sys"    "5/31/2011 5:18 AM"
+ "IntcDAud"    "Intel® Display Audio Driver"    "Intel® Corporation"    "c:\windows\system32\drivers\intcdaud.sys"    "10/15/2010 4:28 AM"
+ "iwdbus"    "Intel® WiDi Solution"    "Intel Corporation"    "c:\windows\system32\drivers\iwdbus.sys"    "3/9/2011 7:43 PM"
+ "JMCR"    "JMicron PCIe Flash Media Controller Driver"    "JMicron Technology Corporation"    "c:\windows\system32\drivers\jmcr.sys"    "11/10/2010 5:31 AM"
+ "L1C"    "Atheros L1c PCI-E Gigabit Ethernet Controller"    "Atheros Communications, Inc."    "c:\windows\system32\drivers\l1c62x64.sys"    "12/27/2010 10:42 PM"
+ "LSI_FC"    "LSI Fusion-MPT FC Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_fc.sys"    "12/9/2008 6:46 PM"
+ "LSI_SAS"    "LSI Fusion-MPT SAS Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas.sys"    "5/18/2009 8:20 PM"
+ "LSI_SAS2"    "LSI SAS Gen2 Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas2.sys"    "5/18/2009 8:31 PM"
+ "LSI_SCSI"    "LSI Fusion-MPT SCSI Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_scsi.sys"    "4/16/2009 6:13 PM"
+ "MBAMProtector"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\windows\system32\drivers\mbam.sys"    "8/20/2012 12:49 PM"
+ "megasas"    "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64"    "LSI Corporation"    "c:\windows\system32\drivers\megasas.sys"    "5/18/2009 9:09 PM"
+ "MegaSR"    "LSI MegaRAID Software RAID Driver"    "LSI Corporation, Inc."    "c:\windows\system32\drivers\megasr.sys"    "5/18/2009 9:25 PM"
+ "MEIx64"    "Intel® Management Engine Interface"    "Intel Corporation"    "c:\windows\system32\drivers\hecix64.sys"    "10/19/2010 7:33 PM"
+ "mfeavfk"    "Anti-Virus File System Filter Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mfeavfk.sys"    "2/13/2012 7:37 PM"
+ "mfefirek"    "McAfee Core Firewall Engine Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mfefirek.sys"    "2/13/2012 7:40 PM"
+ "mfehidk"    "McAfee Link Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mfehidk.sys"    "2/13/2012 7:36 PM"
+ "mfenlfk"    "McAfee NDIS Light Filter"    "McAfee, Inc."    "c:\windows\system32\drivers\mfenlfk.sys"    "2/13/2012 7:36 PM"
+ "mfewfpk"    "Anti-Virus Mini-Firewall Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mfewfpk.sys"    "2/13/2012 7:36 PM"
+ "NETwNs64"    "Intel® Wireless WiFi Link Driver"    "Intel Corporation"    "c:\windows\system32\drivers\netwns64.sys"    "8/3/2011 8:28 PM"
+ "nfrd960"    "IBM ServeRAID Controller Driver"    "IBM Corporation"    "c:\windows\system32\drivers\nfrd960.sys"    "6/6/2006 5:11 PM"
+ "nusb3hub"    "USB 3.0 Hub Driver"    "Renesas Electronics Corporation"    "c:\windows\system32\drivers\nusb3hub.sys"    "11/18/2010 9:34 PM"
+ "nusb3xhc"    "USB 3.0 Host Controller Driver"    "Renesas Electronics Corporation"    "c:\windows\system32\drivers\nusb3xhc.sys"    "11/18/2010 9:34 PM"
+ "nvlddmkm"    "NVIDIA Windows Kernel Mode Driver, Version 268.30 "    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvlddmkm.sys"    "4/21/2011 9:05 PM"
+ "nvpciflt"    "NVIDIA Windows Kernel Mode Driver, Version 268.30 "    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvpciflt.sys"    "4/21/2011 9:06 PM"
+ "nvraid"    "NVIDIA® nForce™ RAID Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvraid.sys"    "3/19/2010 4:59 PM"
+ "nvstor"    "NVIDIA® nForce™ Sata Performance Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvstor.sys"    "3/19/2010 4:45 PM"
+ "PxHlpa64"    "Px Engine Device Driver for 64-bit Windows"    "Sonic Solutions"    "c:\windows\system32\drivers\pxhlpa64.sys"    "10/20/2009 2:08 PM"
+ "ql2300"    "QLogic Fibre Channel Stor Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql2300.sys"    "1/22/2009 7:05 PM"
+ "ql40xx"    "QLogic iSCSI Storport Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql40xx.sys"    "5/18/2009 9:18 PM"
+ "secdrv"    "Macrovision SECURITY Driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"    "9/13/2006 9:18 AM"
