Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Bloodhound.SONAR.1 Detection [Solved]


  • This topic is locked This topic is locked

#16
michaelg9

michaelg9

    Trusted Helper

  • Malware Removal
  • 2,949 posts
Hello

Concerning the lagging, you may have some disk problems that we will check after we finish malware removal

File Scanner
There are some files I need you to upload for checking

  • Make sure to use Internet Explorer for this
  • Please go to VirSCAN.org FREE on-line scan service
  • Copy and paste the following file path into the "Suspicious files to scan" box on the top of the page:
    • c:\windows\system32\ntkrnlpa.exe
  • Click on the Upload button
  • If a pop-up appears saying the file has been scanned already, please select the ReScan button.
  • Once the Scan is completed, click on the "Copy to Clipboard" button. This will copy the link of the report into the Clipboard.
  • Paste the contents of the Clipboard in your next reply.



Next:

Re run aswmbr and post the log here



Next:

Download the GMER Rootkit Scanner. Unzip it to your Desktop.

Before scanning, make sure all other running programs are closed and no other actions like a scheduled antivirus scan will occur while the scan is being performed. Do not use your computer for anything else during the scan.

Double-click gmer.exe. The program will begin to run.

**Caution**
These types of scans can produce false positives. Do NOT take any action on any
"<--- ROOKIT" entries unless advised!

If possible rootkit activity is found, you will be asked if you would like to perform a full scan.
  • Click NO
  • In the right panel, you will see a bunch of boxes that have been checked ... leave everything checked and ensure the Show all box is un-checked.
  • Now click the Scan button.
    Once the scan is complete, you may receive another notice about rootkit activity.
  • Click OK.
  • GMER will produce a log. Click on the [Save..] button, and in the File name area, type in "GMER.txt"
  • Save it where you can easily find it, such as your desktop.
Post the contents of GMER.txt in your next reply.
  • 0

Advertisements


#17
Devonasa

Devonasa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
Well I think I'l have to run the virscan.org later, cause the website seems to be down.
  • 0

#18
michaelg9

michaelg9

    Trusted Helper

  • Malware Removal
  • 2,949 posts
try this site
  • 0

#19
Devonasa

Devonasa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
Virustotal:

Antivirus results
AhnLab-V3 - 2012.01.01.00 - 2012.01.01 - -
AntiVir - 7.11.20.98 - 2012.01.01 - -
Antiy-AVL - 2.0.3.7 - 2012.01.01 - -
Avast - 6.0.1289.0 - 2012.01.01 - -
AVG - 10.0.0.1190 - 2012.01.01 - -
BitDefender - 7.2 - 2012.01.02 - -
ByteHero - 1.0.0.1 - 2011.12.31 - -
CAT-QuickHeal - 12.00 - 2012.01.01 - -
ClamAV - 0.97.3.0 - 2012.01.02 - -
Commtouch - 5.3.2.6 - 2012.01.01 - -
Comodo - 11165 - 2012.01.01 - -
DrWeb - 5.0.2.03300 - 2012.01.01 - -
Emsisoft - 5.1.0.11 - 2012.01.01 - -
eSafe - 7.0.17.0 - 2012.01.01 - -
eTrust-Vet - 37.0.9655 - 2011.12.30 - -
F-Prot - 4.6.5.141 - 2012.01.01 - -
F-Secure - 9.0.16440.0 - 2012.01.01 - -
Fortinet - 4.3.388.0 - 2012.01.01 - -
GData - 22.327/22.619 - 2012.01.01 - -
Ikarus - T3.1.1.109.0 - 2011.12.31 - -
Jiangmin - 13.0.900 - 2012.01.01 - -
K7AntiVirus - 9.123.5823 - 2011.12.31 - -
Kaspersky - 9.0.0.837 - 2012.01.01 - -
McAfee - 5.400.0.1158 - 2012.01.02 - -
McAfee-GW-Edition - 2010.1E - 2012.01.01 - -
Microsoft - 1.7903 - 2012.01.01 - -
NOD32 - 6759 - 2012.01.01 - -
Norman - 6.07.13 - 2012.01.01 - -
nProtect - 2012-01-01.01 - 2012.01.01 - -
Panda - 10.0.3.5 - 2012.01.01 - -
PCTools - 8.0.0.5 - 2012.01.02 - -
Prevx - 3.0 - 2012.01.02 - -
Rising - 23.90.05.01 - 2011.12.31 - -
Sophos - 4.72.0 - 2012.01.01 - -
SUPERAntiSpyware - 4.40.0.1006 - 2011.12.30 - -
Symantec - 20111.2.0.82 - 2012.01.02 - -
TheHacker - 6.7.0.1.368 - 2011.12.31 - -
TrendMicro - 9.500.0.1008 - 2012.01.01 - -
TrendMicro-HouseCall - 9.500.0.1008 - 2012.01.02 - -
VBA32 - 3.12.16.4 - 2011.12.30 - -
VIPRE - 11338 - 2012.01.01 - -
ViRobot - 2011.12.31.4857 - 2012.01.01 - -
VirusBuster - 14.1.144.0 - 2012.01.01 - -
File info:
MD5: ca537c1021acdf5b3d14a01b0d4a09b7
SHA1: 6972fcf41a13df7b7ff59aea9a1fc0807f5f5aae
SHA256: 1d0520ed8641cbe031b0950190a3cdfbcfde47555d574cb4d28f3b92897dafa8
File size: 3602816 bytes
Scan date: 2012-01-01 23:30:48 (UTC)

aswMBR

aswMBR version 0.9.9.1124 Copyright© 2011 AVAST Software
Run date: 2012-01-01 18:45:12
-----------------------------
18:45:12.577 OS Version: Windows 6.0.6002 Service Pack 2
18:45:12.578 Number of processors: 2 586 0xE0C
18:45:12.580 ComputerName: DEVONASA-PC UserName: Devonasa
18:45:18.153 Initialize success
18:46:31.286 AVAST engine defs: 12010101
18:46:38.439 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-2
18:46:38.443 Disk 0 Vendor: WDC_WD1200BEVS-00UST0 01.01A01 Size: 114473MB BusType: 3
18:46:38.472 Disk 0 MBR read successfully
18:46:38.476 Disk 0 MBR scan
18:46:38.668 Disk 0 Windows VISTA default MBR code
18:46:38.673 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 10393 MB offset 63
18:46:38.721 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 104077 MB offset 21286912
18:46:38.789 Disk 0 scanning sectors +234436608
18:46:39.096 Disk 0 scanning C:\Windows\system32\drivers
18:47:38.271 Service scanning
18:47:43.589 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
18:47:43.751 Service SysPlant C:\Windows\SYSTEM32\Drivers\SysPlant.sys **LOCKED** 32
18:47:43.833 Service Teefer2 C:\Windows\system32\DRIVERS\teefer2.sys **LOCKED** 32
18:47:44.502 Service WPS C:\Windows\system32\drivers\wpsdrvnt.sys **LOCKED** 32
18:47:44.511 Service WpsHelper C:\Windows\system32\drivers\WpsHelper.sys **LOCKED** 32
18:47:45.106 Modules scanning
18:48:01.122 Disk 0 trace - called modules:
18:48:01.149 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x83d421e8]<<
18:48:01.160 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x84eee450]
18:48:01.184 3 CLASSPNP.SYS[86bab8b3] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-2[0x84711b98]
18:48:01.212 \Driver\atapi[0x84709ae8] -> IRP_MJ_CREATE -> 0x83d421e8
18:48:03.421 AVAST engine scan C:\Windows
18:48:27.265 AVAST engine scan C:\Windows\system32
18:57:09.247 AVAST engine scan C:\Windows\system32\drivers
18:57:39.168 AVAST engine scan C:\Users\Devonasa
19:26:11.688 AVAST engine scan C:\ProgramData
19:30:34.903 Scan finished successfully
19:34:57.310 Disk 0 MBR has been saved successfully to "C:\Users\Devonasa\Desktop\MBR.dat"
19:34:57.418 The log file has been saved successfully to "C:\Users\Devonasa\Desktop\aswMBR.txt"


GMER:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-01-01 20:59:16
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-2 WDC_WD1200BEVS-00UST0 rev.01.01A01
Running: gmer.exe; Driver: C:\Users\Devonasa\AppData\Local\Temp\awlyqkog.sys


---- System - GMER 1.0.15 ----

SSDT \??\C:\Windows\system32\drivers\wpsdrvnt.sys ZwAllocateVirtualMemory [0x8B511750]
SSDT \??\C:\Windows\system32\drivers\wpsdrvnt.sys ZwProtectVirtualMemory [0x8B511880]
SSDT \??\C:\Windows\system32\drivers\wpsdrvnt.sys ZwWriteVirtualMemory [0x8B5119B0]

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!KeSetEvent + 131 822E28B4 4 Bytes [50, 17, 51, 8B]
.text ntkrnlpa.exe!KeSetEvent + 431 822E2BB4 4 Bytes [80, 18, 51, 8B]
.text ntkrnlpa.exe!KeSetEvent + 681 822E2E04 4 Bytes [B0, 19, 51, 8B]

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\tdx \Device\Tcp wpsdrvnt.sys
AttachedDevice \Driver\tdx \Device\Udp wpsdrvnt.sys

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Pro\
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\[email protected] 0xB2 0x15 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\[email protected] 0
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\[email protected] 0x12 0x21 0x5B 0xCC ...
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\[email protected] 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\[email protected] 0x2F 0x1B 0x86 0x2D ...
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\[email protected] 0x97 0x62 0x9D 0xCD ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\[email protected] 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\[email protected] 0
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\[email protected] 0xDE 0xDA 0x1F 0xD7 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\[email protected] 0xA0 0x02 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\[email protected] 0xC7 0x53 0x9B 0x27 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\[email protected] 0x0D 0x77 0x76 0x94 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9[email protected] 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\[email protected] 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\[email protected] 0x3B 0x04 0x0D 0x56 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\[email protected] 0xA0 0x02 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\[email protected] 0xC7 0x53 0x9B 0x27 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\[email protected] 0x0D 0x77 0x76 0x94 ...

---- EOF - GMER 1.0.15 ----

When I was doing the aswMBR scan, my Symantec popped up saying it found a Trojan, and Quarantined it. I'm not sure if it was picked up or not by the other scans. Here is what it said in the logs:

Posted Image

Edited by michaelg9, 02 January 2012 - 06:08 AM.
Removed old aswmbr log

  • 0

#20
michaelg9

michaelg9

    Trusted Helper

  • Malware Removal
  • 2,949 posts
Hello

Are you satisfied with symantec antivirus?

Rootkit scanners found some modifications, but I believe they are caused by Symantec. Run this:

Scan With RootKitUnHooker

  • Please choose one link and download Rootkit Unhooker and save it to your desktop.

    Link 1
    Link 2
    Link 3
  • Now double-click on RKUnhookerLE.exe to run it.
  • Click the Report tab, then click Scan.
  • Check (Tick) Drivers and Stealth
  • Uncheck the rest. then click OK
  • When prompted to Select Disks for Scan, make sure C:/ is checked and click OK
  • Wait till the scanner has finished and then click File > Save Report.
  • Save the report somewhere where you can find it. Click Close.
  • Copy the entire contents of the report and paste it in your next reply.

Note** you may get the following warning, just click OK and continue.

"Rootkit Unhooker has detected a parasite inside itself!
It is recommended to remove parasite, okay?"



Next:

Run a full scan with your antivirus and delete anything it finds. Then post the log here
  • 0

#21
Devonasa

Devonasa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
I woudn't say I'm satisfied with Symantec, it seems to never get rid of anything. What type of anti-virus/malware scanner would you recommend?

RootKitUnHooker Log

RkU Version: 3.8.389.593, Type LE (SR2)
==============================================
OS Name: Windows Vista
Version 6.0.6002 (Service Pack 2)
Number of processors #2
==============================================
>Drivers
==============================================
0x8220F000 C:\Windows\system32\ntkrnlpa.exe 3907584 bytes (Microsoft Corporation, NT Kernel & System)
0x8220F000 PnpManager 3907584 bytes
0x8220F000 RAW 3907584 bytes
0x8220F000 WMIxWDM 3907584 bytes
0xA0C10000 Win32k 2113536 bytes
0xA0C10000 C:\Windows\System32\win32k.sys 2113536 bytes (Microsoft Corporation, Multi-User Win32 Driver)
0x8BC00000 C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120102.004\NAVEX15.SYS 1572864 bytes (Symantec Corporation, AV Engine)
0x8A600000 C:\Windows\system32\DRIVERS\igdkmd32.sys 1536000 bytes (Intel Corporation, Intel Graphics Kernel Mode Driver)
0x86A0B000 C:\Windows\System32\Drivers\Ntfs.sys 1114112 bytes (Microsoft Corporation, NT File System Driver)
0x86286000 PCI_PNP9430 1114112 bytes
0x86286000 C:\Windows\System32\Drivers\sptd.sys 1114112 bytes
0x8660A000 C:\Windows\system32\drivers\ndis.sys 1093632 bytes (Microsoft Corporation, NDIS 6.0 wrapper driver)
0x8B29B000 C:\Windows\system32\DRIVERS\smserial.sys 1011712 bytes (Motorola Inc., Motorola SM56 Modem WDM Driver)
0x86804000 C:\Windows\System32\drivers\tcpip.sys 958464 bytes (Microsoft Corporation, TCP/IP Driver)
0x806D8000 C:\Windows\system32\CI.dll 917504 bytes (Microsoft Corporation, Code Integrity Module)
0xB7A04000 C:\Windows\system32\drivers\peauth.sys 909312 bytes (Microsoft Corporation, Protected Environment Authentication and Authorization Export Driver)
0xB4A03000 C:\Windows\system32\drivers\spsys.sys 720896 bytes (Microsoft Corporation, security processor)
0x86918000 C:\Windows\System32\drivers\dxgkrnl.sys 655360 bytes (Microsoft Corporation, DirectX Graphics Kernel)
0x84D07000 C:\Windows\system32\drivers\hardlock.sys 589824 bytes (SafeNet Inc., Hardlock Device Driver for Windows NT)
0x8AC08000 C:\Windows\system32\DRIVERS\HDAudBus.sys 577536 bytes (Microsoft Corporation, High Definition Audio Bus Driver)
0x86520000 C:\Windows\System32\Drivers\ksecdd.sys 462848 bytes (Microsoft Corporation, Kernel Security Support Provider Interface)
0x86207000 C:\Windows\system32\drivers\Wdf01000.sys 462848 bytes (Microsoft Corporation, Kernel Mode Driver Framework Runtime)
0x8060E000 C:\Windows\system32\mcupdate_GenuineIntel.dll 458752 bytes (Microsoft Corporation, Intel Microcode Update Library)
0xB4B0A000 C:\Windows\system32\drivers\HTTP.sys 446464 bytes (Microsoft Corporation, HTTP Protocol Stack)
0x9860F000 C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys 434176 bytes (Symantec Corporation, SPBBC Driver)
0x986BF000 C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 385024 bytes (Symantec Corporation, Symantec Eraser Control Driver)
0x8C207000 C:\Windows\system32\DRIVERS\RTL8187B.sys 385024 bytes (Realtek Semiconductor Corporation , Realtek RTL8187B NDIS Driver)
0x84CAC000 C:\Windows\system32\drivers\aksfridge.sys 372736 bytes (Aladdin Knowledge Systems Ltd., Ancillary Function Driver)
0x84C35000 C:\Windows\System32\DRIVERS\srv.sys 323584 bytes (Microsoft Corporation, Server driver)
0xA0E60000 C:\Windows\System32\ATMFD.DLL 315392 bytes (Adobe Systems Incorporated, Windows NT OpenType/Type 1 Font Driver)
0x8B39F000 C:\Windows\System32\Drivers\SRTSP.SYS 303104 bytes (Symantec Corporation, Symantec AutoProtect)
0x86408000 C:\Windows\System32\drivers\volmgrx.sys 303104 bytes (Microsoft Corporation, Volume Manager Extension Driver)
0x8C37C000 C:\Windows\system32\drivers\afd.sys 294912 bytes (Microsoft Corporation, Ancillary Function Driver for WinSock)
0x86396000 C:\Windows\system32\drivers\acpi.sys 286720 bytes (Microsoft Corporation, ACPI Driver for NT)
0x8AD79000 C:\Windows\System32\Drivers\aco6fmmp.SYS 278528 bytes (Microsoft Corporation, Microsoft iSCSI Initiator Driver)
0x80697000 C:\Windows\system32\CLFS.SYS 266240 bytes (Microsoft Corporation, Common Log File System Driver)
0x8A7B2000 C:\Windows\system32\DRIVERS\storport.sys 266240 bytes (Microsoft Corporation, Microsoft Storage Port Driver)
0x8B20A000 C:\Windows\system32\drivers\HdAudio.sys 258048 bytes (Microsoft Corporation, High Definition Audio Function Driver)
0x8ACA0000 C:\Windows\system32\DRIVERS\USBPORT.SYS 253952 bytes (Microsoft Corporation, USB 1.1 & 2.0 Port Driver)
0x98679000 C:\Windows\system32\DRIVERS\rdbss.sys 245760 bytes (Microsoft Corporation, Redirected Drive Buffering SubSystem Driver)
0x86740000 C:\Windows\system32\drivers\NETIO.SYS 241664 bytes (Microsoft Corporation, Network I/O Subsystem)
0x8BDC1000 C:\Windows\system32\DRIVERS\mrxsmb10.sys 233472 bytes (Microsoft Corporation, Longhorn SMB Downlevel SubRdr)
0x86B1B000 C:\Windows\system32\drivers\volsnap.sys 233472 bytes (Microsoft Corporation, Volume Shadow Copy Driver)
0x865BB000 C:\Windows\system32\DRIVERS\usbhub.sys 217088 bytes (Microsoft Corporation, Default Hub Driver for USB)
0x825C9000 ACPI_HAL 208896 bytes
0x825C9000 C:\Windows\system32\hal.dll 208896 bytes (Microsoft Corporation, Hardware Abstraction Layer DLL)
0x864D4000 C:\Windows\system32\drivers\fltmgr.sys 204800 bytes (Microsoft Corporation, Microsoft Filesystem Filter Manager)
0x8C34A000 C:\Windows\System32\DRIVERS\netbt.sys 204800 bytes (Microsoft Corporation, MBT Transport driver)
0x8A783000 C:\Windows\system32\DRIVERS\msiscsi.sys 192512 bytes (Microsoft Corporation, Microsoft iSCSI Initiator Driver)
0x86467000 C:\Windows\system32\DRIVERS\pcmcia.sys 184320 bytes (Microsoft Corporation, PCMCIA Bus Driver)
0x8B249000 C:\Windows\system32\drivers\portcls.sys 184320 bytes (Microsoft Corporation, Port Class (Class Driver for Port/Miniport Devices))
0x8C2FB000 C:\Windows\System32\Drivers\SYMTDI.SYS 184320 bytes (Symantec Corporation, Network Dispatch Driver)
0x86715000 C:\Windows\system32\drivers\msrpc.sys 176128 bytes (Microsoft Corporation, Kernel Remote Procedure Call Provider)
0x86591000 C:\Windows\system32\DRIVERS\ks.sys 172032 bytes (Microsoft Corporation, Kernel CSA Library)
0xB4AC3000 C:\Windows\system32\DRIVERS\nwifi.sys 172032 bytes (Microsoft Corporation, NativeWiFi Miniport Driver)
0x84D97000 C:\Windows\System32\Drivers\fastfat.SYS 163840 bytes (Microsoft Corporation, Fast FAT File System Driver)
0x84C0D000 C:\Windows\System32\DRIVERS\srv2.sys 163840 bytes (Microsoft Corporation, Smb 2.0 Server driver)
0x84C84000 C:\Windows\system32\drivers\WpsHelper.sys 163840 bytes (Symantec Corporation, Symantec Intrusion Detection - WpsHelper)
0x8ACED000 C:\Windows\system32\DRIVERS\e100b325.sys 159744 bytes (Intel Corporation, Intel® PRO/100 Adapter NDIS 5.1 driver)
0x86B6B000 C:\Windows\System32\drivers\ecache.sys 159744 bytes (Microsoft Corporation, Special Memory Device Cache)
0x807B8000 C:\Windows\system32\drivers\pci.sys 159744 bytes (Microsoft Corporation, NT Plug and Play PCI Enumerator)
0x8ADBD000 C:\Windows\System32\Drivers\SCSIPORT.SYS 155648 bytes (Microsoft Corporation, SCSI Port Driver)
0x8B276000 C:\Windows\system32\drivers\drmk.sys 151552 bytes (Microsoft Corporation, Microsoft Kernel DRM Descrambler Filter)
0x8BD88000 C:\Windows\system32\Drivers\SYMEVENT.SYS 151552 bytes (Symantec Corporation, Symantec Event Library)
0x869CF000 C:\Windows\system32\DRIVERS\ndiswan.sys 143360 bytes (Microsoft Corporation, MS PPP Framing Driver (Strong Encryption))
0x86BA3000 C:\Windows\system32\drivers\CLASSPNP.SYS 135168 bytes (Microsoft Corporation, SCSI Class System Dll)
0xB4BC2000 C:\Windows\system32\drivers\mrxdav.sys 135168 bytes (Microsoft Corporation, Windows NT WebDav Minirdr)
0x8C292000 C:\Windows\System32\drivers\VIDEOPRT.SYS 135168 bytes (Microsoft Corporation, Video Port Driver)
0x987C3000 C:\Windows\system32\DRIVERS\mrxsmb.sys 126976 bytes (Microsoft Corporation, Windows NT SMB Minirdr)
0x864AC000 C:\Windows\system32\drivers\ataport.SYS 122880 bytes (Microsoft Corporation, ATAPI Driver Extension)
0x9871D000 C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 122880 bytes (Symantec Corporation, Symantec Eraser Utility Driver)
0x867C3000 C:\Windows\system32\DRIVERS\teefer2.sys 122880 bytes (Symantec Corporation, Symantec CMC Firewall Teefer2)
0xB4B77000 C:\Windows\System32\DRIVERS\srvnet.sys 118784 bytes (Microsoft Corporation, Server Network driver)
0x868EE000 C:\Windows\System32\drivers\fwpkclnt.sys 110592 bytes (Microsoft Corporation, FWP/IPsec Kernel-Mode API)
0x9878D000 C:\Windows\system32\drivers\luafv.sys 110592 bytes (Microsoft Corporation, LUA File Virtualization Filter Driver)
0xB4B94000 C:\Windows\system32\DRIVERS\bowser.sys 102400 bytes (Microsoft Corporation, NT Lan Manager Datagram Receiver Driver)
0x8AD5B000 C:\Windows\system32\DRIVERS\cdrom.sys 98304 bytes (Microsoft Corporation, SCSI CD-ROM Driver)
0xB4BE3000 C:\Windows\system32\DRIVERS\mrxsmb20.sys 98304 bytes (Microsoft Corporation, Longhorn SMB 2.0 Redirector)
0x9873B000 C:\Windows\System32\Drivers\dfsc.sys 94208 bytes (Microsoft Corporation, DFS Namespace Client Driver)
0x869B8000 C:\Windows\system32\DRIVERS\rasl2tp.sys 94208 bytes (Microsoft Corporation, RAS L2TP mini-port/call-manager driver)
0xB7AFD000 C:\Windows\system32\DRIVERS\cdfs.sys 90112 bytes (Microsoft Corporation, CD-ROM File System Driver)
0x8C3C4000 C:\Windows\system32\DRIVERS\pacer.sys 90112 bytes (Microsoft Corporation, QoS Packet Scheduler)
0x8C2E5000 C:\Windows\system32\DRIVERS\tdx.sys 90112 bytes (Microsoft Corporation, TDI Translation Driver)
0xB4BAD000 C:\Windows\System32\drivers\mpsdrv.sys 86016 bytes (Microsoft Corporation, Microsoft Protection Service Driver)
0x8679E000 C:\Windows\system32\DRIVERS\rassstp.sys 86016 bytes (Microsoft Corporation, RAS SSTP Miniport Call Manager)
0xB7BE1000 C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120102.004\NAVENG.SYS 81920 bytes (Symantec Corporation, AV Engine)
0x8678A000 C:\Windows\system32\DRIVERS\raspptp.sys 81920 bytes (Microsoft Corporation, Peer-to-Peer Tunneling Protocol)
0x8C336000 C:\Windows\system32\DRIVERS\smb.sys 81920 bytes (Microsoft Corporation, SMB Transport driver)
0x8AD32000 C:\Windows\system32\DRIVERS\i8042prt.sys 77824 bytes (Microsoft Corporation, i8042 Port Driver)
0xB4AF7000 C:\Windows\system32\DRIVERS\rspndr.sys 77824 bytes (Microsoft Corporation, Link-Layer Topology Responder Driver for NDIS 6)
0x8C3E8000 C:\Windows\system32\DRIVERS\wanarp.sys 77824 bytes (Microsoft Corporation, MS Remote Access and Routing ARP Driver)
0x86B92000 C:\Windows\system32\drivers\disk.sys 69632 bytes (Microsoft Corporation, PnP Disk Driver)
0x867E1000 C:\Windows\System32\Drivers\NDProxy.SYS 69632 bytes (Microsoft Corporation, NDIS Proxy)
0x8067E000 C:\Windows\system32\PSHED.dll 69632 bytes (Microsoft Corporation, Platform Specific Hardware Error Driver)
0x86506000 C:\Windows\system32\drivers\fileinfo.sys 65536 bytes (Microsoft Corporation, FileInfo Filter Driver)
0xB4AB3000 C:\Windows\system32\DRIVERS\lltdio.sys 65536 bytes (Microsoft Corporation, Link-Layer Topology Mapper I/O Driver)
0x86494000 C:\Windows\System32\drivers\mountmgr.sys 65536 bytes (Microsoft Corporation, Mount Point Manager)
0x8AD14000 C:\Windows\system32\DRIVERS\ohci1394.sys 65536 bytes (Microsoft Corporation, 1394 OpenHCI Port Driver)
0x867B3000 C:\Windows\system32\DRIVERS\termdd.sys 65536 bytes (Microsoft Corporation, Terminal Server Driver)
0x86909000 C:\Windows\system32\DRIVERS\intelppm.sys 61440 bytes (Microsoft Corporation, Processor Device Driver)
0xB7B57000 C:\Windows\system32\DRIVERS\monitor.sys 61440 bytes (Microsoft Corporation, Monitor Driver)
0x86B5C000 C:\Windows\System32\Drivers\mup.sys 61440 bytes (Microsoft Corporation, Multiple UNC Provider driver)
0x863ED000 C:\Windows\System32\drivers\partmgr.sys 61440 bytes (Microsoft Corporation, Partition Management Driver)
0x8677B000 C:\Windows\system32\DRIVERS\raspppoe.sys 61440 bytes (Microsoft Corporation, RAS PPPoE mini-port/call-manager driver)
0x8ACDE000 C:\Windows\system32\DRIVERS\usbehci.sys 61440 bytes (Microsoft Corporation, EHCI eUSB Miniport Driver)
0x807E9000 C:\Windows\system32\drivers\volmgr.sys 61440 bytes (Microsoft Corporation, Volume Manager Driver)
0x8AD24000 C:\Windows\system32\DRIVERS\1394BUS.SYS 57344 bytes (Microsoft Corporation, 1394 Bus Device Driver)
0xA0E50000 C:\Windows\System32\cdd.dll 57344 bytes (Microsoft Corporation, Canonical Display Driver)
0x8C3DA000 C:\Windows\system32\DRIVERS\netbios.sys 57344 bytes (Microsoft Corporation, NetBIOS interface driver)
0x8C2CE000 C:\Windows\System32\Drivers\Npfs.SYS 57344 bytes (Microsoft Corporation, NPFS Driver)
0x86459000 C:\Windows\system32\drivers\PCIIDEX.SYS 57344 bytes (Microsoft Corporation, PCI IDE Bus Driver Extension)
0x86278000 C:\Windows\system32\drivers\WDFLDR.SYS 57344 bytes (Microsoft Corporation, Kernel Mode Driver Framework Loader)
0x8C328000 C:\Windows\system32\drivers\wpsdrvnt.sys 57344 bytes (Symantec Corporation, Symantec CMC Firewall WPS)
0x98752000 C:\Windows\System32\Drivers\crashdmp.sys 53248 bytes (Microsoft Corporation, Crash Dump Driver)
0x8B392000 C:\Windows\system32\drivers\modem.sys 53248 bytes (Microsoft Corporation, Modem Device Driver)
0x869F2000 C:\Windows\system32\DRIVERS\umbus.sys 53248 bytes (Microsoft Corporation, User-Mode Bus Enumerator)
0xB7AEC000 C:\Windows\System32\drivers\tcpipreg.sys 49152 bytes (Microsoft Corporation, TCP/IP Registry Compatibility Driver)
0x8C286000 C:\Windows\System32\drivers\vga.sys 49152 bytes (Microsoft Corporation, VGA/Super VGA Video Driver)
0x8A777000 C:\Windows\System32\drivers\watchdog.sys 49152 bytes (Microsoft Corporation, Watchdog Driver)
0x9875F000 C:\Windows\System32\Drivers\dump_dumpata.sys 45056 bytes
0x8AD45000 C:\Windows\system32\DRIVERS\kbdclass.sys 45056 bytes (Microsoft Corporation, Keyboard Class Driver)
0x8AD50000 C:\Windows\system32\DRIVERS\mouclass.sys 45056 bytes (Microsoft Corporation, Mouse Class Driver)
0x8C2C3000 C:\Windows\System32\Drivers\Msfs.SYS 45056 bytes (Microsoft Corporation, Mailslot driver)
0x8ADEE000 C:\Windows\system32\DRIVERS\ndistapi.sys 45056 bytes (Microsoft Corporation, NDIS 3.0 connection wrapper driver)
0x8ADE3000 C:\Windows\system32\DRIVERS\TDI.SYS 45056 bytes (Microsoft Corporation, TDI Wrapper)
0x86BEF000 C:\Windows\system32\DRIVERS\tunnel.sys 45056 bytes (Microsoft Corporation, Microsoft Tunnel Interface Driver)
0x8AC95000 C:\Windows\system32\DRIVERS\usbuhci.sys 45056 bytes (Microsoft Corporation, UHCI USB Miniport Driver)
0x807DF000 C:\Windows\system32\DRIVERS\BATTC.SYS 40960 bytes (Microsoft Corporation, Battery Class Driver)
0x9876A000 C:\Windows\System32\Drivers\dump_msahci.sys 40960 bytes
0x98774000 C:\Windows\System32\drivers\Dxapi.sys 40960 bytes (Microsoft Corporation, DirectX API Driver)
0x864CA000 C:\Windows\system32\drivers\msahci.sys 40960 bytes (Microsoft Corporation, MS AHCI 1.0 Standard Driver)
0x8A7F3000 C:\Windows\system32\DRIVERS\mssmbios.sys 40960 bytes (Microsoft Corporation, System Management BIOS Driver)
0xB4AED000 C:\Windows\system32\DRIVERS\ndisuio.sys 40960 bytes (Microsoft Corporation, NDIS User mode I/O driver)
0x986B5000 C:\Windows\system32\drivers\nsiproxy.sys 40960 bytes (Microsoft Corporation, NSI Proxy)
0x86516000 C:\Windows\System32\Drivers\PxHelp20.sys 40960 bytes (Sonic Solutions, Px Engine Device Driver for Windows 2000/XP)
0xB7AE2000 C:\Windows\System32\Drivers\secdrv.SYS 40960 bytes (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., Macrovision SECURITY Driver)
0x8C265000 C:\Windows\System32\Drivers\SRTSPX.SYS 40960 bytes (Symantec Corporation, Symantec AutoProtect)
0xB7B21000 C:\Windows\System32\Drivers\BlackBox.SYS 36864 bytes (RKU Driver)
0x86BC4000 C:\Windows\system32\drivers\crcdisk.sys 36864 bytes (Microsoft Corporation, Disk Block Verification Filter Driver)
0x8C26F000 C:\Windows\System32\Drivers\Fs_Rec.SYS 36864 bytes (Microsoft Corporation, File System Recognizer Driver)
0x8C2DC000 C:\Windows\System32\DRIVERS\rasacd.sys 36864 bytes (Microsoft Corporation, RAS Automatic Connection Driver)
0xA0E30000 C:\Windows\System32\TSDDD.dll 36864 bytes (Microsoft Corporation, Framebuffer Display Driver)
0x86A00000 C:\Windows\system32\DRIVERS\tunmp.sys 36864 bytes (Microsoft Corporation, Microsoft Tunnel Interface Driver)
0x863DC000 C:\Windows\system32\drivers\WMILIB.SYS 36864 bytes (Microsoft Corporation, WMILIB WMI support library Dll)
0x864A4000 C:\Windows\system32\drivers\atapi.sys 32768 bytes (Microsoft Corporation, ATAPI IDE Miniport Driver)
0x8068F000 C:\Windows\system32\BOOTVID.dll 32768 bytes (Microsoft Corporation, VGA Boot Driver)
0x863E5000 C:\Windows\system32\drivers\msisadrv.sys 32768 bytes (Microsoft Corporation, ISA Driver)
0x8C2B3000 C:\Windows\System32\DRIVERS\RDPCDD.sys 32768 bytes (Microsoft Corporation, RDP Miniport)
0x8C2BB000 C:\Windows\system32\drivers\rdpencdd.sys 32768 bytes (Microsoft Corporation, RDP Miniport)
0x86B54000 C:\Windows\System32\Drivers\spldr.sys 32768 bytes (Microsoft Corporation, loader for security processor)
0x987A8000 C:\Windows\system32\DRIVERS\SymAFR.sys 32768 bytes (Windows ® Codename Longhorn DDK provider, Symantec AFR min-filter)
0x8C27F000 C:\Windows\System32\Drivers\Beep.SYS 28672 bytes (Microsoft Corporation, BEEP Driver)
0x86452000 C:\Windows\system32\drivers\intelide.sys 28672 bytes (Microsoft Corporation, Intel PCI IDE Driver)
0x80607000 C:\Windows\system32\kdcom.dll 28672 bytes (Microsoft Corporation, Kernel Debugger HW Extension DLL)
0x8C278000 C:\Windows\System32\Drivers\Null.SYS 28672 bytes (Microsoft Corporation, NULL Driver)
0x8AD73000 C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 24576 bytes (GEAR Software Inc., CD DVD Filter)
0xB7AF8000 C:\Windows\system32\DRIVERS\LVPr2Mon.sys 20480 bytes (-, -)
0xB7B13000 C:\Windows\System32\Drivers\SYMREDRV.SYS 20480 bytes (Symantec Corporation, Redirector Filter Driver)
0x86BFA000 C:\Windows\system32\DRIVERS\CmBatt.sys 16384 bytes (Microsoft Corporation, Control Method Battery Driver)
0x863FC000 C:\Windows\system32\DRIVERS\compbatt.sys 12288 bytes (Microsoft Corporation, Composite Battery Driver)
0x8ADF9000 C:\Windows\system32\DRIVERS\swenum.sys 8192 bytes (Microsoft Corporation, Plug and Play Software Device Enumerator)
0x83D521E8 unknown_irp_handler 3608 bytes
0x850231E8 unknown_irp_handler 3608 bytes
0x856991E8 unknown_irp_handler 3608 bytes
0x856B51E8 unknown_irp_handler 3608 bytes
0x83D501E8 unknown_irp_handler 3608 bytes
0x856691E8 unknown_irp_handler 3608 bytes
0x85AFA1E8 unknown_irp_handler 3608 bytes
0x85B141E8 unknown_irp_handler 3608 bytes
0x856B61E8 unknown_irp_handler 3608 bytes
0x83D511E8 unknown_irp_handler 3608 bytes
0x83FA51E8 unknown_irp_handler 3608 bytes
0x85679430 unknown_irp_handler 3024 bytes
==============================================
>Stealth
==============================================
WARNING: File locked for read access [C:\Windows\system32\drivers\sptd.sys]

