[wharriss]

RKinner

I believe I have followed all your instructions and ran all the scans successfully except for the Combofix which crashed after 5 minutes and the OTL which always stopped at "scanning Foxfire Settings"
Your instructions are very clear, concise, and easy to follow, even though I am a novice at this sort of stuff.
I really appreciate the help

Waiting for any further instructions
Thanks
Winston

[Advertisements]

Could you run vew again and this time click on Application instead of System?


Looking at your System Logs:

Type: error Category: 0
Event: 7006 Source: Service Control Manager
The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

This is caused by AVG. Supposedly if you turn off Self Protection in AVG this will go away. I don't have AVG but their website says:

AVG -> F8 -> AVG Self protection -> Untick the Enable AVG Self protection

Hopefully that makes sense to you. You should also notice that it boots faster with Self Protection turned off. This was a new feature added in the 2013 version and apparently the bugs aren't out of it yet.

The other error:

Type: error Category: 0
Event: 7000 Source: Service Control Manager
The mrtRate service failed to start due to the following error: The system cannot find the file specified.

This is a remnant from Quicken. Apparently it didn't uninstall completely.

Copy the next line:

sc delete merRate

Start, Run, cmd, OK and then right click and Paste or Edit then Paste and the copied line should appear. Hit Enter. IF you don't get an error then it worked and the error should stop.

[RKinner]

Could you run vew again and this time click on Application instead of System?


Looking at your System Logs:

Type: error Category: 0
Event: 7006 Source: Service Control Manager
The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

This is caused by AVG. Supposedly if you turn off Self Protection in AVG this will go away. I don't have AVG but their website says:

AVG -> F8 -> AVG Self protection -> Untick the Enable AVG Self protection

Hopefully that makes sense to you. You should also notice that it boots faster with Self Protection turned off. This was a new feature added in the 2013 version and apparently the bugs aren't out of it yet.

The other error:

Type: error Category: 0
Event: 7000 Source: Service Control Manager
The mrtRate service failed to start due to the following error: The system cannot find the file specified.

This is a remnant from Quicken. Apparently it didn't uninstall completely.

Copy the next line:

sc delete merRate

Start, Run, cmd, OK and then right click and Paste or Edit then Paste and the copied line should appear. Hit Enter. IF you don't get an error then it worked and the error should stop.

[wharriss]

RKinner

Well I see I did overlook one of your instructions hard as I tried
Here is the vew application log

Vino's Event Viewer v01c run on Windows XP in English
Report run at 24/01/2013 1:47:26 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

I unchecked the self protection in AVG

I ran the sc delete merRate command. A black dos screen flashed too quick to read and then it was gone.

OFF TOPIC:
Beside this xp PC we are working on, I also have a windows 7 PC, a windows 7 laptop and another old 2006 windows xp laptop, all HP models. No problems with the other three that I know of. I use all of them off and on. I have had all of these computers on my home network until now. This old xp we have been working on was my favorite, and I used it for my Outlook Express emails, most of which I lost with all these problems so I am trying to learn to use Thunderbird on the windows 7 PC. I have been running Norton products on my computers for years, but am beginning to lose confidence. I do have a subscription paid up through July this year to run Norton 360 on 3 computers. Right now, I am running Avast, MBAM, and Superantispyware, all free products on the old laptop xp and I have Norton 360 on the two window 7. AVG, MBAM,and SuperAntiSpyware, all freeware, on the one we are working on. My question is, if you are allowed to, how would you suggest setting up good protection for these computers. I had rather pay up front, if necessary, to have proper prevention than to have to go through this process, although you have been great and it's a good learning experience for me. Still prevention is better than cure.

[RKinner]

Let's see if that fixed it.

Start, Run, eventvwr.msc, OK to bring up the Event Viewer. Right click on System and Clear All Events, No (we don't want to save the old log), OK. Repeat for Application.

Reboot.

1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Double-click VEW.exe
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.
Please post the Output log in your next reply.

I wonder if Combofix will run now? Remember to pause your anti-virus before trying to run it. Does it still crash?

If you are willing to pay for protection then Kaspersky and Bitdefender are the two best a-v's (in my opinion). We seldom see infections on PCs with either.

For Free: The free Avast with the free Online-armor also installed. MBAM is OK to use with them but the free version won't update on its own so you need to periodically do a manual update. SuperAntiSpyware and I are not on the best of terms. It doesn't uninstall cleanly and they once sued a site I used to work on because we wouldn't recommend them. Use Firefox or Chrome with the AdBlock Plus add-on. Do not install Java and make sure your adobe products (reader, flash etc) are up to date. Whether you use adobe reader, acrobat or fox-it to read pdf files you need to disable Javascript in the program. There is an exploit out there now that can use it to get on your PC. For Adobe Reader: Start, All Programs, Adobe Reader, Edit, Preferences, Click on Javascript in the left column and uncheck Enable Acrobat Javascript. OK Close program. It's the same for Foxit reader except you uncheck Enable Javascript Actions.

For true paranoids I recommend using the No-Script add-on in Firefox. (For Chrome it is called Script-No). This is a bit more trouble to use since you have to tell the add-on that a website is allowed to use javascript (and java if you still have it installed). Chrome will install Java when you install it but you can uninstall Java afterward without impacting Chrome.

For email I like gmail.com. Your emails are always stored on their server so you if your PC crashes you don't lose them. Also their spam filter is very good so you don't get a lot of junk mail. Plus you can access your email from any PC.

[wharriss]

I ran VEW and put the log in my proposed post but didn't send it. I planned to run ComboFix and post both files but, of course. when I ran ComboFix I shut down the browser and lost the VEW file results.

ComboFix did run all the way through, and here is the log. Should I run VEW again and post log??

