Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Possible malware PUM.HIJACK.STARTMENU

Started by roacham , Aug 01 2013 10:27 AM

Please log in to reply

#1
roacham

Posted 01 August 2013 - 10:27 AM

Member

Member
245 posts

My computer started going really slow so I ran malwarebytes scan and it found PUM.HIJACK.STARTMENU. I was able to quarantine, but computer is still going very slow.
Here is my OTL log

OTL logfile created on: 8/1/2013 10:20:33 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Angie\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.48 Gb Total Physical Memory | 1.47 Gb Available Physical Memory | 42.20% Memory free
6.95 Gb Paging File | 4.44 Gb Available in Paging File | 63.84% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 447.66 Gb Total Space | 398.78 Gb Free Space | 89.08% Space Free | Partition Type: NTFS

Computer Name: ANGIE-PC | User Name: Angie | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/08/01 10:16:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Angie\Desktop\OTL.exe
PRC - [2013/05/11 05:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/05/09 03:58:30 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013/05/09 03:58:30 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/04/19 16:35:36 | 002,833,120 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenUpdate.exe
PRC - [2012/12/06 18:25:30 | 000,075,304 | ---- | M] (The Nielsen Company) -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
PRC - [2012/03/23 04:33:48 | 000,419,408 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32.exe
PRC - [2012/03/23 04:33:46 | 000,355,920 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe
PRC - [2012/03/23 04:33:46 | 000,343,632 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMworker.exe
PRC - [2012/03/23 04:33:44 | 001,105,488 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
PRC - [2012/02/29 08:49:06 | 000,028,264 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
PRC - [2012/02/06 19:54:04 | 000,255,376 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2012/01/05 16:22:10 | 000,256,536 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
PRC - [2012/01/05 16:21:44 | 000,296,984 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
PRC - [2011/05/20 11:44:32 | 000,986,208 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
PRC - [2008/11/09 15:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

========== Modules (No Company Name) ==========

MOD - [2013/06/26 08:28:09 | 000,197,032 | ---- | M] () -- C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll
MOD - [2013/06/26 08:28:09 | 000,016,808 | ---- | M] () -- C:\Program Files (x86)\Java\jre7\bin\jp2native.dll
MOD - [2013/04/19 16:33:50 | 000,502,784 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\nsmmc.dll
MOD - [2013/04/19 16:30:26 | 000,755,712 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\npfirefoxprocessor.dll
MOD - [2013/04/19 16:30:00 | 000,543,232 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\npchromeplugin.dll
MOD - [2013/04/19 16:29:36 | 000,224,768 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\npwmi.dll
MOD - [2013/04/19 16:29:10 | 000,150,528 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\npsp1.dll
MOD - [2013/04/19 16:29:04 | 000,228,864 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\npsurvey.dll
MOD - [2013/04/19 16:28:44 | 000,503,808 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\communication.dll
MOD - [2013/03/16 09:29:57 | 001,633,280 | ---- | M] () -- C:\Users\Angie\AppData\LocalLow\FCTB000100757\Toolbar\Toolbar.dll
MOD - [2013/03/16 09:29:57 | 001,633,280 | ---- | M] () -- C:\Program Files (x86)\MyPoints Toolbar\Toolbar.dll
MOD - [2013/03/16 09:29:57 | 000,361,472 | ---- | M] () -- C:\Users\Angie\AppData\LocalLow\FCTB000100757\Toolbar\Helper.dll
MOD - [2013/03/16 09:29:57 | 000,361,472 | ---- | M] () -- C:\Program Files (x86)\MyPoints Toolbar\Helper.dll
MOD - [2012/09/21 15:32:48 | 000,340,480 | ---- | M] () -- C:\Users\Angie\AppData\LocalLow\FCTB000100757\Toolbar\js_components_bin.dll
MOD - [2012/01/05 16:22:36 | 000,465,344 | ---- | M] () -- C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll

========== Services (SafeList) ==========

SRV:64bit: - [2013/05/27 00:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2013/05/23 15:12:02 | 000,143,120 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2013/05/09 03:58:30 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2012/02/29 01:41:26 | 000,235,520 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2012/02/07 20:53:48 | 000,871,296 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV:64bit: - [2012/02/06 19:54:04 | 000,255,376 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Live Updater Service)
SRV:64bit: - [2010/09/22 20:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV - [2013/07/13 07:20:02 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/05/11 05:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/04/19 16:35:36 | 002,833,120 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenUpdate.exe -- (NielsenUpdate)
SRV - [2012/12/09 17:53:47 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2012/07/13 14:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/03/23 04:33:46 | 000,355,920 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2012/02/29 08:49:06 | 000,028,264 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe -- (GREGService)
SRV - [2012/02/20 15:26:32 | 000,106,144 | ---- | M] (Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\AdminService.exe -- (AtherosSvc)
SRV - [2012/01/05 16:22:10 | 000,256,536 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc)
SRV - [2011/06/21 14:55:04 | 000,173,424 | ---- | M] (Egis Technology Inc. ) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service)
SRV - [2010/10/12 12:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/11/09 15:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/06/28 08:17:51 | 001,030,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2013/06/28 08:17:51 | 000,378,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2013/06/28 08:17:51 | 000,189,936 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2013/05/09 03:59:07 | 000,072,016 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013/05/09 03:59:07 | 000,065,336 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013/05/09 03:59:07 | 000,064,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2013/05/09 03:59:06 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013/05/09 03:59:06 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012/03/29 03:26:12 | 000,342,632 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsPStor.sys -- (RSPCIESTOR)
DRV:64bit: - [2012/03/19 12:01:21 | 000,062,776 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV:64bit: - [2012/03/19 12:01:21 | 000,022,648 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV:64bit: - [2012/03/19 12:01:21 | 000,020,520 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV:64bit: - [2012/03/19 06:29:16 | 000,244,560 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2012/03/01 01:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/02/29 02:01:58 | 010,819,584 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2012/02/29 00:41:08 | 000,328,192 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012/02/20 15:36:02 | 000,550,560 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:64bit: - [2012/02/20 15:35:14 | 000,280,992 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:64bit: - [2012/02/20 15:35:02 | 000,068,256 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:64bit: - [2012/02/20 15:34:32 | 000,167,584 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:64bit: - [2012/02/20 15:34:14 | 000,036,000 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:64bit: - [2012/02/20 15:33:56 | 000,030,368 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:64bit: - [2012/02/20 15:33:44 | 000,110,752 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_avdt.sys -- (btath_avdt)
DRV:64bit: - [2012/02/20 15:33:26 | 000,339,616 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:64bit: - [2012/02/07 07:01:00 | 003,538,432 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2012/02/07 01:03:06 | 000,018,432 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV:64bit: - [2012/02/07 01:03:06 | 000,017,408 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)
DRV:64bit: - [2012/01/31 23:54:56 | 000,031,872 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdkmpfd.sys -- (amdkmpfd)
DRV:64bit: - [2012/01/16 02:49:16 | 000,103,536 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2012/01/13 03:05:56 | 000,056,448 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2011/12/05 02:47:30 | 000,095,248 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2011/11/28 13:46:32 | 000,044,112 | ---- | M] (F5 Networks, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\covpnv64.sys -- (urvpndrv)
DRV:64bit: - [2011/11/28 13:46:14 | 000,018,512 | ---- | M] (F5 Networks) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urfltv64.sys -- (f5ipfw)
DRV:64bit: - [2011/10/25 10:16:46 | 000,219,776 | ---- | M] (Advanced Micro Devices, INC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdxhc.sys -- (amdxhc)
DRV:64bit: - [2011/10/25 10:16:46 | 000,102,528 | ---- | M] (Advanced Micro Devices, INC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdhub30.sys -- (amdhub30)
DRV:64bit: - [2011/07/22 11:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/14 00:35:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/07/14 00:35:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/07/12 16:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2010/11/20 22:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 22:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 22:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 19:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2013/04/19 16:30:52 | 000,026,848 | ---- | M] (The Nielsen Company) [Kernel | System | Running] -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\nnfwdk64.sys -- (nnfwdk)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files (x86)\Swag_Bucks\prxtbSwag.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://my.yahoo.com/
IE - HKCU\..\URLSearchHook: - No CLSID value found
IE - HKCU\..\URLSearchHook: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files (x86)\Swag_Bucks\prxtbSwag.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {f3954c17-b785-b6e4-e583-60efe47cb84a} - C:\Program Files (x86)\MyPoints Toolbar\Helper.dll ()
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{626FB4CB-E157-4DDE-BA96-491849E0ED67}: "URL" = http://search.condui...&ctid=CT2260173
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...1I7SAVJ_enUS514
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.my.yahoo.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\pdf.dll
CHR - plugin: NPWebroot (Enabled) = C:\Users\Angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfhiodnpcnnnpgbjbhfebjnbagmfhab\2.0.15_0\npwebroot.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - Extension: Google Drive = C:\Users\Angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: Swag Bucks = C:\Users\Angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apjkpjchfbckhjhokinlgdbmibpbbjak\10.16.70.501_0\
CHR - Extension: YouTube = C:\Users\Angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Nielsen = C:\Users\Angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgceplfonlgodadnpognljgdjlcnpjnh\1.7.8_0\
CHR - Extension: Gmail = C:\Users\Angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/03/14 20:11:15 | 000,000,822 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Swag Bucks Toolbar) - {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files (x86)\Swag_Bucks\prxtbSwag.dll (Conduit Ltd.)
O2 - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (MyPoints Toolbar BHO) - {948548C2-1801-7A14-F509-7FE523202B1D} - C:\Program Files (x86)\MyPoints Toolbar\Toolbar.dll ()
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - MRI_DISABLED - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (MyPoints Toolbar) - {5495B7A2-8F65-DEE4-A9FF-9BB6409140D4} - C:\Program Files (x86)\MyPoints Toolbar\Toolbar.dll ()
O3 - HKLM\..\Toolbar: (Swag Bucks Toolbar) - {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files (x86)\Swag_Bucks\prxtbSwag.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (MyPoints Toolbar) - {5495B7A2-8F65-DEE4-A9FF-9BB6409140D4} - C:\Program Files (x86)\MyPoints Toolbar\Toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Swag Bucks Toolbar) - {8BDEA9D6-6F62-45EB-8EE9-8A81AF0D2F94} - C:\Program Files (x86)\Swag_Bucks\prxtbSwag.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [AthBtTray] C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Atheros Commnucations)
O4:64bit: - HKLM..\Run: [AtherosBtStack] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations)
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
O4 - HKLM..\Run: [Dolby Home Theater v4] C:\Dolby PCEE4\pcee4.exe (Dolby Laboratories Inc.)
O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [NielsenOnline] C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe (The Nielsen Company)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SuiteTray] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O9 - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {2BCDB465-81F9-41CB-832C-8037A4064446} C:\Users\Angie\AppData\Local\Temp\f5tmp\urxvpn.cab (F5 Networks VPN Manager)
O16 - DPF: {41EF3CD2-D8CC-4438-84B1-280BB4E77C8E} C:\Users\Angie\AppData\Local\Temp\f5tmp\f5tunsrv.cab (F5 Networks Dynamic Application Tunnel Control)
O16 - DPF: {45B69029-F3AB-4204-92DE-D5140C3E8E74} https://a2fp3.alpine...llerControl.cab (F5 Networks Auto Update)
O16 - DPF: {CC85ACDF-B277-486F-8C70-2C9B2ED2A4E7} C:\Users\Angie\AppData\Local\Temp\f5tmp\urxshost.cab (F5 Networks SuperHost Class)
O16 - DPF: {E0FF21FA-B857-45C5-8621-F120A0C17FF2} C:\Users\Angie\AppData\Local\Temp\f5tmp\urxhost.cab (F5 Networks Host Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5E4C1FA9-8AC5-4D27-B294-2B27FB894C38}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EA32BDF9-DFA4-4EFC-B381-F4B880413CE8}: DhcpNameServer = 168.94.0.14 168.94.0.15
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18:64bit: - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18 - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18 - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/08/01 10:14:28 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Angie\Desktop\OTL.exe
[2013/07/20 09:49:09 | 000,000,000 | ---D | C] -- C:\Users\Angie\AppData\Roaming\SUPERAntiSpyware.com
[2013/07/20 09:49:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2013/07/20 09:49:00 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2013/07/20 09:49:00 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2013/07/20 07:41:26 | 000,000,000 | ---D | C] -- C:\Users\Angie\AppData\Roaming\Malwarebytes
[2013/07/20 07:41:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/07/20 07:41:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/07/20 07:41:14 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/07/20 07:41:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013/07/20 07:41:00 | 000,000,000 | ---D | C] -- C:\Users\Angie\AppData\Local\Programs
[2013/07/11 13:33:47 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/07/11 13:33:46 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/07/11 13:33:44 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/07/11 13:33:44 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/07/11 13:33:43 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/07/11 13:33:43 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/07/11 13:33:43 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/07/11 13:33:43 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/07/11 13:33:43 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/07/11 13:33:43 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/07/11 13:33:42 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/07/11 13:33:39 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/07/11 13:33:39 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/07/11 13:33:39 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/07/11 13:33:37 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/07/11 08:25:43 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2013/07/11 08:25:43 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2013/07/11 08:25:41 | 001,887,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2013/07/11 08:25:41 | 001,620,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2013/07/11 08:24:56 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2012/12/09 18:09:45 | 009,842,040 | ---- | C] (Webroot Software, Inc.) -- C:\Program Files (x86)\Common Files\wruninstall.exe

========== Files - Modified Within 30 Days ==========

[2013/08/01 10:16:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Angie\Desktop\OTL.exe
[2013/08/01 09:50:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/08/01 09:39:00 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/08/01 07:58:32 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/08/01 07:51:34 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/07/31 13:49:26 | 000,016,976 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/07/31 13:49:26 | 000,016,976 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/07/31 12:15:54 | 2800,771,072 | -HS- | M] () -- C:\hiberfil.sys
[2013/07/20 09:49:04 | 000,001,812 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2013/07/20 07:41:16 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/07/13 07:20:01 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/07/13 07:20:01 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/07/13 07:12:52 | 000,282,960 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/07/11 13:39:37 | 000,740,374 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/07/11 13:39:37 | 000,624,178 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/07/11 13:39:37 | 000,106,522 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat

========== Files Created - No Company Name ==========

[2013/07/20 09:49:04 | 000,001,812 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2013/07/20 07:41:16 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/12/28 10:35:06 | 000,000,398 | ---- | C] () -- C:\Windows\wininit.ini
[2012/12/09 17:48:39 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012/03/19 12:26:44 | 000,204,960 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012/03/19 12:26:44 | 000,157,152 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012/03/19 12:26:43 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2012/02/29 16:57:48 | 000,054,784 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
[2011/12/14 00:44:10 | 000,023,040 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll

========== ZeroAccess Check ==========

[2009/07/13 23:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 00:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/26 23:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 20:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 22:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 20:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >

#2
RKinner

Posted 01 August 2013 - 11:05 AM

Malware Expert

Expert
14,122 posts

I don't see any malware - just some adware

Download the adwCleaner

Run the Tool
Windows Vista and Windows 7 users:
Right click in the adwCleaner.exe and select the Delete option
When the scan completes, it will open a notepad windows.
Please, copy the content of this file in your next reply.

Get Process Explorer

http://live.sysinter...com/procexp.exe
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures

Click twice on the CPU column header to sort things by CPU usage with the big hitters at the top.

Wait a minute then:

File, Save As, Save. Open the file Procexp.txt on your desktop and copy and paste the text to a reply.

Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator. Then type (with an Enter after each line).

sfc  /scannow

(This will check your critical system files. Does this finish without complaint? IF it says it couldn't fix everything then:

Copy the next two lines:

findstr /c:"[SR]" \windows\logs\cbs\cbs.log > \windows\logs\cbs\junk.txt
notepad \windows\logs\cbs\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)

1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning

Then use the 'Number of events' as follows:

1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.

Please post the Output log in your next reply then repeat but select Application.

Go to http://www.speedtest.net/ and click on Begin Test

When the Test finishes click on Share This Result and then select Forum then Copy then move to a reply and Ctrl + v

Get the free version of Speccy:

http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button) Download, Save and Install it. Run Speccy. When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives. OK. Open the file in notepad and delete the line that gives the serial number of your Operating System. (It will be near the top about 10 lines down.) Attach the file to your next post.

If you have the latest version of Avast 8.0.1489 you should run a boot-time scan while you sleep. (I've seen it take 6 hours.)

First mute the speakers so it won't wake you up when Windows loads. Click on the Orange ball. Click on Security. Click on AntiVirus. Scroll down to the bottom and find Boot-time scan. Click on Settings. Where it says Heuristic Sensitivity click on the last rectangle so that all of them are orange and it says High. Then change When a threat is found ... to: Move to Chest. OK. Now click on Schedule Now. Close the Avast window and then reboot. The scan will start. It will tell you where it will save the report. Usually it's
C:\ProgramData\AVAST Software\Avast\report\aswBoot.txt but it might change so verify the location. When Windows loads Click on the Orange Ball then Maintenance then Scan Logs. Click on the Boot-time scan log and then View Results. IF it found anything then open the saved Report and copy and paste the text into a reply so I can see it.

#3
roacham

Posted 01 August 2013 - 12:23 PM

Member

Member
245 posts

Here is adwcleaner log

# AdwCleaner v2.306 - Logfile created 08/01/2013 at 12:45:21
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Angie - ANGIE-PC
# Boot Mode : Normal
# Running from : C:\Users\Angie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VYU2E1VN\adwcleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

Deleted on reboot : C:\Users\Angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apjkpjchfbckhjhokinlgdbmibpbbjak
File Deleted : C:\END
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Swag_Bucks
Folder Deleted : C:\Users\Angie\AppData\Local\Conduit
Folder Deleted : C:\Users\Angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apjkpjchfbckhjhokinlgdbmibpbbjak
Folder Deleted : C:\Users\Angie\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Angie\AppData\LocalLow\Swag_Bucks

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Swag_Bucks
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Google\Chrome\Extensions\apjkpjchfbckhjhokinlgdbmibpbbjak
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8BDEA9D6-6F62-45EB-8EE9-8A81AF0D2F94}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{85675E8E-5807-456E-8005-29ECDFB5AA98}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8BDEA9D6-6F62-45EB-8EE9-8A81AF0D2F94}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Swag_Bucks
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100757.FCTB000100757Pos
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100757.FCTB000100757Pos.1
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100757.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100757.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100757.JSOptionsImpl
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100757.JSOptionsImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\FreeCauseURLSearchHook.FCToolbarURLSearchHook
Key Deleted : HKLM\SOFTWARE\Classes\FreeCauseURLSearchHook.FCToolbarURLSearchHook.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2260173
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{85675E8E-5807-456E-8005-29ECDFB5AA98}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\Software\Swag_Bucks
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{85675E8E-5807-456E-8005-29ECDFB5AA98}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{8BDEA9D6-6F62-45EB-8EE9-8A81AF0D2F94}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\FCTB000100757
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\apjkpjchfbckhjhokinlgdbmibpbbjak
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5D92592D-69F0-4E86-9494-2BB660F53160}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C65DC2F9-DB7F-4A51-9C45-CD745E577B8F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8BDEA9D6-6F62-45EB-8EE9-8A81AF0D2F94}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Swag_Bucks Toolbar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{8BDEA9D6-6F62-45EB-8EE9-8A81AF0D2F94}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{8BDEA9D6-6F62-45EB-8EE9-8A81AF0D2F94}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{8BDEA9D6-6F62-45EB-8EE9-8A81AF0D2F94}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{8BDEA9D6-6F62-45EB-8EE9-8A81AF0D2F94}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16635

[OK] Registry is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Angie\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [5848 octets] - [01/08/2013 12:40:13]
AdwCleaner[S1].txt - [5714 octets] - [01/08/2013 12:45:21]

########## EOF - C:\AdwCleaner[S1].txt - [5774 octets] ##########

Here is other log:

Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
AdminService.exe 2,524 K 6,580 K 1788 AdminService Application Atheros Commnucations (The operation completed successfully) Atheros Commnucations
armsvc.exe 1,220 K 3,888 K 1768 Adobe Acrobat Update Service Adobe Systems Incorporated (Verified) Adobe Systems
AthBtTray.exe 6,644 K 16,484 K 2932 Bluetooth Tray Atheros Commnucations (The operation completed successfully) Atheros Commnucations
atieclxx.exe 2,692 K 6,660 K 1280 AMD External Events Client Module AMD (Verified) Microsoft Windows Hardware Compatibility Publisher
atiesrxx.exe 1,740 K 4,460 K 384 AMD External Events Service Module AMD (Verified) Microsoft Windows Hardware Compatibility Publisher
audiodg.exe 15,976 K 17,764 K 5676 Windows Audio Device Graph Isolation Microsoft Corporation (Verified) Microsoft Windows
BackupManagerTray.exe 3,764 K 12,768 K 3268 Acer Backup Manager NTI Corporation (Verified) NTI Corporation
BtvStack.exe 11,116 K 15,216 K 2896 Bluetooth Tray Atheros Commnucations (The operation completed successfully) Atheros Commnucations
conhost.exe 1,084 K 2,832 K 1396 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
DeviceDetector.exe 4,368 K 780 K 4788 MediaEspresso DeviceDetector CyberLink (The operation completed successfully) CyberLink
EgisUpdate.exe 5,572 K 916 K 2380 EgisUpdate Release Application Egis Technology Inc. (Verified) EGIS TECHNOLOGY INC.
ePowerSvc.exe 2,932 K 7,192 K 1872 ePowerSvc Acer Incorporated (Verified) Acer Incorporated
FlashUtil64_11_8_800_94_ActiveX.exe 5,856 K 12,784 K 5300 Adobe® Flash® Player Installer/Uninstaller 11.8 r800 Adobe Systems Incorporated (Verified) Adobe Systems Incorporated
GREGsvc.exe 1,016 K 3,356 K 1928 Global Registration Service Acer Incorporated (Verified) Acer Incorporated
hpwuschd2.exe 1,044 K 3,620 K 3596 hpwuSchd Application Hewlett-Packard (Verified) Hewlett-Packard Company
iexplore.exe 18,576 K 44,768 K 4740 Internet Explorer Microsoft Corporation (Verified) Microsoft Windows
jusched.exe 1,196 K 4,504 K 3952 Java™ Update Scheduler Oracle Corporation (Verified) Oracle America
LManager.exe 11,648 K 15,012 K 3300 Launch Manager Dritek System Inc. (Verified) Dritek System Inc.
LMutilps32.exe 2,024 K 6,248 K 1888 Launch Manager utility process Dritek System Inc. (Verified) Dritek System Inc.
LMworker.exe 5,596 K 4,868 K 3412 Launch Manager Worker Dritek System Inc. (Verified) Dritek System Inc.
lsass.exe 4,676 K 11,916 K 776 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows
lsm.exe 2,676 K 4,432 K 784 Local Session Manager Service Microsoft Corporation (Verified) Microsoft Windows
MMDx64Fx.exe 2,712 K 7,188 K 3376 MMDx64Fx Application Dritek System Inc. (Verified) Dritek System Inc.
NielsenOnline.exe 4,232 K 11,352 K 3916 NielsenOnline The Nielsen Company (Verified) The Nielsen Company
NielsenOnline64.exe 6,764 K 15,420 K 4128 NielsenOnline The Nielsen Company (Verified) The Nielsen Company
pcee4.exe 40,312 K 38,572 K 3284 Dolby Profile Selector Dolby Laboratories Inc. (Verified) Dolby Laboratories
PmmUpdate.exe 4,300 K 528 K 5328 PMM Update Application Egis Technology Inc. (Verified) EGIS TECHNOLOGY INC.
PresentationFontCache.exe 27,124 K 19,020 K 2712 PresentationFontCache.exe Microsoft Corporation (Verified) Microsoft Windows
procexp.exe 2,660 K 8,004 K 5700 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
RAVBg64.exe 13,468 K 10,452 K 2844 HD Audio Background Process Realtek Semiconductor (Verified) Microsoft Windows Hardware Compatibility Publisher
RAVCpl64.exe 14,248 K 11,900 K 2836 Realtek HD Audio Manager Realtek Semiconductor (Verified) Microsoft Windows Hardware Compatibility Publisher
smss.exe 540 K 1,184 K 364 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows
spoolsv.exe 8,484 K 14,752 K 1620 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 5,960 K 9,880 K 2200 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2,624 K 6,060 K 4080 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 41,944 K 15,324 K 4780 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 4,796 K 8,584 K 116 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 13,800 K 14,728 K 1648 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
taskeng.exe 4,524 K 10,080 K 4616 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
unsecapp.exe 3,024 K 7,740 K 3140 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation (Verified) Microsoft Windows
UpdaterService.exe 1,156 K 3,808 K 1988 Updater Service Acer Incorporated (Verified) Acer Incorporated
wininit.exe 1,700 K 4,648 K 696 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows
winlogon.exe 3,140 K 7,476 K 864 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
wlanext.exe 2,784 K 6,868 K 1388 Windows Wireless LAN 802.11 Extensibility Framework Microsoft Corporation (Verified) Microsoft Windows
WLIDSVCM.EXE 2,232 K 4,388 K 2340 Microsoft® Windows Live ID Service Monitor Microsoft Corp. (Verified) Microsoft Corporation
WmiPrvSE.exe 3,056 K 7,052 K 3316 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
YahooAUService.exe 3,244 K 8,052 K 2252 AutoUpater Service Module Yahoo! Inc. (Verified) Yahoo! Inc.
svchost.exe < 0.01 24,536 K 23,116 K 752 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
NielsenUpdate.exe < 0.01 2,368 K 6,192 K 1252 (Verified) The Nielsen Company
svchost.exe < 0.01 105,656 K 112,744 K 252 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
csrss.exe < 0.01 2,572 K 5,044 K 624 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
wmpnetwk.exe < 0.01 6,688 K 8,052 K 3928 Windows Media Player Network Sharing Service Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 5,896 K 10,300 K 1008 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
IScheduleSvc.exe < 0.01 5,368 K 10,620 K 1064 Backup Manager Module NTI Corporation (Verified) NTI Corporation
SearchIndexer.exe < 0.01 21,064 K 13,192 K 2300 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
GoogleToolbarNotifier.exe < 0.01 2,648 K 2,284 K 3016 GoogleToolbarNotifier Google Inc. (Verified) Google Inc
svchost.exe < 0.01 16,948 K 17,608 K 1300 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
WLIDSVC.EXE < 0.01 8,360 K 17,260 K 1228 Microsoft® Windows Live ID Service Microsoft Corp. (Verified) Microsoft Corporation
svchost.exe < 0.01 29,840 K 46,312 K 1096 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
taskhost.exe < 0.01 17,076 K 18,940 K 1172 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 11,356 K 19,288 K 1056 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
SASCore64.exe < 0.01 1,568 K 3,700 K 1744 Core Service SUPERAntiSpyware.com (Verified) SUPERAntiSpyware.com
dsiwmis.exe 0.01 2,208 K 4,564 K 1832 Dritek WMI Service Dritek System Inc. (Verified) Dritek System Inc.
svchost.exe 0.01 4,552 K 9,796 K 928 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
services.exe 0.01 6,292 K 9,768 K 760 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows
MOM.exe 0.01 41,884 K 8,496 K 4136 Catalyst Control Center: Monitoring program Advanced Micro Devices Inc. (No signature was present in the subject) Advanced Micro Devices Inc.
AvastUI.exe 0.01 9,048 K 6,372 K 3536 avast! Antivirus AVAST Software (Verified) AVAST Software
AvastSvc.exe 0.01 38,392 K 1,824 K 1380 avast! Service AVAST Software (Verified) AVAST Software
CCC.exe 0.02 113,100 K 25,480 K 164 Catalyst Control Center: Host application ATI Technologies Inc. (No signature was present in the subject) ATI Technologies Inc.
ETDCtrl.exe 0.03 6,516 K 16,708 K 2884 ETD Control Center ELAN Microelectronics Corp. (Verified) Microsoft Windows Hardware Compatibility Publisher
NielsenOnline.exe 0.03 18,036 K 36,196 K 3972 NielsenOnline The Nielsen Company (Verified) The Nielsen Company
ETDCtrlHelper.exe 0.06 4,972 K 10,892 K 4012 ETD Control Center Helper ELAN Microelectronics Corp. (Verified) Microsoft Windows Hardware Compatibility Publisher
ePowerTray.exe 0.07 5,120 K 11,524 K 3004 ePowerTray Acer Incorporated (Verified) Acer Incorporated
explorer.exe 0.09 31,660 K 54,760 K 2172 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
ePowerEvent.exe 0.12 2,160 K 5,076 K 3480 ePowerEvent Acer Incorporated (Verified) Acer Incorporated
System 0.21 168 K 1,692 K 4
csrss.exe 0.43 3,540 K 6,996 K 716 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
dwm.exe 0.46 35,920 K 34,716 K 2052 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
iexplore.exe 0.75 106,548 K 123,724 K 2240 Internet Explorer Microsoft Corporation (Verified) Microsoft Windows
Interrupts 1.21 0 K 0 K n/a Hardware Interrupts and DPCs
procexp64.exe 2.37 33,924 K 56,404 K 5592 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Sysinternals
System Idle Process 94.04 0 K 24 K 0

doing other instructions now

#4
roacham

Posted 01 August 2013 - 02:30 PM

Member

Member
245 posts

I just finished this part

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator. Then type (with an Enter after each line).
sfc /scannow

(This will check your critical system files. Does this finish without complaint? IF it says it couldn't fix everything then:

Copy the next two lines:

findstr /c:"[SR]" \windows\logs\cbs\cbs.log > \windows\logs\cbs\junk.txt
notepad \windows\logs\cbs\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)

what is my next step if no integrity violations were found, I only see what to do if it could not fix everything?

Thank you so much for your help.

#5
RKinner

Posted 01 August 2013 - 03:03 PM

Malware Expert

Expert
14,122 posts

Just go on to the next step where it says:

1. Please download the Event Viewer Tool by Vino Rosso

#6
roacham

Posted 01 August 2013 - 03:40 PM

Member

Member
245 posts

Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 01/08/2013 4:39:00 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 01/08/2013 9:37:40 PM
Type: Error Category: 0
Event: 4321 Source: NetBT
The name "ANGIE-PC :0" could not be registered on the interface with IP address 192.168.1.90. The computer with the IP address 192.168.1.100 did not allow the name to be claimed by this computer.

Log: 'System' Date/Time: 01/08/2013 9:37:40 PM
Type: Error Category: 0
Event: 4321 Source: NetBT
The name "ANGIE-PC :0" could not be registered on the interface with IP address 192.168.1.90. The computer with the IP address 192.168.1.100 did not allow the name to be claimed by this computer.

Log: 'System' Date/Time: 01/08/2013 7:50:36 PM
Type: Error Category: 0
Event: 4321 Source: NetBT
The name "ANGIE-PC :20" could not be registered on the interface with IP address 192.168.1.90. The computer with the IP address 192.168.1.100 did not allow the name to be claimed by this computer.

Log: 'System' Date/Time: 01/08/2013 7:50:36 PM
Type: Error Category: 0
Event: 2505 Source: Server
The server could not bind to the transport \Device\NetBT_Tcpip_{5E4C1FA9-8AC5-4D27-B294-2B27FB894C38} because another computer on the network has the same name. The server could not start.

Log: 'System' Date/Time: 01/08/2013 7:50:21 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The McAfee SiteAdvisor Service service failed to start due to the following error: The system cannot find the file specified.

Log: 'System' Date/Time: 01/08/2013 7:50:19 PM
Type: Error Category: 0
Event: 4321 Source: NetBT
The name "ANGIE-PC :0" could not be registered on the interface with IP address 192.168.1.90. The computer with the IP address 192.168.1.100 did not allow the name to be claimed by this computer.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 01/08/2013 8:31:53 PM
Type: Warning Category: 0
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name fbexternal-a.akamaihd.net timed out after none of the configured DNS servers responded.

Log: 'System' Date/Time: 01/08/2013 7:49:35 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 01/08/2013 7:49:35 PM
Type: Warning Category: 0
Event: 10002 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN Extensibility Module has stopped. Module Path: C:\Program Files (x86)\Atheros\AthIhvWlanExt.dll

#7
roacham

Posted 01 August 2013 - 03:42 PM

Member

Member
245 posts

Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 01/08/2013 4:41:56 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 01/08/2013 7:50:52 PM
Type: Error Category: 0
Event: 10 Source: Microsoft-Windows-WMI
Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#8
roacham

Posted 01 August 2013 - 03:44 PM

Member

Member
245 posts

#9
roacham

Posted 01 August 2013 - 03:50 PM

Member

Member
245 posts

Summary
Operating System
Windows 7 Home Premium 64-bit SP1
CPU
AMD A8-4500M 95 °C
Trinity 32nm Technology
RAM
4.00GB Single-Channel DDR3 @ 672MHz (9-9-10-24)
Motherboard
Acer VA50_CM (Socket FT1)
Graphics
Generic PnP Monitor (1366x768@60Hz)
512MB ATI AMD Radeon HD 7640G (Acer Incorporated [ALI]) 44 °C
Hard Drives
466GB Seagate ST9500325AS ATA Device (SATA) 37 °C
Optical Drives
HL-DT-ST DVDRAM GT70N ATA Device
Audio
Realtek High Definition Audio
Operating System
Windows 7 Home Premium 64-bit SP1
Computer type: Notebook
Installation Date: 12/9/2012 3:20:18 PM

Windows Security Center
User Account Control (UAC) Enabled
Notify level 2 - Default
Firewall Enabled
Windows Update
AutoUpdate Download Automatically and Install at Set Scheduled time
Schedule Frequency Every Day
Schedule Time 3:00 AM
Windows Defender
Windows Defender Enabled
Antivirus
Antivirus Enabled
Company Name AVAST Software
Display Name avast! Antivirus
Product Version 8.0.1489.0
Virus Signature Database Up to date
.NET Frameworks installed
v4.0 Client
v3.5 SP1
v3.0 SP2
v2.0 SP2
Internet Explorer
Version 10.0.9200.16635
PowerShell
Version 2.0
Java
Java Runtime Environment
Path C:\Program Files (x86)\Java\jre7\bin\java.exe
Version 7.0
Update 25
Build 17
Environment Variables
USERPROFILE C:\Users\Angie
SystemRoot C:\Windows
User Variables
TEMP C:\Users\Angie\AppData\Local\Temp
TMP C:\Users\Angie\AppData\Local\Temp
Machine Variables
ComSpec C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK NO
OS Windows_NT
Path C:\Program Files (x86)\AMD APP\bin\x86_64
C:\Program Files (x86)\AMD APP\bin\x86
C:\Program Files\Common Files\Microsoft Shared\Windows Live
C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live
C:\Windows\system32
C:\Windows
C:\Windows\System32\Wbem
%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
C:\Program Files (x86)\Windows Live\Shared
C:\Program Files (x86)\EgisTec MyWinLocker\x64
C:\Program Files (x86)\EgisTec MyWinLocker\
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE AMD64
TEMP C:\Windows\TEMP
TMP C:\Windows\TEMP
USERNAME SYSTEM
windir C:\Windows
PSModulePath C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
NUMBER_OF_PROCESSORS 4
PROCESSOR_LEVEL 21
PROCESSOR_IDENTIFIER AMD64 Family 21 Model 16 Stepping 1, AuthenticAMD
PROCESSOR_REVISION 1001
windows_tracing_logfile C:\BVTBin\Tests\installpackage\csilogfile.log
windows_tracing_flags 3
AMDAPPSDKROOT C:\Program Files (x86)\AMD APP\
Battery
AC Line Offline
Battery Charge % 97 %
Battery State High
Remaining Battery Time 5 : 28
Power Profile
Active power scheme Balanced
Hibernation Enabled
Turn Off Monitor after: (On AC Power) 15 min
Turn Off Monitor after: (On Battery Power) 10 min
Turn Off Hard Disk after: (On AC Power) 15 min
Turn Off Hard Disk after: (On Battery Power) 2 min
Suspend after: (On AC Power) 30 min
Suspend after: (On Battery Power) 15 min
Screen saver Disabled
Uptime
Current Session
Current Time 8/1/2013 4:48:38 PM
Current Uptime 7,122 sec (0 d, 01 h, 58 m, 42 s)
Last Boot Time 8/1/2013 2:49:56 PM
TimeZone
TimeZone GMT -6:00 Hours
Language English (United States)
Location United States
Format English (United States)
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Process List
AdminService.exe
Process ID 1992
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
Memory Usage 6.64 MB
Peak Memory Usage 6.67 MB
armsvc.exe
Process ID 1968
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Memory Usage 3.80 MB
Peak Memory Usage 3.86 MB
AthBtTray.exe
Process ID 3516
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
Memory Usage 17 MB
Peak Memory Usage 17 MB
atieclxx.exe
Process ID 1360
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\atieclxx.exe
Memory Usage 7.21 MB
Peak Memory Usage 7.21 MB
atiesrxx.exe
Process ID 408
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\atiesrxx.exe
Memory Usage 4.32 MB
Peak Memory Usage 4.35 MB
audiodg.exe
Process ID 5732
AvastSvc.exe
Process ID 1392
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVAST Software\Avast\AvastSvc.exe
Memory Usage 27 MB
Peak Memory Usage 63 MB
AvastUI.exe
Process ID 4568
User Angie
Domain Angie-PC
Path C:\Program Files\AVAST Software\Avast\AvastUI.exe
Memory Usage 5.86 MB
Peak Memory Usage 20 MB
BackupManagerTray.exe
Process ID 4460
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
Memory Usage 13 MB
Peak Memory Usage 13 MB
BtvStack.exe
Process ID 3484
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
CCC.exe
Process ID 1728
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Memory Usage 21 MB
Peak Memory Usage 98 MB
conhost.exe
Process ID 1408
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 2.77 MB
Peak Memory Usage 2.80 MB
csrss.exe
Process ID 628
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 4.67 MB
Peak Memory Usage 4.68 MB
csrss.exe
Process ID 720
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 6.86 MB
Peak Memory Usage 13 MB
DeviceDetector.exe
Process ID 4696
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
Memory Usage 932 KB
Peak Memory Usage 11 MB
dsiwmis.exe
Process ID 1576
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Launch Manager\dsiwmis.exe
Memory Usage 4.48 MB
Peak Memory Usage 4.59 MB
dwm.exe
Process ID 1644
User Angie
Domain Angie-PC
Path C:\Windows\system32\Dwm.exe
Memory Usage 35 MB
Peak Memory Usage 43 MB
EgisUpdate.exe
Process ID 2504
User Angie
Domain Angie-PC
Path C:\Program Files\EgisTec IPS\EgisUpdate.exe
Memory Usage 832 KB
Peak Memory Usage 11 MB
ePowerEvent.exe
Process ID 4468
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
Memory Usage 5.92 MB
Peak Memory Usage 5.95 MB
ePowerSvc.exe
Process ID 1536
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
Memory Usage 7.19 MB
Peak Memory Usage 7.36 MB
ePowerTray.exe
Process ID 3720
User Angie
Domain Angie-PC
Path C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
Memory Usage 13 MB
Peak Memory Usage 13 MB
ETDCtrl.exe
Process ID 3288
User Angie
Domain Angie-PC
Path C:\Program Files\Elantech\ETDCtrl.exe
Memory Usage 18 MB
Peak Memory Usage 18 MB
ETDCtrlHelper.exe
Process ID 3316
User Angie
Domain Angie-PC
Path C:\Program Files\Elantech\ETDCtrlHelper.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
explorer.exe
Process ID 1704
User Angie
Domain Angie-PC
Path C:\Windows\Explorer.EXE
Memory Usage 64 MB
Peak Memory Usage 70 MB
FlashUtil64_11_8_800_94_ActiveX.exe
Process ID 5136
User Angie
Domain Angie-PC
Path C:\Windows\system32\Macromed\Flash\FlashUtil64_11_8_800_94_ActiveX.exe
Memory Usage 13 MB
Peak Memory Usage 13 MB
GoogleToolbarNotifier.exe
Process ID 3540
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Memory Usage 1.19 MB
Peak Memory Usage 8.48 MB
GREGsvc.exe
Process ID 1212
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
Memory Usage 3.26 MB
Peak Memory Usage 3.31 MB
hpwuschd2.exe
Process ID 4576
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
Memory Usage 5.89 MB
Peak Memory Usage 5.98 MB
iexplore.exe
Process ID 5588
User Angie
Domain Angie-PC
Path C:\Program Files\Internet Explorer\iexplore.exe
Memory Usage 48 MB
Peak Memory Usage 52 MB
iexplore.exe
Process ID 5696
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Memory Usage 201 MB
Peak Memory Usage 219 MB
iexplore.exe
Process ID 5540
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Memory Usage 186 MB
Peak Memory Usage 190 MB
IScheduleSvc.exe
Process ID 2264
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
Memory Usage 10 MB
Peak Memory Usage 11 MB
jusched.exe
Process ID 4896
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Memory Usage 4.87 MB
Peak Memory Usage 4.92 MB
LManager.exe
Process ID 4536
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\Launch Manager\LManager.exe
Memory Usage 18 MB
Peak Memory Usage 18 MB
LMutilps32.exe
Process ID 1868
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Launch Manager\LMutilps32.exe
Memory Usage 5.73 MB
Peak Memory Usage 6.41 MB
LMworker.exe
Process ID 1808
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\Launch Manager\LMworker.exe
Memory Usage 6.32 MB
Peak Memory Usage 6.43 MB
lsass.exe
Process ID 784
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsass.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
lsm.exe
Process ID 792
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsm.exe
Memory Usage 4.39 MB
Peak Memory Usage 4.40 MB
MMDx64Fx.exe
Process ID 4592
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
Memory Usage 10 MB
Peak Memory Usage 10 MB
MOM.exe
Process ID 4048
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
Memory Usage 5.17 MB
Peak Memory Usage 32 MB
MsSpellCheckingFacility.exe
Process ID 5892
User Angie
Domain Angie-PC
Path C:\Windows\System32\MsSpellCheckingFacility.exe
Memory Usage 9.04 MB
Peak Memory Usage 9.09 MB
NielsenOnline.exe
Process ID 4792
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
Memory Usage 13 MB
Peak Memory Usage 13 MB
NielsenOnline.exe
Process ID 4820
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
Memory Usage 44 MB
Peak Memory Usage 47 MB
NielsenOnline64.exe
Process ID 5108
User Angie
Domain Angie-PC
Path C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\NielsenOnline64.exe
Memory Usage 15 MB
Peak Memory Usage 16 MB
NielsenUpdate.exe
Process ID 2180
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenUpdate.exe
Memory Usage 5.95 MB
Peak Memory Usage 6.08 MB
notepad.exe
Process ID 4948
User Angie
Domain Angie-PC
Path C:\Windows\SysWOW64\notepad.exe
Memory Usage 9.50 MB
Peak Memory Usage 9.84 MB
pcee4.exe
Process ID 4516
User Angie
Domain Angie-PC
Path C:\Dolby PCEE4\pcee4.exe
Memory Usage 39 MB
Peak Memory Usage 39 MB
PmmUpdate.exe
Process ID 3100
User Angie
Domain Angie-PC
Path C:\Program Files\EgisTec IPS\PMMUpdate.exe
Memory Usage 624 KB
Peak Memory Usage 9.53 MB
PresentationFontCache.exe
Process ID 2316
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
Memory Usage 18 MB
Peak Memory Usage 19 MB
RAVBg64.exe
Process ID 2516
User Angie
Domain Angie-PC
Path C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Memory Usage 13 MB
Peak Memory Usage 14 MB
RAVCpl64.exe
Process ID 2572
User Angie
Domain Angie-PC
Path C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
Memory Usage 15 MB
Peak Memory Usage 15 MB
SASCore64.exe
Process ID 1944
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
Memory Usage 3.61 MB
Peak Memory Usage 3.65 MB
SearchFilterHost.exe
Process ID 3656
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchFilterHost.exe
Memory Usage 9.28 MB
Peak Memory Usage 9.28 MB
SearchIndexer.exe
Process ID 3560
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchIndexer.exe
Memory Usage 19 MB
Peak Memory Usage 19 MB
SearchProtocolHost.exe
Process ID 5736
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchProtocolHost.exe
Memory Usage 13 MB
Peak Memory Usage 13 MB
services.exe
Process ID 764
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\services.exe
Memory Usage 9.77 MB
Peak Memory Usage 9.81 MB
smss.exe
Process ID 364
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 1.17 MB
Peak Memory Usage 1.21 MB
Speccy64.exe
Process ID 3440
User Angie
Domain Angie-PC
Path C:\Program Files\Speccy\Speccy64.exe
Memory Usage 31 MB
Peak Memory Usage 32 MB
spoolsv.exe
Process ID 1760
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\spoolsv.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
svchost.exe
Process ID 1016
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 141 MB
Peak Memory Usage 176 MB
svchost.exe
Process ID 1064
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 22 MB
Peak Memory Usage 22 MB
svchost.exe
Process ID 1096
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 42 MB
Peak Memory Usage 45 MB
svchost.exe
Process ID 1264
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 17 MB
Peak Memory Usage 18 MB
svchost.exe
Process ID 1832
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 14 MB
Peak Memory Usage 54 MB
svchost.exe
Process ID 2344
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 9.63 MB
Peak Memory Usage 9.68 MB
svchost.exe
Process ID 2992
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 6.78 MB
Peak Memory Usage 6.81 MB
svchost.exe
Process ID 2948
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
svchost.exe
Process ID 128
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 8.60 MB
Peak Memory Usage 8.61 MB
svchost.exe
Process ID 940
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 9.97 MB
Peak Memory Usage 10 MB
svchost.exe
Process ID 724
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 23 MB
Peak Memory Usage 23 MB
svchost.exe
Process ID 3264
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 33 MB
Peak Memory Usage 55 MB
svchost.exe
Process ID 2376
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 7.67 MB
Peak Memory Usage 7.67 MB
System
Process ID 4
System Idle Process
Process ID 0
taskeng.exe
Process ID 4444
User Angie
Domain Angie-PC
Path C:\Windows\system32\taskeng.exe
Memory Usage 9.84 MB
Peak Memory Usage 9.95 MB
taskhost.exe
Process ID 1752
User Angie
Domain Angie-PC
Path C:\Windows\system32\taskhost.exe
Memory Usage 17 MB
Peak Memory Usage 17 MB
unsecapp.exe
Process ID 4276
User Angie
Domain Angie-PC
Path C:\Windows\system32\wbem\unsecapp.exe
Memory Usage 8.59 MB
Peak Memory Usage 8.60 MB
UpdaterService.exe
Process ID 2148
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Acer\Acer Updater\UpdaterService.exe
Memory Usage 3.74 MB
Peak Memory Usage 3.84 MB
wininit.exe
Process ID 700
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wininit.exe
Memory Usage 4.55 MB
Peak Memory Usage 4.63 MB
winlogon.exe
Process ID 840
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\winlogon.exe
Memory Usage 7.26 MB
Peak Memory Usage 8.58 MB
wlanext.exe
Process ID 1400
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\WLANExt.exe
Memory Usage 6.63 MB
Peak Memory Usage 6.66 MB
WLIDSVC.EXE
Process ID 4288
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
Memory Usage 17 MB
Peak Memory Usage 17 MB
WLIDSVCM.EXE
Process ID 4736
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
Memory Usage 4.26 MB
Peak Memory Usage 4.32 MB
WmiApSrv.exe
Process ID 6284
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\WmiApSrv.exe
Memory Usage 6.96 MB
Peak Memory Usage 6.96 MB
WmiPrvSE.exe
Process ID 4348
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 21 MB
Peak Memory Usage 21 MB
WmiPrvSE.exe
Process ID 2488
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
wmpnetwk.exe
Process ID 4088
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Program Files\Windows Media Player\wmpnetwk.exe
Memory Usage 8.45 MB
Peak Memory Usage 18 MB
YahooAUService.exe
Process ID 2400
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
Memory Usage 6.89 MB
Peak Memory Usage 7.05 MB
Scheduler
8/1/2013 4:50 PM; Adobe Flash Player Updater
8/1/2013 5:29 PM; HPCustParticipation HP Officejet 6500 E710n-z
8/1/2013 5:39 PM; GoogleUpdateTaskMachineUA
8/2/2013 7:39 AM; GoogleUpdateTaskMachineCore
9/1/2013 9:52 AM; UALU notificatin
EgisUpdate
PMMUpdate
Hotfixes
7/30/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.1072.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/26/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.831.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.565.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/20/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.311.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/16/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.29.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/13/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1833.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/11/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2840628)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2840631)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Windows Malicious Software Removal Tool x64 - July 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
7/11/2013 Security Update for Windows 7 for x64-based Systems (KB2847927)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Windows 7 for x64-based Systems (KB2845187)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Windows 7 for x64-based Systems (KB2803821)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2846071)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2833946)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2835393)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Windows 7 for x64-based Systems (KB2850851)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Windows 7 for x64-based Systems (KB2835364)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Microsoft Silverlight (KB2847559)
This security update to Silverlight includes fixes outlined in
KB 2847559. This update is backward compatible with web applications
built using previous versions of Silverlight.
7/11/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2844286)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB2832414)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Windows 7 for x64-based Systems (KB2834886)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/11/2013 Security Update for Windows 7 for x64-based Systems (KB2835361)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1573.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/6/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1309.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/4/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1042.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/28/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.790.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/25/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.562.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/21/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.318.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/18/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.22.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/15/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836942)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/15/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836943)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/15/2013 Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2859903)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/14/2013 Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2836939)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/14/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.2213.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/13/2013 Security Update for Windows 7 for x64-based Systems (KB2845690)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Windows Malicious Software Removal Tool x64 - June 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
6/13/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 (KB2838727)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Security Update for Windows 7 for x64-based Systems (KB2839894)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Update for Windows 7 for x64-based Systems (KB2808679)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/13/2013 Update for Windows 7 for x64-based Systems (KB2836502)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/13/2013 Security Update for Windows 7 for x64-based Systems (KB2813430)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Update for Windows 7 for x64-based Systems (KB2834140)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/11/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1977.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/8/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1787.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/4/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1542.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/31/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1320.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/29/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1061.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/25/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.798.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/22/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.543.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/18/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.280.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/16/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.173.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/16/2013 Security Update for Windows 7 for x64-based Systems (KB2830290)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2820331)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2798162)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2813956)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
5/16/2013 Security Update for Windows 7 for x64-based Systems (KB2829361)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Windows Malicious Software Removal Tool x64 - May 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
5/16/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2804576)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
5/16/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2804579)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
5/16/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2829530)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Cumulative Security Update for ActiveX Killbits for Windows 7 for x64-based Systems (KB2820197)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/15/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.12.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/10/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.1652.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/7/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.1380.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/3/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.1143.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/30/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.884.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/27/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.649.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/25/2013 Security Update for Windows 7 for x64-based Systems (KB2840149)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.350.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.131.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/16/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1924.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/12/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1685.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2813347)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Windows Malicious Software Removal Tool x64 - April 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2808735)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2823324)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2817183)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Update for Windows 7 for x64-based Systems (KB2799926)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2813170)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1392.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/5/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1105.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/3/2013 Internet Explorer 10 for Windows 7 for x64-based Systems
Internet Explorer 10 is fast and fluid, and lets your websites
shine and perform just like native apps on your PC.
Internet
Explorer 10. Fast and fluid for Windows 7.
• Fast. Internet
Explorer 10 harnesses the untapped power of your PC, delivering
pages full of vivid graphics, smoother video, and interactive
content.
• Easy. Experience the web the way you want to with
pinned sites, built-in Spellcheck, and seamless integration with
your PC running Windows 7.
• Safer. Improved features like SmartScreen
Filter and Tracking Protection let you be more aware of threats
to your PC and your privacy.
4/2/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.868.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/29/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.700.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/26/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.471.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.212.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/21/2013 Security Update for Windows 7 for x64-based Systems (KB2807986)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
3/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.2105.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/16/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1873.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/15/2013 Windows Malicious Software Removal Tool x64 - March 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
3/15/2013 Update for Windows 7 for x64-based Systems (KB2791765)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
3/15/2013 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2809289)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
3/15/2013 Security Update for Microsoft Silverlight (KB2814124)
This security update to Silverlight includes fixes outlined in
KB 2814124. This update is backward compatible with web applications
built using previous versions of Silverlight.
3/13/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1584.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1381.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/5/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1035.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/1/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.817.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/27/2013 Platform Update for Windows 7 x64-Edition (KB2670838)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
2/27/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.509.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/22/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.236.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/20/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.2586.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/15/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.2336.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/14/2013 Security Update for Windows 7 for x64-based Systems (KB2799494)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/14/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2789645)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/14/2013 Security Update for Windows 7 for x64-based Systems (KB2778344)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/14/2013 Windows Malicious Software Removal Tool x64 - February 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
2/14/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2789642)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/14/2013 Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2797052)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/14/2013 Security Update for Windows 7 for x64-based Systems (KB2790113)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/14/2013 Security Update for Windows 7 for x64-based Systems (KB2790655)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
2/14/2013 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2792100)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
2/12/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.2086.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/8/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1848.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/5/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1556.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/1/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1318.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/29/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1033.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/25/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.765.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/22/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.502.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/18/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.193.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/16/2013 Definition Update for Windows Defender - KB915597 (Definition 1.141.3926.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/11/2013 Definition Update for Windows Defender - KB915597 (Definition 1.141.3676.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/9/2013 Security Update for Windows 7 for x64-based Systems (KB2769369)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2756921)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2742595)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Windows Malicious Software Removal Tool x64 - January 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
1/9/2013 Security Update for Windows 7 for x64-based Systems (KB2757638)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Windows 7 for x64-based Systems (KB2785220)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/9/2013 Update for Windows 7 for x64-based Systems (KB2786400)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
1/9/2013 Update for Windows 7 for x64-based Systems (KB2773072)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
1/9/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2742599)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Update for Windows 7 for x64-based Systems (KB2726535)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
1/9/2013 Update for Windows 7 for x64-based Systems (KB2786081)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
1/9/2013 Security Update for Windows 7 for x64-based Systems (KB2778930)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2736422)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected application to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
1/8/2013 Definition Update for Windows Defender - KB915597 (Definition 1.141.3362.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/5/2013 Definition Update for Windows Defender - KB915597 (Definition 1.141.3106.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/2/2013 Definition Update for Windows Defender - KB915597 (Definition 1.141.2892.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
12/28/2012 Definition Update for Windows Defender - KB915597 (Definition 1.141.2694.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
12/26/2012 Definition Update for Windows Defender - KB915597 (Definition 1.141.2549.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
12/21/2012 Security Update for Windows 7 for x64-based Systems (KB2753842)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/21/2012 Definition Update for Windows Defender - KB915597 (Definition 1.141.2350.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
12/18/2012 Definition Update for Windows Defender - KB915597 (Definition 1.141.2103.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
12/14/2012 Definition Update for Windows Defender - KB915597 (Definition 1.141.1830.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
12/14/2012 Update for Windows 7 for x64-based Systems (KB2779562)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2012. After you install this item, you
may have to restart your computer.
12/14/2012 Security Update for Windows 7 for x64-based Systems (KB2779030)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/14/2012 Windows Malicious Software Removal Tool x64 - December 2012 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
12/14/2012 Security Update for Windows 7 for x64-based Systems (KB2753842)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/14/2012 Security Update for Windows 7 for x64-based Systems (KB2758857)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/14/2012 Security Update for Windows 7 for x64-based Systems (KB2770660)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/14/2012 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2761465)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
12/11/2012 Definition Update for Windows Defender - KB915597 (Definition 1.141.1573.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
12/9/2012 Definition Update for Windows Defender - KB915597 (Definition 1.141.1308.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2762895)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
12/9/2012 Windows Malicious Software Removal Tool x64 - November 2012 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2727528)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Update for User-Mode Driver Framework version 1.11 for Windows 7 for x64-based Systems (KB2685813)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Kernel-Mode Driver Framework version 1.11 for Windows 7 for x64-based Systems (KB2685811)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2729452)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2729449)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2761451)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2761226)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2737019)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2761217)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2763523)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2750841)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2743555)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2661254)
Install this update to keep your system up to date by increasing
the minimum level of encryption on Windows systems. After you
install this item, you may have to restart your system.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2756822)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2012. After you install this item, you
may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2732500)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2647753)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2729094)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2732487)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2705219)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2731771)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2724197)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain access to information.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
12/9/2012 Skype 5.10 for Windows (KB2727727)
Skype 5.10 for Windows is now available. Updates include various
performance improvements and bugfixes.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2749655)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2739159)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2732059)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2741355)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update Rollup for ActiveX Killbits for Windows 7 for x64-based Systems (KB2736233)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2735855)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2719857)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2712808)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2719985)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2655992)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2691442)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2698365)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2667402)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2685939)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2686827)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2686831)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2709630)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2699779)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2718704)
Install this update to resolve an issue which requires an update
to the certificate revocation list on Windows systems and to
keep your systems certificate list up to date. After you install
this update, you may have to restart your system.
12/9/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2656373)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2656368)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows (KB2660465)
Fix for KB2660465
12/9/2012 Update for Windows (KB2660075)
Fix for KB2660075
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2688338)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2690533)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows (KB2654428)
Fix for KB2654428
12/9/2012 Security Update for Microsoft Silverlight (KB2690729)
This security update to Silverlight includes fixes outlined in
KBs 2681578 and 2690729. This update is backward compatible with
web applications built using previous versions of Silverlight.
12/9/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2656411)
A security issue has been identified that could allow an attacker
to break or bypass a security feature in the affected software.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2660649)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2676562)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2604115)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows (KB2647516)
Fix for KB2647516
12/9/2012 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2604121)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows (KB2645640)
Fix for KB2645640
12/9/2012 Update for Windows (KB2640148)
Fix for KB2640148
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2658846)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2659262)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2653956)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package (KB2538243)
A security issue has been identified leading to MFC application
vulnerability in DLL planting due to MFC not specifying the full
path to system/localization DLLs. You can protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
12/9/2012 Security Update for Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package (KB2538242)
A security issue has been identified leading to MFC application
vulnerability in DLL planting due to MFC not specifying the full
path to system/localization DLLs. You can protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
12/9/2012 Security Update for Microsoft Visual C++ 2010 Redistributable Package (KB2467173)
A security issue has been identified leading to MFC application
vulnerability in DLL planting due to MFC not specifying the full
path to system/localization DLLs. You can protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2621440)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2600217)
This update addresses stability, reliability, and performance
issues in Microsoft .NET Framework 4. After you install this
item, you may have to restart your computer.
12/9/2012 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2656356)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2656351)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2603229)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2468871)
Install this update to resolve issues in Microsoft .NET Framework
4. For a complete listing of the issues that are included in
this update, see the associated Microsoft Knowledge Base article
for more information. After you install this item, you may have
to restart your computer.
12/9/2012 Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2533523)
This update addresses stability, reliability, and performance
issues in Microsoft .NET Framework 4. After you install this
item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2533552)
Install this update to enable future updates to install successfully
on all editions of Windows 7 or Windows Server 2008 R2. This
update may be required before selected future updates can be
installed. After you install this item, it cannot be removed.
12/9/2012 Update for Windows 7 for x64-based Systems (KB2522422)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/9/2012 Update for Windows 7 for x64-based Systems (KB971033)
This update to Windows Activation Technologies detects activation
exploits and tampering to key Windows system files. These exploits
try to bypass regular Windows activation and are sometimes included
within counterfeit copies of Windows.
12/9/2012 Security Update for Windows 7 for x64-based Systems (KB2659262)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
12/9/2012 Microsoft .NET Framework 4 Client Profile for Windows 7 x64-based Systems (KB982670)
The Microsoft .NET Framework 4 Client Profile provides a subset
of features from the .NET Framework 4. The Client Profile is
designed to run client applications and to enable the fastest
possible deployment for Windows Presentation Foundation (WPF)
and Windows Forms technology.
12/9/2012 Windows Update Agent 7.6.7600.256
The Windows Update Agent enables your computer to search for
and install updates from an update service. The agent can automatically
update itself as needed to communicate with the update service
when Windows searches for new updates.
System Folders
Path for burning CD C:\Users\Angie\AppData\Local\Microsoft\Windows\Burn\Burn
Application Data C:\ProgramData
Public Desktop C:\Users\Public\Desktop
Documents C:\Users\Public\Documents
Global Favorites C:\Users\Angie\Favorites
Music C:\Users\Public\Music
Pictures C:\Users\Public\Pictures
Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs
Start Menu C:\ProgramData\Microsoft\Windows\Start Menu
Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Templates C:\ProgramData\Microsoft\Windows\Templates
Videos C:\Users\Public\Videos
Cookies C:\Users\Angie\AppData\Roaming\Microsoft\Windows\Cookies
Desktop C:\Users\Angie\Desktop
Physical Desktop C:\Users\Angie\Desktop
User Favorites C:\Users\Angie\Favorites
Fonts C:\Windows\Fonts
Internet History C:\Users\Angie\AppData\Local\Microsoft\Windows\History
Temporary Internet Files C:\Users\Angie\AppData\Local\Microsoft\Windows\Temporary Internet Files
Local Application Data C:\Users\Angie\AppData\Local
Windows Directory C:\Windows
Windows/System C:\Windows\system32
Program Files C:\Program Files
Services
Running Adobe Acrobat Update Service
Running AMD External Events Utility
Running Application Experience
Running Application Information
Running AtherosSvc
Running avast! Antivirus
Running Background Intelligent Transfer Service
Running Base Filtering Engine
Running CNG Key Isolation
Running COM+ Event System
Running Cryptographic Services
Running DCOM Server Process Launcher
Running Desktop Window Manager Session Manager
Running DHCP Client
Running Diagnostic Policy Service
Running Diagnostic Service Host
Running Distributed Link Tracking Client
Running DNS Client
Running Dritek WMI Service
Running ePower Service
Running Extensible Authentication Protocol
Running Function Discovery Provider Host
Running Function Discovery Resource Publication
Running GREGService
Running Group Policy Client
Running HomeGroup Provider
Running IKE and AuthIP IPsec Keying Modules
Running IP Helper
Running IPsec Policy Agent
Running Live Updater Service
Running Multimedia Class Scheduler
Running Network Connections
Running Network List Service
Running Network Location Awareness
Running Network Store Interface Service
Running Nielsen Update
Running NTI IScheduleSvc
Running Peer Name Resolution Protocol
Running Peer Networking Identity Manager
Running Plug and Play
Running Power
Running Print Spooler
Running Program Compatibility Assistant Service
Running Remote Access Connection Manager
Running Remote Procedure Call (RPC)
Running RPC Endpoint Mapper
Running SAS Core Service
Running Secure Socket Tunneling Protocol Service
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running SSDP Discovery
Running Superfetch
Running System Event Notification Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Telephony
Running Themes
Running User Profile Service
Running Windows Audio
Running Windows Audio Endpoint Builder
Running Windows Defender
Running Windows Event Log
Running Windows Firewall
Running Windows Font Cache Service
Running Windows Image Acquisition (WIA)
Running Windows Live ID Sign-in Assistant
Running Windows Management Instrumentation
Running Windows Media Player Network Sharing Service
Running Windows Presentation Foundation Font Cache 3.0.0.0
Running Windows Search
Running Windows Update
Running WinHTTP Web Proxy Auto-Discovery Service
Running WLAN AutoConfig
Running WMI Performance Adapter
Running Workstation
Running Yahoo! Updater
Stopped ActiveX Installer (AxInstSV)
Stopped Adaptive Brightness
Stopped Adobe Flash Player Update Service
Stopped Application Identity
Stopped Application Layer Gateway Service
Stopped BitLocker Drive Encryption Service
Stopped Block Level Backup Engine Service
Stopped Bluetooth Support Service
Stopped Certificate Propagation
Stopped COM+ System Application
Stopped Computer Browser
Stopped Credential Manager
Stopped Diagnostic System Host
Stopped Disk Defragmenter
Stopped Distributed Transaction Coordinator
Stopped EgisTec Ticket Service
Stopped Encrypting File System (EFS)
Stopped Fax
Stopped FLEXnet Licensing Service
Stopped GamesAppService
Stopped Google Software Updater
Stopped Google Update Service (gupdate)
Stopped Google Update Service (gupdatem)
Stopped Health Key and Certificate Management
Stopped HomeGroup Listener
Stopped Human Interface Device Access
Stopped Interactive Services Detection
Stopped Internet Connection Sharing (ICS)
Stopped KtmRm for Distributed Transaction Coordinator
Stopped Link-Layer Topology Discovery Mapper
Stopped McAfee SiteAdvisor Service
Stopped Media Center Extender Service
Stopped Microsoft .NET Framework NGEN v2.0.50727_X64
Stopped Microsoft .NET Framework NGEN v2.0.50727_X86
Stopped Microsoft .NET Framework NGEN v4.0.30319_X64
Stopped Microsoft .NET Framework NGEN v4.0.30319_X86
Stopped Microsoft iSCSI Initiator Service
Stopped Microsoft Software Shadow Copy Provider
Stopped Net.Tcp Port Sharing Service
Stopped Netlogon
Stopped Network Access Protection Agent
Stopped Parental Controls
Stopped Peer Networking Grouping
Stopped Performance Counter DLL Host
Stopped Performance Logs & Alerts
Stopped PnP-X IP Bus Enumerator
Stopped PNRP Machine Name Publication Service
Stopped Portable Device Enumerator Service
Stopped Problem Reports and Solutions Control Panel Support
Stopped Protected Storage
Stopped Quality Windows Audio Video Experience
Stopped Remote Access Auto Connection Manager
Stopped Remote Desktop Configuration
Stopped Remote Desktop Services
Stopped Remote Procedure Call (RPC) Locator
Stopped Remote Registry
Stopped Routing and Remote Access
Stopped Secondary Logon
Stopped Skype Updater
Stopped Smart Card
Stopped Smart Card Removal Policy
Stopped SNMP Trap
Stopped Software Protection
Stopped SPP Notification Service
Stopped Tablet PC Input Service
Stopped Thread Ordering Server
Stopped TPM Base Services
Stopped UPnP Device Host
Stopped Virtual Disk
Stopped Volume Shadow Copy
Stopped WebClient
Stopped Windows Activation Technologies Service
Stopped Windows Backup
Stopped Windows Biometric Service
Stopped Windows CardSpace
Stopped Windows Color System
Stopped Windows Connect Now - Config Registrar
Stopped Windows Driver Foundation - User-mode Driver Framework
Stopped Windows Error Reporting Service
Stopped Windows Event Collector
Stopped Windows Installer
Stopped Windows Live Mesh remote connections service
Stopped Windows Media Center Receiver Service
Stopped Windows Media Center Scheduler Service
Stopped Windows Modules Installer
Stopped Windows Remote Management (WS-Management)
Stopped Windows Time
Stopped Wired AutoConfig
Stopped WWAN AutoConfig
Security Options
Accounts: Administrator account status Disabled
Accounts: Guest account status Disabled
Accounts: Limit local account use of blank passwords to console logon only Enabled
Accounts: Rename administrator account Administrator
Accounts: Rename guest account Guest
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Not Defined
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Not Defined
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Not Defined
Devices: Restrict floppy access to locally logged-on user only Not Defined
Domain controller: Allow server operators to schedule tasks Not Defined
Domain controller: LDAP server signing requirements Not Defined
Domain controller: Refuse machine account password changes Not Defined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Enabled
Interactive logon: Display user information when the session is locked Not Defined
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Not Defined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 5 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Disabled
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session 15 minutes
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Microsoft network server: Server SPN target name validation level Not Defined
Network access: Allow anonymous SID/Name translation Disabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of passwords and credentials for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion
Network access: Remotely accessible registry paths and sub-paths System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog
Network access: Restrict anonymous access to Named Pipes and Shares Enabled
Network access: Shares that can be accessed anonymously Not Defined
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Allow Local System to use computer identity for NTLM Not Defined
Network security: Allow LocalSystem NULL session fallback Not Defined
Network Security: Allow PKU2U authentication requests to this computer to use online identities Not Defined
Network security: Configure encryption types allowed for Kerberos Not Defined
Network security: Do not store LAN Manager hash value on next password change Enabled
Network security: Force logoff when logon hours expire Disabled
Network security: LAN Manager authentication level Not Defined
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients Require 128-bit encryption
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers Require 128-bit encryption
Network security: Restrict NTLM: Add remote server exceptions for NTLM authentication Not Defined
Network security: Restrict NTLM: Add server exceptions in this domain Not Defined
Network security: Restrict NTLM: Audit Incoming NTLM Traffic Not Defined
Network security: Restrict NTLM: Audit NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Incoming NTLM traffic Not Defined
Network security: Restrict NTLM: NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers Not Defined
Recovery console: Allow automatic administrative logon Disabled
Recovery console: Allow floppy copy and access to all drives and all folders Disabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Force strong key protection for user keys stored on the computer Not Defined
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Require case insensitivity for non-Windows subsystems Enabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
System settings: Optional subsystems Posix
System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies Disabled
User Account Control: Admin Approval Mode for the Built-in Administrator account Disabled
User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop Disabled
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode Prompt for consent for non-Windows binaries
User Account Control: Behavior of the elevation prompt for standard users Prompt for credentials
User Account Control: Detect application installations and prompt for elevation Enabled
User Account Control: Only elevate executables that are signed and validated Disabled
User Account Control: Only elevate UIAccess applications that are installed in secure locations Enabled
User Account Control: Run all administrators in Admin Approval Mode Enabled
User Account Control: Switch to the secure desktop when prompting for elevation Enabled
User Account Control: Virtualize file and registry write failures to per-user locations Enabled
Device Tree
ACPI x64-based PC
Microsoft Watchdog Timer
Microsoft ACPI-Compliant System
AMD A8-4500M APU with Radeon HD Graphics
AMD A8-4500M APU with Radeon HD Graphics
AMD A8-4500M APU with Radeon HD Graphics
AMD A8-4500M APU with Radeon HD Graphics
ACPI Power Button
ACPI Sleep Button
Microsoft ACPI-Compliant Control Method Battery
Microsoft AC Adapter
ACPI Lid
Microsoft Windows Management Interface for ACPI
Microsoft Windows Management Interface for ACPI
ACPI Fixed Feature Button
Pci Bus
PCI standard host CPU bridge
AMD SMBus
PCI standard PCI-to-PCI bridge
PCI standard host CPU bridge
PCI standard host CPU bridge
PCI standard host CPU bridge
PCI standard host CPU bridge
PCI standard host CPU bridge
PCI standard host CPU bridge
Motherboard resources
High precision event timer
AMD Radeon HD 7640G
Generic PnP Monitor
High Definition Audio Controller
AMD High Definition Audio Device
PCI standard PCI-to-PCI bridge
Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
PCI standard PCI-to-PCI bridge
Atheros AR5BWB222 Wireless Network Adapter
PCI standard PCI-to-PCI bridge
Realtek PCIE CardReader
AMD USB 3.0 Host Controller
AMD USB 3.0 Root Hub
AMD USB 3.0 Host Controller
AMD USB 3.0 Root Hub
Standard AHCI 1.0 Serial ATA Controller
ATA Channel 0
ST9500325AS ATA Device
ATA Channel 1
HL-DT-ST DVDRAM GT70N ATA Device
Standard OpenHCD USB Host Controller
USB Root Hub
Standard Enhanced PCI to USB Host Controller
USB Root Hub
Standard OpenHCD USB Host Controller
USB Root Hub
Standard Enhanced PCI to USB Host Controller
USB Root Hub
USB Composite Device
HD Webcam
High Definition Audio Controller
Realtek High Definition Audio
PCI standard ISA bridge
Direct memory access controller
Numeric data processor
Programmable interrupt controller
System CMOS/real time clock
System speaker
System timer
Standard PS/2 Keyboard
ELAN PS/2 Port Smart-Pad
Motherboard resources
System board
Microsoft ACPI-Compliant Embedded Controller
CPU
AMD A8-4500M
Cores 4
Threads 4
Name AMD A8-4500M
Code Name Trinity
Package Socket FP2 (904)
Technology 32nm
Specification AMD A8-4500M APU with Radeon HD Graphics
Family F
Extended Family 15
Model 0
Extended Model 10
Stepping 1
Revision TN-A1
Instructions MMX (+), SSE, SSE2, SSE3, SSSE3, SSE4.1, SSE4.2, SSE4A, AMD 64, NX, VMX, AES, AVX, FMA3, FMA4
Virtualization Supported, Enabled
Hyperthreading Not supported
Bus Speed 100.0 MHz
Stock Core Speed 1900 MHz
Stock Bus Speed 100 MHz
Average Temperature 95 °C
Caches
L1 Data Cache Size 4 x 16 KBytes
L1 Instructions Cache Size 2 x 64 KBytes
L2 Unified Cache Size 2 x 2048 KBytes
Core 0
Core Speed 1399.7 MHz
Multiplier x 14.0
Bus Speed 100.0 MHz
Temperature 95 °C
Thread 1
APIC ID 0
Core 1
Core Speed 1399.7 MHz
Multiplier x 14.0
Bus Speed 100.0 MHz
Temperature 95 °C
Thread 1
APIC ID 1
Core 2
Core Speed 1399.7 MHz
Multiplier x 14.0
Bus Speed 100.0 MHz
Temperature 95 °C
Thread 1
APIC ID 2
Core 3
Core Speed 1399.7 MHz
Multiplier x 14.0
Bus Speed 100.0 MHz
Temperature 95 °C
Thread 1
APIC ID 3
RAM
Memory slots
Total memory slots 2
Used memory slots 1
Free memory slots 1
Memory
Type DDR3
Size 4096 MBytes
Channels # Single
DRAM Frequency 666.5 MHz
CAS# Latency (CL) 9 clocks
RAS# to CAS# Delay (tRCD) 9 clocks
RAS# Precharge (tRP) 10 clocks
Cycle Time (tRAS) 24 clocks
Bank Cycle Time (tRC) 33 clocks
Physical Memory
Memory Usage 48 %
Total Physical 3.48 GB
Available Physical 1.78 GB
Total Virtual 6.95 GB
Available Virtual 4.88 GB
SPD
Number Of SPD Modules 1
Slot #1
Type DDR3
Size 4096 MBytes
Manufacturer Nanya Technology
Max Bandwidth PC3-10700 (667 MHz)
Part Number NT4GC64B8HG0NS-CG
Serial Number 25B13A0F
Week/year 04 / 12
SPD Ext. EPP
JEDEC #5
Frequency 685.7 MHz
CAS# Latency 9.0
RAS# To CAS# 9
RAS# Precharge 9
tRAS 25
tRC 34
Voltage 1.500 V
JEDEC #4
Frequency 609.5 MHz
CAS# Latency 8.0
RAS# To CAS# 8
RAS# Precharge 8
tRAS 22
tRC 30
Voltage 1.500 V
JEDEC #3
Frequency 533.3 MHz
CAS# Latency 7.0
RAS# To CAS# 7
RAS# Precharge 7
tRAS 20
tRC 27
Voltage 1.500 V
JEDEC #2
Frequency 457.1 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 17
tRC 23
Voltage 1.500 V
JEDEC #1
Frequency 381.0 MHz
CAS# Latency 5.0
RAS# To CAS# 5
RAS# Precharge 5
tRAS 14
tRC 19
Voltage 1.500 V
Motherboard
Manufacturer Acer
Model VA50_CM (Socket FT1)
Version V1.03
Chipset Vendor AMD
Chipset Model A55/A60M FCH
Chipset Revision 00
Southbridge Vendor AMD
Southbridge Model A55/A60M
Southbridge Revision 11
BIOS
Brand Acer
Version V1.03
Date 5/23/2012
PCI Data
Slot Unknown
Slot Type Unknown
Slot Usage Available
Bus Width Unknown
Slot Designation J6C1
Slot Number 0
Slot Unknown
Slot Type Unknown
Slot Usage Available
Bus Width Unknown
Slot Designation J8C1
Slot Number 1
Slot Unknown
Slot Type Unknown
Slot Usage Available
Bus Width Unknown
Slot Designation J7C1
Slot Number 2
Slot Unknown
Slot Type Unknown
Slot Usage Available
Bus Width Unknown
Slot Designation J8D1
Slot Number 3
Slot Unknown
Slot Type Unknown
Slot Usage Available
Bus Width 32 bit
Slot Designation J8B1
Slot Number 4
Graphics
Monitor
Name Generic PnP Monitor on AMD Radeon HD 7640G
Current Resolution 1366x768 pixels
Work Resolution 1366x728 pixels
State Enabled, Primary
Monitor Width 1366
Monitor Height 768
Monitor BPP 32 bits per pixel
Monitor Frequency 60 Hz
Device \\.\DISPLAY1\Monitor0
ATI AMD Radeon HD 7640G
Manufacturer ATI
Model AMD Radeon HD 7640G
Device ID 1002-9903
Subvendor Acer Incorporated [ALI] (1025)
Current Performance Level Level 0
Voltage 0.849 V
GPU Clock 334.0 (654.0) MHz
Temperature 44 °C
Core Voltage 0.849 V
Driver version 8.941.4.1000
Memory Type DDR3
Memory 512 MB
Bandwidth 10.7 GB/s
Count of performance levels : 2
Level 1
GPU Clock 334 MHz
Memory Clock 667 MHz
Level 2
GPU Clock 654 MHz
Memory Clock 667 MHz
Hard Drives
ST9500325AS ATA Device
Manufacturer Seagate
Form Factor 2.5"
Heads 16
Cylinders 16,383
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number S2WK5Z24
LBA Size 48-bit LBA
Power On Count 401 times
Power On Time 81.2 days
Speed 5400 RPM
Features S.M.A.R.T., APM, NCQ
Transfer Mode SATA II
Interface SATA
Capacity 466 GB
Real size 500,107,862,016 bytes
RAID Type None
S.M.A.R.T
Status Good
Temperature 37 °C
Temperature Range OK (less than 50 °C)
01 Read Error Rate 118 (099) Data 000B52E036
03 Spin-Up Time 099 (098) Data 0000000000
04 Start/Stop Count 100 (100) Data 00000003BD
05 Reallocated Sectors Count 100 (100) Data 0000000000
07 Seek Error Rate 074 (060) Data 0001983B3A
09 Power-On Hours (POH) 098 (098) Data 000000079C
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 100 (100) Data 0000000191
B8 End-to-End error / IOEDC 100 (100) Data 0000000000
BB Reported Uncorrectable Errors 100 (100) Data 0000000000
BC Command Timeout 100 (100) Data 0000000000
BD High Fly Writes (WDC) 100 (100) Data 0000000000
BE Temperature Difference from 100 063 (057) Data 0028170025
BF G-sense error rate 100 (100) Data 000000000A
C0 Power-off Retract Count 100 (100) Data 0000000003
C1 Load/Unload Cycle Count 094 (094) Data 000000305C
C2 Temperature 037 (043) Data 0000000025
C3 Hardware ECC Recovered 058 (049) Data 000B52E036
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
FE Free Fall Protection 100 (100) Data 0000000000
Partition 0
Partition ID Disk #0, Partition #0
Size 18.0 GB
Partition 1
Partition ID Disk #0, Partition #1
Size 100 MB
Partition 2
Partition ID Disk #0, Partition #2
Disk Letter C:
File System NTFS
Volume Serial Number 0A256AF5
Size 448 GB
Used Space 49 GB (11%)
Free Space 399 GB (89%)
Optical Drives
HL-DT-ST DVDRAM GT70N ATA Device
Media Type DVD Writer
Name HL-DT-ST DVDRAM GT70N ATA Device
Availability Running/Full Power
Capabilities Random Access, Supports Writing, Supports Removable Media
Read capabilities CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Write capabilities CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive D:
Media Loaded FALSE
SCSI Bus 1
SCSI Logical Unit 0
SCSI Port 1
SCSI Target Id 0
Status OK
Audio
Sound Cards
AMD High Definition Audio Device
Realtek High Definition Audio
Playback Device
Speakers (Realtek High Definition Audio)
Recording Device
Microphone (Realtek High Definition Audio)
Peripherals
Standard PS/2 Keyboard
Device Kind Keyboard
Device Name Standard PS/2 Keyboard
Vendor (Standard keyboards)
Location plugged into keyboard port
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
ELAN PS/2 Port Smart-Pad
Device Kind Mouse
Device Name ELAN PS/2 Port Smart-Pad
Vendor ELAN
Location plugged into PS/2 mouse port
Driver
Date 3-19-2012
Version 10.6.10.8
File C:\Windows\system32\DRIVERS\ETD.sys
File C:\Program Files\Elantech\ETDCtrl.exe
File C:\Program Files\Elantech\ETDApix.dll
File C:\Program Files\Elantech\ETDCmds.dll
File C:\Program Files\Elantech\ETDMag.exe
File C:\Program Files\Elantech\ETDUninst.dll
File C:\Program Files\Elantech\ETDUn_inst.exe
File C:\Program Files\Elantech\ETDMcpl.dll
File C:\Program Files\Elantech\ETDApi.dll
File C:\Program Files\Elantech\ETDFavorite.dll
File C:\Program Files\Elantech\ETDDeviceInformation.exe
File C:\Program Files\Elantech\ETDCtrlHelper.exe
File C:\Program Files\Elantech\ETDAniConf.exe
File C:\Program Files\Elantech\Button_ClickPad.avi
File C:\Program Files\Elantech\Button_SmartPad.avi
File C:\Program Files\Elantech\CursorMove_Inertia.avi
File C:\Program Files\Elantech\DnD01.avi
File C:\Program Files\Elantech\DnD02.avi
File C:\Program Files\Elantech\DnD03.avi
File C:\Program Files\Elantech\Edge_Auto.avi
File C:\Program Files\Elantech\Edge_Circular.avi
File C:\Program Files\Elantech\Edge_Inertial.avi
File C:\Program Files\Elantech\Edge_Scroll.avi
File C:\Program Files\Elantech\Edge_Scroll_Once.avi
File C:\Program Files\Elantech\Fastkeys.avi
File C:\Program Files\Elantech\Rotation_Twist.avi
File C:\Program Files\Elantech\Scroll_Auto.avi
File C:\Program Files\Elantech\Scroll_Inertial.avi
File C:\Program Files\Elantech\Scroll_No_FreeScroll.avi
File C:\Program Files\Elantech\Scroll_Only_V.avi
File C:\Program Files\Elantech\Swipe_2F_LR_PageUpDown.avi
File C:\Program Files\Elantech\Swipe_3F_Down_SwitchWnd.avi
File C:\Program Files\Elantech\Swipe_3F_LR_PageupDown.avi
File C:\Program Files\Elantech\Swipe_3F_Up_Computer.avi
File C:\Program Files\Elantech\Swipe_3F_UpDown_SlideShow.avi
File C:\Program Files\Elantech\Swipe_4F_Down_Desktop.avi
File C:\Program Files\Elantech\Swipe_4F_Down_SwitchWnd.avi
File C:\Program Files\Elantech\Swipe_4F_Up_Desktop.avi
File C:\Program Files\Elantech\Tapping_1F.avi
File C:\Program Files\Elantech\Tapping_2F_Middle_Button.avi
File C:\Program Files\Elantech\Tapping_2F_Popup.avi
File C:\Program Files\Elantech\Zooming.avi
File C:\Program Files\Elantech\Switch_Window_3D_Asus_Way.avi
File C:\Program Files\Elantech\ReturnDesktop_3F_down.avi
File C:\Program Files\Elantech\Scroll_2F_Continuous_V.avi
File C:\Program Files\Elantech\Scroll_2F_Continuous_H.avi
File C:\Program Files\Elantech\Rotation_Circular.avi
File C:\Program Files\Elantech\Press_3F.avi
File C:\Program Files\Elantech\Continuous_EdgeScroll_H.avi
File C:\Program Files\Elantech\Continuous_EdgeScroll_V.avi
File C:\Program Files\Elantech\Continuous_EdgeScroll_V_2F.avi
File C:\Program Files\Elantech\Continuous_EdgeScroll_H_2F.avi
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
HP Officejet 6500 E710n-z
Device Kind Printer
Device Name HP Officejet 6500 E710n-z
Vendor Hewlett-Packard
Driver
Date 10-27-2010
Version 4.43.7.853
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\hpoj_6500_e710n-z.gpd
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\HPMACRONAMES.gpd
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\hpvpl04.ini
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\hpinksts5412LM.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\hpinksts5412.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\hpvpldrv04.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\hpvplui04.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\hpfime51.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\hpvplres04.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\copyright.txt
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\unidrv.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\unidrvui.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\unires.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\unidrv.hlp
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\locale.gpd
File C:\Windows\system32\spool\DRIVERS\x64\{4E6D50FC-CDBE-4531-B78C-55184122A481}\stdnames.gpd
File C:\Windows\system32\spool\drivers\color\Adobe RGB (1998) D65 WP 2.2 Gamma.icc
File C:\Windows\system32\hpinkcoi5412.dll
File C:\Windows\system32\hpinksts5412LM.dll
Fax - HP Officejet 6500 E710n-z
Device Kind Printer
Device Name Fax - HP Officejet 6500 E710n-z
Vendor Hewlett-Packard
Driver
Date 10-27-2010
Version 3.0.0.0
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\HPOJ6500_E710n-z_fax_print.gpd
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\HPOJ6500_E710n-z_FaxPCSend.ini
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\HPOJ6500_E710n-z_FaxPCSendRenderPlugin.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\HPOJ6500_E710n-z_FaxPCSendUIPlugin.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\HPOJ6500_E710n-z_FaxPCSendDialogUI.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\HPOJ6500_E710n-z_FaxPCSendStatus.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\HPOJ6500_E710n-z_FaxPCSendStatusUI.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\unidrv.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\unidrvui.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\unires.dll
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\unidrv.hlp
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\locale.gpd
File C:\Windows\system32\spool\DRIVERS\x64\{4859179A-495C-4C4B-92D1-09E2C9ECE931}\stdnames.gpd
USB Video Device
Device Kind Camera/scanner
Device Name USB Video Device
Vendor Unknown
Comment HD Webcam
Location USB Composite Device
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\drivers\usbvideo.sys
HP Officejet 6500 E710n-z (NET)
Device Kind Camera/scanner
Device Name HP Officejet 6500 E710n-z (NET)
Vendor Hewlett-Packard
Driver
Date 10-27-2010
Version 9.0.0.0
File C:\Windows\system32\HPScanMiniDrv_OJ6500_E710nz.dll
File C:\Windows\system32\drivers\serscan.sys
Printers
Fax
Printer Port SHRFAX:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Monochrome
Status Unknown
Driver
Driver Name Microsoft Shared Fax Driver (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\FXSDRV.DLL
Fax - HP Officejet 6500 E710n-z (Network)
Printer Port CN15C120WY05JW_FAX
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Color
Status Unknown
Driver
Driver Name Fax - HP Officejet 6500 E710n-z (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\UNIDRV.DLL
HP Officejet 6500 E710n-z (Network) (Default Printer)
Printer Port CN15C120WY05JW
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name HP Officejet 6500 E710n-z (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\UNIDRV.DLL
Microsoft XPS Document Writer
Printer Port XPSPort:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Microsoft XPS Document Writer (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\mxdwdrv.dll
Network
You are connected to the internet
Connected through Atheros AR5BWB222 Wireless Network Adapter
IP Address 192.168.1.90
Subnet mask 255.255.255.0
Gateway server 192.168.1.254
Preferred DNS server 192.168.1.254
DHCP Enabled
DHCP server 192.168.1.254
External IP Address 74.240.239.93
Adapter Type IEEE 802.11 wireless
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Broadcast node
Link Speed 0 Bps
Computer Name
NetBIOS Name ANGIE-PC
DNS Name Angie-PC
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain Angie-PC
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Using native Wi-Fi API version 2
Available access points count 1
Wi-Fi (roacham1)
SSID roacham1
Frequency 2412000 kHz
Channel Number 1
Name roacham1
Signal Strength/Quality 100
Security Enabled
State The interface is connected to a network
Dot11 Type Infrastructure BSS network
Network Connectible
Network Flags Currently Connected to this network
Cipher Algorithm to be used when joining this network Temporal Key Integrity Protocol (TKIP) algorithm
Default Auth used to join this network for the first time WPA algorithm that uses preshared keys (PSK)
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
Network Discovery Enabled
File and Printer Sharing Disabled
File and printer sharing service Enabled
Simple File Sharing Enabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
Atheros AR5BWB222 Wireless Network Adapter
IP Address 192.168.1.90
Subnet mask 255.255.255.0
Gateway server 192.168.1.254
MAC Address 44-6D-57-88-B6-B8
Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
IP Address 0.0.0.0
Subnet mask 0.0.0.0
Gateway server 0.0.0.0
MAC Address DC-0E-A1-B2-58-4F
Network Shares
No network shares
Current TCP Connections
AvastSvc.exe (1392)
Local 0.0.0.0:12025 LISTEN
Local 0.0.0.0:12110 LISTEN
Local 0.0.0.0:12119 LISTEN
Local 0.0.0.0:12143 LISTEN
Local 0.0.0.0:12465 LISTEN
Local 0.0.0.0:12563 LISTEN
Local 0.0.0.0:12993 LISTEN
Local 0.0.0.0:12995 LISTEN
Local 0.0.0.0:27275 LISTEN
Local 127.0.0.1:12025 LISTEN
Local 127.0.0.1:12080 LISTEN
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49799 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49923 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49924 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49925 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49927 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49935 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49937 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49938 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49940 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49942 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49943 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49944 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49945 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49946 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49947 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49954 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49956 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49958 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49959 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49960 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49964 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49966 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49971 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49973 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49977 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49979 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49981 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49982 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49983 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49987 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49990 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49992 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49994 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49996 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:49998 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50005 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50007 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50008 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50010 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50012 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50021 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50027 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50029 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50030 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50032 (Querying... )
Local 127.0.0.1:12080 ESTABLISHED Remote 127.0.0.1:50034 (Querying... )
Local 127.0.0.1:12119 LISTEN
Local 127.0.0.1:12143 LISTEN
Local 127.0.0.1:12465 LISTEN
Local 127.0.0.1:12563 LISTEN
Local 127.0.0.1:12993 LISTEN
Local 127.0.0.1:12995 LISTEN
Local 127.0.0.1:27275 LISTEN
Local 192.168.1.90:50019 CLOSE-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.90:50020 CLOSE-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.90:50022 CLOSE-WAIT Remote 54.230.162.86:80 (Querying... ) (HTTP)
Local 192.168.1.90:50028 ESTABLISHED Remote 74.125.137.157:80 (Querying... ) (HTTP)
Local 192.168.1.90:50031 ESTABLISHED Remote 74.125.137.148:80 (Querying... ) (HTTP)
Local 192.168.1.90:50033 ESTABLISHED Remote 74.125.137.155:80 (Querying... ) (HTTP)
Local 192.168.1.90:50035 ESTABLISHED Remote 67.228.177.87:80 (Querying... ) (HTTP)
Local 192.168.1.90:50042 SYN-SENT Remote 77.234.41.65:80 (Querying... ) (HTTP)
Local 192.168.1.90:50043 SYN-SENT Remote 77.234.41.66:80 (Querying... ) (HTTP)
Local 127.0.0.1:12110 LISTEN
Local 192.168.1.90:49159 ESTABLISHED Remote 77.234.42.55:80 (Querying... ) (HTTP)
Local 192.168.1.90:49928 ESTABLISHED Remote 74.125.139.121:80 (Querying... ) (HTTP)
Local 192.168.1.90:49929 ESTABLISHED Remote 74.125.137.100:80 (Querying... ) (HTTP)
Local 192.168.1.90:49931 ESTABLISHED Remote 65.121.158.218:80 (Querying... ) (HTTP)
Local 192.168.1.90:49932 ESTABLISHED Remote 74.125.137.132:80 (Querying... ) (HTTP)
Local 192.168.1.90:49936 ESTABLISHED Remote 72.21.92.82:80 (Querying... ) (HTTP)
Local 192.168.1.90:49941 ESTABLISHED Remote 74.125.139.95:80 (Querying... ) (HTTP)
Local 192.168.1.90:49953 CLOSE-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.90:49955 CLOSE-WAIT Remote 23.62.161.224:80 (Querying... ) (HTTP)
Local 192.168.1.90:49957 CLOSE-WAIT Remote 72.21.91.196:80 (Querying... ) (HTTP)
Local 192.168.1.90:49961 CLOSE-WAIT Remote 54.230.162.86:80 (Querying... ) (HTTP)
Local 192.168.1.90:49962 CLOSE-WAIT Remote 54.230.162.86:80 (Querying... ) (HTTP)
Local 192.168.1.90:49963 CLOSE-WAIT Remote 54.230.162.86:80 (Querying... ) (HTTP)
Local 192.168.1.90:49965 ESTABLISHED Remote 74.125.130.156:80 (Querying... ) (HTTP)
Local 192.168.1.90:49967 CLOSE-WAIT Remote 23.62.207.139:80 (Querying... ) (HTTP)
Local 192.168.1.90:49972 ESTABLISHED Remote 23.62.161.224:80 (Querying... ) (HTTP)
Local 192.168.1.90:49974 ESTABLISHED Remote 74.125.137.155:80 (Querying... ) (HTTP)
Local 192.168.1.90:49978 CLOSE-WAIT Remote 72.21.91.196:80 (Querying... ) (HTTP)
Local 192.168.1.90:49980 CLOSE-WAIT Remote 72.21.91.196:80 (Querying... ) (HTTP)
Local 192.168.1.90:49984 CLOSE-WAIT Remote 72.21.91.196:80 (Querying... ) (HTTP)
Local 192.168.1.90:49985 CLOSE-WAIT Remote 72.21.91.196:80 (Querying... ) (HTTP)
Local 192.168.1.90:49986 CLOSE-WAIT Remote 72.21.91.196:80 (Querying... ) (HTTP)
Local 192.168.1.90:49988 CLOSE-WAIT Remote 199.27.72.134:80 (Querying... ) (HTTP)
Local 192.168.1.90:49991 CLOSE-WAIT Remote 199.27.72.134:80 (Querying... ) (HTTP)
Local 192.168.1.90:49993 ESTABLISHED Remote 74.125.137.157:80 (Querying... ) (HTTP)
Local 192.168.1.90:49995 ESTABLISHED Remote 31.13.69.80:80 (Querying... ) (HTTP)
Local 192.168.1.90:49997 CLOSE-WAIT Remote 23.62.161.224:80 (Querying... ) (HTTP)
Local 192.168.1.90:49999 ESTABLISHED Remote 23.62.161.224:80 (Querying... ) (HTTP)
Local 192.168.1.90:50006 CLOSE-WAIT Remote 199.27.72.130:80 (Querying... ) (HTTP)
Local 192.168.1.90:50009 CLOSE-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.90:50011 ESTABLISHED Remote 74.125.137.147:80 (Querying... ) (HTTP)
Local 192.168.1.90:50013 ESTABLISHED Remote 74.125.137.147:80 (Querying... ) (HTTP)
Local 192.168.1.90:50016 CLOSE-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.90:50017 CLOSE-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 192.168.1.90:50018 CLOSE-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE (5696)
Local 127.0.0.1:49925 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49927 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49935 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49937 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49938 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49940 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49973 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49977 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49979 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49981 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49982 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49983 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49987 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 192.168.1.90:49968 ESTABLISHED Remote 74.125.137.102:443 (Querying... ) (HTTPS)
Local 127.0.0.1:49990 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49992 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 192.168.1.90:49975 ESTABLISHED Remote 74.125.137.102:443 (Querying... ) (HTTPS)
Local 192.168.1.90:49976 CLOSE-WAIT Remote 23.62.161.224:443 (Querying... ) (HTTPS)
Local 127.0.0.1:49994 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49996 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49998 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49946 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49947 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50005 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 192.168.1.90:49989 ESTABLISHED Remote 74.125.137.120:443 (Querying... ) (HTTPS)
Local 127.0.0.1:49923 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49924 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50010 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50012 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50021 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 192.168.1.90:50000 CLOSE-WAIT Remote 199.59.150.39:443 (Querying... ) (HTTPS)
Local 127.0.0.1:49945 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49944 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50027 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50029 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 192.168.1.90:50014 ESTABLISHED Remote 74.125.137.157:443 (Querying... ) (HTTPS)
Local 192.168.1.90:50015 ESTABLISHED Remote 74.125.137.157:443 (Querying... ) (HTTPS)
Local 127.0.0.1:50030 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50032 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50034 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49943 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49954 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49956 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49958 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49959 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49960 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49964 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49942 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49966 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:49971 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe (4820)
Local 127.0.0.1:49799 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
C:\Program Files\Internet Explorer\iexplore.exe (5588)
Local 127.0.0.1:50007 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50008 ESTABLISHED Remote 127.0.0.1:12080 (Querying... )
System Process
Local 127.0.0.1:12080 TIME-WAIT Remote 127.0.0.1:49969 (Querying... )
Local 192.168.1.90:50041 TIME-WAIT Remote 108.171.164.205:80 (Querying... ) (HTTP)
Local 127.0.0.1:50025 TIME-WAIT Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50023 TIME-WAIT Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:50002 TIME-WAIT Remote 127.0.0.1:12080 (Querying... )
Local 127.0.0.1:12080 TIME-WAIT Remote 127.0.0.1:50023 (Querying... )
Local 127.0.0.1:50001 TIME-WAIT Remote 127.0.0.1:12080 (Querying... )
System Process
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 0.0.0.0:5357 LISTEN
Local 192.168.1.90:139 (NetBIOS session service) LISTEN
lsass.exe (784)
Local 0.0.0.0:49155 LISTEN
services.exe (764)
Local 0.0.0.0:49156 LISTEN
svchost.exe (1096)
Local 0.0.0.0:49154 LISTEN
svchost.exe (128)
Local 0.0.0.0:135 (DCE) LISTEN
svchost.exe (724)
Local 0.0.0.0:49153 LISTEN
wininit.exe (700)
Local 0.0.0.0:49152 LISTEN
Generated with Speccy v1.22.536

#10
roacham

Posted 01 August 2013 - 03:52 PM

Member

Member
245 posts

That is everything accept for the boot time scan. I actually ran a boot time scan yesterday and everything was fine at that time. Should I run again?

#11
RKinner

Posted 01 August 2013 - 03:57 PM

Malware Expert

Expert
14,122 posts

Speccy says your PC is about to melt down!!!

Temperature 95 °C

Shut it down and let it cool off. Are you running it on a soft surface? It should only be run on a hard surface so that the air vents are not blocked. Take a vacuum cleaner hose to the vents and see if you can clear out any dust. Do you hear the fan running? Could be it has failed.

Once it cools down:

Try speedfan

http://www.almico.com/sfdownload.php

Download, save and Install it (Win 7 or Vista right click and Run As Admin.) then run it.

It will tell you your temps. If they seem hot (over 50) then check Automatic Fan Speed.
Leave it running and see if the temps drop. What it does on a laptop if it works is turn the fan on full which seems to help.
Also prop up the back of the laptop with a book (don't block the vents).

#12
roacham

Posted 01 August 2013 - 08:50 PM

Member

Member
245 posts

I do not hear the fan running at all, but the laptop has been on all day trying to run all the scans and such. I just downloaded speccy and with that it downloaded all kind of stuff that seems really bad with it. I have tried to uninstall it but not sure I got it all. There was a whitesmoke toolbar and all kinds of stuff. Something called quick share, that looks like if I uninstall it that my computer may mess up. I am also getting a pop up when I open IE.

Edited by roacham, 01 August 2013 - 09:01 PM.

#13
RKinner

Posted 01 August 2013 - 11:40 PM

Malware Expert

Expert
14,122 posts

Turn it OFF! It's going to die unless it cools down.

I will check the speccy download but it was clean last time I looked. We can remove anything it may have installed but can't fix it if the cpu melts down.

#14
RKinner

Posted 01 August 2013 - 11:47 PM

Malware Expert

Expert
14,122 posts

Just downloaded and installed speccy and didn't get any other programs.

#15
roacham

Posted 02 August 2013 - 06:29 AM

Member

Member
245 posts

I did turn it off, let it cool, turned it back on,downloaded Speccy, now have the other things on my laptop that were not there before. Maybe I hit another button I should not have with the download. I uninstalled a lot, but not sure what to do about the quickshare and how to remove it safely. I kept my laptop off all night and still have it off now. I am typing this from my desktop. My laptop was sitting on my laptop stand with nothing under it. I now have my vent screen thing. Don't remember what it called, but it keeps it off the flat surface and has a screen so laptop can breathe. It is a fairly new laptop and has nothing in the vents to remove at this time. What do I do about the new issues with the quickshare and such?

By the way, thank you for all your help and for your fast replies. You are much appreciated

Back to Virus, Spyware, Malware Removal · Next Unread Topic →

As Featured On:

Never used a forum? Learn how.

Security Operating Systems Hardware Software Development Community Discussion

View New Content

Virus, Spyware, Malware Removal Possible hijack? Started by emaxf , 01 Jul 2004	1 reply 1,106 views	admin 01 Jul 2004
Windows XP™, 2000, 2003, NT is it possible to shrink mp3 files Started by allisontortoise , 04 Jul 2004	1 reply 1,795 views	Ntd 04 Jul 2004
Web Browsers and Email Is Multi language site possible Started by sunspeks , 09 Jul 2004	0 replies 884 views	sunspeks 09 Jul 2004
Virus, Spyware, Malware Removal possible adware infection Started by Putneydude , 14 Jul 2004	5 replies 1,591 views	admin 17 Jul 2004
Pinned Virus, Spyware, Malware Removal Malware and Spyware Cleaning Guide Started by admin , 10 Aug 2004	0 replies 3,257,726 views	admin 10 Aug 2004

Possible malware PUM.HIJACK.STARTMENU

#1
roacham

Posted 01 August 2013 - 10:27 AM

Advertisement

#2
RKinner

Posted 01 August 2013 - 11:05 AM

#3
roacham

Posted 01 August 2013 - 12:23 PM

#4
roacham

Posted 01 August 2013 - 02:30 PM

#5
RKinner

Posted 01 August 2013 - 03:03 PM

#6
roacham

Posted 01 August 2013 - 03:40 PM

#7
roacham

Posted 01 August 2013 - 03:42 PM

#8
roacham

Posted 01 August 2013 - 03:44 PM

#9
roacham

Posted 01 August 2013 - 03:50 PM

#10
roacham

Posted 01 August 2013 - 03:52 PM

Advertisement

#11
RKinner

Posted 01 August 2013 - 03:57 PM

#12
roacham

Posted 01 August 2013 - 08:50 PM

#13
RKinner

Posted 01 August 2013 - 11:40 PM

#14
RKinner

Posted 01 August 2013 - 11:47 PM

#15
roacham

Posted 02 August 2013 - 06:29 AM

Advertisement

Similar Topics: Possible malware PUM.HIJACK.STARTMENU x

Virus, Spyware, Malware Removal Possible hijack?

Windows XP™, 2000, 2003, NT is it possible to shrink mp3 files

Web Browsers and Email Is Multi language site possible

Virus, Spyware, Malware Removal possible adware infection

Pinned Virus, Spyware, Malware Removal Malware and Spyware Cleaning Guide

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

Possible malware PUM.HIJACK.STARTMENU

#1 roacham Posted 01 August 2013 - 10:27 AM

Advertisement

#2 RKinner Posted 01 August 2013 - 11:05 AM

#3 roacham Posted 01 August 2013 - 12:23 PM

#4 roacham Posted 01 August 2013 - 02:30 PM

#5 RKinner Posted 01 August 2013 - 03:03 PM

#6 roacham Posted 01 August 2013 - 03:40 PM

#7 roacham Posted 01 August 2013 - 03:42 PM

#8 roacham Posted 01 August 2013 - 03:44 PM

#9 roacham Posted 01 August 2013 - 03:50 PM

#10 roacham Posted 01 August 2013 - 03:52 PM

Advertisement

#11 RKinner Posted 01 August 2013 - 03:57 PM

#12 roacham Posted 01 August 2013 - 08:50 PM

#13 RKinner Posted 01 August 2013 - 11:40 PM

#14 RKinner Posted 01 August 2013 - 11:47 PM

#15 roacham Posted 02 August 2013 - 06:29 AM

Advertisement

Similar Topics: Possible malware PUM.HIJACK.STARTMENU x

Virus, Spyware, Malware Removal Possible hijack?

Windows XP™, 2000, 2003, NT is it possible to shrink mp3 files

Web Browsers and Email Is Multi language site possible

Virus, Spyware, Malware Removal possible adware infection

Pinned Virus, Spyware, Malware Removal Malware and Spyware Cleaning Guide

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

Sign In

#1
roacham

Posted 01 August 2013 - 10:27 AM

#2
RKinner

Posted 01 August 2013 - 11:05 AM

#3
roacham

Posted 01 August 2013 - 12:23 PM

#4
roacham

Posted 01 August 2013 - 02:30 PM

#5
RKinner

Posted 01 August 2013 - 03:03 PM

#6
roacham

Posted 01 August 2013 - 03:40 PM

#7
roacham

Posted 01 August 2013 - 03:42 PM

#8
roacham

Posted 01 August 2013 - 03:44 PM

#9
roacham

Posted 01 August 2013 - 03:50 PM

#10
roacham

Posted 01 August 2013 - 03:52 PM

#11
RKinner

Posted 01 August 2013 - 03:57 PM

#12
roacham

Posted 01 August 2013 - 08:50 PM

#13
RKinner

Posted 01 August 2013 - 11:40 PM

#14
RKinner

Posted 01 August 2013 - 11:47 PM

#15
roacham

Posted 02 August 2013 - 06:29 AM