Symantec Log


Posted Image
  • 0

#22
michaelg9

michaelg9

    Trusted Helper

  • Malware Removal
  • 2,949 posts
Hello

I would suggest that you uninstall Symantec and install Avast! Home Edition - a very good free AntiVirus. Otherwise you can wait for symantec's license to expire and then uninstall it

If you uninstalled symantec, after you install avast please run another aswmbr scan and post the log here :thumbsup: Otherwise don't do it

Next:

1. Open the Start Menu.

2. Click on All Programs and Accessories, then right click on Command Prompt and click on Run as administrator. (See screenshot below)
Posted Image

3. In the elevated command prompt, type sfc /scannow and press Enter. (see screenshot below)
NOTE: This may take a little bit to finish.
Posted Image

4. When the scan is complete, copy the line below and paste it at the command prompt. Then press Enter

findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log >%userprofile%\Desktop\sfcdetails.txt


5. The file sfcdetails.txt will now be on your desktop. Please open it , Edit | select all | copy and paste it in your next reply.

Then do this:

Click Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator. Then type (with an Enter after each line).

sigverif

Press Start in the new window. This will check your drivers. If you just get a few when it finishes tell me what they are. If you get a lot just look for those with newish dates (since about the time the problem started.)



Next:

1. Open the Start Menu.
2. Click on All Programs and Accessories, then right click on Command Prompt and click on Run as administrator. (See screenshot below)
Posted Image
3. In the elevated command prompt, type:

chkdsk /f /r

.
It will ask you to run chkdsk at the next boot type Y and press enter.
4.Reboot and don't touch any key, let chkdsk scan your Drive.
5.When it finishes, read here on how to find the chkdsk log and copy it and paste it in your next post.



Next:

  • Please download the Event Viewer Tool by Vino Rosso and save it to your Desktop
  • Right-click VEW.exe and Run AS Administrator
  • Under 'Select log to query', select:
    System
  • Under 'Select type to list', select:
    Error
    Warning
  • Then use the 'Number of events' as follows:
  • Click the radio button for 'Number of events'
  • Type 20 in the 1 to 20 box
  • Then click the Run button.
  • Notepad will open with the output log.
  • Please post the Output log in your next reply then repeat but select Application.


Next:

  • Download Speccy (Look in the upper right for the Download Latest Version button)
  • Download, Save and Install it.
  • Run Speccy by right clicking and Run As Administrator.
  • When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives.
  • OK. Attach the file to your next post.