ComboFix 13-01-24.02 - Owner 01/24/2013 20:10:41.2.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1471.928 [GMT -5:00]
Running from: c:\documents and settings\Owner\Desktop\ComboFix.exe
AV: AVG Anti-Virus 2013 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Default User\WINDOWS
c:\documents and settings\Owner\WINDOWS
c:\windows\dasetup.log
c:\windows\help\wmplayer.bak
c:\windows\system32\config\systemprofile\WINDOWS
c:\windows\system32\dllcache\wmpvis.dll
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
c:\windows\wt
D:\Autorun.inf
.
.
((((((((((((((((((((((((( Files Created from 2012-12-25 to 2013-01-25 )))))))))))))))))))))))))))))))
.
.
2013-01-23 14:34 . 2013-01-23 14:34 -------- d-----w- c:\documents and settings\LocalService\Application Data\McAfee
2013-01-23 14:32 . 2013-01-23 14:32 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2013-01-23 04:33 . 2013-01-23 04:33 -------- d-sh--w- c:\documents and settings\Owner\PrivacIE
2013-01-23 04:25 . 2013-01-23 04:30 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Google
2013-01-22 13:12 . 2013-01-22 13:12 -------- d-----w- c:\windows\ShellNew
2013-01-22 13:00 . 2013-01-22 13:01 -------- dc-h--w- c:\windows\ie8
2013-01-22 12:07 . 2013-01-22 12:07 -------- d-sh--w- c:\documents and settings\Owner\IETldCache
2013-01-22 07:14 . 2013-01-22 07:14 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Avg2013
2013-01-22 06:38 . 2012-12-14 21:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-01-22 06:32 . 2012-01-11 19:06 3072 ------w- c:\windows\system32\iacenc.dll
2013-01-22 06:27 . 2011-02-17 12:32 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2013-01-22 06:25 . 2013-01-23 04:18 -------- d--h--w- c:\windows\$hf_mig$
2013-01-22 06:19 . 2008-04-14 10:41 21504 ----a-w- c:\windows\system32\hidserv.dll
2013-01-22 06:19 . 2008-04-14 05:09 14592 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2013-01-22 06:12 . 2013-01-22 06:17 -------- d-----w- C:\I386
2013-01-22 06:10 . 2013-01-22 06:10 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Mozilla
2013-01-22 06:01 . 2013-01-22 06:01 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Avg2013
2013-01-22 06:01 . 2013-01-25 01:18 -------- dcsh--r- c:\windows\system32\dllcache
2013-01-22 06:00 . 2013-01-22 06:00 -------- d-----w- C:\$AVG
2013-01-22 05:57 . 2013-01-22 16:12 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Avg2013
2013-01-22 05:57 . 2013-01-22 05:57 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\MFAData
2013-01-22 05:39 . 2008-04-14 10:42 221184 ----a-w- c:\windows\system32\wmpns.dll
2013-01-22 05:39 . 2013-01-22 05:39 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2013-01-22 05:31 . 2013-01-22 05:31 -------- d-----w- c:\windows\ServicePackFiles
2013-01-22 05:28 . 2008-04-14 10:42 15872 ----a-w- c:\windows\system32\perfmon.exe
2013-01-22 05:27 . 2002-08-29 09:00 9728 ----a-w- c:\windows\system32\label.exe
2013-01-22 05:25 . 2008-04-14 10:42 549888 ----a-w- c:\windows\system32\appwiz.cpl
2013-01-22 05:08 . 2013-01-23 13:51 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-01-22 05:08 . 2013-01-23 13:51 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-01-22 04:41 . 2013-01-22 04:41 -------- d-s---w- c:\documents and settings\Owner\UserData
2013-01-22 04:32 . 2013-01-22 04:32 -------- d-----w- c:\windows\system32\config\systemprofile\.javaws
2013-01-22 04:30 . 1995-07-31 18:44 212480 ----a-w- c:\windows\PCDLIB32.DLL
2013-01-22 04:29 . 2008-04-14 05:49 146048 ----a-w- c:\windows\system32\drivers\portcls.sys
2013-01-22 04:29 . 2008-04-14 05:15 60160 ----a-w- c:\windows\system32\drivers\drmk.sys
2013-01-22 04:29 . 2013-01-22 04:29 -------- d-----w- c:\windows\Downloaded Installations
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-24 05:39 . 2013-01-24 05:39 14635 ----a-w- C:\TDSSKiller.2.8.15.0_23.01.2013_16.13.37_log.txt.zip
2013-01-22 05:34 . 2013-01-22 05:34 126976 ----a-w- c:\windows\pchealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABS3EN\plugin\bin\ContentUpdater.exe
2013-01-22 05:34 . 2013-01-22 05:34 106496 ----a-w- c:\windows\pchealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABS3EN\plugin\bin\PluginCtrl.dll
2013-01-22 05:34 . 2013-01-22 05:34 77824 ----a-w- c:\windows\pchealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABS3EN\plugin\bin\WinVerifyTrust.dll
2013-01-22 05:34 . 2013-01-22 05:34 49152 ----a-w- c:\windows\pchealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABS3EN\plugin\bin\PCHI18N.dll
2013-01-22 05:34 . 2013-01-22 05:34 122880 ----a-w- c:\windows\pchealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABS3EN\plugin\bin\SearchCtrl.dll
2013-01-22 05:34 . 2013-01-22 05:34 159744 ----a-w- c:\windows\pchealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABS3EN\plugin\bin\PCHButton.exe
2012-11-16 04:33 . 2012-11-16 04:33 94048 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2012-11-02 02:02 . 2002-12-12 14:14 375296 ----a-w- c:\windows\system32\dpnet.dll
2013-01-16 20:11 . 2013-01-22 06:09 262552 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BackupNotify"="c:\program files\Hewlett-Packard\Digital Imaging\bin\backupnotify.exe" [2003-06-23 24576]
"NVIEW"="nview.dll" [2003-05-03 835654]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-11-01 4763008]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2003-04-07 114688]
"CamMonitor"="c:\program files\Hewlett-Packard\Digital Imaging\\Unload\hpqcmon.exe" [2002-10-07 90112]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd.exe" [2003-06-14 49152]
"HPHUPD05"="c:\program files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe" [2003-05-23 49152]
"HPHmon05"="c:\windows\System32\hphmon05.exe" [2003-05-23 483328]
"KBD"="c:\hp\KBD\KBD.EXE" [2003-02-12 61440]
"StorageGuard"="c:\program files\Common Files\Sonic\Update Manager\sgtray.exe" [2003-02-13 155648]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2003-08-23 151597]
"AutoTKit"="c:\hp\bin\AUTOTKIT.EXE" [2003-06-19 53248]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2002-09-14 212992]
"NvCplDaemon"="c:\windows\System32\NvCpl.dll" [2003-05-03 4640768]
"nwiz"="nwiz.exe" [2003-05-03 323584]
"Sunkist2k"="c:\program files\Multimedia Card Reader\shwicon2k.exe" [2003-08-09 139264]
"AVG_UI"="c:\program files\AVG\AVG2013\avgui.exe" [2012-12-11 3147384]
"AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 57344]
"QuickFinder Scheduler"="c:\program files\WordPerfect Office 11\Programs\QFSCHD110.EXE" [2003-03-07 77887]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-18 946352]
.
c:\documents and settings\Owner\Start Menu\Programs\Startup\
spamsubtract.lnk - c:\program files\interMute\SpamSubtract\SpamSubtract.exe [2003-8-28 552960]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe [2003-6-13 233472]
Quicken Scheduled Updates.lnk - c:\program files\Quicken\bagent.exe [2002-9-20 53248]
Updates from HP.lnk - c:\program files\Updates from HP\137903\Program\BackWeb-137903.exe [2003-8-23 16384]
.
c:\documents and settings\Default User\Start Menu\Programs\Startup\
AutoTBar.exe [2003-6-18 53248]
mod_sm.lnk - c:\hp\bin\cloaker.exe [1999-11-7 27136]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\OPXPGina]
2003-02-21 10:50 40960 ----a-w- c:\program files\Softex\OmniPass\OPXPGina.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2013\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgmfapx.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgemcx.exe"=
"c:\\Program Files\\Updates from HP\\137903\\Program\\BackWeb-137903.exe"=
.
R?2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2013\avgidsagent.exe [11/15/2012 11:34 PM 5814904]
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [10/15/2012 3:48 AM 55776]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [9/21/2012 3:46 AM 177376]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [9/14/2012 3:05 AM 35552]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [10/22/2012 1:02 PM 179936]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [9/21/2012 3:45 AM 19936]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [10/2/2012 3:30 AM 159712]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [9/21/2012 3:46 AM 164832]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [7/22/2011 11:27 AM 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [7/12/2011 4:55 PM 67664]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [7/11/2012 1:54 PM 116608]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2013\avgwdsvc.exe [10/22/2012 1:05 PM 196664]
R2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [1/22/2013 1:38 AM 398184]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [1/22/2013 1:38 AM 682344]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [1/22/2013 1:38 AM 21104]
S2 mrtRate;mrtRate; [x]
.
Contents of the 'Scheduled Tasks' folder
.
2013-01-24 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 0e3eb492-cbf8-45c6-b942-0acf4ac16323.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
2013-01-23 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task d5461f6d-cebd-4812-b517-c079b1b30ec8.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://finance.yahoo.com/
uDefault_Search_URL = hxxp://srch-us9.hpwis.com/
mSearch Bar = hxxp://srch-us9.hpwis.com/
uInternet Settings,ProxyOverride = localhost
LSP: SpSubLSP.dll
TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
FF - ProfilePath - c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\nnyvx7il.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://finance.yahoo.com/|about:home
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?ei=UTF-8&fr=w3i&type=W3i_DS,157,0_0,Search,20130104,6902,0,64,0&p=
FF - ExtSQL: 2013-01-23 12:13; [email protected]; c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\nnyvx7il.default\extensions\[email protected]
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-Itibiti.exe - c:\program files\Itibiti Soft Phone\Itibiti.exe
HKLM-Run-PS2 - c:\windows\system32\ps2.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-01-24 20:19
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\System32\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\System32\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(980)
c:\program files\Softex\OmniPass\opxpgina.dll
.
- - - - - - - > 'lsass.exe'(1036)
c:\windows\system32\SpSubLSP.dll
.
Completion time: 2013-01-24 20:24:08
ComboFix-quarantined-files.txt 2013-01-25 01:24
.
Pre-Run: 97,788,686,336 bytes free
Post-Run: 99,170,217,984 bytes free
.
- - End Of File - - 5E52485F841AA08D2EF9B3C46C8C11DC

[RKinner]

It's good combofix can run now. I think ti was a bad spot on the disk which the disk check fixed. It didn't find anything tho it does say that the delete of the mrtRate driver didn't work so I expect we will see it in the vew log.

Please clear the logs, reboot and run vew as before. (Running Combofix will introduce a lot of errors as it stops a lot of services when it runs)

Let's see if that fixed it.

Start, Run, eventvwr.msc, OK to bring up the Event Viewer. Right click on System and Clear All Events, No (we don't want to save the old log), OK. Repeat for Application.

Reboot.

1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Double-click VEW.exe
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.
Please post the Output log in your next reply.

[wharriss]

Good morning Ron

I did the start,run,eventvwr.msc, cleared in system and applications, rebooted and here is the VEW file from Vino/VEW

Vino's Event Viewer v01c run on Windows XP in English
Report run at 25/01/2013 8:15:22 AM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 25/01/2013 8:08:58 AM
Type: error Category: 0
Event: 7000 Source: Service Control Manager
The mrtRate service failed to start due to the following error: The system cannot find the file specified.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[wharriss]

Yesterday evening, after not using the computer for a while, but with browser open to this page we are now on, the computer would shut itself down and reboot itself. What could that be? I wasn't watching it when it did this, just noticed it as it was doing the shutdown and reboot.

[wharriss]

Ron

I have been watching this computer for the last hour. Not using the computer. The screen saver (windows) comes on and after about 20 minutes, the computer shuts itself down and reboots. It has done that 3 times in the last hour.

[RKinner]

Download BlueScreenView
http://www.nirsoft.n...creen_view.html

Double click on BlueScreenView.exe file to run the program.
When scanning is done, go Edit, Select All.

Go File, Save Selected Items, and save the report as BSOD.txt.
Open BSOD.txt in Notepad, copy all content, and paste it into your next reply.

[wharriss]

Here is BSOD.txt file

==================================================
Dump File : Mini012313-01.dmp
Crash Time : 1/23/2013 10:54:11 PM
Bug Check String : PNP_DETECTED_FATAL_ERROR
Bug Check Code : 0x000000ca
Parameter 1 : 0x00000004
Parameter 2 : 0x89035030
Parameter 3 : 0x00000000
Parameter 4 : 0x00000000
Caused By Driver : ntoskrnl.exe
Caused By Address : ntoskrnl.exe+5c8be
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 5.1.2600.6284 (xpsp_sp3_gdr.120821-1629)
Processor : 32-bit
Crash Address : ntoskrnl.exe+5c8be
Stack Address 1 : ntoskrnl.exe+459df
Stack Address 2 : ntoskrnl.exe+d1592
Stack Address 3 : ntoskrnl.exe+d16ed
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini012313-01.dmp
Processors Count : 1
Major Version : 15
Minor Version : 2600
Dump File Size : 90,112
==================================================

[RKinner]

It looks like a bad driver. What make and model PC is this?

Can you zip up the file: C:\WINDOWS\Minidump\Mini012313-01.dmp

and attach it? If you don't know how you can probably just rename it from .dmp to .jpg and then attach it.


Get the free version of Speccy:

http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button) Download, Save and Install it. Run Speccy. When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives. OK. Open the file in notepad and delete the line that gives the serial number of your Operating System. (It will be near the top about 10 lines down.) Attach the file to your next post.

[wharriss]

This is about a 2003 HP Pavilion a320n with AMD Athlon XP 2800+ 2.08 Ghz 1.43GB RAM

I navigated to the dump file using windows explorer. I double clicked and of course windows couldn't open it, so I renamed it to Minidump.txt at the file tree location, opened it from there and got a bunch of symbols, etc, no readable txt. I sent the file to my documents, renamed it .jpg and tried to open it from there, but got the same garbage. It is a 88 KB file.
I renamed it .jpg in my documents and tried to attach it to this post but got the "upload failed error" on two attempts to attach.

I do have 7zip and when I right click on the .dmp file in the directory 7zip offers several options. I did one zip option and it is attached. If this does not work I would need some guidance on how to get this file to you.
Thanks

Attached Files

•  Minidump.zip   26.28KB   82 downloads

[wharriss]

Speccy log

Summary
Operating System
Microsoft Windows XP Home Edition 32-bit SP3
CPU
AMD Athlon XP
Barton 0.13um Technology
RAM
2.00 GB Dual-Channel DDR @ 166MHz (2.5-3-3-7)
Motherboard
ASUSTeK Computer INC. A7N8X-LA (Socket A) 50 °C
Graphics
SDM-HS93 (1024x768@60Hz)
64MB NVIDIA GeForce4 MX Integrated GPU (ASUStek Computer Inc)
Hard Drives
112GB SAMSUNG SV1203N (PATA) 37 °C
Optical Drives
LITE-ON DVDRW SHW-1635S
LITE-ON LTR-48247S
Audio
Realtek AC'97 Audio
Operating System
Microsoft Windows XP Home Edition 32-bit SP3
Computer type: Desktop
Installation Date : 1/21/2013 11:32:38 PM
Serial Number:
Windows Security Center
Firewall Enabled
Windows Update
AutoUpdate Not configured
Antivirus
Antivirus Enabled
Company Name AVG Technologies
Display Name AVG Anti-Virus 2013
Product Version 2013.0
Virus Signature Database Up to date
.NET Frameworks installed
v1.1 SP1
Internet Explorer
Version 8.0.6001.18702
Environment Variables
USERPROFILE C:\Documents and Settings\Owner
SystemRoot C:\WINDOWS
User Variables
TEMP C:\Documents and Settings\Owner\Local Settings\Temp
TMP C:\Documents and Settings\Owner\Local Settings\Temp
Machine Variables
ComSpec C:\WINDOWS\system32\cmd.exe
Path C:\WINDOWS\system32
C:\WINDOWS
C:\WINDOWS\system32\wbem
c:\Python22
C:\Program Files\PC-Doctor for Windows\services
windir C:\WINDOWS
OS Windows_NT
PROCESSOR_ARCHITECTURE x86
PROCESSOR_LEVEL 6
PROCESSOR_IDENTIFIER x86 Family 6 Model 10 Stepping 0, AuthenticAMD
PROCESSOR_REVISION 0a00
NUMBER_OF_PROCESSORS 1
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
TEMP C:\WINDOWS\TEMP
TMP C:\WINDOWS\TEMP
FP_NO_HOST_CHECK NO
Power Profile
Active power scheme Energy Star
Hibernation Enabled
Turn Off Monitor after: (On AC Power) Never
Turn Off Hard Disk after: (On AC Power) Never
Suspend after: (On AC Power) 15 min
Screen saver Enabled
Uptime
Current Session
Current Time 1/25/2013 3:19:43 PM
Current Uptime 3,408 sec (0 d, 00 h, 56 m, 48 s)
Last Boot Time 1/25/2013 2:22:55 PM
TimeZone
TimeZone GMT -5:00 Hours
Language English (United States)
Location United States
Format English (United States)
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Process List
alcxmntr.exe
Process ID 2100
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\WINDOWS\ALCXMNTR.EXE
Memory Usage 3.79 MB
Peak Memory Usage 3.79 MB
alg.exe
Process ID 2976
Path C:\WINDOWS\System32\alg.exe
Memory Usage 3.15 MB
Peak Memory Usage 3.16 MB
avgcsrvx.exe
Process ID 752
User SYSTEM
Domain NT AUTHORITY
Path \??\C:\Program Files\AVG\AVG2013\avgcsrvx.exe
Memory Usage 25 MB
Peak Memory Usage 28 MB
avgcsrvx.exe
Process ID 2324
User SYSTEM
Domain NT AUTHORITY
Path \??\C:\Program Files\AVG\AVG2013\avgcsrvx.exe
Memory Usage 2.54 MB
Peak Memory Usage 20 MB
avgemcx.exe
Process ID 1800
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2013\avgemcx.exe
Memory Usage 6.86 MB
Peak Memory Usage 7.19 MB
avgidsagent.exe
Process ID 1876
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2013\avgidsagent.exe
Memory Usage 34 MB
Peak Memory Usage 52 MB
avgnsx.exe
Process ID 1776
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2013\avgnsx.exe
Memory Usage 2.58 MB
Peak Memory Usage 6.61 MB
avgrsx.exe
Process ID 708
User SYSTEM
Domain NT AUTHORITY
Path \??\C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
Memory Usage 2.70 MB
Peak Memory Usage 13 MB
avgui.exe
Process ID 2108
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\AVG\AVG2013\avgui.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
avgwdsvc.exe
Process ID 1908
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2013\avgwdsvc.exe
Memory Usage 16 MB
Peak Memory Usage 17 MB
backweb-137903.exe
Process ID 3152
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exe
Memory Usage 1.89 MB
Peak Memory Usage 9.30 MB
csrss.exe
Process ID 956
User SYSTEM
Domain NT AUTHORITY
Path \??\C:\WINDOWS\system32\csrss.exe
Memory Usage 4.07 MB
Peak Memory Usage 4.51 MB
explorer.exe
Process ID 1788
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\WINDOWS\Explorer.EXE
Memory Usage 27 MB
Peak Memory Usage 31 MB
firefox.exe
Process ID 1580
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Mozilla Firefox\firefox.exe
Memory Usage 222MB
Peak Memory Usage 255MB
hphmon05.exe
Process ID 2988
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\WINDOWS\System32\hphmon05.exe
Memory Usage 3.86 MB
Peak Memory Usage 3.90 MB
hpqcmon.exe
Process ID 3464
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
Memory Usage 4.49 MB
Peak Memory Usage 4.49 MB
hpqtra08.exe
Process ID 1536
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
Memory Usage 4.66 MB
Peak Memory Usage 4.67 MB
hpsysdrv.exe
Process ID 3092
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\windows\system\hpsysdrv.exe
Memory Usage 2.80 MB
Peak Memory Usage 2.80 MB
hpwuschd.exe
Process ID 3580
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\HP\HP Software Update\HPWuSchd.exe
Memory Usage 2.68 MB
Peak Memory Usage 2.68 MB
kbd.exe
Process ID 1508
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\HP\KBD\KBD.EXE
Memory Usage 6.07 MB
Peak Memory Usage 6.07 MB
lsass.exe
Process ID 1040
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\lsass.exe
Memory Usage 1.73 MB
Peak Memory Usage 6.40 MB
mbamgui.exe
Process ID 1760
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
Memory Usage 7.14 MB
Peak Memory Usage 7.14 MB
mbamscheduler.exe
Process ID 1968
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
Memory Usage 5.70 MB
Peak Memory Usage 5.70 MB
mbamservice.exe
Process ID 2020
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
Memory Usage 100 MB
Peak Memory Usage 174MB
nvsvc32.exe
Process ID 316
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\System32\nvsvc32.exe
Memory Usage 2.29 MB
Peak Memory Usage 3.32 MB
omniserv.exe
Process ID 388
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Softex\OmniPass\Omniserv.exe
Memory Usage 1.58 MB
Peak Memory Usage 1.58 MB
opxpapp.exe
Process ID 940
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Softex\OmniPass\OPXPApp.exe
Memory Usage 2.53 MB
Peak Memory Usage 4.27 MB
rundll32.exe
Process ID 3020
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\WINDOWS\system32\rundll32.exe
Memory Usage 4.72 MB
Peak Memory Usage 7.21 MB
sascore.exe
Process ID 1864
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
Memory Usage 2.11 MB
Peak Memory Usage 2.11 MB
services.exe
Process ID 1028
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\services.exe
Memory Usage 3.93 MB
Peak Memory Usage 4.02 MB
shwicon2k.exe
Process ID 3320
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Multimedia Card Reader\shwicon2k.exe
Memory Usage 3.13 MB
Peak Memory Usage 3.13 MB
smss.exe
Process ID 648
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 424KB
Peak Memory Usage 508KB
spamsubtract.exe
Process ID 3312
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\interMute\SpamSubtract\SpamSubtract.exe
Memory Usage 3.62 MB
Peak Memory Usage 3.63 MB
speccy.exe
Process ID 2704
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Speccy\Speccy.exe
Memory Usage 28 MB
Peak Memory Usage 32 MB
spoolsv.exe
Process ID 1712
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\spoolsv.exe
Memory Usage 4.64 MB
Peak Memory Usage 4.67 MB
superantispyware.exe
Process ID 3488
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Memory Usage 1.46 MB
Peak Memory Usage 84 MB
svchost.exe
Process ID 1192
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 4.72 MB
Peak Memory Usage 4.77 MB
svchost.exe
Process ID 1828
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 3.80 MB
Peak Memory Usage 3.81 MB
svchost.exe
Process ID 1568
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 4.08 MB
Peak Memory Usage 4.23 MB
svchost.exe
Process ID 1452
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 3.88 MB
Peak Memory Usage 4.10 MB
svchost.exe
Process ID 1260
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 4.64 MB
Peak Memory Usage 4.64 MB
svchost.exe
Process ID 1360
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 24 MB
Peak Memory Usage 24 MB
system
Process ID 4
Memory Usage 352KB
Peak Memory Usage 132MB
system idle process
Process ID 0
winlogon.exe
Process ID 984
User SYSTEM
Domain NT AUTHORITY
Path \??\C:\WINDOWS\system32\winlogon.exe
Memory Usage 4.34 MB
Peak Memory Usage 12 MB
wmiprvse.exe
Process ID 3316
Path C:\WINDOWS\system32\wbem\wmiprvse.exe
Memory Usage 7.89 MB
Peak Memory Usage 8.10 MB
wmiprvse.exe
Process ID 2688
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\wbem\wmiprvse.exe
Memory Usage 4.92 MB
Peak Memory Usage 4.92 MB
Scheduler
1/25/2013 3:25 PM;Every 8 hour(s) from 11:25 PM for 1439 minutes every day, starting 1/22/2013 SUPERAntiSpyware Scheduled Task 0e3eb492-cbf8-45c6-b942-0acf4ac16323
1/26/2013 2:00 AM;At 2:00 AM every Mon, Tue, Wed, Thu, Fri, Sat, Sun of every week, starting 1/22/2013 SUPERAntiSpyware Scheduled Task d5461f6d-cebd-4812-b517-c079b1b30ec8
Hotfixes
1/23/2013 Update for Windows XP (KB2345886)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
1/23/2013 Update for Windows XP (KB970430)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
1/23/2013 Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2742597)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/23/2013 Security Update for Windows XP (KB2510531)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/23/2013 Update for Microsoft XML Core Services 4.0 Service Pack 2 (KB973688)
Install this update to prevent applications from sending too
many HTTP requests while a well-known Document Type Definition
(DTD) is included. After you install this item, you may have
to restart your computer. Once you have installed this item,
it cannot be removed.
1/23/2013 Security Update for Internet Explorer 8 for Windows XP (KB2544521)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB2799329)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Cumulative Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB2761465)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Cumulative Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB2744842)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Cumulative Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB2618444)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Update for Internet Explorer 8 Dynamic Installer Compatibility View List for Windows XP (KB2598845)
This Compatibility View List update helps make Web sites that
are designed for older browsers look better in Internet Explorer
8. When users install Internet Explorer 8, they will be given
a choice about opting-in to a list of sites that should be displayed
in Compatibility View. After you install this item, you may have
to restart Internet Explorer.
1/22/2013 Cumulative Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB982381)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB951376)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB952954)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB959426)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Internet Explorer 8 for Windows XP
Internet Explorer 8 is the latest version of the familiar Web
browser that you are most comfortable using. Internet Explorer
8 helps you get everything that you want from the Web faster,
easier, and more privately and securely than ever. After you
install this item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB946648)
A security issue has been identified that could allow an unauthenticated,
remote attacker to compromise a system that is running Windows
Messenger and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2387149)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2712808)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB960859)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2479943)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2659262)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2564958)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2478971)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2758857)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2544893)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/22/2013 Security Update for Windows XP (KB2491683)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2536276)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2646524)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2779030)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2585542)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/22/2013 Security Update for Windows (KB923723)
A security issue has been identified in the Step-by-Step Interactive
Training application that could allow an attacker to compromise
your Windows-based system and gain control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2631813)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2296011)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2691442)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2115168)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB975558)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB955759)
An issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB2779562)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2012. After you install this item, you
may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2378111)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB974318)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB951978)
Install this update to resolve an issue in VBScript/JScript scripts
from CScript\WScript hosts, certain built-ins may not function
correctly when Standards and Formats in Regional Settings is
changed. After you install this item, you may have to restart
your computer.
1/22/2013 Security Update for Windows XP (KB969059)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2443105)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2655992)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/22/2013 Security Update for Windows XP (KB2724197)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain access to information.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
1/22/2013 Security Update for Windows XP (KB2229593)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB950974)
A security issue has been identified in Event System on Microsoft
Windows based systems that could allow an attacker to compromise
your Microsoft Windows-based system and gain control over it.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
1/22/2013 Security Update for Windows XP (KB2481109)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB975713)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2485663)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2598479)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2440591)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 HP Memories Disc Creator - Software Update
HP Memories Disc Creator - Software Update
1/22/2013 Update Rollup for ActiveX Killbits for Windows XP (KB2736233)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
1/22/2013 Security Update for Internet Explorer 6 for Windows XP (KB2799329)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2686509)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB982132)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB971657)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP and Windows Server 2003 (KB2798897)
Install this update to resolve an issue which requires an update
to the untrusted certificate store on Windows systems and to
keep your systems up to date. After you install this update,
you may have to restart your system.
1/22/2013 Security Update for Windows XP (KB978338)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/22/2013 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP 3 (KB954155)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2507938)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB972270)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2510581)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB956744)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2476490)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB974112)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB956572)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2347290)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB956844)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2483185)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2624667)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB979687)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB973869)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB975025)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2719985)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB952004)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB974571)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/22/2013 Security Update for Windows XP (KB2592799)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB975560)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2753842)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB973507)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2770660)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Cumulative Security Update for Internet Explorer 6 for Windows XP (KB2761465)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2535512)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB977816)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB950762)
A security issue has been identified that could allow an unauthenticated,
remote attacker to cause the affected system to stop responding.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
1/22/2013 Security Update for Windows XP (KB2570947)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB981322)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB952287)
Install this update to resolve an issue in which a malfunction
or data loss occurs when using Microsoft Data Access Components
(MDAC) components on computers that are running Windows XP SP2
or XP SP3. After you install this item, you may have to restart
your computer.
1/22/2013 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP3 (KB978695)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2603381)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB973904)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2757638)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP Service Pack 3 (KB973540)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2419632)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2508429)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2653956)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB974392)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB2749655)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
1/22/2013 Update for Windows XP (KB971029)
Install this update to restrict AutoRun entries in the AutoPlay
dialog to only CD and DVD drives. After you install this item,
you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2506212)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP Service Pack 3 (KB952069)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB977914)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2698365)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Realtek AC'97 Audio
Update for Realtek AC'97 Audio
1/22/2013 Security Update for Windows XP (KB2619339)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2705219)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB978542)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB979309)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2727528)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB979482)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB978706)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB981997)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2723135)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB960803)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB973815)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Microsoft .NET Framework 1.1 Service Pack 1
Microsoft .NET Framework 1.1 Service Pack 1 resolves various
issues found after the initial release of .NET Framework 1.1.
These include both security- and non-security-related issues.
After you install this item, you may have to restart your computer.
Once you have installed this item, it cannot be removed.
1/22/2013 Cumulative Security Update for ActiveX Killbits for Windows XP (KB2618451)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
1/22/2013 Update for Windows XP (KB2661254)
Install this update to keep your system up to date by increasing
the minimum level of encryption on Windows systems. After you
install this item, you may have to restart your system.
1/22/2013 Security Update for Windows XP (KB956802)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2509553)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2676562)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Windows Malicious Software Removal Tool - January 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
1/22/2013 Security Update for Microsoft XML Core Services 4.0 Service Pack 2 (KB954430)
A security issue has been identified in Microsoft XML Core Services
(MSXML) that could allow an attacker to compromise your Windows-based
system and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. Once you have installed
this item, it cannot be removed.
1/22/2013 Security Update for Windows XP (KB982665)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Internet Explorer 6 for Windows XP (KB2544521)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2478960)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2393802)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB923561)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2620712)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2566454)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2661637)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2584146)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB968389)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
1/22/2013 Security Update for Windows XP (KB2423089)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2360937)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2719985)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP3 (KB978695)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB898461)
This update installs a permanent copy of Package Installer for
Windows to enable software updates to have a significantly smaller
download size. The Package Installer facilitates the install
of software updates for Microsoft Windows operating systems and
other Microsoft products. After you install this update, you
may have to restart your system.
System Folders
Path for burning CD C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\CD Burning
Application Data C:\Documents and Settings\All Users\Application Data
Public Desktop C:\Documents and Settings\All Users\Desktop
Documents C:\Documents and Settings\All Users\Documents
Global Favorites C:\Documents and Settings\All Users\Favorites
Music C:\Documents and Settings\All Users\Documents\My Music
Pictures C:\Documents and Settings\All Users\Documents\My Pictures
Start Menu Programs C:\Documents and Settings\All Users\Start Menu\Programs
Start Menu C:\Documents and Settings\All Users\Start Menu
Startup C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Templates C:\Documents and Settings\All Users\Templates
Videos C:\Documents and Settings\All Users\Documents\My Videos
Cookies C:\Documents and Settings\Owner\Cookies
Desktop C:\Documents and Settings\Owner\Desktop
Physical Desktop C:\Documents and Settings\Owner\Desktop
User Favorites C:\Documents and Settings\Owner\Favorites
Fonts C:\WINDOWS\Fonts
Internet History C:\Documents and Settings\Owner\Local Settings\History
Temporary Internet Files C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files
Local Application Data C:\Documents and Settings\Owner\Local Settings\Application Data
Windows Directory C:\WINDOWS
Windows/System C:\WINDOWS\system32
Program Files C:\Program Files
Services
Running Application Layer Gateway Service
Running Automatic Updates
Running AVG WatchDog
Running AVGIDSAgent
Running COM+ Event System
Running CryptSvc
Running DCOM Server Process Launcher
Running DHCP Client
Running Distributed Link Tracking Client
Running DNS Client
Running Error Reporting Service
Running Event Log
Running Fast User Switching Compatibility
Running Help and Support
Running HID Input Service
Running IPSEC Services
Running MBAMScheduler
Running MBAMService
Running Network Connections
Running Network Location Awareness (NLA)
Running NVIDIA Driver Helper Service
Running Plug and Play
Running Print Spooler
Running Protected Storage
Running Remote Access Connection Manager
Running Remote Procedure Call (RPC)
Running SAS Core Service
Running Secondary Logon
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running Softex OmniPass Service
Running SSDP Discovery Service
Running System Event Notification
Running System Restore Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Telephony
Running Terminal Services
Running Themes
Running WebClient
Running Windows Audio
Running Windows Firewall/Internet Connection Sharing (ICS)
Running Windows Management Instrumentation
Running Windows Time
Running Wireless Zero Configuration
Running Workstation
Stopped Alerter
Stopped Application Management
Stopped ASP.NET State Service
Stopped BITS
Stopped ClipBook
Stopped COM+ System Application
Stopped Computer Browser
Stopped Distributed Transaction Coordinator
Stopped Extensible Authentication Protocol Service
Stopped Fax
Stopped Health Key and Certificate Management Service
Stopped HTTP SSL
Stopped IMAPI CD-Burning COM Service
Stopped Indexing Service
Stopped Logical Disk Manager
Stopped Logical Disk Manager Administrative Service
Stopped Messenger
Stopped Mozilla Maintenance Service
Stopped MS Software Shadow Copy Provider
Stopped Net Logon
Stopped NetMeeting Remote Desktop Sharing
Stopped Network Access Protection Agent
Stopped Network DDE
Stopped Network DDE DSDM
Stopped Network Provisioning Service
Stopped NT LM Security Support Provider
Stopped Performance Logs and Alerts
Stopped Portable Media Serial Number Service
Stopped QoS RSVP
Stopped Remote Access Auto Connection Manager
Stopped Remote Desktop Help Session Manager
Stopped Remote Procedure Call (RPC) Locator
Stopped Removable Storage
Stopped Routing and Remote Access
Stopped Smart Card
Stopped Uninterruptible Power Supply
Stopped Universal Plug and Play Device Host
Stopped Volume Shadow Copy
Stopped Windows Image Acquisition (WIA)
Stopped Windows Installer
Stopped Wired AutoConfig
Stopped WMI Performance Adapter
Security Options
@wsecedit.dll,-432 Enabled
@wsecedit.dll,-433 Disabled
@wsecedit.dll,-63 Disabled
@wsecedit.dll,-65 Administrator
@wsecedit.dll,-67 Guest
Accounts: Limit local account use of blank passwords to console logon only Disabled
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Undefined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Undefined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Administrators
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Disabled
Devices: Restrict floppy access to locally logged-on user only Disabled
Devices: Unsigned driver installation behavior Warn but allow installation
Domain controller: Allow server operators to schedule tasks Undefined
Domain controller: LDAP server signing requirements Undefined
Domain controller: Refuse machine account password changes Undefined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Disabled
Interactive logon: Display user information when the session is locked Undefined
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Undefined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 14 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Undefined
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session 15 minutes
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of credentials or .NET Passports for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously COMNAP,COMNODE,SQL\QUERY,SPOOLSS,LLSRPC,browser
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Control\Server Applications,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration
Network access: Shares that can be accessed anonymously COMCFG,DFS$
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Do not store LAN Manager hash value on next password change Disabled
Network security: LAN Manager authentication level Send LM & NTLM responses
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients No minimum
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers No minimum
Recovery console: Allow automatic administrative logon Enabled
Recovery console: Allow floppy copy and access to all drives and all folders Enabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Default owner for objects created by members of the Administrators group Object creator
System objects: Require case insensitivity for non-Windows subsystems Enabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
Device Tree
ACPI Uniprocessor PC
Microsoft ACPI-Compliant System
AMD Athlon XP 2800+
System board
ACPI Power Button
ACPI Fixed Feature Button
PCI bus
PCI standard host CPU bridge
NVIDIA nForce2 Memory Controller
NVIDIA nForce2 Memory Controller
NVIDIA nForce2 Memory Controller
NVIDIA nForce2 Memory Controller
NVIDIA nForce2 Memory Controller
NVIDIA nForce PCI System Management
NVIDIA nForce MCP Networking Controller
Realtek AC'97 Audio
PCI standard ISA bridge
ISAPNP Read Data Port
Programmable interrupt controller
Direct memory access controller
System timer
System CMOS/real time clock
System speaker
Numeric data processor
Motherboard resources
Motherboard resources
Logitech PS/2 Port Mouse
Motherboard resources
Communications Port (COM1)
Standard floppy disk controller
Floppy disk drive
ECP Printer Port (LPT1)
Printer Port Logical Interface
Standard OpenHCD USB Host Controller
USB Root Hub
USB Mass Storage Device
Generic USB SD Reader USB Device
Generic volume
Generic USB CF Reader USB Device
Generic volume
Generic USB SM Reader USB Device
Generic volume
Generic USB MS Reader USB Device
Generic volume
Standard OpenHCD USB Host Controller
USB Root Hub
USB Composite Device
USB Human Interface Device
HID Keyboard Device
USB Human Interface Device
HID-compliant consumer control device
Standard Enhanced PCI to USB Host Controller
USB Root Hub
PCI standard PCI-to-PCI bridge
Lucent Win Modem
Standard Dual Channel PCI IDE Controller
Primary IDE Channel
SAMSUNG SV1203N
Secondary IDE Channel
LITE-ON DVDRW SHW-1635S
LITE-ON LTR-48247S
OHCI Compliant IEEE 1394 Host Controller
1394 Net Adapter
NVIDIA nForce2 AGP Host to PCI Bridge
NVIDIA GeForce4 MX Integrated GPU
Plug and Play Monitor
CPU
AMD Athlon XP
Cores 1
Threads 1
Name AMD Athlon XP
Code Name Barton
Package Socket A (462)
Technology 0.13um
Specification AMD Athlon XP 2800+
Family 6
Extended Family 7
Model A
Extended Model A
Stepping 0
Instructions MMX (+), 3DNow! (+), SSE
Virtualization Not supported
Hyperthreading Not supported
Fan Speed 2295 RPM
Bus Speed 166.4 MHz
Rated Bus Speed 332.8 MHz
Caches
L1 Data Cache Size 64 KBytes
L1 Instructions Cache Size 64 KBytes
L2 Unified Cache Size 512 KBytes
Core 0
Core Speed 2079.8 MHz
Multiplier x 12.5
Bus Speed 166.4 MHz
Rated Bus Speed 332.8 MHz
Thread 1
APIC ID 0
RAM
Memory slots
Total memory slots 2
Used memory slots 2
Free memory slots 0
Memory
Type DDR
Size 1536 MBytes
Channels # Dual
DRAM Frequency 166.4 MHz
CAS# Latency (CL) 2.5 clocks
RAS# to CAS# Delay (tRCD) 3 clocks
RAS# Precharge (tRP) 3 clocks
Cycle Time (tRAS) 7 clocks
Physical Memory
Memory Usage 56 %
Total Physical 1.44 GB
Available Physical 644MB
Total Virtual 3.29 GB
Available Virtual 2.40 GB
SPD
Number Of SPD Modules 2
Slot #1
Type DDR
Size 512 MBytes
Manufacturer SpecTek Incorporated
Max Bandwidth PC2700 (166 MHz)
Serial Number 1200DFD6
Week/year 34 / 03
SPD Ext. EPP
JEDEC #2
Frequency 166.7 MHz
CAS# Latency 2.5
RAS# To CAS# 4
RAS# Precharge 4
tRAS 8
Voltage 2.500 V
JEDEC #1
Frequency 100.0 MHz
CAS# Latency 2.0
RAS# To CAS# 2
RAS# Precharge 2
tRAS 5
Voltage 2.500 V
Slot #2
Type DDR
Size 1024 MBytes
Manufacturer Crucial Technology
Max Bandwidth PC2700 (166 MHz)
Part Number CT12864Z335.M16TFY
Week/year 37 / 09
SPD Ext. EPP
JEDEC #2
Frequency 166.7 MHz
CAS# Latency 2.5
RAS# To CAS# 4
RAS# Precharge 4
tRAS 8
Voltage 2.500 V
JEDEC #1
Frequency 133.3 MHz
CAS# Latency 2.0
RAS# To CAS# 3
RAS# Precharge 3
tRAS 6
Voltage 2.500 V
Motherboard
Manufacturer ASUSTeK Computer INC.
Model A7N8X-LA (Socket A)
Version 0n81211RE101EXPLO10
Chipset Vendor NVIDIA
Chipset Model nForce2 IGP
Chipset Revision A2
Southbridge Vendor NVIDIA
Southbridge Model nForce2 MCP
Southbridge Revision A4
System Temperature 50 °C
BIOS
Brand American Megatrends Inc.
Version 3.13
Date 8/13/2003
PCI Data
Slot UNKNOWN
Slot Type UNKNOWN
Slot Usage Available
Bus Width 32 bit
Slot Designation AGP
Slot Number 0
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation PCI1
Slot Number 1
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation PCI2
Slot Number 2
Slot PCI
Slot Type PCI
Slot Usage In Use
Bus Width 32 bit
Slot Designation PCI3
Slot Number 3
Graphics
Monitor
Name SDM-HS93 on NVIDIA GeForce4 MX Integrated GPU
Current Resolution 1024x768 pixels
Work Resolution 1024x734 pixels
State enabled, primary, output devices support
Monitor Width 1024
Monitor Height 768
Monitor BPP 32 bits per pixel
Monitor Frequency 60 Hz
Device \\.\DISPLAY1\Monitor0
NVIDIA GeForce4 MX Integrated GPU
GPU Crush17
Device ID 10DE-01F0
Revision A4
Subvendor ASUStek Computer Inc (1043)
Current Performance Level Level 1
Technology 151 nm
Transistors 29 M
DirectX Support 7.0
OpenGL Support 1.2
GPU Clock 199 MHz
Memory Clock 334 MHz
Driver version 4.4.0.3
BIOS Version 4.1F.00.07.10
ROPs 2
Shaders Vertex 0/Pixel 0
Memory Type System
Memory 64 MB
Pixel Fillrate 0.4 GPixels/s
Texture Fillrate 0.8 GTexels/s
Count of performance levels : 1
Level 1
OpenGL
Version 1.4.0
Vendor NVIDIA Corporation
Renderer GeForce4 MX Integrated GPU/AGP/SSE/3DNOW!
GLU Version 1.2.2.0 Microsoft Corporation
Values
GL_MAX_LIGHTS 8
GL_MAX_TEXTURE_SIZE 2048
GL_MAX_TEXTURE_STACK_DEPTH 10
GL Extensions
GL_ARB_imaging
GL_ARB_multitexture
GL_ARB_point_parameters
GL_ARB_texture_compression
GL_ARB_texture_cube_map
GL_ARB_texture_env_add
GL_ARB_texture_env_combine
GL_ARB_texture_env_dot3
GL_ARB_texture_mirrored_repeat
GL_ARB_transpose_matrix
GL_ARB_vertex_buffer_object
GL_ARB_vertex_program
GL_ARB_window_pos
GL_S3_s3tc
GL_EXT_abgr
GL_EXT_bgra
GL_EXT_blend_color
GL_EXT_blend_minmax
GL_EXT_blend_subtract
GL_EXT_clip_volume_hint
GL_EXT_compiled_vertex_array
GL_EXT_draw_range_elements
GL_EXT_fog_coord
GL_EXT_multi_draw_arrays
GL_EXT_packed_pixels
GL_EXT_paletted_texture
GL_EXT_point_parameters
GL_EXT_rescale_normal
GL_EXT_secondary_color
GL_EXT_separate_specular_color
GL_EXT_shared_texture_palette
GL_EXT_stencil_wrap
GL_EXT_texture_compression_s3tc
GL_EXT_texture_cube_map
GL_EXT_texture_edge_clamp
GL_EXT_texture_env_add
GL_EXT_texture_env_combine
GL_EXT_texture_env_dot3
GL_EXT_texture_filter_anisotropic
GL_EXT_texture_lod
GL_EXT_texture_lod_bias
GL_EXT_texture_object
GL_EXT_vertex_array
GL_IBM_texture_mirrored_repeat
GL_KTX_buffer_region
GL_NV_blend_square
GL_NV_fence
GL_NV_fog_distance
GL_NV_light_max_exponent
GL_NV_packed_depth_stencil
GL_NV_pixel_data_range
GL_NV_point_sprite
GL_NV_register_combiners
GL_NV_texgen_reflection
GL_NV_texture_env_combine4
GL_NV_texture_rectangle
GL_NV_vertex_array_range
GL_NV_vertex_array_range2
GL_NV_vertex_program
GL_NV_vertex_program1_1
GL_NVX_ycrcb
GL_SGIS_generate_mipmap
GL_SGIS_multitexture
GL_SGIS_texture_lod
GL_WIN_swap_hint
WGL_EXT_swap_control
GL_EXT_bgra
Hard Drives
SAMSUNG SV1203N
Manufacturer SAMSUNG
Heads 16
Cylinders 16,383
Device type Fixed
ATA Standard ATA/ATAPI-7
Serial Number S01CJ10W931960
LBA Size 48-bit LBA
Power On Count 12402 times
Power On Time 224787.9 days
Features S.M.A.R.T., AAM
Transfer Mode Ultra DMA/133
Interface PATA
Capacity 112GB
Real size 120,060,444,672 bytes
RAID Type None
S.M.A.R.T
01 Read Error Rate 100 (100 worst) Data 0000000000
03 Spin-Up Time 071 (059) Data 0000001440
04 Start/Stop Count 076 (076) Data 0000006060
05 Reallocated Sectors Count 099 (099) Data 0000000003
07 Seek Error Rate 253 (253) Data 0000000000
08 Seek Time Performance 253 (253) Data 0000000000
09 Power-On Hours (POH) 092 (092) Data 00005251DD
0A Spin Retry Count 253 (253) Data 0000000000
0C Device Power Cycle Count 088 (088) Data 0000003072
C2 Temperature 127 (082) Data 0000000025
C3 Hardware ECC Recovered 100 (100) Data 0012FF3BAB
C4 Reallocation Event Count 253 (253) Data 0000000000
C5 Current Pending Sector Count 253 (253) Data 0000000000
C6 Uncorrectable Sector Count 253 (253) Data 0000000000
C7 UltraDMA CRC Error Count 100 (100) Data 0000000000
C8 Write Error Rate / Multi-Zone Error Rate 100 (100) Data 0000000000
C9 Soft Read Error Rate 100 (100) Data 0000000000
Temperature 37 °C
Temperature Range ok (less than 50 °C)
Status Good
Partition 0
Partition ID Disk #0, Partition #0
Disk Letter D:
File System FAT32
Volume Serial Number 22D140E3
Size 5.29GB
Used Space 4.33GB (82%)
Free Space 982MB (18%)
Partition 1
Partition ID Disk #0, Partition #1
Disk Letter C:
File System NTFS
Volume Serial Number 84F45609
Size 107GB
Used Space 14.2GB (14%)
Free Space 92GB (86%)
Optical Drives
LITE-ON DVDRW SHW-1635S
Media Type CD-ROM
Name LITE-ON DVDRW SHW-1635S
Availability Running/Full Power
Capabilities Random Access, Supports Removable Media
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive E:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 1
SCSI Target Id 0
Status OK
LITE-ON LTR-48247S
Media Type CD-ROM
Name LITE-ON LTR-48247S
Availability Running/Full Power
Capabilities Random Access, Supports Removable Media
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive F:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 1
SCSI Target Id 1
Status OK
Audio
Sound Card
Realtek AC'97 Audio
Playback Device
Realtek AC97 Audio
Recording Device
Realtek AC97 Audio
Peripherals
HID Keyboard Device
Device Kind Keyboard
Device Name HID Keyboard Device
Vendor Microsoft
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2600.1106
File C:\WINDOWS\system32\DRIVERS\kbdhid.sys
File C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Logitech PS/2 Port Mouse
Device Kind Mouse
Device Name Logitech PS/2 Port Mouse
Vendor Logitech
Location plugged into PS/2 mouse port
Driver
Date 7-1-2001
Version 5.1.2600.0
File C:\WINDOWS\system32\DRIVERS\i8042prt.sys
File C:\WINDOWS\system32\DRIVERS\mouclass.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC
Comment Generic USB CF Reader USB Device
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2535.0
File C:\WINDOWS\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC
Comment Generic USB MS Reader USB Device
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2535.0
File C:\WINDOWS\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC
Comment Generic USB SD Reader USB Device
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2535.0
File C:\WINDOWS\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC
Comment Generic USB SM Reader USB Device
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2535.0
File C:\WINDOWS\system32\DRIVERS\disk.sys
Printers
Fax (Default Printer)
Printer Port SHRFAX:
Print Processor WinPrint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Monochrome
Status Unknown
Driver
Driver Name Microsoft Shared Fax Driver (v4.00)
Driver Path C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\FXSDRV.DLL
Network
You are connected to the internet
Connected through NVIDIA nForce MCP Networking Controller - Packet Scheduler Miniport
IP Address 192.168.1.101
Subnet mask 255.255.255.0
Gateway server 192.168.1.1
Preferred DNS server 209.18.47.61
Alternate DNS server 209.18.47.62
DHCP Enabled
DHCP server 192.168.1.1
External IP Address 174.109.154.225
Adapter Type Ethernet
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Hybrid node
Link Speed 0 Bps
Computer Name
NetBIOS Name YOUR-XHTR8HVC4P
DNS Name your-xhtr8hvc4p
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain YOUR-XHTR8HVC4P
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Wi-Fi not enabled
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
File and printer sharing service Enabled
Simple File Sharing Disabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
NVIDIA nForce MCP Networking Controller - Packet Scheduler Miniport
IP Address 192.168.1.101
Subnet mask 255.255.255.0
Gateway server 192.168.1.1
Network Shares
No network shares
Current TCP Connections
C:\Program Files\Mozilla Firefox\firefox.exe (1580)
Local 127.0.0.1:1041 ESTABLISHED Remote 127.0.0.1:1042 (Querying... )
Local 127.0.0.1:1042 ESTABLISHED Remote 127.0.0.1:1041 (Querying... )
Local 192.168.1.101:1096 ESTABLISHED Remote 74.125.137.113:80 (Querying... ) (HTTP)
Local 192.168.1.101:1113 ESTABLISHED Remote 54.240.160.154:80 (Querying... ) (HTTP)
Local 192.168.1.101:1118 ESTABLISHED Remote 54.240.160.154:80 (Querying... ) (HTTP)
Local 192.168.1.101:1119 ESTABLISHED Remote 54.240.160.154:80 (Querying... ) (HTTP)
Local 192.168.1.101:1120 ESTABLISHED Remote 74.125.137.139:443 (Querying... ) (HTTPS)
Local 192.168.1.101:1139 ESTABLISHED Remote 31.13.66.7:80 (Querying... ) (HTTP)
Local 192.168.1.101:1168 ESTABLISHED Remote 206.190.130.76:80 (Querying... ) (HTTP)
C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exe (3152)
Local 0.0.0.0:1037 LISTEN
System Process
Local 192.168.1.101:1092 TIME-WAIT Remote 74.125.137.95:80 (Querying... ) (HTTP)
Local 192.168.1.101:1093 TIME-WAIT Remote 74.125.140.95:80 (Querying... ) (HTTP)
Local 192.168.1.101:1097 TIME-WAIT Remote 107.14.46.26:80 (Querying... ) (HTTP)
Local 192.168.1.101:1108 TIME-WAIT Remote 23.37.15.144:80 (Querying... ) (HTTP)
Local 192.168.1.101:1134 TIME-WAIT Remote 23.37.15.144:80 (Querying... ) (HTTP)
Local 192.168.1.101:1149 TIME-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.101:1150 TIME-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.101:1151 TIME-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.101:1152 TIME-WAIT Remote 23.66.188.20:80 (Querying... ) (HTTP)
Local 192.168.1.101:1153 TIME-WAIT Remote 72.21.91.196:80 (Querying... ) (HTTP)
Local 192.168.1.101:1157 TIME-WAIT Remote 23.66.188.20:80 (Querying... ) (HTTP)
Local 192.168.1.101:1159 TIME-WAIT Remote 23.66.188.20:80 (Querying... ) (HTTP)
Local 192.168.1.101:1163 TIME-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.101:1164 TIME-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.101:1165 TIME-WAIT Remote 72.21.91.196:80 (Querying... ) (HTTP)
Local 192.168.1.101:1166 TIME-WAIT Remote 23.66.188.20:80 (Querying... ) (HTTP)
System Process
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 192.168.1.101:139 (NetBIOS session service) LISTEN
svchost.exe (1260)
Local 0.0.0.0:135 (DCE) LISTEN

[wharriss]

I wonder why speccy says the computer has 2 GB RAM but when I right click on My Computer- Properties it shows 1.43GB. I put some chips in years ago and don't remember what I added. The computer came with only 512MB

The computer does shut itself down every 20 minutes or so, if not in use.