+ "SiSRaid2"    "SiS RAID Stor Miniport Driver"    "Silicon Integrated Systems Corp."    "c:\windows\system32\drivers\sisraid2.sys"    "9/24/2008 2:28 PM"
+ "SiSRaid4"    "SiS AHCI Stor-Miniport Driver"    "Silicon Integrated Systems"    "c:\windows\system32\drivers\sisraid4.sys"    "10/1/2008 5:56 PM"
+ "stexstor"    "Promise  SuperTrak EX Series Driver for Windows "    "Promise Technology"    "c:\windows\system32\drivers\stexstor.sys"    "2/17/2009 7:03 PM"
+ "TurboB"    "Turbo Boost UI Monitor driver"    "Intel® Corporation"    "c:\windows\system32\drivers\turbob.sys"    "11/29/2010 7:02 PM"
+ "viaide"    "VIA Generic PCI IDE Bus Driver"    "VIA Technologies, Inc."    "c:\windows\system32\drivers\viaide.sys"    "7/13/2009 7:19 PM"
+ "vsmraid"    "VIA RAID DRIVER FOR AMD-X86-64"    "VIA Technologies Inc.,Ltd"    "c:\windows\system32\drivers\vsmraid.sys"    "1/30/2009 9:18 PM"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""    "4/1/2013 10:45 PM"
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"    "7/13/2009 9:28 PM"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""    "4/2/2013 8:05 AM"
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\syswow64\l3codeca.acm"    "7/13/2009 9:06 PM"
+ "msacm.l3codecp"    "MPEG Audio Layer-3 Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\syswow64\l3codecp.acm"    "7/13/2009 9:06 PM"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\syswow64\iccvid.dll"    "11/20/2010 7:59 AM"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""    "7/14/2009 12:53 AM"
+ "VDP Renderer"    "VDP Filter"    "Intel Corporation"    "c:\program files (x86)\intel\bluetooth\vdpsnka.dll"    "5/18/2011 5:11 PM"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""    "7/14/2009 12:53 AM"
+ "Capture File Writer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 6:21 AM"
+ "Creative Correct TimeStamp Filter"    "Creative Correct TimeStamp Filter"    "Creative Technology Ltd."    "c:\program files (x86)\creative\shared files\ctfrfix.ax"    "7/22/2010 9:24 PM"
+ "Creative H264 No Quality Control Filter"    "Creative No Quality Control  Filter"    "Creative Technology Ltd."    "c:\program files (x86)\dell webcam\dell webcam central\cth264noqc.ax"    "6/7/2010 2:58 AM"
+ "Creative MJPEG Decoder 2"    "Decoder"    "Creative Technology Ltd."    "c:\program files (x86)\creative\shared files\ctmjpgdec2.ax"    "7/27/2009 10:20 PM"
+ "Creative Video Processing Filter"    "Creative Video Processing Filter"    "Creative Technology Ltd."    "c:\program files (x86)\creative\shared files\vidprocu.ax"    "1/5/2009 11:42 PM"
+ "DS Video Buffer Filter"    "WiDiAgent.dll COM object."    "Intel Corporation"    "c:\program files (x86)\common files\intel corporation\widiagent\dsbuffer_video.ax"    "5/17/2011 12:30 PM"
+ "Half Size to Stereo"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "Intel® Mux Renderer"    "Intel® TS Mux / Network Renderer"    "Intel Corporation"    "c:\program files (x86)\common files\intel corporation\widiagent\intelmux.dll"    "5/17/2011 12:30 PM"
+ "Intel®WiDi H264 encoder"    ""    ""    "c:\program files (x86)\common files\intel corporation\widiagent\h264_enc_filter.dll"    "5/17/2011 12:28 PM"
+ "LVMWriter"    "LVMWriter"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\lvmwriter.ax"    "11/25/2010 11:28 AM"
+ "MainConcept AAC Encoder"    "AAC audio encoder filter"    "MainConcept GmbH"    "c:\program files (x86)\common files\intel corporation\mainconcept filters\mc_enc_aac_ds.ax"    "3/23/2009 3:02 PM"
+ "Media Analyser"    "analyse Filter (Sample)"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\mediaanalyser.ax"    "11/25/2010 11:04 AM"
+ "MS PR Source Filter"    "PlayReady DirectShow Source Filter DLL"    "Microsoft Corporation"    "c:\program files (x86)\playready\prsource.dll"    "4/23/2009 3:32 AM"
+ "PlayReady DMO Wrapper"    "PlayReady DirectShow DMO Wrapper Filter DLL"    "Microsoft Corporation"    "c:\program files (x86)\playready\prdmowrapper.dll"    "4/23/2009 3:32 AM"
+ "PSI Parser"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "QIC1802 Demux"    "QIC1802 Demux"    "Quanta Computer Inc."    "c:\program files (x86)\dell webcam\dell webcam central\qicdemux.ax"    "4/29/2010 4:19 AM"
+ "Record Queue"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 6:21 AM"
+ "Roxio Anaglyph to Stereo"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "Roxio Anaglyph to Stereo"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO Audio Source 3.0"    "Roxio Audio Filters"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxaudio.ax"    "11/25/2010 11:03 AM"
+ "Roxio Audio Source Filter"    "Roxio Audio Source Filter"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\audiocodec\rxdsaudiosource.ax"    "11/25/2010 7:20 AM"
+ "Roxio Audio Stream Reader Filter"    "Roxio Audio Stream Reader Filter"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\audiocodec\rxdsaudiostreamreader.ax"    "11/25/2010 7:19 AM"
+ "Roxio Audio Stream Writer Filter"    "Roxio Audio Stream Writer Filter"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\audiocodec\rxdsaudiostreamwriter.ax"    "11/25/2010 7:20 AM"
+ "ROXIO Audio VCFChunker 3.0"    "Roxio Audio Filters"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxaudio.ax"    "11/25/2010 11:03 AM"
+ "ROXIO Audio VCFLooper 3.0"    "Roxio Audio Filters"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxaudio.ax"    "11/25/2010 11:03 AM"
+ "ROXIO AudioConvert 3.0"    "Roxio Audio Filters"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxaudio.ax"    "11/25/2010 11:03 AM"
+ "ROXIO AudioGrabber 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO BDAV Smart Render 1.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO ColorSpace Converter 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO CPU Regulator"    "CPURegulator.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\cpuregulator.ax"    "11/25/2010 11:16 AM"
+ "ROXIO CrossGraphEx Renderer 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO CrossGraphEx Source 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "roxio DCFilters Audio Sync Filter 2 10"    "roxio DiscCopier DirectShow Filter Collection"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\dllshared\dcfilters12oem.dll"    "11/25/2010 10:51 AM"
+ "roxio DCFilters Dragons Lair 10"    "roxio DiscCopier DirectShow Filter Collection"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\dllshared\dcfilters12oem.dll"    "11/25/2010 10:51 AM"
+ "roxio DCFilters DVD Muxer 10"    "roxio DiscCopier DirectShow Filter Collection"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\dllshared\dcfilters12oem.dll"    "11/25/2010 10:51 AM"
+ "roxio DCFilters DVDStream Reader 10"    "roxio DiscCopier DirectShow Filter Collection"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\dllshared\dcfilters12oem.dll"    "11/25/2010 10:51 AM"
+ "roxio DCFilters DVDStream Splitter 10"    "roxio DiscCopier DirectShow Filter Collection"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\dllshared\dcfilters12oem.dll"    "11/25/2010 10:51 AM"
+ "roxio DCFilters Mpeg I/II Decoder 10"    "roxio DiscCopier DirectShow Filter Collection"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\dllshared\dcfilters12oem.dll"    "11/25/2010 10:51 AM"
+ "roxio DCFilters MPEG Transcoder"    "roxio DiscCopier DirectShow Filter Collection"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\dllshared\dcfilters12oem.dll"    "11/25/2010 10:51 AM"
+ "roxio DCFilters Smart Resizer 10"    "roxio DiscCopier DirectShow Filter Collection"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\dllshared\dcfilters12oem.dll"    "11/25/2010 10:51 AM"
+ "roxio DCFilters Subpicture Mixer 10"    "roxio DiscCopier DirectShow Filter Collection"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\dllshared\dcfilters12oem.dll"    "11/25/2010 10:51 AM"
+ "ROXIO Deinterlace 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO DV Scene Detector Tee 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO DVDCrossGraphEx Renderer 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO DVDCrossGraphEx Source 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO Field Combiner 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO Field Splitter 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "Roxio File Writer Wrapper"    "Roxio File Writer Wrapper"    "Sonic"    "c:\program files (x86)\roxio\oem\videocore 12\roxfilewriterwrapper.ax"    "11/25/2010 11:16 AM"
+ "ROXIO Image/Colour Source 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO ListImage Source 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO LPCMSyncFilter"    "LPCMSync Filter"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\lpcmsyncfilter.dll"    "11/24/2010 6:34 PM"
+ "Roxio LVM File Source (Async.)"    "LVMAsync"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\lvmasync.ax"    "11/25/2010 11:31 AM"
+ "Roxio Mp3 Encoder (SC)"    "Roxio Audio Codec DLL"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\audiocodec\rxdsmp3encoder.ax"    "11/25/2010 7:23 AM"
+ "Roxio MPEG Analyzer Filter"    "MPEG File Analyzer Dynamic Link Library"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\roxiompegprop.dll"    "11/24/2010 6:29 PM"
+ "Roxio MPEG Stream Analyzer"    "Roxio MPEG Stream Splitter"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\mpegstreamanalyzer.dll"    "11/24/2010 6:37 PM"
+ "Roxio MPEG1 Audio Encoder"    "ROXIO MPEG Audio Encoder"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\roxioaudioenc.dll"    "11/24/2010 6:38 PM"
+ "Roxio MPEG1 Encoder"    "ROXIO MPEG1 Codec"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\mpeg1vidcodec.dll"    "11/24/2010 6:33 PM"
+ "Roxio MPEG1 Muxer"    "ROXIO MPEG MUXER"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\mpeg1muxer.dll"    "11/24/2010 6:32 PM"
+ "Roxio MPEG2 Demuxer"    "ROXIO MPEG Demuxer"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\roxiompegdemuxer.dll"    "11/24/2010 6:36 PM"
+ "Roxio MPEG2 Encoder"    "ROXIO MPEG2 Codec"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\mpeg2vidcodec.dll"    "11/24/2010 6:40 PM"
+ "Roxio MPEG2 Muxer"    "ROXIO MPEG MUXER"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\mpeg2muxer.dll"    "11/24/2010 6:32 PM"
+ "Roxio MPEG2 Video Decoder"    "ROXIO MPEG2 Codec"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\mpeg2vidcodec.dll"    "11/24/2010 6:40 PM"
+ "ROXIO Pan Zoom 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO Pin Tee"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "Roxio Plasma CrossGraph Renderer"    "MGICGFilter.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\plasmacgfilter.ax"    "11/25/2010 11:35 AM"
+ "Roxio Plasma CrossGraph Source"    "MGICGFilter.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\plasmacgfilter.ax"    "11/25/2010 11:35 AM"
+ "ROXIO QT Source"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO QuickGrabber 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO Raw Writer"    "ROXIO Raw Writer"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\mgirawwriter.dll"    "11/24/2010 6:34 PM"
+ "Roxio RealD to Stereo"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "Roxio Repack Filter"    "Repack Filter"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\repackfilter.dll"    "11/24/2010 6:35 PM"
+ "ROXIO Scene Detector 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO SceneRecorder 1.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "Roxio Smart Decoder"    "ROXIO MPEG2 Codec"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\mpeg2vidcodec.dll"    "11/24/2010 6:40 PM"
+ "Roxio Smart Encoder"    "ROXIO MPEG2 Codec"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\mpeg2vidcodec.dll"    "11/24/2010 6:40 PM"
+ "ROXIO SpyPos 3.0"    "Null-In-Place (Sample)"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\mginullip.ax"    "11/25/2010 11:14 AM"
+ "Roxio StereoSource Cropper"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO ThumbnailGrabber 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "Roxio Transport Stream Source"    "ListFrameSource"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\tsmpegsource.dll"    "11/24/2010 6:35 PM"
+ "ROXIO VCFAlphaSplitter 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO VCFAudioMixer 3.0"    "Roxio Audio Filters"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxaudio.ax"    "11/25/2010 11:03 AM"
+ "ROXIO VCFDvrSupport 3.0"    "DVR support filter"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\dvrsupportfilt.ax"    "11/25/2010 11:14 AM"
+ "ROXIO VCFDVSceneDetect 1.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO VCFHDVSceneDetect 1.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO VCFLatency 3.0"    "Roxio Audio Filters"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxaudio.ax"    "11/25/2010 11:03 AM"
+ "ROXIO VCFpeakmeter 3.0"    "Roxio Audio Filters"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxaudio.ax"    "11/25/2010 11:03 AM"
+ "ROXIO VCFStationLogo 1.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO VCFVideoCutList 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO VCFWaveform 1.0"    "Roxio Audio Filters"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxaudio.ax"    "11/25/2010 11:03 AM"
+ "ROXIO Video Effect 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO Video Integrate"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO Video Resampler 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "Roxio Video Rotater,"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO Video VCFLooper 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "ROXIO VideoCombine 3.0"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "Roxio VOB Formatter"    "VOBFormatter"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\vobformatter.ax"    "11/25/2010 11:18 AM"
+ "Roxio Vob Loader"    "VOBLoader"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\vobloader.ax"    "11/25/2010 11:19 AM"
+ "ROXIO WAV Dest 3.0"    "Roxio Audio Filters"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxaudio.ax"    "11/25/2010 11:03 AM"
+ "Sewer"    "MVWcDSutil"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\mvwcdsutil.dll"    "11/25/2010 11:01 AM"
+ "Sonic Audio Resampler"    "Audio Resampler Direct Show Filter"    "Sonic Solutions Inc."    "c:\program files (x86)\roxio\oem\audiocodec\filters\c12oem_trans_audio_samplerate_ds.ax"    "5/10/2010 8:53 AM"
+ "Sonic Cinemaster® Audio Decoder 4.3 (No Dolby)"    "SonicHDAudio"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\common\cinemasteraudiond.dll"    "7/22/2010 4:21 AM"
+ "Sonic Cinemaster® VideoDecoder 4.3 (EMC12)"    "CinemasterVideo"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\common\cinemastervideo.dll"    "7/22/2010 4:33 AM"
+ "Sonic HD Demuxer"    "Sonic HD Demuxer"    ""    "c:\program files (x86)\roxio\oem\common\sonichddemuxer.dll"    "7/22/2010 5:01 AM"
+ "Sonic MPEG Multiplexer"    "MPEG Multiplexer-Plus DS Filter"    "Sonic Solutions Inc."    "c:\program files (x86)\roxio\oem\audiocodec\filters\c12oem_mux_mp2_ds.ax"    "5/10/2010 8:40 AM"
+ "Sonic MPEG-2 Video Decoder"    "MPEG-2 Video Decoder"    "Sonic Solutions Inc."    "c:\program files (x86)\common files\sonic shared\sonicmc02\c12oem_dec_mp2v_ds.ax"    "5/10/2010 8:38 AM"
+ "SubPicture Encoder"    "ROXIO SubPicture Encoder"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\oem\12.0\mpeg\subpictenc.dll"    "11/24/2010 6:34 PM"
+ "VCG Null Renderer 3.0"    "VideoCompositing Module"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\videocompositing.ax"    "11/25/2010 11:39 AM"
+ "VCG Video Mixer 3.0"    "VideoCompositing Module"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\videocompositing.ax"    "11/25/2010 11:39 AM"
+ "VCGImageSource"    "VideoCompositing Module"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\videocompositing.ax"    "11/25/2010 11:39 AM"
+ "VDP Renderer"    "VDP Filter"    "Intel Corporation"    "c:\program files (x86)\intel\bluetooth\vdpsnk.dll"    "5/18/2011 5:08 PM"
+ "VMR9 Wrapper 3.0"    "VideoCompositing Module"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\videocompositing.ax"    "11/25/2010 11:39 AM"
+ "Vorbis Decode Filter"    "ogg DShow filters"    ""    "c:\program files (x86)\common files\roxio shared\ogg_flac codecs\dsfvorbisdecoder.dll"    "7/21/2008 10:16 AM"
+ "VW Input Selector"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "VW Input Selector 2"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "VW Video Transition"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "VW Video Transition"    "CrossGraphEx.ax"    "Sonic Solutions"    "c:\program files (x86)\roxio\oem\videocore 12\roxvideo.ax"    "11/25/2010 11:13 AM"
+ "WD Audio Filter"    "WiDi Audio Source Filter."    "Intel Corporation"    "c:\program files (x86)\common files\intel corporation\widiagent\wdaudiofilter.dll"    "5/17/2011 12:31 PM"
+ "WD Secure Source Filter"    "Intel® WiDi Secure Video Source Filter."    "Intel Corporation"    "c:\program files (x86)\common files\intel corporation\widiagent\wdsecuresourcefilter.dll"    "5/17/2011 12:31 PM"
+ "WDSource Filter"    "WiDi Video Source Filter."    "Intel Corporation"    "c:\program files (x86)\common files\intel corporation\widiagent\wdsourcefilter.dll"    "5/17/2011 12:31 PM"
+ "WM VIH2 Fix"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 6:21 AM"
+ "WMT DV Extract Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 6:21 AM"
+ "WMT Sample Info Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 6:21 AM"
+ "WMT Switch Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 6:21 AM"
+ "WMT Virtual Renderer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 6:21 AM"
+ "WMT Virtual Source"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 6:21 AM"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls"    ""    ""    ""    "3/31/2013 1:21 PM"
+ "C:\Windows\System32\nvinitx.dll"    "NVIDIA Compatible NVIDIA shim initialization dll, Version 268.30 "    "NVIDIA Corporation"    "c:\windows\system32\nvinitx.dll"    "4/21/2011 8:47 PM"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls"    ""    ""    ""    "3/31/2013 1:21 PM"
+ "C:\Windows\SysWOW64\nvinit.dll"    "NVIDIA Compatible NVIDIA shim initialization dll, Version 268.30 "    "NVIDIA Corporation"    "c:\windows\syswow64\nvinit.dll"    "4/21/2011 8:46 PM"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers"    ""    ""    ""    "7/14/2009 12:53 AM"
+ "WLIDCredentialProvider"    "Microsoft® Windows Live ID Credential Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"    "9/21/2010 5:47 PM"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify"    ""    ""    ""    "4/2/2013 8:05 AM"
+ "igfxcui"    "igfxdev Module"    "Intel Corporation"    "c:\windows\system32\igfxdev.dll"    "7/19/2011 5:11 PM"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""    "11/24/2011 8:36 PM"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"    "9/21/2010 5:00 PM"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"    "9/21/2010 5:00 PM"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64"    ""    ""    ""    "11/24/2011 8:36 PM"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"    "9/21/2010 5:45 PM"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"    "9/21/2010 5:45 PM"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"    ""    ""    ""    "4/2/2013 8:05 AM"
+ "hpf3l101.dll"    "LanguageMonitor"    "Hewlett-Packard Company"    "c:\windows\system32\hpf3l101.dll"    "10/21/2009 6:09 AM"
"C:\Users\Val\AppData\Local\Microsoft\Windows Sidebar\Settings.ini"    ""    ""    ""    "3/1/2012 11:59 AM"
+ "HP Photo Print"    "Drag and drop photos to print."    "Hewlett-Packard Corp"    "C:\Users\Val\AppData\Local\Microsoft\Windows Sidebar\Gadgets\HPPhoto.gadget\Gadget.xml"    "11/17/2009 5:39 AM"
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users