  • 0

#23
Devonasa

Devonasa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
sfcdetails.txt

2012-01-03 14:47:32, Info CSI 00000006 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:47:32, Info CSI 00000007 [SR] Beginning Verify and Repair transaction
2012-01-03 14:47:49, Info CSI 00000009 [SR] Verify complete
2012-01-03 14:47:51, Info CSI 0000000a [SR] Verifying 100 (0x00000064) components
2012-01-03 14:47:51, Info CSI 0000000b [SR] Beginning Verify and Repair transaction
2012-01-03 14:48:08, Info CSI 0000000d [SR] Verify complete
2012-01-03 14:48:10, Info CSI 0000000e [SR] Verifying 100 (0x00000064) components
2012-01-03 14:48:10, Info CSI 0000000f [SR] Beginning Verify and Repair transaction
2012-01-03 14:48:15, Info CSI 00000011 [SR] Verify complete
2012-01-03 14:48:17, Info CSI 00000012 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:48:17, Info CSI 00000013 [SR] Beginning Verify and Repair transaction
2012-01-03 14:48:20, Info CSI 00000015 [SR] Verify complete
2012-01-03 14:48:23, Info CSI 00000016 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:48:23, Info CSI 00000017 [SR] Beginning Verify and Repair transaction
2012-01-03 14:48:26, Info CSI 00000019 [SR] Verify complete
2012-01-03 14:48:28, Info CSI 0000001a [SR] Verifying 100 (0x00000064) components
2012-01-03 14:48:28, Info CSI 0000001b [SR] Beginning Verify and Repair transaction
2012-01-03 14:48:32, Info CSI 0000001d [SR] Verify complete
2012-01-03 14:48:33, Info CSI 0000001e [SR] Verifying 100 (0x00000064) components
2012-01-03 14:48:33, Info CSI 0000001f [SR] Beginning Verify and Repair transaction
2012-01-03 14:48:38, Info CSI 00000021 [SR] Verify complete
2012-01-03 14:48:39, Info CSI 00000022 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:48:39, Info CSI 00000023 [SR] Beginning Verify and Repair transaction
2012-01-03 14:48:43, Info CSI 00000025 [SR] Verify complete
2012-01-03 14:48:46, Info CSI 00000026 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:48:46, Info CSI 00000027 [SR] Beginning Verify and Repair transaction
2012-01-03 14:48:49, Info CSI 00000029 [SR] Verify complete
2012-01-03 14:48:51, Info CSI 0000002a [SR] Verifying 100 (0x00000064) components
2012-01-03 14:48:51, Info CSI 0000002b [SR] Beginning Verify and Repair transaction
2012-01-03 14:48:55, Info CSI 0000002d [SR] Verify complete
2012-01-03 14:48:57, Info CSI 0000002e [SR] Verifying 100 (0x00000064) components
2012-01-03 14:48:57, Info CSI 0000002f [SR] Beginning Verify and Repair transaction
2012-01-03 14:49:00, Info CSI 00000031 [SR] Verify complete
2012-01-03 14:49:01, Info CSI 00000032 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:49:01, Info CSI 00000033 [SR] Beginning Verify and Repair transaction
2012-01-03 14:49:04, Info CSI 00000035 [SR] Verify complete
2012-01-03 14:49:06, Info CSI 00000036 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:49:06, Info CSI 00000037 [SR] Beginning Verify and Repair transaction
2012-01-03 14:49:10, Info CSI 00000039 [SR] Verify complete
2012-01-03 14:49:12, Info CSI 0000003a [SR] Verifying 100 (0x00000064) components
2012-01-03 14:49:12, Info CSI 0000003b [SR] Beginning Verify and Repair transaction
2012-01-03 14:49:15, Info CSI 0000003d [SR] Verify complete
2012-01-03 14:49:17, Info CSI 0000003e [SR] Verifying 100 (0x00000064) components
2012-01-03 14:49:17, Info CSI 0000003f [SR] Beginning Verify and Repair transaction
2012-01-03 14:49:23, Info CSI 00000041 [SR] Verify complete
2012-01-03 14:49:25, Info CSI 00000042 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:49:25, Info CSI 00000043 [SR] Beginning Verify and Repair transaction
2012-01-03 14:49:29, Info CSI 00000045 [SR] Verify complete
2012-01-03 14:49:32, Info CSI 00000046 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:49:32, Info CSI 00000047 [SR] Beginning Verify and Repair transaction
2012-01-03 14:49:36, Info CSI 00000049 [SR] Verify complete
2012-01-03 14:49:38, Info CSI 0000004a [SR] Verifying 100 (0x00000064) components
2012-01-03 14:49:38, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2012-01-03 14:49:41, Info CSI 0000004d [SR] Verify complete
2012-01-03 14:49:42, Info CSI 0000004e [SR] Verifying 100 (0x00000064) components
2012-01-03 14:49:42, Info CSI 0000004f [SR] Beginning Verify and Repair transaction
2012-01-03 14:49:45, Info CSI 00000051 [SR] Verify complete
2012-01-03 14:49:46, Info CSI 00000052 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:49:46, Info CSI 00000053 [SR] Beginning Verify and Repair transaction
2012-01-03 14:49:49, Info CSI 00000055 [SR] Verify complete
2012-01-03 14:49:51, Info CSI 00000056 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:49:51, Info CSI 00000057 [SR] Beginning Verify and Repair transaction
2012-01-03 14:50:00, Info CSI 00000059 [SR] Verify complete
2012-01-03 14:50:02, Info CSI 0000005a [SR] Verifying 100 (0x00000064) components
2012-01-03 14:50:02, Info CSI 0000005b [SR] Beginning Verify and Repair transaction
2012-01-03 14:50:05, Info CSI 0000005d [SR] Verify complete
2012-01-03 14:50:07, Info CSI 0000005e [SR] Verifying 100 (0x00000064) components
2012-01-03 14:50:07, Info CSI 0000005f [SR] Beginning Verify and Repair transaction
2012-01-03 14:50:15, Info CSI 00000061 [SR] Verify complete
2012-01-03 14:50:17, Info CSI 00000062 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:50:17, Info CSI 00000063 [SR] Beginning Verify and Repair transaction
2012-01-03 14:50:19, Info CSI 00000065 [SR] Verify complete
2012-01-03 14:50:21, Info CSI 00000066 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:50:21, Info CSI 00000067 [SR] Beginning Verify and Repair transaction
2012-01-03 14:50:27, Info CSI 00000069 [SR] Verify complete
2012-01-03 14:50:30, Info CSI 0000006a [SR] Verifying 100 (0x00000064) components
2012-01-03 14:50:30, Info CSI 0000006b [SR] Beginning Verify and Repair transaction
2012-01-03 14:50:33, Info CSI 0000006d [SR] Verify complete
2012-01-03 14:50:34, Info CSI 0000006e [SR] Verifying 100 (0x00000064) components
2012-01-03 14:50:34, Info CSI 0000006f [SR] Beginning Verify and Repair transaction
2012-01-03 14:50:45, Info CSI 00000071 [SR] Verify complete
2012-01-03 14:50:47, Info CSI 00000072 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:50:47, Info CSI 00000073 [SR] Beginning Verify and Repair transaction
2012-01-03 14:50:50, Info CSI 00000075 [SR] Verify complete
2012-01-03 14:50:52, Info CSI 00000076 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:50:52, Info CSI 00000077 [SR] Beginning Verify and Repair transaction
2012-01-03 14:50:56, Info CSI 00000079 [SR] Verify complete
2012-01-03 14:50:58, Info CSI 0000007a [SR] Verifying 100 (0x00000064) components
2012-01-03 14:50:58, Info CSI 0000007b [SR] Beginning Verify and Repair transaction
2012-01-03 14:51:01, Info CSI 0000007d [SR] Verify complete
2012-01-03 14:51:03, Info CSI 0000007e [SR] Verifying 100 (0x00000064) components
2012-01-03 14:51:03, Info CSI 0000007f [SR] Beginning Verify and Repair transaction
2012-01-03 14:51:30, Info CSI 00000081 [SR] Verify complete
2012-01-03 14:51:31, Info CSI 00000082 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:51:31, Info CSI 00000083 [SR] Beginning Verify and Repair transaction
2012-01-03 14:51:46, Info CSI 00000085 [SR] Verify complete
2012-01-03 14:51:47, Info CSI 00000086 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:51:47, Info CSI 00000087 [SR] Beginning Verify and Repair transaction
2012-01-03 14:52:13, Info CSI 00000089 [SR] Verify complete
2012-01-03 14:52:14, Info CSI 0000008a [SR] Verifying 100 (0x00000064) components
2012-01-03 14:52:14, Info CSI 0000008b [SR] Beginning Verify and Repair transaction
2012-01-03 14:52:28, Info CSI 0000008e [SR] Verify complete
2012-01-03 14:52:30, Info CSI 0000008f [SR] Verifying 100 (0x00000064) components
2012-01-03 14:52:30, Info CSI 00000090 [SR] Beginning Verify and Repair transaction
2012-01-03 14:52:44, Info CSI 00000093 [SR] Verify complete
2012-01-03 14:52:45, Info CSI 00000094 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:52:45, Info CSI 00000095 [SR] Beginning Verify and Repair transaction
2012-01-03 14:53:04, Info CSI 00000097 [SR] Verify complete
2012-01-03 14:53:06, Info CSI 00000098 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:53:06, Info CSI 00000099 [SR] Beginning Verify and Repair transaction
2012-01-03 14:53:26, Info CSI 000000a3 [SR] Verify complete
2012-01-03 14:53:27, Info CSI 000000a4 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:53:27, Info CSI 000000a5 [SR] Beginning Verify and Repair transaction
2012-01-03 14:53:50, Info CSI 000000a7 [SR] Verify complete
2012-01-03 14:53:53, Info CSI 000000a8 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:53:53, Info CSI 000000a9 [SR] Beginning Verify and Repair transaction
2012-01-03 14:54:29, Info CSI 000000ab [SR] Verify complete
2012-01-03 14:54:30, Info CSI 000000ac [SR] Verifying 100 (0x00000064) components
2012-01-03 14:54:30, Info CSI 000000ad [SR] Beginning Verify and Repair transaction
2012-01-03 14:55:03, Info CSI 000000af [SR] Verify complete
2012-01-03 14:55:04, Info CSI 000000b0 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:55:04, Info CSI 000000b1 [SR] Beginning Verify and Repair transaction
2012-01-03 14:55:31, Info CSI 000000b3 [SR] Verify complete
2012-01-03 14:55:33, Info CSI 000000b4 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:55:33, Info CSI 000000b5 [SR] Beginning Verify and Repair transaction
2012-01-03 14:55:57, Info CSI 000000b7 [SR] Verify complete
2012-01-03 14:55:58, Info CSI 000000b8 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:55:58, Info CSI 000000b9 [SR] Beginning Verify and Repair transaction
2012-01-03 14:56:59, Info CSI 000000bd [SR] Verify complete
2012-01-03 14:57:03, Info CSI 000000be [SR] Verifying 100 (0x00000064) components
2012-01-03 14:57:03, Info CSI 000000bf [SR] Beginning Verify and Repair transaction
2012-01-03 14:57:50, Info CSI 000000c1 [SR] Verify complete
2012-01-03 14:57:52, Info CSI 000000c2 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:57:52, Info CSI 000000c3 [SR] Beginning Verify and Repair transaction
2012-01-03 14:58:38, Info CSI 000000c5 [SR] Verify complete
2012-01-03 14:58:43, Info CSI 000000c6 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:58:43, Info CSI 000000c7 [SR] Beginning Verify and Repair transaction
2012-01-03 14:58:55, Info CSI 000000c9 [SR] Verify complete
2012-01-03 14:58:56, Info CSI 000000ca [SR] Verifying 100 (0x00000064) components
2012-01-03 14:58:56, Info CSI 000000cb [SR] Beginning Verify and Repair transaction
2012-01-03 14:59:04, Info CSI 000000cd [SR] Verify complete
2012-01-03 14:59:05, Info CSI 000000ce [SR] Verifying 100 (0x00000064) components
2012-01-03 14:59:05, Info CSI 000000cf [SR] Beginning Verify and Repair transaction
2012-01-03 14:59:13, Info CSI 000000d1 [SR] Verify complete
2012-01-03 14:59:15, Info CSI 000000d2 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:59:15, Info CSI 000000d3 [SR] Beginning Verify and Repair transaction
2012-01-03 14:59:40, Info CSI 000000f1 [SR] Verify complete
2012-01-03 14:59:40, Info CSI 000000f2 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:59:40, Info CSI 000000f3 [SR] Beginning Verify and Repair transaction
2012-01-03 14:59:48, Info CSI 000000f5 [SR] Verify complete
2012-01-03 14:59:49, Info CSI 000000f6 [SR] Verifying 100 (0x00000064) components
2012-01-03 14:59:49, Info CSI 000000f7 [SR] Beginning Verify and Repair transaction
2012-01-03 14:59:59, Info CSI 000000f9 [SR] Verify complete
2012-01-03 15:00:02, Info CSI 000000fa [SR] Verifying 100 (0x00000064) components
2012-01-03 15:00:02, Info CSI 000000fb [SR] Beginning Verify and Repair transaction
2012-01-03 15:00:10, Info CSI 000000fd [SR] Verify complete
2012-01-03 15:00:14, Info CSI 000000fe [SR] Verifying 100 (0x00000064) components
2012-01-03 15:00:14, Info CSI 000000ff [SR] Beginning Verify and Repair transaction
2012-01-03 15:00:32, Info CSI 00000101 [SR] Verify complete
2012-01-03 15:00:35, Info CSI 00000102 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:00:35, Info CSI 00000103 [SR] Beginning Verify and Repair transaction
2012-01-03 15:01:00, Info CSI 00000106 [SR] Verify complete
2012-01-03 15:01:03, Info CSI 00000107 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:01:03, Info CSI 00000108 [SR] Beginning Verify and Repair transaction
2012-01-03 15:01:11, Info CSI 0000010a [SR] Verify complete
2012-01-03 15:01:13, Info CSI 0000010b [SR] Verifying 100 (0x00000064) components
2012-01-03 15:01:13, Info CSI 0000010c [SR] Beginning Verify and Repair transaction
2012-01-03 15:01:32, Info CSI 0000010e [SR] Verify complete
2012-01-03 15:01:33, Info CSI 0000010f [SR] Verifying 100 (0x00000064) components
2012-01-03 15:01:33, Info CSI 00000110 [SR] Beginning Verify and Repair transaction
2012-01-03 15:01:43, Info CSI 00000112 [SR] Verify complete
2012-01-03 15:01:44, Info CSI 00000113 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:01:44, Info CSI 00000114 [SR] Beginning Verify and Repair transaction
2012-01-03 15:01:57, Info CSI 00000116 [SR] Verify complete
2012-01-03 15:01:59, Info CSI 00000117 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:01:59, Info CSI 00000118 [SR] Beginning Verify and Repair transaction
2012-01-03 15:02:22, Info CSI 00000133 [SR] Verify complete
2012-01-03 15:02:24, Info CSI 00000134 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:02:24, Info CSI 00000135 [SR] Beginning Verify and Repair transaction
2012-01-03 15:02:53, Info CSI 00000141 [SR] Verify complete
2012-01-03 15:02:55, Info CSI 00000142 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:02:55, Info CSI 00000143 [SR] Beginning Verify and Repair transaction
2012-01-03 15:05:19, Info CSI 00000145 [SR] Verify complete
2012-01-03 15:05:28, Info CSI 00000146 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:05:28, Info CSI 00000147 [SR] Beginning Verify and Repair transaction
2012-01-03 15:06:40, Info CSI 00000149 [SR] Verify complete
2012-01-03 15:06:43, Info CSI 0000014a [SR] Verifying 100 (0x00000064) components
2012-01-03 15:06:43, Info CSI 0000014b [SR] Beginning Verify and Repair transaction
2012-01-03 15:07:12, Info CSI 0000014d [SR] Verify complete
2012-01-03 15:07:14, Info CSI 0000014e [SR] Verifying 100 (0x00000064) components
2012-01-03 15:07:14, Info CSI 0000014f [SR] Beginning Verify and Repair transaction
2012-01-03 15:07:42, Info CSI 00000151 [SR] Verify complete
2012-01-03 15:07:44, Info CSI 00000152 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:07:44, Info CSI 00000153 [SR] Beginning Verify and Repair transaction
2012-01-03 15:08:01, Info CSI 00000155 [SR] Verify complete
2012-01-03 15:08:04, Info CSI 00000156 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:08:04, Info CSI 00000157 [SR] Beginning Verify and Repair transaction
2012-01-03 15:08:16, Info CSI 0000015a [SR] Verify complete
2012-01-03 15:08:18, Info CSI 0000015b [SR] Verifying 100 (0x00000064) components
2012-01-03 15:08:18, Info CSI 0000015c [SR] Beginning Verify and Repair transaction
2012-01-03 15:08:29, Info CSI 0000015e [SR] Verify complete
2012-01-03 15:08:31, Info CSI 0000015f [SR] Verifying 100 (0x00000064) components
2012-01-03 15:08:31, Info CSI 00000160 [SR] Beginning Verify and Repair transaction
2012-01-03 15:09:47, Info CSI 00000162 [SR] Verify complete
2012-01-03 15:09:51, Info CSI 00000163 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:09:51, Info CSI 00000164 [SR] Beginning Verify and Repair transaction
2012-01-03 15:10:19, Info CSI 00000166 [SR] Verify complete
2012-01-03 15:10:22, Info CSI 00000167 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:10:22, Info CSI 00000168 [SR] Beginning Verify and Repair transaction
2012-01-03 15:10:58, Info CSI 0000016a [SR] Verify complete
2012-01-03 15:11:00, Info CSI 0000016b [SR] Verifying 100 (0x00000064) components
2012-01-03 15:11:00, Info CSI 0000016c [SR] Beginning Verify and Repair transaction
2012-01-03 15:12:12, Info CSI 0000016e [SR] Verify complete
2012-01-03 15:12:20, Info CSI 0000016f [SR] Verifying 100 (0x00000064) components
2012-01-03 15:12:20, Info CSI 00000170 [SR] Beginning Verify and Repair transaction
2012-01-03 15:13:11, Info CSI 00000172 [SR] Verify complete
2012-01-03 15:13:21, Info CSI 00000173 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:13:21, Info CSI 00000174 [SR] Beginning Verify and Repair transaction
2012-01-03 15:14:28, Info CSI 00000176 [SR] Verify complete
2012-01-03 15:14:31, Info CSI 00000177 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:14:31, Info CSI 00000178 [SR] Beginning Verify and Repair transaction
2012-01-03 15:16:04, Info CSI 0000017b [SR] Verify complete
2012-01-03 15:16:06, Info CSI 0000017c [SR] Verifying 100 (0x00000064) components
2012-01-03 15:16:06, Info CSI 0000017d [SR] Beginning Verify and Repair transaction
2012-01-03 15:16:26, Info CSI 0000017f [SR] Verify complete
2012-01-03 15:16:30, Info CSI 00000180 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:16:30, Info CSI 00000181 [SR] Beginning Verify and Repair transaction
2012-01-03 15:17:01, Info CSI 00000183 [SR] Verify complete
2012-01-03 15:17:04, Info CSI 00000184 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:17:04, Info CSI 00000185 [SR] Beginning Verify and Repair transaction
2012-01-03 15:17:25, Info CSI 00000188 [SR] Verify complete
2012-01-03 15:17:28, Info CSI 00000189 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:17:28, Info CSI 0000018a [SR] Beginning Verify and Repair transaction
2012-01-03 15:17:48, Info CSI 0000018e [SR] Verify complete
2012-01-03 15:17:52, Info CSI 0000018f [SR] Verifying 100 (0x00000064) components
2012-01-03 15:17:52, Info CSI 00000190 [SR] Beginning Verify and Repair transaction
2012-01-03 15:18:58, Info CSI 00000192 [SR] Verify complete
2012-01-03 15:19:07, Info CSI 00000193 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:19:07, Info CSI 00000194 [SR] Beginning Verify and Repair transaction
2012-01-03 15:20:11, Info CSI 00000196 [SR] Verify complete
2012-01-03 15:20:15, Info CSI 00000197 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:20:15, Info CSI 00000198 [SR] Beginning Verify and Repair transaction
2012-01-03 15:20:23, Info CSI 0000019a [SR] Verify complete
2012-01-03 15:20:31, Info CSI 0000019b [SR] Verifying 100 (0x00000064) components
2012-01-03 15:20:31, Info CSI 0000019c [SR] Beginning Verify and Repair transaction
2012-01-03 15:20:56, Info CSI 0000019e [SR] Verify complete
2012-01-03 15:21:01, Info CSI 0000019f [SR] Verifying 100 (0x00000064) components
2012-01-03 15:21:01, Info CSI 000001a0 [SR] Beginning Verify and Repair transaction
2012-01-03 15:21:56, Info CSI 000001a2 [SR] Verify complete
2012-01-03 15:22:04, Info CSI 000001a3 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:22:04, Info CSI 000001a4 [SR] Beginning Verify and Repair transaction
2012-01-03 15:22:25, Info CSI 000001a6 [SR] Verify complete
2012-01-03 15:22:30, Info CSI 000001a7 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:22:30, Info CSI 000001a8 [SR] Beginning Verify and Repair transaction
2012-01-03 15:23:58, Info CSI 000001aa [SR] Verify complete
2012-01-03 15:24:03, Info CSI 000001ab [SR] Verifying 100 (0x00000064) components
2012-01-03 15:24:03, Info CSI 000001ac [SR] Beginning Verify and Repair transaction
2012-01-03 15:24:23, Info CSI 000001ae [SR] Verify complete
2012-01-03 15:24:30, Info CSI 000001af [SR] Verifying 100 (0x00000064) components
2012-01-03 15:24:30, Info CSI 000001b0 [SR] Beginning Verify and Repair transaction
2012-01-03 15:24:51, Info CSI 000001b2 [SR] Verify complete
2012-01-03 15:24:55, Info CSI 000001b3 [SR] Verifying 100 (0x00000064) components
2012-01-03 15:24:55, Info CSI 000001b4 [SR] Beginning Verify and Repair transaction
2012-01-03 15:25:16, Info CSI 000001bf [SR] Verify complete
2012-01-03 15:25:18, Info CSI 000001c0 [SR] Verifying 27 (0x0000001b) components
2012-01-03 15:25:18, Info CSI 000001c1 [SR] Beginning Verify and Repair transaction
2012-01-03 15:25:30, Info CSI 000001c3 [SR] Verify complete
2012-01-03 15:25:30, Info CSI 000001c4 [SR] Repairing 0 components
2012-01-03 15:25:30, Info CSI 000001c5 [SR] Beginning Verify and Repair transaction
2012-01-03 15:25:30, Info CSI 000001c7 [SR] Repair complete

sigverif

[c:\progra~2\symantec\defini~1\virusd~1\20120102.004]
naveng.sys
navex15.sys
[c:\program files\common files\symantec shared\eengine]
eectrl.sys
eraserutilrebootdrv.

Unscanned Files:
------------------
[c:\windows\c:\combofix]
catchme.sys The directory name is invalid.
[c:\windows\systemroot\system32\drivers]
sptd.sys The directory name is invalid.


Chkdsk Log

Checking file system on C:
The type of the file system is NTFS.
Volume label is Windows.

A disk check has been scheduled.
Windows will now check the disk.
Cleaning up instance tags for file 0x4dcc.
Cleaning up instance tags for file 0x4e77.
328640 file records processed. 1357 large file records processed. 0 bad file records processed. 0 EA records processed. 66 reparse records processed. Unable to locate the file name attribute of index entry couri.ttf
of index $I30 with parent 0x11841 in file 0x27d2f.
Deleting index entry couri.ttf in index $I30 of file 71745.
Unable to locate the file name attribute of index entry euphemia.ttf
of index $I30 with parent 0x11841 in file 0x27d60.
Deleting index entry euphemia.ttf in index $I30 of file 71745.
417814 index entries processed. CHKDSK is recovering lost files.
Recovering orphaned file couri.ttf (163119) into directory file 71745.
2 unindexed files processed. Recovering orphaned file euphemia.ttf (163168) into directory file 71745.
328640 security descriptors processed. Cleaning up 2641 unused index entries from index $SII of file 0x9.
Cleaning up 2641 unused index entries from index $SDH of file 0x9.
Cleaning up 2641 unused security descriptors.
44588 data files processed. CHKDSK is verifying Usn Journal...
37643616 USN bytes processed. Usn Journal verification completed.
CHKDSK is verifying file data (stage 4 of 5)...
Read failure with status 0xc0000185 at offset 0x9ae476000 for 0x10000 bytes.
Read failure with status 0xc0000185 at offset 0x9ae47a000 for 0x1000 bytes.
Windows replaced bad clusters in file 235335
of name \PROGRA~1\EA GAMES\THA45C~1\TSData\Res\UserData\SC4TER~1\ARIDIA~1.PNG.
328624 files processed. File data verification completed.
CHKDSK is verifying free space (stage 5 of 5)...
6699425 free clusters processed. Free space verification is complete.
Adding 1 bad clusters to the Bad Clusters File.
CHKDSK discovered free space marked as allocated in the
master file table (MFT) bitmap.
Correcting errors in the Volume Bitmap.
Windows has made corrections to the file system.

106574847 KB total disk space.
79195116 KB in 282624 files.
138548 KB in 44589 indexes.
36 KB in bad sectors.
443447 KB in use by the system.
65536 KB occupied by the log file.
26797700 KB available on disk.

4096 bytes in each allocation unit.
26643711 total allocation units on disk.
6699425 allocation units available on disk.

Internal Info:
c0 03 05 00 39 fe 04 00 d8 07 08 00 00 00 00 00 ....9...........
c2 08 00 00 42 00 00 00 00 00 00 00 00 00 00 00 ....B...........
42 00 00 00 52 73 7e 77 80 84 35 00 80 7c 35 00 B...Rs~w..5..|5.

Windows has finished checking your disk.
Please wait while your computer restarts.

VEW log: System

Vino's Event Viewer v01c run on Windows Vista in English
Report run at 03/01/2012 7:12:22 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 24/06/2010 3:23:20 PM
Type: Error Category: 0
Event: 6008 Source: EventLog
The previous system shutdown at 11:22:14 AM on 6/24/2010 was unexpected.

Log: 'System' Date/Time: 22/06/2010 5:51:06 PM
Type: Error Category: 0
Event: 6008 Source: EventLog
The previous system shutdown at 1:45:12 PM on 6/22/2010 was unexpected.

Log: 'System' Date/Time: 21/06/2010 12:01:29 AM
Type: Error Category: 0
Event: 6008 Source: EventLog
The previous system shutdown at 8:00:08 PM on 6/20/2010 was unexpected.

Log: 'System' Date/Time: 20/06/2010 7:11:32 PM
Type: Error Category: 0
Event: 6008 Source: EventLog
The previous system shutdown at 3:10:11 PM on 6/20/2010 was unexpected.

Log: 'System' Date/Time: 19/06/2010 11:00:58 PM
Type: Error Category: 0
Event: 6008 Source: EventLog
The previous system shutdown at 6:59:28 PM on 6/19/2010 was unexpected.

Log: 'System' Date/Time: 17/06/2010 1:17:38 AM
Type: Error Category: 0
Event: 6008 Source: EventLog
The previous system shutdown at 9:15:49 PM on 6/16/2010 was unexpected.

Log: 'System' Date/Time: 15/06/2010 3:55:55 PM
Type: Error Category: 0
Event: 6008 Source: EventLog
The previous system shutdown at 11:46:00 AM on 6/15/2010 was unexpected.

Log: 'System' Date/Time: 11/06/2010 8:50:16 PM
Type: Error Category: 0
Event: 6008 Source: EventLog
The previous system shutdown at 4:49:00 PM on 6/11/2010 was unexpected.

Log: 'System' Date/Time: 11/06/2010 7:47:39 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:47:39 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:47:39 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:47:39 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:32:47 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:32:47 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:32:47 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:32:47 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:32:47 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:32:47 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:24:31 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Log: 'System' Date/Time: 11/06/2010 7:24:31 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 10/06/2010 8:17:46 PM
Type: Warning Category: 0
Event: 1003 Source: Microsoft-Windows-Dhcp-Client
Your computer was not able to renew its address from the network (from the DHCP Server) for the Network Card with network address 00C0A8F20871. The following error occurred: The operation was canceled by the user.. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.

Log: 'System' Date/Time: 10/06/2010 8:17:39 PM
Type: Warning Category: 0
Event: 1003 Source: Microsoft-Windows-Dhcp-Client
Your computer was not able to renew its address from the network (from the DHCP Server) for the Network Card with network address 00C0A8F20871. The following error occurred: The operation was canceled by the user.. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.

Log: 'System' Date/Time: 10/06/2010 8:17:33 PM
Type: Warning Category: 0
Event: 1003 Source: Microsoft-Windows-Dhcp-Client
Your computer was not able to renew its address from the network (from the DHCP Server) for the Network Card with network address 00C0A8F20871. The following error occurred: The operation was canceled by the user.. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.

Log: 'System' Date/Time: 10/06/2010 8:17:29 PM
Type: Warning Category: 0
Event: 1003 Source: Microsoft-Windows-Dhcp-Client
Your computer was not able to renew its address from the network (from the DHCP Server) for the Network Card with network address 00C0A8F20871. The following error occurred: The operation was canceled by the user.. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.

Log: 'System' Date/Time: 10/06/2010 3:13:55 PM
Type: Warning Category: 0
Event: 4 Source: E100B
Adapter Intel® PRO/100 VE Network Connection: Adapter Link Down

Log: 'System' Date/Time: 10/06/2010 7:36:55 AM
Type: Warning Category: 256
Event: 514 Source: mfehidk
The event description cannot be found.

