Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Starts okay - then becomes unresponsive

Started by ttbcs , Aug 08 2013 10:08 PM

  • Please log in to reply

#1
ttbcs
Posted 08 August 2013 - 10:08 PM

ttbcs

    Member

  • Member
  • PipPipPip
  • 102 posts
My daughter's laptop is becoming unresponsive. Starts up without any errors and seems to be running fine. Within 10 to 15 minutes nothing seems to run and I have to do a hard reset to get it to shut down. I tried to run OTL and part way through the scan it quit running. I let it cook for about an hour before giving up and resetting it. I ran VIPRERescue19972 and malwarebytes in safe mode and found no errors. I ran OTL in safe mode and will paste it below. Any suggestions would be greatly appreciated.

OTL logfile created on: 8/8/2013 5:55:03 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Brianne\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.90 Gb Total Physical Memory | 2.88 Gb Available Physical Memory | 73.82% Memory free
7.79 Gb Paging File | 6.78 Gb Available in Paging File | 87.01% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 576.54 Gb Total Space | 465.74 Gb Free Space | 80.78% Space Free | Partition Type: NTFS

Computer Name: MYCOMPUTER | User Name: Brianne | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Brianne\Desktop\OTL.exe (OldTimer Tools)


========== Modules (No Company Name) ==========


========== Services (SafeList) ==========

SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (mfevtp) -- C:\Windows\SysNative\mfevtps.exe (McAfee, Inc.)
SRV:64bit: - (mfefire) -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe ()
SRV:64bit: - (McShield) -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe ()
SRV:64bit: - (McODS) -- C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SRV:64bit: - (MSK80Service) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (McProxy) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (McNASvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (McNaiAnn) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (mcmscsvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (McMPFSvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (McAfee SiteAdvisor Service) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (EvtEng) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel® Corporation)
SRV:64bit: - (MyWiFiDHCPDNS) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ()
SRV:64bit: - (RegSrvc) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel® Corporation)
SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (AERTFilters) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Andrea Electronics Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (Secunia PSI Agent) -- C:\Program Files (x86)\Secunia\PSI\psia.exe (Secunia)
SRV - (Secunia Update Agent) -- C:\Program Files (x86)\Secunia\PSI\sua.exe (Secunia)
SRV - (SftService) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (SoftThinks SAS)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (Bluetooth OBEX Service) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Intel Corporation)
SRV - (Bluetooth Media Service) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe (Intel Corporation)
SRV - (Bluetooth Device Monitor) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Intel Corporation)
SRV - (RoxWatch12) -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe (Sonic Solutions)
SRV - (RoxMediaDB12OEM) -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe (Sonic Solutions)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (cfwids) -- C:\Windows\SysNative\drivers\cfwids.sys (McAfee, Inc.)
DRV:64bit: - (mfewfpk) -- C:\Windows\SysNative\drivers\mfewfpk.sys (McAfee, Inc.)
DRV:64bit: - (mferkdet) -- C:\Windows\SysNative\drivers\mferkdet.sys (McAfee, Inc.)
DRV:64bit: - (mfehidk) -- C:\Windows\SysNative\drivers\mfehidk.sys (McAfee, Inc.)
DRV:64bit: - (mfefirek) -- C:\Windows\SysNative\drivers\mfefirek.sys (McAfee, Inc.)
DRV:64bit: - (mfeavfk) -- C:\Windows\SysNative\drivers\mfeavfk.sys (McAfee, Inc.)
DRV:64bit: - (mfeapfk) -- C:\Windows\SysNative\drivers\mfeapfk.sys (McAfee, Inc.)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (SBRE) -- C:\Windows\SysNative\drivers\SBREDrv.sys (GFI Software)
DRV:64bit: - (HipShieldK) -- C:\Windows\SysNative\drivers\HipShieldK.sys (McAfee, Inc.)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (iBtFltCoex) -- C:\Windows\SysNative\drivers\iBtFltCoex.sys (Intel Corporation)
DRV:64bit: - (btmhsf) -- C:\Windows\SysNative\drivers\btmhsf.sys (Intel Corporation)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:64bit: - (dc3d) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation)
DRV:64bit: - (NETwNs64) -- C:\Windows\SysNative\drivers\NETwNs64.sys (Intel Corporation)
DRV:64bit: - (CtClsFlt) -- C:\Windows\SysNative\drivers\CtClsFlt.sys (Creative Technology Ltd.)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (iwdbus) -- C:\Windows\SysNative\drivers\iwdbus.sys (Intel Corporation)
DRV:64bit: - (intaud_WaveExtensible) -- C:\Windows\SysNative\drivers\intelaud.sys (Intel Corporation)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (Renesas Electronics Corporation)
DRV:64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (Renesas Electronics Corporation)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (btmaux) -- C:\Windows\SysNative\drivers\btmaux.sys (Intel Corporation)
DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel® Corporation)
DRV:64bit: - (PSI) -- C:\Windows\SysNative\drivers\psi_mf.sys (Secunia)
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions)
DRV:64bit: - (Impcd) -- C:\Windows\SysNative\drivers\Impcd.sys (Intel Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (WimFltr) -- C:\Windows\SysNative\drivers\WimFltr.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {80C755FD-AA5B-4932-BD60-D900A882758B}
IE:64bit: - HKLM\..\SearchScopes\{80C755FD-AA5B-4932-BD60-D900A882758B}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {80C755FD-AA5B-4932-BD60-D900A882758B}
IE - HKLM\..\SearchScopes\{80C755FD-AA5B-4932-BD60-D900A882758B}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {80C755FD-AA5B-4932-BD60-D900A882758B}
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...e-13a3a9e97384}
IE - HKCU\..\SearchScopes\{D1EE755F-1D84-4AFF-908D-37F9CA4FE8D8}: "URL" = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\..\SearchScopes\{ED3756EC-2916-4EE9-822B-E7C5514CDE98}: "URL" = http://websearch.ask...D6-3A0859C5CF57
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.9
FF - prefs.js..extensions.enabledAddons: %7B4ED1F68A-5463-4931-9384-8FFF5ED91D92%7D:3.6.2
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.7
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor [2013/07/10 22:51:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files (x86)\Common Files\McAfee\SystemCore [2013/03/07 20:34:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.7\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/06/29 14:55:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\McAfee\MSK [2013/07/23 14:11:02 | 000,000,000 | ---D | M]

[2011/11/02 16:40:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Brianne\AppData\Roaming\mozilla\Extensions
[2013/03/05 17:00:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Brianne\AppData\Roaming\mozilla\Firefox\Profiles\afax68pw.default\extensions
[2012/05/17 17:47:14 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Brianne\AppData\Roaming\mozilla\Firefox\Profiles\afax68pw.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2013/02/08 15:53:16 | 000,002,333 | ---- | M] () -- C:\Users\Brianne\AppData\Roaming\mozilla\firefox\profiles\afax68pw.default\searchplugins\askcom.xml
[2013/06/29 14:55:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/07/19 15:05:02 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/04/24 08:57:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/07/19 15:05:02 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/07/10 22:51:38 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR
[2013/06/18 15:22:34 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/04/14 15:01:38 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\mozilla firefox\components\Scriptff.dll
[2013/06/18 15:22:00 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2013/06/18 15:22:00 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\gcswf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U24 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\pdf.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Brianne\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: McAfee SecurityCenter (Enabled) = c:\progra~2\mcafee\msc\npmcsn~1.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: SiteAdvisor = C:\Users\Brianne\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.60.126.1_0\
CHR - Extension: Skype Click to Call = C:\Users\Brianne\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.10.0.13089_0\

O1 HOSTS File: ([2009/06/10 14:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (no name) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No CLSID value found.
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120702115152.dll (McAfee, Inc.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho.dll ()
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20120702115152.dll (McAfee, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Intel Corporation)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [IntelPAN] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] c:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKCU..\Run: [] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.ma...director/sw.cab (Reg Error: Key error.)
O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} http://i.dell.com/im...r/SysProExe.cab (Scanner.SysScanner)
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creat...102/CTSUEng.cab (Creative Software AutoUpdate)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creat...13/CTPIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creat...21022/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9436CAB0-2D07-448B-B578-ABCF9E8B65A2}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/08/08 16:31:56 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Brianne\Desktop\OTL.exe
[2013/08/08 16:26:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
[2013/07/30 17:17:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/07/30 17:17:52 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/07/30 17:17:15 | 000,000,000 | ---D | C] -- C:\Users\Brianne\AppData\Local\Programs
[2013/07/29 17:30:18 | 000,057,976 | ---- | C] (GFI Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2013/07/29 17:30:18 | 000,045,936 | ---- | C] (GFI Software) -- C:\Windows\SysNative\sbbd.exe
[2013/07/29 17:30:07 | 000,000,000 | ---D | C] -- C:\VIPRERESCUE
[2013/07/29 16:11:13 | 000,000,000 | ---D | C] -- C:\Users\Brianne\AppData\Roaming\com.prezi.PreziDesktop
[2013/07/26 03:07:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2013/07/25 19:00:24 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2013/07/19 15:11:23 | 000,000,000 | ---D | C] -- C:\4363776f33a8c9ecf06cb569
[2013/07/15 12:54:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/07/15 12:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/07/15 12:53:34 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/07/15 12:53:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2013/07/15 12:53:34 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

========== Files - Modified Within 30 Days ==========

[2013/08/08 17:54:00 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/08/08 17:53:53 | 3137,994,752 | -HS- | M] () -- C:\hiberfil.sys
[2013/08/08 17:26:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/08/08 16:47:21 | 000,000,900 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/08/08 16:32:32 | 000,796,230 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/08/08 16:32:32 | 000,672,950 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/08/08 16:32:32 | 000,125,618 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/08/08 16:29:44 | 000,021,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/08/08 16:29:44 | 000,021,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/08/08 16:22:32 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/07/29 16:25:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Brianne\Desktop\OTL.exe
[2013/07/26 03:07:06 | 000,002,214 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/07/25 19:00:16 | 486,251,586 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/07/16 03:07:15 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/07/16 03:07:15 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/07/15 11:31:56 | 000,361,928 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT

========== Files Created - No Company Name ==========

[2013/07/26 03:07:06 | 000,002,214 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/07/25 19:00:16 | 486,251,586 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2013/07/16 03:07:15 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/07/16 03:07:15 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2011/11/03 15:10:44 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011/09/03 21:33:36 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2011/09/03 21:33:18 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011/09/03 21:33:16 | 000,214,760 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011/09/03 21:33:14 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2011/09/03 21:33:13 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011/09/03 21:33:12 | 013,355,008 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll

========== ZeroAccess Check ==========

[2009/07/13 21:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/26 22:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/26 21:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 18:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 20:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 18:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/07/29 16:11:13 | 000,000,000 | ---D | M] -- C:\Users\Brianne\AppData\Roaming\com.prezi.PreziDesktop
[2011/11/02 18:14:55 | 000,000,000 | ---D | M] -- C:\Users\Brianne\AppData\Roaming\Fingertapps
[2011/11/02 18:14:42 | 000,000,000 | ---D | M] -- C:\Users\Brianne\AppData\Roaming\Leadertech
[2011/11/03 19:16:58 | 000,000,000 | ---D | M] -- C:\Users\Brianne\AppData\Roaming\PCDr
[2012/02/01 20:14:47 | 000,000,000 | ---D | M] -- C:\Users\Brianne\AppData\Roaming\Softland

========== Purity Check ==========



< End of report >

OTL Extras logfile created on: 8/8/2013 5:55:03 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Brianne\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.90 Gb Total Physical Memory | 2.88 Gb Available Physical Memory | 73.82% Memory free
7.79 Gb Paging File | 6.78 Gb Available in Paging File | 87.01% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 576.54 Gb Total Space | 465.74 Gb Free Space | 80.78% Space Free | Partition Type: NTFS

Computer Name: MYCOMPUTER | User Name: Brianne | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01F307DE-314C-48DB-BAD2-A832D4A81A9E}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{2415047F-0B86-4606-8FDA-DBF1E443451B}" = rport=445 | protocol=6 | dir=out | app=system |
"{2FE341FD-FEC7-435C-AC03-12A9596396AB}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{37000FAB-72CF-4F3D-96B5-1A090CEF2D07}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{39BD9830-D383-45D1-9DCC-F81DBF3B7F91}" = rport=10243 | protocol=6 | dir=out | app=system |
"{4F2B871B-3E5B-4EB4-B9BF-A723F08F5110}" = lport=139 | protocol=6 | dir=in | app=system |
"{52435AD4-0D60-4125-9A5E-041FFDB2E9E3}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{56349ACE-1977-49D8-AF9B-DC5B63DB4F49}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5A6F5A7A-35CB-4681-BA0E-46FE4BB94C98}" = lport=10243 | protocol=6 | dir=in | app=system |
"{64FDE31B-864E-49BE-866A-CC2EF141F9ED}" = rport=138 | protocol=17 | dir=out | app=system |
"{6C2CC718-AD5F-4659-B3F1-78CCE9AC80B6}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{6D488003-6008-4F12-B52D-CDFC04435ABA}" = rport=137 | protocol=17 | dir=out | app=system |
"{703EA332-154E-4ECA-8E53-933A7D03D3B2}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7DC5A7B6-79DE-45E0-9648-CABF48579F0C}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7EEAE47C-D9D8-4791-9EEE-26A61E5EE60B}" = lport=445 | protocol=6 | dir=in | app=system |
"{89416DD3-924A-4216-AAF3-584681B096C7}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9106BF97-8B8A-4C39-B8A5-0299A707AB04}" = lport=2869 | protocol=6 | dir=in | app=system |
"{930181B4-DF78-45BF-9348-FC7E09967393}" = lport=138 | protocol=17 | dir=in | app=system |
"{961A2921-9AD4-4671-A523-A849152F0A75}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{A1BC29AF-EECB-422B-B4D4-E69D98732002}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AE35820F-3D87-4670-BA90-7D00E22AD4FD}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B0CA135F-CD19-4251-BE77-3E5777453EF3}" = lport=137 | protocol=17 | dir=in | app=system |
"{C00BEAA0-5D39-431C-9FBF-51BC823314EE}" = rport=139 | protocol=6 | dir=out | app=system |
"{CCF5946B-8767-4AC8-BE2D-A0B160A222FB}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E2FFB893-76D3-476F-993C-F9D5B2DA9187}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F4F9BA24-D55F-4FF3-8CB3-BBD7FB2188BA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{040CD262-61D9-4A89-882F-8DF30147A0F1}" = protocol=58 | dir=in | [email protected],-28545 |
"{040CE208-BA3C-4267-8B2C-30C7ADEE24F3}" = protocol=1 | dir=out | [email protected],-28544 |
"{08F33D35-FA03-4D4A-8859-1DB2D74BA8BA}" = protocol=58 | dir=out | [email protected],-28546 |
"{09E9DFA8-3C61-411A-938A-C8C6758D5A33}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{0FF43F72-66EA-4BE6-955E-03F882E29D07}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1583629C-83A0-4951-97A2-C57C9729FDA2}" = protocol=6 | dir=in | app=c:\program files (x86)\barnes & noble\nookstudy\nookstudy.exe |
"{1EF9FD75-52C0-450A-804A-9A1E23154ECF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{22E39727-74DD-4019-A093-1017FF2C00A7}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{25E67F52-DC7B-4D26-BA90-89E4CF4A398B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2A4E3446-249F-48D7-8CD4-6EC26EF9E044}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2F16D32F-1885-4138-A3C6-105D4674E68F}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{3C38E2FB-6C6B-4DB9-A0C5-19C6470C90F4}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{47466105-608C-44A7-87D5-07975FD890AB}" = protocol=17 | dir=in | app=c:\program files (x86)\barnes & noble\nookstudy\nookstudy.exe |
"{4AD82073-1B65-4BC0-9DEA-E526DA23165C}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{4D750A22-673B-4BDA-BE6E-AA70B23ECC9F}" = protocol=6 | dir=out | app=system |
"{503A65C7-6B24-4589-A613-EE643CE1F8C7}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{6048E3B7-9B98-4946-9993-47F32CEE6B1C}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{6525A9DA-AD4D-4C0C-9194-A76DB5E7A372}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{68920053-5A6E-4A88-B5B0-B7C230EA03EC}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{82AA2939-CC4A-4656-A4C9-50F1DF0590AF}" = protocol=1 | dir=in | [email protected],-28543 |
"{8306C066-F35F-4CAF-A11B-DA2CBBEF3305}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{8466F2AC-CC9F-42C3-A5F8-BD36B0B0CA23}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{8C17CFE6-9A25-449A-A539-894387B8E3E3}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{A091178C-55B2-48AC-96D2-9DB2D2B9348B}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{B0FCDECB-8D46-4EB8-B1EE-924A12C76D54}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{B47A0453-83F1-4F54-AEDE-15739DF051F7}" = dir=in | app=c:\program files (x86)\intel corporation\intel widi\widiapp.exe |
"{B4EF5C78-4B5F-4611-AC33-97A535D4BDC8}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{BE0CBB2D-3BD3-4291-B0A2-A6CE9B3F091C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{C94807E2-4CE0-4FD8-913E-360D19877246}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C9B04C49-F24E-4B1D-886A-95918ECB468A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CC1F821A-E24E-40B0-9460-0E157853556A}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{D482385A-56B2-404F-BC6E-B5F035171375}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{D5BB8C7E-FBE9-4DF4-B19E-476A2C10B4D8}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{DE0D158C-A45C-4CBF-9191-1AD19C982301}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{E0F55280-81EA-431E-9B4D-AE574D17BE2F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E6C32EC3-B16F-4A69-92E9-F189FC43FC27}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{F3E7CD38-2C75-4ACF-8E49-2C7BE6332D4D}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{FA8E3D1C-6D0C-4097-B27C-FC44A7417F12}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{FBAEDEC8-1B48-43D5-8CBE-3FA73F89243B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{FBEC693F-258F-4F96-BC4A-83C4596EE237}" = dir=in | app=c:\program files (x86)\dell\videostage\videostage.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{28EF7372-9087-4AC3-9B9F-D9751FCDF830}" = Intel® Wireless Display
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{451A5ECC-C9A5-4944-B28D-23656C9E03D0}" = Intel® PROSet/Wireless WiFi Software
"{5A80B0BA-79AF-4B11-B851-CCB9F7977AC0}" = Intel® PROSet/Wireless Software for Bluetooth® Technology
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}" = Roxio File Backup
"{624C7F0A-89B2-4C49-9CAB-9D69613EC95A}" = Microsoft IntelliPoint 8.2
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7FCDABCC-1A1E-4D61-909D-BA9495172774}" = iTunes
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}" = RBVirtualFolder64Inst
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"Inspiration 9 PDF Driver_is1" = Inspiration 9 PDF Driver (novaPDF 7.3 printer)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft IntelliPoint 8.2" = Microsoft IntelliPoint 8.2
"ProInst" = Intel PROSet Wireless
"SynTPDeinstKey" = Dell Touchpad

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03703CBB-563D-45CE-8B35-CB04CAB258BE}" = Intel® WiDi
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1111706F-666A-4037-7777-210328764D10}" = JavaFX 2.1.0
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{3250260C-7A95-4632-893B-89657EB5545B}" = PhotoShowExpress
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{404245D0-E836-4737-9C12-D4D0034540F5}_is1" = Free Countdown Timer 2.7.1
"{4CFE23CC-779D-4572-A76F-AB60A958BC79}" = Adobe Flash Player 11 ActiveX
"{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}" = Photo Story 3 for Windows
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}" = Roxio BackOnTrack
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}" = Roxio Creator Starter
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7746BFAA-2B5D-4FFD-A0E8-4558F4668105}" = Roxio Burn
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{81DCEC2B-E069-4985-978B-3230292AB744}" = NTI Shadow
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}" = Dell MusicStage
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}" = Google Earth
"{9A00EC4E-27E1-42C4-98DD-662F32AC8870}" = Sonic CinePlayer Decoder Pack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A121EEDE-C68F-461D-91AA-D48BA226AF1C}" = Roxio Activation Module
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA31EA7B-7917-4000-949B-38E91F848A25}" = Internet Explorer
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X (10.1.7) MUI
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BFBC6337-B7B9-4AEE-BC19-CA910EED755D}" = Adobe Flash Player 11 Plugin
"{C16A92EF-017B-4839-9C75-FBADB5A1FA27}" = TrustedID
"{C38FC27A-C586-44F6-A47D-6193FB3024AB}" = Prezi Desktop
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF67ED0C-F85D-4791-AED3-3FE882EDB45D}" = Dell Marketplace Webslice IE8
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}" = Dell VideoStage
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E2EBA7C0-8072-447F-856D-FFEE8D15B23B}" = Dell Stage
"{E4335E82-17B3-460F-9E70-39D9BC269DB3}" = Dell PhotoStage
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EF56258E-0326-48C5-A86C-3BAC26FC15DF}" = Roxio Creator Starter
"{F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878}" = Roxio Creator Starter
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Dell Webcam Central" = Dell Webcam Central
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"Inspiration 9" = Inspiration 9
"InstallShield_{81DCEC2B-E069-4985-978B-3230292AB744}" = NTI Shadow
"InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}" = Dell VideoStage
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"Mozilla Firefox 17.0.7 (x86 en-US)" = Mozilla Firefox 17.0.7 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSC" = McAfee SecurityCenter
"NOOK Study" = NOOK Study
"Picasa 3" = Picasa 3
"ProInst" = Intel PROSet Wireless
"Secunia PSI" = Secunia PSI (2.0.0.4003)
"VLC media player" = VLC media player 2.0.5
"WinLiveSuite" = Windows Live Essentials

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2/9/2013 4:32:41 AM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 16099

Error - 2/9/2013 4:32:41 AM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 16099

Error - 2/9/2013 4:32:42 AM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2/9/2013 4:32:42 AM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 17098

Error - 2/9/2013 4:32:42 AM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 17098

Error - 2/9/2013 4:32:43 AM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2/9/2013 4:32:43 AM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 18096

Error - 2/9/2013 4:32:43 AM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 18096

Error - 2/9/2013 4:32:44 AM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2/9/2013 4:32:44 AM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 19094

[ System Events ]
Error - 8/8/2013 8:58:30 PM | Computer Name = MyComputer | Source = DCOM | ID = 10005
Description =

Error - 8/8/2013 8:59:35 PM | Computer Name = MyComputer | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.

Error - 8/8/2013 8:59:36 PM | Computer Name = MyComputer | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.

Error - 8/8/2013 8:59:37 PM | Computer Name = MyComputer | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.

Error - 8/8/2013 8:59:38 PM | Computer Name = MyComputer | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.

Error - 8/8/2013 8:59:39 PM | Computer Name = MyComputer | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.

Error - 8/8/2013 8:59:40 PM | Computer Name = MyComputer | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.

Error - 8/8/2013 8:59:41 PM | Computer Name = MyComputer | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.

Error - 8/8/2013 8:59:42 PM | Computer Name = MyComputer | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.

Error - 8/8/2013 8:59:43 PM | Computer Name = MyComputer | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.


< End of report >
  • 0

Advertisements

#2
RKinner
Posted 09 August 2013 - 12:29 AM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP

Error - 8/8/2013 8:59:35 PM | Computer Name = MyComputer | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.


I think it's the Intel® Rapid Storage Technology causing the problem. This driver:

DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)


The updated version is supposed to fix it. You need the one called SetupRST.exe on:

https://downloadcent...oadType=Drivers

(I'm not sure you can go directly to the link. I went to https://downloadcent...t.aspx?lang=eng and searched for intel RST and when the next page came up clicked on Windows 7 * under Operating System. Then click on the top link which said:

Intel® Rapid Storage Technology (Intel® RST) RAID Driver

Installs the Intel® Rapid Storage Technology (RAID) driver version 12.5.0.1066.

OS: Windows Server 2008 *, Windows 7 *, Windows 8*,....More Windows Server 2008 *, Windows 7 *, Windows 8*, Windows Server 2008 R2*>

That brings you to the link I first gave you. You have to save the file then right click it and Run As Admin.
They do say you should check with your PC maker first to see if they have one that has been tuned just for your PC.


There are 2 other possible fixes you might want to try first.

1st possibility:
1. Click Start button, choose Control Panel.
2. Move to Control Panel\All Control Panel Items\Power Options. Click Change plan setting in your current power plan.
3. Click “Change advanced power settings”, move to PCI Express-> Link State Power Management, turn off the option.

2nd (and proven) possibility:

If you are comfortable working with the registry you can do it yourself.

Open regedit. (type regedit in the search box and wait until it finds it then right click on it and Run As Admin.)

Navigate to:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters

(Click on the arrow in front of HKEY_LOCAL_MACHINE then find System and click on its arrow and find ... )

There should be several ports under the Parameters key when you click on its arrow. Click on the first port. It should have four items in the right pane. If there is no Port0 you will need to add a new key of that name below parameters


We need all four items to have 0 as their values.

LPM: 0
LPMSTATE: 0
LPMDSTATE: 0
DIPM: 0

To change the value of an item, right click on it and select Modify. A box will open where you can overtype the 1 with a 0. Then hit OK.

I expect it will be port0 that is causing the problem but it won't hurt to modify all of them.

Reboot after you make the changes and boot into regular mode and see if it now works as it should.



If you are not comfortable with editing the registry you can do the following.

Copy the next 2 line:

reg query HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters /s > %userprofile%\desktop\junk.txt
notepad %userprofile%\desktop\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Notepad should open. Copy and paste the text from notepad into a reply.


I can create a .reg file for you and upload it. Then you just download and save the .reg and right click on it and Merge.


Ron
  • 0

#3
ttbcs
Posted 10 August 2013 - 10:58 AM

ttbcs

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 102 posts
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters
BusType REG_DWORD 0x3

I tried installing the SetupRST.exe but it would not run in safe mode and it became unresponsive during installation in regular mode - had to reset. I did change my power plan PCI Express-> Link State Power Management to the off option.
  • 0

#4
RKinner
Posted 10 August 2013 - 04:51 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
I assume changing the power option did not help?

Let's try this:

Download and save the attached Fixiastor.reg file. Right click on it and Merge. Reboot into regular mode. See if things look better.
  • 0

#5
ttbcs
Posted 10 August 2013 - 11:02 PM

ttbcs

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 102 posts
booted in safe mode; merged fixiastor.reg; restarted in regular mode
It seemed to be fine but when I tried to run OTL to get a report in regular mode it stopped. Other programs failed to open altogether
  • 0

#6
RKinner
Posted 10 August 2013 - 11:47 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs. Click on System and wait for it to load the events. Scroll down and see if you see any new events like we were getting:

Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.


Then let's try this again:

Copy the next 2 line:

reg query HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters /s > %userprofile%\desktop\junk.txt
notepad %userprofile%\desktop\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Notepad should open. Copy and paste the text from notepad into a reply.
  • 0

#7
ttbcs
Posted 11 August 2013 - 09:44 PM

ttbcs

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 102 posts
There are quite a few errors listed here with event ID 7001


HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters
BusType REG_DWORD 0x3

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters\Port0

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters\Port1

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters\Port2

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters\Port3

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters\Port4

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iaStor\Parameters\Port5

Edited by ttbcs, 11 August 2013 - 09:57 PM.

  • 0

#8
ttbcs
Posted 12 August 2013 - 05:22 PM

ttbcs

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 102 posts
new OTL log

OTL logfile created on: 8/12/2013 4:28:21 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Brianne\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.90 Gb Total Physical Memory | 3.06 Gb Available Physical Memory | 78.53% Memory free
7.79 Gb Paging File | 7.05 Gb Available in Paging File | 90.47% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 576.54 Gb Total Space | 465.03 Gb Free Space | 80.66% Space Free | Partition Type: NTFS

Computer Name: MYCOMPUTER | User Name: Brianne | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Brianne\Desktop\OTL.exe (OldTimer Tools)


========== Modules (No Company Name) ==========


========== Services (SafeList) ==========

SRV:64bit: - (IAStorDataMgrSvc) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (mfevtp) -- C:\Windows\SysNative\mfevtps.exe (McAfee, Inc.)
SRV:64bit: - (mfefire) -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe ()
SRV:64bit: - (McShield) -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe ()
SRV:64bit: - (McODS) -- C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SRV:64bit: - (MSK80Service) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (McProxy) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (McNASvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (McNaiAnn) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (mcmscsvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (McMPFSvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (McAfee SiteAdvisor Service) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV:64bit: - (EvtEng) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel® Corporation)
SRV:64bit: - (MyWiFiDHCPDNS) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ()
SRV:64bit: - (RegSrvc) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel® Corporation)
SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (AERTFilters) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Andrea Electronics Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (Secunia PSI Agent) -- C:\Program Files (x86)\Secunia\PSI\psia.exe (Secunia)
SRV - (Secunia Update Agent) -- C:\Program Files (x86)\Secunia\PSI\sua.exe (Secunia)
SRV - (SftService) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (SoftThinks SAS)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (Bluetooth OBEX Service) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Intel Corporation)
SRV - (Bluetooth Media Service) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe (Intel Corporation)
SRV - (Bluetooth Device Monitor) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Intel Corporation)
SRV - (RoxWatch12) -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe (Sonic Solutions)
SRV - (RoxMediaDB12OEM) -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe (Sonic Solutions)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (iaStorA) -- C:\Windows\SysNative\drivers\iaStorA.sys (Intel Corporation)
DRV:64bit: - (iaStorF) -- C:\Windows\SysNative\drivers\iaStorF.sys (Intel Corporation)
DRV:64bit: - (cfwids) -- C:\Windows\SysNative\drivers\cfwids.sys (McAfee, Inc.)
DRV:64bit: - (mfewfpk) -- C:\Windows\SysNative\drivers\mfewfpk.sys (McAfee, Inc.)
DRV:64bit: - (mferkdet) -- C:\Windows\SysNative\drivers\mferkdet.sys (McAfee, Inc.)
DRV:64bit: - (mfehidk) -- C:\Windows\SysNative\drivers\mfehidk.sys (McAfee, Inc.)
DRV:64bit: - (mfefirek) -- C:\Windows\SysNative\drivers\mfefirek.sys (McAfee, Inc.)
DRV:64bit: - (mfeavfk) -- C:\Windows\SysNative\drivers\mfeavfk.sys (McAfee, Inc.)
DRV:64bit: - (mfeapfk) -- C:\Windows\SysNative\drivers\mfeapfk.sys (McAfee, Inc.)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (SBRE) -- C:\Windows\SysNative\drivers\SBREDrv.sys (GFI Software)
DRV:64bit: - (HipShieldK) -- C:\Windows\SysNative\drivers\HipShieldK.sys (McAfee, Inc.)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (iBtFltCoex) -- C:\Windows\SysNative\drivers\iBtFltCoex.sys (Intel Corporation)
DRV:64bit: - (btmhsf) -- C:\Windows\SysNative\drivers\btmhsf.sys (Intel Corporation)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:64bit: - (dc3d) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation)
DRV:64bit: - (NETwNs64) -- C:\Windows\SysNative\drivers\NETwNs64.sys (Intel Corporation)
DRV:64bit: - (CtClsFlt) -- C:\Windows\SysNative\drivers\CtClsFlt.sys (Creative Technology Ltd.)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (iwdbus) -- C:\Windows\SysNative\drivers\iwdbus.sys (Intel Corporation)
DRV:64bit: - (intaud_WaveExtensible) -- C:\Windows\SysNative\drivers\intelaud.sys (Intel Corporation)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (Renesas Electronics Corporation)
DRV:64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (Renesas Electronics Corporation)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (btmaux) -- C:\Windows\SysNative\drivers\btmaux.sys (Intel Corporation)
DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel® Corporation)
DRV:64bit: - (PSI) -- C:\Windows\SysNative\drivers\psi_mf.sys (Secunia)
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions)
DRV:64bit: - (Impcd) -- C:\Windows\SysNative\drivers\Impcd.sys (Intel Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (WimFltr) -- C:\Windows\SysNative\drivers\WimFltr.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {80C755FD-AA5B-4932-BD60-D900A882758B}
IE:64bit: - HKLM\..\SearchScopes\{80C755FD-AA5B-4932-BD60-D900A882758B}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {80C755FD-AA5B-4932-BD60-D900A882758B}
IE - HKLM\..\SearchScopes\{80C755FD-AA5B-4932-BD60-D900A882758B}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {80C755FD-AA5B-4932-BD60-D900A882758B}
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...ch?q={searc---- | M] (Broadcom Corporation)
IE - HKCU\..\SearchScopes\{D1EE755F-1D84-4AFF-908D-37F9CA4FE8D8}: "URL" = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\..\SearchScopes\{ED3756EC-2916-4EE9-822B-E7C5514CDE98}: "URL" = http://websearch.ask...D6-3A0859C5CF57
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.9
FF - prefs.js..extensions.enabledAddons: %7B4ED1F68A-5463-4931-9384-8FFF5ED91D92%7D:3.6.2
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.7
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor [2013/07/10 22:51:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files (x86)\Common Files\McAfee\SystemCore [2013/03/07 20:34:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.7\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/06/29 14:55:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\McAfee\MSK [2013/07/23 14:11:02 | 000,000,000 | ---D | M]

[2011/11/02 16:40:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Brianne\AppData\Roaming\mozilla\Extensions
[2013/03/05 17:00:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Brianne\AppData\Roaming\mozilla\Firefox\Profiles\afax68pw.default\extensions
[2012/05/17 17:47:14 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Brianne\AppData\Roaming\mozilla\Firefox\Profiles\afax68pw.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2013/02/08 15:53:16 | 000,002,333 | ---- | M] () -- C:\Users\Brianne\AppData\Roaming\mozilla\firefox\profiles\afax68pw.default\searchplugins\askcom.xml
[2013/06/29 14:55:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/07/19 15:05:02 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/04/24 08:57:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/07/19 15:05:02 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/07/10 22:51:38 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR
[2013/06/18 15:22:34 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/04/14 15:01:38 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\mozilla firefox\components\Scriptff.dll
[2013/06/18 15:22:00 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2013/06/18 15:22:00 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\gcswf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U24 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\pdf.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Brianne\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: McAfee SecurityCenter (Enabled) = c:\progra~2\mcafee\msc\npmcsn~1.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: SiteAdvisor = C:\Users\Brianne\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.60.126.1_0\
CHR - Extension: Skype Click to Call = C:\Users\Brianne\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.10.0.13089_0\

O1 HOSTS File: ([2009/06/10 14:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (no name) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No CLSID value found.
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120702115152.dll (McAfee, Inc.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho.dll ()
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20120702115152.dll (McAfee, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Intel Corporation)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [IntelPAN] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] c:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKCU..\Run: [] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.ma...director/sw.cab (Reg Error: Key error.)
O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} http://i.dell.com/im...r/SysProExe.cab (Scanner.SysScanner)
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creat...102/CTSUEng.cab (Creative Software AutoUpdate)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creat...13/CTPIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creat...21022/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9436CAB0-2D07-448B-B578-ABCF9E8B65A2}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/08/12 16:13:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
[2013/08/09 16:59:27 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/08/09 16:39:22 | 000,000,000 | -HSD | C] -- C:\found.001
[2013/08/09 16:27:57 | 000,000,000 | ---D | C] -- C:\Users\Brianne\AppData\Roaming\Intel Corporation
[2013/08/09 16:08:23 | 000,000,000 | ---D | C] -- C:\Users\Brianne\Intel
[2013/08/08 16:31:56 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Brianne\Desktop\OTL.exe
[2013/07/30 17:17:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/07/30 17:17:52 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/07/30 17:17:15 | 000,000,000 | ---D | C] -- C:\Users\Brianne\AppData\Local\Programs
[2013/07/29 17:30:18 | 000,057,976 | ---- | C] (GFI Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2013/07/29 17:30:18 | 000,045,936 | ---- | C] (GFI Software) -- C:\Windows\SysNative\sbbd.exe
[2013/07/29 17:30:07 | 000,000,000 | ---D | C] -- C:\VIPRERESCUE
[2013/07/29 16:11:13 | 000,000,000 | ---D | C] -- C:\Users\Brianne\AppData\Roaming\com.prezi.PreziDesktop
[2013/07/26 03:07:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2013/07/25 19:00:24 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2013/07/19 15:11:23 | 000,000,000 | ---D | C] -- C:\4363776f33a8c9ecf06cb569
[2013/07/15 12:54:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/07/15 12:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/07/15 12:53:34 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/07/15 12:53:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2013/07/15 12:53:34 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

========== Files - Modified Within 30 Days ==========

[2013/08/12 16:17:24 | 000,798,086 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/08/12 16:17:24 | 000,673,754 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/08/12 16:17:24 | 000,125,952 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/08/12 16:05:41 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/08/12 16:05:30 | 3137,994,752 | -HS- | M] () -- C:\hiberfil.sys
[2013/08/11 20:38:02 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/08/11 20:30:17 | 000,000,900 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/08/11 20:30:05 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/08/11 01:30:07 | 000,021,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/08/11 01:30:07 | 000,021,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/08/10 22:22:15 | 000,006,832 | ---- | M] () -- C:\bootsqm.dat
[2013/08/10 21:10:41 | 536,335,032 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/08/09 16:28:46 | 000,796,230 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/07/29 16:25:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Brianne\Desktop\OTL.exe
[2013/07/26 03:07:06 | 000,002,214 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/07/16 03:07:15 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/07/16 03:07:15 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/07/15 11:31:56 | 000,361,928 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT

========== Files Created - No Company Name ==========

[2013/08/10 22:22:15 | 000,006,832 | ---- | C] () -- C:\bootsqm.dat
[2013/07/26 03:07:06 | 000,002,214 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/07/25 19:00:16 | 536,335,032 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2013/07/16 03:07:15 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/07/16 03:07:15 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2011/11/03 15:10:44 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011/09/03 21:33:36 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2011/09/03 21:33:18 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011/09/03 21:33:16 | 000,214,760 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011/09/03 21:33:14 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2011/09/03 21:33:13 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011/09/03 21:33:12 | 013,355,008 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll

========== ZeroAccess Check ==========

[2009/07/13 21:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/26 22:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/26 21:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 18:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 20:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 18:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/07/29 16:11:13 | 000,000,000 | ---D | M] -- C:\Users\Brianne\AppData\Roaming\com.prezi.PreziDesktop
[2011/11/02 18:14:55 | 000,000,000 | ---D | M] -- C:\Users\Brianne\AppData\Roaming\Fingertapps
[2011/11/02 18:14:42 | 000,000,000 | ---D | M] -- C:\Users\Brianne\AppData\Roaming\Leadertech
[2011/11/03 19:16:58 | 000,000,000 | ---D | M] -- C:\Users\Brianne\AppData\Roaming\PCDr
[2012/02/01 20:14:47 | 000,000,000 | ---D | M] -- C:\Users\Brianne\AppData\Roaming\Softland

========== Purity Check ==========



< End of report >

OTL Extras logfile created on: 8/12/2013 5:29:56 PM - Run 6
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Brianne\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.90 Gb Total Physical Memory | 3.03 Gb Available Physical Memory | 77.68% Memory free
7.79 Gb Paging File | 7.04 Gb Available in Paging File | 90.38% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 576.54 Gb Total Space | 465.03 Gb Free Space | 80.66% Space Free | Partition Type: NTFS

Computer Name: MYCOMPUTER | User Name: Brianne | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01F307DE-314C-48DB-BAD2-A832D4A81A9E}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{2415047F-0B86-4606-8FDA-DBF1E443451B}" = rport=445 | protocol=6 | dir=out | app=system |
"{2FE341FD-FEC7-435C-AC03-12A9596396AB}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{37000FAB-72CF-4F3D-96B5-1A090CEF2D07}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{39BD9830-D383-45D1-9DCC-F81DBF3B7F91}" = rport=10243 | protocol=6 | dir=out | app=system |
"{4F2B871B-3E5B-4EB4-B9BF-A723F08F5110}" = lport=139 | protocol=6 | dir=in | app=system |
"{52435AD4-0D60-4125-9A5E-041FFDB2E9E3}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{56349ACE-1977-49D8-AF9B-DC5B63DB4F49}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5A6F5A7A-35CB-4681-BA0E-46FE4BB94C98}" = lport=10243 | protocol=6 | dir=in | app=system |
"{64FDE31B-864E-49BE-866A-CC2EF141F9ED}" = rport=138 | protocol=17 | dir=out | app=system |
"{6C2CC718-AD5F-4659-B3F1-78CCE9AC80B6}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{6D488003-6008-4F12-B52D-CDFC04435ABA}" = rport=137 | protocol=17 | dir=out | app=system |
"{703EA332-154E-4ECA-8E53-933A7D03D3B2}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7DC5A7B6-79DE-45E0-9648-CABF48579F0C}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7EEAE47C-D9D8-4791-9EEE-26A61E5EE60B}" = lport=445 | protocol=6 | dir=in | app=system |
"{89416DD3-924A-4216-AAF3-584681B096C7}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9106BF97-8B8A-4C39-B8A5-0299A707AB04}" = lport=2869 | protocol=6 | dir=in | app=system |
"{930181B4-DF78-45BF-9348-FC7E09967393}" = lport=138 | protocol=17 | dir=in | app=system |
"{961A2921-9AD4-4671-A523-A849152F0A75}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{A1BC29AF-EECB-422B-B4D4-E69D98732002}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AE35820F-3D87-4670-BA90-7D00E22AD4FD}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B0CA135F-CD19-4251-BE77-3E5777453EF3}" = lport=137 | protocol=17 | dir=in | app=system |
"{C00BEAA0-5D39-431C-9FBF-51BC823314EE}" = rport=139 | protocol=6 | dir=out | app=system |
"{CCF5946B-8767-4AC8-BE2D-A0B160A222FB}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E2FFB893-76D3-476F-993C-F9D5B2DA9187}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F4F9BA24-D55F-4FF3-8CB3-BBD7FB2188BA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{040CD262-61D9-4A89-882F-8DF30147A0F1}" = protocol=58 | dir=in | [email protected],-28545 |
"{040CE208-BA3C-4267-8B2C-30C7ADEE24F3}" = protocol=1 | dir=out | [email protected],-28544 |
"{08F33D35-FA03-4D4A-8859-1DB2D74BA8BA}" = protocol=58 | dir=out | [email protected],-28546 |
"{09E9DFA8-3C61-411A-938A-C8C6758D5A33}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{0FF43F72-66EA-4BE6-955E-03F882E29D07}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1583629C-83A0-4951-97A2-C57C9729FDA2}" = protocol=6 | dir=in | app=c:\program files (x86)\barnes & noble\nookstudy\nookstudy.exe |
"{1EF9FD75-52C0-450A-804A-9A1E23154ECF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{22E39727-74DD-4019-A093-1017FF2C00A7}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{25E67F52-DC7B-4D26-BA90-89E4CF4A398B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2A4E3446-249F-48D7-8CD4-6EC26EF9E044}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2F16D32F-1885-4138-A3C6-105D4674E68F}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{3C38E2FB-6C6B-4DB9-A0C5-19C6470C90F4}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{47466105-608C-44A7-87D5-07975FD890AB}" = protocol=17 | dir=in | app=c:\program files (x86)\barnes & noble\nookstudy\nookstudy.exe |
"{4AD82073-1B65-4BC0-9DEA-E526DA23165C}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{4D750A22-673B-4BDA-BE6E-AA70B23ECC9F}" = protocol=6 | dir=out | app=system |
"{503A65C7-6B24-4589-A613-EE643CE1F8C7}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{6048E3B7-9B98-4946-9993-47F32CEE6B1C}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{6525A9DA-AD4D-4C0C-9194-A76DB5E7A372}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{68920053-5A6E-4A88-B5B0-B7C230EA03EC}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{82AA2939-CC4A-4656-A4C9-50F1DF0590AF}" = protocol=1 | dir=in | [email protected],-28543 |
"{8306C066-F35F-4CAF-A11B-DA2CBBEF3305}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{8466F2AC-CC9F-42C3-A5F8-BD36B0B0CA23}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{8C17CFE6-9A25-449A-A539-894387B8E3E3}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{A091178C-55B2-48AC-96D2-9DB2D2B9348B}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{B0FCDECB-8D46-4EB8-B1EE-924A12C76D54}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{B47A0453-83F1-4F54-AEDE-15739DF051F7}" = dir=in | app=c:\program files (x86)\intel corporation\intel widi\widiapp.exe |
"{B4EF5C78-4B5F-4611-AC33-97A535D4BDC8}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{BE0CBB2D-3BD3-4291-B0A2-A6CE9B3F091C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{C94807E2-4CE0-4FD8-913E-360D19877246}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C9B04C49-F24E-4B1D-886A-95918ECB468A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CC1F821A-E24E-40B0-9460-0E157853556A}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{D482385A-56B2-404F-BC6E-B5F035171375}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{D5BB8C7E-FBE9-4DF4-B19E-476A2C10B4D8}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{DE0D158C-A45C-4CBF-9191-1AD19C982301}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{E0F55280-81EA-431E-9B4D-AE574D17BE2F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E6C32EC3-B16F-4A69-92E9-F189FC43FC27}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{F3E7CD38-2C75-4ACF-8E49-2C7BE6332D4D}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{FA8E3D1C-6D0C-4097-B27C-FC44A7417F12}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{FBAEDEC8-1B48-43D5-8CBE-3FA73F89243B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{FBEC693F-258F-4F96-BC4A-83C4596EE237}" = dir=in | app=c:\program files (x86)\dell\videostage\videostage.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{28EF7372-9087-4AC3-9B9F-D9751FCDF830}" = Intel® Wireless Display
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{451A5ECC-C9A5-4944-B28D-23656C9E03D0}" = Intel® PROSet/Wireless WiFi Software
"{5A80B0BA-79AF-4B11-B851-CCB9F7977AC0}" = Intel® PROSet/Wireless Software for Bluetooth® Technology
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}" = Roxio File Backup
"{624C7F0A-89B2-4C49-9CAB-9D69613EC95A}" = Microsoft IntelliPoint 8.2
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7FCDABCC-1A1E-4D61-909D-BA9495172774}" = iTunes
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{93F692D4-0C4D-4EED-9BFE-657C1D5959FE}" = Intel® Rapid Storage Technology
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}" = RBVirtualFolder64Inst
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"Inspiration 9 PDF Driver_is1" = Inspiration 9 PDF Driver (novaPDF 7.3 printer)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft IntelliPoint 8.2" = Microsoft IntelliPoint 8.2
"ProInst" = Intel PROSet Wireless
"SynTPDeinstKey" = Dell Touchpad

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03703CBB-563D-45CE-8B35-CB04CAB258BE}" = Intel® WiDi
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1111706F-666A-4037-7777-210328764D10}" = JavaFX 2.1.0
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{3250260C-7A95-4632-893B-89657EB5545B}" = PhotoShowExpress
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{404245D0-E836-4737-9C12-D4D0034540F5}_is1" = Free Countdown Timer 2.7.1
"{4CFE23CC-779D-4572-A76F-AB60A958BC79}" = Adobe Flash Player 11 ActiveX
"{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}" = Photo Story 3 for Windows
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}" = Roxio BackOnTrack
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}" = Roxio Creator Starter
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7746BFAA-2B5D-4FFD-A0E8-4558F4668105}" = Roxio Burn
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{81DCEC2B-E069-4985-978B-3230292AB744}" = NTI Shadow
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}" = Dell MusicStage
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}" = Google Earth
"{9A00EC4E-27E1-42C4-98DD-662F32AC8870}" = Sonic CinePlayer Decoder Pack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A121EEDE-C68F-461D-91AA-D48BA226AF1C}" = Roxio Activation Module
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA31EA7B-7917-4000-949B-38E91F848A25}" = Internet Explorer
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X (10.1.7) MUI
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BFBC6337-B7B9-4AEE-BC19-CA910EED755D}" = Adobe Flash Player 11 Plugin
"{C16A92EF-017B-4839-9C75-FBADB5A1FA27}" = TrustedID
"{C38FC27A-C586-44F6-A47D-6193FB3024AB}" = Prezi Desktop
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF67ED0C-F85D-4791-AED3-3FE882EDB45D}" = Dell Marketplace Webslice IE8
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}" = Dell VideoStage
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E2EBA7C0-8072-447F-856D-FFEE8D15B23B}" = Dell Stage
"{E4335E82-17B3-460F-9E70-39D9BC269DB3}" = Dell PhotoStage
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EF56258E-0326-48C5-A86C-3BAC26FC15DF}" = Roxio Creator Starter
"{F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878}" = Roxio Creator Starter
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Dell Webcam Central" = Dell Webcam Central
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"Inspiration 9" = Inspiration 9
"InstallShield_{81DCEC2B-E069-4985-978B-3230292AB744}" = NTI Shadow
"InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}" = Dell VideoStage
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"Mozilla Firefox 17.0.7 (x86 en-US)" = Mozilla Firefox 17.0.7 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSC" = McAfee SecurityCenter
"NOOK Study" = NOOK Study
"Picasa 3" = Picasa 3
"ProInst" = Intel PROSet Wireless
"Secunia PSI" = Secunia PSI (2.0.0.4003)
"VLC media player" = VLC media player 2.0.5
"WinLiveSuite" = Windows Live Essentials

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2/7/2013 7:57:25 PM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2074

Error - 2/7/2013 7:57:25 PM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2074

Error - 2/7/2013 7:57:26 PM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2/7/2013 7:57:26 PM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 3073

Error - 2/7/2013 7:57:26 PM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 3073

Error - 2/7/2013 7:57:27 PM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2/7/2013 7:57:27 PM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 4071

Error - 2/7/2013 7:57:27 PM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 4071

Error - 2/7/2013 7:57:28 PM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2/7/2013 7:57:28 PM | Computer Name = MyComputer | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 5070

[ System Events ]
Error - 8/12/2013 8:14:49 PM | Computer Name = MyComputer | Source = DCOM | ID = 10005
Description =

Error - 8/12/2013 8:14:49 PM | Computer Name = MyComputer | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 8/12/2013 8:14:49 PM | Computer Name = MyComputer | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 8/12/2013 8:14:50 PM | Computer Name = MyComputer | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 8/12/2013 8:14:50 PM | Computer Name = MyComputer | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 8/12/2013 8:14:50 PM | Computer Name = MyComputer | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 8/12/2013 8:14:50 PM | Computer Name = MyComputer | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 8/12/2013 8:14:50 PM | Computer Name = MyComputer | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 8/12/2013 8:14:50 PM | Computer Name = MyComputer | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 8/12/2013 8:18:11 PM | Computer Name = MyComputer | Source = DCOM | ID = 10005
Description =


< End of report >

Edited by ttbcs, 12 August 2013 - 06:45 PM.

  • 0

#9
ttbcs
Posted 12 August 2013 - 06:53 PM

ttbcs

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 102 posts
Level Date and Time Source Event ID Task Category
Error 8/12/2013 5:33:56 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/12/2013 5:19:16 PM Service Control Manager 7036 None The McAfee Scanner service entered the stopped state.
Information 8/12/2013 5:19:16 PM Service Control Manager 7036 None The McAfee Scanner service entered the running state.
Error 8/12/2013 5:18:11 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service McNaiAnn with arguments """" in order to run the server:
{DC7EF8E1-824F-4110-AB43-1604DA9B4F40}"
Information 8/12/2013 5:16:10 PM Service Control Manager 7036 None The Windows Defender service entered the running state.
Information 8/12/2013 5:16:09 PM Service Control Manager 7036 None The McAfee Services service entered the running state.
Error 8/12/2013 5:14:50 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:50 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:50 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:50 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:50 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:50 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:49 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:49 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:49 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service WSearch with arguments """" in order to run the server:
{9E175B6D-F52A-11D8-B9A5-505054503030}"
Error 8/12/2013 5:14:49 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service WSearch with arguments """" in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}"
Error 8/12/2013 5:14:49 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1068"" attempting to start the service netprofm with arguments """" in order to run the server:
{A47979D2-C419-11D9-A5B4-001185AD2B89}"
Error 8/12/2013 5:14:49 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1068"" attempting to start the service netman with arguments """" in order to run the server:
{BA126AD1-2166-11D1-B1D0-00805FC1270E}"
Error 8/12/2013 5:14:48 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service EventSystem with arguments """" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}"
Information 8/12/2013 5:14:42 PM Microsoft-Windows-Winlogon 7001 (1101) User Logon Notification for Customer Experience Improvement Program
Error 8/12/2013 5:14:42 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service ShellHWDetection with arguments """" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}"
Error 8/12/2013 5:14:09 PM Service Control Manager 7026 None "The following boot-start or system-start driver(s) failed to load:
AFD
DfsC
discache
mfehidk
NetBIOS
NetBT
nsiproxy
Psched
rdbss
spldr
tdx
vwififlt
Wanarpv6
WfpLwf"
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The McAfee Proxy Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/12/2013 5:14:09 PM Service Control Manager 7036 None The Cryptographic Services service entered the running state.
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The McAfee Anti-Spam Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The McAfee Firewall Core Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The McAfee McShield service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/12/2013 5:14:09 PM Service Control Manager 7036 None The Windows Management Instrumentation service entered the running state.
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The McAfee Validation Trust Protection Service service depends on the McAfee Inc. mfehidk service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The McAfee Personal Firewall Service service depends on the Windows Firewall service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/12/2013 5:14:09 PM Service Control Manager 7036 None The CNG Key Isolation service entered the running state.
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/12/2013 5:14:09 PM Service Control Manager 7001 None "The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:
A device attached to the system is not functioning."
Information 8/12/2013 5:14:09 PM Service Control Manager 7036 None The Windows Driver Foundation - User-mode Driver Framework service entered the running state.
Information 8/12/2013 5:14:08 PM Service Control Manager 7036 None The User Profile Service service entered the running state.
Information 8/12/2013 5:14:08 PM Service Control Manager 7036 None The Windows Event Log service entered the running state.
Information 8/12/2013 5:14:07 PM Service Control Manager 7036 None The Remote Procedure Call (RPC) service entered the running state.
Information 8/12/2013 5:14:07 PM Service Control Manager 7036 None The RPC Endpoint Mapper service entered the running state.
Information 8/12/2013 5:14:07 PM Service Control Manager 7036 None The DCOM Server Process Launcher service entered the running state.
Information 8/12/2013 5:14:07 PM Service Control Manager 7036 None The Power service entered the running state.
Information 8/12/2013 5:14:07 PM Microsoft-Windows-UserPnp 20010 (7010) "One or more of the Plug and Play service's subsystems has changed state.

PlugPlay install subsystem enabled: 'true'
PlugPlay caching subsystem enabled: 'true'
"
Information 8/12/2013 5:14:07 PM Service Control Manager 7036 None The Plug and Play service entered the running state.
Information 8/12/2013 5:13:55 PM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ01 has been enumerated.
_PSV = 368K
_TC1 = 1
_TC2 = 5
_TSP = 1000ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/12/2013 5:13:55 PM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ00 has been enumerated.
_PSV = 0K
_TC1 = 0
_TC2 = 0
_TSP = 0ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/12/2013 5:13:54 PM MEIx64 2 None Intel® Management Engine Interface driver has started successfully.
Information 8/12/2013 5:13:49 PM Microsoft-Windows-FilterManager 6 None File System Filter 'FileInfo' (6.1, ‎2009‎-‎07‎-‎13T16:34:25.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/12/2013 5:13:48 PM Microsoft-Windows-Kernel-General 12 None The operating system started at system time ‎2013‎-‎08‎-‎13T00:13:48.125599400Z.
Information 8/12/2013 4:45:33 PM Microsoft-Windows-Kernel-General 13 None The operating system is shutting down at system time ‎2013‎-‎08‎-‎12T23:45:33.673033300Z.
Information 8/12/2013 4:45:31 PM Microsoft-Windows-Kernel-Power 109 (103) The kernel power manager has initiated a shutdown transition.
Information 8/12/2013 4:45:30 PM Service Control Manager 7036 None The Cryptographic Services service entered the stopped state.
Information 8/12/2013 4:45:30 PM Service Control Manager 7036 None The Windows Management Instrumentation service entered the stopped state.
Information 8/12/2013 4:45:30 PM Service Control Manager 7036 None The User Profile Service service entered the stopped state.
Information 8/12/2013 4:45:30 PM Service Control Manager 7036 None The Windows Defender service entered the stopped state.
Information 8/12/2013 5:14:08 PM EventLog 6013 None The system uptime is 19 seconds.
Information 8/12/2013 5:14:08 PM EventLog 6005 None The Event log service was started.
Information 8/12/2013 5:14:08 PM EventLog 6009 None Microsoft ® Windows ® 6.01. 7601 Service Pack 1 Multiprocessor Free.
Information 8/12/2013 4:45:30 PM Service Control Manager 7036 None The Windows Event Log service entered the stopped state.
Information 8/12/2013 4:45:30 PM Service Control Manager 7036 None The McAfee Services service entered the stopped state.
Information 8/12/2013 4:45:30 PM Service Control Manager 7036 None The Plug and Play service entered the stopped state.
Information 8/12/2013 4:45:30 PM Microsoft-Windows-UserPnp 20010 (7010) "One or more of the Plug and Play service's subsystems has changed state.

PlugPlay install subsystem enabled: 'false'
PlugPlay caching subsystem enabled: 'false'
"
Information 8/12/2013 4:45:30 PM Service Control Manager 7036 None The Power service entered the stopped state.
Information 8/12/2013 4:45:29 PM Microsoft-Windows-Winlogon 7002 (1102) User Logoff Notification for Customer Experience Improvement Program
Information 8/12/2013 4:45:30 PM EventLog 6006 None The Event log service was stopped.
Information 8/12/2013 4:45:29 PM USER32 1074 None "The process C:\Windows\system32\winlogon.exe (MYCOMPUTER) has initiated the power off of computer MYCOMPUTER on behalf of user MyComputer\Brianne for the following reason: No title for this reason could be found
Reason Code: 0x500ff
Shutdown Type: power off
Comment: "
Information 8/12/2013 4:45:28 PM USER32 1074 None "The process Explorer.EXE has initiated the power off of computer MYCOMPUTER on behalf of user MyComputer\Brianne for the following reason: Other (Unplanned)
Reason Code: 0x0
Shutdown Type: power off
Comment: "
Error 8/12/2013 4:31:01 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:20:05 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:20:00 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/12/2013 4:11:02 PM Service Control Manager 7036 None The McAfee Scanner service entered the stopped state.
Information 8/12/2013 4:11:02 PM Service Control Manager 7036 None The McAfee Scanner service entered the running state.
Error 8/12/2013 4:09:46 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service McNaiAnn with arguments """" in order to run the server:
{DC7EF8E1-824F-4110-AB43-1604DA9B4F40}"
Information 8/12/2013 4:07:45 PM Service Control Manager 7036 None The Windows Defender service entered the running state.
Information 8/12/2013 4:07:44 PM Service Control Manager 7036 None The McAfee Services service entered the running state.
Error 8/12/2013 4:06:11 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:06:11 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:06:11 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:06:11 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:06:11 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:06:11 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:06:09 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:06:10 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service WSearch with arguments """" in order to run the server:
{9E175B6D-F52A-11D8-B9A5-505054503030}"
Error 8/12/2013 4:06:10 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service WSearch with arguments """" in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}"
Error 8/12/2013 4:06:09 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:06:09 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1068"" attempting to start the service netprofm with arguments """" in order to run the server:
{A47979D2-C419-11D9-A5B4-001185AD2B89}"
Error 8/12/2013 4:06:09 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1068"" attempting to start the service netman with arguments """" in order to run the server:
{BA126AD1-2166-11D1-B1D0-00805FC1270E}"
Error 8/12/2013 4:06:08 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service EventSystem with arguments """" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}"
Information 8/12/2013 4:05:58 PM Microsoft-Windows-Winlogon 7001 (1101) User Logon Notification for Customer Experience Improvement Program
Error 8/12/2013 4:06:00 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service ShellHWDetection with arguments """" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}"
Error 8/12/2013 4:05:44 PM Service Control Manager 7026 None "The following boot-start or system-start driver(s) failed to load:
AFD
DfsC
discache
mfehidk
NetBIOS
NetBT
nsiproxy
Psched
rdbss
spldr
tdx
vwififlt
Wanarpv6
WfpLwf"
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The McAfee Proxy Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/12/2013 4:05:44 PM Service Control Manager 7036 None The Cryptographic Services service entered the running state.
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The McAfee Anti-Spam Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The McAfee Firewall Core Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The McAfee McShield service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/12/2013 4:05:44 PM Service Control Manager 7036 None The Windows Management Instrumentation service entered the running state.
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The McAfee Validation Trust Protection Service service depends on the McAfee Inc. mfehidk service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The McAfee Personal Firewall Service service depends on the Windows Firewall service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/12/2013 4:05:44 PM Service Control Manager 7036 None The CNG Key Isolation service entered the running state.
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/12/2013 4:05:44 PM Service Control Manager 7001 None "The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:
A device attached to the system is not functioning."
Information 8/12/2013 4:05:44 PM Service Control Manager 7036 None The Windows Driver Foundation - User-mode Driver Framework service entered the running state.
Information 8/12/2013 4:05:43 PM Service Control Manager 7036 None The User Profile Service service entered the running state.
Information 8/12/2013 4:05:43 PM Service Control Manager 7036 None The Windows Event Log service entered the running state.
Information 8/12/2013 4:05:42 PM Service Control Manager 7036 None The Remote Procedure Call (RPC) service entered the running state.
Information 8/12/2013 4:05:42 PM Service Control Manager 7036 None The RPC Endpoint Mapper service entered the running state.
Information 8/12/2013 4:05:42 PM Service Control Manager 7036 None The DCOM Server Process Launcher service entered the running state.
Information 8/12/2013 4:05:42 PM Service Control Manager 7036 None The Power service entered the running state.
Information 8/12/2013 4:05:42 PM Microsoft-Windows-UserPnp 20010 (7010) "One or more of the Plug and Play service's subsystems has changed state.

PlugPlay install subsystem enabled: 'true'
PlugPlay caching subsystem enabled: 'true'
"
Information 8/12/2013 4:05:42 PM Service Control Manager 7036 None The Plug and Play service entered the running state.
Information 8/12/2013 4:05:30 PM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ01 has been enumerated.
_PSV = 368K
_TC1 = 1
_TC2 = 5
_TSP = 1000ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/12/2013 4:05:30 PM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ00 has been enumerated.
_PSV = 0K
_TC1 = 0
_TC2 = 0
_TSP = 0ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/12/2013 4:05:29 PM MEIx64 2 None Intel® Management Engine Interface driver has started successfully.
Information 8/12/2013 4:05:24 PM Microsoft-Windows-FilterManager 6 None File System Filter 'FileInfo' (6.1, ‎2009‎-‎07‎-‎13T16:34:25.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/12/2013 4:05:23 PM Microsoft-Windows-Kernel-General 12 None The operating system started at system time ‎2013‎-‎08‎-‎12T23:05:23.125599400Z.
Information 8/11/2013 8:58:43 PM Microsoft-Windows-Kernel-General 13 None The operating system is shutting down at system time ‎2013‎-‎08‎-‎12T03:58:43.462178700Z.
Information 8/11/2013 8:58:39 PM Microsoft-Windows-Kernel-Power 109 (103) The kernel power manager has initiated a shutdown transition.
Information 8/11/2013 8:58:39 PM Service Control Manager 7036 None The Cryptographic Services service entered the stopped state.
Information 8/11/2013 8:58:39 PM Service Control Manager 7036 None The Windows Management Instrumentation service entered the stopped state.
Information 8/11/2013 8:58:39 PM Service Control Manager 7036 None The Windows Defender service entered the stopped state.
Information 8/11/2013 8:58:39 PM Service Control Manager 7036 None The Plug and Play service entered the stopped state.
Information 8/11/2013 8:58:39 PM Microsoft-Windows-UserPnp 20010 (7010) "One or more of the Plug and Play service's subsystems has changed state.

PlugPlay install subsystem enabled: 'false'
PlugPlay caching subsystem enabled: 'false'
"
Information 8/12/2013 4:05:43 PM EventLog 6013 None The system uptime is 19 seconds.
Information 8/12/2013 4:05:43 PM EventLog 6005 None The Event log service was started.
Information 8/12/2013 4:05:43 PM EventLog 6009 None Microsoft ® Windows ® 6.01. 7601 Service Pack 1 Multiprocessor Free.
Information 8/11/2013 8:58:39 PM Service Control Manager 7036 None The User Profile Service service entered the stopped state.
Information 8/11/2013 8:58:39 PM Service Control Manager 7036 None The Power service entered the stopped state.
Information 8/11/2013 8:58:39 PM Service Control Manager 7036 None The McAfee Services service entered the stopped state.
Information 8/11/2013 8:58:39 PM Service Control Manager 7036 None The Windows Event Log service entered the stopped state.
Information 8/11/2013 8:58:39 PM Microsoft-Windows-Winlogon 7002 (1102) User Logoff Notification for Customer Experience Improvement Program
Information 8/11/2013 8:58:39 PM EventLog 6006 None The Event log service was stopped.
Information 8/11/2013 8:58:39 PM USER32 1074 None "The process C:\Windows\system32\winlogon.exe (MYCOMPUTER) has initiated the power off of computer MYCOMPUTER on behalf of user MyComputer\Brianne for the following reason: No title for this reason could be found
Reason Code: 0x500ff
Shutdown Type: power off
Comment: "
Information 8/11/2013 8:58:37 PM USER32 1074 None "The process Explorer.EXE has initiated the power off of computer MYCOMPUTER on behalf of user MyComputer\Brianne for the following reason: Other (Unplanned)
Reason Code: 0x0
Shutdown Type: power off
Comment: "
Information 8/11/2013 8:50:44 PM Service Control Manager 7036 None The McAfee Scanner service entered the stopped state.
Information 8/11/2013 8:50:44 PM Service Control Manager 7036 None The McAfee Scanner service entered the running state.
Error 8/11/2013 8:50:00 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service McNaiAnn with arguments """" in order to run the server:
{DC7EF8E1-824F-4110-AB43-1604DA9B4F40}"
Information 8/11/2013 8:48:04 PM Service Control Manager 7036 None The Windows Defender service entered the running state.
Information 8/11/2013 8:47:58 PM Service Control Manager 7036 None The McAfee Services service entered the running state.
Error 8/11/2013 8:46:29 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:46:29 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:46:29 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:46:29 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:46:29 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:46:29 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:46:29 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:46:29 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:46:29 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1068"" attempting to start the service netprofm with arguments """" in order to run the server:
{A47979D2-C419-11D9-A5B4-001185AD2B89}"
Error 8/11/2013 8:46:29 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1068"" attempting to start the service netman with arguments """" in order to run the server:
{BA126AD1-2166-11D1-B1D0-00805FC1270E}"
Error 8/11/2013 8:46:28 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service WSearch with arguments """" in order to run the server:
{9E175B6D-F52A-11D8-B9A5-505054503030}"
Error 8/11/2013 8:46:28 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service WSearch with arguments """" in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}"
Error 8/11/2013 8:46:22 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service EventSystem with arguments """" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}"
Error 8/11/2013 8:46:16 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service ShellHWDetection with arguments """" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}"
Information 8/11/2013 8:46:15 PM Microsoft-Windows-Winlogon 7001 (1101) User Logon Notification for Customer Experience Improvement Program
Error 8/11/2013 8:45:58 PM Service Control Manager 7026 None "The following boot-start or system-start driver(s) failed to load:
AFD
DfsC
discache
mfehidk
NetBIOS
NetBT
nsiproxy
Psched
rdbss
spldr
tdx
vwififlt
Wanarpv6
WfpLwf"
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The McAfee Proxy Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/11/2013 8:45:58 PM Service Control Manager 7036 None The Windows Management Instrumentation service entered the running state.
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The McAfee Anti-Spam Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The McAfee Firewall Core Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The McAfee McShield service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/11/2013 8:45:58 PM Service Control Manager 7036 None The Cryptographic Services service entered the running state.
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The McAfee Validation Trust Protection Service service depends on the McAfee Inc. mfehidk service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The McAfee Personal Firewall Service service depends on the Windows Firewall service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/11/2013 8:45:58 PM Service Control Manager 7036 None The CNG Key Isolation service entered the running state.
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/11/2013 8:45:58 PM Service Control Manager 7001 None "The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:
A device attached to the system is not functioning."
Information 8/11/2013 8:45:58 PM Service Control Manager 7036 None The Windows Driver Foundation - User-mode Driver Framework service entered the running state.
Information 8/11/2013 8:45:58 PM Service Control Manager 7036 None The User Profile Service service entered the running state.
Information 8/11/2013 8:45:58 PM Service Control Manager 7036 None The Windows Event Log service entered the running state.
Information 8/11/2013 8:45:57 PM Service Control Manager 7036 None The Remote Procedure Call (RPC) service entered the running state.
Information 8/11/2013 8:45:57 PM Service Control Manager 7036 None The RPC Endpoint Mapper service entered the running state.
Information 8/11/2013 8:45:57 PM Service Control Manager 7036 None The DCOM Server Process Launcher service entered the running state.
Information 8/11/2013 8:45:57 PM Service Control Manager 7036 None The Power service entered the running state.
Information 8/11/2013 8:45:57 PM Microsoft-Windows-UserPnp 20010 (7010) "One or more of the Plug and Play service's subsystems has changed state.

PlugPlay install subsystem enabled: 'true'
PlugPlay caching subsystem enabled: 'true'
"
Information 8/11/2013 8:45:57 PM Service Control Manager 7036 None The Plug and Play service entered the running state.
Information 8/11/2013 8:45:49 PM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ01 has been enumerated.
_PSV = 368K
_TC1 = 1
_TC2 = 5
_TSP = 1000ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/11/2013 8:45:49 PM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ00 has been enumerated.
_PSV = 0K
_TC1 = 0
_TC2 = 0
_TSP = 0ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/11/2013 8:45:45 PM MEIx64 2 None Intel® Management Engine Interface driver has started successfully.
Critical 8/11/2013 8:45:45 PM Microsoft-Windows-Kernel-Power 41 (63) The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
Information 8/11/2013 8:45:58 PM EventLog 6013 None The system uptime is 20 seconds.
Information 8/11/2013 8:45:58 PM EventLog 6005 None The Event log service was started.
Information 8/11/2013 8:45:58 PM EventLog 6009 None Microsoft ® Windows ® 6.01. 7601 Service Pack 1 Multiprocessor Free.
Error 8/11/2013 8:45:58 PM EventLog 6008 None The previous system shutdown at 8:42:56 PM on ‎8/‎11/‎2013 was unexpected.
Information 8/11/2013 8:45:39 PM Microsoft-Windows-FilterManager 6 None File System Filter 'FileInfo' (6.1, ‎2009‎-‎07‎-‎13T16:34:25.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/11/2013 8:45:38 PM Microsoft-Windows-Kernel-General 12 None The operating system started at system time ‎2013‎-‎08‎-‎12T03:45:38.125599400Z.
Information 8/11/2013 8:41:23 PM Service Control Manager 7036 None The McAfee Network Agent service entered the running state.
Information 8/11/2013 8:41:02 PM Service Control Manager 7036 None The Windows Error Reporting Service service entered the running state.
Information 8/11/2013 8:40:46 PM Service Control Manager 7036 None The McAfee VirusScan Announcer service entered the running state.
Information 8/11/2013 8:40:14 PM Service Control Manager 7036 None The Intel® Management and Security Application Local Management Service service entered the running state.
Information 8/11/2013 8:40:12 PM Service Control Manager 7036 None The Intel® Rapid Storage Technology service entered the running state.
Information 8/11/2013 8:40:07 PM Service Control Manager 7036 None The Google Update Service (gupdate) service entered the stopped state.
Information 8/11/2013 8:40:07 PM Service Control Manager 7036 None The Google Update Service (gupdate) service entered the running state.
Information 8/11/2013 8:40:06 PM Service Control Manager 7036 None The Microsoft .NET Framework NGEN v4.0.30319_X64 service entered the stopped state.
Information 8/11/2013 8:40:06 PM Service Control Manager 7036 None The Microsoft .NET Framework NGEN v4.0.30319_X64 service entered the running state.
Information 8/11/2013 8:40:06 PM Service Control Manager 7036 None The Microsoft .NET Framework NGEN v4.0.30319_X86 service entered the stopped state.
Information 8/11/2013 8:40:06 PM Service Control Manager 7036 None The Microsoft .NET Framework NGEN v4.0.30319_X86 service entered the running state.
Information 8/11/2013 8:39:53 PM Service Control Manager 7036 None The Skype Updater service entered the stopped state.
Information 8/11/2013 8:39:04 PM Service Control Manager 7036 None The Secunia Update Agent service entered the running state.
Information 8/11/2013 8:39:01 PM Service Control Manager 7036 None The Secunia Update Agent service entered the stopped state.
Error 8/11/2013 8:38:59 PM Service Control Manager 7011 None A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.
Information 8/11/2013 8:38:58 PM Microsoft-Windows-FilterManager 6 None File System Filter 'PSI' (6.0, ‎2010‎-‎09‎-‎01T00:53:14.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/11/2013 8:38:56 PM Service Control Manager 7036 None The iPod Service service entered the running state.
Information 8/11/2013 8:38:52 PM Service Control Manager 7036 None The Bluetooth Media Service service entered the running state.
Information 8/11/2013 8:38:42 PM Service Control Manager 7036 None The Application Information service entered the running state.
Information 8/11/2013 8:38:41 PM Service Control Manager 7036 None The Application Experience service entered the running state.
Information 8/11/2013 8:38:39 PM Service Control Manager 7036 None The McAfee Services service entered the running state.
Information 8/11/2013 8:38:31 PM Service Control Manager 7036 None The UPnP Device Host service entered the running state.
Information 8/11/2013 8:38:32 PM Microsoft-Windows-WMPNSS-Service 14206 None Media server 'MYCOMPUTER: Brianne_2:' was successfully initialized and is sharing media with network media devices.
Information 8/11/2013 8:38:32 PM Microsoft-Windows-WMPNSS-Service 14206 None Media server 'MYCOMPUTER: Brianne:' was successfully initialized and is sharing media with network media devices.
Error 8/11/2013 8:38:29 PM Service Control Manager 7011 None A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.
Information 8/11/2013 8:38:24 PM Service Control Manager 7036 None The Peer Networking Grouping service entered the running state.
Information 8/11/2013 8:38:24 PM Service Control Manager 7036 None The Peer Name Resolution Protocol service entered the running state.
Information 8/11/2013 8:38:23 PM Service Control Manager 7036 None The Peer Networking Identity Manager service entered the running state.
Information 8/11/2013 8:38:23 PM Service Control Manager 7036 None The Windows Media Player Network Sharing Service service entered the running state.
Information 8/11/2013 8:38:23 PM Service Control Manager 7036 None The HomeGroup Listener service entered the running state.
Information 8/11/2013 8:38:23 PM Microsoft-Windows-WMPNSS-Service 14204 None Service 'WMPNetworkSvc' started.
Information 8/11/2013 8:38:20 PM Service Control Manager 7036 None The HomeGroup Provider service entered the running state.
Information 8/11/2013 8:38:20 PM Service Control Manager 7036 None The Function Discovery Provider Host service entered the running state.
Information 8/11/2013 8:38:18 PM Service Control Manager 7036 None The Windows Search service entered the running state.
Information 8/11/2013 8:38:18 PM Service Control Manager 7036 None The Network Connections service entered the running state.
Information 8/11/2013 8:38:18 PM Service Control Manager 7036 None The WinHTTP Web Proxy Auto-Discovery Service service entered the running state.
Information 8/11/2013 8:38:09 PM Service Control Manager 7036 None The SSDP Discovery service entered the running state.
Information 8/11/2013 8:38:09 PM Service Control Manager 7036 None The IPsec Policy Agent service entered the running state.
Information 8/11/2013 8:38:09 PM Service Control Manager 7036 None The Portable Device Enumerator Service service entered the running state.
Information 8/11/2013 8:38:08 PM Service Control Manager 7036 None The Diagnostic System Host service entered the running state.
Information 8/11/2013 8:38:08 PM Service Control Manager 7036 None The Diagnostic Service Host service entered the running state.
Information 8/11/2013 8:38:08 PM Service Control Manager 7036 None The Network List Service service entered the running state.
Information 8/11/2013 8:38:08 PM Service Control Manager 7036 None The Computer Browser service entered the running state.
Information 8/11/2013 8:38:08 PM Service Control Manager 7036 None The Background Intelligent Transfer Service service entered the running state.
Information 8/11/2013 8:38:06 PM Microsoft-Windows-Application-Experience 206 None The Program Compatibility Assistant service successfully performed phase two initialization.
Information 8/11/2013 8:38:06 PM Service Control Manager 7036 None The Server service entered the running state.
Information 8/11/2013 8:37:58 PM Microsoft-Windows-Winlogon 7001 (1101) User Logon Notification for Customer Experience Improvement Program
Information 8/11/2013 8:37:57 PM Service Control Manager 7036 None The McAfee Proxy Service service entered the running state.
Information 8/11/2013 8:37:57 PM Service Control Manager 7036 None The McAfee Personal Firewall Service service entered the running state.
Information 8/11/2013 8:37:57 PM Service Control Manager 7036 None The McAfee Anti-Spam Service service entered the running state.
Information 8/11/2013 8:37:56 PM Service Control Manager 7036 None The McAfee Firewall Core Service service entered the running state.
Information 8/11/2013 8:37:56 PM Service Control Manager 7036 None The McAfee McShield service entered the running state.
Information 8/11/2013 8:37:54 PM Service Control Manager 7036 None The IP Helper service entered the running state.
Information 8/11/2013 8:37:54 PM Service Control Manager 7036 None The Windows Image Acquisition (WIA) service entered the running state.
Information 8/11/2013 8:37:53 PM Service Control Manager 7036 None The Bluetooth OBEX Service service entered the running state.
Information 8/11/2013 8:37:52 PM Service Control Manager 7036 None The Windows Live ID Sign-in Assistant service entered the running state.
Information 8/11/2013 8:37:52 PM Service Control Manager 7036 None The Windows Management Instrumentation service entered the running state.
Information 8/11/2013 8:37:52 PM Service Control Manager 7036 None The Skype Updater service entered the running state.
Information 8/11/2013 8:37:52 PM Service Control Manager 7036 None The Distributed Link Tracking Client service entered the running state.
Information 8/11/2013 8:37:52 PM Service Control Manager 7036 None The Superfetch service entered the running state.
Information 8/11/2013 8:37:52 PM Service Control Manager 7036 None The Skype C2C Service service entered the running state.
Information 8/11/2013 8:37:50 PM Service Control Manager 7036 None The SoftThinks Agent Service service entered the running state.
Information 8/11/2013 8:37:50 PM Service Control Manager 7036 None The Secunia Update Agent service entered the running state.
Information 8/11/2013 8:37:50 PM Service Control Manager 7036 None The Secunia PSI Agent service entered the running state.
Information 8/11/2013 8:37:49 PM Microsoft-Windows-WLAN-AutoConfig 10001 None "WLAN Extensibility Module has successfully started.

Module Path: C:\Windows\System32\IWMSSvc.dll
"
Information 8/11/2013 8:37:49 PM Service Control Manager 7036 None The Function Discovery Resource Publication service entered the running state.
Information 8/11/2013 8:37:49 PM Service Control Manager 7036 None The McAfee Validation Trust Protection Service service entered the running state.
Information 8/11/2013 8:37:49 PM Service Control Manager 7036 None The IKE and AuthIP IPsec Keying Modules service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Intel® PROSet/Wireless Registry Service service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Network Location Awareness service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Program Compatibility Assistant Service service entered the running state.
Information 8/11/2013 8:37:47 PM Microsoft-Windows-Application-Experience 201 None The Program Compatibility Assistant service started successfully.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The McAfee SiteAdvisor Service service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Intel® PROSet/Wireless Event Log service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Bluetooth Support Service service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Diagnostic Policy Service service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Bluetooth Device Monitor service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Cryptographic Services service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Bonjour Service service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Apple Mobile Device service entered the running state.
Information 8/11/2013 8:37:47 PM Service Control Manager 7036 None The Andrea RT Filters Service service entered the running state.
Information 8/11/2013 8:37:45 PM Service Control Manager 7036 None The Adobe Acrobat Update Service service entered the running state.
Information 8/11/2013 8:37:44 PM Service Control Manager 7036 None The Workstation service entered the running state.
Information 8/11/2013 8:37:44 PM Service Control Manager 7036 None The Windows Firewall service entered the running state.
Information 8/11/2013 8:37:44 PM Service Control Manager 7036 None The Base Filtering Engine service entered the running state.
Information 8/11/2013 8:37:43 PM Service Control Manager 7036 None The Print Spooler service entered the running state.
Information 8/11/2013 8:37:43 PM Service Control Manager 7036 None The Task Scheduler service entered the running state.
Information 8/11/2013 8:37:43 PM Service Control Manager 7036 None The Shell Hardware Detection service entered the running state.
Information 8/11/2013 8:37:43 PM Microsoft-Windows-WLAN-AutoConfig 4000 None "WLAN AutoConfig service has successfully started.
"
Information 8/11/2013 8:37:43 PM Service Control Manager 7036 None The WLAN AutoConfig service entered the running state.
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The Extensible Authentication Protocol service entered the running state.
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The DNS Client service entered the running state.
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The CNG Key Isolation service entered the running state.
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The DHCP Client service entered the running state.
Information 8/11/2013 8:37:42 PM Microsoft-Windows-DHCPv6-Client 51046 Service State Event DHCPv6 client service is started
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The TCP/IP NetBIOS Helper service entered the running state.
Information 8/11/2013 8:37:42 PM Microsoft-Windows-Dhcp-Client 50036 Service State Event DHCPv4 client service is started
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The Network Store Interface Service service entered the running state.
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The Windows Driver Foundation - User-mode Driver Framework service entered the running state.
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The Security Accounts Manager service entered the running state.
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The Desktop Window Manager Session Manager service entered the running state.
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The User Profile Service service entered the running state.
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The System Event Notification Service service entered the running state.
Information 8/11/2013 8:37:42 PM Service Control Manager 7036 None The Themes service entered the running state.
Information 8/11/2013 8:37:41 PM Service Control Manager 7036 None The COM+ Event System service entered the running state.
Information 8/11/2013 8:37:41 PM Service Control Manager 7036 None The Group Policy Client service entered the running state.
Information 8/11/2013 8:37:41 PM Service Control Manager 7036 None The Windows Audio service entered the running state.
Information 8/11/2013 8:37:41 PM Service Control Manager 7036 None The Windows Audio Endpoint Builder service entered the running state.
Information 8/11/2013 8:37:39 PM Service Control Manager 7036 None The Windows Font Cache Service service entered the running state.
Information 8/11/2013 8:37:39 PM Service Control Manager 7036 None The Multimedia Class Scheduler service entered the running state.
Information 8/11/2013 8:37:39 PM Service Control Manager 7036 None The Windows Event Log service entered the running state.
Information 8/11/2013 8:37:39 PM Service Control Manager 7036 None The Remote Procedure Call (RPC) service entered the running state.
Information 8/11/2013 8:37:39 PM Service Control Manager 7036 None The RPC Endpoint Mapper service entered the running state.
Information 8/11/2013 8:37:39 PM Service Control Manager 7036 None The DCOM Server Process Launcher service entered the running state.
Information 8/11/2013 8:37:39 PM Microsoft-Windows-FilterManager 6 None File System Filter 'luafv' (6.1, ‎2009‎-‎07‎-‎13T16:26:13.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/11/2013 8:37:39 PM Service Control Manager 7036 None The Power service entered the running state.
Information 8/11/2013 8:37:39 PM Microsoft-Windows-UserPnp 20010 (7010) "One or more of the Plug and Play service's subsystems has changed state.

PlugPlay install subsystem enabled: 'true'
PlugPlay caching subsystem enabled: 'true'
"
Information 8/11/2013 8:37:39 PM Service Control Manager 7036 None The Plug and Play service entered the running state.
Information 8/11/2013 8:37:34 PM BTHUSB 18 None Windows cannot store Bluetooth authentication codes (link keys) on the local adapter. Bluetooth keyboards might not work in the system BIOS during startup.
Warning 8/11/2013 8:37:02 PM RTL8167 1 None Realtek PCIe FE Family Controller is disconnected from network.
Information 8/11/2013 8:37:01 PM Microsoft-Windows-Kernel-Processor-Power 26 (4) "Processor 3 in group 0 exposes the following:

3 idle state(s)
14 performance state(s)
8 throttle state(s)"
Information 8/11/2013 8:37:01 PM Microsoft-Windows-Kernel-Processor-Power 26 (4) "Processor 2 in group 0 exposes the following:

3 idle state(s)
14 performance state(s)
8 throttle state(s)"
Information 8/11/2013 8:37:01 PM Microsoft-Windows-Kernel-Processor-Power 26 (4) "Processor 1 in group 0 exposes the following:

3 idle state(s)
14 performance state(s)
8 throttle state(s)"
Information 8/11/2013 8:37:01 PM Microsoft-Windows-Kernel-Processor-Power 26 (4) "Processor 0 in group 0 exposes the following:

3 idle state(s)
14 performance state(s)
8 throttle state(s)"
Information 8/11/2013 8:37:01 PM NETwNs64 7036 None The \Device\NDMP8 service entered the Intel® Centrino® Wireless-N 1030 state.
Information 8/11/2013 8:37:01 PM MEIx64 2 None Intel® Management Engine Interface driver has started successfully.
Information 8/11/2013 8:36:58 PM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ01 has been enumerated.
_PSV = 368K
_TC1 = 1
_TC2 = 5
_TSP = 1000ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/11/2013 8:36:58 PM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ00 has been enumerated.
_PSV = 0K
_TC1 = 0
_TC2 = 0
_TSP = 0ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/11/2013 8:36:51 PM Microsoft-Windows-FilterManager 6 None File System Filter 'mfehidk' (0.0, ‎2013‎-‎01‎-‎15T11:21:15.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/11/2013 8:36:51 PM Microsoft-Windows-FilterManager 6 None File System Filter 'FileInfo' (6.1, ‎2009‎-‎07‎-‎13T16:34:25.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/11/2013 8:36:50 PM Microsoft-Windows-Kernel-General 12 None The operating system started at system time ‎2013‎-‎08‎-‎12T03:36:50.125599300Z.
Information 8/11/2013 8:36:36 PM Microsoft-Windows-Kernel-General 13 None The operating system is shutting down at system time ‎2013‎-‎08‎-‎12T03:36:36.907296000Z.
Information 8/11/2013 8:36:33 PM Microsoft-Windows-Kernel-Power 109 (103) The kernel power manager has initiated a shutdown transition.
Information 8/11/2013 8:36:32 PM Service Control Manager 7036 None The Cryptographic Services service entered the stopped state.
Information 8/11/2013 8:36:32 PM Service Control Manager 7036 None The Windows Management Instrumentation service entered the stopped state.
Information 8/11/2013 8:36:32 PM Service Control Manager 7036 None The Windows Defender service entered the stopped state.
Information 8/11/2013 8:36:32 PM Service Control Manager 7036 None The User Profile Service service entered the stopped state.
Information 8/11/2013 8:36:32 PM Service Control Manager 7036 None The Windows Event Log service entered the stopped state.
Information 8/11/2013 8:36:32 PM Service Control Manager 7036 None The Plug and Play service entered the stopped state.
Information 8/11/2013 8:36:32 PM Microsoft-Windows-UserPnp 20010 (7010) "One or more of the Plug and Play service's subsystems has changed state.

PlugPlay install subsystem enabled: 'false'
PlugPlay caching subsystem enabled: 'false'
"
Information 8/11/2013 8:37:39 PM EventLog 6013 None The system uptime is 49 seconds.
Information 8/11/2013 8:37:39 PM EventLog 6005 None The Event log service was started.
Information 8/11/2013 8:37:39 PM EventLog 6009 None Microsoft ® Windows ® 6.01. 7601 Service Pack 1 Multiprocessor Free.
Information 8/11/2013 8:36:32 PM Service Control Manager 7036 None The Power service entered the stopped state.
Information 8/11/2013 8:36:32 PM Service Control Manager 7036 None The McAfee Services service entered the stopped state.
Information 8/11/2013 8:36:32 PM Microsoft-Windows-Winlogon 7002 (1102) User Logoff Notification for Customer Experience Improvement Program
Information 8/11/2013 8:36:32 PM EventLog 6006 None The Event log service was stopped.
Information 8/11/2013 8:36:32 PM USER32 1074 None "The process C:\Windows\system32\winlogon.exe (MYCOMPUTER) has initiated the restart of computer MYCOMPUTER on behalf of user MyComputer\Brianne for the following reason: No title for this reason could be found
Reason Code: 0x500ff
Shutdown Type: restart
Comment: "
Information 8/11/2013 8:36:31 PM USER32 1074 None "The process Explorer.EXE has initiated the restart of computer MYCOMPUTER on behalf of user MyComputer\Brianne for the following reason: Other (Unplanned)
Reason Code: 0x0
Shutdown Type: restart
Comment: "
Information 8/11/2013 8:34:52 PM Service Control Manager 7036 None The Windows Defender service entered the running state.
Information 8/11/2013 8:34:51 PM Service Control Manager 7036 None The McAfee Services service entered the running state.
Error 8/11/2013 8:33:31 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:33:31 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:33:31 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:33:31 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:33:31 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:33:31 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:33:30 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:33:30 PM Service Control Manager 7001 None "The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:33:31 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service WSearch with arguments """" in order to run the server:
{9E175B6D-F52A-11D8-B9A5-505054503030}"
Error 8/11/2013 8:33:30 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service WSearch with arguments """" in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}"
Error 8/11/2013 8:33:30 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1068"" attempting to start the service netprofm with arguments """" in order to run the server:
{A47979D2-C419-11D9-A5B4-001185AD2B89}"
Error 8/11/2013 8:33:30 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1068"" attempting to start the service netman with arguments """" in order to run the server:
{BA126AD1-2166-11D1-B1D0-00805FC1270E}"
Error 8/11/2013 8:33:29 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service EventSystem with arguments """" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}"
Information 8/11/2013 8:33:22 PM Microsoft-Windows-Winlogon 7001 (1101) User Logon Notification for Customer Experience Improvement Program
Error 8/11/2013 8:33:22 PM Microsoft-Windows-DistributedCOM 10005 None "DCOM got error ""1084"" attempting to start the service ShellHWDetection with arguments """" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}"
Error 8/11/2013 8:32:51 PM Service Control Manager 7026 None "The following boot-start or system-start driver(s) failed to load:
AFD
DfsC
discache
mfehidk
NetBIOS
NetBT
nsiproxy
Psched
rdbss
spldr
tdx
vwififlt
Wanarpv6
WfpLwf"
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The McAfee Proxy Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/11/2013 8:32:51 PM Service Control Manager 7036 None The Cryptographic Services service entered the running state.
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The McAfee Anti-Spam Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The McAfee Firewall Core Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The McAfee McShield service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/11/2013 8:32:51 PM Service Control Manager 7036 None The Windows Management Instrumentation service entered the running state.
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The McAfee Validation Trust Protection Service service depends on the McAfee Inc. mfehidk service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The McAfee Personal Firewall Service service depends on the Windows Firewall service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start."
Information 8/11/2013 8:32:51 PM Service Control Manager 7036 None The CNG Key Isolation service entered the running state.
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error:
A device attached to the system is not functioning."
Error 8/11/2013 8:32:51 PM Service Control Manager 7001 None "The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:
A device attached to the system is not functioning."
Information 8/11/2013 8:32:51 PM Service Control Manager 7036 None The Windows Driver Foundation - User-mode Driver Framework service entered the running state.
Information 8/11/2013 8:32:51 PM Service Control Manager 7036 None The User Profile Service service entered the running state.
Information 8/11/2013 8:32:50 PM Service Control Manager 7036 None The Windows Event Log service entered the running state.
Information 8/11/2013 8:32:50 PM Service Control Manager 7036 None The Remote Procedure Call (RPC) service entered the running state.
Information 8/11/2013 8:32:50 PM Service Control Manager 7036 None The RPC Endpoint Mapper service entered the running state.
Information 8/11/2013 8:32:50 PM Service Control Manager 7036 None The DCOM Server Process Launcher service entered the running state.
Information 8/11/2013 8:32:29 PM Service Control Manager 7036 None The Power service entered the running state.
Information 8/11/2013 8:32:28 PM Microsoft-Windows-UserPnp 20010 (7010) "One or more of the Plug and Play service's subsystems has changed state.

PlugPlay install subsystem enabled: 'true'
PlugPlay caching subsystem enabled: 'true'
"
Information 8/11/2013 8:32:28 PM Service Control Manager 7036 None The Plug and Play service entered the running state.
Information 8/11/2013 8:32:01 PM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ01 has been enumerated.
_PSV = 368K
_TC1 = 1
_TC2 = 5
_TSP = 1000ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/11/2013 8:32:01 PM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ00 has been enumerated.
_PSV = 0K
_TC1 = 0
_TC2 = 0
_TSP = 0ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/11/2013 8:32:01 PM MEIx64 2 None Intel® Management Engine Interface driver has started successfully.
Information 8/11/2013 8:31:55 PM Microsoft-Windows-FilterManager 6 None File System Filter 'FileInfo' (6.1, ‎2009‎-‎07‎-‎13T16:34:25.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/11/2013 8:32:50 PM EventLog 6013 None The system uptime is 56 seconds.
Information 8/11/2013 8:32:50 PM EventLog 6005 None The Event log service was started.
Information 8/11/2013 8:32:50 PM EventLog 6009 None Microsoft ® Windows ® 6.01. 7601 Service Pack 1 Multiprocessor Free.
Error 8/11/2013 8:32:50 PM EventLog 6008 None The previous system shutdown at 8:29:53 PM on ‎8/‎11/‎2013 was unexpected.
Information 8/11/2013 8:31:54 PM Microsoft-Windows-Kernel-General 12 None The operating system started at system time ‎2013‎-‎08‎-‎12T03:31:54.125599400Z.
Information 8/11/2013 8:30:00 PM USER32 1074 None "The process C:\Windows\system32\winlogon.exe (MYCOMPUTER) has initiated the power off of computer MYCOMPUTER on behalf of user NT AUTHORITY\SYSTEM for the following reason: No title for this reason could be found
Reason Code: 0x500ff
Shutdown Type: power off
Comment: "
Information 8/11/2013 3:34:34 AM Service Control Manager 7036 None The TCP/IP NetBIOS Helper service entered the running state.
Information 8/11/2013 3:34:34 AM BTHUSB 18 None Windows cannot store Bluetooth authentication codes (link keys) on the local adapter. Bluetooth keyboards might not work in the system BIOS during startup.
Information 8/11/2013 3:34:33 AM Service Control Manager 7036 None The Google Update Service (gupdate) service entered the running state.
Information 8/11/2013 3:34:33 AM Service Control Manager 7036 None The Adobe Flash Player Update Service service entered the stopped state.
Information 8/11/2013 3:34:33 AM Service Control Manager 7036 None The Adobe Flash Player Update Service service entered the running state.
Information 8/11/2013 3:34:32 AM Service Control Manager 7036 None The TCP/IP NetBIOS Helper service entered the stopped state.
Information 8/11/2013 3:34:32 AM Service Control Manager 7042 None "The TCP/IP NetBIOS Helper service was successfully sent a stop control.

The reason specified was: 0x40030011 [Operating System: Network Connectivity (Planned)]

Comment: None"
Information 8/11/2013 3:34:32 AM Microsoft-Windows-Kernel-General 1 None The system time has changed to ‎2013‎-‎08‎-‎11T10:34:32.500000000Z from ‎2013‎-‎08‎-‎11T08:34:33.717610000Z.
Information 8/11/2013 1:34:31 AM Microsoft-Windows-Kernel-Power 42 (64) "The system is entering sleep.

Sleep Reason: System Idle"
Information 8/11/2013 1:30:07 AM Service Control Manager 7036 None The Software Protection service entered the stopped state.
Information 8/11/2013 1:26:00 AM Service Control Manager 7036 None The Adobe Flash Player Update Service service entered the stopped state.
Information 8/11/2013 1:26:00 AM Service Control Manager 7036 None The Adobe Flash Player Update Service service entered the running state.
Information 8/11/2013 1:25:24 AM Service Control Manager 7036 None The Windows Modules Installer service entered the running state.
Information 8/11/2013 1:25:10 AM Service Control Manager 7036 None The Intel® Management and Security Application User Notification Service service entered the running state.
Information 8/11/2013 1:25:08 AM Service Control Manager 7036 None The Windows Update service entered the running state.
Information 8/11/2013 1:25:04 AM Service Control Manager 7036 None The Windows Error Reporting Service service entered the stopped state.
Information 8/11/2013 1:24:44 AM Service Control Manager 7036 None The Multimedia Class Scheduler service entered the stopped state.
Information 8/11/2013 1:24:17 AM Service Control Manager 7036 None The Security Center service entered the running state.
Information 8/11/2013 1:24:17 AM Microsoft-Windows-WMPNSS-Service 14206 None Media server 'MYCOMPUTER: Brianne_2:' was successfully initialized and is sharing media with network media devices.
Information 8/11/2013 1:24:17 AM Microsoft-Windows-WMPNSS-Service 14206 None Media server 'MYCOMPUTER: Brianne:' was successfully initialized and is sharing media with network media devices.
Information 8/11/2013 1:24:11 AM Service Control Manager 7036 None The UPnP Device Host service entered the running state.
Information 8/11/2013 1:24:09 AM Service Control Manager 7036 None The Windows Media Player Network Sharing Service service entered the running state.
Information 8/11/2013 1:24:09 AM Microsoft-Windows-WMPNSS-Service 14204 None Service 'WMPNetworkSvc' started.
Information 8/11/2013 1:24:08 AM Service Control Manager 7036 None The Windows Defender service entered the running state.
Information 8/11/2013 1:23:28 AM Service Control Manager 7036 None The Shell Hardware Detection service entered the stopped state.
Information 8/11/2013 1:23:28 AM Service Control Manager 7036 None The Windows Image Acquisition (WIA) service entered the stopped state.
Information 8/11/2013 1:23:05 AM Service Control Manager 7036 None The Application Experience service entered the running state.
Information 8/11/2013 1:23:05 AM Service Control Manager 7036 None The Software Protection service entered the running state.
Information 8/11/2013 1:23:04 AM Service Control Manager 7036 None The Windows Time service entered the stopped state.
Information 8/11/2013 1:23:04 AM Microsoft-Windows-Kernel-General 1 None The system time has changed to ‎2013‎-‎08‎-‎11T08:23:04.836000000Z from ‎2013‎-‎08‎-‎11T08:23:04.836000000Z.
Information 8/11/2013 1:23:04 AM Microsoft-Windows-Kernel-General 1 None The system time has changed to ‎2013‎-‎08‎-‎11T08:23:04.836000000Z from ‎2013‎-‎08‎-‎11T08:23:04.836963600Z.
Information 8/11/2013 1:23:04 AM Microsoft-Windows-Time-Service 35 None The time service is now synchronizing the system time with the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->64.4.10.33:123).
Information 8/11/2013 1:23:04 AM Microsoft-Windows-Kernel-General 1 None The system time has changed to ‎2013‎-‎08‎-‎11T08:23:04.836963600Z from ‎2013‎-‎08‎-‎11T08:23:12.880057300Z.
Information 8/11/2013 1:23:12 AM Service Control Manager 7036 None The Windows Search service entered the running state.
Information 8/11/2013 1:23:11 AM Service Control Manager 7036 None The Windows Error Reporting Service service entered the running state.
Information 8/11/2013 1:23:11 AM Service Control Manager 7036 None The Roxio Hard Drive Watcher 12 service entered the stopped state.
Information 8/11/2013 1:23:10 AM Service Control Manager 7036 None The Network Connections service entered the running state.
Information 8/11/2013 1:23:05 AM Service Control Manager 7036 None The Roxio Hard Drive Watcher 12 service entered the running state.
Information 8/11/2013 1:23:04 AM Service Control Manager 7036 None The McAfee Network Agent service entered the running state.
Information 8/11/2013 1:22:58 AM Microsoft-Windows-Time-Service 37 None The time provider NtpClient is currently receiving valid time data from time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->64.4.10.33:123).
Information 8/11/2013 1:22:56 AM Service Control Manager 7036 None The Windows Time service entered the running state.
Information 8/11/2013 1:22:51 AM Service Control Manager 7036 None The McAfee VirusScan Announcer service entered the running state.
Information 8/11/2013 1:22:41 AM Service Control Manager 7036 None The McAfee Services service entered the running state.
Information 8/11/2013 1:22:36 AM Service Control Manager 7036 None The Intel® Management and Security Application Local Management Service service entered the running state.
Information 8/11/2013 1:22:35 AM Service Control Manager 7036 None The Intel® Rapid Storage Technology service entered the running state.
Information 8/11/2013 1:22:14 AM Service Control Manager 7036 None The Google Update Service (gupdate) service entered the stopped state.
Information 8/11/2013 1:22:14 AM Service Control Manager 7036 None The Google Update Service (gupdate) service entered the running state.
Information 8/11/2013 1:22:12 AM Service Control Manager 7036 None The Microsoft .NET Framework NGEN v4.0.30319_X64 service entered the stopped state.
Information 8/11/2013 1:22:12 AM Service Control Manager 7036 None The Microsoft .NET Framework NGEN v4.0.30319_X64 service entered the running state.
Information 8/11/2013 1:22:12 AM Service Control Manager 7036 None The Portable Device Enumerator Service service entered the stopped state.
Information 8/11/2013 1:22:12 AM Service Control Manager 7036 None The Microsoft .NET Framework NGEN v4.0.30319_X86 service entered the stopped state.
Information 8/11/2013 1:22:12 AM Service Control Manager 7036 None The Microsoft .NET Framework NGEN v4.0.30319_X86 service entered the running state.
Information 8/11/2013 1:22:05 AM Service Control Manager 7036 None The Skype Updater service entered the stopped state.
Information 8/11/2013 1:21:35 AM Microsoft-Windows-UserPnp 20003 (7005) Driver Management has concluded the process to add Service tunnel for Device Instance ID ROOT\*ISATAP\0003 with the following status: 0.
Information 8/11/2013 1:21:13 AM Service Control Manager 7036 None The Secunia Update Agent service entered the running state.
Information 8/11/2013 1:21:10 AM Service Control Manager 7036 None The Secunia Update Agent service entered the stopped state.
Information 8/11/2013 1:21:07 AM Microsoft-Windows-FilterManager 6 None File System Filter 'PSI' (6.0, ‎2010‎-‎09‎-‎01T00:53:14.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/11/2013 1:20:12 AM Service Control Manager 7036 None The IPsec Policy Agent service entered the running state.
Information 8/11/2013 1:20:12 AM Service Control Manager 7036 None The SSDP Discovery service entered the running state.
Information 8/11/2013 1:20:12 AM Service Control Manager 7036 None The WinHTTP Web Proxy Auto-Discovery Service service entered the running state.
Information 8/11/2013 1:20:12 AM Service Control Manager 7036 None The Diagnostic System Host service entered the running state.
Information 8/11/2013 1:20:12 AM Service Control Manager 7036 None The Portable Device Enumerator Service service entered the running state.
Information 8/11/2013 1:20:12 AM Service Control Manager 7036 None The Background Intelligent Transfer Service service entered the running state.
Information 8/11/2013 1:20:11 AM Service Control Manager 7036 None The Computer Browser service entered the running state.
Information 8/11/2013 1:20:11 AM Service Control Manager 7036 None The Diagnostic Service Host service entered the running state.
Information 8/11/2013 1:20:11 AM Service Control Manager 7036 None The Network List Service service entered the running state.
Information 8/11/2013 1:20:11 AM Service Control Manager 7036 None The Server service entered the running state.
Information 8/11/2013 1:20:08 AM Service Control Manager 7036 None The McAfee Proxy Service service entered the running state.
Information 8/11/2013 1:20:08 AM Service Control Manager 7036 None The McAfee Anti-Spam Service service entered the running state.
Information 8/11/2013 1:20:07 AM Service Control Manager 7036 None The McAfee Personal Firewall Service service entered the running state.
Information 8/11/2013 1:20:06 AM Service Control Manager 7036 None The McAfee Firewall Core Service service entered the running state.
Information 8/11/2013 1:20:05 AM Service Control Manager 7036 None The McAfee McShield service entered the running state.
Information 8/11/2013 1:20:05 AM Service Control Manager 7036 None The IP Helper service entered the running state.
Information 8/11/2013 1:20:05 AM Service Control Manager 7036 None The Bluetooth OBEX Service service entered the running state.
Information 8/11/2013 1:20:04 AM Service Control Manager 7036 None The Windows Live ID Sign-in Assistant service entered the running state.
Information 8/11/2013 1:20:04 AM Service Control Manager 7036 None The Windows Image Acquisition (WIA) service entered the running state.
Information 8/11/2013 1:20:04 AM Service Control Manager 7036 None The Windows Management Instrumentation service entered the running state.
Information 8/11/2013 1:20:04 AM Service Control Manager 7036 None The Distributed Link Tracking Client service entered the running state.
Information 8/11/2013 1:20:04 AM Service Control Manager 7036 None The Superfetch service entered the running state.
Information 8/11/2013 1:20:04 AM Service Control Manager 7036 None The Skype Updater service entered the running state.
Information 8/11/2013 1:20:03 AM Service Control Manager 7036 None The Skype C2C Service service entered the running state.
Information 8/11/2013 1:20:03 AM Service Control Manager 7036 None The SoftThinks Agent Service service entered the running state.
Information 8/11/2013 1:20:03 AM Service Control Manager 7036 None The Secunia Update Agent service entered the running state.
Information 8/11/2013 1:20:01 AM Service Control Manager 7036 None The Secunia PSI Agent service entered the running state.
Information 8/11/2013 1:20:01 AM Service Control Manager 7036 None The McAfee SiteAdvisor Service service entered the running state.
Information 8/11/2013 1:20:01 AM Microsoft-Windows-WLAN-AutoConfig 10001 None "WLAN Extensibility Module has successfully started.

Module Path: C:\Windows\System32\IWMSSvc.dll
"
Information 8/11/2013 1:20:01 AM Service Control Manager 7036 None The Function Discovery Resource Publication service entered the running state.
Information 8/11/2013 1:20:00 AM Service Control Manager 7036 None The Intel® PROSet/Wireless Registry Service service entered the running state.
Information 8/11/2013 1:20:00 AM Service Control Manager 7036 None The Apple Mobile Device service entered the running state.
Information 8/11/2013 1:20:00 AM Service Control Manager 7036 None The Network Location Awareness service entered the running state.
Information 8/11/2013 1:20:00 AM Service Control Manager 7036 None The Program Compatibility Assistant Service service entered the running state.
Information 8/11/2013 1:20:00 AM Microsoft-Windows-Application-Experience 201 None The Program Compatibility Assistant service started successfully.
Information 8/11/2013 1:19:59 AM Service Control Manager 7036 None The McAfee Validation Trust Protection Service service entered the running state.
Information 8/11/2013 1:19:59 AM Service Control Manager 7036 None The IKE and AuthIP IPsec Keying Modules service entered the running state.
Information 8/11/2013 1:19:59 AM Service Control Manager 7036 None The Diagnostic Policy Service service entered the running state.
Information 8/11/2013 1:19:59 AM Service Control Manager 7036 None The Intel® PROSet/Wireless Event Log service entered the running state.
Information 8/11/2013 1:19:59 AM Service Control Manager 7036 None The Cryptographic Services service entered the running state.
Information 8/11/2013 1:19:59 AM Service Control Manager 7036 None The Bluetooth Support Service service entered the running state.
Information 8/11/2013 1:19:59 AM Service Control Manager 7036 None The Bluetooth Device Monitor service entered the running state.
Information 8/11/2013 1:19:59 AM Service Control Manager 7036 None The Bonjour Service service entered the running state.
Information 8/11/2013 1:19:57 AM Service Control Manager 7036 None The Andrea RT Filters Service service entered the running state.
Information 8/11/2013 1:19:57 AM Service Control Manager 7036 None The Adobe Acrobat Update Service service entered the running state.
Information 8/11/2013 1:19:55 AM Service Control Manager 7036 None The Workstation service entered the running state.
Information 8/11/2013 1:19:55 AM Service Control Manager 7036 None The Windows Firewall service entered the running state.
Information 8/11/2013 1:19:54 AM Service Control Manager 7036 None The Base Filtering Engine service entered the running state.
Information 8/11/2013 1:19:54 AM Service Control Manager 7036 None The Print Spooler service entered the running state.
Information 8/11/2013 1:19:54 AM Service Control Manager 7036 None The Task Scheduler service entered the running state.
Information 8/11/2013 1:19:53 AM Service Control Manager 7036 None The Shell Hardware Detection service entered the running state.
Information 8/11/2013 1:19:53 AM Microsoft-Windows-WLAN-AutoConfig 4000 None "WLAN AutoConfig service has successfully started.
"
Information 8/11/2013 1:19:53 AM Service Control Manager 7036 None The WLAN AutoConfig service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Extensible Authentication Protocol service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The DNS Client service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The CNG Key Isolation service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The DHCP Client service entered the running state.
Information 8/11/2013 1:19:52 AM Microsoft-Windows-DHCPv6-Client 51046 Service State Event DHCPv6 client service is started
Information 8/11/2013 1:19:52 AM Microsoft-Windows-Dhcp-Client 50036 Service State Event DHCPv4 client service is started
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The TCP/IP NetBIOS Helper service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Network Store Interface Service service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Windows Driver Foundation - User-mode Driver Framework service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Security Accounts Manager service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Desktop Window Manager Session Manager service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The System Event Notification Service service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The COM+ Event System service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The User Profile Service service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Group Policy Client service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Themes service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Windows Audio service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Windows Audio Endpoint Builder service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Windows Font Cache Service service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Multimedia Class Scheduler service entered the running state.
Information 8/11/2013 1:19:52 AM Service Control Manager 7036 None The Windows Event Log service entered the running state.
Information 8/11/2013 1:19:51 AM Service Control Manager 7036 None The Remote Procedure Call (RPC) service entered the running state.
Information 8/11/2013 1:19:51 AM Service Control Manager 7036 None The RPC Endpoint Mapper service entered the running state.
Information 8/11/2013 1:19:51 AM Service Control Manager 7036 None The DCOM Server Process Launcher service entered the running state.
Information 8/11/2013 1:19:51 AM Microsoft-Windows-FilterManager 6 None File System Filter 'luafv' (6.1, ‎2009‎-‎07‎-‎13T16:26:13.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/11/2013 1:19:51 AM Service Control Manager 7036 None The Power service entered the running state.
Information 8/11/2013 1:19:51 AM Microsoft-Windows-UserPnp 20010 (7010) "One or more of the Plug and Play service's subsystems has changed state.

PlugPlay install subsystem enabled: 'true'
PlugPlay caching subsystem enabled: 'true'
"
Information 8/11/2013 1:19:51 AM Service Control Manager 7036 None The Plug and Play service entered the running state.
Information 8/11/2013 1:19:50 AM BTHUSB 18 None Windows cannot store Bluetooth authentication codes (link keys) on the local adapter. Bluetooth keyboards might not work in the system BIOS during startup.
Information 8/11/2013 1:19:13 AM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ01 has been enumerated.
_PSV = 368K
_TC1 = 1
_TC2 = 5
_TSP = 1000ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Information 8/11/2013 1:19:13 AM Microsoft-Windows-Kernel-Power 89 (86) "ACPI thermal zone ACPI\ThermalZone\TZ00 has been enumerated.
_PSV = 0K
_TC1 = 0
_TC2 = 0
_TSP = 0ms
_AC0 = 0K
_AC1 = 0K
_AC2 = 0K
_AC3 = 0K
_AC4 = 0K
_AC5 = 0K
_AC6 = 0K
_AC7 = 0K
_AC8 = 0K
_AC9 = 0K
_CRT = 373K
_HOT = 0K
_PSL - see event data."
Warning 8/11/2013 1:19:08 AM RTL8167 1 None Realtek PCIe FE Family Controller is disconnected from network.
Information 8/11/2013 1:19:08 AM Microsoft-Windows-Kernel-Processor-Power 26 (4) "Processor 3 in group 0 exposes the following:

3 idle state(s)
14 performance state(s)
8 throttle state(s)"
Information 8/11/2013 1:19:08 AM Microsoft-Windows-Kernel-Processor-Power 26 (4) "Processor 2 in group 0 exposes the following:

3 idle state(s)
14 performance state(s)
8 throttle state(s)"
Information 8/11/2013 1:19:08 AM Microsoft-Windows-Kernel-Processor-Power 26 (4) "Processor 1 in group 0 exposes the following:

3 idle state(s)
14 performance state(s)
8 throttle state(s)"
Information 8/11/2013 1:19:08 AM Microsoft-Windows-Kernel-Processor-Power 26 (4) "Processor 0 in group 0 exposes the following:

3 idle state(s)
14 performance state(s)
8 throttle state(s)"
Information 8/11/2013 1:19:08 AM NETwNs64 7036 None The \Device\NDMP7 service entered the Intel® Centrino® Wireless-N 1030 state.
Information 8/11/2013 1:19:08 AM MEIx64 2 None Intel® Management Engine Interface driver has started successfully.
Information 8/11/2013 1:18:53 AM Microsoft-Windows-FilterManager 6 None File System Filter 'mfehidk' (0.0, ‎2013‎-‎01‎-‎15T11:21:15.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/11/2013 1:18:53 AM Microsoft-Windows-FilterManager 6 None File System Filter 'FileInfo' (6.1, ‎2009‎-‎07‎-‎13T16:34:25.000000000Z) has successfully loaded and registered with Filter Manager.
Information 8/11/2013 1:18:52 AM Microsoft-Windows-Kernel-General 12 None The operating system started at system time ‎2013‎-‎08‎-‎11T08:18:52.125599300Z.
Information 8/10/2013 10:27:04 PM Microsoft-Windows-Kernel-General 13 None The operating system is shutting down at system time ‎2013‎-‎08‎-‎11T05:27:04.146473600Z.
Information 8/10/2013 10:27:00 PM Microsoft-Windows-Kernel-Power 109 (103) The kernel power manager has initiated a shutdown transition.
Information 8/11/2013 1:19:52 AM EventLog 6013 None The system uptime is 59 seconds.
Information 8/11/2013 1:19:52 AM EventLog 6005 None The Event log service was started.
Information 8/11/2013 1:19:52 AM EventLog 6009 None Microsoft ® Windows ® 6.01. 7601 Service Pack 1 Multiprocessor Free.
  • 0

#10
RKinner
Posted 12 August 2013 - 07:33 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
I wonder if it's enough to stop the service. In the search box put in services.msc then when it finds it, right click on it and Run As Admin. Then find IAStorDataMgrSvc or it might be written out as Intel IAStor Data Manager Service. and right click on it and select Properties. Change the Startup Type: to Disabled and then Apply. OK.

Reboot into regular mode and see if it stays alive.
  • 0

Advertisements

#11
ttbcs
Posted 13 August 2013 - 04:29 PM

ttbcs

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 102 posts
Started in safe mode; found and opened services.msc. I could not locate anything with IAStor in the title. I exported my services list and searched for it to no avail. I also searched for "manager" and none of the hits looked like what you described.
  • 0

#12
RKinner
Posted 13 August 2013 - 11:18 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
Copy the next 2 lines:

sc query state= all > %userprofile%\junk.txt
notepad %userprofile%\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Notepad should open. Copy and paste the text into a reply or if it is too big attach the junk.txt file on your desktop.


Get autoruns from
http://live.sysinter...om/autoruns.exe

Download Save and Run the program by right clicking and Run As Admin. File, Save, to your desktop, autoruns.arn, OK

Either zip up the file if you have the ability (7-zip works nicely) or just rename it from autoruns.arn to autoruns.txt then ATTACH it. Do not copy and paste.
  • 0

#13
ttbcs
Posted 14 August 2013 - 05:13 PM

ttbcs

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 102 posts
SERVICE_NAME: AdobeARMservice
DISPLAY_NAME: Adobe Acrobat Update Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: AdobeFlashPlayerUpdateSvc
DISPLAY_NAME: Adobe Flash Player Update Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: AeLookupSvc
DISPLAY_NAME: Application Experience
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: AERTFilters
DISPLAY_NAME: Andrea RT Filters Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: ALG
DISPLAY_NAME: Application Layer Gateway Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: AppIDSvc
DISPLAY_NAME: Application Identity
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Appinfo
DISPLAY_NAME: Application Information
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Apple Mobile Device
DISPLAY_NAME: Apple Mobile Device
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: aspnet_state
DISPLAY_NAME: ASP.NET State Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: AudioEndpointBuilder
DISPLAY_NAME: Windows Audio Endpoint Builder
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: AudioSrv
DISPLAY_NAME: Windows Audio
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: AxInstSV
DISPLAY_NAME: ActiveX Installer (AxInstSV)
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: BDESVC
DISPLAY_NAME: BitLocker Drive Encryption Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: BFE
DISPLAY_NAME: Base Filtering Engine
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: BITS
DISPLAY_NAME: Background Intelligent Transfer Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Bluetooth Device Monitor
DISPLAY_NAME: Bluetooth Device Monitor
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Bluetooth Media Service
DISPLAY_NAME: Bluetooth Media Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Bluetooth OBEX Service
DISPLAY_NAME: Bluetooth OBEX Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Bonjour Service
DISPLAY_NAME: Bonjour Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Browser
DISPLAY_NAME: Computer Browser
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: bthserv
DISPLAY_NAME: Bluetooth Support Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: CertPropSvc
DISPLAY_NAME: Certificate Propagation
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: clr_optimization_v2.0.50727_32
DISPLAY_NAME: Microsoft .NET Framework NGEN v2.0.50727_X86
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: clr_optimization_v2.0.50727_64
DISPLAY_NAME: Microsoft .NET Framework NGEN v2.0.50727_X64
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: clr_optimization_v4.0.30319_32
DISPLAY_NAME: Microsoft .NET Framework NGEN v4.0.30319_X86
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: clr_optimization_v4.0.30319_64
DISPLAY_NAME: Microsoft .NET Framework NGEN v4.0.30319_X64
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: COMSysApp
DISPLAY_NAME: COM+ System Application
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: CryptSvc
DISPLAY_NAME: Cryptographic Services
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: DcomLaunch
DISPLAY_NAME: DCOM Server Process Launcher
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: defragsvc
DISPLAY_NAME: Disk Defragmenter
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Dhcp
DISPLAY_NAME: DHCP Client
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Dnscache
DISPLAY_NAME: DNS Client
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: dot3svc
DISPLAY_NAME: Wired AutoConfig
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: DPS
DISPLAY_NAME: Diagnostic Policy Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: EapHost
DISPLAY_NAME: Extensible Authentication Protocol
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: EFS
DISPLAY_NAME: Encrypting File System (EFS)
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: ehRecvr
DISPLAY_NAME: Windows Media Center Receiver Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: ehSched
DISPLAY_NAME: Windows Media Center Scheduler Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: eventlog
DISPLAY_NAME: Windows Event Log
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: EventSystem
DISPLAY_NAME: COM+ Event System
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: EvtEng
DISPLAY_NAME: Intel® PROSet/Wireless Event Log
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Fax
DISPLAY_NAME: Fax
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: fdPHost
DISPLAY_NAME: Function Discovery Provider Host
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: FDResPub
DISPLAY_NAME: Function Discovery Resource Publication
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: FontCache
DISPLAY_NAME: Windows Font Cache Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: FontCache3.0.0.0
DISPLAY_NAME: Windows Presentation Foundation Font Cache 3.0.0.0
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: gpsvc
DISPLAY_NAME: Group Policy Client
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: gupdate
DISPLAY_NAME: Google Update Service (gupdate)
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: gupdatem
DISPLAY_NAME: Google Update Service (gupdatem)
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: gusvc
DISPLAY_NAME: Google Updater Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: hidserv
DISPLAY_NAME: Human Interface Device Access
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: hkmsvc
DISPLAY_NAME: Health Key and Certificate Management
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: HomeGroupListener
DISPLAY_NAME: HomeGroup Listener
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: HomeGroupProvider
DISPLAY_NAME: HomeGroup Provider
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: idsvc
DISPLAY_NAME: Windows CardSpace
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: IKEEXT
DISPLAY_NAME: IKE and AuthIP IPsec Keying Modules
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: IPBusEnum
DISPLAY_NAME: PnP-X IP Bus Enumerator
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: iphlpsvc
DISPLAY_NAME: IP Helper
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: iPod Service
DISPLAY_NAME: iPod Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: KeyIso
DISPLAY_NAME: CNG Key Isolation
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: KtmRm
DISPLAY_NAME: KtmRm for Distributed Transaction Coordinator
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: LanmanServer
DISPLAY_NAME: Server
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: LanmanWorkstation
DISPLAY_NAME: Workstation
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: lltdsvc
DISPLAY_NAME: Link-Layer Topology Discovery Mapper
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: lmhosts
DISPLAY_NAME: TCP/IP NetBIOS Helper
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: LMS
DISPLAY_NAME: Intel® Management and Security Application Local Management Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: McAfee SiteAdvisor Service
DISPLAY_NAME: McAfee SiteAdvisor Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: McMPFSvc
DISPLAY_NAME: McAfee Personal Firewall Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: mcmscsvc
DISPLAY_NAME: McAfee Services
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: McNaiAnn
DISPLAY_NAME: McAfee VirusScan Announcer
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: McNASvc
DISPLAY_NAME: McAfee Network Agent
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: McODS
DISPLAY_NAME: McAfee Scanner
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: McProxy
DISPLAY_NAME: McAfee Proxy Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: McShield
DISPLAY_NAME: McAfee McShield
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Mcx2Svc
DISPLAY_NAME: Media Center Extender Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: mfefire
DISPLAY_NAME: McAfee Firewall Core Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: mfevtp
DISPLAY_NAME: McAfee Validation Trust Protection Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: MMCSS
DISPLAY_NAME: Multimedia Class Scheduler
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: MozillaMaintenance
DISPLAY_NAME: Mozilla Maintenance Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: MpsSvc
DISPLAY_NAME: Windows Firewall
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: MSDTC
DISPLAY_NAME: Distributed Transaction Coordinator
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: MSiSCSI
DISPLAY_NAME: Microsoft iSCSI Initiator Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: msiserver
DISPLAY_NAME: Windows Installer
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: MSK80Service
DISPLAY_NAME: McAfee Anti-Spam Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: MyWiFiDHCPDNS
DISPLAY_NAME: Wireless PAN DHCP Server
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: napagent
DISPLAY_NAME: Network Access Protection Agent
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Netlogon
DISPLAY_NAME: Netlogon
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Netman
DISPLAY_NAME: Network Connections
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: NetMsmqActivator
DISPLAY_NAME: Net.Msmq Listener Adapter
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: NetPipeActivator
DISPLAY_NAME: Net.Pipe Listener Adapter
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: netprofm
DISPLAY_NAME: Network List Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: NetTcpActivator
DISPLAY_NAME: Net.Tcp Listener Adapter
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: NetTcpPortSharing
DISPLAY_NAME: Net.Tcp Port Sharing Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: NlaSvc
DISPLAY_NAME: Network Location Awareness
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: nsi
DISPLAY_NAME: Network Store Interface Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: odserv
DISPLAY_NAME: Microsoft Office Diagnostics Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: ose
DISPLAY_NAME: Office Source Engine
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: p2pimsvc
DISPLAY_NAME: Peer Networking Identity Manager
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: p2psvc
DISPLAY_NAME: Peer Networking Grouping
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: PcaSvc
DISPLAY_NAME: Program Compatibility Assistant Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: PerfHost
DISPLAY_NAME: Performance Counter DLL Host
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: pla
DISPLAY_NAME: Performance Logs & Alerts
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: PlugPlay
DISPLAY_NAME: Plug and Play
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(NOT_STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: PNRPAutoReg
DISPLAY_NAME: PNRP Machine Name Publication Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: PNRPsvc
DISPLAY_NAME: Peer Name Resolution Protocol
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: PolicyAgent
DISPLAY_NAME: IPsec Policy Agent
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Power
DISPLAY_NAME: Power
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(NOT_STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: ProfSvc
DISPLAY_NAME: User Profile Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: ProtectedStorage
DISPLAY_NAME: Protected Storage
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: QWAVE
DISPLAY_NAME: Quality Windows Audio Video Experience
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: RasAuto
DISPLAY_NAME: Remote Access Auto Connection Manager
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: RasMan
DISPLAY_NAME: Remote Access Connection Manager
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: RegSrvc
DISPLAY_NAME: Intel® PROSet/Wireless Registry Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: RemoteAccess
DISPLAY_NAME: Routing and Remote Access
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: RemoteRegistry
DISPLAY_NAME: Remote Registry
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: RoxMediaDB12OEM
DISPLAY_NAME: RoxMediaDB12OEM
TYPE : 110 WIN32_OWN_PROCESS (interactive)
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: RoxWatch12
DISPLAY_NAME: Roxio Hard Drive Watcher 12
TYPE : 110 WIN32_OWN_PROCESS (interactive)
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: RpcEptMapper
DISPLAY_NAME: RPC Endpoint Mapper
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: RpcLocator
DISPLAY_NAME: Remote Procedure Call (RPC) Locator
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: RpcSs
DISPLAY_NAME: Remote Procedure Call (RPC)
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SamSs
DISPLAY_NAME: Security Accounts Manager
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SCardSvr
DISPLAY_NAME: Smart Card
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Schedule
DISPLAY_NAME: Task Scheduler
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SCPolicySvc
DISPLAY_NAME: Smart Card Removal Policy
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SDRSVC
DISPLAY_NAME: Windows Backup
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: seclogon
DISPLAY_NAME: Secondary Logon
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Secunia PSI Agent
DISPLAY_NAME: Secunia PSI Agent
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Secunia Update Agent
DISPLAY_NAME: Secunia Update Agent
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SENS
DISPLAY_NAME: System Event Notification Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SensrSvc
DISPLAY_NAME: Adaptive Brightness
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SessionEnv
DISPLAY_NAME: Remote Desktop Configuration
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SftService
DISPLAY_NAME: SoftThinks Agent Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SharedAccess
DISPLAY_NAME: Internet Connection Sharing (ICS)
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: ShellHWDetection
DISPLAY_NAME: Shell Hardware Detection
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Skype C2C Service
DISPLAY_NAME: Skype C2C Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SkypeUpdate
DISPLAY_NAME: Skype Updater
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SNMPTRAP
DISPLAY_NAME: SNMP Trap
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Spooler
DISPLAY_NAME: Print Spooler
TYPE : 110 WIN32_OWN_PROCESS (interactive)
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: sppsvc
DISPLAY_NAME: Software Protection
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: sppuinotify
DISPLAY_NAME: SPP Notification Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SSDPSRV
DISPLAY_NAME: SSDP Discovery
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SstpSvc
DISPLAY_NAME: Secure Socket Tunneling Protocol Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: stisvc
DISPLAY_NAME: Windows Image Acquisition (WIA)
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: stllssvr
DISPLAY_NAME: stllssvr
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: swprv
DISPLAY_NAME: Microsoft Software Shadow Copy Provider
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: SysMain
DISPLAY_NAME: Superfetch
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: TabletInputService
DISPLAY_NAME: Tablet PC Input Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: TapiSrv
DISPLAY_NAME: Telephony
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: TBS
DISPLAY_NAME: TPM Base Services
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: TermService
DISPLAY_NAME: Remote Desktop Services
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Themes
DISPLAY_NAME: Themes
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: THREADORDER
DISPLAY_NAME: Thread Ordering Server
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: TrkWks
DISPLAY_NAME: Distributed Link Tracking Client
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: TrustedInstaller
DISPLAY_NAME: Windows Modules Installer
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: UI0Detect
DISPLAY_NAME: Interactive Services Detection
TYPE : 110 WIN32_OWN_PROCESS (interactive)
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: UNS
DISPLAY_NAME: Intel® Management and Security Application User Notification Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: upnphost
DISPLAY_NAME: UPnP Device Host
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: UxSms
DISPLAY_NAME: Desktop Window Manager Session Manager
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: VaultSvc
DISPLAY_NAME: Credential Manager
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: vds
DISPLAY_NAME: Virtual Disk
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: VSS
DISPLAY_NAME: Volume Shadow Copy
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: W32Time
DISPLAY_NAME: Windows Time
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WatAdminSvc
DISPLAY_NAME: Windows Activation Technologies Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: wbengine
DISPLAY_NAME: Block Level Backup Engine Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WbioSrvc
DISPLAY_NAME: Windows Biometric Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: wcncsvc
DISPLAY_NAME: Windows Connect Now - Config Registrar
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WcsPlugInService
DISPLAY_NAME: Windows Color System
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WdiServiceHost
DISPLAY_NAME: Diagnostic Service Host
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WdiSystemHost
DISPLAY_NAME: Diagnostic System Host
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WebClient
DISPLAY_NAME: WebClient
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Wecsvc
DISPLAY_NAME: Windows Event Collector
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: wercplsupport
DISPLAY_NAME: Problem Reports and Solutions Control Panel Support
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WerSvc
DISPLAY_NAME: Windows Error Reporting Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WinDefend
DISPLAY_NAME: Windows Defender
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WinHttpAutoProxySvc
DISPLAY_NAME: WinHTTP Web Proxy Auto-Discovery Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Winmgmt
DISPLAY_NAME: Windows Management Instrumentation
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(STOPPABLE, PAUSABLE, ACCEPTS_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WinRM
DISPLAY_NAME: Windows Remote Management (WS-Management)
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: Wlansvc
DISPLAY_NAME: WLAN AutoConfig
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1068 (0x42c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: wlcrasvc
DISPLAY_NAME: Windows Live Mesh remote connections service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: wlidsvc
DISPLAY_NAME: Windows Live ID Sign-in Assistant
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: wmiApSrv
DISPLAY_NAME: WMI Performance Adapter
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WMPNetworkSvc
DISPLAY_NAME: Windows Media Player Network Sharing Service
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WPCSvc
DISPLAY_NAME: Parental Controls
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WPDBusEnum
DISPLAY_NAME: Portable Device Enumerator Service
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: wscsvc
DISPLAY_NAME: Security Center
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WSearch
DISPLAY_NAME: Windows Search
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: wuauserv
DISPLAY_NAME: Windows Update
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1084 (0x43c)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: wudfsvc
DISPLAY_NAME: Windows Driver Foundation - User-mode Driver Framework
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 4 RUNNING
(NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

SERVICE_NAME: WwanSvc
DISPLAY_NAME: WWAN AutoConfig
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 1077 (0x435)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0

Attached Files


  • 0

#14
RKinner
Posted 14 August 2013 - 06:13 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
Autoruns sees the file in several places but not in Services so that was a wild goose chase.

Run Autoruns again and under Logon you will see 

IAStorIcon			File not found: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe

You can uncheck the box in front of that line.

There are several entries for iastor under Drivers. I don't think I want to uncheck them in Autoruns. Might not want to boot afterward. Best to go into Device Manager (Right click on My Computer and select Manage (Yes) then Device Manager. View, Show Hidden Devices. Find iastor, iastorA, iastorF, iastorV and right click on each and delete or uninstall. (You may need to click on the arrow in front of the hard drive or look in non-Plug and Play to find the drivers. Then reboot into regular mode and see what happens.
  • 0

#15
ttbcs
Posted 15 August 2013 - 05:12 PM

ttbcs

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 102 posts
I found the IAStorIcon and unchecked it. I could not find listings for iastor in the device manager.

While going through the list I noticed the Security Processor Loader Driver and McAfee Inc. mfehidk had exclamation marks on them.

Edited by ttbcs, 15 August 2013 - 05:16 PM.

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP