Summary Operating System Windows 10 Home 64-bit CPU AMD E-450 Zacate 40nm Technology RAM 2.00GB DDR3 @ 665MHz (9-9-9-24) Motherboard PEGATRON CORPORATION 2AD1 (CPU 1) 45 °C Graphics Generic Non-PnP Monitor (1280x1024@60Hz) 384MB ATI AMD Radeon HD 6320 Graphics (HP) 64 °C Storage 465GB SAMSUNG HD502HJ SATA Disk Device (SATA) 36 °C Optical Drives hp DVD A DH16ABSH SATA CdRom Device Audio Realtek High Definition Audio Operating System Windows 10 Home 64-bit Computer type: Tablet Installation Date: 9/25/2016 5:28:33 AM Serial Number: Windows Security Center User Account Control (UAC) Enabled Notify level 2 - Default Firewall Enabled Windows Update AutoUpdate Notify prior to download Windows Defender Windows Defender Disabled Antivirus Avast Antivirus Antivirus Enabled Virus Signature Database Up to date Windows Defender Antivirus Disabled Virus Signature Database Up to date .NET Frameworks installed v4.6 Full v4.6 Client v3.5 SP1 v3.0 SP2 v2.0 SP2 Internet Explorer Version 11.953.14393.0 PowerShell Version 5.1.14393.0 Environment Variables USERPROFILE C:\Users\MAX SystemRoot C:\WINDOWS User Variables OneDrive C:\Users\MAX\OneDrive Path C:\Users\MAX\AppData\Local\Microsoft\WindowsApps TEMP C:\Users\MAX\AppData\Local\Temp TMP C:\Users\MAX\AppData\Local\Temp Machine Variables AMDAPPSDKROOT c:\Program Files (x86)\AMD APP\ ComSpec C:\WINDOWS\system32\cmd.exe FP_NO_HOST_CHECK NO FPPUILang en-US NUMBER_OF_PROCESSORS 2 OnlineServices Online Services OOBEUILang en-US OS Windows_NT Path C:\Program Files\Common Files\Microsoft Shared\Windows Live C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live c:\Program Files (x86)\AMD APP\bin\x86_64 c:\Program Files (x86)\AMD APP\bin\x86 C:\WINDOWS\system32 C:\WINDOWS C:\WINDOWS\System32\Wbem C:\WINDOWS\System32\WindowsPowerShell\v1.0\ c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static c:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\ c:\Program Files (x86)\Common Files\Roxio Shared\12.0\DLLShared\ C:\Program Files (x86)\Windows Live\Shared C:\Program Files (x86)\QuickTime\QTSystem\ C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static C:\Program Files (x86)\Skype\Phone\ PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC PCBRAND Presario Platform HPD PROCESSOR_ARCHITECTURE AMD64 PROCESSOR_IDENTIFIER AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD PROCESSOR_LEVEL 20 PROCESSOR_REVISION 0200 PSModulePath C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\ TEMP C:\WINDOWS\TEMP TMP C:\WINDOWS\TEMP USERNAME SYSTEM windir C:\WINDOWS windows_tracing_flags 3 windows_tracing_logfile C:\BVTBin\Tests\installpackage\csilogfile.log Power Profile Active power scheme Balanced Hibernation Enabled Turn Off Monitor after: (On AC Power) 60 min Turn Off Hard Disk after: (On AC Power) 1000 min Suspend after: (On AC Power) 300 min Screen saver Disabled Uptime Current Session Current Time 4/7/2017 3:21:07 PM Current Uptime 3,245 sec (0 d, 00 h, 54 m, 05 s) Last Boot Time 4/7/2017 2:27:02 PM Services Running Adobe Acrobat Update Service Running AMD External Events Utility Running AMD FUEL Service Running Application Host Helper Service Running Application Information Running aswbIDSAgent Running Avast Antivirus Running Background Intelligent Transfer Service Running Background Tasks Infrastructure Service Running Base Filtering Engine Running CDPUserSvc_3221d Running CLCV0 Running CNG Key Isolation Running COM+ Event System Running Computer Browser Running Connected Devices Platform Service Running Connected User Experiences and Telemetry Running Contact Data_3221d Running CoreMessaging Running Credential Manager Running Cryptographic Services Running DAZ Content Management Service Running DbxSvc Running DCOM Server Process Launcher Running Delivery Optimization Running Device Association Service Running DHCP Client Running Diagnostic Policy Service Running Diagnostic Service Host Running Diagnostic System Host Running Distributed Link Tracking Client Running DNS Client Running Geolocation Service Running HP Client Services Running HP Support Assistant Service Running Human Interface Device Service Running IP Helper Running IPsec Policy Agent Running Local Session Manager Running Message Queuing Running Microsoft Windows SMS Router Service. Running Net.Msmq Listener Adapter Running Net.Pipe Listener Adapter Running Network Connection Broker Running Network Connections Running Network List Service Running Network Location Awareness Running Network Setup Service Running Network Store Interface Service Running PDF Document Manager Running Peer Name Resolution Protocol Running Peer Networking Identity Manager Running Plug and Play Running Power Running Print Spooler Running Program Compatibility Assistant Service Running PuranDefrag Running Realtek Audio Service Running Remote Procedure Call (RPC) Running RoxioNow Service Running RPC Endpoint Mapper Running Security Accounts Manager Running Security Center Running Server Running Shell Hardware Detection Running SSDP Discovery Running State Repository Service Running Storage Service Running Superfetch Running Sync Host_3221d Running System Event Notification Service Running System Events Broker Running TabletServicePen Running Task Scheduler Running TCP/IP NetBIOS Helper Running Themes Running Tile Data model server Running Time Broker Running Touch Keyboard and Handwriting Panel Service Running User Data Access_3221d Running User Data Storage_3221d Running User Manager Running User Profile Service Running Windows Audio Running Windows Audio Endpoint Builder Running Windows Connection Manager Running Windows Driver Foundation - User-mode Driver Framework Running Windows Event Log Running Windows Firewall Running Windows Font Cache Service Running Windows License Manager Service Running Windows Management Instrumentation Running Windows Process Activation Service Running Windows Push Notifications System Service Running Windows Search Running Windows Update Running WinHTTP Web Proxy Auto-Discovery Service Running WLAN AutoConfig Running Workstation Running World Wide Web Publishing Service Stopped ActiveX Installer (AxInstSV) Stopped Adobe Flash Player Update Service Stopped Adobe SwitchBoard Stopped AllJoyn Router Service Stopped App Readiness Stopped Application Identity Stopped Application Layer Gateway Service Stopped AppX Deployment Service (AppXSVC) Stopped ASP.NET State Service Stopped Auto Time Zone Updater Stopped BitLocker Drive Encryption Service Stopped Block Level Backup Engine Service Stopped Bluetooth Handsfree Service Stopped Bluetooth Support Service Stopped Certificate Propagation Stopped Client License Service (ClipSVC) Stopped COM+ System Application Stopped Data Sharing Service Stopped DataCollectionPublishingService Stopped Device Install Service Stopped Device Management Enrollment Service Stopped Device Setup Manager Stopped DevQuery Background Discovery Broker Stopped Distributed Transaction Coordinator Stopped dmwappushsvc Stopped Downloaded Maps Manager Stopped Dropbox Update Service (dbupdate) Stopped Dropbox Update Service (dbupdatem) Stopped Embedded Mode Stopped Encrypting File System (EFS) Stopped Enterprise App Management Service Stopped Extensible Authentication Protocol Stopped Fax Stopped File History Service Stopped Function Discovery Provider Host Stopped Function Discovery Resource Publication Stopped GamesAppIntegrationService Stopped GamesAppService Stopped Google Update Service (gupdate) Stopped Google Update Service (gupdatem) Stopped Group Policy Client Stopped HomeGroup Listener Stopped HomeGroup Provider Stopped HP Software Framework Service Stopped HV Host Service Stopped Hyper-V Data Exchange Service Stopped Hyper-V Guest Service Interface Stopped Hyper-V Guest Shutdown Service Stopped Hyper-V Heartbeat Service Stopped Hyper-V PowerShell Direct Service Stopped Hyper-V Remote Desktop Virtualization Service Stopped Hyper-V Time Synchronization Service Stopped Hyper-V Volume Shadow Copy Requestor Stopped IKE and AuthIP IPsec Keying Modules Stopped Infrared monitor service Stopped Interactive Services Detection Stopped Internet Connection Sharing (ICS) Stopped KtmRm for Distributed Transaction Coordinator Stopped Link-Layer Topology Discovery Mapper Stopped lxeaCATSCustConnectService Stopped MessagingService_3221d Stopped Microsoft Diagnostics Hub Standard Collector Service Stopped Microsoft Account Sign-in Assistant Stopped Microsoft iSCSI Initiator Service Stopped Microsoft Passport Stopped Microsoft Passport Container Stopped Microsoft SharePoint Workspace Audit Service Stopped Microsoft Software Shadow Copy Provider Stopped Microsoft Storage Spaces SMP Stopped Mozilla Maintenance Service Stopped Net.Tcp Listener Adapter Stopped Net.Tcp Port Sharing Service Stopped Netlogon Stopped Network Connected Devices Auto-Setup Stopped Network Connectivity Assistant Stopped Office Source Engine Stopped Office Software Protection Platform Stopped Optimize drives Stopped Peer Networking Grouping Stopped Performance Counter DLL Host Stopped Performance Logs & Alerts Stopped Phone Service Stopped Plays.tv Update Service Stopped PNRP Machine Name Publication Service Stopped Portable Device Enumerator Service Stopped Printer Extensions and Notifications Stopped Problem Reports and Solutions Control Panel Support Stopped Quality Windows Audio Video Experience Stopped Radio Management Service Stopped Remote Access Auto Connection Manager Stopped Remote Access Connection Manager Stopped Remote Desktop Configuration Stopped Remote Desktop Services Stopped Remote Desktop Services UserMode Port Redirector Stopped Remote Procedure Call (RPC) Locator Stopped Remote Registry Stopped Retail Demo Service Stopped Routing and Remote Access Stopped Secondary Logon Stopped Secure Socket Tunneling Protocol Service Stopped Sensor Data Service Stopped Sensor Monitoring Service Stopped Sensor Service Stopped Shared PC Account Manager Stopped Skype Updater Stopped Smart Card Stopped Smart Card Device Enumeration Service Stopped Smart Card Removal Policy Stopped SNMP Trap Stopped Software Protection Stopped Spot Verifier Stopped Still Image Acquisition Events Stopped Storage Tiers Management Stopped Telephony Stopped Update Orchestrator Service for Windows Update Stopped UPnP Device Host Stopped Virtual Disk Stopped Volume Shadow Copy Stopped W3C Logging Service Stopped WalletService Stopped WebClient Stopped Windows Backup Stopped Windows Biometric Service Stopped Windows Camera Frame Server Stopped Windows Connect Now - Config Registrar Stopped Windows Defender Network Inspection Service Stopped Windows Defender Service Stopped Windows Encryption Provider Host Service Stopped Windows Error Reporting Service Stopped Windows Event Collector Stopped Windows Image Acquisition (WIA) Stopped Windows Insider Service Stopped Windows Installer Stopped Windows Media Player Network Sharing Service Stopped Windows Mobile Hotspot Service Stopped Windows Modules Installer Stopped Windows Presentation Foundation Font Cache 3.0.0.0 Stopped Windows Push Notifications User Service_3221d Stopped Windows Remote Management (WS-Management) Stopped Windows Time Stopped Wired AutoConfig Stopped WMI Performance Adapter Stopped Work Folders Stopped WWAN AutoConfig Stopped Xbox Live Auth Manager Stopped Xbox Live Game Save Stopped Xbox Live Networking Service TimeZone TimeZone GMT -5:00 Hours Language English (United States) Location United States Format English (United States) Currency $ Date Format M/d/yyyy Time Format h:mm:ss tt Scheduler 4/7/2017 3:56 PM; GoogleUpdateTaskMachineUA 4/7/2017 4:00 PM; Adobe Flash Player Updater 4/7/2017 4:14 PM; DropboxUpdateTaskMachineUA 4/7/2017 6:00 PM; Adobe Acrobat Update Task 4/7/2017 6:56 PM; GoogleUpdateTaskMachineCore 4/7/2017 11:14 PM; DropboxUpdateTaskMachineCore 4/8/2017 3:03 PM; SafeZone scheduled Autoupdate 1458677913 4/8/2017 5:37 PM; OneDrive Standalone Update Task v2 4/8/2017 8:19 PM; OneDrive Standalone Update Task 4/10/2017 8:26 AM; HPCeeScheduleForMAX 4/21/2017 7:57 PM; HPCeeScheduleForMAX-HP$ CCleanerSkipUAC Hotfixes Installed 3/29/2017 Update for Microsoft Excel 2010 (KB3191855) 32-Bit Edition Microsoft has released an update for Microsoft Excel 2010 32-Bit Edition. This update provides the latest fixes to Microsoft Excel 2010 32-Bit Edition. Additionally, this update contains stability and performance improvements. 3/16/2017 Update for Windows 10 Version 1607 for x64-based Systems (KB3150513) Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer. 3/15/2017 Security Update for Microsoft Excel 2010 (KB3178690) 32-Bit Edition A security vulnerability exists in Microsoft Excel 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 3/15/2017 Security Update for Microsoft Office 2010 (KB3178688) 32-Bit Edition A security vulnerability exists in Microsoft Office 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 3/15/2017 Security Update for Microsoft Word 2010 (KB3178687) 32-Bit Edition A security vulnerability exists in Microsoft Word 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 3/15/2017 Windows Malicious Software Removal Tool for Windows 8, 8.1, 10 and Windows Server 2012, 2012 R2, 2016 x64 Edition - March 2017 (KB890830) After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you start your computer. A new version of the tool will be offered every month. If you want to manually run the tool on your computer, you can download a copy from the Microsoft Download Center, or you can run an online version from microsoft.com. This tool is not a replacement for an antivirus product. To help protect your computer, you should use an antivirus product. 3/15/2017 Update for Windows 10 Version 1607 for x64-based Systems (KB4013418) Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer. 3/15/2017 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB4013429) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 3/15/2017 Security Update for Adobe Flash Player for Windows 10 Version 1607 (for x64-based Systems) (KB4014329) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 3/15/2017 Security Update for Microsoft Silverlight (KB4013867) This security update to Silverlight includes fixes outlined in KB 4013867. This update is backward compatible with web applications built using previous versions of Silverlight. 2/23/2017 Windows Malicious Software Removal Tool for Windows 8, 8.1, 10 and Windows Server 2012, 2012 R2, 2016 x64 Edition - February 2017 (KB890830) After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you start your computer. A new version of the tool will be offered every month. If you want to manually run the tool on your computer, you can download a copy from the Microsoft Download Center, or you can run an online version from microsoft.com. This tool is not a replacement for an antivirus product. To help protect your computer, you should use an antivirus product. 2/22/2017 Security Update for Adobe Flash Player for Windows 10 Version 1607 (for x64-based Systems) (KB4010250) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 1/25/2017 Update for Windows 10 Version 1607 for x64-based Systems (KB3211320) Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer. 1/10/2017 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB3213986) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 1/10/2017 Windows Malicious Software Removal Tool for Windows 8, 8.1, 10 and Windows Server 2012, 2012 R2, 2016 x64 Edition - January 2017 (KB890830) After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you start your computer. A new version of the tool will be offered every month. If you want to manually run the tool on your computer, you can download a copy from the Microsoft Download Center, or you can run an online version from microsoft.com. This tool is not a replacement for an antivirus product. To help protect your computer, you should use an antivirus product. 1/10/2017 Security Update for Adobe Flash Player for Windows 10 Version 1607 (for x64-based Systems) (KB3214628) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 12/13/2016 Security Update for Microsoft Excel 2010 (KB3128037) 32-Bit Edition A security vulnerability exists in Microsoft Excel 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 12/13/2016 Security Update for Adobe Flash Player for Windows 10 Version 1607 (for x64-based Systems) (KB3209498) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 12/13/2016 Security Update for Microsoft Office 2010 (KB3118380) 32-Bit Edition A security vulnerability exists in Microsoft Office 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 12/13/2016 Security Update for Microsoft Publisher 2010 (KB3114395) 32-Bit Edition A security vulnerability exists in Microsoft Publisher 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 12/13/2016 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB3206632) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 12/13/2016 Security Update for Microsoft Word 2010 (KB3128034) 32-Bit Edition A security vulnerability exists in Microsoft Word 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 12/13/2016 Windows Malicious Software Removal Tool for Windows 8, 8.1, 10 and Windows Server 2012, 2012 R2, 2016 x64 Edition - December 2016 (KB890830) After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you start your computer. A new version of the tool will be offered every month. If you want to manually run the tool on your computer, you can download a copy from the Microsoft Download Center, or you can run an online version from microsoft.com. This tool is not a replacement for an antivirus product. To help protect your computer, you should use an antivirus product. 12/13/2016 Security Update for Microsoft Office 2010 (KB2889841) 32-Bit Edition A security vulnerability exists in Microsoft Office 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 12/10/2016 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB3201845) Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer. 11/9/2016 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB3200970) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 11/9/2016 Security Update for Microsoft Excel 2010 (KB3118390) 32-Bit Edition A security vulnerability exists in Microsoft Excel 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 11/9/2016 Security Update for Adobe Flash Player for Windows 10 Version 1607 (for x64-based Systems) (KB3202790) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 11/9/2016 Security Update for Microsoft Office 2010 (KB3115120) 32-Bit Edition A security vulnerability exists in Microsoft Office 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 11/9/2016 Windows Malicious Software Removal Tool for Windows 8, 8.1, 10 and Windows Server 2012, 2012 R2, 2016 x64 Edition - November 2016 (KB890830) After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you start your computer. A new version of the tool will be offered every month. If you want to manually run the tool on your computer, you can download a copy from the Microsoft Download Center, or you can run an online version from microsoft.com. This tool is not a replacement for an antivirus product. To help protect your computer, you should use an antivirus product. 11/9/2016 Security Update for Microsoft PowerPoint 2010 (KB3118378) 32-Bit Edition A security vulnerability exists in Microsoft PowerPoint 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 11/9/2016 Security Update for Microsoft Word 2010 (KB3127953) 32-Bit Edition A security vulnerability exists in Microsoft Word 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 10/28/2016 Security Update for Adobe Flash Player for Windows 10 Version 1607 (for x64-based Systems) (KB3201860) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 10/28/2016 Update for Windows 10 Version 1607 for x64-based Systems (KB3199986) Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer. 10/28/2016 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB3197954) Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer. 10/18/2016 Update for Windows 10 Version 1607 for x64-based Systems (KB3199209) Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer. 10/11/2016 Windows Malicious Software Removal Tool for Windows 8, 8.1, 10 and Windows Server 2012, 2012 R2 x64 Edition - October 2016 (KB890830) After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you start your computer. A new version of the tool will be offered every month. If you want to manually run the tool on your computer, you can download a copy from the Microsoft Download Center, or you can run an online version from microsoft.com. This tool is not a replacement for an antivirus product. To help protect your computer, you should use an antivirus product. 10/11/2016 Security Update for Microsoft Word 2010 (KB3118312) 32-Bit Edition A security vulnerability exists in Microsoft Word 2010 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. 10/11/2016 Security Update for Microsoft Silverlight (KB3193713) This security update to Silverlight includes fixes outlined in KB 3193713. This update is backward compatible with web applications built using previous versions of Silverlight. 10/11/2016 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB3194798) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 10/11/2016 Security Update for Adobe Flash Player for Windows 10 Version 1607 (for x64-based Systems) (KB3194343) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 10/7/2016 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB3194496) Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer. 9/25/2016 Update for Windows 10 Version 1607 for x64-based Systems (KB3176936) Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer. 9/25/2016 Security Update for Adobe Flash Player for Windows 10 Version 1607 for x64-based Systems (KB3188128) A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article. After you install this update, you may have to restart your system. 9/25/2016 Feature update to Windows 10, version 1607 Install the anniversary version of Windows. 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 12/30/1899 Not Installed 3/18/2017 Definition Update for Windows Defender - KB2267602 (Definition 1.237.1445.0) Installation Status Canceled Install this update to revise the definition files that are used to detect viruses, spyware, and other potentially unwanted software. Once you have installed this item, it cannot be removed. System Folders Application Data C:\ProgramData Cookies C:\Users\MAX\AppData\Local\Microsoft\Windows\INetCookies Desktop C:\Users\MAX\Desktop Documents C:\Users\Public\Documents Fonts C:\WINDOWS\Fonts Global Favorites C:\Users\MAX\Favorites Internet History C:\Users\MAX\AppData\Local\Microsoft\Windows\History Local Application Data C:\Users\MAX\AppData\Local Music C:\Users\Public\Music Path for burning CD C:\Users\MAX\AppData\Local\Microsoft\Windows\Burn\Burn Physical Desktop C:\Users\MAX\Desktop Pictures C:\Users\Public\Pictures Program Files C:\Program Files Public Desktop C:\Users\Public\Desktop Start Menu C:\ProgramData\Microsoft\Windows\Start Menu Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Templates C:\ProgramData\Microsoft\Windows\Templates Temporary Internet Files C:\Users\MAX\AppData\Local\Microsoft\Windows\INetCache User Favorites C:\Users\MAX\Favorites Videos C:\Users\Public\Videos Windows Directory C:\WINDOWS Windows/System C:\WINDOWS\system32 Process List armsvc.exe Process ID 2232 User SYSTEM Domain NT AUTHORITY Path C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe Memory Usage 5.48 MB Peak Memory Usage 6.53 MB aswidsagenta.exe Process ID 4492 User SYSTEM Domain NT AUTHORITY Path C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe Memory Usage 31 MB Peak Memory Usage 38 MB atieclxx.exe Process ID 1116 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\atieclxx.exe Memory Usage 7.54 MB Peak Memory Usage 9.56 MB atiesrxx.exe Process ID 1076 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\atiesrxx.exe Memory Usage 4.13 MB Peak Memory Usage 5.48 MB audiodg.exe Process ID 8208 User LOCAL SERVICE Domain NT AUTHORITY Path C:\Windows\System32\audiodg.exe Memory Usage 14 MB Peak Memory Usage 20 MB AvastSvc.exe Process ID 1624 User SYSTEM Domain NT AUTHORITY Path C:\Program Files\AVAST Software\Avast\AvastSvc.exe Memory Usage 81 MB Peak Memory Usage 567 MB AvastUI.exe Process ID 5772 User MAX Domain MAX-HP Path C:\Program Files\AVAST Software\Avast\AvastUI.exe Memory Usage 23 MB Peak Memory Usage 37 MB backgroundTaskHost.exe Process ID 892 User MAX Domain MAX-HP Path C:\Windows\System32\backgroundTaskHost.exe Memory Usage 1.35 MB Peak Memory Usage 16 MB CCC.exe Process ID 6248 User MAX Domain MAX-HP Path C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe Memory Usage 16 MB Peak Memory Usage 115 MB ContentManagementServer.exe Process ID 2308 User SYSTEM Domain NT AUTHORITY Path C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe Memory Usage 4.63 MB Peak Memory Usage 45 MB csrss.exe Process ID 504 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\csrss.exe Memory Usage 2.71 MB Peak Memory Usage 4.65 MB csrss.exe Process ID 616 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\csrss.exe Memory Usage 5.21 MB Peak Memory Usage 9.05 MB dasHost.exe Process ID 2420 User LOCAL SERVICE Domain NT AUTHORITY Path C:\Windows\System32\dasHost.exe Memory Usage 5.30 MB Peak Memory Usage 7.93 MB DbxSvc.exe Process ID 7392 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\DbxSvc.exe Memory Usage 5.20 MB Peak Memory Usage 6.39 MB dllhost.exe Process ID 10092 User MAX Domain MAX-HP Path C:\Windows\System32\dllhost.exe Memory Usage 8.29 MB Peak Memory Usage 11 MB DropboxUpdate.exe Process ID 2604 User SYSTEM Domain NT AUTHORITY Path C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Memory Usage 84 KB Peak Memory Usage 9.05 MB dwm.exe Process ID 952 User DWM-1 Domain Window Manager Path C:\Windows\System32\dwm.exe Memory Usage 28 MB Peak Memory Usage 29 MB explorer.exe Process ID 752 User MAX Domain MAX-HP Path C:\Windows\explorer.exe Memory Usage 75 MB Peak Memory Usage 115 MB firefox.exe Process ID 7076 User MAX Domain MAX-HP Path C:\Program Files (x86)\Mozilla Firefox\firefox.exe Memory Usage 135 MB Peak Memory Usage 200 MB firefox.exe Process ID 4328 User MAX Domain MAX-HP Path C:\Program Files (x86)\Mozilla Firefox\firefox.exe Memory Usage 173 MB Peak Memory Usage 366 MB FlashPlayerPlugin_25_0_0_127.exe Process ID 7896 User MAX Domain MAX-HP Path C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_127.exe Memory Usage 62 MB Peak Memory Usage 94 MB FlashPlayerPlugin_25_0_0_127.exe Process ID 4608 User MAX Domain MAX-HP Path C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_127.exe Memory Usage 13 MB Peak Memory Usage 13 MB fontdrvhost.exe Process ID 1632 Path C:\Windows\System32\fontdrvhost.exe Memory Usage 2.77 MB Peak Memory Usage 2.89 MB Fuel.Service.exe Process ID 2276 User SYSTEM Domain NT AUTHORITY Path C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Memory Usage 5.83 MB Peak Memory Usage 8.76 MB GoogleCrashHandler.exe Process ID 4136 User SYSTEM Domain NT AUTHORITY Path C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe Memory Usage 112 KB Peak Memory Usage 6.26 MB GoogleCrashHandler64.exe Process ID 820 User SYSTEM Domain NT AUTHORITY Path C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe Memory Usage 148 KB Peak Memory Usage 5.65 MB HPClientServices.exe Process ID 2256 User SYSTEM Domain NT AUTHORITY Path C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe Memory Usage 7.10 MB Peak Memory Usage 9.13 MB HPSA_Service.exe Process ID 6660 User SYSTEM Domain NT AUTHORITY Path C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe Memory Usage 19 MB Peak Memory Usage 22 MB hpsysdrv.exe Process ID 4500 User MAX Domain MAX-HP Path C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe Memory Usage 4.58 MB Peak Memory Usage 5.29 MB hpwuschd2.exe Process ID 5840 User MAX Domain MAX-HP Path C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe Memory Usage 5.39 MB Peak Memory Usage 6.30 MB InputPersonalization.exe Process ID 5740 User MAX Domain MAX-HP Path C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe Memory Usage 308 KB Peak Memory Usage 9.29 MB ipoint.exe Process ID 5364 User MAX Domain MAX-HP Path C:\Program Files\Microsoft Device Center\ipoint.exe Memory Usage 13 MB Peak Memory Usage 15 MB itype.exe Process ID 3656 User MAX Domain MAX-HP Path C:\Program Files\Microsoft Device Center\itype.exe Memory Usage 14 MB Peak Memory Usage 16 MB lsass.exe Process ID 740 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\lsass.exe Memory Usage 9.08 MB Peak Memory Usage 13 MB Memory Compression Process ID 2692 User SYSTEM Domain NT AUTHORITY Memory Usage 36 MB Peak Memory Usage 142 MB MOM.exe Process ID 5796 User MAX Domain MAX-HP Path C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe Memory Usage 6.60 MB Peak Memory Usage 29 MB mqsvc.exe Process ID 2400 User NETWORK SERVICE Domain NT AUTHORITY Path C:\Windows\System32\mqsvc.exe Memory Usage 9.12 MB Peak Memory Usage 13 MB notepad.exe Process ID 8920 User MAX Domain MAX-HP Path C:\Windows\System32\notepad.exe Memory Usage 15 MB Peak Memory Usage 16 MB notepad.exe Process ID 984 User MAX Domain MAX-HP Path C:\Windows\System32\notepad.exe Memory Usage 15 MB Peak Memory Usage 16 MB OneDrive.exe Process ID 5852 User MAX Domain MAX-HP Path C:\Users\MAX\AppData\Local\Microsoft\OneDrive\OneDrive.exe Memory Usage 22 MB Peak Memory Usage 26 MB pdfsvc.exe Process ID 2408 User SYSTEM Domain NT AUTHORITY Path C:\Program Files (x86)\PDF Complete\pdfsvc.exe Memory Usage 7.74 MB Peak Memory Usage 9.67 MB Pen_Tablet.exe Process ID 3920 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\Pen_Tablet.exe Memory Usage 8.67 MB Peak Memory Usage 18 MB Pen_Tablet.exe Process ID 2512 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\Pen_Tablet.exe Memory Usage 5.06 MB Peak Memory Usage 6.50 MB Pen_TabletUser.exe Process ID 3888 User MAX Domain MAX-HP Path C:\Windows\System32\WTablet\Pen_TabletUser.exe Memory Usage 5.38 MB Peak Memory Usage 6.36 MB plugin-container.exe Process ID 7852 User MAX Domain MAX-HP Path C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe Memory Usage 21 MB Peak Memory Usage 23 MB PuranDefragS.exe Process ID 2576 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\PuranDefragS.exe Memory Usage 2.48 MB Peak Memory Usage 3.05 MB RAVBg64.exe Process ID 1428 User SYSTEM Domain NT AUTHORITY Path C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe Memory Usage 9.48 MB Peak Memory Usage 14 MB RAVCpl64.exe Process ID 5812 User MAX Domain MAX-HP Path C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe Memory Usage 10 MB Peak Memory Usage 14 MB RNowSvc.exe Process ID 2588 User SYSTEM Domain NT AUTHORITY Path C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe Memory Usage 4.54 MB Peak Memory Usage 6.40 MB RtkAudioService64.exe Process ID 1404 User SYSTEM Domain NT AUTHORITY Path C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe Memory Usage 6.05 MB Peak Memory Usage 7.53 MB RuntimeBroker.exe Process ID 3648 User MAX Domain MAX-HP Path C:\Windows\System32\RuntimeBroker.exe Memory Usage 36 MB Peak Memory Usage 51 MB SearchFilterHost.exe Process ID 7748 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\SearchFilterHost.exe Memory Usage 6.19 MB Peak Memory Usage 10 MB SearchIndexer.exe Process ID 4580 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\SearchIndexer.exe Memory Usage 17 MB Peak Memory Usage 28 MB SearchProtocolHost.exe Process ID 7800 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\SearchProtocolHost.exe Memory Usage 6.45 MB Peak Memory Usage 15 MB SearchUI.exe Process ID 5736 User MAX Domain MAX-HP Path C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe Memory Usage 49 MB Peak Memory Usage 167 MB services.exe Process ID 724 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\services.exe Memory Usage 6.83 MB Peak Memory Usage 8.55 MB ShellExperienceHost.exe Process ID 4716 User MAX Domain MAX-HP Path C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe Memory Usage 48 MB Peak Memory Usage 69 MB sihost.exe Process ID 3660 User MAX Domain MAX-HP Path C:\Windows\System32\sihost.exe Memory Usage 17 MB Peak Memory Usage 19 MB SkypeHost.exe Process ID 7960 User MAX Domain MAX-HP Path C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe Memory Usage 11 MB Peak Memory Usage 14 MB smartscreen.exe Process ID 4288 User MAX Domain MAX-HP Path C:\Windows\System32\smartscreen.exe Memory Usage 23 MB Peak Memory Usage 28 MB smss.exe Process ID 372 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\smss.exe Memory Usage 740 KB Peak Memory Usage 1.21 MB SMSvcHost.exe Process ID 3408 User NETWORK SERVICE Domain NT AUTHORITY Path C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe Memory Usage 10 MB Peak Memory Usage 14 MB SMSvcHost.exe Process ID 3216 User LOCAL SERVICE Domain NT AUTHORITY Path C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe Memory Usage 14 MB Peak Memory Usage 21 MB Speccy64.exe Process ID 8892 User MAX Domain MAX-HP Path C:\Program Files\Speccy\Speccy64.exe Memory Usage 32 MB Peak Memory Usage 32 MB spoolsv.exe Process ID 1332 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\spoolsv.exe Memory Usage 13 MB Peak Memory Usage 17 MB Spotify.exe Process ID 5748 User MAX Domain MAX-HP Path C:\Users\MAX\AppData\Roaming\Spotify\Spotify.exe Memory Usage 6.51 MB Peak Memory Usage 37 MB Spotify.exe Process ID 6412 User MAX Domain MAX-HP Path C:\Users\MAX\AppData\Roaming\Spotify\Spotify.exe Memory Usage 12 MB Peak Memory Usage 55 MB Spotify.exe Process ID 6780 User MAX Domain MAX-HP Path C:\Users\MAX\AppData\Roaming\Spotify\Spotify.exe Memory Usage 46 MB Peak Memory Usage 134 MB Spotify.exe Process ID 4760 User MAX Domain MAX-HP Path C:\Users\MAX\AppData\Roaming\Spotify\Spotify.exe Memory Usage 33 MB Peak Memory Usage 105 MB SpotifyWebHelper.exe Process ID 6952 User MAX Domain MAX-HP Path C:\Users\MAX\AppData\Roaming\Spotify\SpotifyWebHelper.exe Memory Usage 7.77 MB Peak Memory Usage 8.78 MB svchost.exe Process ID 3196 User NETWORK SERVICE Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 5.44 MB Peak Memory Usage 7.36 MB svchost.exe Process ID 3456 User LOCAL SERVICE Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 7.14 MB Peak Memory Usage 8.63 MB svchost.exe Process ID 2344 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 7.19 MB Peak Memory Usage 11 MB svchost.exe Process ID 2240 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 21 MB Peak Memory Usage 27 MB svchost.exe Process ID 2224 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 7.02 MB Peak Memory Usage 11 MB svchost.exe Process ID 2096 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 18 MB Peak Memory Usage 26 MB svchost.exe Process ID 1500 User LOCAL SERVICE Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 9.02 MB Peak Memory Usage 12 MB svchost.exe Process ID 1588 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 10 MB Peak Memory Usage 15 MB svchost.exe Process ID 852 User NETWORK SERVICE Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 8.37 MB Peak Memory Usage 9.24 MB svchost.exe Process ID 1796 User MAX Domain MAX-HP Path C:\Windows\System32\svchost.exe Memory Usage 20 MB Peak Memory Usage 22 MB svchost.exe Process ID 1136 User LOCAL SERVICE Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 19 MB Peak Memory Usage 23 MB svchost.exe Process ID 1068 User LOCAL SERVICE Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 15 MB Peak Memory Usage 72 MB svchost.exe Process ID 992 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 39 MB Peak Memory Usage 285 MB svchost.exe Process ID 1376 User LOCAL SERVICE Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 8.56 MB Peak Memory Usage 9.30 MB svchost.exe Process ID 428 User LOCAL SERVICE Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 16 MB Peak Memory Usage 27 MB svchost.exe Process ID 1008 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 34 MB Peak Memory Usage 42 MB svchost.exe Process ID 1228 User NETWORK SERVICE Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 15 MB Peak Memory Usage 17 MB svchost.exe Process ID 812 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 18 MB Peak Memory Usage 22 MB svchost.exe Process ID 9012 User LOCAL SERVICE Domain NT AUTHORITY Path C:\Windows\System32\svchost.exe Memory Usage 8.88 MB Peak Memory Usage 9.86 MB System Process ID 4 Memory Usage 1.56 MB Peak Memory Usage 7.42 MB System Idle Process Process ID 0 TabTip.exe Process ID 2600 User MAX Domain MAX-HP Path C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe Memory Usage 13 MB Peak Memory Usage 15 MB TabTip32.exe Process ID 5128 User MAX Domain MAX-HP Path C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe Memory Usage 3.95 MB Peak Memory Usage 4.71 MB taskhostw.exe Process ID 3816 User MAX Domain MAX-HP Path C:\Windows\System32\taskhostw.exe Memory Usage 14 MB Peak Memory Usage 17 MB UTSCSI.EXE Process ID 2536 User SYSTEM Domain NT AUTHORITY Path C:\Windows\SysWOW64\UTSCSI.EXE Memory Usage 2.89 MB Peak Memory Usage 3.55 MB wininit.exe Process ID 608 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\wininit.exe Memory Usage 2.75 MB Peak Memory Usage 5.22 MB winlogon.exe Process ID 680 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\winlogon.exe Memory Usage 5.71 MB Peak Memory Usage 14 MB WmiPrvSE.exe Process ID 1780 User NETWORK SERVICE Domain NT AUTHORITY Path C:\Windows\System32\wbem\WmiPrvSE.exe Memory Usage 22 MB Peak Memory Usage 22 MB WmiPrvSE.exe Process ID 9864 User SYSTEM Domain NT AUTHORITY Path C:\Windows\System32\wbem\WmiPrvSE.exe Memory Usage 8.50 MB Peak Memory Usage 8.50 MB Security Options Accounts: Administrator account status Disabled Accounts: Block Microsoft accounts Not Defined Accounts: Guest account status Disabled Accounts: Limit local account use of blank passwords to console logon only Enabled Accounts: Rename administrator account Administrator Accounts: Rename guest account Guest Audit: Audit the access of global system objects Disabled Audit: Audit the use of Backup and Restore privilege Disabled Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Not Defined Audit: Shut down system immediately if unable to log security audits Disabled DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined Devices: Allow undock without having to log on Enabled Devices: Allowed to format and eject removable media Not Defined Devices: Prevent users from installing printer drivers Disabled Devices: Restrict CD-ROM access to locally logged-on user only Not Defined Devices: Restrict floppy access to locally logged-on user only Not Defined Domain controller: Allow server operators to schedule tasks Not Defined Domain controller: LDAP server signing requirements Not Defined Domain controller: Refuse machine account password changes Not Defined Domain member: Digitally encrypt or sign secure channel data (always) Enabled Domain member: Digitally encrypt secure channel data (when possible) Enabled Domain member: Digitally sign secure channel data (when possible) Enabled Domain member: Disable machine account password changes Disabled Domain member: Maximum machine account password age 30 days Domain member: Require strong (Windows 2000 or later) session key Enabled Interactive logon: Display user information when the session is locked Not Defined Interactive logon: Do not display last user name Disabled Interactive logon: Do not require CTRL+ALT+DEL Not Defined Interactive logon: Machine account lockout threshold Not Defined Interactive logon: Machine inactivity limit Not Defined Interactive logon: Message text for users attempting to log on Interactive logon: Message title for users attempting to log on Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons Interactive logon: Prompt user to change password before expiration 5 days Interactive logon: Require Domain Controller authentication to unlock workstation Disabled Interactive logon: Require smart card Disabled Interactive logon: Smart card removal behavior No Action Microsoft network client: Digitally sign communications (always) Disabled Microsoft network client: Digitally sign communications (if server agrees) Enabled Microsoft network client: Send unencrypted password to third-party SMB servers Disabled Microsoft network server: Amount of idle time required before suspending session Not Defined Microsoft network server: Attempt S4U2Self to obtain claim information Not Defined Microsoft network server: Digitally sign communications (always) Disabled Microsoft network server: Digitally sign communications (if client agrees) Disabled Microsoft network server: Disconnect clients when logon hours expire Enabled Microsoft network server: Server SPN target name validation level Not Defined Network access: Allow anonymous SID/Name translation Disabled Network access: Do not allow anonymous enumeration of SAM accounts Enabled Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled Network access: Do not allow storage of passwords and credentials for network authentication Disabled Network access: Let Everyone permissions apply to anonymous users Disabled Network access: Named Pipes that can be accessed anonymously Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion Network access: Remotely accessible registry paths and sub-paths System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog Network access: Restrict anonymous access to Named Pipes and Shares Enabled Network access: Restrict clients allowed to make remote calls to SAM Network access: Shares that can be accessed anonymously Not Defined Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves Network security: Allow Local System to use computer identity for NTLM Not Defined Network security: Allow LocalSystem NULL session fallback Not Defined Network security: Allow PKU2U authentication requests to this computer to use online identities. Not Defined Network security: Configure encryption types allowed for Kerberos Not Defined Network security: Do not store LAN Manager hash value on next password change Enabled Network security: Force logoff when logon hours expire Disabled Network security: LAN Manager authentication level Not Defined Network security: LDAP client signing requirements Negotiate signing Network security: Minimum session security for NTLM SSP based (including secure RPC) clients Require 128-bit encryption Network security: Minimum session security for NTLM SSP based (including secure RPC) servers Require 128-bit encryption Network security: Restrict NTLM: Add remote server exceptions for NTLM authentication Not Defined Network security: Restrict NTLM: Add server exceptions in this domain Not Defined Network security: Restrict NTLM: Audit Incoming NTLM Traffic Not Defined Network security: Restrict NTLM: Audit NTLM authentication in this domain Not Defined Network security: Restrict NTLM: Incoming NTLM traffic Not Defined Network security: Restrict NTLM: NTLM authentication in this domain Not Defined Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers Not Defined Recovery console: Allow automatic administrative logon Not Defined Recovery console: Allow floppy copy and access to all drives and all folders Not Defined Shutdown: Allow system to be shut down without having to log on Enabled Shutdown: Clear virtual memory pagefile Disabled System cryptography: Force strong key protection for user keys stored on the computer Not Defined System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled System objects: Require case insensitivity for non-Windows subsystems Enabled System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled System settings: Optional subsystems Posix System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies Disabled User Account Control: Admin Approval Mode for the Built-in Administrator account Not Defined User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop Disabled User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode Prompt for consent for non-Windows binaries User Account Control: Behavior of the elevation prompt for standard users Prompt for credentials User Account Control: Detect application installations and prompt for elevation Enabled User Account Control: Only elevate executables that are signed and validated Disabled User Account Control: Only elevate UIAccess applications that are installed in secure locations Enabled User Account Control: Run all administrators in Admin Approval Mode Enabled User Account Control: Switch to the secure desktop when prompting for elevation Enabled User Account Control: Virtualize file and registry write failures to per-user locations Enabled Device Tree ACPI x64-based PC Microsoft ACPI-Compliant System ACPI Fixed Feature Button ACPI Power Button AMD E-450 APU with Radeon HD Graphics AMD E-450 APU with Radeon HD Graphics High precision event timer Motherboard resources System board PCI Express Root Complex AMD SMBus PCI standard host CPU bridge PCI standard host CPU bridge PCI standard host CPU bridge PCI standard host CPU bridge PCI standard host CPU bridge PCI standard host CPU bridge PCI standard host CPU bridge PCI standard host CPU bridge PCI-to-PCI Bridge PCI-to-PCI Bridge PCI-to-PCI Bridge System board PCI standard host CPU bridge Motherboard resources AMD Radeon HD 6320 Graphics Generic Non-PnP Monitor AMD SATA Controller hp DVD A DH16ABSH SATA CdRom Device SAMSUNG HD502HJ SATA Disk Device Standard OpenHCD USB Host Controller USB Root Hub USB Composite Device USB Input Device HID Keyboard Device USB Input Device HID-compliant consumer control device HID-compliant mouse HID-compliant system controller HID-compliant vendor-defined device HID-compliant vendor-defined device Standard Enhanced PCI to USB Host Controller USB Root Hub Belkin 54g Wireless USB Network Adapter #5 Microsoft Hosted Network Virtual Adapter #2 Standard OpenHCD USB Host Controller USB Root Hub USB Composite Device USB Input Device HID Keyboard Device USB Input Device HID-compliant consumer control device HID-compliant system controller Standard Enhanced PCI to USB Host Controller USB Root Hub High Definition Audio Bus Realtek High Definition Audio Microphone (Realtek High Definition Audio) Speakers (Realtek High Definition Audio) PCI standard ISA bridge Direct memory access controller Motherboard resources Motherboard resources Motherboard resources Motherboard resources Numeric data processor Programmable interrupt controller System CMOS/real time clock System speaker System timer Standard OpenHCD USB Host Controller USB Root Hub PCI-to-PCI Bridge Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20) Standard OpenHCD USB Host Controller USB Root Hub Standard Enhanced PCI to USB Host Controller USB Root Hub CPU AMD E-450 Cores 2 Threads 2 Name AMD E-450 Code Name Zacate Package Socket FT1 BGA Technology 40nm Specification AMD E-450 APU with Radeon HD Graphics Family F Extended Family 14 Model 2 Extended Model 2 Stepping 0 Revision ON-C0 Instructions MMX (+), SSE, SSE2, SSE3, SSSE3, SSE4A, AMD 64, NX, VMX Virtualization Supported, Enabled Hyperthreading Not supported Fan Speed 1057 RPM Bus Speed 99.8 MHz Stock Core Speed 1650 MHz Stock Bus Speed 100 MHz Caches L1 Data Cache Size 2 x 32 KBytes L1 Instructions Cache Size 2 x 32 KBytes L2 Unified Cache Size 2 x 512 KBytes Cores Core 0 Core Speed 1646.4 MHz Multiplier x 16.5 Bus Speed 99.8 MHz Threads APIC ID: 0 Core 1 Core Speed 1646.4 MHz Multiplier x 16.5 Bus Speed 99.8 MHz Threads APIC ID: 1 RAM Memory slots Total memory slots 2 Used memory slots 1 Free memory slots 1 Memory Type DDR3 Size 2048 MBytes DRAM Frequency 665.2 MHz CAS# Latency (CL) 9 clocks RAS# to CAS# Delay (tRCD) 9 clocks RAS# Precharge (tRP) 9 clocks Cycle Time (tRAS) 24 clocks Bank Cycle Time (tRC) 33 clocks Physical Memory Memory Usage 83 % Total Physical 1.60 GB Available Physical 273 MB Total Virtual 3.85 GB Available Virtual 1.19 GB SPD Number Of SPD Modules 1 Slot #1 Type DDR3 Size 2048 MBytes Manufacturer Micron Technology Max Bandwidth PC3-10700 (667 MHz) Part Number 8JTF25664AZ-1G4D1 Serial Number 3664732932 Week/year 09 / 11 Timing table JEDEC #1 Frequency 381.0 MHz CAS# Latency 5.0 RAS# To CAS# 5 RAS# Precharge 5 tRAS 14 tRC 19 Voltage 1.500 V JEDEC #2 Frequency 457.1 MHz CAS# Latency 6.0 RAS# To CAS# 6 RAS# Precharge 6 tRAS 17 tRC 23 Voltage 1.500 V JEDEC #3 Frequency 533.3 MHz CAS# Latency 7.0 RAS# To CAS# 7 RAS# Precharge 7 tRAS 20 tRC 27 Voltage 1.500 V JEDEC #4 Frequency 609.5 MHz CAS# Latency 8.0 RAS# To CAS# 8 RAS# Precharge 8 tRAS 22 tRC 30 Voltage 1.500 V JEDEC #5 Frequency 666.7 MHz CAS# Latency 9.0 RAS# To CAS# 9 RAS# Precharge 9 tRAS 24 tRC 33 Voltage 1.500 V JEDEC #6 Frequency 666.7 MHz CAS# Latency 10.0 RAS# To CAS# 9 RAS# Precharge 9 tRAS 24 tRC 33 Voltage 1.500 V Motherboard Manufacturer PEGATRON CORPORATION Model 2AD1 (CPU 1) Version 1.02 Chipset Vendor AMD Chipset Model K12 IMC Chipset Revision 00 Southbridge Vendor AMD Southbridge Model SB850 Southbridge Revision 40 System Temperature 45 °C BIOS Brand AMI Version 7.05 Date 7/14/2011 Voltage +3.3V 3.296 V CPU CORE 1.048 V VIN2 2.704 V VIN3 1.658 V VSB3V 3.296 V CMOS BATTERY 3.360 V PCI Data Slot PCI Slot Type PCI Slot Usage Available Bus Width 32 bit Slot Designation PCI-E x4 Characteristics 3.3V, Shared, PME Slot Number 0 Slot PCI Slot Type PCI Slot Usage Available Bus Width 32 bit Slot Designation PCI-E x1 Characteristics 3.3V, Shared, PME Slot Number 1 Slot PCI Slot Type PCI Slot Usage Available Bus Width 32 bit Slot Designation PCI-E x1 Characteristics 3.3V, Shared, PME Slot Number 2 Graphics Monitor Name Generic Non-PnP Monitor on AMD Radeon HD 6320 Graphics Current Resolution 1280x1024 pixels Work Resolution 1280x994 pixels State Enabled, Primary, Output devices support Monitor Width 1280 Monitor Height 1024 Monitor BPP 32 bits per pixel Monitor Frequency 60 Hz Device \\.\DISPLAY1\Monitor0 ATI AMD Radeon HD 6320 Graphics Manufacturer ATI Model AMD Radeon HD 6320 Graphics GPU Wrestler Device ID 1002-9806 Subvendor HP (103C) Current Performance Level Level 0 Current GPU Clock 507 MHz Current Memory Clock 667 MHz Current Shader Clock 667 MHz Voltage 0.913 V Die Size 59 mm˛ Transistors 59 M Release Date Aug 2011 DirectX Support 11.0 GPU Clock 507.0 MHz Temperature 64 °C Core Voltage 0.913 V Driver version 15.201.1151.0 ROPs 4 Shaders 80 unified Memory Type HyperMemory Memory 384 MB Bus Width System Pixel Fillrate 2.0 GPixels/s Texture Fillrate 4.1 GTexels/s Count of performance levels : 2 Level 1 - "Perf Level 0" GPU Clock 275 MHz Shader Clock 667 MHz Level 2 - "Perf Level 1" GPU Clock 507 MHz Shader Clock 667 MHz Storage Hard drives SAMSUNG HD502HJ SATA Disk Device Manufacturer SAMSUNG Business Unit/Brand Desktop Model Capacity For This Specific Drive 500GB Heads 16 Cylinders 60,801 Tracks 15,504,255 Sectors 976,768,065 SATA type SATA-II 3.0Gb/s Device type Fixed ATA Standard ATA8-ACS Serial Number S2QQJ9AB621080 Firmware Version Number 1AJ10006 LBA Size 48-bit LBA Power On Count 2557 times Power On Time 1470.8 days Speed 7200 RPM Features S.M.A.R.T., APM, NCQ Max. Transfer Mode SATA II 3.0Gb/s Used Transfer Mode SATA II 3.0Gb/s Interface SATA Capacity 465 GB Real size 500,107,862,016 bytes RAID Type None S.M.A.R.T Status Good Temperature 36 °C Temperature Range OK (less than 50 °C) S.M.A.R.T attributes 01 Attribute name Read Error Rate Real value 0 Current 100 Worst 100 Threshold 51 Raw Value 00000013CA Status Good 02 Attribute name Throughput Performance Real value 0 Current 252 Worst 252 Threshold 0 Raw Value 0000000000 Status Good 03 Attribute name Spin-Up Time Real value 5449 ms Current 83 Worst 80 Threshold 25 Raw Value 0000001549 Status Good 04 Attribute name Start/Stop Count Real value 2,569 Current 98 Worst 98 Threshold 0 Raw Value 0000000A09 Status Good 05 Attribute name Reallocated Sectors Count Real value 0 Current 252 Worst 252 Threshold 10 Raw Value 0000000000 Status Good 07 Attribute name Seek Error Rate Real value 0 Current 252 Worst 252 Threshold 51 Raw Value 0000000000 Status Good 08 Attribute name Seek Time Performance Real value 0 Current 252 Worst 252 Threshold 15 Raw Value 0000000000 Status Good 09 Attribute name Power-On Hours (POH) Real value 1470d 18h Current 100 Worst 100 Threshold 0 Raw Value 00000089E2 Status Good 0A Attribute name Spin Retry Count Real value 0 Current 252 Worst 252 Threshold 51 Raw Value 0000000000 Status Good 0B Attribute name Recalibration Retries Real value 0 Current 252 Worst 252 Threshold 0 Raw Value 0000000000 Status Good 0C Attribute name Device Power Cycle Count Real value 2,557 Current 98 Worst 98 Threshold 0 Raw Value 00000009FD Status Good B7 Attribute name SATA Downshift Error Count Real value 346 Current 100 Worst 100 Threshold 10 Raw Value 000000015A Status Good B8 Attribute name End-to-End error / IOEDC Real value 0 Current 252 Worst 252 Threshold 97 Raw Value 0000000000 Status Good BA Attribute name Induced Op-Vibration Detection Real value 0 Current 252 Worst 252 Threshold 0 Raw Value 0000000000 Status Good BB Attribute name Reported Uncorrectable Errors Real value 4,638 Current 100 Worst 100 Threshold 0 Raw Value 000000121E Status Good BC Attribute name Command Timeout Real value 0 Current 252 Worst 252 Threshold 0 Raw Value 0000000000 Status Good BE Attribute name Airflow Temperature Real value 36 °C Current 64 Worst 55 Threshold 40 Raw Value 00000F0024 Status Good BF Attribute name G-sense error rate Real value 0 Current 252 Worst 252 Threshold 0 Raw Value 0000000000 Status Good C0 Attribute name Power-off Retract Count Real value 0 Current 252 Worst 252 Threshold 0 Raw Value 0000000000 Status Good C1 Attribute name Load/Unload Cycle Count Real value 2,580 Current 100 Worst 100 Threshold 0 Raw Value 0000000A14 Status Good C2 Attribute name Temperature Real value 36 °C Current 64 Worst 55 Threshold 0 Raw Value 00000F0024 Status Good C3 Attribute name ECC Rate Real value 0 Current 100 Worst 100 Threshold 0 Raw Value 0000000000 Status Good C4 Attribute name Reallocation Event Count Real value 0 Current 252 Worst 252 Threshold 0 Raw Value 0000000000 Status Good C5 Attribute name Current Pending Sector Count Real value 0 Current 252 Worst 100 Threshold 0 Raw Value 0000000000 Status Good C6 Attribute name Uncorrectable Sector Count Real value 0 Current 252 Worst 100 Threshold 0 Raw Value 0000000000 Status Good C7 Attribute name UltraDMA CRC Error Count Real value 0 Current 200 Worst 200 Threshold 0 Raw Value 0000000000 Status Good C8 Attribute name Write Error Rate / Multi-Zone Error Rate Real value 1 Current 100 Worst 100 Threshold 0 Raw Value 0000000001 Status Good Partition 0 Partition ID Disk #0, Partition #0 File System NTFS Volume Serial Number E0451536 Size 99 MB Used Space 35.8 MB (35%) Free Space 64 MB (65%) Partition 1 Partition ID Disk #0, Partition #1 Disk Letter C: File System NTFS Volume Serial Number 7C846268 Size 454 GB Used Space 84 GB (18%) Free Space 369 GB (82%) Partition 2 Partition ID Disk #0, Partition #2 File System NTFS Volume Serial Number AE218633 Size 449 MB Used Space 328 MB (73%) Free Space 121 MB (27%) Partition 3 Partition ID Disk #0, Partition #3 Disk Letter D: File System NTFS Volume Serial Number DA1BA0F6 Size 11.1 GB Used Space 9.78 GB (87%) Free Space 1.35 GB (13%) Optical Drives hp DVD A DH16ABSH SATA CdRom Device Media Type DVD Writer Name hp DVD A DH16ABSH SATA CdRom Device Availability Running/Full Power Capabilities Random Access, Supports Writing, Supports Removable Media Read capabilities CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL Write capabilities CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL Config Manager Error Code Device is working properly Config Manager User Config FALSE Drive E: Media Loaded FALSE SCSI Bus 1 SCSI Logical Unit 0 SCSI Port 0 SCSI Target Id 0 Status OK Audio Sound Card Realtek High Definition Audio Playback Device Speakers (Realtek High Definition Audio) Recording Device Microphone (Realtek High Definition Audio) Peripherals HID Keyboard Device Device Kind Keyboard Device Name HID Keyboard Device Vendor Logitech Location USB Input Device Driver Date 6-21-2006 Version 10.0.14393.206 File C:\WINDOWS\system32\DRIVERS\kbdhid.sys File C:\WINDOWS\system32\DRIVERS\kbdclass.sys HID Keyboard Device Device Kind Keyboard Device Name HID Keyboard Device Vendor Wacom Co Ltd Location Virtual Keyboard Driver Driver Date 6-21-2006 Version 10.0.14393.206 File C:\WINDOWS\system32\DRIVERS\kbdhid.sys File C:\WINDOWS\system32\DRIVERS\kbdclass.sys HID Keyboard Device Device Kind Keyboard Device Name HID Keyboard Device Vendor Lite-On Technology Corp Location USB Input Device Driver Date 6-21-2006 Version 10.0.14393.206 File C:\WINDOWS\system32\DRIVERS\kbdhid.sys File C:\WINDOWS\system32\DRIVERS\kbdclass.sys Wacom Mouse Device Kind Mouse Device Name Wacom Mouse Vendor Wacom Co Ltd Location Wacom Virtual Hid Driver Driver Date 2-15-2007 Version 1.2.2.0 File C:\WINDOWS\system32\DRIVERS\wacommousefilter.sys File C:\WINDOWS\system32\DRIVERS\mouhid.sys File C:\WINDOWS\system32\DRIVERS\mouclass.sys HID-compliant mouse Device Kind Mouse Device Name HID-compliant mouse Vendor Logitech Location USB Input Device Driver Date 6-21-2006 Version 10.0.14393.0 File C:\WINDOWS\system32\DRIVERS\mouhid.sys File C:\WINDOWS\system32\DRIVERS\mouclass.sys Printers Fax Printer Port SHRFAX: Print Processor winprint Availability Always Priority 1 Duplex None Print Quality 200 * 200 dpi Monochrome Status Unknown Driver Driver Name Microsoft Shared Fax Driver (v4.00) Driver Path C:\WINDOWS\system32\spool\DRIVERS\x64\3\FXSDRV.DLL Fax Lexmark S400 Series Printer Port Fax Lexmark S400 Series Print Processor winprint Availability Always Priority 1 Duplex None Print Quality 200 * 200 dpi Color Status Unknown Driver Driver Name Fax Lexmark S300-S400 Series Printer (v6.03) Driver Path C:\WINDOWS\system32\spool\DRIVERS\x64\3\UNIDRV.DLL Lexmark S400 Series (Network) Printer Port S300-S400_Series_AEF78D_P1 Print Processor Lexmark S300-S400 Series Print Processor Availability Always Priority 1 Duplex Long-edge binding Print Quality 600 dpi Color Status Unknown Driver Driver Name Lexmark S300-S400 Series (v4.150) Driver Path C:\WINDOWS\system32\spool\DRIVERS\x64\3\lxeadr.dll Microsoft Print to PDF Printer Port PORTPROMPT: Print Processor winprint Availability Always Priority 1 Duplex None Print Quality 600 * 600 dpi Color Status Unknown Driver Driver Name Microsoft Print To PDF (v6.03) Driver Path C:\WINDOWS\System32\DriverStore\FileRepository\ntprint.inf_amd64_e233a12d01c18082\Amd64\mxdwdrv.dll Microsoft XPS Document Writer Printer Port PORTPROMPT: Print Processor winprint Availability Always Priority 1 Duplex None Print Quality 600 * 600 dpi Color Status Unknown Driver Driver Name Microsoft XPS Document Writer v4 (v6.03) Driver Path C:\WINDOWS\System32\DriverStore\FileRepository\ntprint.inf_amd64_e233a12d01c18082\Amd64\mxdwdrv.dll PDF Complete (Default Printer) Printer Port PDFC Print Processor winprint Availability Always Priority 1 Duplex None Print Quality 300 * 300 dpi Color Status Unknown Driver Driver Name PDF Complete Converter (v1.00) Driver Path C:\WINDOWS\system32\spool\DRIVERS\x64\3\pdfc_core.dll Send To OneNote 2010 Printer Port nul: Print Processor winprint Availability Always Priority 1 Duplex None Print Quality 600 * 600 dpi Color Status Unknown Driver Driver Name Send To Microsoft OneNote 2010 Driver (v6.03) Driver Path C:\WINDOWS\system32\spool\DRIVERS\x64\3\mxdwdrv.dll Network You are connected to the internet Connected through Belkin 54g Wireless USB Network Adapter #5 IP Address 192.168.0.2 Subnet mask 255.255.255.0 Gateway server 192.168.0.1 Preferred DNS server 75.114.81.1 Alternate DNS server 75.114.81.2 DHCP Enabled DHCP server 192.168.0.1 External IP Address 142.197.54.44 Adapter Type IEEE 802.11 wireless NetBIOS over TCP/IP Enabled via DHCP NETBIOS Node Type Hybrid node Link Speed 0 Bps Computer Name NetBIOS Name MAX-HP DNS Name MAX-HP Membership Part of workgroup Workgroup WORKGROUP Remote Desktop Disabled Console State Active Domain MAX-HP WinInet Info LAN Connection Local system uses a local area network to connect to the Internet Local system has RAS to connect to the Internet Wi-Fi Info Using native Wi-Fi API version 2 Available access points count 3 Wi-Fi (CenturyLink1950) SSID CenturyLink1950 Frequency 2462000 kHz Channel Number 11 Name CenturyLink1950 Signal Strength/Quality 50 Security Enabled State The interface is connected to a network Dot11 Type Infrastructure BSS network Network Connectible Network Flags There is a profile for this network Cipher Algorithm to be used when joining this network AES-CCMP algorithm Default Auth used to join this network for the first time 802.11i RSNA algorithm that uses PSK Wi-Fi (MTNEST) SSID MTNEST Frequency 2462000 kHz Channel Number 11 Name MTNEST Signal Strength/Quality 78 Security Enabled State The interface is connected to a network Dot11 Type Infrastructure BSS network Network Connectible Network Flags Currently Connected to this network Cipher Algorithm to be used when joining this network AES-CCMP algorithm Default Auth used to join this network for the first time 802.11i RSNA algorithm that uses PSK Wi-Fi (NETGEAR07) SSID NETGEAR07 Frequency 2452000 kHz Channel Number 9 Name NETGEAR07 Signal Strength/Quality 20 Security Enabled State The interface is connected to a network Dot11 Type Infrastructure BSS network Network Connectible Network Flags There is a profile for this network Cipher Algorithm to be used when joining this network AES-CCMP algorithm Default Auth used to join this network for the first time 802.11i RSNA algorithm that uses PSK WinHTTPInfo WinHTTPSessionProxyType No proxy Session Proxy Session Proxy Bypass Connect Retries 5 Connect Timeout (ms) 60,000 HTTP Version HTTP 1.1 Max Connects Per 1.0 Servers INFINITE Max Connects Per Servers INFINITE Max HTTP automatic redirects 10 Max HTTP status continue 10 Send Timeout (ms) 30,000 IEProxy Auto Detect No IEProxy Auto Config IEProxy IEProxy Bypass Default Proxy Config Access Type No proxy Default Config Proxy Default Config Proxy Bypass Sharing and Discovery Network Discovery Enabled File and Printer Sharing Enabled File and printer sharing service Enabled Simple File Sharing Enabled Administrative Shares Enabled Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves Adapters List Enabled Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20) Connection Name Local Area Connection DHCP enabled Yes MAC Address 38-60-77-0F-C9-B1 Belkin 54g Wireless USB Network Adapter #5 Connection Name Wi-Fi NetBIOS over TCPIP Yes DHCP enabled Yes MAC Address 00-17-3F-4A-61-33 IP Address 192.168.0.2 Subnet mask 255.255.255.0 Gateway server 192.168.0.1 DHCP 192.168.0.1 DNS Server 75.114.81.1 75.114.81.2 Network Shares Users C:\Users C C:\ Current TCP Connections AvastSvc.exe (1624) Local 127.0.0.1:12993 LISTEN Local 127.0.0.1:12563 LISTEN Local 127.0.0.1:12143 LISTEN Local 127.0.0.1:27275 LISTEN Local 192.168.0.2:49744 ESTABLISHED Remote 77.234.42.27:80 (Querying... ) (HTTP) Local 127.0.0.1:12025 LISTEN Local 127.0.0.1:12995 LISTEN Local 127.0.0.1:12110 LISTEN Local 127.0.0.1:12119 LISTEN Local 127.0.0.1:12465 LISTEN Local 192.168.0.2:50225 ESTABLISHED Remote 5.45.58.246:80 (Querying... ) (HTTP) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (4328) Local 192.168.0.2:50143 ESTABLISHED Remote 31.13.73.7:443 (Querying... ) (HTTPS) Local 192.168.0.2:50169 ESTABLISHED Remote 52.84.132.242:443 (Querying... ) (HTTPS) Local 192.168.0.2:50137 ESTABLISHED Remote 157.240.0.22:443 (Querying... ) (HTTPS) Local 192.168.0.2:50189 ESTABLISHED Remote 74.125.21.132:443 (Querying... ) (HTTPS) Local 192.168.0.2:50199 ESTABLISHED Remote 74.125.196.94:443 (Querying... ) (HTTPS) Local 192.168.0.2:50205 ESTABLISHED Remote 74.125.196.136:443 (Querying... ) (HTTPS) Local 192.168.0.2:50081 ESTABLISHED Remote 64.233.177.95:443 (Querying... ) (HTTPS) Local 192.168.0.2:50104 ESTABLISHED Remote 74.125.21.156:443 (Querying... ) (HTTPS) Local 192.168.0.2:50105 ESTABLISHED Remote 74.125.21.101:443 (Querying... ) (HTTPS) Local 192.168.0.2:50108 ESTABLISHED Remote 74.125.21.154:443 (Querying... ) (HTTPS) Local 192.168.0.2:50208 ESTABLISHED Remote 72.21.91.29:80 (Querying... ) (HTTP) Local 192.168.0.2:50114 ESTABLISHED Remote 74.125.196.102:443 (Querying... ) (HTTPS) Local 127.0.0.1:49835 ESTABLISHED Remote 127.0.0.1:49834 (Querying... ) Local 127.0.0.1:49834 ESTABLISHED Remote 127.0.0.1:49835 (Querying... ) Local 192.168.0.2:50142 ESTABLISHED Remote 31.13.73.36:443 (Querying... ) (HTTPS) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (7076) Local 127.0.0.1:49844 ESTABLISHED Remote 127.0.0.1:49843 (Querying... ) Local 127.0.0.1:49843 ESTABLISHED Remote 127.0.0.1:49844 (Querying... ) C:\Users\MAX\AppData\Roaming\Spotify\Spotify.exe (4760) Local 0.0.0.0:57621 LISTEN Local 0.0.0.0:49774 LISTEN Local 127.0.0.1:4371 LISTEN Local 192.168.0.2:49769 ESTABLISHED Remote 23.92.108.84:4070 (Querying... ) Local 127.0.0.1:4381 LISTEN C:\Users\MAX\AppData\Roaming\Spotify\SpotifyWebHelper.exe (6952) Local 127.0.0.1:4380 LISTEN Local 127.0.0.1:4370 LISTEN C:\Windows\explorer.exe (752) Local 192.168.0.2:49682 ESTABLISHED Remote 65.52.108.226:443 (Querying... ) (HTTPS) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_127.exe (7896) Local 192.168.0.2:50200 ESTABLISHED Remote 68.232.32.220:1935 (Querying... ) ContentManagementServer.exe (2308) Local 127.0.0.1:49672 ESTABLISHED Remote 127.0.0.1:49671 (Querying... ) Local 127.0.0.1:49671 ESTABLISHED Remote 127.0.0.1:49672 (Querying... ) Local 0.0.0.0:27997 LISTEN lsass.exe (740) Local 0.0.0.0:49666 LISTEN mqsvc.exe (2400) Local 0.0.0.0:1801 LISTEN Local 0.0.0.0:49670 LISTEN Local 0.0.0.0:2107 LISTEN Local 0.0.0.0:2105 LISTEN Local 0.0.0.0:2103 LISTEN services.exe (724) Local 0.0.0.0:49679 LISTEN spoolsv.exe (1332) Local 0.0.0.0:49669 LISTEN svchost.exe (2240) Local 192.168.0.2:50222 ESTABLISHED Remote 65.55.44.109:443 (Querying... ) (HTTPS) svchost.exe (428) Local 0.0.0.0:49665 LISTEN svchost.exe (852) Local 0.0.0.0:135 (DCE) LISTEN svchost.exe (992) Local 0.0.0.0:49667 LISTEN Local 192.168.0.2:49677 ESTABLISHED Remote 131.253.34.254:443 (Querying... ) (HTTPS) System Process Local 192.168.0.2:50223 TIME-WAIT Remote 151.101.0.196:80 (Querying... ) (HTTP) Local 192.168.0.2:50091 TIME-WAIT Remote 72.21.91.66:80 (Querying... ) (HTTP) Local 192.168.0.2:50129 TIME-WAIT Remote 23.48.177.36:80 (Querying... ) (HTTP) Local 192.168.0.2:50086 TIME-WAIT Remote 74.125.21.101:80 (Querying... ) (HTTP) Local 192.168.0.2:50224 TIME-WAIT Remote 77.234.41.58:80 (Querying... ) (HTTP) Local 192.168.0.2:50183 TIME-WAIT Remote 74.125.21.132:80 (Querying... ) (HTTP) Local 192.168.0.2:50221 TIME-WAIT Remote 104.28.28.94:80 (Querying... ) (HTTP) Local 192.168.0.2:50217 TIME-WAIT Remote 77.234.41.59:80 (Querying... ) (HTTP) Local 192.168.0.2:50115 TIME-WAIT Remote 216.58.212.227:80 (Querying... ) (HTTP) Local 192.168.0.2:50109 TIME-WAIT Remote 216.58.217.232:80 (Querying... ) (HTTP) Local 192.168.0.2:50075 TIME-WAIT Remote 151.101.0.196:80 (Querying... ) (HTTP) Local 192.168.0.2:50140 TIME-WAIT Remote 54.230.206.52:80 (Querying... ) (HTTP) Local 192.168.0.2:50216 TIME-WAIT Remote 104.28.28.94:80 (Querying... ) (HTTP) Local 192.168.0.2:50215 TIME-WAIT Remote 104.28.28.94:80 (Querying... ) (HTTP) Local 192.168.0.2:50103 TIME-WAIT Remote 74.125.196.154:80 (Querying... ) (HTTP) Local 192.168.0.2:50214 TIME-WAIT Remote 104.16.252.252:80 (Querying... ) (HTTP) Local 192.168.0.2:50213 TIME-WAIT Remote 65.52.234.109:443 (Querying... ) (HTTPS) Local 192.168.0.2:50210 TIME-WAIT Remote 72.21.91.29:80 (Querying... ) (HTTP) Local 192.168.0.2:50195 TIME-WAIT Remote 74.125.21.101:80 (Querying... ) (HTTP) Local 192.168.0.2:50194 TIME-WAIT Remote 74.125.21.101:80 (Querying... ) (HTTP) Local 192.168.0.2:50185 TIME-WAIT Remote 74.125.196.156:80 (Querying... ) (HTTP) Local 192.168.0.2:50087 TIME-WAIT Remote 74.125.21.101:80 (Querying... ) (HTTP) Local 192.168.0.2:50179 TIME-WAIT Remote 52.84.132.242:443 (Querying... ) (HTTPS) Local 192.168.0.2:50178 TIME-WAIT Remote 52.84.132.242:443 (Querying... ) (HTTPS) Local 192.168.0.2:50176 TIME-WAIT Remote 52.84.132.249:80 (Querying... ) (HTTP) Local 192.168.0.2:50175 TIME-WAIT Remote 52.84.132.249:80 (Querying... ) (HTTP) Local 192.168.0.2:50171 TIME-WAIT Remote 52.84.132.251:80 (Querying... ) (HTTP) Local 192.168.0.2:50170 TIME-WAIT Remote 52.84.132.251:80 (Querying... ) (HTTP) Local 192.168.0.2:50166 TIME-WAIT Remote 151.101.4.68:80 (Querying... ) (HTTP) Local 192.168.0.2:50155 TIME-WAIT Remote 52.84.132.249:80 (Querying... ) (HTTP) Local 192.168.0.2:50148 TIME-WAIT Remote 216.58.217.234:80 (Querying... ) (HTTP) Local 192.168.0.2:50147 TIME-WAIT Remote 93.184.215.81:80 (Querying... ) (HTTP) Local 192.168.0.2:50141 TIME-WAIT Remote 151.101.4.68:80 (Querying... ) (HTTP) Local 192.168.0.2:50134 TIME-WAIT Remote 66.61.166.120:80 (Querying... ) (HTTP) System Process Local 0.0.0.0:445 (Windows shares) LISTEN Local 0.0.0.0:80 (HTTP) LISTEN Local 192.168.0.2:139 (NetBIOS session service) LISTEN wininit.exe (608) Local 0.0.0.0:49664 LISTEN Generated with Speccy v1.30.730