[Kristin51505]

Hi SleepyDude,

So I did as you asked, but I had some trouble reinstalling the driver. First, I went to the Dell website to save the driver to my USB, but it wouldn't save! It kept canceling itself for some reason; I accidentally saved it onto my parents' computer (which was able to complete, but wouldn't do me any good!) so I'm not sure what was up with that. Next I tried to install it from the Drivers and Utilities DVD I have, but the install failed (due to error 40, if that's important). Then I remembered that I saved that driver onto my USB a few weeks ago before I posted here hoping that reinstalling some network drivers would fix my Internet issues; so I found the driver and tried to install it, but a window popped up saying that WLTRYSVC.exe failed. But the install continued; I don't know if that driver has multiple parts or not, but something seemed to be installed (enough that I was prompted to restart my computer). However, when my computer rebooted I was unable to connect to the wifi (Windows couldn't recognize any networks).😕

[Advertisements]

Hi,

The driver you install is this one R206848.exe?

I would like to confirm if is the right one...

• Open Device Manager click Start then on the Search box type devmgmt.msc and press Enter
• the Device Manager window will open
• right click the wireless card device (it could be on the Network Devices category or other if not properly installed)
• click Properties > Tab Details > On the Property box select Hardware Ids
• Copy & Paste the values on the box to your Reply

[SleepyDude]

Hi,

The driver you install is this one R206848.exe?

I would like to confirm if is the right one...

• Open Device Manager click Start then on the Search box type devmgmt.msc and press Enter
• the Device Manager window will open
• right click the wireless card device (it could be on the Network Devices category or other if not properly installed)
• click Properties > Tab Details > On the Property box select Hardware Ids
• Copy & Paste the values on the box to your Reply

[Kristin51505]

Hi,

Ok, here are the hardware Ids:
PCI\VEN_14E4&DEV_4315&SUBSYS_000C1028&REV_01
PCI\VEN_14E4&DEV_4315&SUBSYS_000C1028
PCI\VEN_14E4&DEV_4315&CC_028000
PCI\VEN_14E4&DEV_4315&CC_0280

[SleepyDude]

Hi,

Ok, here are the hardware Ids:
PCI\VEN_14E4&DEV_4315&SUBSYS_000C1028&REV_01
PCI\VEN_14E4&DEV_4315&SUBSYS_000C1028
PCI\VEN_14E4&DEV_4315&CC_028000
PCI\VEN_14E4&DEV_4315&CC_0280

Hi,

The driver inside the file R206848.exe is for the card you have. Is this the one you installed?

[Kristin51505]

Hi,

Yep, that was the one!

[SleepyDude]

Hi,

Yep, that was the one!

Hi,

Thanks for the confirmation. Until we can find what is the problem with the wireless card installation please keep the computer connected by cable.

Let's rerun on fix with some adjustments because one of the reset commands returned an error...


Run OTL Fix

• Right click on the icon and choose Run as Administrator to execute the tool. Make sure all other windows are closed.
  Do not change any other settings unless otherwise told to do so.
• Under the box at the bottom, paste in the following:
  

  :Commands
  [CreateRestorePoint]
  
  :Files
  netsh int ip install /c
  netsh int ip reset c:\resetlog.txt /c
  netsh winsock reset /c
  ipconfig /release /c 
  ipconfig /flushdns /c 
  ipconfig /renew /c 
  netsh advfirewall reset /c
  netsh advfirewall set allprofiles state on /c
  
  :Commands
  [Reboot]
  
  

• click the button at the top. Let the program run uninterrupted.
• click OK

Notes:

• When OTL executes the Fix it can shutdown all running processes and you may lose the Desktop and icons, but they will return on reboot
• OTL may ask to reboot the machine. Please accept right away.
• The report should appear in Notepad after the reboot. Copy & Paste that report in your next reply and not as attachment.
• The OTL fix log will be saved in the following location: C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log - where mmddyyy _hhmmss is the date and time when the fix run.

Minitoolbox

• Close all the programs and run MiniToolBox
  
• Check the following options:
  
  • List IP Configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Devices: Only Problems
• Click on Go.
• Post the resulting log in your next reply.

Things I would like to see in your next reply:

• The OTL Fix log
• The MiniToolBox log Result.txt

[Kristin51505]

Hi SleepyDude,

Here are the new OTL and MiniToolBox logs!

========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== FILES ==========
< netsh int ip install /c >
A reboot is required to complete this action.
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.
< netsh int ip reset c:\resetlog.txt /c >
Reseting Echo Request, failed.
Access is denied.
Reseting Global, OK!
Reseting Interface, OK!
A reboot is required to complete this action.
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.
< netsh winsock reset /c >
Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.
< ipconfig /release /c >
Windows IP Configuration
No operation can be performed on Wireless Network Connection while it has its media disconnected.
Wireless LAN adapter Wireless Network Connection:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Link-local IPv6 Address . . . . . : fe80::b837:1089:76b2:7454%3
Default Gateway . . . . . . . . . :
Tunnel adapter Local Area Connection* 12:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter Local Area Connection* 13:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.
< ipconfig /renew /c >
Windows IP Configuration
No operation can be performed on Wireless Network Connection while it has its media disconnected.
Wireless LAN adapter Wireless Network Connection:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Link-local IPv6 Address . . . . . : fe80::b837:1089:76b2:7454%3
IPv4 Address. . . . . . . . . . . : 192.168.1.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
Tunnel adapter Local Area Connection* 12:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter Local Area Connection* 13:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.
< netsh advfirewall reset /c >
Ok.
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.
< netsh advfirewall set allprofiles state on /c >
Ok.
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

OTL by OldTimer - Version 3.2.69.0 log created on 03132014_125746



MiniToolBox by Farbar Version: 23-01-2014
Ran by Kristin (administrator) on 13-03-2014 at 13:20:41
Running from "C:\Users\Kristin\Desktop"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
***************************************************************************
========================= IP Configuration: ================================

Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller = Local Area Connection 2 (Connected)
Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Kristin-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card #2
Physical Address. . . . . . . . . : 00-22-5F-85-24-95
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : 00-23-AE-2B-74-7F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b837:1089:76b2:7454%3(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, March 13, 2014 1:20:42 PM
Lease Expires . . . . . . . . . . : Friday, March 14, 2014 1:20:38 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 117449646
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-3C-A2-00-00-23-AE-2B-74-7F
DNS Servers . . . . . . . . . . . : 8.8.8.8
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{9B870657-5927-424C-A4AD-8234779797E2}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{523D3F0F-06D2-42E2-B6E7-94D3ACCA966F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 8.8.8.8

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Ping request could not find host google.com. Please check the name and try again.

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 8.8.8.8

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Ping request could not find host yahoo.com. Please check the name and try again.



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
5 ...00 22 5f 85 24 95 ...... Dell Wireless 1397 WLAN Mini-Card #2
3 ...00 23 ae 2b 74 7f ...... Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
1 ........................... Software Loopback Interface 1
6 ...00 00 00 00 00 00 00 e0 isatap.{9B870657-5927-424C-A4AD-8234779797E2}
4 ...00 00 00 00 00 00 00 e0 isatap.{523D3F0F-06D2-42E2-B6E7-94D3ACCA966F}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 192.168.1.3 296
169.254.255.255 255.255.255.255 On-link 192.168.1.3 276
192.168.1.0 255.255.255.0 On-link 192.168.1.3 276
192.168.1.3 255.255.255.255 On-link 192.168.1.3 276
192.168.1.255 255.255.255.255 On-link 192.168.1.3 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
3 276 fe80::/64 On-link
3 276 fe80::b837:1089:76b2:7454/128
On-link
1 306 ff00::/8 On-link
3 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [61440] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193024] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/13/2014 01:19:37 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: -583

Error: (03/13/2014 01:19:37 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: -583

Error: (03/13/2014 01:18:05 PM) (Source: Google Update) (User: Kristin-PC)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (03/13/2014 01:10:42 PM) (Source: LoadPerf) (User: )
Description: bin?;???,

Error: (03/13/2014 01:06:51 PM) (Source: Windows Search Service) (User: )
Description: 40x8004117fFailed to add project: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects

Error: (03/13/2014 01:06:51 PM) (Source: Windows Search Service) (User: )
Description:
Details:
The content index server cannot update or access information because of a database error. Stop and restart the search service. If the problem persists, reset and recrawl the content index. In some cases it may be necessary to delete and recreate the content index. (0x8004117f)

Error: (03/13/2014 01:06:37 PM) (Source: Windows Search Service) (User: )
Description: 40x8004117fFailed to add project: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects

Error: (03/13/2014 01:06:37 PM) (Source: Windows Search Service) (User: )
Description:
Details:
The content index server cannot update or access information because of a database error. Stop and restart the search service. If the problem persists, reset and recrawl the content index. In some cases it may be necessary to delete and recreate the content index. (0x8004117f)

Error: (03/13/2014 01:06:35 PM) (Source: Google Update) (User: Kristin-PC)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (03/13/2014 01:06:20 PM) (Source: Windows Search Service) (User: )
Description: 40x8004117fFailed to add project: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects


System errors:
=============
Error: (03/13/2014 01:12:38 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
Description: 0x8000002a42\SystemRoot\System32\Config\RegBack\SYSTEM

Error: (03/13/2014 01:06:51 PM) (Source: Service Control Manager) (User: )
Description: Windows Search4

Error: (03/13/2014 01:06:51 PM) (Source: Service Control Manager) (User: )
Description: Windows Search2147749155 (0x80040D23)

Error: (03/13/2014 01:06:36 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
Description: 0x8000002a6SYSTEM

Error: (03/13/2014 01:06:37 PM) (Source: Service Control Manager) (User: )
Description: Windows Search3

Error: (03/13/2014 01:06:37 PM) (Source: Service Control Manager) (User: )
Description: Windows Search2147749155 (0x80040D23)

Error: (03/13/2014 01:06:33 PM) (Source: Print) (User: NT AUTHORITY)
Description: Printer Dell AIO Printer A940 failed to initialize because a suitable Dell AIO Printer A940 driver could not be found. The new printer settings that you specified have not taken effect. Install or reinstall the printer driver. You might need to contact the vendor for an updated driver.

Error: (03/13/2014 01:06:33 PM) (Source: Print) (User: NT AUTHORITY)
Description: Windows could not initialize printer Dell AIO Printer A940 because the print processor Dell AIO Printer A940 Print Processor could not be found. Please obtain and install a new version of the driver from the manufacturer (if available), or choose an alternate driver that works with this print device.

Error: (03/13/2014 01:06:20 PM) (Source: Service Control Manager) (User: )
Description: Windows Search2300001Restart the service

Error: (03/13/2014 01:06:20 PM) (Source: Service Control Manager) (User: )
Description: Windows Search2147749155 (0x80040D23)


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2014-03-13 13:04:32.242
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\wg111v3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-03-13 13:04:31.914
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\wg111v3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-03-13 12:49:57.406
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\wg111v3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-03-13 12:49:57.063
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\wg111v3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-03-11 18:59:09.446
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\wg111v3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-03-11 18:59:09.103
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\wg111v3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-03-11 11:39:12.078
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\wg111v3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-03-11 11:39:11.751
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\wg111v3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-03-10 23:09:24.691
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\wg111v3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-03-10 23:09:24.363
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\wg111v3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


========================= Devices: ================================

Name: isatap.{B85AA5E9-7BE2-4593-939E-734CA1D054AA}
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: isatap.{642F4715-C26C-4272-9F8C-7893530A3D30}
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Rasl2tp
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: WAN Miniport (Network Monitor)
Description: WAN Miniport (Network Monitor)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: WAN Miniport (IP)
Description: WAN Miniport (IP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: WAN Miniport (IPv6)
Description: WAN Miniport (IPv6)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: WAN Miniport (PPPOE)
Description: WAN Miniport (PPPOE)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasPppoe
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: PptpMiniport
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: WAN Miniport (SSTP)
Description: WAN Miniport (SSTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasSstp
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: NETGEAR N300 Wireless Router WNR2000v3
Description: NETGEAR N300 Wireless Router WNR2000v3
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


**** End of log ****

[SleepyDude]

Hi,

Sorry if this sound repetitive but some steps need to be repeated until we get the expected result...
Also I would like to try an OTL scan to see if it works this time.


Run OTL Fix

• Right click on the icon and choose Run as Administrator to execute the tool. Make sure all other windows are closed.
  Do not change any other settings unless otherwise told to do so.
• Under the box at the bottom, paste in the following:
  

  :Files
  netsh int ip reset c:\resetlog.txt /c
  ping -n 2 192.168.1.1 /c
  ping -n 2 8.8.8.8 /c
  

• click the button at the top. Let the program run uninterrupted.
• click OK

Notes:

• When OTL executes the Fix it can shutdown all running processes and you may lose the Desktop and icons, but they will return on reboot
• OTL may ask to reboot the machine. Please accept right away.
• The report should appear in Notepad after the reboot. Copy & Paste that report in your next reply and not as attachment.
• The OTL fix log will be saved in the following location: C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log - where mmddyyy _hhmmss is the date and time when the fix run.

OTL Scan

• Execute OTL right click on the icon and choose Run as Administrator. Make sure all other windows are closed.
  
• Do not change any other settings and tick only the following check box's:
  
  • Scan All Users
  • LOP Check
  • Purity Check
• on the box paste this:
  

  netsvcs
  BASESERVICES
  %SYSTEMDRIVE%\*.exe
  %programfiles%\Google\Desktop\*.* /S /64
  %programfiles%\Google\Desktop\*.* /S
  /md5start
  services.*
  explorer.exe
  winlogon.exe
  Userinit.exe
  svchost.exe
  winhttp.dll
  mscoree.dll
  /md5stop
  dir "%systemdrive%\*" /S /A:L /C
  CREATERESTOREPOINT
  

• Click the Run Scan button. Let the program run uninterrupted, the scan won't take long.
  
  • When the scan completes, it will open notepad with OTL.Txt. The file is saved on the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of the file and post in your topic.

Things I would like to see in your next reply:

• The OTL Fix log
• The new OTL log

[Kristin51505]

Hi SleepyDude,

I did both the OTL fix and scan (first time I've been able to finish a scan with OTL!). But, just to let you know, I had to disconnect my laptop from the router during the scan because I was at 10% battery life and I didn't want it to shut down while it was running. So the last few minutes of the scan finished up without an Ethernet connection; it was able to finish so I'll post the log, but let me know if I need to redo it. Here are the two OTL logs!

========== FILES ==========
< netsh int ip reset c:\resetlog.txt /c >
Reseting Echo Request, failed.
Access is denied.
Reseting Interface, OK!
A reboot is required to complete this action.
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.
< ping -n 2 192.168.1.1 /c >
Pinging 192.168.1.1 with 32 bytes of data:
Request timed out.
Request timed out.
Ping statistics for 192.168.1.1:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.
< ping -n 2 8.8.8.8 /c >
Pinging 8.8.8.8 with 32 bytes of data:
Request timed out.
Request timed out.
Ping statistics for 8.8.8.8:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),
C:\Users\Kristin\Desktop\cmd.bat deleted successfully.
C:\Users\Kristin\Desktop\cmd.txt deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 03132014_195942



OTL logfile created on: 3/13/2014 8:15:53 PM - Run 4
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kristin\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.96 Gb Total Physical Memory | 2.49 Gb Available Physical Memory | 62.85% Memory free
8.10 Gb Paging File | 6.29 Gb Available in Paging File | 77.70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 279.30 Gb Total Space | 96.53 Gb Free Space | 34.56% Space Free | Partition Type: NTFS
Drive E: | 18.75 Gb Total Space | 10.95 Gb Free Space | 58.43% Space Free | Partition Type: NTFS

Computer Name: KRISTIN-PC | User Name: Kristin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found --
PRC - [2013/12/06 16:47:44 | 020,203,904 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
PRC - [2013/05/24 16:43:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kristin\Desktop\OTL.exe
PRC - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/04/04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/11/29 11:30:58 | 000,138,096 | ---- | M] (Facebook Inc.) -- C:\Users\Kristin\AppData\Local\Facebook\Update\FacebookUpdate.exe
PRC - [2012/07/27 13:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/04/25 19:53:38 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
PRC - [2011/08/10 13:52:54 | 000,138,760 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe
PRC - [2008/06/03 15:54:56 | 000,446,635 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell.exe
PRC - [2008/05/23 14:06:08 | 000,128,296 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2008/05/07 17:41:14 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/05/07 17:41:12 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe


========== Modules (No Company Name) ==========

MOD - [2014/03/13 20:02:25 | 000,026,624 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\_multiprocessing.pyd
MOD - [2014/03/13 20:02:24 | 000,805,888 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\wx._gdi_.pyd
MOD - [2014/03/13 20:02:24 | 000,110,080 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\PyWinTypes27.dll
MOD - [2014/03/13 20:02:23 | 001,153,024 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\_ssl.pyd
MOD - [2014/03/13 20:02:23 | 000,711,680 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\_hashlib.pyd
MOD - [2014/03/13 20:02:22 | 000,811,008 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\wx._windows_.pyd
MOD - [2014/03/13 20:02:22 | 000,087,040 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\_ctypes.pyd
MOD - [2014/03/13 20:02:22 | 000,070,656 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\wx._html2.pyd
MOD - [2014/03/13 20:02:22 | 000,035,840 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32process.pyd
MOD - [2014/03/13 20:02:22 | 000,024,064 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32pipe.pyd
MOD - [2014/03/13 20:02:21 | 001,062,400 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\wx._controls_.pyd
MOD - [2014/03/13 20:02:21 | 000,038,912 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32inet.pyd
MOD - [2014/03/13 20:02:21 | 000,025,600 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32pdh.pyd
MOD - [2014/03/13 20:02:20 | 000,686,080 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\unicodedata.pyd
MOD - [2014/03/13 20:02:19 | 000,521,680 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\windows._lib_cacheinvalidation.pyd
MOD - [2014/03/13 20:02:19 | 000,127,488 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\pyexpat.pyd
MOD - [2014/03/13 20:02:19 | 000,119,808 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32file.pyd
MOD - [2014/03/13 20:02:19 | 000,108,544 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32security.pyd
MOD - [2014/03/13 20:02:19 | 000,018,432 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32event.pyd
MOD - [2014/03/13 20:02:19 | 000,017,408 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32profile.pyd
MOD - [2014/03/13 20:02:19 | 000,010,240 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\select.pyd
MOD - [2014/03/13 20:02:18 | 001,175,040 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\wx._core_.pyd
MOD - [2014/03/13 20:02:18 | 000,557,056 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\pysqlite2._sqlite.pyd
MOD - [2014/03/13 20:02:18 | 000,320,512 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32com.shell.shell.pyd
MOD - [2014/03/13 20:02:18 | 000,128,512 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\_elementtree.pyd
MOD - [2014/03/13 20:02:18 | 000,098,816 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32api.pyd
MOD - [2014/03/13 20:02:18 | 000,044,032 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\_socket.pyd
MOD - [2014/03/13 20:02:18 | 000,022,528 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32ts.pyd
MOD - [2014/03/13 20:02:16 | 000,735,232 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\wx._misc_.pyd
MOD - [2014/03/13 20:02:16 | 000,364,544 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\pythoncom27.dll
MOD - [2014/03/13 20:02:16 | 000,122,368 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\wx._wizard.pyd
MOD - [2014/03/13 20:02:16 | 000,011,264 | ---- | M] () -- C:\Users\Kristin\AppData\Local\Temp\_MEI26362\win32crypt.pyd
MOD - [2012/04/25 19:52:28 | 001,270,160 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtscript4.dll
MOD - [2012/04/25 19:52:26 | 007,422,352 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtgui4.dll
MOD - [2012/04/25 19:52:24 | 000,795,024 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtnetwork4.dll
MOD - [2012/04/25 19:52:24 | 000,192,912 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtsql4.dll
MOD - [2012/04/25 19:52:22 | 002,453,904 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtdeclarative4.dll
MOD - [2012/04/25 19:52:22 | 002,126,224 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtcore4.dll
MOD - [2009/11/03 15:51:42 | 000,067,872 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2009/11/03 15:51:26 | 000,039,712 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll


========== Services (SafeList) ==========

SRV:64bit: - [2011/12/30 07:39:40 | 004,889,032 | ---- | M] (SafeNet Inc.) [Auto | Running] -- C:\Windows\SysNative\hasplms.exe -- (hasplms)
SRV:64bit: - [2010/02/26 02:03:00 | 000,244,736 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_54cb4575\STacSV64.exe -- (STacSV)
SRV:64bit: - [2009/03/03 02:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_54cb4575\AESTSr64.exe -- (AESTFilters)
SRV:64bit: - [2008/11/17 07:29:18 | 000,032,768 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\WLTRYSVC.EXE -- (wltrysvc)
SRV:64bit: - [2008/01/20 19:50:24 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (EapHost)
SRV:64bit: - [2008/01/20 19:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2006/11/02 04:16:05 | 000,046,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rundll32.exe -- (yksvc)
SRV - [2014/01/12 01:52:55 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/12/11 00:05:44 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/10/23 09:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/07/27 13:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/04/25 19:53:38 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe -- (KSS)
SRV - [2011/08/10 13:52:54 | 000,138,760 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe -- (NSL)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/03/29 21:42:14 | 000,066,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/05/07 17:41:14 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/05/24 15:46:01 | 000,208,216 | ---- | M] (Kaspersky Lab, GERT) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\63506565.sys -- (51270607)
DRV:64bit: - [2013/04/04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/02/29 06:52:46 | 000,016,384 | ---- | M] (Microsoft Corporation) [Recognizer | System | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/11/22 14:14:54 | 000,139,592 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aksfridge.sys -- (aksfridge)
DRV:64bit: - [2011/11/22 14:14:54 | 000,078,208 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aksdf.sys -- (aksdf)
DRV:64bit: - [2011/09/28 15:31:30 | 000,321,536 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\hardlock.sys -- (hardlock)
DRV:64bit: - [2011/08/08 16:38:05 | 000,167,048 | R--- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\NSTx64\0200000.010\ccSetx64.sys -- (ccSet_NST)
DRV:64bit: - [2011/07/06 12:44:00 | 000,034,288 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2010/02/26 02:03:00 | 000,505,856 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\stwrt64.sys -- (STHDA)
DRV:64bit: - [2009/09/30 17:51:42 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2009/08/28 19:42:52 | 000,049,152 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2009/03/19 17:02:00 | 000,311,296 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA009Vid.sys -- (OA009Vid)
DRV:64bit: - [2009/03/06 07:33:58 | 000,159,840 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA009Ufd.sys -- (OA009Ufd)
DRV:64bit: - [2009/02/23 16:18:58 | 000,069,120 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTSTOR64.SYS -- (RTSTOR)
DRV:64bit: - [2009/01/16 10:00:32 | 010,275,296 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\igdkmd64.sys -- (igfx)
DRV:64bit: - [2008/11/17 08:29:14 | 001,526,776 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\bcmwl664.sys -- (BCM43XX)
DRV:64bit: - [2008/11/17 07:29:18 | 000,022,520 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCM42RLY.sys -- (BCM42RLY)
DRV:64bit: - [2008/11/11 14:42:00 | 000,017,920 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\lgx64bus.sys -- (usbbus)
DRV:64bit: - [2008/07/24 18:40:26 | 000,199,728 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2008/07/24 10:03:00 | 000,392,192 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\yk60x64.sys -- (yukonx64)
DRV:64bit: - [2008/05/07 17:40:38 | 000,395,288 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\iaStor.sys -- (iaStor)
DRV:64bit: - [2007/12/28 15:59:30 | 000,342,528 | ---- | M] (NETGEAR Inc. ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wg111v3.sys -- (RTL8187B)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://securityrespo...r/fix_homepage/
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityrespo...r/fix_homepage/
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://securityrespo...r/fix_homepage/
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityrespo...r/fix_homepage/
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://securityrespo...r/fix_homepage/
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityrespo...r/fix_homepage/
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://securityrespo...r/fix_homepage/
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityrespo...r/fix_homepage/
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-4270958396-3272677963-532609597-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\S-1-5-21-4270958396-3272677963-532609597-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://securityrespo...r/fix_homepage/
IE - HKU\S-1-5-21-4270958396-3272677963-532609597-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://my.yahoo.com/?_bc=1
IE - HKU\S-1-5-21-4270958396-3272677963-532609597-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-4270958396-3272677963-532609597-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-4270958396-3272677963-532609597-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKU\S-1-5-21-4270958396-3272677963-532609597-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:26.0
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.3.0.7280
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:3.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:2011.7.0.8
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/MycameraPlugin: C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Kristin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{203FB6B2-2E1E-4474-863B-4C483ECCE78E}: C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2.0.0.16\coFFNST\ [2013/06/25 00:18:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2014/01/12 01:52:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2014/01/28 23:01:43 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2014/01/12 01:52:15 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2014/01/28 23:01:43 | 000,000,000 | ---D | M]

[2013/03/11 11:35:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kristin\AppData\Roaming\Mozilla\Extensions
[2013/10/18 18:16:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kristin\AppData\Roaming\Mozilla\Firefox\Profiles\tmmm7cnk.default\extensions
[2012/04/24 10:50:17 | 000,020,591 | ---- | M] () (No name found) -- C:\Users\Kristin\AppData\Roaming\Mozilla\Firefox\Profiles\tmmm7cnk.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
[2014/01/12 01:52:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2014/01/12 01:52:16 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014/01/12 01:52:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2014/01/12 01:52:14 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014/01/12 01:52:57 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

O1 HOSTS File: ([2006/09/18 14:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Norton Safe Web Lite BHO) - {F0DA78E9-6B60-42fb-BC26-EF2CFB8C8FF3} - C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\CoIEPlg.dll (Symantec Corporation)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Norton Safe Web Lite) - {30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\CoIEPlg.dll (Symantec Corporation)
O3:64bit: - HKU\S-1-5-21-4270958396-3272677963-532609597-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Windows\SysNative\WLTRAY.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe File not found
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\SysWow64\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\SysWow64\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-4270958396-3272677963-532609597-1000..\Run: [Facebook Update] C:\Users\Kristin\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKU\S-1-5-21-4270958396-3272677963-532609597-1000..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google)
O4 - HKU\S-1-5-21-4270958396-3272677963-532609597-1000..\Run: [KSS] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe (Kaspersky Lab ZAO)
O4 - HKU\S-1-5-21-4270958396-3272677963-532609597-1000..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-21-4270958396-3272677963-532609597-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-21-4270958396-3272677963-532609597-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} http://images3.pnime...veX_Control.cab (Photo Upload Plugin Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{523D3F0F-06D2-42E2-B6E7-94D3ACCA966F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{523D3F0F-06D2-42E2-B6E7-94D3ACCA966F}: NameServer = 8.8.8.8
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Users\Public\Pictures\Sample Pictures\peony.jpg
O24 - Desktop BackupWallPaper: C:\Users\Public\Pictures\Sample Pictures\peony.jpg
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{dadab62f-3958-11df-85e5-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{dadab62f-3958-11df-85e5-806e6f6e6963}\Shell\AutoRun\command - "" = D:\autoRcd.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs:64bit: EapHost - C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2014/03/10 22:55:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cisco
[2014/03/10 22:54:19 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Wireless
[2014/03/10 13:13:52 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallShield
[2014/03/05 15:07:48 | 000,663,552 | ---- | C] (ESET) -- C:\Users\Kristin\Desktop\ESETUninstaller.exe
[2014/02/26 17:30:34 | 000,982,016 | ---- | C] (Farbar) -- C:\Users\Kristin\Desktop\MiniToolBox.exe
[2014/02/23 13:16:59 | 000,342,528 | ---- | C] (NETGEAR Inc. ) -- C:\Windows\SysNative\drivers\wg111v3.sys
[2014/02/15 21:56:33 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2014/02/15 21:54:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\CatRoot2
[2014/02/15 21:43:38 | 000,000,000 | ---D | C] -- C:\RegBackup
[2014/02/12 23:29:15 | 000,181,064 | ---- | C] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014/03/13 20:14:21 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/03/13 20:01:47 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1cec5e5c253ac8b.job
[2014/03/13 20:01:12 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2014/03/13 20:01:12 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2014/03/13 20:01:03 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/03/13 19:57:49 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/03/13 19:57:39 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4270958396-3272677963-532609597-1000UA.job
[2014/03/12 00:40:01 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4270958396-3272677963-532609597-1000Core.job
[2014/03/10 13:14:28 | 000,773,890 | ---- | M] () -- C:\Windows\SysNative\oem20.inf
[2014/03/05 12:09:58 | 000,663,552 | ---- | M] (ESET) -- C:\Users\Kristin\Desktop\ESETUninstaller.exe
[2014/03/01 19:29:20 | 000,007,460 | ---- | M] () -- C:\Users\Kristin\AppData\Local\d3d9caps64.dat
[2014/02/20 17:14:50 | 000,982,016 | ---- | M] (Farbar) -- C:\Users\Kristin\Desktop\MiniToolBox.exe
[2014/02/18 18:54:32 | 000,181,064 | ---- | M] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2014/02/15 21:44:14 | 000,000,207 | ---- | M] () -- C:\Windows\tweaking.com-regbackup-KRISTIN-PC-Microsoft®-Windows-Vista™-Home-Premium-(64-bit).dat
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014/03/10 13:14:38 | 000,773,890 | ---- | C] () -- C:\Windows\SysNative\oem20.inf
[2014/02/15 21:44:14 | 000,000,207 | ---- | C] () -- C:\Windows\tweaking.com-regbackup-KRISTIN-PC-Microsoft®-Windows-Vista™-Home-Premium-(64-bit).dat
[2012/08/03 20:02:07 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2012/07/05 03:48:58 | 000,036,232 | ---- | C] () -- C:\Windows\SysWow64\rgbacodec.dll
[2012/05/12 13:22:03 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2012/05/08 05:02:48 | 000,258,415 | ---- | C] () -- C:\Users\Kristin\Kristen Ashley - Unfinished Hero 01 - Knight (v5.0).epub
[2011/05/18 15:29:08 | 000,001,940 | ---- | C] () -- C:\Users\Kristin\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2011/05/06 11:35:20 | 000,000,000 | ---- | C] () -- C:\Users\Kristin\AppData\Local\{48C18FA4-5AF8-4ABD-9808-A7D0401A196A}
[2011/04/20 21:12:29 | 000,052,736 | -H-- | C] () -- C:\Users\Kristin\AppData\Roaming\RBSpriteSurface400.dll
[2011/02/05 23:56:40 | 000,198,144 | ---- | C] () -- C:\Users\Kristin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/03/24 22:16:48 | 000,006,756 | ---- | C] () -- C:\Users\Kristin\AppData\Local\d3d9caps.dat
[2010/03/24 21:05:06 | 000,007,460 | ---- | C] () -- C:\Users\Kristin\AppData\Local\d3d9caps64.dat

========== ZeroAccess Check ==========

[2006/11/02 08:30:40 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 10:59:03 | 012,899,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 10:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/04/11 00:11:14 | 000,891,392 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/10 23:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2008/01/20 19:50:58 | 000,513,024 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/09/04 16:15:36 | 000,000,000 | ---D | M] -- C:\Users\Kristin\AppData\Roaming\3MCloudLibrary
[2012/04/27 21:05:15 | 000,000,000 | ---D | M] -- C:\Users\Kristin\AppData\Roaming\Canon
[2013/04/23 06:05:00 | 000,000,000 | ---D | M] -- C:\Users\Kristin\AppData\Roaming\ConverterLite
[2012/09/09 15:03:36 | 000,000,000 | ---D | M] -- C:\Users\Kristin\AppData\Roaming\go
[2012/05/12 17:52:23 | 000,000,000 | ---D | M] -- C:\Users\Kristin\AppData\Roaming\MOVAVI
[2010/07/25 16:12:07 | 000,000,000 | ---D | M] -- C:\Users\Kristin\AppData\Roaming\Tific
[2010/03/24 21:38:55 | 000,000,000 | ---D | M] -- C:\Users\Kristin\AppData\Roaming\TMP
[2011/02/05 19:49:24 | 000,000,000 | ---D | M] -- C:\Users\Kristin\AppData\Roaming\Windows SideBar

========== Purity Check ==========



========== Custom Scans ==========

========== Base Services ==========
SRV:64bit: - [2006/11/02 04:16:28 | 000,026,624 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2008/01/20 19:48:17 | 000,045,056 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2008/01/20 19:48:16 | 000,080,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:64bit: - [2009/04/11 00:11:22 | 001,081,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:64bit: - [2009/04/11 00:11:13 | 000,458,240 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bfe.dll -- (BFE)
SRV:64bit: - [2011/11/16 07:34:41 | 000,011,264 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:64bit: - [2009/04/11 00:11:14 | 000,361,984 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/04/10 23:28:19 | 000,268,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:64bit: - [2008/01/20 19:49:11 | 000,103,424 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:64bit: - [2012/06/01 17:20:42 | 000,174,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2012/06/01 17:02:32 | 000,133,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2009/04/11 00:11:23 | 000,719,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2009/04/11 00:11:14 | 000,268,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcsvc.dll -- (Dhcp)
SRV - [2009/04/10 23:28:18 | 000,204,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcsvc.dll -- (Dhcp)
SRV:64bit: - [2011/03/02 09:12:21 | 000,117,760 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2008/01/20 19:50:24 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (EapHost)
SRV:64bit: - [2009/04/11 00:11:15 | 000,024,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/04/10 23:28:19 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:64bit: - [2008/01/20 19:48:03 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:64bit: - [2009/04/11 00:11:15 | 000,533,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\ipsecsvc.dll -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:64bit: - [2009/04/11 00:11:26 | 000,480,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2008/01/20 19:49:56 | 000,037,888 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2008/01/20 19:48:10 | 000,348,160 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:64bit: - [2008/01/20 19:48:40 | 000,304,128 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2008/01/20 19:49:21 | 000,237,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:64bit: - [2008/01/20 19:50:27 | 000,206,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2008/01/20 19:49:42 | 000,024,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2009/04/11 00:11:27 | 000,313,344 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2010/08/17 07:54:20 | 000,273,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:64bit: - [2011/11/16 07:34:41 | 000,011,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
SRV:64bit: - [2009/04/11 00:11:14 | 000,399,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\emdmgmt.dll -- (EMDMgmt)
SRV:64bit: - [2008/01/20 19:48:24 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2009/04/11 00:11:22 | 000,309,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2009/04/11 00:11:23 | 000,719,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2008/01/20 19:49:09 | 000,028,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2011/11/16 07:34:41 | 000,011,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:64bit: - [2009/04/11 00:11:31 | 000,074,752 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:64bit: - [2010/09/06 11:28:38 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2009/07/10 04:51:23 | 000,302,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2009/07/10 04:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
SRV:64bit: - [2009/04/11 00:10:35 | 002,582,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SLsvc.exe -- (slsvc)
SRV:64bit: - [2010/11/06 04:18:13 | 000,855,040 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2009/04/11 00:11:26 | 000,318,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2009/04/10 23:28:24 | 000,242,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2009/07/10 04:51:23 | 000,302,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (Themes)
SRV - [2009/07/10 04:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (Themes)
SRV:64bit: - [2009/04/11 00:11:22 | 000,178,176 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2009/04/11 00:11:03 | 001,433,600 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vssvc.exe -- (VSS)
SRV:64bit: - [2009/04/11 00:11:13 | 000,446,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\Audiosrv.dll -- (AudioSrv)
SRV:64bit: - [2009/04/11 00:11:13 | 000,446,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\Audiosrv.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2008/01/20 19:47:28 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SDRSVC.dll -- (SDRSVC)
SRV:64bit: - [2008/01/20 19:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/04/11 00:11:28 | 001,491,968 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (Eventlog)
SRV:64bit: - [2009/04/11 00:11:15 | 000,603,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mpssvc.dll -- (MpsSvc)
SRV:64bit: - [2009/04/11 00:11:28 | 000,572,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2009/04/11 00:10:29 | 000,125,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2009/04/10 23:27:45 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:64bit: - [2009/04/11 00:11:29 | 000,221,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:64bit: - [2012/06/02 15:19:43 | 002,428,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:64bit: - [2009/04/11 00:11:14 | 000,208,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2009/07/11 12:11:20 | 000,615,936 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:64bit: - [2009/06/10 04:53:17 | 000,203,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

< %SYSTEMDRIVE%\*.exe >

< %programfiles%\Google\Desktop\*.* /S /64 >

< %programfiles%\Google\Desktop\*.* /S >

< MD5 for: EXPLORER.EXE >
[2008/10/28 23:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_b5f700fe698beb14\explorer.exe
[2008/10/28 23:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_b7eb106e66a7ac19\explorer.exe
[2008/10/28 23:15:50 | 003,087,360 | ---- | M] (Microsoft Corporation) MD5=50514057C28A74BAC2BD04B7B990D615 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_aba256ac352b2919\explorer.exe
[2008/10/29 20:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_b8583e9d7fda0512\explorer.exe
[2009/04/11 00:10:17 | 003,079,168 | ---- | M] (Microsoft Corporation) MD5=6B08E54A451B3F95E4109DBA7E594270 -- C:\Windows\explorer.exe
[2009/04/11 00:10:17 | 003,079,168 | ---- | M] (Microsoft Corporation) MD5=6B08E54A451B3F95E4109DBA7E594270 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_afbebba22f3bab41\explorer.exe
[2008/10/27 19:30:12 | 003,086,848 | ---- | M] (Microsoft Corporation) MD5=72B9990E45C25AA3C75C4FB50A9D6CE0 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_ac5266dd4e2b0a41\explorer.exe
[2008/10/28 23:49:22 | 003,080,704 | ---- | M] (Microsoft Corporation) MD5=BBD8E74F23D7605CB0CDB57A1B25D826 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_ad96661c3246ea1e\explorer.exe
[2009/04/10 23:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\SysWOW64\explorer.exe
[2009/04/10 23:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_ba1365f4639c6d3c\explorer.exe
[2008/10/29 22:30:07 | 003,081,216 | ---- | M] (Microsoft Corporation) MD5=E404A65EF890140410E9F3D405841C95 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_ae03944b4b794317\explorer.exe
[2008/10/27 19:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_b6a7112f828bcc3c\explorer.exe
[2008/01/20 19:48:44 | 003,080,704 | ---- | M] (Microsoft Corporation) MD5=F6D765FB6B457542D954682F50C26E4F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_add342963219dff5\explorer.exe
[2008/01/20 19:49:23 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_b827ece8667aa1f0\explorer.exe

< MD5 for: MSCOREE.DLL >
[2009/11/08 10:55:32 | 000,297,808 | ---- | M] (Microsoft Corporation) MD5=128DD9AF8640DBCC711940903C8B554F -- C:\Windows\SysWOW64\mscoree.dll
[2009/11/08 10:55:32 | 000,297,808 | ---- | M] (Microsoft Corporation) MD5=128DD9AF8640DBCC711940903C8B554F -- C:\Windows\winsxs\x86_netfx-mscoree_dll_31bf3856ad364e35_6.1.6001.18242_none_7d658e19f5139de5\mscoree.dll
[2008/01/20 19:49:11 | 000,282,112 | ---- | M] (Microsoft Corporation) MD5=24084D13982FFE48C5BF931F1E5DD707 -- C:\Windows\winsxs\x86_netfx-mscoree_dll_31bf3856ad364e35_6.0.6001.18000_none_b55ffc255629a804\mscoree.dll
[2009/03/29 21:42:21 | 000,278,848 | ---- | M] (Microsoft Corporation) MD5=363C34FB89B8ED269659270FB06BEC9F -- C:\Windows\winsxs\x86_netfx-mscoree_dll_31bf3856ad364e35_6.0.6002.18005_none_b74b7531534b7350\mscoree.dll
[2009/03/29 21:39:58 | 000,403,280 | ---- | M] (Microsoft Corporation) MD5=4A68B66078F07BB429A86A7844F3F2A8 -- C:\Windows\winsxs\amd64_netfx-mscoree_dll_31bf3856ad364e35_6.0.6002.18005_none_136a10b50ba8e486\mscoree.dll
[2009/11/08 10:55:32 | 000,444,752 | ---- | M] (Microsoft Corporation) MD5=72AB6633E9B39EC7FEBEDF083A9061E5 -- C:\Windows\SysNative\mscoree.dll
[2009/11/08 10:55:32 | 000,444,752 | ---- | M] (Microsoft Corporation) MD5=72AB6633E9B39EC7FEBEDF083A9061E5 -- C:\Windows\winsxs\amd64_netfx-mscoree_dll_31bf3856ad364e35_6.1.6001.18242_none_d984299dad710f1b\mscoree.dll
[2008/07/27 10:59:20 | 000,406,528 | ---- | M] (Microsoft Corporation) MD5=8CC39A1179B992B5743150F2D7BC3E27 -- C:\Windows\winsxs\amd64_netfx-mscoree_dll_31bf3856ad364e35_6.0.6000.16720_none_0f82bb111170bd52\mscoree.dll
[2008/07/27 10:55:01 | 000,406,528 | ---- | M] (Microsoft Corporation) MD5=8CC39A1179B992B5743150F2D7BC3E27 -- C:\Windows\winsxs\amd64_netfx-mscoree_dll_31bf3856ad364e35_6.0.6000.20883_none_0fce79322abc50c7\mscoree.dll
[2008/07/27 11:01:52 | 000,406,528 | ---- | M] (Microsoft Corporation) MD5=8CC39A1179B992B5743150F2D7BC3E27 -- C:\Windows\winsxs\amd64_netfx-mscoree_dll_31bf3856ad364e35_6.0.6001.18111_none_1174c9ed0e8e4ba9\mscoree.dll
[2008/07/27 11:02:07 | 000,406,528 | ---- | M] (Microsoft Corporation) MD5=8CC39A1179B992B5743150F2D7BC3E27 -- C:\Windows\winsxs\amd64_netfx-mscoree_dll_31bf3856ad364e35_6.0.6001.22230_none_11e7c69627bd09fe\mscoree.dll
[2008/07/27 11:00:29 | 000,282,112 | ---- | M] (Microsoft Corporation) MD5=C99248B969A799B771F484CD68BCB96E -- C:\Windows\winsxs\x86_netfx-mscoree_dll_31bf3856ad364e35_6.0.6000.16720_none_b3641f8d59134c1c\mscoree.dll
[2008/07/27 10:55:56 | 000,282,112 | ---- | M] (Microsoft Corporation) MD5=C99248B969A799B771F484CD68BCB96E -- C:\Windows\winsxs\x86_netfx-mscoree_dll_31bf3856ad364e35_6.0.6000.20883_none_b3afddae725edf91\mscoree.dll
[2008/07/27 11:03:17 | 000,282,112 | ---- | M] (Microsoft Corporation) MD5=C99248B969A799B771F484CD68BCB96E -- C:\Windows\winsxs\x86_netfx-mscoree_dll_31bf3856ad364e35_6.0.6001.18111_none_b5562e695630da73\mscoree.dll
[2008/07/27 10:58:36 | 000,282,112 | ---- | M] (Microsoft Corporation) MD5=C99248B969A799B771F484CD68BCB96E -- C:\Windows\winsxs\x86_netfx-mscoree_dll_31bf3856ad364e35_6.0.6001.22230_none_b5c92b126f5f98c8\mscoree.dll
[2008/01/20 19:48:14 | 000,448,000 | ---- | M] (Microsoft Corporation) MD5=CA90A71A334735CA6765996159072AB1 -- C:\Windows\winsxs\amd64_netfx-mscoree_dll_31bf3856ad364e35_6.0.6001.18000_none_117e97a90e87193a\mscoree.dll

< MD5 for: SERVICES >
[2006/09/18 14:37:24 | 000,017,244 | ---- | M] () MD5=9F534244B7F8F55D5C0BB498D8D481E7 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.0.6001.18000_none_60a39df1afb86c9f\services

< MD5 for: SERVICES.CFG >
[2012/07/27 13:51:34 | 000,586,083 | ---- | M] () MD5=6DE4EA437EC1FE6DB27CADB0A7EA8DC2 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Services\Services.cfg
[2011/06/06 12:55:30 | 000,584,045 | R--- | M] () MD5=B82DD53FA8C260DDD7FDC42182DB816E -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\services.cfg

< MD5 for: SERVICES.EXE >
[2008/01/20 19:50:34 | 000,279,040 | ---- | M] (Microsoft Corporation) MD5=2B336AB6286D6C81FA02CBAB914E3C6C -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe
[2009/04/11 00:10:50 | 000,384,512 | ---- | M] (Microsoft Corporation) MD5=934E0B7D77FF78C18D9F8891221B6DE3 -- C:\Windows\SysNative\services.exe
[2009/04/11 00:10:50 | 000,384,512 | ---- | M] (Microsoft Corporation) MD5=934E0B7D77FF78C18D9F8891221B6DE3 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_2d69d4f782c83d8c\services.exe
[2009/04/10 23:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\SysWOW64\services.exe
[2009/04/10 23:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe
[2008/01/20 19:49:44 | 000,384,512 | ---- | M] (Microsoft Corporation) MD5=DFAC660F0F139276CC9299812DE42719 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_2b7e5beb85a67240\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2006/11/02 08:13:31 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=1626EACF0E7E59F85C59DDDD27C4169C -- C:\Windows\SysWOW64\en-US\services.exe.mui
[2006/11/02 08:13:31 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=1626EACF0E7E59F85C59DDDD27C4169C -- C:\Windows\winsxs\x86_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.0.6000.16386_en-us_67c6851b290a1ced\services.exe.mui
[2006/11/02 08:13:56 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=F514B57C09E143F1E14415A9E9ADD695 -- C:\Windows\SysNative\en-US\services.exe.mui
[2006/11/02 08:13:56 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=F514B57C09E143F1E14415A9E9ADD695 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.0.6000.16386_en-us_c3e5209ee1678e23\services.exe.mui

< MD5 for: SERVICES.HEARSTMAGS[1].XML >
[2013/05/23 13:21:42 | 000,000,213 | ---- | M] () MD5=09ADDDE7F6AE44AF94EEADF7B00F8CEA -- C:\Users\Kristin\AppData\Local\Microsoft\Internet Explorer\DOMStore\8IT3Q1QI\services.hearstmags[1].xml
[2013/11/10 19:57:23 | 000,000,213 | ---- | M] () MD5=E1567F2811E8F31D9D7C774C61E98E05 -- C:\Users\Kristin\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\2VTQ32IU\services.hearstmags[1].xml

< MD5 for: SERVICES.LNK >
[2008/01/20 20:20:59 | 000,001,688 | ---- | M] () MD5=EFDD08F4E5E26430885F26F0C35B8C62 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2008/01/20 20:20:59 | 000,001,688 | ---- | M] () MD5=EFDD08F4E5E26430885F26F0C35B8C62 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2006/09/18 14:44:54 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
[2006/09/18 14:46:11 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysWOW64\wbem\services.mof
[2006/09/18 14:44:54 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_2b7e5beb85a67240\services.mof
[2006/09/18 14:44:54 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_2d69d4f782c83d8c\services.mof
[2006/09/18 14:46:11 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.mof
[2006/09/18 14:46:11 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.mof

< MD5 for: SERVICES.MSC >
[2006/11/02 08:13:51 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
[2006/09/18 14:29:41 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
[2006/11/02 08:14:00 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
[2006/09/18 14:29:40 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
[2006/11/02 08:13:51 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.0.6000.16386_en-us_fe26f08ab7d12816\services.msc
[2006/09/18 14:29:41 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.0.6001.18000_none_2b827e27fe185619\services.msc
[2006/11/02 08:14:00 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.0.6000.16386_en-us_a2085506ff73b6e0\services.msc
[2006/09/18 14:29:40 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.0.6001.18000_none_cf63e2a445bae4e3\services.msc

< MD5 for: SERVICES.ZIP >
[2012/07/07 20:31:41 | 000,876,996 | ---- | M] () MD5=CAC0A919FE55CAAFFAC56BAEFC037444 -- C:\Users\Public\Desktop\CC Support\Tools\ServicesRepair\Temp\Services.zip

< MD5 for: SVCHOST.EXE >
[2008/01/20 19:48:05 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\SysWOW64\svchost.exe
[2008/01/20 19:48:05 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2008/01/20 19:50:24 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=CDA9F1373805AF88F6FA4F2064BBA24D -- C:\Windows\SysNative\svchost.exe
[2008/01/20 19:50:24 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=CDA9F1373805AF88F6FA4F2064BBA24D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_11d9f524bdab2f1b\svchost.exe

< MD5 for: USERINIT.EXE >
[2008/01/20 19:50:36 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\SysWOW64\userinit.exe
[2008/01/20 19:50:36 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[2008/01/20 19:49:46 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=A0AB2BB9A92293D9CE66E252719AB5FE -- C:\Windows\SysNative\userinit.exe
[2008/01/20 19:49:46 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=A0AB2BB9A92293D9CE66E252719AB5FE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_384755998a0d6941\userinit.exe

< MD5 for: WINHTTP.DLL >
[2009/08/24 04:50:31 | 000,377,344 | ---- | M] (Microsoft Corporation) MD5=03A0B9B4C70FDA31C96486C7B6A57FAD -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6002.22208_none_8db957dfc51e4b6d\winhttp.dll
[2006/11/02 04:19:10 | 000,439,296 | ---- | M] (Microsoft Corporation) MD5=13F548988E4755C8998B4C4A5501DD02 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.16386_none_7eb5d2f67d95c45c\winhttp.dll
[2009/08/24 04:42:02 | 000,442,368 | ---- | M] (Microsoft Corporation) MD5=13F88D7775717E142A8676A462776077 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6002.22208_none_8364ad8d90bd8972\winhttp.dll
[2008/12/07 21:34:09 | 000,376,832 | ---- | M] (Microsoft Corporation) MD5=195766F84BDB446AE8E454D810E3207D -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.16786_none_890a84e0b1f67af3\winhttp.dll
[2008/12/07 21:19:11 | 000,377,344 | ---- | M] (Microsoft Corporation) MD5=22F2A8530DB67FC750B3F99047F7EE4E -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.20971_none_8999f20bcb107d40\winhttp.dll
[2011/11/16 08:48:41 | 000,442,368 | ---- | M] (Microsoft Corporation) MD5=2A1555ACFF022B90141445F7BB93F49A -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6002.22742_none_8333759f90e352ef\winhttp.dll
[2009/08/24 05:34:23 | 000,378,880 | ---- | M] (Microsoft Corporation) MD5=3668B853E649D49C7F53DA80B6BF9BD3 -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.21113_none_89dcac2fcade38b1\winhttp.dll
[2009/08/24 04:51:01 | 000,378,368 | ---- | M] (Microsoft Corporation) MD5=395E541336DC5B6758BD4984E78CBEC1 -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.22504_none_8bcee4cfc7fb90ed\winhttp.dll
[2009/08/24 05:24:52 | 000,442,368 | ---- | M] (Microsoft Corporation) MD5=3A46C22A9E080F05BED6EB4FD1F4F0B5 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.18315_none_80e6cc2a7a846749\winhttp.dll
[2009/08/24 05:12:38 | 000,442,368 | ---- | M] (Microsoft Corporation) MD5=4164D10593347B03BF387AA6797B8234 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.22504_none_817a3a7d939acef2\winhttp.dll
[2008/12/07 22:00:54 | 000,439,808 | ---- | M] (Microsoft Corporation) MD5=42C91D5287B0D729A3301FACE76A95D8 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.20971_none_7f4547b996afbb45\winhttp.dll
[2008/12/05 21:26:04 | 000,376,832 | ---- | M] (Microsoft Corporation) MD5=4A555E71EC1989C35631AE82E23342C2 -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.22323_none_8bb840e1c80cb52a\winhttp.dll
[2009/08/24 04:47:36 | 000,442,368 | ---- | M] (Microsoft Corporation) MD5=52EFD0AF2E9913C5623CF9AEC631C5F7 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6002.18096_none_8277befc77eab54c\winhttp.dll
[2009/04/10 23:28:25 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=6B0373ED07C3523D74070085E0BF8FD2 -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6002.18005_none_8d2cb850ac036277\winhttp.dll
[2009/08/24 05:56:48 | 000,441,856 | ---- | M] (Microsoft Corporation) MD5=6B62B19B76954F6233213B2A88379FB3 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.16913_none_7efe8cf07d5fa3aa\winhttp.dll
[2009/08/24 04:36:45 | 000,377,344 | ---- | M] (Microsoft Corporation) MD5=6DF578562D2FA95ACAA37D359B68A31D -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6002.18096_none_8ccc694eac4b7747\winhttp.dll
[2011/11/16 09:02:13 | 000,377,344 | ---- | M] (Microsoft Corporation) MD5=72448961AE4D4E69FD0CD381E368BDE5 -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6002.22742_none_8d881ff1c54414ea\winhttp.dll
[2008/01/20 19:50:10 | 000,376,832 | ---- | M] (Microsoft Corporation) MD5=764435191032B3BCD76698CDE4C63E3E -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.18000_none_8b413f44aee1972b\winhttp.dll
[2009/04/11 00:11:28 | 000,439,808 | ---- | M] (Microsoft Corporation) MD5=780473D0EEB23D40F1EEE69A70719399 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6002.18005_none_82d80dfe77a2a07c\winhttp.dll
[2008/01/20 19:49:38 | 000,439,808 | ---- | M] (Microsoft Corporation) MD5=7FCC9B9A7A95B126133EB3CACD87B416 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.18000_none_80ec94f27a80d530\winhttp.dll
[2006/11/02 02:46:14 | 000,376,832 | ---- | M] (Microsoft Corporation) MD5=91486554245818C2ECA5433EE1DC6854 -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.16386_none_890a7d48b1f68657\winhttp.dll
[2011/11/16 09:43:13 | 000,442,368 | ---- | M] (Microsoft Corporation) MD5=A2D043408A2DC9CDE48CFF88FCD74662 -- C:\Windows\SysNative\winhttp.dll
[2011/11/16 09:43:13 | 000,442,368 | ---- | M] (Microsoft Corporation) MD5=A2D043408A2DC9CDE48CFF88FCD74662 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6002.18541_none_82a8d6a477c69ca7\winhttp.dll
[2008/12/05 22:52:07 | 000,439,808 | ---- | M] (Microsoft Corporation) MD5=AB0A8606966BC0007D32611418BAC3C2 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.22323_none_8163968f93abf32f\winhttp.dll
[2008/12/05 21:42:11 | 000,376,832 | ---- | M] (Microsoft Corporation) MD5=B6E8D828E9236ADCBE40FD8CFE2B5EB1 -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.18178_none_8afd9406af1322a1\winhttp.dll
[2008/12/07 21:39:55 | 000,439,296 | ---- | M] (Microsoft Corporation) MD5=C2E4AFCE8E2D3DFA9F23833BD1FF2697 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.16786_none_7eb5da8e7d95b8f8\winhttp.dll
[2008/12/05 21:58:58 | 000,439,808 | ---- | M] (Microsoft Corporation) MD5=CB2B063125DAD90AE9ACDFDA774C7B89 -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.18178_none_80a8e9b47ab260a6\winhttp.dll
[2009/08/24 05:16:12 | 000,378,368 | ---- | M] (Microsoft Corporation) MD5=CE412DEE2B485C11BA1802A64473E9BA -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.18315_none_8b3b767caee52944\winhttp.dll
[2011/11/16 09:23:44 | 000,377,344 | ---- | M] (Microsoft Corporation) MD5=DBD02E3E6F061EBBBF9B99A9D7CBA30B -- C:\Windows\SysWOW64\winhttp.dll
[2011/11/16 09:23:44 | 000,377,344 | ---- | M] (Microsoft Corporation) MD5=DBD02E3E6F061EBBBF9B99A9D7CBA30B -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6002.18541_none_8cfd80f6ac275ea2\winhttp.dll
[2009/08/24 05:47:07 | 000,378,368 | ---- | M] (Microsoft Corporation) MD5=E762562A8D43BDE3EE11428EB681FF9C -- C:\Windows\winsxs\wow64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.16913_none_89533742b1c065a5\winhttp.dll
[2009/08/24 06:09:43 | 000,442,368 | ---- | M] (Microsoft Corporation) MD5=F26101F73C1C81E2D84336144E657FEC -- C:\Windows\winsxs\amd64_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.21113_none_7f8801dd967d76b6\winhttp.dll

< MD5 for: WINLOGON.EXE >
[2009/04/11 00:11:08 | 000,405,504 | ---- | M] (Microsoft Corporation) MD5=6D0773A3A65D28B663F334C90441D01A -- C:\Windows\SysNative\winlogon.exe
[2009/04/11 00:11:08 | 000,405,504 | ---- | M] (Microsoft Corporation) MD5=6D0773A3A65D28B663F334C90441D01A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_cdcd15a68a70b877\winlogon.exe
[2008/01/20 19:49:47 | 000,406,016 | ---- | M] (Microsoft Corporation) MD5=856491FCED98093D824B9EB2892F564A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_cbe19c9a8d4eed2b\winlogon.exe
[2009/04/10 23:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\SysWOW64\winlogon.exe
[2009/04/10 23:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008/01/20 19:50:38 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< dir "%systemdrive%\*" /S /A:L /C >
Volume in drive C is OS
Volume Serial Number is A8A9-6B26
Directory of C:\
11/02/2006 08:42 AM <JUNCTION> Documents and Settings [C:\Users]
0 File(s) 0 bytes
Directory of C:\ProgramData
11/02/2006 08:42 AM <JUNCTION> Application Data [C:\ProgramData]
11/02/2006 08:42 AM <JUNCTION> Desktop [C:\Users\Public\Desktop]
11/02/2006 08:42 AM <JUNCTION> Documents [C:\Users\Public\Documents]
11/02/2006 08:42 AM <JUNCTION> Favorites [C:\Users\Public\Favorites]
11/02/2006 08:42 AM <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
11/02/2006 08:42 AM <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users
11/02/2006 08:42 AM <SYMLINKD> All Users [C:\ProgramData]
11/02/2006 08:42 AM <JUNCTION> Default User [C:\Users\Default]
0 File(s) 0 bytes
Directory of C:\Users\All Users
11/02/2006 08:42 AM <JUNCTION> Application Data [C:\ProgramData]
11/02/2006 08:42 AM <JUNCTION> Desktop [C:\Users\Public\Desktop]
11/02/2006 08:42 AM <JUNCTION> Documents [C:\Users\Public\Documents]
11/02/2006 08:42 AM <JUNCTION> Favorites [C:\Users\Public\Favorites]
11/02/2006 08:42 AM <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
11/02/2006 08:42 AM <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default
11/02/2006 08:42 AM <JUNCTION> Application Data [C:\Users\Default\AppData\Roaming]
11/02/2006 08:42 AM <JUNCTION> Cookies [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Cookies]
11/02/2006 08:42 AM <JUNCTION> Local Settings [C:\Users\Default\AppData\Local]
11/02/2006 08:42 AM <JUNCTION> My Documents [C:\Users\Default\Documents]
11/02/2006 08:42 AM <JUNCTION> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
11/02/2006 08:42 AM <JUNCTION> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
11/02/2006 08:42 AM <JUNCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent]
11/02/2006 08:42 AM <JUNCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo]
11/02/2006 08:42 AM <JUNCTION> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
11/02/2006 08:42 AM <JUNCTION> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default\AppData\Local
11/02/2006 08:42 AM <JUNCTION> Application Data [C:\Users\Default\AppData\Local]
11/02/2006 08:42 AM <JUNCTION> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
11/02/2006 08:42 AM <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Default\Documents
11/02/2006 08:42 AM <JUNCTION> My Music [C:\Users\Default\Music]
11/02/2006 08:42 AM <JUNCTION> My Pictures [C:\Users\Default\Pictures]
11/02/2006 08:42 AM <JUNCTION> My Videos [C:\Users\Default\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Kristin
03/24/2010 09:05 PM <JUNCTION> Application Data [C:\Users\Kristin\AppData\Roaming]
03/24/2010 09:05 PM <JUNCTION> Cookies [C:\Users\Kristin\AppData\Roaming\Microsoft\Windows\Cookies]
03/24/2010 09:05 PM <JUNCTION> Local Settings [C:\Users\Kristin\AppData\Local]
03/24/2010 09:05 PM <JUNCTION> My Documents [C:\Users\Kristin\Documents]
03/24/2010 09:05 PM <JUNCTION> NetHood [C:\Users\Kristin\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
03/24/2010 09:05 PM <JUNCTION> PrintHood [C:\Users\Kristin\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
03/24/2010 09:05 PM <JUNCTION> Recent [C:\Users\Kristin\AppData\Roaming\Microsoft\Windows\Recent]
03/24/2010 09:05 PM <JUNCTION> SendTo [C:\Users\Kristin\AppData\Roaming\Microsoft\Windows\SendTo]
03/24/2010 09:05 PM <JUNCTION> Start Menu [C:\Users\Kristin\AppData\Roaming\Microsoft\Windows\Start Menu]
03/24/2010 09:05 PM <JUNCTION> Templates [C:\Users\Kristin\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Kristin\AppData\Local
03/24/2010 09:05 PM <JUNCTION> Application Data [C:\Users\Kristin\AppData\Local]
03/24/2010 09:05 PM <JUNCTION> History [C:\Users\Kristin\AppData\Local\Microsoft\Windows\History]
03/24/2010 09:05 PM <JUNCTION> Temporary Internet Files [C:\Users\Kristin\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Kristin\AppData\LocalLow
12/24/2013 07:32 PM <JUNCTION> PlayReady [C:\ProgramData\Microsoft\PlayReady]
0 File(s) 0 bytes
Directory of C:\Users\Kristin\Documents
03/24/2010 09:05 PM <JUNCTION> My Music [C:\Users\Kristin\Music]
03/24/2010 09:05 PM <JUNCTION> My Pictures [C:\Users\Kristin\Pictures]
03/24/2010 09:05 PM <JUNCTION> My Videos [C:\Users\Kristin\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Public\Documents
11/02/2006 08:42 AM <JUNCTION> My Music [C:\Users\Public\Music]
11/02/2006 08:42 AM <JUNCTION> My Pictures [C:\Users\Public\Pictures]
11/02/2006 08:42 AM <JUNCTION> My Videos [C:\Users\Public\Videos]
0 File(s) 0 bytes
Total Files Listed:
0 File(s) 0 bytes
51 Dir(s) 100,696,952,832 bytes free

< End of report >

[SleepyDude]

Hi Kristin,

I have been searching the net for solutions to the problem listed on the Device Manager, and all the recommendations are to use the Windows Vista DVD and do a Repair Install. Today I found possible solution for this that I would like you to try.


Uninstall the non-working miniports

So, to remove each non-working miniport, do the following:

• Open the Device Manager like you did before
• Right click on the non-working WAN Miniport (IP, IPv6, L2TP, Network Monitor, PPPOE, PPTP, SSTP), choose Update Driver
• Choose Browse my computer.
• In the next window, choose Let me pick driver from a list.
• Uncheck Show compatible hardware. From the Manufacturer list, choose Microsoft, and from the Network Adapter list, choose MAC Bridge Miniport.
• Back in the Device Manager, delete the device that just turned into the MAC Bridge Miniport device.
• Repeat the steps from 2 to 6 for all of the WAN Miniport (***) devices only!

Once done removing them restart the computer. Don’t skip this, it’s important. Otherwise there is a change things will go bad again.

Reinstall the miniports

This is the fun part. You’ll need to do a few extra steps, as the miniport drivers aren’t meant to be installed by users and are not visible.

• You will need a Microsoft utility called devcon.exe. 32-bit version won’t work on 64-bit systems. It runs, but won’t do what it needs to. Old (XP/2000) versions don’t work well wither. The easiest way to do this is to follow the steps outlined in “How to Obtain the Current Version of Device Console Utility (DevCon.exe)” on Microsoft’s TechNet wiki. (It involved getting an ISO image of a developer CD and extracting the devcon.exe file out of there.)
• Get devcon.exe or devcon64.exe according to your OS architecture and save the file to the Windows folder.
• For each miniport that you have previously uninstalled, execute the command outlined below. DO NOT run all of them or run the command twice, as that will create second version of the existing miniport, which can cause problems again.
  
  If running the command reports “driver install” failure, don’t pay much attention to it, it usually does. The only problem is when it complains about the inf file missing, or a missing class (in which case you most likely made a typo in the last part of the command).
  
  
• IP:
  devcon install c:\Windows\inf\netrasa.inf MS_NdisWanIp
• IPv6:
  devcon install c:\Windows\inf\netrasa.inf MS_NdisWanIpv6
• Network Monitor:
  devcon install c:\Windows\inf\netrasa.inf MS_NdisWanBh
• L2TP:
  devcon install c:\Windows\inf\netrasa.inf MS_L2tpMiniport
• PPPoE:
  devcon install c:\Windows\inf\netrasa.inf MS_PppoeMiniport
• PPTP:
  devcon install c:\Windows\inf\netrasa.inf MS_PptpMiniport
• SSTP:
  devcon install c:\Windows\inf\netsstpa.inf MS_SstpMiniport

Once done, reboot. Again, this is necessary. You can go to device manager and scan for new devices and some of the miniports will show up, but some will have wrong names and won’t work properly without a reboot.

That's it, you should have working miniports again. Please post a new MinitoolBox log like you did on my post #96

[Kristin51505]

Hi SleepyDude,

I've started working on my computer, but I had a question; in the first part if your directions, after I make the Microsoft and MAC Bridge Miniport selections do I click "next" to install it? Because it's asking me to install the driver and I wanted to make sure that is what I should be doing. And if yes I should go ahead and install it, do I then uninstall it? You said to delete them and I assumed that meant to uninstall them, but I wanted to be sure. Thanks!

[SleepyDude]

Hi SleepyDude,

I've started working on my computer, but I had a question; in the first part if your directions, after I make the Microsoft and MAC Bridge Miniport selections do I click "next" to install it? Because it's asking me to install the driver and I wanted to make sure that is what I should be doing. And if yes I should go ahead and install it, do I then uninstall it? You said to delete them and I assumed that meant to uninstall them, but I wanted to be sure. Thanks!

Hi,

Yes to both questions. The idea is to replace the installed driver with the Microsoft and MAC Bridge Miniport and after install remove it. This is needed because windows doesn't allow us to remove the original WAN miniport driver.

[SleepyDude]

Hi,

I searched for drivers on each one it said that it found driver software but encountered an error while attempting to install. The error that came up said: The system cannot find the file specified. And now all the miniports (or what should be miniports) are listed under "Other devices". Does that mean the devcon64.exe didn't work?!

Hi,

Can you post a screenshot showing the Device Manager with the Other Devices expanded?

[Kristin51505]

Hi SleepyDude,

 

Sorry for the delay! Here's the screenshot you asked for:

 

Also, in case it's important, under the properties tab for the "unknown devices" it says that the drivers for the device are not installed.

[SleepyDude]

Hi,

 

Can you try this please.

 

• Open the Device Manager, right click on top on the computer name and select Add legacy Hardware
• click Next
• select Install the hardware that I manually select from a list (Advanced) and click Next
• on the list select Network Adapters and click Next, wait for the list to populate...
• on the Manufacturer panel click Microsoft and on the left locate and select Microsoft Tun Miniport Adapter, click Next and Next to install
• after the installation restart the computer

Let me know if the device installed without errors.