Log: 'System' Date/Time: 10/06/2010 7:33:09 AM
Type: Warning Category: 0
Event: 4 Source: E100B
Adapter Intel® PRO/100 VE Network Connection: Adapter Link Down

Log: 'System' Date/Time: 10/06/2010 7:31:39 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 10/06/2010 7:14:36 AM
Type: Warning Category: 0
Event: 4376 Source: Microsoft-Windows-Servicing
Servicing has required reboot to complete the operation of setting package KB979482(Security Update) into Staged(Staged) state

Log: 'System' Date/Time: 10/06/2010 7:14:36 AM
Type: Warning Category: 0
Event: 4376 Source: Microsoft-Windows-Servicing
Servicing has required reboot to complete the operation of setting package KB979482(Security Update) into Staged(Staged) state

Log: 'System' Date/Time: 10/06/2010 7:14:36 AM
Type: Warning Category: 0
Event: 4376 Source: Microsoft-Windows-Servicing
Servicing has required reboot to complete the operation of setting package KB979482(Security Update) into Install Requested(Install Requested) state

Log: 'System' Date/Time: 10/06/2010 7:14:36 AM
Type: Warning Category: 0
Event: 4376 Source: Microsoft-Windows-Servicing
Servicing has required reboot to complete the operation of setting package KB979482(Security Update) into Install Requested(Install Requested) state

Log: 'System' Date/Time: 10/06/2010 7:14:36 AM
Type: Warning Category: 0
Event: 4376 Source: Microsoft-Windows-Servicing
Servicing has required reboot to complete the operation of setting package KB979482(Security Update) into Install Requested(Install Requested) state

Log: 'System' Date/Time: 10/06/2010 7:14:36 AM
Type: Warning Category: 0
Event: 4376 Source: Microsoft-Windows-Servicing
Servicing has required reboot to complete the operation of setting package KB979482(Security Update) into Install Requested(Install Requested) state

Log: 'System' Date/Time: 10/06/2010 7:14:19 AM
Type: Warning Category: 0
Event: 4374 Source: Microsoft-Windows-Servicing
Windows Servicing identified that package KB979482(Security Update) is not applicable for this system

Log: 'System' Date/Time: 10/06/2010 7:14:19 AM
Type: Warning Category: 0
Event: 4374 Source: Microsoft-Windows-Servicing
Windows Servicing identified that package KB979482(Security Update) is not applicable for this system

Log: 'System' Date/Time: 10/06/2010 7:14:14 AM
Type: Warning Category: 0
Event: 4374 Source: Microsoft-Windows-Servicing
Windows Servicing identified that package KB979482(Security Update) is not applicable for this system

Log: 'System' Date/Time: 10/06/2010 7:14:12 AM
Type: Warning Category: 0
Event: 4376 Source: Microsoft-Windows-Servicing
Servicing has required reboot to complete the operation of setting package KB980195(Security Update) into Staged(Staged) state

Log: 'System' Date/Time: 10/06/2010 7:14:12 AM
Type: Warning Category: 0
Event: 4376 Source: Microsoft-Windows-Servicing
Servicing has required reboot to complete the operation of setting package KB980195(Security Update) into Staged(Staged) state

Log: 'System' Date/Time: 10/06/2010 7:14:12 AM
Type: Warning Category: 0
Event: 4376 Source: Microsoft-Windows-Servicing
Servicing has required reboot to complete the operation of setting package KB980195(Security Update) into Install Requested(Install Requested) state

VEW log: Application

Vino's Event Viewer v01c run on Windows Vista in English
Report run at 03/01/2012 7:13:48 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 03/01/2012 8:05:43 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledSPRetry 37565

Log: 'Application' Date/Time: 03/01/2012 8:05:43 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledEvent 37565

Log: 'Application' Date/Time: 03/01/2012 8:05:43 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 03/01/2012 8:05:42 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledSPRetry 36566

Log: 'Application' Date/Time: 03/01/2012 8:05:42 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledEvent 36566

Log: 'Application' Date/Time: 03/01/2012 8:05:42 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 03/01/2012 8:05:41 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledSPRetry 35552

Log: 'Application' Date/Time: 03/01/2012 8:05:41 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledEvent 35552

Log: 'Application' Date/Time: 03/01/2012 8:05:41 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 03/01/2012 8:05:40 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledSPRetry 34538

Log: 'Application' Date/Time: 03/01/2012 8:05:40 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledEvent 34538

Log: 'Application' Date/Time: 03/01/2012 8:05:40 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 03/01/2012 8:05:39 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledSPRetry 33524

Log: 'Application' Date/Time: 03/01/2012 8:05:39 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledEvent 33524

Log: 'Application' Date/Time: 03/01/2012 8:05:39 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 03/01/2012 8:05:38 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledSPRetry 32261

Log: 'Application' Date/Time: 03/01/2012 8:05:38 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledEvent 32261

Log: 'Application' Date/Time: 03/01/2012 8:05:38 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 03/01/2012 8:05:37 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledSPRetry 31247

Log: 'Application' Date/Time: 03/01/2012 8:05:37 AM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Task Scheduling Error: m->NextScheduledEvent 31247

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 03/01/2012 10:25:39 PM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 1 user registry handles leaked from \Registry\User\S-1-5-21-1663229470-2338449591-2720500769-1000:
Process 1720 (\Device\HarddiskVolume2\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe) has opened key \REGISTRY\USER\S-1-5-21-1663229470-2338449591-2720500769-1000\Software\Symantec\Symantec Endpoint Protection\AV\Custom Tasks


Log: 'Application' Date/Time: 03/01/2012 9:50:11 PM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 1 user registry handles leaked from \Registry\User\S-1-5-21-1663229470-2338449591-2720500769-1000_Classes:
Process 2088 (\Device\HarddiskVolume2\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe) has opened key \REGISTRY\USER\S-1-5-21-1663229470-2338449591-2720500769-1000_CLASSES


Log: 'Application' Date/Time: 03/01/2012 9:50:08 PM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 1 user registry handles leaked from \Registry\User\S-1-5-21-1663229470-2338449591-2720500769-1000:
Process 2088 (\Device\HarddiskVolume2\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe) has opened key \REGISTRY\USER\S-1-5-21-1663229470-2338449591-2720500769-1000\Software\Symantec\Symantec Endpoint Protection\AV\Custom Tasks


Log: 'Application' Date/Time: 03/01/2012 7:18:21 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside d:\Windows\winsxs\x86_microsoft-windows-mediaplayer-skins_31bf3856ad364e35_6.0.6000.16386_none_a72a602ddc87b980\Revert.wmz due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 7:18:06 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside d:\Windows\winsxs\x86_microsoft-windows-localizeddrivers_31bf3856ad364e35_6.0.6000.16386_en-us_7c961b0ac7cd3eec\locdrv.cab due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 7:17:04 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside d:\Windows\winsxs\x86_microsoft-windows-ehome-mcskin_wmz_31bf3856ad364e35_6.0.6000.16386_none_87ea07494261c3c7\mcskin.wmz due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 6:58:36 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside d:\Windows\ehome\mcskin.wmz due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 6:55:34 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside d:\Program Files\Windows Media Player\Skins\Revert.wmz due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 6:53:52 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 3 files inside c:\Windows\Installer\$PatchCache$\Managed\26DDC2EC4210AC63483DF9D4FCC5B59D\3.5.30729\Chrome_jar.3643236F_FC70_11D3_A536_0090278A1BB8 due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 6:52:23 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside c:\Windows\ehome\mcskin.wmz due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 6:44:15 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside c:\Windows\winsxs\x86_microsoft-windows-mediaplayer-skins_31bf3856ad364e35_6.0.6002.18005_none_ab4c9b35d69495a0\Revert.wmz due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 6:44:14 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside c:\Windows\winsxs\x86_microsoft-windows-mediaplayer-skins_31bf3856ad364e35_6.0.6000.16386_none_a72a602ddc87b980\Revert.wmz due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 6:39:12 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside c:\Windows\winsxs\x86_microsoft-windows-ehome-mcskin_wmz_31bf3856ad364e35_6.0.6000.16386_none_87ea07494261c3c7\mcskin.wmz due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 6:29:58 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside c:\Windows\winsxs\x86_microsoft-windows-localizeddrivers_31bf3856ad364e35_6.0.6000.16386_en-us_7c961b0ac7cd3eec\locdrv.cab due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 5:56:49 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 4 files inside c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\MicrosoftDotNetFrameworkAssistant.xpi due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 5:56:46 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\chrome\chrome.jar due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 5:56:44 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 3 files inside c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.cab due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 5:54:21 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 2 files inside c:\Users\Devonasa\Videos\setup_11.0.0.1245.x01_2011_12_31_02_31.exe due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 5:49:52 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 4 files inside c:\Users\Devonasa\Music\iTunes\iTunes Media\Mobile Applications\Netflix.ipa due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent


Log: 'Application' Date/Time: 03/01/2012 5:49:44 AM
Type: Warning Category: 0
Event: 6 Source: Symantec AntiVirus
Could not scan 1 files inside c:\Users\Devonasa\Music\iTunes\iTunes Media\Mobile Applications\Facebook.ipa due to extraction errors encountered by the Decomposer Engines.Application has encountered an error.
For more information, please go to: http://www.symantec....ld=symantec_ent




Speccy

Summary
Operating System
MS Windows Vista Home Premium 32-bit SP2
CPU
Intel Pentium T2080 @ 1.73GHz 56 °C
Yonah 65nm Technology
RAM
1.00 GB Dual-Channel DDR2 @ 266MHz (4-4-4-12)
Motherboard
Gateway 54 °C
Graphics
Generic PnP Monitor ([email protected])
Mobile Intel® 945GM Express Chipset Controller 0 (Microsoft Corporation - WDDM)
Mobile Intel® 945GM Express Chipset Controller 1 (Microsoft Corporation - WDDM)
Hard Drives
117GB Western Digital WDC WD1200BEVS-00UST0 ATA Device (SATA) 41 °C
Optical Drives
Optiarc DVD RW AD-7560A ATA Device
DUT 1YNCLYVK SCSI CdRom Device
Audio
High Definition Audio Device
Operating System
MS Windows Vista Home Premium 32-bit SP2
Installation Date: 30 January 2010, 16:38
Serial Number: 6DX2X-QR7XB-3RBY2-BGQ2R-DR9M6
Windows Security Center
User Account Control (UAC) Enabled
Notify level 0 - Never Notify
Firewall Enabled
Windows Update
AutoUpdate Download Automatically and Install at Set Scheduled time
Schedule Frequency Every day
Schedule Time 3 am
Windows Defender
Windows Defender Enabled
Environment Variables
USERPROFILE C:\Users\Devonasa
SystemRoot C:\Windows
User Variables
TEMP C:\Users\Devonasa\AppData\Local\Temp
TMP C:\Users\Devonasa\AppData\Local\Temp
Machine Variables
ComSpec C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK NO
OS Windows_NT
Path C:\Windows\system32
C:\Windows
C:\Windows\system32\wbem
C:\Program Files\Common Files\DivX Shared
C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared
C:\Program Files\QuickTime\QTSystem
%SYSTEMROOT%\System32\WindowsPowerShell\v1.0
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE x86
TEMP C:\Windows\TEMP
TMP C:\Windows\TEMP
USERNAME SYSTEM
windir C:\Windows
PROCESSOR_LEVEL 6
PROCESSOR_IDENTIFIER x86 Family 6 Model 14 Stepping 12, GenuineIntel
PROCESSOR_REVISION 0e0c
NUMBER_OF_PROCESSORS 2
asl.log Destination=file
CLASSPATH .;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
QTJAVA C:\Program Files\Java\jre6\lib\ext\QTJava.zip
PSModulePath C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
Battery
AC line Online
Battery full time Unknown
Battery Charge % 100 %
Battery State High
Amount of time remaining (sec) Unknown
Power Profile
Active power scheme Home/Office Desk
Hibernation Disabled
Power Shutdown Enabled
Power Suspend Enabled
Turn Off Monitor after: (On AC Power) 20 min
Turn Off Monitor after: (On Battery Power) 5 min
Turn Off Hard Disk after: (On AC Power) Never
Turn Off Hard Disk after: (On Battery Power) 10 min
Suspend after: (On AC Power) Never
Suspend after: (On Battery Power) 5 min
Screen saver Enabled
Uptime
Current Session
Current Time 1/3/2012 7:41:28 PM
Current Uptime 2592 sec (0 d, 00 h, 43 m, 12 s)
Last Boot Time 1/3/2012 6:58:16 PM
TimeZone
TimeZone GMT -5 Hours
Language English
Country United States
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Scheduler
GoogleUpdateTaskMachineUA 1/3/2012 7:54 PM;Every 1 hour(s) from 1:54 PM for 24 hour(s) every day, starting 10/22/2011
GoogleUpdateTaskUserS-1-5-21-1663229470-2338449591-2720500769-1000UA 1/3/2012 8:00 PM;Every 1 hour(s) from 2:00 AM for 24 hour(s) every day, starting 10/25/2011
GoogleUpdateTaskUserS-1-5-21-1663229470-2338449591-2720500769-1000Core 1/4/2012 2:00 AM;At 2:00 AM every day, starting 10/25/2011
GoogleUpdateTaskMachineCore 1/4/2012 1:54 PM;Run at user logon
Hotfixes
12/15/2011 Security Update for Windows Vista (KB2633171)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/15/2011 Security Update for Windows Vista (KB2619339)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/15/2011 Windows Malicious Software Removal Tool - December 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
12/15/2011 Security Update for Windows Vista (KB2639417)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/15/2011 Update for Windows Mail Junk E-mail Filter [December 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
12/15/2011 Security Update for Windows Vista (KB2620712)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/15/2011 Update for Windows Vista (KB2633952)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2012. After you install this item, you
may have to restart your computer.
12/15/2011 Cumulative Security Update for Internet Explorer 8 for Windows Vista (KB2618444)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
12/15/2011 Cumulative Security Update for ActiveX Killbits for Windows Vista (KB2618451)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
11/12/2011 Update for Windows Vista (KB2641690)
Install this update to resolve an issue which requires an update
to the certificate revocation list on Windows systems and to
keep your systems certificate list up to date. After you install
this update, you may have to restart your system.
11/10/2011 Update for Windows Mail Junk E-mail Filter [November 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
11/10/2011 Windows Malicious Software Removal Tool - November 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
11/10/2011 Security Update for Windows Vista (KB2588516)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
11/10/2011 Security Update for Windows Vista (KB2620704)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/27/2011 Update for Internet Explorer 8 Compatibility View List for Windows Vista (KB2598845)
This Compatibility View List update helps make Web sites that
are designed for older browsers look better in Internet Explorer
8. When users install Internet Explorer 8, they will be given
a choice about opting-in to a list of sites that should be displayed
in Compatibility View. After you install this item, you may have
to restart Internet Explorer.
10/14/2011 Security Update for Windows Vista (KB2579686)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/14/2011 Security Update for Windows Vista (KB2567053)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/13/2011 Windows Malicious Software Removal Tool - October 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
10/13/2011 Cumulative Security Update for Internet Explorer 8 for Windows Vista (KB2586448)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
10/13/2011 Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Vista SP2 and Windows Server 2008 SP2 x86 (KB2572075)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/13/2011 Update for Windows Mail Junk E-mail Filter [October 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
10/13/2011 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008 x86 (KB2572078)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/13/2011 Security Update for Windows Vista (KB2564958)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/13/2011 Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Vista SP2 and Windows Server 2008 SP2 x86 (KB2572075)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/13/2011 Update for Windows Mail Junk E-mail Filter [October 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
10/13/2011 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008 x86 (KB2572078)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/13/2011 Security Update for Windows Vista (KB2564958)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
9/29/2011 Windows Malicious Software Removal Tool - September 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
9/23/2011 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2539636)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
9/15/2011 Update for Windows Mail Junk E-mail Filter [September 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
9/15/2011 Windows Malicious Software Removal Tool - September 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
9/15/2011 Update for Windows Vista (KB2616676)
Install this update to resolve an issue which requires an update
to the certificate revocation list on Windows systems and to
keep your systems certificate list up to date. After you install
this update, you may have to restart your system.
9/15/2011 Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2468871)
Install this update to resolve issues in Microsoft .NET Framework
4. For a complete listing of the issues that are included in
this update, see the associated Microsoft Knowledge Base article
for more information. After you install this item, you may have
to restart your computer.
9/15/2011 Security Update for Windows Vista (KB2570947)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
9/15/2011 Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2533523)
This update addresses stability, reliability, and performance
issues in Microsoft .NET Framework 4. After you install this
item, you may have to restart your computer.
9/8/2011 Update for Windows Vista (KB2522422)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/7/2011 Microsoft .NET Framework 3.5 SP1, Windows Vista SP2, and Windows Server 2008 SP2 Security Update x86 (KB979910)
A security issue has been identified that could allow an attacker
to tamper with digitally signed content without being detected,
when this content is being consumed by an application that makes
use of the Microsoft .NET Framework on a Windows-based system.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
9/7/2011 Security Update for Windows Vista (KB2567680)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
9/7/2011 Update for Windows Vista (KB2607712)
Install this update to resolve an issue which requires an update
to the certificate revocation list on Windows systems and to
keep your systems certificate list up to date. After you install
this update, you may have to restart your system.
9/7/2011 Security Update for Windows Vista (KB2532531)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
9/7/2011 Platform Update Supplement for Windows Vista (KB2117917)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/7/2011 Platform Update for Windows Vista (KB971644)
The Platform Update for Windows Vista is a collection of runtime
libraries that make it easy for developers to target a wider
customer base. After you install this item, you may have to restart
your computer.
9/7/2011 Update Rollup for ActiveX Killbits for Windows Vista (KB2562937)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
9/7/2011 Security Update for Microsoft .NET Framework 3.5 SP1, Windows Vista SP2, and Windows Server 2008 SP2 x86 (KB2416470)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
9/7/2011 Update for Windows Vista (KB2570791)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2011. After you install this item, you
may have to restart your computer.
9/7/2011 Security Update for Windows Vista (KB2510531)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
9/7/2011 Update for Windows Vista (KB2505189)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/7/2011 Update for Windows Vista (KB2545698)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/7/2011 Security Update for .NET Framework 3.5 SP1, Windows Vista SP2, and Windows Server 2008 SP2 x86 (KB2518866)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
9/7/2011 Microsoft .NET Framework 3.5 SP1, Windows Vista SP2, and Windows Server 2008 SP2 Update x86 (KB982525)
This update addresses a set of known issues of the Microsoft
.NET Framework 3.5 Service Pack 1. After you install this item,
you may have to restart your computer.
9/7/2011 Security Update for Internet Explorer 8 for Windows Vista (KB2544521)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
9/7/2011 Update for Windows Mail Junk E-mail Filter [August 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
9/7/2011 Cumulative Security Update for Internet Explorer 8 for Windows Vista (KB2559049)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
9/7/2011 Update for Windows Vista (KB2563227)
Install this update to resolve performance and reliability issues
in Windows. By applying this update, you can achieve better performance
and responsiveness in various scenarios. For a complete listing
of the issues that are included in this update, see the associated
Microsoft Knowledge Base article for more information. After
you install this item, you may have to restart your computer.
9/7/2011 Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Vista SP2 and Windows Server 2008 SP2 x86 (KB2539633)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
9/7/2011 Security Update for Windows Vista (KB2556532)
A security issue has been identified that could allow an authenticated
local attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
9/7/2011 Security Update for Windows Vista (KB2563894)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
9/7/2011 Microsoft .NET Framework 3.5 SP1, Windows Vista SP2, and Windows Server 2008 SP2 Update x86 (KB982536)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
9/7/2011 Security Update for Windows Vista Service Pack 2 (KB979688)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
9/6/2011 Windows Vista Service Pack 2 (KB948465)
Windows Vista Service Pack 2 is an update to Windows Vista that
includes all of the updates that have been delivered since Service
Pack 1, as well as support for new types of hardware and emerging
hardware standards. After you install this item, you may have
to restart your computer. This update is provided to you and
licensed under the Windows Vista License Terms.
9/5/2011 Internet Explorer 8 for Windows Vista
Internet Explorer 8 is the latest version of the familiar Web
browser that you are most comfortable using. Internet Explorer
8 helps you get everything that you want from the Web faster,
easier, and more privately and securely than ever. After you
install this item, you may have to restart your computer. This
update is provided to you and licensed under the Windows Vista
License Terms.
9/3/2011 Definition Update for Windows Defender - KB915597 (Definition 1.111.1301.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/30/2011 Definition Update for Windows Defender - KB915597 (Definition 1.111.1045.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/26/2011 Definition Update for Windows Defender - KB915597 (Definition 1.111.775.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/24/2011 Definition Update for Windows Defender - KB915597 (Definition 1.111.490.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/19/2011 Definition Update for Windows Defender - KB915597 (Definition 1.111.216.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/17/2011 Definition Update for Windows Defender - KB915597 (Definition 1.111.35.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/16/2011 Definition Update for Windows Defender - KB915597 (Definition 1.109.1918.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/14/2011 Definition Update for Windows Defender - KB915597 (Definition 1.109.1657.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/13/2011 Security Update for Windows Vista (KB2536276)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/13/2011 Windows Malicious Software Removal Tool - August 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
8/9/2011 Update for Windows (KB970158)
Kernel-Mode Driver Framework
7/13/2011 Security Update for Windows Vista (KB2555917)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
7/13/2011 Update for Windows Mail Junk E-mail Filter [July 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
7/13/2011 Windows Malicious Software Removal Tool - July 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
7/13/2011 Update for Windows Vista (KB2533623)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
7/13/2011 Security Update for Windows Vista (KB2507938)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/28/2011 Update for Windows Vista (KB2541763)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/16/2011 Security Update for Windows Vista (KB2544893)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
6/16/2011 Security Update for Windows Vista (KB2536276)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/15/2011 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB2530548)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
6/15/2011 Security Update for Windows Vista (KB2535512)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/15/2011 Windows Malicious Software Removal Tool - June 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
6/15/2011 Security Update for Windows Vista (KB2503665)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/15/2011 Security Update for Windows Vista (KB2536275)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
6/15/2011 Security Update for Internet Explorer 7 for Windows Vista (KB2544521)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/15/2011 Security Update for Windows Vista (KB2476490)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/15/2011 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2478663)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
6/15/2011 Security Update for .NET Framework 3.5 SP1 on Windows Vista SP1 and Windows Server 2008 x86 (KB2478659)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
6/15/2011 Security Update for .NET Framework 3.5 SP1 on Windows Vista SP1 and Windows Server 2008 x86 (KB2518865)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
6/15/2011 Update for Windows Mail Junk E-mail Filter [June 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
6/15/2011 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2518870)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
6/15/2011 Security Update for Windows Vista (KB2544893)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
6/15/2011 Security Update for Windows Vista (KB2536276)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/4/2011 Microsoft .NET Framework 3.5 Service Pack 1 and .NET Framework 3.5 Family Update (KB951847) x86
The Microsoft .NET Framework 3.5 Service Pack 1 is a full cumulative
update that contains many new features building incrementally
upon .NET Framework 2.0, 3.0, 3.5, and includes cumulative servicing
updates to the .NET Framework 2.0 and the .NET Framework 3.0
subcomponents. The .NET Framework 3.5 Family Update provides
important application compatibility updates. This update is provided
to you and licensed under the Windows Vista and Windows Server
2008 License Terms.
5/30/2011 Update for Windows Vista (KB957200)
This is a reliability update. This update resolves some performance
and reliability issues in Windows Vista. By applying this update,
you can achieve better performance and responsiveness in various
scenarios. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
5/11/2011 Windows Malicious Software Removal Tool - May 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
5/11/2011 Update for Windows Mail Junk E-mail Filter [May 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
5/1/2011 Update for Windows Vista (KB957200)
This is a reliability update. This update resolves some performance
and reliability issues in Windows Vista. By applying this update,
you can achieve better performance and responsiveness in various
scenarios. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
4/26/2011 Update for Windows Vista (KB2492386)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
4/26/2011 Windows Malicious Software Removal Tool - April 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
4/14/2011 Security Update for .NET Framework 3.5 SP1 on Windows Vista SP1 and Windows Server 2008 x86 (KB2449741)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
4/14/2011 Security Update for Windows Vista (KB2507618)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/14/2011 Security Update for Windows Vista (KB2511455)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/14/2011 Security Update for Windows Vista (KB2506212)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/14/2011 Security Update for Windows Vista (KB2508429)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/14/2011 Security Update for Windows Vista (KB2509553)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/14/2011 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB2497640)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
4/14/2011 Security Update for Windows Vista (KB2506223)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/14/2011 Security Update for Windows Vista (KB2510581)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/14/2011 Security Update for Windows Vista (KB2503658)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
4/14/2011 Security Update for Windows Vista (KB2412687)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/14/2011 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2446708)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
4/14/2011 Cumulative Security Update for ActiveX Killbits for Windows Vista (KB2508272)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
4/14/2011 Update for Windows Mail Junk E-mail Filter [April 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
4/14/2011 Windows Malicious Software Removal Tool - April 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
3/24/2011 Update for Windows Vista (KB2524375)
Install this update to resolve an issue which requires an update
to the certificate revocation list on Windows systems and to
keep your systems certificate list up to date. After you install
this update, you may have to restart your system.
3/8/2011 Windows Malicious Software Removal Tool - March 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
3/8/2011 Update for Windows Mail Junk E-mail Filter [March 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
3/8/2011 Security Update for Windows Vista (KB2479943)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
3/8/2011 Security Update for Windows Vista (KB2481109)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/22/2011 Windows PowerShell 2.0 and WinRM 2.0 for Windows Vista (KB968930)
The Windows Management Framework Core package includes Windows
PowerShell 2.0 and Windows Remote Management (WinRM) 2.0. For
more information on the Windows Management Framework, see http://support.micro....com/kb/968929.
2/8/2011 Security Update for Windows Vista (KB2479628)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/8/2011 Security Update for Windows Vista (KB2393802)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/8/2011 Update for Windows Mail Junk E-mail Filter [February 2011] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer
2/8/2011 Update for Windows Vista (KB971029)
Install this update to restrict AutoRun entries in the AutoPlay
dialog to only CD and DVD drives. After you install this item,
you may have to restart your computer.
2/8/2011 Windows Malicious Software Removal Tool - February 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
2/8/2011 Security Update for Windows Vista (KB2483185)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/8/2011 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB2482017)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
2/8/2011 Security Update for Windows Vista (KB2485376)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/12/2011 Windows Malicious Software Removal Tool - January 2011 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
1/12/2011 Security Update for Windows Vista (KB2419640)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/12/2011 Security Update for Windows Vista (KB2478935)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/15/2010 Security Update for Windows Vista (KB2423089)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/15/2010 Security Update for Windows Vista (KB2436673)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/15/2010 Security Update for Windows Vista (KB2305420)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/15/2010 Security Update for Windows Vista (KB2442962)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/15/2010 Security Update for Windows Vista (KB2296199)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/15/2010 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB2416400)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
12/15/2010 Update for Windows Vista (KB2443685)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2011. After you install this item, you
may have to restart your computer.
12/15/2010 Update for Internet Explorer for Windows Vista (KB2467659)
Install this update to resolve issues in Internet Explorer. For
a complete listing of the issues that are included in this update,
see the associated Microsoft Knowledge Base article for more
information. After you install this item, you may have to restart
your computer.
12/15/2010 Update for Windows Mail Junk E-mail Filter [December 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
12/15/2010 Windows Malicious Software Removal Tool - December 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
11/9/2010 Update for Windows Mail Junk E-mail Filter [November 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
11/9/2010 Windows Malicious Software Removal Tool - November 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
10/26/2010 Update for Windows Vista (KB2388210)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
10/15/2010 Security Update for Windows Vista (KB2378111)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/15/2010 Update for Windows Vista (KB2345886)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
10/15/2010 Security Update for Windows Vista (KB2207566)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
10/15/2010 Security Update for Windows Vista (KB979687)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/15/2010 Security Update for Windows Vista (KB982132)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/15/2010 Security Update for Windows Vista (KB2387149)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/15/2010 Security Update for Windows Vista (KB981957)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/15/2010 Security Update for Windows Vista (KB2281679)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/15/2010 Windows Malicious Software Removal Tool - October 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
10/15/2010 Security Update for Windows Desktop Search 4.0 for Windows Vista (KB979688)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/15/2010 Security Update for Windows Vista (KB2296011)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
10/15/2010 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB2360131)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
10/6/2010 Security Update for Microsoft .NET Framework 3.5 SP1 on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008 x86 (KB2416473)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
10/6/2010 Security Update for Microsoft .NET Framework 3.5 SP1 on Windows Vista SP1 and Windows Server 2008 x86 (KB2416474)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
9/29/2010 Update for Windows Vista (KB2158563)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2010. After you install this item, you
may have to restart your computer.
9/15/2010 Security Update for Windows Vista (KB981322)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
9/15/2010 Security Update for Windows Vista (KB2347290)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
9/15/2010 Security Update for Windows Vista (KB975558)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
9/15/2010 Windows Malicious Software Removal Tool - September 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
9/15/2010 Update for Windows Mail Junk E-mail Filter [September 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
9/15/2010 Update for Windows Vista (KB2141007)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
8/12/2010 Security Update for Windows Vista (KB982665)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/12/2010 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB2183461)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
8/12/2010 Security Update for Windows Vista (KB980436)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/12/2010 Security Update for Windows Vista (KB981997)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/12/2010 Security Update for Windows Vista (KB2160329)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/12/2010 Security Update for Windows Vista (KB982799)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/12/2010 Security Update for Windows Vista (KB981852)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/12/2010 Windows Malicious Software Removal Tool - August 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
8/12/2010 Security Update for Windows Vista (KB2079403)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/12/2010 Security Update for Windows Vista (KB982214)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/12/2010 Security Update for .NET Framework 3.5 SP1 on Windows Vista SP1 and Windows Server 2008 x86 (KB983588)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
8/12/2010 Security Update for Windows Vista (KB978886)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/12/2010 Update for Windows Mail Junk E-mail Filter [August 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
8/3/2010 Security Update for Windows Vista (KB2286198)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
7/14/2010 Update for Windows Mail Junk E-mail Filter [July 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
7/14/2010 Windows Malicious Software Removal Tool - July 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
6/26/2010 Microsoft .NET Framework 4 Client Profile for Windows Vista x86 (KB982670)
The Microsoft .NET Framework 4 Client Profile provides a subset
of features from the .NET Framework 4. The Client Profile is
designed to run client applications and to enable the fastest
possible deployment for Windows Presentation Foundation (WPF)
and Windows Forms technology.
6/24/2010 Update for Windows Vista (KB982519)
Install this update to resolve issues with non-compatible applications.
For complete details of this update, see the associated Knowledge
Base Article. After you install this item, you may have to restart
your computer.
6/24/2010 Cumulative Update for Media Center for Windows Vista (KB982480)
Install this update to resolve issues with Media Center for Windows
Vista. For a complete listing of the issues that are included
in this cumulative update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
6/24/2010 Microsoft .NET Framework 3.5 SP1 Update for Windows Vista SP1 and Windows Server 2008 x86 (KB956250)
This update addresses a set of known issues of the Microsoft
.NET Framework 3.5 Service Pack 1. After you install this item,
you may have to restart your computer.
6/10/2010 Security Update for Windows Vista (KB979482)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/10/2010 Cumulative Security Update for ActiveX Killbits for Windows Vista (KB980195)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
6/10/2010 Security Update for Windows Vista (KB980218)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/10/2010 Microsoft .NET Framework 3.5 SP1 Update for Windows Vista SP1 and Windows Server 2008 x86 (KB982535)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
6/10/2010 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB982381)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
6/10/2010 Security Update for Windows Vista (KB975562)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/10/2010 Windows Malicious Software Removal Tool - June 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
6/10/2010 Update for Windows Mail Junk E-mail Filter [June 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
6/10/2010 Security Update for Windows Vista (KB979559)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
6/10/2010 Microsoft .NET Framework 3.5 SP1 Security Update for Windows Vista SP1 and Windows Server 2008 x86 (KB979911)
A security issue has been identified that could allow an attacker
to tamper with digitally signed content without being detected,
when this content is being consumed by an application that makes
use of the Microsoft .NET Framework on a Windows-based system.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
5/26/2010 Update for Windows Vista (KB981793)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2010. After you install this item, you
may have to restart your computer.
5/13/2010 Windows Malicious Software Removal Tool - May 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
5/13/2010 Security Update for Windows Vista (KB978542)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
5/13/2010 Security Update for Microsoft XML Core Services 4.0 Service Pack 2 (KB954430)
A security issue has been identified in Microsoft XML Core Services
(MSXML) that could allow an attacker to compromise your Windows-based
system and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. Once you have installed
this item, it cannot be removed.
5/13/2010 Update for Microsoft XML Core Services 4.0 Service Pack 2 (KB973688)
Install this update to prevent applications from sending too
many HTTP requests while a well-known Document Type Definition
(DTD) is included. After you install this item, you may have
to restart your computer. Once you have installed this item,
it cannot be removed.
5/13/2010 Update for Windows Mail Junk E-mail Filter [May 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
4/28/2010 Update for Windows Vista (KB980248)
Install this update to remove the Windows File Protection from
applicable Windows font files. This update is necessary so the
Office 2010 installer can update the fonts. After you install
this item, you may have to restart your computer.
4/15/2010 Security Update for Windows Vista (KB980232)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/15/2010 Security Update for Windows Vista (KB979683)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/15/2010 Security Update for Windows Vista (KB981349)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/15/2010 Windows Malicious Software Removal Tool - April 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
4/15/2010 Update for Windows Mail Junk E-mail Filter [April 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
4/15/2010 Security Update for Windows Vista (KB978601)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/15/2010 Security Update for Windows Vista (KB977816)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/15/2010 Security Update for Windows Vista (KB978338)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
4/15/2010 Security Update for Windows Vista (KB979309)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
4/1/2010 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB980182)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
3/29/2010 Definition Update for Windows Defender - KB915597 (Definition 1.79.702.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/11/2010 Security Update for Movie Maker 6.0 for Windows Vista (KB975561)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
3/11/2010 Update for Windows Mail Junk E-mail Filter [March 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
3/11/2010 Windows Malicious Software Removal Tool - March 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
3/11/2010 Update for Windows Vista (KB973917)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
2/24/2010 Update for Windows Vista (KB979306)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2010. After you install this item, you
may have to restart your computer.
2/24/2010 Update for Rights Management Services Client for Windows Vista (KB979099)
Install this update to resolve issues caused by manifest expiration
in AD RMS enabled applications. This update will fix any existing
issues in addition to addressing any future application manifest
expirations. After you install this item, you may have to restart
any running AD RMS enabled applications.
2/24/2010 Update for Windows Vista (KB975929)
Both the Meiryo UI font and the Meiryo UI Bold font are included
in this update. These new fonts let an application optimally
display Kana characters in the Ribbon UI component and in other
parts of the user interface, especially in areas where text area
is limited. After you install this item, you may have to restart
your computer.
2/16/2010 Definition Update for Windows Defender - KB915597 (Definition 1.75.798.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/10/2010 Security Update for Windows Vista (KB971468)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/10/2010 Windows Malicious Software Removal Tool - February 2010 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
2/10/2010 Cumulative Security Update for ActiveX Killbits for Windows Vista (KB978262)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
2/10/2010 Security Update for Windows Vista (KB977165)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/10/2010 Update for Windows Mail Junk E-mail Filter [February 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
2/10/2010 Security Update for Windows Vista (KB974145)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/10/2010 Security Update for Windows Vista (KB975560)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/10/2010 Security Update for Windows Vista (KB978251)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/7/2010 Update for Windows Vista (KB955430)
Install this update to enable future updates to install successfully
on all editions of Windows Vista. This update may be required
before selected future updates can be installed. After you install
this item, it cannot be removed. This update is provided to you
and licensed under the Windows Vista License Terms.
2/6/2010 Update for Windows Vista (KB952709)
This is a reliability update. This update resolves some performance
and reliability issues in Windows Vista. By applying this update,
you can achieve better performance and responsiveness in various
scenarios. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
2/6/2010 Microsoft .NET Framework 2.0 Service Pack 2 Security Update for Windows Vista Service Pack 1 and Windows Server 2008 (KB974469)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/6/2010 Windows Search 4.0 for Windows Vista (KB940157)
Windows Search 4.0 helps you to find, preview, and use your documents,
e-mail, music, photos, and other items. On an upgrade from previous
versions, you will need to rebuild your index. After you install
this item, you may have to restart your computer.
2/6/2010 Update for Windows Vista (KB957200)
This is a reliability update. This update resolves some performance
and reliability issues in Windows Vista. By applying this update,
you can achieve better performance and responsiveness in various
scenarios. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
2/6/2010 Update for Windows Vista (KB955302)
This is a reliability update. This update resolves some performance
and reliability issues in Windows Vista. By applying this update,
you can achieve better performance and responsiveness in various
scenarios. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
2/6/2010 Update for Windows Vista (KB951978)
Install this update to resolve an issue in VBScript/JScript scripts
from CScript\WScript hosts, certain built-ins may not function
correctly when Standards and Formats in Regional Settings is
changed. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
2/4/2010 Update for Windows Vista (KB937287)
Install this update to enable future updates to install successfully
on all editions of Windows Vista. This update may be required
before selected future updates can be installed. After you install
this item, you may have to restart your computer. Once you have
installed this item, it cannot be removed.
2/4/2010 Update for Windows Vista (KB971737)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
2/4/2010 Update for Windows Vista (KB970430)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
2/3/2010 Update for Windows Vista (KB968389)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
2/2/2010 Cumulative Security Update for Windows Mail for Windows Vista (KB929123)
A security issue has been identified that could allow an attacker
to remotely compromise your Windows-based system using Windows
Mail. You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
2/2/2010 Security Update for Windows Media Format Runtime 11 for Windows Vista (KB968816)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/2/2010 Update for Windows Vista (KB946041)
This is a reliability update. This update resolves some performance
and reliability issues in Windows Vista. By applying this update,
you can achieve better performance and responsiveness in various
scenarios. After you install this item, you may have to restart
your computer.
2/2/2010 Security Update for Windows Vista (KB958623)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
2/2/2010 Update to .NET Framework 3.5 Service Pack 1 for the .NET Framework Assistant 1.0 x86 (KB963707)
The update to .NET Framework 3.5 Service Pack 1 for the .NET
Framework Assistant 1.0 for Firefox addresses several compatibility
issues with version 1.0 of the extension.
2/2/2010 Security Update for Windows Vista (KB951376)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
2/1/2010 Security Update for Windows Vista (KB972270)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/1/2010 Cumulative Security Update for Internet Explorer 7 for Windows Vista (KB978207)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
2/1/2010 Security Update for Windows Vista (KB953733)
A security issue has been identified that could allow an unauthenticated,
remote attacker to compromise your Microsoft Windows-based system
and gain access to information. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
2/1/2010 Update for Windows Vista (KB938194)
This update resolves some compatibility and reliability issues
in Windows Vista. By applying this update, you can achieve better
reliability and hardware compatibility in various scenarios.
After you install this item, you may have to restart your computer.
2/1/2010 Update for Windows Vista (KB959108)
Install this update to resolve an issue with the Microsoft Customer
Experience Improvement Program. After you install this item,
you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
2/1/2010 Security Update for Windows Vista (KB967723)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/1/2010 Update for Windows Vista (KB941649)
This update resolves some compatibility and reliability issues
in Windows Vista. By applying this update, you can achieve better
reliability and hardware compatibility in various scenarios.
After you install this item, you may have to restart your computer.
2/1/2010 Security Update for Windows Vista (KB946026)
A security issue has been identified in the mrxdav.sys driver
that could allow an attacker to compromise your Windows-based
system and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
2/1/2010 Security Update for Windows Vista (KB970710)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/1/2010 Update for Windows Vista (KB973687)
Install this update to prevent applications from sending too
many HTTP requests while a well-known Document Type Definition
(DTD) is included. After you install this item, you may have
to restart your computer.
2/1/2010 Security Update for Windows Vista (KB975467)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
2/1/2010 Security Update for Windows Vista (KB930178)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system and gain control over
it. You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
2/1/2010 Update for Windows Vista (KB976098)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2009. After you install this item, you
may have to restart your computer.
2/1/2010 Security Update for Windows Vista (KB938123)
A security issue has been identified in Windows Vista Gadgets
that could allow an attacker to compromise your Windows-based
system and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
2/1/2010 Update for Windows Vista (KB931099)
Install this update to resolve an issue in Windows Defender where
SpyNet requested samples fail to submit data to Microsoft after
you consent to submitting them. Microsoft analyzes the collected
samples for potential risk in order to help protect you from
malicious and potentially unwanted software. After you install
this item, you may have to restart your computer.
2/1/2010 Security Update for Windows Vista (KB960803)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
2/1/2010 Security Update for Windows Vista (KB973507)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/1/2010 Update for Windows Vista (KB936824)
Install this update to resolve an issue where an Apple iPod may
be corrupted by using the Safely Remove Hardware feature on a
system running Windows Vista. After you install this item, you
may have to restart your computer.
2/1/2010 Security Update for Windows Vista (KB956802)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
2/1/2010 Security Update for Windows Vista (KB971486)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/1/2010 Microsoft .NET Framework 2.0 Service Pack 2 Security Update for Windows Vista (KB974467)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/1/2010 Security Update for Windows Vista (KB957097)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
2/1/2010 Update for Windows Vista (KB936357)
This is a reliability update. Install this microcode update to
improve the reliability of systems with Intel processors. After
you install this item, you may have to restart your computer
2/1/2010 Security Update for Windows Vista (KB952004)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
2/1/2010 Security Update for Windows Vista (KB971657)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/1/2010 Security Update for Windows Vista (KB956744)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/1/2010 Security Update for Windows Vista (KB950974)
A security issue has been identified in Event System on Microsoft
Windows based systems that could allow an attacker to compromise
your Microsoft Windows-based system and gain control over it.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer. This update is provided to you and licensed
under the Windows Vista License Terms.
2/1/2010 Security Update for Windows Vista (KB954154)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
2/1/2010 Security Update for Windows Vista (KB955069)
A security issue has been identified in the way Microsoft XML
Core Services (MSXML) is handled that could allow an attacker
to compromise a computer that is running Microsoft Windows and
gain control over it. You can help protect your computer by installing
this update from Microsoft. After you install this item, you
may have to restart your computer. This update is provided to
you and licensed under the Windows Vista License Terms.
2/1/2010 Update for Windows Media Format 11 SDK for Windows Vista (KB929399)
Install this update to resolve a metering issue with the Microsoft
Windows Media Format 11 SDK. After you install this item, you
may have to restart your computer.
2/1/2010 Update for Windows Vista (KB976470)
Install this update to resolve an issue in which the "Date and
Time" window of Control Panel will incorrectly display an error
message. After you install this item, you may have to restart
your computer.
2/1/2010 Update for Windows Vista (KB941651)
This is a reliability update. Install this update to improve
the reliability of Windows Media Player 11 for Windows Vista
in certain scenarios. After you install this item, you may have
to restart your computer.
2/1/2010 Security Update for Windows Vista (KB935807)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system and gain control over
it. You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
2/1/2010 Security Update for Windows Vista (KB958644)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
2/1/2010 Security Update for Windows Vista (KB958869)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/1/2010 Cumulative Update for Media Center for Windows Vista (KB974306)
Install this update to resolve issues with Media Center for Windows
Vista. For a complete listing of the issues that are included
in this cumulative update, see Microsoft Knowledge Base article
974306. After you install this item, you may have to restart
your computer.
2/1/2010 Update for Windows Mail Junk E-mail Filter [January 2010] (KB905866)
Install this update for Windows Mail to revise the definition
files that are used to detect e-mail messages that should be
considered junk e-mail or that may contain phishing content.
After you install this item, you may have to restart your computer.
2/1/2010 Security Update for Windows Vista (KB961501)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
2/1/2010 Security Update for Windows Vista (KB971557)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/1/2010 Update for Windows Vista (KB950124)
This update provides an updated IR Set Top Box database for Media
Center for Windows Vista. After you install this item, you may
have to restart your computer. This update is provided to you
and licensed under the Windows Vista License Terms.
2/1/2010 Update for Windows Vista (KB943899)
This is a reliability update. This update resolves some performance
and reliability issues in Windows Vista. By applying this update,
you can achieve better performance and responsiveness in various
scenarios. After you install this item, you may have to restart
your computer.
2/1/2010 Update for Windows Vista (KB930857)
Install this update to fix an issue with Windows Error Reporting
that may cause some information about application errors to be
sent to Microsoft without notifying you. After you install this
item, you may have to restart your computer.
2/1/2010 Security Update for Windows Vista (KB958624)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
2/1/2010 Update for Windows Vista (KB941600)
This update resolves some reliability issues in the USB core
components on the Windows Vista operating system. You can achieve
better reliability in various scenarios by installing this update.
After you install this item, you may have to restart your computer.
2/1/2010 Security Update for Windows Vista (KB946456)
A security issue has been identified in Vista - DHCP that could
allow an attacker to compromise your Windows-based system and
gain control over it. You can help protect your computer by installing
this update from Microsoft. After you install this item, you
may have to restart your computer.
2/1/2010 Update for Windows Vista (KB955020)
Install this update to add words to the English and German standard
dictionaries. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
2/1/2010 Update for Windows Vista (KB938371)
Install this update to enable future updates to install successfully
on all editions of Windows Vista. This update may be required
before selected future updates can be installed. After you install
this item, you may have to restart your computer. Once you have
installed this item, it cannot be removed.
2/1/2010 Security Update for Windows Vista (KB956572)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
2/1/2010 Microsoft .NET Framework 3.5 Service Pack 1 and .NET Framework 3.5 Family Update (KB951847) x86
The Microsoft .NET Framework 3.5 Service Pack 1 is a full cumulative
update that contains many new features building incrementally
upon .NET Framework 2.0, 3.0, 3.5, and includes cumulative servicing
updates to the .NET Framework 2.0 and the .NET Framework 3.0
subcomponents. The .NET Framework 3.5 Family Update provides
important application compatibility updates. This update is provided
to you and licensed under the Windows Vista and Windows Server
2008 License Terms.
1/31/2010 Security Update for Jscript 5.7 for Windows Vista (KB971961)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/31/2010 Update for Windows Vista (KB936825)
Install this update to resolve issues with Secure Digital (SD)
on computers running Windows Vista. After you install this item,
you may have to restart your computer.
1/31/2010 Update for Windows Vista (KB952287)
Install this update to resolve an issue in which a malfunction
or data loss occurs when using Microsoft Data Access Components
(MDAC) components on computers that are running Windows Vista
or Windows Server 2008. After you install this item, you may
have to restart your computer. This update is provided to you
and licensed under the Windows Vista License Terms.
1/31/2010 Security Update for Windows Vista (KB941569)
A security issue has been identified that could allow an attacker
to remotely compromise your Windows-based system using Windows
Media file formats and gain control over it. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
1/31/2010 Security Update for Windows Vista (KB959426)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
1/31/2010 Update for Windows Vista (KB933928)
This update enhances the user experience by improving messaging
and reducing the steps required to resolve potential problems
with product activation and validation. After you install this
item, you may have to restart your computer.
1/31/2010 Update for Windows Vista (KB957321)
Install this update to resolve data loss and metadata issues
in the Windows Imaging Component. After you install this item,
you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
1/31/2010 Update for Windows Vista (KB973917)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
1/31/2010 Update for Windows Vista (KB938979)
This update resolves some performance and reliability issues
in Windows Vista. By applying this update, you can achieve better
performance and responsiveness in various scenarios. After you
install this item, you may have to restart your computer.
1/31/2010 Security Update for Windows Vista (KB953155)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
1/31/2010 Security Update for Windows Vista (KB969947)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/31/2010 Security Update for Windows Vista (KB950762)
A security issue has been identified that could allow an unauthenticated,
remote attacker to cause the affected system to stop responding.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer. This update is provided to you and licensed
under the Windows Vista License Terms.
1/31/2010 Security Update for Windows Vista (KB973540)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/31/2010 Update for Windows Vista (KB943411)
Install this update to improve protection in Windows Sidebar.
This update enables Windows Sidebar to block certain gadgets
from running. After you install this item, you may have to restart
your computer.
1/31/2010 Security Update for Windows Vista (KB943055)
A security issue has been identified that could allow an attacker
to remotely compromise your Windows-based system using Object
Linking and Embedding (OLE) Automation and gain control over
it. You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
1/31/2010 Security Update for Windows Vista (KB958687)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
1/31/2010 Security Update for Windows Vista (KB945553)
A security issue has been identified in DNS Clients that could
allow an attacker to compromise your Microsoft Windows-based
system and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/31/2010 Update for Windows Vista (KB937077)
Install this update to address an issue that may prevent high-definition
audio devices from initializing after resuming the system from
a sleep or hibernation state. After you install this item, you
may have to restart your computer.
1/31/2010 Realtek Semiconductor Corp. - Network - Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter
Realtek Semiconductor Corp. Network software update released
in June, 2009
1/31/2010 Security Update for Windows Vista (KB960225)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system. This update is provided to you and
licensed under the Windows Vista License Terms.
1/31/2010 Microsoft .NET Framework 3.5 Service Pack 1 and .NET Framework 3.5 Family Update (KB951847) x86
The Microsoft .NET Framework 3.5 Service Pack 1 is a full cumulative
update that contains many new features building incrementally
upon .NET Framework 2.0, 3.0, 3.5, and includes cumulative servicing
updates to the .NET Framework 2.0 and the .NET Framework 3.0
subcomponents. The .NET Framework 3.5 Family Update provides
important application compatibility updates. This update is provided
to you and licensed under the Windows Vista and Windows Server
2008 License Terms.
1/31/2010 Update for Windows Vista (KB972036)
Install this update to resolve issues with non-compatible applications
for Windows Vista. For complete details of this update, see Knowledge
Base Article KB972036. After you install this item, you may have
to restart your computer.
1/31/2010 Security Update for Windows Vista (KB952069)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
1/31/2010 Security Update for Windows Vista (KB942624)
A security issue has been identified in SMBv2 that could allow
an attacker to compromise your Windows-based system and gain
control over it. You can help protect your computer by installing
this update from Microsoft. After you install this item, you
may have to restart your computer.
1/31/2010 Security Update for Windows Vista (KB938127)
A security issue has been identified in the way Vector Markup
Language (VML) is handled that could allow an attacker to compromise
a computer running Microsoft Windows and gain control over it.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
1/31/2010 Security Update for Windows Mail for Windows Vista (KB951066)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Outlook Express
or Windows Mail and read data from another Internet Explorer
domain or the local computer. You can help protect your system
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
1/31/2010 Security Update for Windows Vista (KB974571)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/31/2010 Update for Windows Vista (KB959130)
Install this update to resolve an issue with the default Web
browser setting when you click "Browse the Internet Now" in Network
and Sharing Center. After you install this item, you may have
to restart your computer. This update is provided to you and
licensed under the Windows Vista License Terms.
1/31/2010 Security Update for Windows Vista (KB931213)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system and gain control over
it. You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer. Once you have installed this item, it
cannot be removed.
1/31/2010 Cumulative Security Update for ActiveX Killbits for Windows Vista (KB973525)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
1/31/2010 Security Update for Windows Vista (KB970238)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
1/31/2010 Security Update for Windows Vista (KB951698)
A security issue has been identified in Microsoft DirectShow
that could allow an attacker to compromise your Windows-based
system and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
1/31/2010 Security Update for Windows Vista (KB975517)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/31/2010 Update for Windows Vista (KB931573)
Install this update to resolve an issue where you may be prompted
to activate a pre-installed copy of Windows Vista. After you
install this item, you may have to restart your computer.
1/31/2010 Security Update for Windows Vista (KB974318)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/31/2010 Security Update for Windows Vista (KB973565)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/31/2010 Update for Windows Vista (KB949939)
Install this update to enable future updates to install successfully
on all editions of Windows Vista. This update may be required
before selected future updates can be installed. After you install
this item, you may have to restart your computer. Once you have
installed this item, it cannot be removed.
1/31/2010 Security Update for Windows Vista (KB925902)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system and gain control over
it. You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
1/31/2010 Security Update for Windows Vista (KB954459)
A security issue has been identified in Microsoft XML Core Services
(MSXML) that could allow an attacker to compromise your Windows-based
system and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
1/31/2010 Update for Windows Vista (KB950125)
Install this update to resolve issues with Xbox 360 Extenders
used with Media Center for Windows Vista. For complete listing
of issues included in this update, see KB950125. After you install
this item, you may have to restart your computer. This update
is provided to you and licensed under the Windows Vista License
Terms.
1/31/2010 Update for Windows Vista (KB939159)
Install this update to resolve an issue in the Background Intelligent
Transfer Service (BITS). After you install this item, you may
have to restart your computer.
1/31/2010 Security Update for Windows Media Format Runtime 11 for Windows Vista (KB954155)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/31/2010 Update for Windows Vista (KB972145)
Install this update to resolve a compliance issue with Windows
Media Player and Set Program Access and Computer Defaults. After
you install this item, you may have to restart your computer.
1/31/2010 Security Update for Windows Vista (KB973768)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/30/2010 Windows Update Agent 7.4.7600.226
The Windows Update Agent enables your computer to search for
and install updates from an update service. The agent can automatically
update itself as needed to communicate with the update service
when Windows searches for new updates.
Process List
adobearm.exe
Process ID 2220
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Memory Usage 1.56 MB
Peak Memory Usage 17 MB
applemobiledeviceservice.exe
Process ID 432
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
Memory Usage 1.24 MB
Peak Memory Usage 6.23 MB
audiodg.exe
Process ID 1092
ccapp.exe
Process ID 3992
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Common Files\Symantec Shared\ccApp.exe
Memory Usage 676 KB
Peak Memory Usage 11 MB
ccsvchst.exe
Process ID 1564
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
Memory Usage 3.17 MB
Peak Memory Usage 15 MB
cocimanager.exe
Process ID 4568
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
Memory Usage 2.39 MB
Peak Memory Usage 7.11 MB
communications_helper.exe
Process ID 4040
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe
Memory Usage 2.80 MB
Peak Memory Usage 9.74 MB
csrss.exe
Process ID 500
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 2.03 MB
Peak Memory Usage 5.40 MB
csrss.exe
Process ID 544
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 4.45 MB
Peak Memory Usage 16 MB
divxupdate.exe
Process ID 3044
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\DivX\DivX Update\DivXUpdate.exe
Memory Usage 1.87 MB
Peak Memory Usage 14 MB
dllhost.exe
Process ID 4844
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\DllHost.exe
Memory Usage 3.50 MB
Peak Memory Usage 3.50 MB
dllhost.exe
Process ID 5852
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\DllHost.exe
Memory Usage 4.10 MB
Peak Memory Usage 4.10 MB
dtlite.exe
Process ID 1068
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\DAEMON Tools Lite\DTLite.exe
Memory Usage 3.72 MB
Peak Memory Usage 20 MB
dwm.exe
Process ID 3080
User Devonasa
Domain Devonasa-PC
Path C:\Windows\system32\Dwm.exe
Memory Usage 39 MB
Peak Memory Usage 58 MB
ehmsas.exe
Process ID 3848
User Devonasa
Domain Devonasa-PC
Path C:\Windows\ehome\ehmsas.exe
Memory Usage 896 KB
Peak Memory Usage 3.80 MB
ehtray.exe
Process ID 3012
User Devonasa
Domain Devonasa-PC
Path C:\Windows\ehome\ehtray.exe
Memory Usage 816 KB
Peak Memory Usage 5.14 MB
explorer.exe
Process ID 3164
User Devonasa
Domain Devonasa-PC
Path C:\Windows\Explorer.EXE
Memory Usage 26 MB
Peak Memory Usage 44 MB
firefox.exe
Process ID 2212
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Mozilla Firefox\firefox.exe
Memory Usage 194 MB
Peak Memory Usage 238 MB
googletoolbarnotifier.exe
Process ID 3536
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Memory Usage 828 KB
Peak Memory Usage 7.05 MB
groovemonitor.exe
Process ID 3924
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
Memory Usage 1.66 MB
Peak Memory Usage 6.21 MB
hasplms.exe
Process ID 1360
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\hasplms.exe
Memory Usage 5.77 MB
Peak Memory Usage 21 MB
ipodservice.exe
Process ID 4156
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\iPod\bin\iPodService.exe
Memory Usage 1.61 MB
Peak Memory Usage 5.04 MB
ituneshelper.exe
Process ID 2384
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\iTunes\iTunesHelper.exe
Memory Usage 2.11 MB
Peak Memory Usage 11 MB
jusched.exe
Process ID 3332
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Common Files\Java\Java Update\jusched.exe
Memory Usage 844 KB
Peak Memory Usage 3.63 MB
lsass.exe
Process ID 644
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsass.exe
Memory Usage 3.13 MB
Peak Memory Usage 7.49 MB
lsm.exe
Process ID 652
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsm.exe
Memory Usage 1.54 MB
Peak Memory Usage 3.74 MB
lvcomsx.exe
Process ID 2084
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
Memory Usage 1.46 MB
Peak Memory Usage 6.17 MB
lvprcsrv.exe
Process ID 996
User SYSTEM
Domain NT AUTHORITY
Path c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
Memory Usage 1.68 MB
Peak Memory Usage 7.49 MB
mdnsresponder.exe
Process ID 624
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Bonjour\mDNSResponder.exe
Memory Usage 1.01 MB
Peak Memory Usage 4.37 MB
plugin-container.exe
Process ID 2904
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Mozilla Firefox\plugin-container.exe
Memory Usage 21 MB
Peak Memory Usage 29 MB
quickcam10.exe
Process ID 4064
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
Memory Usage 3.49 MB
Peak Memory Usage 14 MB
rtvscan.exe
Process ID 740
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
Memory Usage 5.14 MB
Peak Memory Usage 19 MB
scclient.exe
Process ID 2948
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\SafeConnect\scClient.exe
Memory Usage 1.91 MB
Peak Memory Usage 4.96 MB
scmanager.sys
Process ID 1988
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\SafeConnect\scManager.sys
Memory Usage 2.97 MB
Peak Memory Usage 6.91 MB
searchindexer.exe
Process ID 2124
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchIndexer.exe
Memory Usage 7.06 MB
Peak Memory Usage 22 MB
services.exe
Process ID 632
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\services.exe
Memory Usage 2.26 MB
Peak Memory Usage 6.62 MB
sidebar.exe
Process ID 3248
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Windows Sidebar\sidebar.exe
Memory Usage 19 MB
Peak Memory Usage 36 MB
sidebar.exe
Process ID 3104
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Windows Sidebar\sidebar.exe
Memory Usage 3.24 MB
Peak Memory Usage 18 MB
slsvc.exe
Process ID 1128
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\SLsvc.exe
Memory Usage 768 KB
Peak Memory Usage 15 MB
smc.exe
Process ID 1408
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
Memory Usage 6.23 MB
Peak Memory Usage 23 MB
smcgui.exe
Process ID 3192
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
Memory Usage 6.05 MB
Peak Memory Usage 17 MB
smss.exe
Process ID 424
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 96 KB
Peak Memory Usage 752 KB
speccy.exe
Process ID 4484
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Speccy\Speccy.exe
Memory Usage 18 MB
Peak Memory Usage 19 MB
speccy.exe
Process ID 5008
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\Speccy\Speccy.exe
Memory Usage 21 MB
Peak Memory Usage 21 MB
spoolsv.exe
Process ID 1840
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\spoolsv.exe
Memory Usage 3.68 MB
Peak Memory Usage 9.77 MB
svchost.exe
Process ID 1884
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 628 KB
Peak Memory Usage 5.04 MB
svchost.exe
Process ID 1876
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 5.41 MB
Peak Memory Usage 51 MB
svchost.exe
Process ID 1432
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 5.84 MB
Peak Memory Usage 14 MB
svchost.exe
Process ID 1208
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 5.09 MB
Peak Memory Usage 13 MB
svchost.exe
Process ID 784
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 3.64 MB
Peak Memory Usage 6.71 MB
svchost.exe
Process ID 1244
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 1.91 MB
Peak Memory Usage 5.48 MB
svchost.exe
Process ID 848
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 2.66 MB
Peak Memory Usage 6.56 MB
svchost.exe
Process ID 944
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 8.12 MB
Peak Memory Usage 19 MB
svchost.exe
Process ID 972
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 40 MB
Peak Memory Usage 143 MB
svchost.exe
Process ID 2092
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 404 KB
Peak Memory Usage 2.14 MB
svchost.exe
Process ID 1044
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 18 MB
Peak Memory Usage 26 MB
svchost.exe
Process ID 1792
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 1.04 MB
Peak Memory Usage 6.12 MB
svchost.exe
Process ID 1112
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 1.57 MB
Peak Memory Usage 4.55 MB
system
Process ID 4
system idle process
Process ID 0
taskeng.exe
Process ID 2844
User Devonasa
Domain Devonasa-PC
Path C:\Windows\system32\taskeng.exe
Memory Usage 3.06 MB
Peak Memory Usage 9.78 MB
taskeng.exe
Process ID 2924
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\taskeng.exe
Memory Usage 1.25 MB
Peak Memory Usage 5.49 MB
unsecapp.exe
Process ID 5628
User Devonasa
Domain Devonasa-PC
Path C:\Windows\system32\wbem\unsecapp.exe
Memory Usage 1.53 MB
Peak Memory Usage 4.50 MB
wininit.exe
Process ID 552
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wininit.exe
Memory Usage 496 KB
Peak Memory Usage 4.00 MB
winlogon.exe
Process ID 592
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\winlogon.exe
Memory Usage 904 KB
Peak Memory Usage 6.48 MB
wmiprvse.exe
Process ID 5732
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
wmiprvse.exe
Process ID 3624
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 11 MB
Peak Memory Usage 12 MB
wzqkpick.exe
Process ID 3292
User Devonasa
Domain Devonasa-PC
Path C:\Program Files\WinZip\WZQKPICK.EXE
Memory Usage 856 KB
Peak Memory Usage 4.16 MB
System Folders
Path for burning CD C:\Users\Devonasa\AppData\Local\Microsoft\Windows\Burn\Burn
Application Data C:\ProgramData
Public Desktop C:\Users\Public\Desktop
Documents C:\Users\Public\Documents
Global Favorites C:\Users\Devonasa\Favorites
Music C:\Users\Public\Music
Pictures C:\Users\Public\Pictures
Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs
Start Menu C:\ProgramData\Microsoft\Windows\Start Menu
Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Templates C:\ProgramData\Microsoft\Windows\Templates
Videos C:\Users\Public\Videos
Cookies C:\Users\Devonasa\AppData\Roaming\Microsoft\Windows\Cookies
Desktop C:\Users\Devonasa\Desktop
Physical Desktop C:\Users\Devonasa\Desktop
User Favorites C:\Users\Devonasa\Favorites
Fonts C:\Windows\Fonts
Internet History C:\Users\Devonasa\AppData\Local\Microsoft\Windows\History
Temporary Internet Files C:\Users\Devonasa\AppData\Local\Microsoft\Windows\Temporary Internet Files
Local Application Data C:\Users\Devonasa\AppData\Local
Windows directory C:\Windows
Windows/System C:\Windows\system32
Program Files C:\Program Files
Device Tree
ACPI x86-based PC
Microsoft ACPI-Compliant System
Genuine Intel® CPU T2080 @ 1.73GHz
Genuine Intel® CPU T2080 @ 1.73GHz
ACPI Thermal Zone
ACPI Power Button
ACPI Sleep Button
Microsoft AC Adapter
Microsoft ACPI-Compliant Control Method Battery
ACPI Lid
ACPI Fixed Feature Button
PCI bus
Mobile Intel® 945GM/PM/GMS/940GML and Intel® 945GT Express Processor to DRAM Controller - 27A0
Mobile Intel® 945GM Express Chipset Controller 1 (Microsoft Corporation - WDDM)
Intel® 82801G (ICH7 Family) PCI Express Root Port - 27D0
Intel® 82801G (ICH7 Family) SMBus Controller - 27DA
Motherboard resources
Mobile Intel® 945GM Express Chipset Controller 0 (Microsoft Corporation - WDDM)
Generic PnP Monitor
High Definition Audio Controller
High Definition Audio Device
Motorola SM56 Data Fax Modem
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C8
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C9
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CA
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CB
USB Root Hub
Intel® 82801G (ICH7 Family) USB2 Enhanced Host Controller - 27CC
USB Root Hub
Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter
Intel® 82801 PCI Bridge - 2448
Intel® PRO/100 VE Network Connection
Texas Instruments PCI-8x12/7x12/6x12 CardBus Controller
Texas Instruments OHCI Compliant IEEE 1394 Host Controller
Mass Storage Controller
Intel® 82801GBM (ICH7-M) LPC Interface Controller - 27B9
Direct memory access controller
High precision event timer
Programmable interrupt controller
Numeric data processor
Motherboard resources
System CMOS/real time clock
System timer
Standard PS/2 Keyboard
PS/2 Compatible Mouse
Microsoft ACPI-Compliant Embedded Controller
Intel® 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF
IDE Channel
Optiarc DVD RW AD-7560A ATA Device
Standard AHCI 1.0 Serial ATA Controller
IDE Channel
IDE Channel
WDC WD1200BEVS-00UST0 ATA Device
Extended IO Bus
AMS83ON6 IDE Controller
DUT 1YNCLYVK SCSI CdRom Device
Services
Running Apple Mobile Device
Running Application Experience
Running Application Information
Running Background Intelligent Transfer Service
Running Base Filtering Engine
Running Bonjour Service
Running CNG Key Isolation
Running COM+ Event System
Running Computer Browser
Running Cryptographic Services
Running DCOM Server Process Launcher
Running Desktop Window Manager Session Manager
Running DHCP Client
Running Diagnostic Policy Service
Running Diagnostic System Host
Running Distributed Link Tracking Client
Running DNS Client
Running Extensible Authentication Protocol
Running Function Discovery Provider Host
Running Function Discovery Resource Publication
Running Group Policy Client
Running IKE and AuthIP IPsec Keying Modules
Running IP Helper
Running iPod Service
Running IPsec Policy Agent
Running KtmRm for Distributed Transaction Coordinator
Running Multimedia Class Scheduler
Running Network Connections
Running Network List Service
Running Network Location Awareness
Running Network Store Interface Service
Running Peer Name Resolution Protocol
Running Peer Networking Identity Manager
Running Plug and Play
Running Portable Device Enumerator Service
Running Print Spooler
Running Process Monitor
Running Program Compatibility Assistant Service
Running ReadyBoost
Running Remote Access Connection Manager
Running Remote Procedure Call (RPC)
Running SafeConnect Manager
Running Secondary Logon
Running Secure Socket Tunneling Protocol Service
Running Security Accounts Manager
Running Security Center
Running Sentinel HASP License Manager
Running Server
Running Shell Hardware Detection
Running Software Licensing
Running SSDP Discovery
Running Superfetch
Running Symantec Endpoint Protection
Running Symantec Event Manager
Running Symantec Management Client
Running Symantec Settings Manager
Running System Event Notification Service
Running Tablet PC Input Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Telephony
Running Terminal Services
Running Themes
Running UPnP Device Host
Running User Profile Service
Running WebClient
Running Windows Audio
Running Windows Audio Endpoint Builder
Running Windows Driver Foundation - User-mode Driver Framework
Running Windows Error Reporting Service
Running Windows Event Log
Running Windows Firewall
Running Windows Font Cache Service
Running Windows Image Acquisition (WIA)
Running Windows Management Instrumentation
Running Windows Search
Running Windows Time
Running Windows Update
Running WLAN AutoConfig
Running Workstation
Stopped Adobe SwitchBoard
Stopped Application Layer Gateway Service
Stopped Certificate Propagation
Stopped COM+ System Application
Stopped DFS Replication
Stopped Diagnostic Service Host
Stopped Distributed Transaction Coordinator
Stopped FLEXnet Licensing Service
Stopped Google Software Updater
Stopped Google Update Service (gupdate)
Stopped Google Update Service (gupdatem)
Stopped Health Key and Certificate Management
Stopped Human Interface Device Access
Stopped InstallDriver Table Manager
Stopped Interactive Services Detection
Stopped Internet Connection Sharing (ICS)
Stopped Link-Layer Topology Discovery Mapper
Stopped LiveShare P2P Server 9
Stopped LiveUpdate
Stopped LVSrvLauncher
Stopped Microsoft .NET Framework NGEN v2.0.50727_X86
Stopped Microsoft .NET Framework NGEN v4.0.30319_X86
Stopped Microsoft iSCSI Initiator Service
Stopped Microsoft Office Diagnostics Service
Stopped Microsoft Office Groove Audit Service
Stopped Microsoft Software Shadow Copy Provider
Stopped Net.Tcp Port Sharing Service
Stopped Netlogon
Stopped Network Access Protection Agent
Stopped Office Source Engine
Stopped Parental Controls
Stopped Peer Networking Grouping
Stopped Performance Logs & Alerts
Stopped PnP-X IP Bus Enumerator
Stopped PNRP Machine Name Publication Service
Stopped Problem Reports and Solutions Control Panel Support
Stopped Protected Storage
Stopped Quality Windows Audio Video Experience
Stopped Remote Access Auto Connection Manager
Stopped Remote Procedure Call (RPC) Locator
Stopped Remote Registry
Stopped Routing and Remote Access
Stopped SL UI Notification Service
Stopped Smart Card
Stopped Smart Card Removal Policy
Stopped SNMP Trap
Stopped Symantec Network Access Control
Stopped Terminal Services Configuration
Stopped Thread Ordering Server
Stopped TPM Base Services
Stopped Virtual Disk
Stopped Volume Shadow Copy
Stopped Windows Backup
Stopped Windows CardSpace
Stopped Windows Color System
Stopped Windows Connect Now - Config Registrar
Stopped Windows Event Collector
Stopped Windows Installer
Stopped Windows Media Center Extender Service
Stopped Windows Media Center Receiver Service
Stopped Windows Media Center Scheduler Service
Stopped Windows Media Center Service Launcher
Stopped Windows Media Player Network Sharing Service
Stopped Windows Modules Installer
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows Presentation Foundation Font Cache 4.0.0.0
Stopped Windows Remote Management (WS-Management)
Stopped WinHTTP Web Proxy Auto-Discovery Service
Stopped Wired AutoConfig
Stopped WMI Performance Adapter
CPU
Intel Pentium T2080
Cores 2
Threads 2
Name Intel Pentium T2080
Code Name Yonah
Package Socket 479 mPGA
Technology 65nm
Specification Genuine Intel® CPU T2080 @ 1.73GHz
Family 6
Extended Family 6
Model E
Extended Model E
Stepping C
Revision D0
Instructions MMX, SSE, SSE2, SSE3
Virtualization Unsupported
Hyperthreading Not supported
Bus Speed 133.0 MHz
Rated Bus Speed 532.1 MHz
Stock Core Speed 1733 MHz
Stock Bus Speed 133 MHz
Average Temperature 56 °C
Caches
L1 Data Cache Size 2 x 32 KBytes
L1 Instructions Cache Size 2 x 32 KBytes
L2 Unified Cache Size 1024 KBytes
Core 0
Core Speed 1729.2 MHz
Multiplier x 13.0
Bus Speed 133.0 MHz
Rated Bus Speed 532.1 MHz
Temperature 54 °C
Thread 1
APIC ID 0
Core 1
Core Speed 1729.2 MHz
Multiplier x 13.0
Bus Speed 133.0 MHz
Rated Bus Speed 532.1 MHz
Temperature 57 °C
Thread 1
APIC ID 1
RAM
Memory slots
Total memory slots 2
Used memory slots 2
Free memory slots 0
Memory
Type DDR2
Size 1024 MBytes
Channels # Dual
DRAM Frequency 266.1 MHz
CAS# Latency (CL) 4 clocks
RAS# to CAS# Delay (tRCD) 4 clocks
RAS# Precharge (tRP) 4 clocks
Cycle Time (tRAS) 12 clocks
Bank Cycle Time (tRC) 16 clocks
Physical Memory
Memory Usage 90 %
Total Physical MB
Available Physical 92 MB
Total Virtual 2.24 GB
Available Virtual 1.07 GB
SPD
Number Of SPD Modules 2
Slot #1
Type DDR2
Size 512 MBytes
Manufacturer Samsung
Max Bandwidth PC2-5300 (333 MHz)
Part Number M4 70T6554EZ3-CE6
Serial Number F41D494A
Week/year 25 / 07
SPD Ext. EPP
JEDEC #3
Frequency 333.3 MHz
CAS# Latency 5.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 21
Voltage 1.800 V
JEDEC #2
Frequency 266.7 MHz
CAS# Latency 4.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 12
tRC 16
Voltage 1.800 V
JEDEC #1
Frequency 200.0 MHz
CAS# Latency 3.0
RAS# To CAS# 3
RAS# Precharge 3
tRAS 9
tRC 12
Voltage 1.800 V
Slot #2
Type DDR2
Size 512 MBytes
Manufacturer Samsung
Max Bandwidth PC2-5300 (333 MHz)
Part Number M4 70T6554EZ3-CE6
Serial Number F41D4920
Week/year 25 / 07
SPD Ext. EPP
JEDEC #3
Frequency 333.3 MHz
CAS# Latency 5.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 21
Voltage 1.800 V
JEDEC #2
Frequency 266.7 MHz
CAS# Latency 4.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 12
tRC 16
Voltage 1.800 V
JEDEC #1
Frequency 200.0 MHz
CAS# Latency 3.0
RAS# To CAS# 3
RAS# Precharge 3
tRAS 9
tRC 12
Voltage 1.800 V
Motherboard
Manufacturer Gateway
Version 3408503R
Chipset Vendor Intel
Chipset Model i943/940GML
Chipset Revision 03
Southbridge Vendor Intel
Southbridge Model 82801GHM (ICH7-M/U)
Southbridge Revision B0
System Temperature 54 °C
BIOS
Brand Phoenix Technologies LTD
Version 72.15
Date 04/16/2007
PCI Data
Slot UNKNOWN
Slot Type UNKNOWN
Slot Usage Available
Bus Width Unknown
Slot Designation Mini-Card Slot
Slot Number 0
Slot UNKNOWN
Slot Type UNKNOWN
Slot Usage Unknown
Bus Width 32 bit
Slot Designation PCMCIA socket 0
Slot Number 1
Graphics
Monitor
Name Generic PnP Monitor on Mobile Intel 945GM Express Chipset Controller 0 (Microsoft Corporation - WDDM)
Current Resolution 1440x900 pixels
Work Resolution 1440x870 pixels
State enabled, primary, output devices support
Monitor Width 1440
Monitor Height 900
Monitor BPP 32 bits per pixel
Monitor Frequency 60 Hz
Device \\.\DISPLAY1\Monitor0
Mobile Intel® 945GM Express Chipset Controller 0 (Microsoft Corporation - WDDM)
Memory 256 MB
Memory type 2
Driver version 7.14.10.1103
Mobile Intel® 945GM Express Chipset Controller 1 (Microsoft Corporation - WDDM)
Memory type 2
Driver version 7.14.10.1103
OpenGL
Version 1.1.0
Vendor Microsoft Corporation
Renderer GDI Generic
GLU Version 1.2.2.0 Microsoft Corporation
Values
GL_MAX_LIGHTS 8
GL_MAX_TEXTURE_SIZE 1024
GL_MAX_TEXTURE_STACK_DEPTH 10
GL Extensions
GL_WIN_swap_hint
GL_EXT_bgra
GL_EXT_paletted_texture
GLU Extensions
GL_EXT_bgra
Hard Drives
WDC WD1200BEVS-00UST0 ATA Device
Manufacturer Western Digital
Form Factor GB/2.5-inch
Business Unit/Brand Mobile/WD Scorpio®
Heads 16
Cylinders 16383
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
LBA Size 48-bit LBA
Power On Count 2753 times
Power On Time 885.5 days
Features S.M.A.R.T., APM, AAM, NCQ
Transfer Mode SATA I
Interface SATA
Capacity 117GB
Real size 120,034,123,776 bytes
RAID Type None
S.M.A.R.T
01 Read Error Rate 200 (200 worst) Data 0000000780
03 Spin-Up Time 161 (159) Data 00000003AD
04 Start/Stop Count 096 (096) Data 000000114A
05 Reallocated Sectors Count 200 (200) Data 0000000000
07 Seek Error Rate 200 (200) Data 0000000000
09 Power-On Hours (POH) 071 (071) Data 0000005305
0A Spin Retry Count 100 (100) Data 0000000000
0B Recalibration Retries 100 (100) Data 0000000000
0C Device Power Cycle Count 098 (098) Data 0000000AC1
C0 Power-off Retract Count 199 (199) Data 00000002F1
C1 Load/Unload Cycle Count 004 (004) Data 000008F904
C2 Temperature 101 (086) Data 000000002A
C4 Reallocation Event Count 200 (200) Data 0000000000
C5 Current Pending Sector Count 200 (200) Data 0000000009
C6 Uncorrectable Sector Count 100 (253) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
C8 Write Error Rate / Multi-Zone Error Rate 100 (253) Data 0000000000
Temperature 41 °C
Temperature Range ok (less than 50 °C)
Status Good
Partition 0
Partition ID Disk #0, Partition #0
Disk Letter D:
File System NTFS
Volume Serial Number 7CB1976A
Size 10.1GB
Used Space 10.1GB (100%)
Free Space 92MB (0%)
Partition 1
Partition ID Disk #0, Partition #1
Disk Letter C:
File System NTFS
Volume Serial Number 18D0BA00
Size 102GB
Used Space 76GB (75%)
Free Space 25.5GB (25%)
Optical Drives
Optiarc DVD RW AD-7560A ATA Device
Media Type DVD Writer
Name Optiarc DVD RW AD-7560A ATA Device
Availability Running/Full Power
Capabilities Random Access, Supports Writing, Supports Removable Media
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive E:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 0
SCSI Target Id 0
Status OK
DUT 1YNCLYVK SCSI CdRom Device
Media Type DVD-ROM
Name DUT 1YNCLYVK SCSI CdRom Device
Availability Running/Full Power
Capabilities Random Access, Supports Removable Media
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive F:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 4
SCSI Target Id 0
Status OK
Audio
Sound Card
High Definition Audio Device
Playback Device
Speakers (High Definition Audio Device)
Peripherals
Standard PS/2 Keyboard
Device Kind Keyboard
Device Name Standard PS/2 Keyboard
Location plugged into keyboard port
Driver
Date 6-21-2006
Version 6.0.6002.18005
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
PS/2 Compatible Mouse
Device Kind Mouse
Device Name PS/2 Compatible Mouse
Location plugged into PS/2 mouse port
Driver
Date 6-21-2006
Version 6.0.6001.18000
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
Printers
Canon Inkjet MP150 Series (Default Printer)
Printer Port USB001
Print Processor BJ Print Processor3
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Canon Inkjet MP150 Series (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\UNIDRV.DLL
Microsoft XPS Document Writer
Printer Port XPSPort:
Print Processor WinPrint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Microsoft XPS Document Writer (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\mxdwdrv.dll
Send To OneNote 2007
Printer Port Send To Microsoft OneNote Port:
Print Processor OneNotePrint2007
Availability Always
Priority 1
Duplex None
Print Quality 300 * 300 dpi Color
Status Unknown
Driver
Driver Name Send To Microsoft OneNote Driver (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\msonpdrv.dll
Network
You are connected to the internet
Connected through Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter
IP Address 192.168.1.5
Subnet mask 255.255.255.0
Gateway server 192.168.1.1
Preferred DNS server 192.168.1.1
DHCP Enabled
DHCP server 192.168.1.1
External IP Address 24.129.115.55
Adapter Type IEEE 802.11 wireless
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Peer to Peer node
Link Speed 0 kbps
Computer Name
NetBIOS Name DEVONASA-PC
DNS Name Devonasa-PC
Domain Name Devonasa-PC
Remote Desktop
Console
State Active
Domain Devonasa-PC
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Using native Wi-Fi API version 2
Available access points count 1
Wi-Fi (NETGEAR)
SSID NETGEAR
Name No name
Signal Strength/Quality 73
Security Disabled
State The interface is connected to a network
Dot11 Type Infrastructure BSS network
Network Connectible
Network Flags Currently Connected to this network
Cipher Algorithm to be used when joining this network No Cipher algorithm is enabled/supported
Default Auth used to join this network for the first time IEEE 802.11 Open System authentication algorithm
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout 60000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout 30000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
Network Discovery Enabled
File and Printer Sharing Enabled
Media Sharing Disabled
Adapters List
Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter
IP Address 192.168.1.5
Subnet mask 255.255.255.0
Gateway server 192.168.1.1
Intel® PRO/100 VE Network Connection
IP Address 0.0.0.0
Subnet mask 0.0.0.0
Gateway server 0.0.0.0
Network Shares
No network shares
Current TCP Connections
AppleMobileDeviceService.exe (432)
Local 127.0.0.1:27015 LISTEN
Local 127.0.0.1:27015 ESTABLISHED Remote 127.0.0.1:49228 (Querying... )
C:\Program Files\Common Files\Symantec Shared\ccApp.exe (3992)
Local [00:00:00:00:00:00:00:01]:49161 LISTEN
Local 127.0.0.1:49160 LISTEN
C:\Program Files\Mozilla Firefox\firefox.exe (2212)
Local 127.0.0.1:49286 ESTABLISHED Remote 127.0.0.1:49287 (Querying... )
Local 127.0.0.1:49287 ESTABLISHED Remote 127.0.0.1:49286 (Querying... )
Local 127.0.0.1:49349 ESTABLISHED Remote 127.0.0.1:49350 (Querying... )
Local 127.0.0.1:49350 ESTABLISHED Remote 127.0.0.1:49349 (Querying... )
C:\Program Files\Speccy\Speccy.exe (5008)
Local 192.168.1.5:50111 ESTABLISHED Remote 209.62.107.107:80 (Querying... ) (HTTP)
Local 192.168.1.5:50130 ESTABLISHED Remote 188.121.45.128:80 (Querying... ) (HTTP)
C:\Program Files\iTunes\iTunesHelper.exe (2384)
Local 127.0.0.1:49228 ESTABLISHED Remote 127.0.0.1:27015 (Querying... )
System Process
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50083 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50139 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50112 (Querying... )
Local 192.168.1.5:49987 TIME-WAIT Remote 74.125.65.139:80 (Querying... ) (HTTP)
Local 192.168.1.5:50016 TIME-WAIT Remote 74.125.47.132:80 (Querying... ) (HTTP)
Local 192.168.1.5:50019 TIME-WAIT Remote 96.17.147.17:80 (Querying... ) (HTTP)
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50110 (Querying... )
Local 192.168.1.5:50020 TIME-WAIT Remote 157.238.91.18:80 (Querying... ) (HTTP)
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50109 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50079 (Querying... )
Local 192.168.1.5:50029 TIME-WAIT Remote 74.125.47.91:80 (Querying... ) (HTTP)
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50107 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50073 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50074 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50075 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50076 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50077 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50078 (Querying... )
Local 192.168.1.5:50031 TIME-WAIT Remote 74.125.47.102:80 (Querying... ) (HTTP)
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50080 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50081 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50082 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50108 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50084 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50085 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50086 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50087 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50089 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50090 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50091 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50092 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50093 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50094 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50095 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50096 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50097 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50098 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50099 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50100 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50101 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50102 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50103 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50104 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50105 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50106 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50113 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50114 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50117 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50131 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50132 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50133 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50134 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50135 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50136 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50137 (Querying... )
Local 127.0.0.1:8585 TIME-WAIT Remote 127.0.0.1:50138 (Querying... )
System Process
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 0.0.0.0:2869 LISTEN
Local 0.0.0.0:5357 LISTEN
Local 192.168.1.5:139 (NetBIOS session service) LISTEN
Local 192.168.1.5:2869 CLOSE-WAIT Remote 192.168.1.1:3285 (Querying... )
Local [00:00:00:00:00:00:00:00]:445 LISTEN
Local [00:00:00:00:00:00:00:00]:2869 LISTEN
Local [00:00:00:00:00:00:00:00]:5357 LISTEN
hasplms.exe (1360)
Local [00:00:00:00:00:00:00:00]:1947 LISTEN
Local 0.0.0.0:1947 LISTEN
lsass.exe (644)
Local 0.0.0.0:49154 LISTEN
Local [00:00:00:00:00:00:00:00]:49154 LISTEN
mDNSResponder.exe (624)
Local 127.0.0.1:5354 LISTEN
scManager.sys (1988)
Local 127.0.0.1:8585 LISTEN
services.exe (632)
Local 0.0.0.0:49156 LISTEN
Local [00:00:00:00:00:00:00:00]:49156 LISTEN
svchost.exe (1044)
Local 0.0.0.0:49155 LISTEN
Local [00:00:00:00:00:00:00:00]:49155 LISTEN
svchost.exe (848)
Local 0.0.0.0:135 (DCE) LISTEN
Local [00:00:00:00:00:00:00:00]:135 LISTEN
svchost.exe (944)
Local 0.0.0.0:49153 LISTEN
Local [00:00:00:00:00:00:00:00]:49153 LISTEN
wininit.exe (552)
Local 0.0.0.0:49152 LISTEN
Local [00:00:00:00:00:00:00:00]:49152 LISTEN
  • 0

#24
michaelg9

michaelg9

    Trusted Helper

  • Malware Removal
  • 2,949 posts
Hello

Chkdsk made some corrections but you have some hardware problems:

Read failure with status 0xc0000185 at offset 0x9ae476000 for 0x10000 bytes.

The driver detected a controller error on \Device\Ide\IdePort1.

The embedded controller (EC) did not respond within the specified
timeout period. This may indicate that there is an error in the EC hardware or
firmware or that the BIOS is accessing the EC incorrectly. You should check with
your computer manufacturer for an upgraded BIOS. In some situations, this error
may cause the computer to function incorrectly.

The shadow copies of volume C: were aborted because of an IO failure
on volume C:.


I'll refer to the techs about your hardware problems to see what they have to say.


Next:

Follow the instructions of TDSSKiller to run it as before.
It will find a suspicious object named TDSS File System.
At that object select Delete
Post the log here


Next:

Re-run aswmbr and post a fresh log here
  • 0

#25
Devonasa

Devonasa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
16:00:50.0669 6712 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
16:00:51.0529 6712 ============================================================
16:00:51.0530 6712 Current date / time: 2012/01/04 16:00:51.0529
16:00:51.0530 6712 SystemInfo:
16:00:51.0531 6712
16:00:51.0531 6712 OS Version: 6.0.6002 ServicePack: 2.0
16:00:51.0531 6712 Product type: Workstation
16:00:51.0531 6712 ComputerName: DEVONASA-PC
16:00:51.0532 6712 UserName: Devonasa
16:00:51.0532 6712 Windows directory: C:\Windows
16:00:51.0532 6712 System windows directory: C:\Windows
16:00:51.0532 6712 Processor architecture: Intel x86
16:00:51.0533 6712 Number of processors: 2
16:00:51.0533 6712 Page size: 0x1000
16:00:51.0533 6712 Boot type: Normal boot
16:00:51.0533 6712 ============================================================
16:00:54.0409 6712 Initialize success
16:01:32.0998 2168 ============================================================
16:01:32.0998 2168 Scan started
16:01:32.0998 2168 Mode: Manual; SigCheck; TDLFS;
16:01:32.0998 2168 ============================================================
16:01:36.0502 2168 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
16:01:36.0941 2168 ACPI - ok
16:01:37.0071 2168 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
16:01:37.0392 2168 adp94xx - ok
16:01:37.0515 2168 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
16:01:37.0739 2168 adpahci - ok
16:01:37.0802 2168 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
16:01:38.0018 2168 adpu160m - ok
16:01:38.0054 2168 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
16:01:38.0192 2168 adpu320 - ok
16:01:38.0259 2168 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
16:01:38.0484 2168 AFD - ok
16:01:38.0556 2168 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
16:01:38.0719 2168 agp440 - ok
16:01:38.0759 2168 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
16:01:38.0907 2168 aic78xx - ok
16:01:38.0980 2168 aksfridge (45f65f2f7ae28e5e56ab64e3ac61bd52) C:\Windows\system32\drivers\aksfridge.sys
16:01:39.0240 2168 aksfridge - ok
16:01:39.0307 2168 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
16:01:39.0471 2168 aliide - ok
16:01:39.0509 2168 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
16:01:39.0645 2168 amdagp - ok
16:01:39.0682 2168 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
16:01:39.0823 2168 amdide - ok
16:01:39.0861 2168 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
16:01:40.0230 2168 AmdK7 - ok
16:01:40.0302 2168 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
16:01:40.0468 2168 AmdK8 - ok
16:01:40.0544 2168 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
16:01:40.0701 2168 arc - ok
16:01:40.0742 2168 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
16:01:40.0854 2168 arcsas - ok
16:01:40.0912 2168 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
16:01:41.0141 2168 AsyncMac - ok
16:01:41.0182 2168 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
16:01:41.0465 2168 atapi - ok
16:01:41.0587 2168 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
16:01:41.0731 2168 Beep - ok
16:01:41.0792 2168 blbdrive - ok
16:01:41.0853 2168 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
16:01:42.0015 2168 bowser - ok
16:01:42.0069 2168 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
16:01:42.0203 2168 BrFiltLo - ok
16:01:42.0248 2168 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
16:01:42.0370 2168 BrFiltUp - ok
16:01:42.0411 2168 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
16:01:42.0547 2168 Brserid - ok
16:01:42.0572 2168 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
16:01:42.0782 2168 BrSerWdm - ok
16:01:42.0811 2168 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
16:01:42.0908 2168 BrUsbMdm - ok
16:01:43.0014 2168 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
16:01:43.0148 2168 BrUsbSer - ok
16:01:43.0186 2168 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
16:01:43.0356 2168 BTHMODEM - ok
16:01:43.0419 2168 catchme - ok
16:01:43.0475 2168 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
16:01:43.0596 2168 cdfs - ok
16:01:43.0653 2168 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
16:01:44.0050 2168 cdrom - ok
16:01:44.0174 2168 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
16:01:44.0364 2168 circlass - ok
16:01:44.0430 2168 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
16:01:44.0611 2168 CLFS - ok
16:01:44.0775 2168 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
16:01:44.0904 2168 CmBatt - ok
16:01:44.0962 2168 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
16:01:45.0070 2168 cmdide - ok
16:01:45.0122 2168 COH_Mon (c586875ece5318c6309ed1ab79d0e55f) C:\Windows\system32\Drivers\COH_Mon.sys
16:01:45.0236 2168 COH_Mon - ok
16:01:45.0290 2168 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
16:01:45.0389 2168 Compbatt - ok
16:01:45.0435 2168 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
16:01:45.0536 2168 crcdisk - ok
16:01:45.0578 2168 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
16:01:45.0803 2168 Crusoe - ok
16:01:45.0933 2168 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
16:01:46.0103 2168 DfsC - ok
16:01:46.0167 2168 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
16:01:46.0278 2168 disk - ok
16:01:46.0342 2168 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
16:01:46.0473 2168 drmkaud - ok
16:01:46.0550 2168 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
16:01:46.0877 2168 DXGKrnl - ok
16:01:46.0997 2168 E100B (d00eeae1cacd77a1a8396bbc19140bba) C:\Windows\system32\DRIVERS\e100b325.sys
16:01:47.0123 2168 E100B - ok
16:01:47.0202 2168 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
16:01:47.0343 2168 E1G60 - ok
16:01:47.0400 2168 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
16:01:47.0493 2168 Ecache - ok
16:01:47.0618 2168 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
16:01:47.0826 2168 eeCtrl - ok
16:01:47.0933 2168 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
16:01:48.0071 2168 elxstor - ok
16:01:48.0181 2168 EraserUtilDrvI13 (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrvI13.sys
16:01:48.0325 2168 EraserUtilDrvI13 - ok
16:01:48.0480 2168 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
16:01:48.0622 2168 exfat - ok
16:01:48.0701 2168 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
16:01:48.0826 2168 fastfat - ok
16:01:48.0888 2168 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
16:01:49.0027 2168 fdc - ok
16:01:49.0091 2168 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
16:01:49.0186 2168 FileInfo - ok
16:01:49.0234 2168 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
16:01:49.0348 2168 Filetrace - ok
16:01:49.0397 2168 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
16:01:49.0552 2168 flpydisk - ok
16:01:49.0616 2168 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
16:01:49.0720 2168 FltMgr - ok
16:01:49.0822 2168 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
16:01:49.0890 2168 Fs_Rec - ok
16:01:49.0944 2168 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
16:01:50.0097 2168 gagp30kx - ok
16:01:50.0153 2168 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:01:50.0300 2168 GEARAspiWDM - ok
16:01:50.0399 2168 hardlock (995178a443b07fa9eeaea041d7b4b5ca) C:\Windows\system32\drivers\hardlock.sys
16:01:50.0656 2168 hardlock - ok
16:01:50.0715 2168 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
16:01:50.0867 2168 HdAudAddService - ok
16:01:50.0942 2168 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
16:01:51.0145 2168 HDAudBus - ok
16:01:51.0196 2168 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
16:01:51.0409 2168 HidBth - ok
16:01:51.0440 2168 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
16:01:51.0553 2168 HidIr - ok
16:01:51.0613 2168 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
16:01:51.0783 2168 HidUsb - ok
16:01:51.0827 2168 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
16:01:51.0954 2168 HpCISSs - ok
16:01:52.0006 2168 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
16:01:52.0273 2168 HTTP - ok
16:01:52.0357 2168 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
16:01:52.0915 2168 i2omp - ok
16:01:53.0042 2168 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
16:01:53.0398 2168 i8042prt - ok
16:01:53.0551 2168 ialm (496db78e6a0c4c44023d9a92b4a7ac31) C:\Windows\system32\DRIVERS\igdkmd32.sys
16:01:53.0838 2168 ialm - ok
16:01:53.0919 2168 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
16:01:54.0044 2168 iaStorV - ok
16:01:54.0093 2168 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
16:01:54.0337 2168 iirsp - ok
16:01:54.0402 2168 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
16:01:54.0530 2168 intelide - ok
16:01:54.0582 2168 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
16:01:54.0712 2168 intelppm - ok
16:01:54.0785 2168 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:01:54.0926 2168 IpFilterDriver - ok
16:01:54.0952 2168 IpInIp - ok
16:01:55.0024 2168 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
16:01:55.0153 2168 IPMIDRV - ok
16:01:55.0193 2168 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
16:01:55.0287 2168 IPNAT - ok
16:01:55.0374 2168 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
16:01:55.0445 2168 IRENUM - ok
16:01:55.0480 2168 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
16:01:55.0623 2168 isapnp - ok
16:01:55.0682 2168 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
16:01:55.0773 2168 iScsiPrt - ok
16:01:55.0819 2168 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
16:01:55.0942 2168 iteatapi - ok
16:01:55.0989 2168 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
16:01:56.0073 2168 iteraid - ok
16:01:56.0125 2168 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
16:01:56.0223 2168 kbdclass - ok
16:01:56.0270 2168 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
16:01:56.0441 2168 kbdhid - ok
16:01:56.0524 2168 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
16:01:56.0651 2168 KSecDD - ok
16:01:56.0735 2168 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
16:01:56.0854 2168 lltdio - ok
16:01:56.0934 2168 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
16:01:57.0052 2168 LSI_FC - ok
16:01:57.0098 2168 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
16:01:57.0249 2168 LSI_SAS - ok
16:01:57.0294 2168 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
16:01:57.0409 2168 LSI_SCSI - ok
16:01:57.0469 2168 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
16:01:57.0569 2168 luafv - ok
16:01:57.0672 2168 LVcKap (efe6cb9600a6bef09834be558d7cf04e) C:\Windows\system32\DRIVERS\LVcKap.sys
16:01:57.0966 2168 LVcKap - ok
16:01:58.0124 2168 LVMVDrv (8895475987655aae944544e30004b290) C:\Windows\system32\DRIVERS\LVMVDrv.sys
16:01:58.0503 2168 LVMVDrv - ok
16:01:58.0609 2168 lvpopflt (ff6e9c169f3372d0046dedbe63e461f2) C:\Windows\system32\DRIVERS\lvpopflt.sys
16:01:58.0972 2168 lvpopflt - ok
16:01:59.0025 2168 LVPr2Mon (985875cf257e5900c3f779a6929920e2) C:\Windows\system32\DRIVERS\LVPr2Mon.sys
16:01:59.0125 2168 LVPr2Mon - ok
16:01:59.0204 2168 LVUSBSta (ccff53b1fcdfa9ede919e3bdbd10d0fd) C:\Windows\system32\drivers\lvusbsta.sys
16:01:59.0350 2168 LVUSBSta - ok
16:01:59.0454 2168 LVUVC (9c1123052624356cd7c05d5c5767bf57) C:\Windows\system32\DRIVERS\lvuvc.sys
16:01:59.0810 2168 LVUVC - ok
16:01:59.0872 2168 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
16:02:00.0004 2168 megasas - ok
16:02:00.0070 2168 mferkdk (41fe2f288e05a6c8ab85dd56770ffbad) C:\Windows\system32\drivers\mferkdk.sys
16:02:00.0180 2168 mferkdk - ok
16:02:00.0250 2168 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
16:02:00.0386 2168 Modem - ok
16:02:00.0444 2168 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
16:02:00.0550 2168 monitor - ok
16:02:00.0610 2168 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
16:02:00.0689 2168 mouclass - ok
16:02:00.0746 2168 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
16:02:00.0910 2168 mouhid - ok
16:02:00.0963 2168 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
16:02:01.0072 2168 MountMgr - ok
16:02:01.0124 2168 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
16:02:01.0271 2168 mpio - ok
16:02:01.0328 2168 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
16:02:01.0387 2168 mpsdrv - ok
16:02:01.0456 2168 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
16:02:01.0535 2168 Mraid35x - ok
16:02:01.0585 2168 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
16:02:01.0691 2168 MRxDAV - ok
16:02:01.0751 2168 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:02:01.0874 2168 mrxsmb - ok
16:02:01.0938 2168 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:02:02.0019 2168 mrxsmb10 - ok
16:02:02.0099 2168 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:02:02.0175 2168 mrxsmb20 - ok
16:02:02.0218 2168 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
16:02:02.0327 2168 msahci - ok
16:02:02.0377 2168 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
16:02:02.0480 2168 msdsm - ok
16:02:02.0543 2168 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
16:02:02.0634 2168 Msfs - ok
16:02:02.0682 2168 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
16:02:02.0752 2168 msisadrv - ok
16:02:02.0806 2168 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
16:02:02.0915 2168 MSKSSRV - ok
16:02:02.0947 2168 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
16:02:03.0050 2168 MSPCLOCK - ok
16:02:03.0081 2168 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
16:02:03.0172 2168 MSPQM - ok
16:02:03.0228 2168 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
16:02:03.0336 2168 MsRPC - ok
16:02:03.0401 2168 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
16:02:03.0477 2168 mssmbios - ok
16:02:03.0538 2168 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
16:02:03.0640 2168 MSTEE - ok
16:02:03.0695 2168 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
16:02:03.0783 2168 Mup - ok
16:02:03.0864 2168 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
16:02:04.0007 2168 NativeWifiP - ok
16:02:04.0137 2168 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120102.004\NAVENG.SYS
16:02:04.0236 2168 NAVENG - ok
16:02:04.0313 2168 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120102.004\NAVEX15.SYS
16:02:04.0590 2168 NAVEX15 - ok
16:02:04.0724 2168 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
16:02:04.0870 2168 NDIS - ok
16:02:04.0935 2168 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
16:02:05.0008 2168 NdisTapi - ok
16:02:05.0045 2168 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
16:02:05.0126 2168 Ndisuio - ok
16:02:05.0180 2168 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
16:02:05.0422 2168 NdisWan - ok
16:02:05.0506 2168 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
16:02:05.0694 2168 NDProxy - ok
16:02:05.0748 2168 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
16:02:05.0854 2168 NetBIOS - ok
16:02:05.0900 2168 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
16:02:06.0126 2168 netbt - ok
16:02:06.0212 2168 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
16:02:06.0322 2168 nfrd960 - ok
16:02:06.0387 2168 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
16:02:06.0457 2168 Npfs - ok
16:02:06.0507 2168 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
16:02:06.0724 2168 nsiproxy - ok
16:02:06.0909 2168 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
16:02:07.0299 2168 Ntfs - ok
16:02:07.0424 2168 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
16:02:07.0735 2168 ntrigdigi - ok
16:02:08.0044 2168 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
16:02:08.0186 2168 Null - ok
16:02:08.0322 2168 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
16:02:08.0498 2168 nvraid - ok
16:02:08.0580 2168 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
16:02:08.0707 2168 nvstor - ok
16:02:08.0789 2168 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
16:02:08.0889 2168 nv_agp - ok
16:02:08.0909 2168 NwlnkFlt - ok
16:02:08.0931 2168 NwlnkFwd - ok
16:02:09.0010 2168 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
16:02:09.0153 2168 ohci1394 - ok
16:02:09.0231 2168 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
16:02:09.0405 2168 Parport - ok
16:02:09.0507 2168 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
16:02:09.0602 2168 partmgr - ok
16:02:09.0660 2168 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
16:02:09.0758 2168 Parvdm - ok
16:02:09.0808 2168 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
16:02:09.0926 2168 pci - ok
16:02:10.0000 2168 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
16:02:10.0082 2168 pciide - ok
16:02:10.0138 2168 pcmcia (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys
16:02:10.0210 2168 pcmcia - ok
16:02:10.0277 2168 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
16:02:10.0491 2168 PEAUTH - ok
16:02:10.0596 2168 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
16:02:10.0686 2168 PptpMiniport - ok
16:02:10.0744 2168 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
16:02:10.0883 2168 Processor - ok
16:02:10.0980 2168 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
16:02:11.0096 2168 PSched - ok
16:02:11.0156 2168 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\Windows\system32\Drivers\PxHelp20.sys
16:02:11.0233 2168 PxHelp20 - ok
16:02:11.0305 2168 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
16:02:11.0518 2168 ql2300 - ok
16:02:11.0549 2168 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
16:02:11.0585 2168 ql40xx - ok
16:02:11.0639 2168 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
16:02:11.0786 2168 QWAVEdrv - ok
16:02:11.0823 2168 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
16:02:11.0908 2168 RasAcd - ok
16:02:11.0981 2168 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:02:12.0086 2168 Rasl2tp - ok
16:02:12.0162 2168 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
16:02:12.0244 2168 RasPppoe - ok
16:02:12.0292 2168 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
16:02:12.0363 2168 RasSstp - ok
16:02:12.0405 2168 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
16:02:12.0468 2168 rdbss - ok
16:02:12.0530 2168 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:02:12.0595 2168 RDPCDD - ok
16:02:12.0653 2168 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
16:02:12.0791 2168 rdpdr - ok
16:02:12.0808 2168 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
16:02:12.0910 2168 RDPENCDD - ok
16:02:12.0968 2168 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
16:02:13.0088 2168 RDPWD - ok
16:02:13.0131 2168 RimUsb - ok
16:02:13.0173 2168 RimVSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\Windows\system32\DRIVERS\RimSerial.sys
16:02:13.0345 2168 RimVSerPort - ok
16:02:13.0402 2168 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
16:02:13.0537 2168 ROOTMODEM - ok
16:02:13.0592 2168 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
16:02:13.0650 2168 rspndr - ok
16:02:13.0700 2168 RTL8187B (7fe5089eb5f624899de08c30db4377fc) C:\Windows\system32\DRIVERS\RTL8187B.sys
16:02:13.0843 2168 RTL8187B - ok
16:02:13.0913 2168 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
16:02:13.0992 2168 sbp2port - ok
16:02:14.0052 2168 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
16:02:14.0178 2168 secdrv - ok
16:02:14.0227 2168 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
16:02:14.0358 2168 Serenum - ok
16:02:14.0395 2168 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
16:02:14.0537 2168 Serial - ok
16:02:14.0581 2168 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
16:02:14.0667 2168 sermouse - ok
16:02:14.0727 2168 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
16:02:14.0869 2168 sffdisk - ok
16:02:14.0907 2168 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
16:02:15.0040 2168 sffp_mmc - ok
16:02:15.0072 2168 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
16:02:15.0175 2168 sffp_sd - ok
16:02:15.0218 2168 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
16:02:15.0345 2168 sfloppy - ok
16:02:15.0424 2168 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
16:02:15.0524 2168 sisagp - ok
16:02:15.0570 2168 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
16:02:15.0646 2168 SiSRaid2 - ok
16:02:15.0687 2168 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
16:02:15.0775 2168 SiSRaid4 - ok
16:02:15.0840 2168 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
16:02:16.0068 2168 Smb - ok
16:02:16.0153 2168 smserial (c8a58fc905c9184fa70e37f71060c64d) C:\Windows\system32\DRIVERS\smserial.sys
16:02:16.0339 2168 smserial - ok
16:02:16.0486 2168 SPBBCDrv (e621bb5839cf45fa477f48092edd2b40) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
16:02:16.0611 2168 SPBBCDrv - ok
16:02:16.0741 2168 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
16:02:16.0814 2168 spldr - ok
16:02:16.0959 2168 sptd (f42efefb765235f24b24e1d2b6f99f46) C:\Windows\System32\Drivers\sptd.sys
16:02:16.0960 2168 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: f42efefb765235f24b24e1d2b6f99f46
16:02:16.0961 2168 sptd ( LockedFile.Multi.Generic ) - warning
16:02:16.0961 2168 sptd - detected LockedFile.Multi.Generic (1)
16:02:17.0018 2168 SRTSP (2abf82c8452ab0b9ffc74a2d5da91989) C:\Windows\system32\Drivers\SRTSP.SYS
16:02:17.0112 2168 SRTSP - ok
16:02:17.0196 2168 SRTSPL (e2f9e5887bea5bd8784d337e06eda31b) C:\Windows\system32\Drivers\SRTSPL.SYS
16:02:17.0323 2168 SRTSPL - ok
16:02:17.0378 2168 SRTSPX (3b974c158fabd910186f98df8d3e23f3) C:\Windows\system32\Drivers\SRTSPX.SYS
16:02:17.0474 2168 SRTSPX - ok
16:02:17.0535 2168 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
16:02:17.0727 2168 srv - ok
16:02:17.0790 2168 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
16:02:17.0959 2168 srv2 - ok
16:02:18.0015 2168 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
16:02:18.0063 2168 srvnet - ok
16:02:18.0132 2168 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
16:02:18.0196 2168 swenum - ok
16:02:18.0284 2168 SymAFR (630d38afcefe1abc423d41171f300bd5) C:\Windows\system32\DRIVERS\SymAFR.sys
16:02:18.0375 2168 SymAFR - ok
16:02:18.0437 2168 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
16:02:18.0532 2168 Symc8xx - ok
16:02:18.0593 2168 SymEvent (a54ff04bd6e75dc4d8cb6f3e352635e0) C:\Windows\system32\Drivers\SYMEVENT.SYS
16:02:18.0726 2168 SymEvent - ok
16:02:18.0788 2168 SYMREDRV (394b2368212114d538316812af60fddd) C:\Windows\System32\Drivers\SYMREDRV.SYS
16:02:18.0887 2168 SYMREDRV - ok
16:02:18.0996 2168 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\Windows\System32\Drivers\SYMTDI.SYS
16:02:19.0427 2168 SYMTDI - ok
16:02:19.0702 2168 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
16:02:19.0995 2168 Sym_hi - ok
16:02:20.0205 2168 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
16:02:20.0278 2168 Sym_u3 - ok
16:02:20.0408 2168 SysPlant (1295b1da3e2a2c24c7d176f6e97afbd1) C:\Windows\SYSTEM32\Drivers\SysPlant.sys
16:02:20.0459 2168 SysPlant - ok
16:02:20.0567 2168 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
16:02:20.0699 2168 Tcpip - ok
16:02:20.0774 2168 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
16:02:20.0872 2168 Tcpip6 - ok
16:02:20.0925 2168 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
16:02:21.0165 2168 tcpipreg - ok
16:02:21.0224 2168 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
16:02:21.0303 2168 TDPIPE - ok
16:02:21.0329 2168 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
16:02:21.0434 2168 TDTCP - ok
16:02:21.0498 2168 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
16:02:21.0599 2168 tdx - ok
16:02:21.0653 2168 Teefer2 (1de2e1357552a79f39bff003a11c533e) C:\Windows\system32\DRIVERS\teefer2.sys
16:02:21.0737 2168 Teefer2 - ok
16:02:21.0795 2168 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
16:02:21.0854 2168 TermDD - ok
16:02:21.0945 2168 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:02:22.0038 2168 tssecsrv - ok
16:02:22.0090 2168 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
16:02:22.0218 2168 tunmp - ok
16:02:22.0270 2168 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
16:02:22.0345 2168 tunnel - ok
16:02:22.0406 2168 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
16:02:22.0559 2168 uagp35 - ok
16:02:22.0622 2168 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
16:02:22.0693 2168 udfs - ok
16:02:22.0759 2168 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
16:02:22.0804 2168 uliagpkx - ok
16:02:22.0867 2168 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
16:02:22.0950 2168 uliahci - ok
16:02:22.0994 2168 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
16:02:23.0059 2168 UlSata - ok
16:02:23.0107 2168 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
16:02:23.0190 2168 ulsata2 - ok
16:02:23.0239 2168 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
16:02:23.0346 2168 umbus - ok
16:02:23.0427 2168 USBAAPL (5c2bdc152bbab34f36473deaf7713f22) C:\Windows\system32\Drivers\usbaapl.sys
16:02:23.0634 2168 USBAAPL - ok
16:02:23.0691 2168 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
16:02:23.0819 2168 usbaudio - ok
16:02:23.0870 2168 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
16:02:23.0972 2168 usbccgp - ok
16:02:24.0123 2168 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
16:02:24.0357 2168 usbcir - ok
16:02:24.0386 2168 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
16:02:24.0560 2168 usbehci - ok
16:02:24.0608 2168 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
16:02:24.0699 2168 usbhub - ok
16:02:24.0748 2168 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
16:02:24.0912 2168 usbohci - ok
16:02:24.0967 2168 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
16:02:25.0023 2168 usbprint - ok
16:02:25.0065 2168 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
16:02:25.0133 2168 usbscan - ok
16:02:25.0173 2168 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:02:25.0290 2168 USBSTOR - ok
16:02:25.0345 2168 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
16:02:25.0416 2168 usbuhci - ok
16:02:25.0480 2168 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
16:02:25.0621 2168 vga - ok
16:02:25.0678 2168 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
16:02:25.0767 2168 VgaSave - ok
16:02:25.0824 2168 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
16:02:25.0923 2168 viaagp - ok
16:02:25.0965 2168 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
16:02:26.0091 2168 ViaC7 - ok
16:02:26.0122 2168 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
16:02:26.0216 2168 viaide - ok
16:02:26.0276 2168 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
16:02:26.0326 2168 volmgr - ok
16:02:26.0390 2168 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
16:02:26.0568 2168 volmgrx - ok
16:02:26.0626 2168 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
16:02:26.0701 2168 volsnap - ok
16:02:26.0767 2168 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
16:02:26.0859 2168 vsmraid - ok
16:02:26.0929 2168 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
16:02:27.0077 2168 WacomPen - ok
16:02:27.0137 2168 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
16:02:27.0228 2168 Wanarp - ok
16:02:27.0257 2168 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
16:02:27.0309 2168 Wanarpv6 - ok
16:02:27.0353 2168 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
16:02:27.0452 2168 Wd - ok
16:02:27.0524 2168 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
16:02:27.0648 2168 Wdf01000 - ok
16:02:27.0814 2168 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
16:02:27.0949 2168 WmiAcpi - ok
16:02:28.0028 2168 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
16:02:28.0150 2168 WpdUsb - ok
16:02:28.0215 2168 WPS (c1620ebb375d3b02e31fd311c44fedeb) C:\Windows\system32\drivers\wpsdrvnt.sys
16:02:28.0293 2168 WPS - ok
16:02:28.0352 2168 WpsHelper (ff983a25ae6f7d3f87f26bf51f02a201) C:\Windows\system32\drivers\WpsHelper.sys
16:02:28.0435 2168 WpsHelper - ok
16:02:28.0494 2168 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
16:02:28.0620 2168 ws2ifsl - ok
16:02:28.0688 2168 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:02:28.0771 2168 WUDFRd - ok
16:02:28.0831 2168 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
16:02:28.0924 2168 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
16:02:28.0924 2168 \Device\Harddisk0\DR0 - detected TDSS File System (1)
16:02:28.0930 2168 Boot (0x1200) (1e8c16f13b236a5a74f155e9efef0c3b) \Device\Harddisk0\DR0\Partition0
16:02:28.0932 2168 \Device\Harddisk0\DR0\Partition0 - ok
16:02:28.0940 2168 Boot (0x1200) (5cff3a65599eda0e01cae7a2764a97ab) \Device\Harddisk0\DR0\Partition1
16:02:28.0942 2168 \Device\Harddisk0\DR0\Partition1 - ok
16:02:28.0946 2168 ============================================================
16:02:28.0946 2168 Scan finished
16:02:28.0946 2168 ============================================================
16:02:28.0969 6356 Detected object count: 2
16:02:28.0969 6356 Actual detected object count: 2
16:03:07.0298 6356 sptd ( LockedFile.Multi.Generic ) - skipped by user
16:03:07.0298 6356 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
16:03:07.0300 6356 \Device\Harddisk0\DR0\TDLFS - deleted
16:03:07.0300 6356 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
16:03:55.0977 7720 Deinitialize success

aswMBR log

aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
Run date: 2012-01-04 16:30:02
-----------------------------
16:30:02.582 OS Version: Windows 6.0.6002 Service Pack 2
16:30:02.582 Number of processors: 2 586 0xE0C
16:30:02.582 ComputerName: DEVONASA-PC UserName: Devonasa
16:30:03.471 Initialize success
16:30:12.441 AVAST engine defs: 12010401
16:30:20.600 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-2
16:30:20.600 Disk 0 Vendor: WDC_WD1200BEVS-00UST0 01.01A01 Size: 114473MB BusType: 3
16:30:22.628 Disk 0 MBR read successfully
16:30:22.628 Disk 0 MBR scan
16:30:22.690 Disk 0 Windows VISTA default MBR code
16:30:22.706 Disk 0 scanning sectors +234436608
16:30:22.799 Disk 0 scanning C:\Windows\system32\drivers
16:30:35.872 Service scanning
16:30:38.696 Modules scanning
16:30:42.954 Disk 0 trace - called modules:
16:30:43.001 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys
16:30:43.001 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8482a5d8]
16:30:43.017 3 CLASSPNP.SYS[86ba68b3] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-2[0x847508a0]
16:30:44.124 AVAST engine scan C:\Windows
16:30:48.305 AVAST engine scan C:\Windows\system32
16:33:19.173 AVAST engine scan C:\Windows\system32\drivers
16:33:33.338 AVAST engine scan C:\Users\Devonasa
16:57:47.663 AVAST engine scan C:\ProgramData
17:01:54.720 Scan finished successfully
17:02:55.716 Disk 0 MBR has been saved successfully to "C:\Users\Devonasa\Desktop\MBR.dat"
17:02:55.732 The log file has been saved successfully to "C:\Users\Devonasa\Desktop\aswMBR1.txt"
  • 0

Advertisements


#26
michaelg9

michaelg9

    Trusted Helper

  • Malware Removal
  • 2,949 posts
Hello
That's better :happy:
I'd like to know how's your computer running now and if there are any other problems.
  • 0

#27
Devonasa

Devonasa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
Well, when I first ran the aswMBR scan, my computer unexpectedly shutdown, and when I restarted my computer my Symantec popped this up:

Posted Image

And then when I ran aswMBR again, my screen went blue and had this error message with white text. So after the second failed attempt, I ran the scan through Safe-Mode. It seems to be running fine, but I just wanted to let you know that just in case.

Edited by Devonasa, 04 January 2012 - 05:12 PM.

  • 0

#28
michaelg9

michaelg9

    Trusted Helper

  • Malware Removal
  • 2,949 posts
Hello

That's OK. As you don't have any other symptoms, I'll clean my tools and then you can make a new topic at the hardware forum to check your hardware. If you are going to post at the hardware forum, post them the link that you were being helped here and also post these:

Chkdsk LogChecking file system on C:
The type of the file system is NTFS.
Volume label is Windows.

A disk check has been scheduled.
Windows will now check the disk.
Cleaning up instance tags for file 0x4dcc.
Cleaning up instance tags for file 0x4e77.
328640 file records processed. 1357 large file records processed. 0 bad file records processed. 0 EA records processed. 66 reparse records processed. Unable to locate the file name attribute of index entry couri.ttf
of index $I30 with parent 0x11841 in file 0x27d2f.
Deleting index entry couri.ttf in index $I30 of file 71745.
Unable to locate the file name attribute of index entry euphemia.ttf
of index $I30 with parent 0x11841 in file 0x27d60.
Deleting index entry euphemia.ttf in index $I30 of file 71745.
417814 index entries processed. CHKDSK is recovering lost files.
Recovering orphaned file couri.ttf (163119) into directory file 71745.
2 unindexed files processed. Recovering orphaned file euphemia.ttf (163168) into directory file 71745.
328640 security descriptors processed. Cleaning up 2641 unused index entries from index $SII of file 0x9.
Cleaning up 2641 unused index entries from index $SDH of file 0x9.
Cleaning up 2641 unused security descriptors.
44588 data files processed. CHKDSK is verifying Usn Journal...
37643616 USN bytes processed. Usn Journal verification completed.
CHKDSK is verifying file data (stage 4 of 5)...
Read failure with status 0xc0000185 at offset 0x9ae476000 for 0x10000 bytes.
Read failure with status 0xc0000185 at offset 0x9ae47a000 for 0x1000 bytes.

Windows replaced bad clusters in file 235335
of name \PROGRA~1\EA GAMES\THA45C~1\TSData\Res\UserData\SC4TER~1\ARIDIA~1.PNG.
328624 files processed. File data verification completed.
CHKDSK is verifying free space (stage 5 of 5)...
6699425 free clusters processed. Free space verification is complete.
Adding 1 bad clusters to the Bad Clusters File.
CHKDSK discovered free space marked as allocated in the
master file table (MFT) bitmap.
Correcting errors in the Volume Bitmap.
Windows has made corrections to the file system.


Log: 'System' Date/Time: 11/06/2010 7:24:31 PM
Type: Error Category: 0
Event: 11 Source: atapi
The driver detected a controller error on \Device\Ide\IdePort1.

Error - 2/4/2010 5:29:59 PM | Computer Name = Devonasa-PC | Source = ACPI | ID = 327693
Description = : The embedded controller (EC) did not respond within the specified
timeout period. This may indicate that there is an error in the EC hardware or
firmware or that the BIOS is accessing the EC incorrectly. You should check with
your computer manufacturer for an upgraded BIOS. In some situations, this error
may cause the computer to function incorrectly.

Error - 2/5/2010 12:09:06 AM | Computer Name = Devonasa-PC | Source = volsnap | ID = 393230
Description = The shadow copies of volume C: were aborted because of an IO failure
on volume C:.




Next:

Follow these to clean my tools and stay safe

Happy to hear that you're clean finally :happy:

Congratulations! Your logs are clean! :thumbsup: Now that you are clean, please follow these precautions in order to keep safe:


Over the course of the fix you've used a variety of special tools to help with the cleaning process - none of these are of any use to you now that you're clean, and it's best not to have them hanging around on your computer.


Next:


Uninstall ComboFix from your computer:
  • Click on Start > Run
  • Type Combofix /Uninstall in the run box and click Ok. Note the space between the x and the /u, it needs to be there.
    Posted Image

Next:

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :Files
    C:\Users\Devonasa\AppData\Local\temp\_avast4_
    :Commands
    [resethosts]
    [purity]
    [emptytemp]
    [EMPTYFLASH]
    [CLEARALLRESTOREPOINTS]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL for the last time and hit the cleanup button. It will remove all the programs we have used plus itself.

Next:

Note: If you are using Firefox I would suggest the use of these add-ons:
  • NoScript - for blocking ads and other potential website attacks.
  • McAfee SiteAdvisor - this tells you whether the sites you are about to visit are safe or not. A must if you do a lot of Googling.


Next:


Automatic Updates for Windows
  • Click Start.
  • Select Settings and then Control Panel.
  • Select Automatic Updates.
  • Click Automatic (recommended)
  • Choose a day and a time when you know the computer will be on and connected to the internet.
  • Click Apply then OK.



Next:


Additional security programs - For additional security, the use of these tools is important:
  • Malwarebytes Anti-Malware. - Update the free version and scan with it often. It is an excellent scanning tool to have on your side.
  • The MVPS Hosts file replaces your current HOSTS file with one containing well know ad sites etc. Basically, this prevents your computer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer. This little program packs a powerful punch as it block ads, banners, 3rd party Cookies, 3rd party page counters, web bugs, and many hijackers. For information on how to download and install, please read this tutorial

Next:

Upgrading Java:
  • Go here and click Do I have Java
  • It will check your current version and then offer to update to the latest version, if there are any.


Next:


Update all these programs regularly - Make sure you update all the programs I have listed regularly. Without regular updates you WILL NOT be protected when new malicious programs are released.


Next:


Keep a backup of your important files to prevent future data loss.


Happy safe computing !! :)
  • 0

#29
Devonasa

Devonasa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
Thank you soo much for all the help, I've also switched over to a full version of Avast, because Symantec seems to always drop the ball. And I just posted a thread in the Hardware section as well.

Once again, thank you for all the help!!
  • 0

#30
michaelg9

michaelg9

    Trusted Helper

  • Malware Removal
  • 2,949 posts
You're welcome :happy:
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP