Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

My computer gives paged file in non paged area multiple times a day an


  • This topic is locked This topic is locked

#16
lasombrs

lasombrs

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

I think we may have done it. I haven't gotten a bsod and i shut down and restarted several times. I might not be 100% convinced for a few days, but I am wary :)

 

Thank you for your help!

 

Fix result of Farbar Recovery Scan Tool (x86) Version:23-08-2015
Ran by Joanna (2015-08-23 11:36:13) Run:3
Running from C:\Users\Joanna\Desktop
Loaded Profiles: Joanna (Available Profiles: Joanna)
Boot Mode: Normal
 
==============================================
 
fixlist content:
*****************
CreateRestorePoint:
S3 XDva425; \??\C:\Windows\system32\XDva425.sys [X]
S3 XDva511; \??\C:\Windows\system32\XDva511.sys [X]
EmptyTemp:
*****************
 
Restore point was successfully created.
XDva425 => service not found.
XDva511 => service removed successfully.
EmptyTemp: => 130 MB temporary data Removed.
 
 
The system needed a reboot.
 
==== End of Fixlog 11:36:43 ====

  • 0

Advertisements


#17
Bruce1270

Bruce1270

    Trusted Helper

  • Malware Removal
  • 1,603 posts
That's good news. Please stay with me until i declare your machine clean though. Still a bit to check.
  • 0

#18
lasombrs

lasombrs

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
Sure thing! I appreciate all your help!
  • 0

#19
Bruce1270

Bruce1270

    Trusted Helper

  • Malware Removal
  • 1,603 posts
Hi lasombrs

Just a few more steps... :)

Step1 - Malwarebytes Scan

I see you have Malwarebytes installed...
  • Launch Malwarebytes Anti-Malware
  • In Database version section, click Update Now
  • Once the update is done, click Settings>Detection and Protection
  • Make sure that all three boxes under Detection Options are checked
    oGHz2fO.png
  • Go back to Dashboard and click the green Scan Now button.
  • If threats are detected click on Apply actions, the program will ask to reboot the machine.
    MBAMReboot_zps9089ab30.jpg
  • Click Yes.
  • On completion of the scan (or after the reboot) select View Detailed Log
  • Click on Export Button, select Text File, give it the name MBAM Log and save the log to your Desktop.
  • Copy and Paste the contents of the log in your next reply.


    Step2 - ESET online scan


    Vista / 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

    Note: You can use either Internet Explorer or Mozilla FireFox for this Scan.
  • Please go here then click on esetbar_zps93905f48.jpg.
    If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.

    All of the following instructions work with either Internet Explorer or Mozilla FireFox.
  • Select the option YES, I accept the Terms of Use then click on Start.
  • When prompted allow Add-On/Active X to install.
  • Make sure Enable detection of potentially unwanted applications is selected.
  • Click the Advanced Settings link.
  • Make sure Remove found threats is NOT checked.
  • Make sure Scan archives IS checked.
  • Make sure Scan for potentially unsafe applications IS checked.
  • Make sure Enable Anti-Stealth technology IS checked
    2.JPG

  • Now click on Start.
  • The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically. The scan may take several hours.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close, make sure you copy the logfile first!
  • Now click on Finish.
  • Use notepad to open the logfile located at C:\Program Files\ESET\ESET Online Scanner\log.txt
  • Copy and paste that log as a reply to this topic.

    Things for your next post:
  • MBAM.log
  • ESET log
  • How is your computer running now?

  • 0

#20
lasombrs

lasombrs

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 8/24/2015
Scan Time: 3:49:32 PM
Logfile: mbam log.txt
Administrator: Yes
 
Version: 2.1.8.1057
Malware Database: v2015.08.24.03
Rootkit Database: v2015.08.16.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Enabled
 
OS: Windows Vista Service Pack 1
CPU: x86
File System: NTFS
User: Sara
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 296554
Time Elapsed: 12 min, 4 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
C:\$Recycle.Bin\S-1-5-21-4077378911-2981434329-108007331-1000\$RD2NZMG.exe a variant of Win32/OpenCandy.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Windows\system32\roboot.exe.vir a variant of Win32/Systweak.A potentially unwanted application
 
It still seems to be running ok. IE gave me a popup saying it could not access the Eset site, but it seemed to work well in firefox. I typically use Chrome, is that okay? I have all three installed because i tend to run into sites that wont work on various browsers.
 
After my last shut down i am now looping through bsod again and could only access my computer through safemode. Restore points would not fix the issue :/ I ran the whocrashed program you had me run before and got this:
 
System Information (local)
Computer name: Joanna-PC
Windows version: Windows Vista Service Pack 1, 6.0, build: 6001
Windows dir: C:\Windows
Hardware: MXG061 , Dell Inc., 0CF456
CPU: GenuineIntel Intel® Core™2 CPU T7400 @ 2.16GHz Intel586, level: 6
2 logical processors, active mask: 3
RAM: 2145107968 bytes total



Crash Dump Analysis
Crash dump directory: C:\Windows\Minidump

Crash dumps are enabled on your computer.

On Mon 8/24/2015 11:35:58 PM GMT your computer crashed
crash dump file: C:\Windows\Minidump\Mini082415-01.dmp
This was probably caused by the following module: ntkrnlpa.exe (nt+0xA5155)
Bugcheck code: 0x50 (0xFFFFFFFF9F24E2C0, 0x0, 0xFFFFFFFF81C6C360, 0x2)
Error: PAGE_FAULT_IN_NONPAGED_AREA
file path: C:\Windows\system32\ntkrnlpa.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that invalid system memory has been referenced.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.



On Mon 8/24/2015 11:35:58 PM GMT your computer crashed
crash dump file: C:\Windows\memory.dmp
This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xE24CB)
Bugcheck code: 0x50 (0xFFFFFFFF9F24E2C0, 0x0, 0xFFFFFFFF81C6C360, 0x2)
Error: PAGE_FAULT_IN_NONPAGED_AREA
file path: C:\Windows\system32\drivers\nvlddmkm.sys
product: NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 174.31
company: NVIDIA Corporation
description: NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 174.31
Bug check description: This indicates that invalid system memory has been referenced.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 174.31 , NVIDIA Corporation).
Google query: NVIDIA Corporation PAGE_FAULT_IN_NONPAGED_AREA



On Sat 8/22/2015 1:47:41 PM GMT your computer crashed
crash dump file: C:\Windows\Minidump\Mini082215-01.dmp
This was probably caused by the following module: xdva511.sys (XDva511+0x2398)
Bugcheck code: 0x50 (0xFFFFFFFF93A2B318, 0x0, 0xFFFFFFFF9C167398, 0x2)
Error: PAGE_FAULT_IN_NONPAGED_AREA
Bug check description: This indicates that invalid system memory has been referenced.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: xdva511.sys .
Google query: xdva511.sys PAGE_FAULT_IN_NONPAGED_AREA



On Fri 8/21/2015 5:56:03 PM GMT your computer crashed
crash dump file: C:\Windows\Minidump\Mini082115-02.dmp
This was probably caused by the following module: ntkrnlpa.exe (nt+0xA5155)
Bugcheck code: 0x50 (0xFFFFFFFF9E24E2C0, 0x0, 0xFFFFFFFF81C56360, 0x2)
Error: PAGE_FAULT_IN_NONPAGED_AREA
file path: C:\Windows\system32\ntkrnlpa.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that invalid system memory has been referenced.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.



On Fri 8/21/2015 11:00:01 AM GMT your computer crashed
crash dump file: C:\Windows\Minidump\Mini082115-01.dmp
This was probably caused by the following module: ntkrnlpa.exe (nt+0xA5155)
Bugcheck code: 0x50 (0xFFFFFFFF9D04E2C0, 0x0, 0xFFFFFFFF8189F360, 0x2)
Error: PAGE_FAULT_IN_NONPAGED_AREA
file path: C:\Windows\system32\ntkrnlpa.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that invalid system memory has been referenced.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.



On Thu 8/20/2015 12:43:24 AM GMT your computer crashed
crash dump file: C:\Windows\Minidump\Mini081915-01.dmp
This was probably caused by the following module: dxgkrnl.sys (dxgkrnl+0x7AD4F)
Bugcheck code: 0x116 (0xFFFFFFFF83DA6428, 0xFFFFFFFF8B616680, 0x0, 0x2)
Error: VIDEO_TDR_ERROR
file path: C:\Windows\system32\drivers\dxgkrnl.sys
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: DirectX Graphics Kernel
Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
The crash took place in a standard Microsoft module. Your system configuration may be incorrect. Possibly this problem is caused by another driver on your system that cannot be identified at this time.
Google query: Microsoft Corporation VIDEO_TDR_ERROR




Conclusion
6 crash dumps have been found and analyzed. 3 third party drivers have been identified to be causing system crashes on your computer. It is strongly suggested that you check for updates for these drivers on their company websites. Click on the links below to search with Google for updates for these drivers:

dxgkrnl.sys (DirectX Graphics Kernel, Microsoft Corporation)
nvlddmkm.sys (NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 174.31 , NVIDIA Corporation)
xdva511.sys

If no updates for these drivers are available, try searching with Google on the names of these drivers in combination with the errors that have been reported for these drivers. Include the brand and model name of your computer as well in the query. This often yields interesting results from discussions on the web by users who have been experiencing similar problems.


Read the topic general suggestions for troubleshooting system crashes for more information.

Note that it's not always possible to state with certainty whether a reported driver is responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further. 
 

Edited by lasombrs, 24 August 2015 - 05:43 PM.

  • 0

#21
Bruce1270

Bruce1270

    Trusted Helper

  • Malware Removal
  • 1,603 posts
Hi lasombrs
 

I typically use Chrome, is that okay? I have all three installed because i tend to run into sites that wont work on various browsers.


That's fine. Whatever setup works best for you. :)

Noticed your edit - bummer! I'll work on what we can do for this but in meantime please run the next set of instructions.


Step1 - FRST fix


NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.

Open notepad and copy/paste the text in the quotebox below into it:
 

C:\$Recycle.Bin\S-1-5-21-4077378911-2981434329-108007331-1000\$RD2NZMG.exe
EmptyTemp:

  • Save this as fixlist.txt, in the same location as FRST.exe on your desktop.
    FRSTfix.JPG
  • Run FRST by right clicking on it and selecting Run as Administrator and press Fix
  • On completion a log (fixlog.txt) will be generated.
  • Please select all text in this fix, copy (CTRL + C) and then Paste (CTRL + V) in your next reply.


    Step2 - Fresh FRST logs
  • Please run Farbars Recovery Scan Tool again. Run FRST by right clicking on it and selecting Run as Administrator. Allow it to update if it wants to.
  • Please tick the Addition.txt box under Optional Scan.
  • Press Scan button.
  • It will make logs FRST.txt & Addition.txt in the same directory the tool is run.
  • Please copy and paste the FRST.txt and Addition.txt to your reply.


    Step3 - Security check
  • Download Security Check from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

    Things for your next post:
  • fixlog.txt
  • FRST.txt and addition.txt
  • checkup.txt

  • 0

#22
lasombrs

lasombrs

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

I went through all the system restore points I had and finally got back into normal mode. My system restore points keep disappearing though. Maybe because of all the fixes we keep doing? My earliest one is only from 8/25. But anyway on to you list of require info :)

 

Fix result of Farbar Recovery Scan Tool (x86) Version:25-08-2015 02
Ran by Joanna (2015-08-26 12:31:15) Run:4
Running from C:\Users\Joanna\Desktop
Loaded Profiles: Joanna (Available Profiles: Joanna)
Boot Mode: Normal
 
==============================================
 
fixlist content:
*****************
C:\$Recycle.Bin\S-1-5-21-4077378911-2981434329-108007331-1000\$RD2NZMG.exe
EmptyTemp:
*****************
 
"C:\$Recycle.Bin\S-1-5-21-4077378911-2981434329-108007331-1000\$RD2NZMG.exe" => File/Folder not found.
EmptyTemp: => 165.1 MB temporary data Removed.
 
 
The system needed a reboot.
 
==== End of Fixlog 12:31:30 ====
 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-08-2015 02
Ran by Joanna (administrator) on Joanna-PC (26-08-2015 12:39:44)
Running from C:\Users\Joanna\Desktop
Loaded Profiles: Joanna (Available Profiles: Joanna)
Platform: Microsoft® Windows Vista™ Ultimate  Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 7 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.5\GoogleCrashHandler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [976320 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [NvSvc] => RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NVHotkey] => rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
HKU\S-1-5-21-4077378911-2981434329-108007331-1000\...\Run: [Artisan 720(Network)] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGYA.EXE [201216 2010-01-11] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4077378911-2981434329-108007331-1000\...\Run: [GoogleChromeAutoLaunch_30DE51239BAA92A81E36F17671881104] => C:\Program Files\Google\Chrome\Application\chrome.exe [813896 2015-08-18] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v3 Smart Wizard.lnk [2015-08-21]
ShortcutTarget: NETGEAR WG111v3 Smart Wizard.lnk -> C:\Program Files\NETGEAR\WG111v3\WG111v3.exe ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-4077378911-2981434329-108007331-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKU\S-1-5-21-4077378911-2981434329-108007331-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKU\S-1-5-21-4077378911-2981434329-108007331-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{134E0D8E-A0EE-4318-BC5E-A1D1D67561DA}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{59CF2E71-8B67-4C71-B353-7049C42746EE}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{AD274429-5CA1-46A2-8CDB-ECC698DC0C17}: [DhcpNameServer] 75.75.75.75 75.75.76.76
 
FireFox:
========
FF ProfilePath: C:\Users\Joanna\AppData\Roaming\Mozilla\Firefox\Profiles\6w2cpj7y.default
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.5\npGoogleUpdate3.dll [2015-08-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.5\npGoogleUpdate3.dll [2015-08-18] (Google Inc.)
 
Chrome: 
=======
CHR Profile: C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-18]
CHR Extension: (Google Docs) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-18]
CHR Extension: (Google Drive) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-18]
CHR Extension: (Poper Blocker) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2015-08-18]
CHR Extension: (YouTube) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-18]
CHR Extension: (Adblock Plus) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-08-18]
CHR Extension: (Adblock for Youtube™) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-08-18]
CHR Extension: (Google Search) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-18]
CHR Extension: (Google Sheets) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-18]
CHR Extension: (No Name) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngocbkfmikdgphklgmmehbjjlfgdemm [2015-08-22]
CHR Extension: (No Name) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2015-08-22]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-18]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-18]
CHR Extension: (Gmail) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-18]
CHR HKLM\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] - <no Path\update_url>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.goo...ice/update2/crx
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [247296 2008-01-26] (Microsoft Corporation) [File not signed]
R2 Themes; C:\Windows\system32\shsvcs.dll [247296 2008-01-26] (Microsoft Corporation) [File not signed]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-20] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [94936 2015-06-18] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [98520 2015-08-26] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R1 MpKsl4cc43109; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F2CE218-C23A-4CB1-B71A-3D642A530998}\MpKsl4cc43109.sys [39168 2015-08-26] (Microsoft Corporation)
S3 RTL8187B; C:\Windows\System32\DRIVERS\wg111v3.sys [348160 2009-10-14] (NETGEAR Inc.                           )
R1 RtlProt; C:\Windows\System32\DRIVERS\rtlprot.sys [25896 2007-04-23] (Windows ® Codename Longhorn DDK provider)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 PCASp50; System32\Drivers\PCASp50.sys [X]
S3 XDva511; \??\C:\Windows\system32\XDva511.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-08-26 12:39 - 2015-08-26 12:40 - 00011032 _____ C:\Users\Joanna\Desktop\FRST.txt
2015-08-26 11:56 - 2015-08-26 11:56 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-08-25 15:07 - 2015-08-25 15:07 - 00000000 ____D C:\Users\Joanna\AppData\Local\CrashDumps
2015-08-25 11:03 - 2015-08-25 11:04 - 00136312 _____ C:\Windows\Minidump\Mini082515-03.dmp
2015-08-25 10:59 - 2015-08-25 10:59 - 00136312 _____ C:\Windows\Minidump\Mini082515-02.dmp
2015-08-25 09:55 - 2015-08-25 09:55 - 00136312 _____ C:\Windows\Minidump\Mini082515-01.dmp
2015-08-25 09:55 - 2015-08-25 09:55 - 00000000 ____D C:\Windows\Registration
2015-08-24 22:20 - 2015-08-24 22:20 - 00020554 _____ C:\Users\Joanna\Documents\KW DS 8-24-15 phil daily route order.xlsx
2015-08-24 22:02 - 2015-08-24 22:02 - 00026988 _____ C:\Users\Joanna\Downloads\KW DS 8-24-15.xlsx
2015-08-24 15:01 - 2015-08-24 15:01 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-08-24 15:01 - 2015-08-24 15:01 - 00000000 ____D C:\Program Files\Adobe
2015-08-24 14:56 - 2015-08-24 14:56 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\Adobe
2015-08-24 14:53 - 2015-08-24 15:03 - 00000000 ____D C:\Users\Joanna\AppData\Local\Adobe
2015-08-24 14:52 - 2015-08-24 15:01 - 00000000 ____D C:\ProgramData\Adobe
2015-08-23 14:58 - 2015-08-23 14:58 - 00000000 ____D C:\ProgramData\Sun
2015-08-23 14:58 - 2015-08-23 14:58 - 00000000 ____D C:\ProgramData\Oracle
2015-08-23 14:58 - 2015-08-23 14:58 - 00000000 ____D C:\Program Files\Common Files\Java
2015-08-23 14:56 - 2015-08-23 14:56 - 00000000 ____D C:\Program Files\Java
2015-08-23 14:55 - 2015-08-23 14:55 - 00918952 _____ (Oracle Corporation) C:\Users\Joanna\Downloads\jxpiinstall.exe
2015-08-23 14:51 - 2015-08-23 14:53 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\Mozilla
2015-08-23 14:51 - 2015-08-23 14:51 - 00000000 ____D C:\Users\Joanna\AppData\Local\Mozilla
2015-08-23 14:50 - 2015-08-25 09:48 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-08-23 14:50 - 2015-08-25 09:48 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-23 14:50 - 2015-08-23 14:50 - 00000860 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-23 14:50 - 2015-08-23 14:50 - 00000848 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-08-23 14:44 - 2015-08-23 14:45 - 00242768 _____ C:\Users\Joanna\Downloads\Firefox Setup Stub 40.0.2.exe
2015-08-23 11:41 - 2015-08-26 12:39 - 00000000 ____D C:\Users\Joanna\Desktop\malware protection
2015-08-22 19:37 - 2015-08-22 20:08 - 00010156 _____ C:\Users\Joanna\Documents\cace  ipad programs.xlsx
2015-08-22 16:39 - 2015-08-25 09:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2015-08-22 16:39 - 2015-08-25 09:48 - 00000000 ____D C:\Program Files\WhoCrashed
2015-08-22 16:31 - 2015-08-22 16:34 - 00000000 ____D C:\AdwCleaner
2015-08-22 09:48 - 2015-08-22 09:48 - 00139800 _____ C:\Windows\Minidump\Mini082215-01.dmp
2015-08-22 09:45 - 2015-08-22 13:05 - 00035064 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-08-22 09:45 - 2015-08-22 12:36 - 00000000 ____D C:\ProgramData\RogueKiller
2015-08-21 14:18 - 2015-07-05 06:11 - 00246952 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-08-21 14:15 - 2015-08-26 12:31 - 01690112 _____ (Farbar) C:\Users\Joanna\Desktop\FRST.exe
2015-08-21 14:08 - 2015-08-21 14:08 - 00002154 _____ C:\Windows\epplauncher.mif
2015-08-21 14:07 - 2015-08-21 14:07 - 00001828 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2015-08-21 14:06 - 2010-04-05 13:03 - 00902024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-08-21 14:06 - 2010-04-05 13:02 - 00220040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-08-21 14:06 - 2010-04-05 13:02 - 00098184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-08-21 14:06 - 2010-04-05 12:29 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-08-21 14:06 - 2010-04-05 12:29 - 00438272 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-08-21 14:06 - 2010-04-05 12:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-08-21 14:06 - 2010-04-05 10:50 - 00208966 _____ C:\Windows\system32\WFP.TMF
2015-08-21 14:01 - 2015-08-21 14:01 - 00136312 _____ C:\Windows\Minidump\Mini082115-02.dmp
2015-08-21 09:40 - 2015-08-26 12:34 - 00027744 _____ C:\ProgramData\nvModes.001
2015-08-21 09:40 - 2015-08-25 10:45 - 00027744 _____ C:\ProgramData\nvModes.dat
2015-08-21 09:26 - 2015-08-21 14:06 - 00000000 ____D C:\Program Files\Microsoft Security Client
2015-08-21 09:23 - 2015-08-21 17:58 - 00000000 ____D C:\dd78c1615f60e48809650763e848
2015-08-21 09:23 - 2015-08-21 09:23 - 11588952 _____ (Microsoft Corporation) C:\Users\Joanna\Downloads\mseinstall.exe
2015-08-21 09:05 - 2015-08-21 09:05 - 00136312 _____ C:\Windows\Minidump\Mini082115-01.dmp
2015-08-20 21:13 - 2015-08-20 21:17 - 00000000 ____D C:\Users\Joanna\Documents\dump files
2015-08-20 04:39 - 2015-08-20 04:39 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\AVG
2015-08-20 04:39 - 2015-08-20 04:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015
2015-08-20 04:37 - 2015-08-20 04:37 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\AVG2015
2015-08-20 04:36 - 2015-08-20 04:36 - 00000000 ___HD C:\$AVG
2015-08-20 04:36 - 2015-08-20 04:36 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\TuneUp Software
2015-08-20 04:36 - 2015-08-20 04:36 - 00000000 ____D C:\ProgramData\AVG2015
2015-08-20 04:33 - 2015-08-20 07:46 - 00000000 ____D C:\Users\Joanna\AppData\Local\Avg2015
2015-08-20 04:33 - 2015-08-20 04:41 - 00000000 ____D C:\ProgramData\MFAData
2015-08-20 04:33 - 2015-08-20 04:33 - 00000000 ____D C:\Users\Joanna\AppData\Local\MFAData
2015-08-20 04:32 - 2015-08-20 04:39 - 00000000 ____D C:\Users\Joanna\AppData\Local\Avg
2015-08-20 04:32 - 2015-08-20 04:39 - 00000000 ____D C:\Program Files\AVG
2015-08-20 04:32 - 2015-08-20 04:38 - 00000000 ____D C:\Users\Joanna\AppData\Local\AvgSetupLog
2015-08-20 04:32 - 2015-08-20 04:38 - 00000000 ____D C:\ProgramData\Avg
2015-08-19 21:45 - 2015-08-19 21:45 - 00000000 ____D C:\Users\Joanna\Documents\Fiesta
2015-08-19 21:42 - 2015-08-19 21:42 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\FiestaOnline
2015-08-19 21:38 - 2015-08-19 21:38 - 00001611 _____ C:\Users\Joanna\Desktop\Fiesta Online NA.lnk
2015-08-19 21:21 - 2015-08-19 21:21 - 00004608 _____ C:\Users\Joanna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-19 20:45 - 2015-08-25 11:03 - 00000000 ____D C:\Windows\Minidump
2015-08-19 20:45 - 2015-08-19 20:45 - 00200448 _____ C:\Windows\Minidump\Mini081915-01.dmp
2015-08-19 20:44 - 2015-08-25 11:03 - 177366133 _____ C:\Windows\MEMORY.DMP
2015-08-19 20:20 - 2015-08-19 20:20 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gamigo
2015-08-19 19:26 - 2015-08-26 12:10 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-19 19:08 - 2015-08-19 19:08 - 00000000 __SHD C:\found.000
2015-08-19 19:05 - 2008-02-22 13:46 - 01079840 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpluir.dll
2015-08-19 19:05 - 2008-02-22 13:46 - 00764448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcplui.exe
2015-08-19 19:05 - 2008-02-22 13:46 - 00420384 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.cpl
2015-08-19 19:05 - 2008-02-22 13:46 - 00360448 _____ (NVIDIA Corporation) C:\Windows\system32\nvuninst.exe
2015-08-19 19:05 - 2008-02-22 13:46 - 00313888 _____ (NVIDIA Corporation) C:\Windows\system32\nvexpbar.dll
2015-08-19 17:26 - 2015-08-19 17:26 - 00000552 _____ C:\Users\Joanna\AppData\Local\d3d8caps.dat
2015-08-19 17:08 - 2015-08-19 20:05 - 00000000 ____D C:\Gamigo
2015-08-19 16:39 - 2015-08-19 16:47 - 2084663272 _____ (Gamigo) C:\Users\Joanna\Downloads\FiestaOnline_NA.exe
2015-08-19 15:42 - 2009-06-25 16:58 - 00048128 _____ (REDC) C:\Windows\system32\Drivers\rimmptsk.sys
2015-08-19 15:42 - 2009-06-25 16:25 - 00038400 _____ (REDC) C:\Windows\system32\Drivers\rixdptsk.sys
2015-08-19 15:42 - 2009-06-25 16:10 - 00044544 _____ (REDC) C:\Windows\system32\Drivers\rimsptsk.sys
2015-08-19 15:28 - 2007-07-25 12:48 - 00172032 _____ (Ricoh Company,Ltd) C:\Windows\system32\rixdicon.dll
2015-08-19 15:28 - 2004-09-04 03:00 - 00090112 _____ (Sony Corporation) C:\Windows\system32\snymsico.dll
2015-08-19 15:16 - 2015-08-19 15:16 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\Epson
2015-08-19 13:28 - 2015-08-19 13:28 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\Leader Technologies
2015-08-19 13:25 - 2015-08-19 13:25 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\Leadertech
2015-08-19 13:16 - 2007-09-07 17:33 - 00135168 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\EEBAPI.dll
2015-08-19 13:16 - 2007-03-28 18:26 - 00065536 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\EEBUtil.dll
2015-08-19 13:16 - 2006-12-19 18:31 - 00110592 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\EEBDSCVR.dll
2015-08-19 13:16 - 2006-12-19 18:20 - 00077824 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\EBAPI.dll
2015-08-19 13:16 - 2003-12-17 01:01 - 00055808 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\EEBSDKIF.dll
2015-08-19 13:10 - 2015-08-21 12:50 - 00000000 ____D C:\Program Files\EpsonNet
2015-08-19 13:10 - 2010-09-13 15:01 - 00458129 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppui.dll
2015-08-19 13:10 - 2010-09-13 15:01 - 00458129 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppui.dll
2015-08-19 13:10 - 2010-09-13 15:00 - 00475410 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppmon.dll
2015-08-19 13:10 - 2010-09-13 15:00 - 00475410 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppmon.dll
2015-08-19 13:10 - 2008-06-18 11:49 - 00249344 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enspres.dll
2015-08-19 13:10 - 2008-06-18 11:49 - 00249344 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enpres.dll
2015-08-19 13:09 - 2015-08-19 13:09 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\InstallShield
2015-08-19 13:08 - 2015-08-21 12:50 - 00000000 ____D C:\Program Files\Common Files\EPSON
2015-08-19 13:07 - 2015-08-21 12:50 - 00000000 ____D C:\ProgramData\EPSON
2015-08-19 13:07 - 2015-08-19 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2015-08-19 13:07 - 2009-09-30 19:01 - 00063488 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_FD4BGYA.DLL
2015-08-19 13:07 - 2008-11-11 19:00 - 00093696 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_FLBGYA.DLL
2015-08-19 13:06 - 2015-08-19 13:06 - 00000000 ____D C:\Program Files\Epson Software
2015-08-19 13:04 - 2015-08-21 12:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-08-19 13:04 - 2015-08-19 13:04 - 00000767 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2015-08-19 13:04 - 2009-12-09 00:00 - 00341504 _____ (Seiko Epson Corporation) C:\Windows\system32\esw2ud.dll
2015-08-19 13:04 - 2009-10-16 00:00 - 00132560 _____ (Seiko Epson Corporation) C:\Windows\system32\esdevapp.exe
2015-08-19 13:04 - 2009-10-16 00:00 - 00012800 _____ (Seiko Epson Corporation) C:\Windows\system32\escdev.dll
2015-08-19 13:03 - 2015-08-21 12:50 - 00000000 ____D C:\Program Files\epson
2015-08-19 13:03 - 2015-08-19 13:25 - 00000077 _____ C:\Windows\EPART725.ini
2015-08-19 12:56 - 2015-08-19 12:58 - 97958176 _____ C:\Users\Joanna\Downloads\epson13777.exe
2015-08-19 12:37 - 2015-08-19 12:45 - 00000000 ____D C:\Windows\$regcmp$
2015-08-19 12:36 - 2015-08-19 12:36 - 00519856 _____ (iExpert ) C:\Users\Joanna\Downloads\registry-defrag.exe
2015-08-19 11:09 - 2015-08-19 11:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2015-08-19 10:15 - 2015-08-21 09:09 - 00000000 ____D C:\Windows\pss
2015-08-19 09:56 - 2015-08-19 09:57 - 00000000 ____D C:\Windows\system32\vbox
2015-08-19 08:36 - 2015-08-19 19:25 - 00000000 ____D C:\ProgramData\AVAST Software
2015-08-19 08:34 - 2015-08-19 08:35 - 158417712 _____ (AVAST Software) C:\Users\Joanna\Downloads\avast_free_antivirus_setup.exe
2015-08-18 22:44 - 2015-08-21 12:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-08-18 22:41 - 2015-08-26 08:25 - 00000000 ____D C:\Program Files\Microsoft Works
2015-08-18 22:41 - 2015-08-21 12:51 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2015-08-18 22:39 - 2015-08-21 12:51 - 00000000 ____D C:\Program Files\Microsoft.NET
2015-08-18 22:39 - 2015-08-18 22:39 - 00000000 ____D C:\Windows\PCHEALTH
2015-08-18 22:36 - 2015-08-26 12:01 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-18 22:36 - 2015-08-18 22:36 - 00000000 ____D C:\Users\Joanna\AppData\Local\Microsoft Help
2015-08-18 22:23 - 2015-08-18 22:29 - 379284968 _____ (Microsoft Corporation) C:\Users\Joanna\Downloads\MicrosoftInstaller.exe
2015-08-18 21:57 - 2015-08-25 09:48 - 00000000 ____D C:\Users\Joanna\Downloads\EKeyfinder_v0.1beta7_win32
2015-08-18 21:35 - 2015-08-18 21:35 - 01178272 _____ (Magical Jelly Bean ) C:\Users\Joanna\Downloads\KeyFinderInstaller.exe
2015-08-18 21:25 - 2010-06-18 12:43 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2015-08-18 21:17 - 2008-05-08 17:59 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-18 21:17 - 2008-05-08 17:59 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-18 21:17 - 2008-05-08 17:59 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2015-08-18 21:17 - 2008-05-08 17:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-08-18 21:17 - 2008-05-08 17:59 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-08-18 21:17 - 2008-05-08 17:59 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\wshext.dll
2015-08-18 21:17 - 2008-05-08 17:58 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-08-18 21:17 - 2008-05-08 17:58 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-08-18 20:38 - 2015-08-18 20:38 - 00000000 ____D C:\OEMSettings
2015-08-18 20:36 - 2009-10-14 15:07 - 00348160 _____ (NETGEAR Inc. ) C:\Windows\system32\Drivers\wg111v3.sys
2015-08-18 20:35 - 2015-08-21 12:51 - 00000000 ____D C:\Program Files\NETGEAR
2015-08-18 20:35 - 2015-08-18 20:35 - 00001918 _____ C:\Users\Public\Desktop\NETGEAR WG111v3 Smart Wizard.lnk
2015-08-18 20:35 - 2015-08-18 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WG111v3 Smart Wizard
2015-08-18 20:33 - 2015-08-21 12:51 - 00000000 ____D C:\Windows\Downloaded Installations
2015-08-18 20:30 - 2011-02-12 00:28 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2015-08-18 20:28 - 2009-09-10 13:33 - 10626048 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-08-18 20:28 - 2009-09-10 11:21 - 08147456 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-08-18 20:28 - 2009-09-10 11:21 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\unregmp2.exe
2015-08-18 20:28 - 2009-07-14 08:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-08-18 20:28 - 2009-07-14 08:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-08-18 20:28 - 2009-07-14 08:58 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-08-18 20:10 - 2008-10-16 00:47 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-08-18 19:24 - 2015-08-21 12:51 - 00000000 ____D C:\Program Files\Microsoft Office
2015-08-18 19:24 - 2015-08-18 19:24 - 00000000 ____D C:\Program Files\Microsoft Small Business
2015-08-18 18:22 - 2015-08-26 12:33 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-18 18:21 - 2015-08-21 12:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-18 18:21 - 2015-08-21 12:51 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-08-18 18:21 - 2015-08-18 18:21 - 00000901 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-18 18:21 - 2015-08-18 18:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-18 18:21 - 2015-06-18 11:41 - 00094936 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-08-18 18:21 - 2015-06-18 11:41 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-08-18 18:21 - 2015-06-18 11:41 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-08-18 18:18 - 2015-08-18 18:18 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Joanna\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-18 18:09 - 2015-08-18 15:49 - 00000000 ____D C:\ProgramData\Novatel Wireless
2015-08-18 17:59 - 2015-08-21 12:51 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
2015-08-18 17:59 - 2015-08-21 12:51 - 00000000 ____D C:\ProgramData\Norton
2015-08-18 17:59 - 2015-08-21 12:47 - 00000000 ____D C:\Users\Public\Downloads\Norton
2015-08-18 17:58 - 2015-08-18 17:58 - 01110976 _____ (Symantec Corporation) C:\Users\Joanna\Downloads\Norton_Download_Manager.exe
2015-08-18 17:54 - 2015-08-22 01:01 - 00001973 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-18 17:54 - 2015-08-18 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-18 17:53 - 2015-08-26 12:33 - 00000878 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-18 17:53 - 2015-08-26 11:58 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-18 17:52 - 2015-08-19 17:48 - 00000000 ____D C:\Users\Joanna\AppData\Local\Deployment
2015-08-18 17:52 - 2015-08-18 17:54 - 00000000 ____D C:\Users\Joanna\AppData\Local\Google
2015-08-18 17:52 - 2015-08-18 17:54 - 00000000 ____D C:\Program Files\Google
2015-08-18 17:52 - 2015-08-18 17:52 - 00000000 ____D C:\Users\Joanna\AppData\Local\Apps\2.0
2015-08-18 17:42 - 2015-08-26 11:37 - 00100432 _____ C:\Users\Joanna\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-18 17:42 - 2015-08-26 11:37 - 00000680 _____ C:\Users\Joanna\AppData\Local\d3d9caps.dat
2015-08-18 17:42 - 2015-08-25 09:48 - 00000000 ____D C:\Users\Joanna
2015-08-18 17:42 - 2015-08-21 12:51 - 00000000 ___RD C:\Users\Joanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-18 17:42 - 2015-08-21 12:51 - 00000000 ___RD C:\Users\Joanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-18 17:42 - 2015-08-19 11:35 - 00000946 _____ C:\Users\Joanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-18 17:42 - 2015-08-18 20:38 - 00000000 ____D C:\Users\Joanna\AppData\Local\VirtualStore
2015-08-18 17:42 - 2015-08-18 17:42 - 00000951 _____ C:\Users\Joanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-18 17:42 - 2015-08-18 17:42 - 00000917 _____ C:\Users\Joanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2015-08-18 17:42 - 2015-08-18 17:42 - 00000371 _____ C:\Users\Joanna\Pictures.lnk
2015-08-18 17:42 - 2015-08-18 17:42 - 00000020 ___SH C:\Users\Joanna\ntuser.ini
2015-08-18 17:01 - 2015-08-26 12:31 - 00000012 _____ C:\Windows\bthservsdp.dat
2015-08-18 17:00 - 2015-08-18 17:00 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_00_00.Wdf
2015-08-18 16:57 - 2015-08-18 17:01 - 00001355 _____ C:\Windows\TSSysprep.log
2015-08-18 16:57 - 2015-08-18 16:57 - 00000000 ____D C:\Windows\CSC
2015-08-18 16:47 - 2015-08-18 16:47 - 00000000 ____D C:\Windows\Dell
2015-08-18 16:44 - 2015-08-18 16:46 - 00000000 ____D C:\ProgramData\Dell
2015-08-18 16:26 - 2015-08-18 16:26 - 00000000 ____D C:\Users\Joanna\AppData\Roaming\driveridentifier
2015-08-18 16:13 - 2015-08-18 19:28 - 00000000 ____D C:\Users\Joanna\AppData\Local\SterJo Key Finder
2015-08-18 15:50 - 2015-08-18 15:50 - 00000000 ____D C:\Windows\system32\appmgmt
2015-08-16 14:01 - 2015-08-16 14:01 - 00022729 _____ C:\newkey
2015-08-16 14:01 - 2015-08-16 14:01 - 00022729 _____ C:\newfile.enc
2015-08-16 13:11 - 2015-08-16 13:11 - 00000000 ____D C:\temp
2015-08-16 12:45 - 2015-08-19 08:02 - 00000000 ____D C:\Program Files (x86)
2015-08-15 19:19 - 2015-08-26 12:39 - 00000000 ____D C:\FRST
2015-08-08 16:38 - 2015-08-22 19:14 - 00010740 _____ C:\Users\Joanna\Documents\phils route list big print to print.xlsx
2015-08-08 16:35 - 2015-08-15 16:58 - 00010917 _____ C:\Users\Joanna\Documents\phils route list updated.xlsx
2015-08-08 16:10 - 2015-08-22 19:11 - 00010848 _____ C:\Users\Joanna\Documents\daily.xlsx
2015-08-08 15:43 - 2015-08-22 19:10 - 00009918 _____ C:\Users\Joanna\Documents\Joanna Sunday route.xlsx
2015-08-08 14:30 - 2015-08-22 19:08 - 00010597 _____ C:\Users\Joanna\Documents\Scott Sunday route.xlsx
2015-08-08 14:01 - 2015-08-15 17:03 - 00010983 _____ C:\Users\Joanna\Documents\phils route list.xlsx
2015-08-08 12:10 - 2015-08-08 12:31 - 00000000 ____D C:\Users\Joanna\Desktop\sunday 8-9
2015-07-29 16:12 - 2015-07-29 17:15 - 00000000 ____D C:\Users\Joanna\Documents\paper route
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-08-26 12:38 - 2006-11-02 06:33 - 00690960 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-26 12:36 - 2008-01-20 21:37 - 01322664 _____ C:\Windows\WindowsUpdate.log
2015-08-26 12:33 - 2006-11-02 08:46 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-26 12:33 - 2006-11-02 08:46 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-26 12:32 - 2006-11-02 09:00 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-26 12:32 - 2006-11-02 08:59 - 02881630 _____ C:\Windows\PFRO.log
2015-08-26 12:31 - 2006-11-02 09:00 - 00013330 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-08-26 12:03 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\rescache
2015-08-26 11:35 - 2006-11-02 08:46 - 00371808 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-26 08:26 - 2006-11-02 07:18 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-26 08:22 - 2006-11-02 07:18 - 00000000 ____D C:\Program Files\Common Files\System
2015-08-26 08:22 - 2006-11-02 06:23 - 00000219 _____ C:\Windows\win.ini
2015-08-25 09:48 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\spool
2015-08-25 09:48 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\Msdtc
2015-08-25 09:48 - 2006-11-02 06:22 - 27262976 _____ C:\Windows\system32\config\software_previous
2015-08-25 09:48 - 2006-11-02 06:22 - 20971520 _____ C:\Windows\system32\config\components_previous
2015-08-25 09:48 - 2006-11-02 06:22 - 15990784 _____ C:\Windows\system32\config\system_previous
2015-08-25 09:48 - 2006-11-02 06:22 - 00262144 _____ C:\Windows\system32\config\default_previous
2015-08-25 09:48 - 2006-11-02 06:22 - 00057344 _____ C:\Windows\system32\config\sam_previous
2015-08-25 09:48 - 2006-11-02 06:22 - 00024576 _____ C:\Windows\system32\config\security_previous
2015-08-24 22:55 - 2015-07-23 19:57 - 00000000 ____D C:\Users\Joanna\Desktop\End 68 hours of Hunger
2015-08-24 20:05 - 2006-11-02 08:51 - 00069383 _____ C:\Windows\setupact.log
2015-08-21 12:51 - 2011-02-01 15:30 - 00000000 ____D C:\Legacy
2015-08-21 12:51 - 2008-05-01 19:18 - 00000000 ____D C:\Program Files\PC-Doctor 5 for Windows
2015-08-21 12:51 - 2008-04-27 18:38 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-08-21 12:51 - 2008-04-27 18:36 - 00000000 ____D C:\HP
2015-08-21 12:51 - 2007-09-06 01:34 - 00000000 ____D C:\DELL
2015-08-21 12:51 - 2007-09-05 18:15 - 00000000 __RHD C:\MSOCache
2015-08-21 12:51 - 2006-11-02 08:41 - 00000000 ____D C:\Windows\WindowsMobile
2015-08-21 12:51 - 2006-11-02 08:41 - 00000000 ____D C:\Windows\system32\winrm
2015-08-21 12:51 - 2006-11-02 08:41 - 00000000 ____D C:\Windows\system32\WCN
2015-08-21 12:51 - 2006-11-02 08:41 - 00000000 ____D C:\Windows\system32\slmgr
2015-08-21 12:51 - 2006-11-02 08:41 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2015-08-21 12:51 - 2006-11-02 08:35 - 00000000 ____D C:\Windows\system32\XPSViewer
2015-08-21 12:51 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\Web
2015-08-21 12:51 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\Speech
2015-08-21 12:51 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\SMI
2015-08-21 12:51 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\RemInst
2015-08-21 12:51 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\networklist
2015-08-21 12:51 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\MUI
2015-08-21 12:51 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\licensing
2015-08-21 12:51 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\IME
2015-08-21 12:51 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\Help
2015-08-21 12:50 - 2008-04-27 18:38 - 00000000 ____D C:\Program Files\Hewlett-Packard
2015-08-21 12:50 - 2007-05-18 04:50 - 00000000 ____D C:\Program Files\Hp
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Windows\Performance
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Windows\DigitalLocker
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Users\Public\Recorded TV
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Program Files\Windows Sidebar
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Program Files\Windows Photo Gallery
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Program Files\Windows Journal
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Program Files\Windows Defender
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Program Files\Windows Collaboration
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Program Files\Windows Calendar
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Program Files\MSBuild
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Program Files\Movie Maker
2015-08-21 12:50 - 2006-11-02 08:35 - 00000000 ____D C:\Program Files\Microsoft Games
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 __RHD C:\Users\Default
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\com
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\Speech
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\security
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\schemas
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\Resources
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\Provisioning
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\PLA
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\MSAgent
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\Microsoft.NET
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\IME
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\Branding
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Program Files\Windows NT
2015-08-21 12:50 - 2006-11-02 07:18 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-08-21 12:46 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\LogFiles
2015-08-19 20:38 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\LiveKernelReports
2015-08-19 13:25 - 2006-11-02 08:35 - 00000000 ____D C:\Windows\system32\FxsTmp
2015-08-19 13:03 - 2006-11-02 08:35 - 00000000 ____D C:\Windows\twain_32
2015-08-18 22:40 - 2006-11-02 08:35 - 00000000 ____D C:\Windows\ShellNew
2015-08-18 19:51 - 2006-11-02 07:18 - 00000000 ____D C:\Program Files\Common Files\Services
2015-08-18 18:06 - 2006-11-02 08:35 - 00000000 ____D C:\Windows\system32\restore
2015-08-18 17:45 - 2006-11-09 15:57 - 00008192 ___RS C:\BOOTSECT.BAK
2015-08-18 17:45 - 2006-11-02 08:42 - 00041984 ____H C:\Windows\system32\config\BCD-Template.LOG
2015-08-18 17:45 - 2006-11-02 08:35 - 00262144 _____ C:\Windows\system32\config\BCD-Template
2015-08-18 17:45 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\system32\NDF
2015-08-18 17:19 - 2008-04-28 08:51 - 00000000 ____D C:\Windows\panther
2015-08-18 17:17 - 2006-11-02 08:47 - 00003506 _____ C:\Windows\DtcInstall.log
2015-08-17 14:25 - 2007-09-05 18:23 - 00000000 ____D C:\MDT
2015-08-16 15:48 - 2015-06-24 09:06 - 00000000 ____D C:\NPE
2015-08-03 12:32 - 2015-07-14 18:56 - 00000000 ____D C:\Users\Joanna\Documents\PTO
 
==================== Files in the root of some directories =======
 
2015-08-19 17:26 - 2015-08-19 17:26 - 0000552 _____ () C:\Users\Joanna\AppData\Local\d3d8caps.dat
2015-08-18 17:42 - 2015-08-26 11:37 - 0000680 _____ () C:\Users\Joanna\AppData\Local\d3d9caps.dat
2015-08-19 21:21 - 2015-08-19 21:21 - 0004608 _____ () C:\Users\Joanna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-21 09:40 - 2015-08-26 12:34 - 0027744 _____ () C:\ProgramData\nvModes.001
2015-08-21 09:40 - 2015-08-25 10:45 - 0027744 _____ () C:\ProgramData\nvModes.dat
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-08-26 12:38
 
==================== End of FRST.txt ============================
 

Additional scan result of Farbar Recovery Scan Tool (x86) Version:25-08-2015 02
Ran by Joanna (2015-08-26 12:41:03)
Running from C:\Users\Joanna\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-4077378911-2981434329-108007331-500 - Administrator - Disabled)
Guest (S-1-5-21-4077378911-2981434329-108007331-501 - Limited - Disabled)
Joanna (S-1-5-21-4077378911-2981434329-108007331-1000 - Administrator - Enabled) => C:\Users\Joanna
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
EPSON Artisan 720 Series Printer Uninstall (HKLM\...\EPSON Artisan 720 Series) (Version:  - SEIKO EPSON Corporation)
Epson Event Manager (HKLM\...\{03B8AA32-F23C-4178-B8E6-09ECD07EAA47}) (Version: 2.40.0001 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
EpsonNet Setup 3.3 (HKLM\...\{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.3b - SEIKO EPSON CORPORATION)
Fiesta Online NA (HKLM\...\Fiesta Online NA) (Version: 1.02.031 - Gamigo games)
Google Chrome (HKLM\...\Google Chrome) (Version: 44.0.2403.157 - Google Inc.)
Google Update Helper (Version: 1.3.28.5 - Google Inc.) Hidden
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Small Business 2007 (HKLM\...\SMALLBUSINESSR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Mozilla Firefox 40.0.2 (x86 en-US) (HKLM\...\Mozilla Firefox 40.0.2 (x86 en-US)) (Version: 40.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 40.0.2 - Mozilla)
NETGEAR WG111v3 wireless USB 2.0 adapter (HKLM\...\InstallShield_{5396FBD8-8BD7-47F9-92AE-F62F13D5A11D}) (Version: 1.01.10 - NETGEAR)
NETGEAR WG111v3 wireless USB 2.0 adapter (Version: 1.01.10 - NETGEAR) Hidden
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version:  - )
RICOH Media Driver ver.2.11.01.02 (HKLM\...\{2B818257-E6C7-4841-8C29-C5C9A982BCE5}) (Version: 2.11.01.02 - RICOH)
RICOH R5U8xx Media Driver ver.3.62.02 (HKLM\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.62.02 - RICOH)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
WhoCrashed 5.51 (HKLM\...\WhoCrashed_is1) (Version:  - Resplendence Software Projects Sp.)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== Restore Points =========================
 
25-08-2015 10:20:25 Windows Update
25-08-2015 20:55:35 tuesday night
25-08-2015 21:14:35 Windows Update
26-08-2015 08:19:15 Windows Update
26-08-2015 08:39:22 Windows Update
26-08-2015 11:49:46 Windows Update
26-08-2015 12:06:48 Windows Update
26-08-2015 12:28:47 Windows Update
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2006-11-02 06:23 - 2006-09-18 17:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {8B6F163A-164A-45B8-8C8E-994E3DC13149} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-18] (Google Inc.)
Task: {BC8B1D89-FF55-44D5-A131-BD8D6C1644EE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-18] (Google Inc.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (Whitelisted) ==============
 
2009-11-06 14:36 - 2009-11-06 14:36 - 02469888 _____ () C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
2009-03-04 09:52 - 2009-03-04 09:52 - 00372736 _____ () C:\Program Files\NETGEAR\WG111v3\WlanDll.dll
2008-12-29 17:13 - 2008-12-29 17:13 - 00204800 _____ () C:\Program Files\NETGEAR\WG111v3\KJLog.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
 
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-4077378911-2981434329-108007331-1000\...\dell.com -> dell.com
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-4077378911-2981434329-108007331-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\img22.jpg
DNS Servers: 75.75.75.75 - 75.75.76.76
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [TCP Query User{58660F7D-6AEA-4E18-9BB1-342A6EFDA7F0}C:\program files\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{8F82CD55-BFED-487A-9B10-F5C562192849}C:\program files\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files\epson software\event manager\eeventmanager.exe
FirewallRules: [{E58FB9AB-0B50-4EC6-A80A-F172DF70D0AF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{5F67A4A9-234C-4552-B5B7-C87901010272}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3714CAC2-6707-4492-B5D5-6AE0B05D4E12}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (08/26/2015 12:12:07 PM) (Source: Perflib) (EventID: 1017) (User: )
Description: PolicyAgent
 
Error: (08/26/2015 12:12:07 PM) (Source: Perflib) (EventID: 1005) (User: )
Description: OpenIPSecPerformanceDataC:\Windows\System32\ipsecsvc.dllPolicyAgent4
 
Error: (08/26/2015 12:12:07 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4
 
Error: (08/26/2015 12:12:05 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4
 
Error: (08/25/2015 11:04:38 AM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\rtm\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/25/2015 11:00:14 AM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\rtm\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/25/2015 09:55:52 AM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\rtm\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/25/2015 09:43:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/25/2015 09:42:51 AM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\rtm\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/25/2015 09:18:47 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (08/26/2015 12:34:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: TCP/IP NetBIOS Helper11001Restart the service
 
Error: (08/26/2015 12:34:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Windows Event Log1600001Restart the service
 
Error: (08/26/2015 12:34:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: DHCP Client11200001Restart the service
 
Error: (08/26/2015 12:34:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Windows Audio1600001Restart the service
 
Error: (08/26/2015 12:31:41 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 1.205.506.0
 
Update Source: %NT AUTHORITY59
 
Update Stage: 4.8.0204.00
 
Source Path: 4.8.0204.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\SYSTEM
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (08/26/2015 12:19:23 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: ScRegSetValueExWStart%%5
 
Error: (08/26/2015 12:09:22 PM) (Source: HTTP) (EventID: 15016) (User: )
Description: \Device\Http\ReqQueueKerberos
 
Error: (08/26/2015 12:07:27 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: 0x8024200dUpdate for Windows Vista (KB955430){72C7C611-9758-4064-A703-AF551EE98C04}100
 
Error: (08/26/2015 12:07:27 PM) (Source: Microsoft-Windows-Servicing) (EventID: 4375) (User: NT AUTHORITY)
Description: Windows Servicing failed to complete the process of setting package KB955430 (Update) into Resolving(Resolving) state
 
Error: (08/26/2015 12:07:27 PM) (Source: Microsoft-Windows-Servicing) (EventID: 4375) (User: NT AUTHORITY)
Description: Windows Servicing failed to complete the process of setting package KB955430 (Update) into Absent(Absent) state
 
 
Microsoft Office:
=========================
 
CodeIntegrity:
===================================
  Date: 2015-08-26 12:40:28.127
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-08-26 12:40:28.080
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-08-26 12:40:28.034
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-08-26 12:40:27.987
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-08-26 12:40:27.568
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-08-26 12:40:27.521
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-08-26 12:40:27.475
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-08-26 12:40:27.428
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-08-26 12:40:27.155
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-08-26 12:40:27.109
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™2 CPU T7400 @ 2.16GHz
Percentage of memory in use: 63%
Total physical RAM: 2045.73 MB
Available physical RAM: 752.84 MB
Total Virtual: 4332.55 MB
Available Virtual: 2427.78 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:174.25 GB) (Free:137.85 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:0.56 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 186.3 GB) (Disk ID: 80000000)
Partition 1: (Not Active) - (Size=63 MB) - (Type=DE)
Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=174.2 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=OF Extended)
 
==================== End of Addition.txt ============================
 

 Results of screen317's Security Check version 1.008  
 Windows Vista Service Pack 1 x86 (UAC is enabled)  
 Internet Explorer 7 Out of date! 
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
Microsoft Security Essentials   
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:````````` 
 Mozilla Firefox (40.0.2) 
 Google Chrome (44.0.2403.155) 
 Google Chrome (44.0.2403.157) 
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe 
 Microsoft Security Essentials msseces.exe 
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 Malwarebytes Anti-Malware mbamscheduler.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log`````````````````````` 
 
 

  • 0

#23
Bruce1270

Bruce1270

    Trusted Helper

  • Malware Removal
  • 1,603 posts
Hi Lasombrs

In addition to the instructions posted in #21 please download and run the following program. This will give me some technical information on your system to assist with the drivers issue. :)


Scan with Speccy:

Please download the installer for Speccy from here to your desktop.

Right-click on spsetupnnn.exe and select Run as Administrator to install the application >> follow the prompts >> deselect the option Automatically check for updates to Speccy(the others leave as is per your preference) >> Install
Deselect View Release notes but leave Run Speccy vN.NN selected >> Finish
Speccy will now automatically scan your system, this may take some time etc.
Once it has completed scanning >> click on File >> Save as Text File... >> select the Desktop as the save destination >> Save
Close Speccy.
Open the notepad file you have just saved...
Scroll down to the heading Operating System >>next to Serial Number:
Delete/remove the actual serial number as prudent not to have that displayed in a open forum for security reasons etc.
Post the Speccy log in your next reply for my review.
  • 0

#24
lasombrs

lasombrs

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

The other info is posted in reply 22....... this seems to big to post into one reply so half is here, half is in the next reply

 

Summary
Operating System
Windows Vista Ultimate 32-bit SP1
CPU
Intel Mobile Core 2 Duo T7400 @ 2.16GHz 67 °C
Merom 65nm Technology
RAM
2.00GB Dual-Channel DDR2 @ 266MHz (5-4-4-12)
Motherboard
Dell Inc. 0CF456 (Microprocessor) 69 °C
Graphics
Generic PnP Monitor ([email protected])
512MB NVIDIA GeForce Go 7950 GTX (Dell)
Storage
186GB Hitachi HTS722020K9A300 ATA Device (SATA) 45 °C
7GB Wintec Flash Disk USB Device (USB)
Optical Drives
Optiarc DVD+-RW AD-5540A ATA Device
Audio
High Definition Audio Device
Operating System
Windows Vista Ultimate 32-bit SP1
Computer type: Portable
Installation Date: 8/18/2015 5:16:03 PM
Serial Number: *deleted*
Windows Security Center
User Account Control (UAC) Enabled
Notify level 3 - Always Notify
Firewall Enabled
Windows Update
AutoUpdate Notify prior to download
Windows Defender
Windows Defender Disabled
Antivirus
Antivirus Enabled
Company Name Microsoft
Display Name Microsoft Security Essentials
Product Version 4.8.204.0
Virus Signature Database Up to date
.NET Frameworks installed
v3.0 SP1
v2.0 SP1
Internet Explorer
Version 7.0.6001.18000
Environment Variables
USERPROFILE C:\Users\Joanna
SystemRoot C:\Windows
User Variables
TEMP C:\Users\Joanna\AppData\Local\Temp
TMP C:\Users\Joanna\AppData\Local\Temp
Machine Variables
ComSpec C:\Windows\system32\cmd.exe
DFSTRACINGON FALSE
FP_NO_HOST_CHECK NO
NUMBER_OF_PROCESSORS 2
OS Windows_NT
Path C:\Windows\system32
C:\Windows
C:\Windows\System32\Wbem
C:\Program Files\Skype\Phone\
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE x86
PROCESSOR_IDENTIFIER x86 Family 6 Model 15 Stepping 6, GenuineIntel
PROCESSOR_LEVEL 6
PROCESSOR_REVISION 0f06
TEMP C:\Windows\TEMP
TMP C:\Windows\TEMP
TRACE_FORMAT_SEARCH_PATH \\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
USERNAME SYSTEM
windir C:\Windows
Battery
AC Line Online
Battery Charge % 100 %
Battery State High
Remaining Battery Time Unknown
Power Profile
Active power scheme High performance
Hibernation Enabled
Turn Off Monitor after: (On AC Power) 20 min
Turn Off Monitor after: (On Battery Power) 20 min
Turn Off Hard Disk after: (On AC Power) 20 min
Turn Off Hard Disk after: (On Battery Power) 20 min
Suspend after: (On AC Power) Never
Suspend after: (On Battery Power) 60 min
Screen saver Disabled
Uptime
Current Session
Current Time 8/26/2015 5:47:04 PM
Current Uptime 520 sec (0 d, 00 h, 08 m, 40 s)
Last Boot Time 8/26/2015 5:38:24 PM
Services
Running Application Experience
Running Application Information
Running Background Intelligent Transfer Service
Running Base Filtering Engine
Running Bluetooth Support Service
Running Certificate Propagation
Running CNG Key Isolation
Running COM+ Event System
Running Cryptographic Services
Running DCOM Server Process Launcher
Running Desktop Window Manager Session Manager
Running DHCP Client
Running Diagnostic Policy Service
Running Diagnostic System Host
Running Distributed Link Tracking Client
Running DNS Client
Running EpsonBidirectionalService
Running Extensible Authentication Protocol
Running Function Discovery Resource Publication
Running Group Policy Client
Running Human Interface Device Access
Running IKE and AuthIP IPsec Keying Modules
Running IP Helper
Running IPsec Policy Agent
Running KtmRm for Distributed Transaction Coordinator
Running MBAMScheduler
Running MBAMService
Running Microsoft Antimalware Service
Running Microsoft Network Inspection
Running Multimedia Class Scheduler
Running Network Connections
Running Network List Service
Running Network Location Awareness
Running Network Store Interface Service
Running Offline Files
Running Peer Networking Identity Manager
Running Plug and Play
Running Portable Device Enumerator Service
Running Print Spooler
Running Program Compatibility Assistant Service
Running ReadyBoost
Running Remote Access Connection Manager
Running Remote Procedure Call (RPC)
Running Secondary Logon
Running Secure Socket Tunneling Protocol Service
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running Smart Card
Running Software Licensing
Running SSDP Discovery
Running Superfetch
Running System Event Notification Service
Running Tablet PC Input Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Telephony
Running Terminal Services
Running Themes
Running UPnP Device Host
Running User Profile Service
Running WebClient
Running Windows Audio
Running Windows Audio Endpoint Builder
Running Windows Driver Foundation - User-mode Driver Framework
Running Windows Error Reporting Service
Running Windows Event Log
Running Windows Firewall
Running Windows Image Acquisition (WIA)
Running Windows Management Instrumentation
Running Windows Modules Installer
Running Windows Search
Running Windows Time
Running Windows Update
Running WinHTTP Web Proxy Auto-Discovery Service
Running WLAN AutoConfig
Running Workstation
Stopped Application Layer Gateway Service
Stopped Application Management
Stopped Block Level Backup Engine Service
Stopped COM+ System Application
Stopped Computer Browser
Stopped DFS Replication
Stopped Diagnostic Service Host
Stopped Distributed Transaction Coordinator
Stopped Fax
Stopped Function Discovery Provider Host
Stopped Google Update Service (gupdate)
Stopped Google Update Service (gupdatem)
Stopped Health Key and Certificate Management
Stopped Interactive Services Detection
Stopped Internet Connection Sharing (ICS)
Stopped Link-Layer Topology Discovery Mapper
Stopped Microsoft .NET Framework NGEN v2.0.50727_X86
Stopped Microsoft iSCSI Initiator Service
Stopped Microsoft Office Diagnostics Service
Stopped Microsoft Software Shadow Copy Provider
Stopped Mozilla Maintenance Service
Stopped Net.Tcp Port Sharing Service
Stopped Netlogon
Stopped Network Access Protection Agent
Stopped Office Source Engine
Stopped Parental Controls
Start pending Peer Name Resolution Protocol
Stopped Peer Networking Grouping
Stopped Performance Logs & Alerts
Stopped PnP-X IP Bus Enumerator
Stopped PNRP Machine Name Publication Service
Stopped Problem Reports and Solutions Control Panel Support
Stopped Protected Storage
Stopped Quality Windows Audio Video Experience
Stopped Remote Access Auto Connection Manager
Stopped Remote Procedure Call (RPC) Locator
Stopped Remote Registry
Stopped Routing and Remote Access
Stopped Skype Updater
Stopped SL UI Notification Service
Stopped Smart Card Removal Policy
Stopped SNMP Trap
Stopped Terminal Services Configuration
Stopped Terminal Services UserMode Port Redirector
Stopped Thread Ordering Server
Stopped TPM Base Services
Stopped Virtual Disk
Stopped Volume Shadow Copy
Stopped Windows Backup
Stopped Windows CardSpace
Stopped Windows Color System
Stopped Windows Connect Now - Config Registrar
Stopped Windows Defender
Stopped Windows Event Collector
Stopped Windows Installer
Stopped Windows Media Center Extender Service
Stopped Windows Media Center Receiver Service
Stopped Windows Media Center Scheduler Service
Stopped Windows Media Center Service Launcher
Stopped Windows Media Player Network Sharing Service
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows Remote Management (WS-Management)
Stopped Wired AutoConfig
Stopped WMI Performance Adapter
TimeZone
TimeZone GMT -5:00 Hours
Language English (United States)
Location United States
Format English (United States)
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Scheduler
8/26/2015 5:58 PM; GoogleUpdateTaskMachineUA
8/27/2015 2:58 PM; GoogleUpdateTaskMachineCore
Hotfixes
Installed
8/26/2015  Update for Windows Vista (KB959108)
Install this update to resolve an issue with the Microsoft Customer
Experience Improvement Program. After you install this item,
you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
8/26/2015  Skype for Windows desktop 7.3 (KB2876229)
Stay in touch with friends and family with free Skype-to-Skype
calls and messages.
8/26/2015  Update for Windows Vista (KB976470)
Install this update to resolve an issue in which the "Date and
Time" window of Control Panel will incorrectly display an error
message. After you install this item, you may have to restart
your computer.
8/26/2015  Update for Windows Vista (KB2492386)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
8/26/2015  Update for Windows Vista (KB957321)
Install this update to resolve data loss and metadata issues
in the Windows Imaging Component. After you install this item,
you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
8/26/2015  Windows Sound Schemes
When you install this Ultimate Extra, you will be able to switch
from Windows Default to Ultimate Extras Glass or Ultimate Extras
Pearl in Change System Sounds of the Control Panel. This will
allow the user to hear new sounds for common Windows tasks. After
you install this item, you may have to restart your computer.
8/26/2015  Update for Windows Vista (KB957200)
This is a reliability update. This update resolves some performance
and reliability issues in Windows Vista. By applying this update,
you can achieve better performance and responsiveness in various
scenarios. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2920795)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Update for Windows Vista (KB2533623)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
8/26/2015  Update for Windows Vista (KB980248)
Install this update to remove the Windows File Protection from
applicable Windows font files. This update is necessary so the
Office 2010 installer can update the fonts. After you install
this item, you may have to restart your computer.
8/26/2015  Update for Windows Vista (KB959130)
Install this update to resolve an issue with the default Web
browser setting when you click "Browse the Internet Now" in Network
and Sharing Center. After you install this item, you may have
to restart your computer. This update is provided to you and
licensed under the Windows Vista License Terms.
8/26/2015  Ultimate Extras Sounds from Microsoft Tinker
Install this Ultimate Extra to hear new sounds for common windows
tasks by using Ultimate Extras Sounds from Microsoft Tinker.
Users will be able to switch from Windows Default to Microsoft
Tinker Game Sounds in Change System Sounds of Control Panel.
After you install this item, you may have to restart your computer.
This update is provided to you and licensed under the Windows
Vista License Terms.
8/26/2015  Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.205.538.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2881069)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2825645)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office Word 2007 (KB3055052)
A security vulnerability exists in Microsoft Office Word 2007
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Update for Microsoft Office 2007 suites (KB2596620)
Microsoft has released an update for Microsoft Office 2007 suites
. This update provides the latest fixes to Microsoft Office 2007
suites . Additionally, this update contains stability and performance
improvements.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2596650)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2965208)
A security vulnerability exists in Microsoft Office Compatibility
Pack Service Pack 3 that could allow arbitrary code to run when
a maliciously modified file is opened. This update resolves that
vulnerability.
8/26/2015  Security Update for Microsoft Office Excel 2007 (KB3054992)
A security vulnerability exists in Microsoft Office Excel 2007
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2986254)
A security vulnerability exists in Microsoft Office Compatibility
Pack Service Pack 3 that could allow arbitrary code to run when
a maliciously modified file is opened. This update resolves that
vulnerability.
8/26/2015  Security Update for Microsoft Office PowerPoint 2007 (KB3055051)
A security vulnerability exists in Microsoft Office PowerPoint
2007 that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2760585)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2863812)
A security vulnerability exists in Microsoft Office Compatibility
Pack Service Pack 3 that could allow arbitrary code to run when
a maliciously modified file is opened. This update resolves that
vulnerability.
8/26/2015  Update for Microsoft Office 2007 suites (KB2965286)
Microsoft has released an update for Microsoft Office 2007 suites
. This update provides the latest fixes to Microsoft Office 2007
suites . Additionally, this update contains stability and performance
improvements.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2687409)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2760591)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2880508)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2850022)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2880507)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office Publisher 2007 (KB2817565)
A security vulnerability exists in Microsoft Office Publisher
2007 that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB3054890)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Update for Microsoft Office 2007 suites (KB2596787)
Microsoft has released an update for Microsoft Office 2007 suites
. This update provides the latest fixes to Microsoft Office 2007
suites . Additionally, this update contains stability and performance
improvements.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2837610)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB3054888)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2596927)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2596825)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Update for Microsoft Script Editor Help (KB963671)
This update installs the latest assistance content for the Microsoft
Script Editor Help file that is included with the 2007 Office
System.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2817330)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office PowerPoint 2007 (KB2596912)
A security vulnerability exists in Microsoft Office PowerPoint
2007 that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2596871)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2596754)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2597969)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office 2007 suites (KB2596792)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
8/26/2015  Security Update for Microsoft Office InfoPath 2007 (KB2687440)
A security vulnerability exists in Microsoft Office InfoPath
2007 that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
8/26/2015  Update for Microsoft Office Publisher 2007 Help (KB963667)
This update installs the latest assistance content for the Microsoft
Office Publisher 2007 Help file and the Office Publisher 2007
Developer Help file.
8/26/2015  Update for Microsoft Office PowerPoint 2007 Help (KB963669)
This update installs the latest assistance content for the Microsoft
Office PowerPoint 2007 Help file and the Office PowerPoint 2007
Developer Help file.
8/26/2015  Update for the 2007 Microsoft Office System Help for Common Features (KB963673)
This update installs the latest assistance content for the Microsoft
Office 2007 Help file.
8/26/2015  Update for Microsoft Office Word 2007 Help (KB963665)
This update installs the latest assistance content for the Microsoft
Office Word 2007 Help file and the Office Word 2007 Developer
Help file.
8/26/2015  Update for the 2007 Microsoft Office System (KB967642)
This update fixes an error that may occur when installing the
Microsoft Office suite Service Packs.
8/26/2015  Update for Microsoft Office Excel 2007 Help (KB963678)
This update installs the latest assistance content for the Microsoft
Office Excel 2007 Help file and the Office Excel 2007 Developer
Help file.
8/26/2015  The 2007 Microsoft Office Suite Service Pack 3 (SP3)
Service Pack 3 provides the latest updates to the 2007 Microsoft
Office Suite. This update also applies to Microsoft Office Project,
Microsoft Office SharePoint Designer, Microsoft Office Visio,
and Visual Web Developer.
8/26/2015  Update for Microsoft Office 2007 suites (KB2767916)
Microsoft has released an update for Microsoft Office 2007 suites
. This update provides the latest fixes to Microsoft Office 2007
suites . Additionally, this update contains stability and performance
improvements.
8/26/2015  Security Update for Windows Vista (KB982799)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/26/2015  Update for Windows Vista (KB951978)
Install this update to resolve an issue in VBScript/JScript scripts
from CScript\WScript hosts, certain built-ins may not function
correctly when Standards and Formats in Regional Settings is
changed. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
8/26/2015  Security Update for Windows Vista (KB2491683)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/26/2015  Update for Windows Vista (KB972145)
Install this update to resolve a compliance issue with Windows
Media Player and Set Program Access and Computer Defaults. After
you install this item, you may have to restart your computer.
8/26/2015  Update for Windows Vista (KB975929)
Both the Meiryo UI font and the Meiryo UI Bold font are included
in this update. These new fonts let an application optimally
display Kana characters in the Ribbon UI component and in other
parts of the user interface, especially in areas where text area
is limited. After you install this item, you may have to restart
your computer.
8/24/2015  Update for Microsoft Office Outlook 2007 Junk Email Filter (KB3055023)
This update provides the Junk E-mail Filter in Microsoft Office
Outlook 2007 Junk Email Filter with a more current definition
of which e-mail messages should be considered junk e-mail.
8/24/2015  Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2880505)
This update provides the Junk E-mail Filter in Microsoft Office
Outlook 2007 Junk Email Filter with a more current definition
of which e-mail messages should be considered junk e-mail.
8/24/2015  Update for the 2007 Microsoft Office System (KB967642)
This update fixes an error that may occur when installing the
Microsoft Office suite Service Packs.
8/24/2015  The 2007 Microsoft Office Suite Service Pack 3 (SP3)
Service Pack 3 provides the latest updates to the 2007 Microsoft
Office Suite. This update also applies to Microsoft Office Project,
Microsoft Office SharePoint Designer, Microsoft Office Visio,
and Visual Web Developer.
8/24/2015  Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2825642)
This update provides the Junk E-mail Filter in Microsoft Office
Outlook 2007 Junk Email Filter with a more current definition
of which e-mail messages should be considered junk e-mail.
8/24/2015  Update for Microsoft Office 2007 suites (KB2767916)
Microsoft has released an update for Microsoft Office 2007 suites
. This update provides the latest fixes to Microsoft Office 2007
suites . Additionally, this update contains stability and performance
improvements.
8/24/2015  Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.205.364.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/22/2015  Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.205.255.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/21/2015  Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.205.102.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/21/2015  Hotfix for Windows (KB981889)
Fix for KB981889
8/21/2015  Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.205.93.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/21/2015  Hotfix for Windows (KB981889)
Fix for KB981889
8/19/2015  Security Update for Windows Vista (KB958644)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
8/18/2015  Intel driver update for Intel® Wireless WiFi Link 4965AGN
This driver was provided by Intel for support of Intel Wireless
WiFi Link 4965AGN
8/18/2015  Ricoh Company driver update for Ricoh xD-Picture Card Controller
This driver was provided by Ricoh Company for support of Ricoh
xD-Picture Card Controller
8/18/2015  Definition Update for Windows Defender - KB915597 (Definition 1.203.2523.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/18/2015  nVidia - Display - NVIDIA GeForce Go 7950 GTX
nVidia Display software update released in February, 2008
Not Installed
8/26/2015  Windows Live Essentials
Installation Status Failed
Windows Live Essentials provides a set of free programs that
help you stay in touch with the people you care about most, edit
and share your photos and memories, and even help you keep your
kids safer online. Programs include Windows Live Messenger, Mail,
Writer, Photo Gallery, Family Safety, Toolbar, and Movie Maker.
8/26/2015  Microsoft Tinker
Installation Status Failed
Install this Ultimate Extra to play Microsoft Tinker from the
Games Folder. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
8/26/2015  Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.205.538.0)
Installation Status Canceled
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/26/2015  Update for Windows Vista (KB955430)
Installation Status Failed
Install this update to enable future updates to install successfully
on all editions of Windows Vista. This update may be required
before selected future updates can be installed. After you install
this item, it cannot be removed. This update is provided to you
and licensed under the Windows Vista License Terms.
8/26/2015  Update for Microsoft Script Editor Help (KB963671)
Installation Status Failed
This update installs the latest assistance content for the Microsoft
Script Editor Help file that is included with the 2007 Office
System.
8/25/2015  Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.205.506.0)
Installation Status Failed
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/19/2015  Security Update for Windows Vista (KB982665)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/19/2015  Security Update for Windows Vista (KB982665)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB958644)
Installation Status Failed
A security issue has been identified that could allow an authenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB2378111)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB981322)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2423089)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB972270)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2207566)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
8/18/2015  Update for Windows Vista (KB2524375)
Installation Status Failed
Install this update to resolve an issue which requires an update
to the certificate revocation list on Windows systems and to
keep your systems certificate list up to date. After you install
this update, you may have to restart your system.
8/18/2015  Security Update for Windows Vista (KB2507618)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB953733)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated,
remote attacker to compromise your Microsoft Windows-based system
and gain access to information. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
8/18/2015  Security Update for .NET Framework 3.5 on Windows Vista SP1 and Windows Server 2008 x86 (KB983587)
Installation Status Failed
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
8/18/2015  Security Update for Windows Vista (KB2419640)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for .NET Framework 3.5, Windows Vista SP1, and Windows Server 2008 x86 (KB2478657)
Installation Status Failed
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
8/18/2015  Update for Windows Vista (KB959108)
Installation Status Failed
Install this update to resolve an issue with the Microsoft Customer
Experience Improvement Program. After you install this item,
you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB967723)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2511455)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB970710)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Update for Windows Vista (KB973687)
Installation Status Failed
Install this update to prevent applications from sending too
many HTTP requests while a well-known Document Type Definition
(DTD) is included. After you install this item, you may have
to restart your computer.
8/18/2015  Security Update for Windows Vista (KB2535512)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2393802)
Installation Status Failed
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB975467)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
8/18/2015  Security Update for Windows Vista (KB2506212)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB978542)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB982665)
Installation Status Succeeded With Errors
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Media Format Runtime 11 for Windows Vista (KB968816)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2508429)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2536276)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2509553)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB960803)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB979482)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB973507)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB979687)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Microsoft .NET Framework 3.5, Windows Vista SP1, and Windows Server 2008 Security Update x86 (KB979913)
Installation Status Failed
A security issue has been identified that could allow an attacker
to tamper with digitally signed content without being detected,
when this content is being consumed by an application that makes
use of the Microsoft .NET Framework on a Windows-based system.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
8/18/2015  Security Update for Windows Vista (KB956802)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB2347290)
Installation Status Failed
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB952004)
Installation Status Failed
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB971657)
Installation Status Failed
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB982132)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2555917)
Installation Status Failed
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2503665)
Installation Status Failed
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Update for Windows Vista (KB971029)
Installation Status Failed
Install this update to restrict AutoRun entries in the AutoPlay
dialog to only CD and DVD drives. After you install this item,
you may have to restart your computer.
8/18/2015  Security Update for Windows Vista (KB950974)
Installation Status Failed
A security issue has been identified in Event System on Microsoft
Windows based systems that could allow an attacker to compromise
your Microsoft Windows-based system and gain control over it.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB2478935)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB954154)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB981997)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2536275)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
8/18/2015  Security Update for .NET Framework 3.5, Windows Vista SP1, and Windows Server 2008 x86 (KB2518863)
Installation Status Failed
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain complete control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
8/18/2015  Update for Windows Vista (KB976470)
Installation Status Failed
Install this update to resolve an issue in which the "Date and
Time" window of Control Panel will incorrectly display an error
message. After you install this item, you may have to restart
your computer.
8/18/2015  Security Update for Windows Vista (KB975558)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2510581)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Windows Search 4.0 for Windows Vista (KB940157)
Installation Status Failed
Windows Search 4.0 helps you to find, preview, and use your documents,
e-mail, music, photos, and other items. On an upgrade from previous
versions, you will need to rebuild your index. After you install
this item, you may have to restart your computer.
8/18/2015  Security Update for Windows Vista (KB958623)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB961501)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB2476490)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2387149)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB982799)
Installation Status Failed
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Cumulative Update for Media Center for Windows Vista (KB982480)
Installation Status Failed
Install this update to resolve issues with Media Center for Windows
Vista. For a complete listing of the issues that are included
in this cumulative update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
8/18/2015  Security Update for Windows Vista (KB958624)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Update for Windows Vista (KB2492386)
Installation Status Failed
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
8/18/2015  Security Update for Windows Vista Service Pack 1 (KB979688)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB978601)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Update for Windows Vista (KB968389)
Installation Status Failed
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
8/18/2015  Update for Windows Vista (KB955020)
Installation Status Failed
Install this update to add words to the English and German standard
dictionaries. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
8/18/2015  Update for Windows Vista (KB940510)
Installation Status Failed
Install this update to enable Windows Vista to detect software
that may bypass product activation and interfere with normal
Windows operation. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB2281679)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB956572)
Installation Status Failed
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB2479943)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB977816)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB978338)
Installation Status Failed
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
8/18/2015  Security Update for Windows Vista (KB2412687)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Update for Windows Vista (KB952287)
Installation Status Failed
Install this update to resolve an issue in which a malfunction
or data loss occurs when using Microsoft Data Access Components
(MDAC) components on computers that are running Windows Vista
or Windows Server 2008. After you install this item, you may
have to restart your computer. This update is provided to you
and licensed under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB975562)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2483185)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2305420)
Installation Status Failed
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2544893)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
8/18/2015  Security Update for Windows Vista (KB959426)
Installation Status Failed
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Update for Windows Vista (KB957321)
Installation Status Failed
Install this update to resolve data loss and metadata issues
in the Windows Imaging Component. After you install this item,
you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB2442962)
Installation Status Failed
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB979309)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2079403)
Installation Status Failed
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Update for Windows Vista (KB957200)
Installation Status Failed
This is a reliability update. This update resolves some performance
and reliability issues in Windows Vista. By applying this update,
you can achieve better performance and responsiveness in various
scenarios. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB953155)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
8/18/2015  Update for Windows Vista (KB955302)
Installation Status Failed
This is a reliability update. This update resolves some performance
and reliability issues in Windows Vista. By applying this update,
you can achieve better performance and responsiveness in various
scenarios. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
8/18/2015  Cumulative Security Update for ActiveX Killbits for Windows Vista (KB2508272)
Installation Status Failed
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
8/18/2015  Update for Windows Vista (KB2443685)
Installation Status Failed
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2011. After you install this item, you
may have to restart your computer.
8/18/2015  Security Update for Windows Vista (KB973540)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Update for Rights Management Services Client for Windows Vista (KB979099)
Installation Status Failed
Install this update to resolve issues caused by manifest expiration
in AD RMS enabled applications. This update will fix any existing
issues in addition to addressing any future application manifest
expirations. After you install this item, you may have to restart
any running AD RMS enabled applications.
8/18/2015  Microsoft .NET Framework 3.5 Service Pack 1 and .NET Framework 3.5 Family Update (KB951847) x86
Installation Status Failed
The Microsoft .NET Framework 3.5 Service Pack 1 is a full cumulative
update that contains many new features building incrementally
upon .NET Framework 2.0, 3.0, 3.5, and includes cumulative servicing
updates to the .NET Framework 2.0 and the .NET Framework 3.0
subcomponents. The .NET Framework 3.5 Family Update provides
important application compatibility updates. This update is provided
to you and licensed under the Windows Vista and Windows Server
2008 License Terms.
8/18/2015  Security Update for Windows Vista (KB952069)
Installation Status Failed
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Update for Windows Vista (KB951978)
Installation Status Failed
Install this update to resolve an issue in VBScript/JScript scripts
from CScript\WScript hosts, certain built-ins may not function
correctly when Standards and Formats in Regional Settings is
changed. After you install this item, you may have to restart
your computer. This update is provided to you and licensed under
the Windows Vista License Terms.
8/18/2015  Update for Windows Vista (KB2533623)
Installation Status Failed
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
8/18/2015  Update for Windows Vista (KB980248)
Installation Status Failed
Install this update to remove the Windows File Protection from
applicable Windows font files. This update is necessary so the
Office 2010 installer can update the fonts. After you install
this item, you may have to restart your computer.
8/18/2015  Security Update for Windows Vista (KB2507938)
Installation Status Failed
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB974571)
Installation Status Failed
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
8/18/2015  Update for Windows Vista (KB959130)
Installation Status Failed
Install this update to resolve an issue with the default Web
browser setting when you click "Browse the Internet Now" in Network
and Sharing Center. After you install this item, you may have
to restart your computer. This update is provided to you and
licensed under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB970238)
Installation Status Failed
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system. This update is provided to you and licensed
under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB2481109)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Microsoft .NET Framework 3.5, Windows Vista SP1, and Windows Server 2008 x86 (KB2416469)
Installation Status Failed
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
8/18/2015  Update for Windows Vista (KB973917)
Installation Status Failed
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
8/18/2015  Security Update for Windows Vista (KB978886)
Installation Status Failed
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB974318)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB973565)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2296011)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB2491683)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Vista (KB954459)
Installation Status Failed
A security issue has been identified in Microsoft XML Core Services
(MSXML) that could allow an attacker to compromise your Windows-based
system and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. This update is provided
to you and licensed under the Windows Vista License Terms.
8/18/2015  Security Update for Windows Vista (KB975560)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Security Update for Windows Media Format Runtime 11 for Windows Vista (KB954155)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Update for Windows Vista (KB2541763)
Installation Status Failed
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
8/18/2015  Windows PowerShell 2.0 and WinRM 2.0 for Windows Vista (KB968930)
Installation Status Failed
The Windows Management Framework Core package includes Windows
PowerShell 2.0 and Windows Remote Management (WinRM) 2.0. For
more information on the Windows Management Framework, see http://support.microsoft.com/kb/968929.
8/18/2015  Update for Windows Vista (KB972145)
Installation Status Failed
Install this update to resolve a compliance issue with Windows
Media Player and Set Program Access and Computer Defaults. After
you install this item, you may have to restart your computer.
8/18/2015  Security Update for Windows Vista (KB973768)
Installation Status Failed
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
8/18/2015  Update for Windows Vista (KB975929)
Installation Status Failed
Both the Meiryo UI font and the Meiryo UI Bold font are included
in this update. These new fonts let an application optimally
display Kana characters in the Ribbon UI component and in other
parts of the user interface, especially in areas where text area
is limited. After you install this item, you may have to restart
your computer.

  • 0

#25
lasombrs

lasombrs

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
System Folders
Application Data C:\ProgramData
Cookies C:\Users\Joanna\AppData\Roaming\Microsoft\Windows\Cookies
Desktop C:\Users\Joanna\Desktop
Documents C:\Users\Public\Documents
Fonts C:\Windows\Fonts
Global Favorites C:\Users\Joanna\Favorites
Internet History C:\Users\Joanna\AppData\Local\Microsoft\Windows\History
Local Application Data C:\Users\Joanna\AppData\Local
Music C:\Users\Public\Music
Path for burning CD C:\Users\Joanna\AppData\Local\Microsoft\Windows\Burn\Burn
Physical Desktop C:\Users\Joanna\Desktop
Pictures C:\Users\Public\Pictures
Program Files C:\Program Files
Public Desktop C:\Users\Public\Desktop
Start Menu C:\ProgramData\Microsoft\Windows\Start Menu
Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs
Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Templates C:\ProgramData\Microsoft\Windows\Templates
Temporary Internet Files C:\Users\Joanna\AppData\Local\Microsoft\Windows\Temporary Internet Files
User Favorites C:\Users\Joanna\Favorites
Videos C:\Users\Public\Videos
Windows Directory C:\Windows
Windows/System C:\Windows\system32
Process List
audiodg.exe
Process ID 1304
User LOCAL SERVICE
Domain NT AUTHORITY
Memory Usage 9.28 MB
Peak Memory Usage 14 MB
chrome.exe
Process ID 4000
User Joanna
Domain Joanna-PC
Path C:\Program Files\Google\Chrome\Application\chrome.exe
Memory Usage 24 MB
Peak Memory Usage 24 MB
chrome.exe
Process ID 2596
User Joanna
Domain Joanna-PC
Path C:\Program Files\Google\Chrome\Application\chrome.exe
Memory Usage 73 MB
Peak Memory Usage 80 MB
chrome.exe
Process ID 1764
User Joanna
Domain Joanna-PC
Path C:\Program Files\Google\Chrome\Application\chrome.exe
Memory Usage 23 MB
Peak Memory Usage 24 MB
chrome.exe
Process ID 4056
User Joanna
Domain Joanna-PC
Path C:\Program Files\Google\Chrome\Application\chrome.exe
Memory Usage 4.41 MB
Peak Memory Usage 4.51 MB
chrome.exe
Process ID 2616
User Joanna
Domain Joanna-PC
Path C:\Program Files\Google\Chrome\Application\chrome.exe
Memory Usage 124 MB
Peak Memory Usage 140 MB
chrome.exe
Process ID 3984
User Joanna
Domain Joanna-PC
Path C:\Program Files\Google\Chrome\Application\chrome.exe
Memory Usage 20 MB
Peak Memory Usage 21 MB
chrome.exe
Process ID 4524
User Joanna
Domain Joanna-PC
Path C:\Program Files\Google\Chrome\Application\chrome.exe
Memory Usage 173 MB
Peak Memory Usage 268 MB
chrome.exe
Process ID 1744
User Joanna
Domain Joanna-PC
Path C:\Program Files\Google\Chrome\Application\chrome.exe
Memory Usage 23 MB
Peak Memory Usage 23 MB
chrome.exe
Process ID 944
User Joanna
Domain Joanna-PC
Path C:\Program Files\Google\Chrome\Application\chrome.exe
Memory Usage 22 MB
Peak Memory Usage 24 MB
csrss.exe
Process ID 584
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 5.06 MB
Peak Memory Usage 34 MB
csrss.exe
Process ID 656
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 15 MB
Peak Memory Usage 34 MB
dwm.exe
Process ID 396
User Joanna
Domain Joanna-PC
Path C:\Windows\system32\Dwm.exe
Memory Usage 4.22 MB
Peak Memory Usage 6.33 MB
eEBSvc.exe
Process ID 1104
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
Memory Usage 2.73 MB
Peak Memory Usage 5.09 MB
EEventManager.exe
Process ID 12
User Joanna
Domain Joanna-PC
Path C:\Program Files\Epson Software\Event Manager\EEventManager.exe
Memory Usage 6.82 MB
Peak Memory Usage 8.14 MB
explorer.exe
Process ID 560
User Joanna
Domain Joanna-PC
Path C:\Windows\Explorer.EXE
Memory Usage 31 MB
Peak Memory Usage 57 MB
GoogleCrashHandler.exe
Process ID 796
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Google\Update\1.3.28.5\GoogleCrashHandler.exe
Memory Usage 724 KB
Peak Memory Usage 3.64 MB
lsass.exe
Process ID 740
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsass.exe
Memory Usage 6.96 MB
Peak Memory Usage 8.37 MB
lsm.exe
Process ID 752
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsm.exe
Memory Usage 3.24 MB
Peak Memory Usage 3.83 MB
mbam.exe
Process ID 2988
User Joanna
Domain Joanna-PC
Path C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
Memory Usage 18 MB
Peak Memory Usage 40 MB
mbamscheduler.exe
Process ID 2296
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
Memory Usage 5.52 MB
Peak Memory Usage 8.80 MB
mbamservice.exe
Process ID 2724
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
Memory Usage 95 MB
Peak Memory Usage 298 MB
MsMpEng.exe
Process ID 1012
User SYSTEM
Domain NT AUTHORITY
Path c:\Program Files\Microsoft Security Client\MsMpEng.exe
Memory Usage 79 MB
Peak Memory Usage 143 MB
msseces.exe
Process ID 2120
User Joanna
Domain Joanna-PC
Path C:\Program Files\Microsoft Security Client\msseces.exe
Memory Usage 6.61 MB
Peak Memory Usage 11 MB
NisSrv.exe
Process ID 3464
User LOCAL SERVICE
Domain NT AUTHORITY
Path c:\Program Files\Microsoft Security Client\NisSrv.exe
Memory Usage 8.39 MB
Peak Memory Usage 34 MB
rundll32.exe
Process ID 2792
User Joanna
Domain Joanna-PC
Path C:\Windows\System32\rundll32.exe
Memory Usage 3.07 MB
Peak Memory Usage 3.68 MB
rundll32.exe
Process ID 2784
User Joanna
Domain Joanna-PC
Path C:\Windows\System32\rundll32.exe
Memory Usage 4.17 MB
Peak Memory Usage 8.88 MB
rundll32.exe
Process ID 3616
User Joanna
Domain Joanna-PC
Path C:\Windows\System32\rundll32.exe
Memory Usage 4.27 MB
Peak Memory Usage 5.56 MB
SearchIndexer.exe
Process ID 3164
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchIndexer.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
SearchProtocolHost.exe
Process ID 5968
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchProtocolHost.exe
Memory Usage 5.98 MB
Peak Memory Usage 5.98 MB
services.exe
Process ID 692
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\services.exe
Memory Usage 5.77 MB
Peak Memory Usage 8.00 MB
setup_wm.exe
Process ID 3660
User Joanna
Domain Joanna-PC
Path C:\Program Files\Windows Media Player\setup_wm.exe
Memory Usage 6.34 MB
Peak Memory Usage 6.46 MB
sidebar.exe
Process ID 2800
User Joanna
Domain Joanna-PC
Path C:\Program Files\Windows Sidebar\sidebar.exe
Memory Usage 22 MB
Peak Memory Usage 27 MB
Skype.exe
Process ID 3652
User Joanna
Domain Joanna-PC
Path C:\Program Files\Skype\Phone\Skype.exe
Memory Usage 39 MB
Peak Memory Usage 101 MB
SLsvc.exe
Process ID 1356
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\SLsvc.exe
Memory Usage 3.20 MB
Peak Memory Usage 12 MB
smss.exe
Process ID 500
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 588 KB
Peak Memory Usage 732 KB
Speccy.exe
Process ID 5452
User Joanna
Domain Joanna-PC
Path C:\Program Files\Speccy\Speccy.exe
Memory Usage 17 MB
Peak Memory Usage 17 MB
spoolsv.exe
Process ID 1888
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\spoolsv.exe
Memory Usage 6.74 MB
Peak Memory Usage 9.53 MB
svchost.exe
Process ID 1220
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 67 MB
Peak Memory Usage 111 MB
svchost.exe
Process ID 2240
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 3.17 MB
Peak Memory Usage 3.62 MB
svchost.exe
Process ID 3016
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 5.24 MB
Peak Memory Usage 6.22 MB
svchost.exe
Process ID 3072
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 1.82 MB
Peak Memory Usage 2.02 MB
svchost.exe
Process ID 1232
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 230 MB
Peak Memory Usage 302 MB
svchost.exe
Process ID 2856
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 3.80 MB
Peak Memory Usage 5.04 MB
svchost.exe
Process ID 1932
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 10 MB
Peak Memory Usage 56 MB
svchost.exe
Process ID 1392
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 9.57 MB
Peak Memory Usage 12 MB
svchost.exe
Process ID 896
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 5.54 MB
Peak Memory Usage 6.05 MB
svchost.exe
Process ID 972
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 5.06 MB
Peak Memory Usage 5.80 MB
svchost.exe
Process ID 1340
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 4.07 MB
Peak Memory Usage 4.82 MB
svchost.exe
Process ID 1632
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 12 MB
Peak Memory Usage 15 MB
svchost.exe
Process ID 1196
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
System
Process ID 4
Memory Usage 2.11 MB
Peak Memory Usage 14 MB
System Idle Process
Process ID 0
taskeng.exe
Process ID 636
User Joanna
Domain Joanna-PC
Path C:\Windows\system32\taskeng.exe
Memory Usage 7.92 MB
Peak Memory Usage 10 MB
taskeng.exe
Process ID 124
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\taskeng.exe
Memory Usage 4.95 MB
Peak Memory Usage 5.34 MB
TrustedInstaller.exe
Process ID 5368
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\servicing\TrustedInstaller.exe
Memory Usage 20 MB
Peak Memory Usage 34 MB
WG111v3.exe
Process ID 2996
User Joanna
Domain Joanna-PC
Path C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
Memory Usage 6.43 MB
Peak Memory Usage 9.82 MB
wininit.exe
Process ID 640
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wininit.exe
Memory Usage 3.02 MB
Peak Memory Usage 4.03 MB
winlogon.exe
Process ID 716
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\winlogon.exe
Memory Usage 4.86 MB
Peak Memory Usage 6.35 MB
WmiPrvSE.exe
Process ID 4856
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 9.87 MB
Peak Memory Usage 9.87 MB
WmiPrvSE.exe
Process ID 4396
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 5.76 MB
Peak Memory Usage 5.76 MB
wmplayer.exe
Process ID 3928
User Joanna
Domain Joanna-PC
Path C:\Program Files\Windows Media Player\wmplayer.exe
Memory Usage 29 MB
Peak Memory Usage 30 MB
wuauclt.exe
Process ID 4744
User Joanna
Domain Joanna-PC
Path C:\Windows\system32\wuauclt.exe
Memory Usage 5.06 MB
Peak Memory Usage 5.08 MB
WUDFHost.exe
Process ID 3492
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\WUDFHost.exe
Memory Usage 5.32 MB
Peak Memory Usage 5.91 MB
Security Options
Accounts: Administrator account status Disabled
Accounts: Guest account status Disabled
Accounts: Limit local account use of blank passwords to console logon only Enabled
Accounts: Rename administrator account Administrator
Accounts: Rename guest account Guest
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Not Defined
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Not Defined
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Not Defined
Devices: Restrict floppy access to locally logged-on user only Not Defined
Domain controller: Allow server operators to schedule tasks Not Defined
Domain controller: LDAP server signing requirements Not Defined
Domain controller: Refuse machine account password changes Not Defined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Disabled
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Not Defined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 14 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Disabled
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session 15 minutes
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Network access: Allow anonymous SID/Name translation Disabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of credentials or .NET Passports for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously netlogon,lsarpc,samr,browser
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion
Network access: Remotely accessible registry paths and sub-paths System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog
Network access: Restrict anonymous access to Named Pipes and Shares Enabled
Network access: Shares that can be accessed anonymously Not Defined
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Do not store LAN Manager hash value on next password change Enabled
Network security: Force logoff when logon hours expire Disabled
Network security: LAN Manager authentication level Send NTLMv2 response only
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients No minimum
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers No minimum
Recovery console: Allow automatic administrative logon Disabled
Recovery console: Allow floppy copy and access to all drives and all folders Disabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Force strong key protection for user keys stored on the computer Not Defined
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Require case insensitivity for non-Windows subsystems Not Defined
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
System settings: Optional subsystems Posix
System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies Disabled
User Account Control: Admin Approval Mode for the Built-in Administrator account Disabled
User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop Disabled
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode Prompt for consent
User Account Control: Behavior of the elevation prompt for standard users Prompt for credentials
User Account Control: Detect application installations and prompt for elevation Enabled
User Account Control: Only elevate executables that are signed and validated Disabled
User Account Control: Only elevate UIAccess applications that are installed in secure locations Enabled
User Account Control: Run all administrators in Admin Approval Mode Enabled
User Account Control: Switch to the secure desktop when prompting for elevation Enabled
User Account Control: Virtualize file and registry write failures to per-user locations Enabled
Device Tree
ACPI x86-based PC
Microsoft ACPI-Compliant System
ACPI Lid
ACPI Power Button
ACPI Sleep Button
ACPI Thermal Zone
Direct Application Launch Button
Intel Core2 CPU T7400 @ 2.16GHz
Intel Core2 CPU T7400 @ 2.16GHz
Microsoft AC Adapter
Microsoft ACPI-Compliant Control Method Battery
Microsoft Windows Management Interface for ACPI
System board
PCI bus
Intel 82801G (ICH7 Family) PCI Express Root Port - 27D0
Intel 82801G (ICH7 Family) PCI Express Root Port - 27D6
Intel 82801G (ICH7 Family) SMBus Controller - 27DA
Mobile Intel 945GM/PM/GMS/940GML and Intel 945GT Express Processor to DRAM Controller - 27A0
System board
System board
Mobile Intel® 945GM/PM/GMS/940GML and Intel® 945GT Express PCI Express Root Port - 27A1
NVIDIA GeForce Go 7950 GTX
Generic PnP Monitor
High Definition Audio Controller
Conexant HDA D110 MDC V.92 Modem
High Definition Audio Device
Intel® 82801G (ICH7 Family) PCI Express Root Port - 27D2
Intel Wireless WiFi Link 4965AGN
Intel® 82801G (ICH7 Family) PCI Express Root Port - 27D4
Broadcom NetXtreme 57xx Gigabit Controller
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C8
USB Root Hub
Generic USB Hub
Generic USB Hub
USB Smart Card reader
Generic USB Hub
Dell Truemobile 355 Bluetooth + EDR
Bluetooth Device (Personal Area Network)
Bluetooth Device (RFCOMM Protocol TDI)
Microsoft Bluetooth Enumerator
USB Human Interface Device
HID Keyboard Device
USB Human Interface Device
HID-compliant consumer control device
HID-compliant mouse
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C9
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CA
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CB
USB Root Hub
Intel® 82801G (ICH7 Family) USB2 Enhanced Host Controller - 27CC
USB Root Hub
USB Mass Storage Device
Wintec Flash Disk USB Device
Intel® 82801 PCI Bridge - 2448
Ricoh Memory Stick Controller
RICOH OHCI Compliant IEEE 1394 Host Controller
Ricoh SD/MMC Host Controller
Ricoh xD-Picture Card Controller
SDA Standard Compliant SD Host Controller
Intel® 82801GBM (ICH7-M) LPC Interface Controller - 27B9
Direct memory access controller
High precision event timer
Numeric data processor
Programmable interrupt controller
PS/2 Compatible Mouse
Standard PS/2 Keyboard
System board
System CMOS/real time clock
System speaker
System timer
Intel® 82801GBM/GHM (ICH7-M Family) Serial ATA Storage Controller - 27C4
ATA Channel 0
Hitachi HTS722020K9A300 ATA Device
ATA Channel 1
Optiarc DVD+-RW AD-5540A ATA Device
CPU
Intel Mobile Core 2 Duo T7400
Cores 2
Threads 2
Name Intel Mobile Core 2 Duo T7400
Code Name Merom
Package Socket 479 mPGA
Technology 65nm
Specification Intel Core2 CPU T7400 @ 2.16GHz
Family 6
Extended Family 6
Model F
Extended Model F
Stepping 6
Revision B2
Instructions MMX, SSE, SSE2, SSE3, SSSE3, Intel 64, NX, VMX
Virtualization Supported, Disabled
Hyperthreading Not supported
Bus Speed 166.4 MHz
Rated Bus Speed 665.8 MHz
Stock Core Speed 2166 MHz
Stock Bus Speed 166 MHz
Average Temperature 67 °C
Caches
L1 Data Cache Size 2 x 32 KBytes
L1 Instructions Cache Size 2 x 32 KBytes
L2 Unified Cache Size 4096 KBytes
Cores
Core 0
Core Speed 2163.8 MHz
Multiplier x 13.0
Bus Speed 166.4 MHz
Rated Bus Speed 665.8 MHz
Temperature 66 °C
Threads APIC ID: 0
Core 1
Core Speed 2163.8 MHz
Multiplier x 13.0
Bus Speed 166.4 MHz
Rated Bus Speed 665.8 MHz
Temperature 67 °C
Threads APIC ID: 1
RAM
Memory slots
Total memory slots 2
Used memory slots 2
Free memory slots 0
Memory
Type DDR2
Size 2048 MBytes
Channels # Dual
DRAM Frequency 266.3 MHz
CAS# Latency (CL) 5 clocks
RAS# to CAS# Delay (tRCD) 4 clocks
RAS# Precharge (tRP) 4 clocks
Cycle Time (tRAS) 12 clocks
Bank Cycle Time (tRC) 16 clocks
Physical Memory
Memory Usage 70 %
Total Physical 2.00 GB
Available Physical 603 MB
Total Virtual 4.23 GB
Available Virtual 2.36 GB
SPD
Number Of SPD Modules 2
Slot #1
Type DDR2
Size 1024 MBytes
Manufacturer Unknown
Max Bandwidth PC2-5300 (333 MHz)
Part Number RM1GO464CA-64FL
Serial Number FFFFFFFF
Week/year 04 / 11
Timing table
JEDEC #1
Frequency 266.7 MHz
CAS# Latency 2.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 12
tRC 16
Voltage 1.800 V
JEDEC #2
Frequency 270.3 MHz
CAS# Latency 5.0
RAS# To CAS# 5
RAS# Precharge 5
tRAS 13
tRC 17
Voltage 1.800 V
JEDEC #3
Frequency 333.3 MHz
CAS# Latency 6.0
RAS# To CAS# 5
RAS# Precharge 5
tRAS 16
tRC 21
Voltage 1.800 V
Slot #2
Type DDR2
Size 1024 MBytes
Manufacturer Unknown
Max Bandwidth PC2-5300 (333 MHz)
Part Number RM1GO464CA-64FL
Serial Number FFFFFFFF
Week/year 04 / 11
Timing table
JEDEC #1
Frequency 266.7 MHz
CAS# Latency 2.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 12
tRC 16
Voltage 1.800 V
JEDEC #2
Frequency 270.3 MHz
CAS# Latency 5.0
RAS# To CAS# 5
RAS# Precharge 5
tRAS 13
tRC 17
Voltage 1.800 V
JEDEC #3
Frequency 333.3 MHz
CAS# Latency 6.0
RAS# To CAS# 5
RAS# Precharge 5
tRAS 16
tRC 21
Voltage 1.800 V
Motherboard
Manufacturer Dell Inc.
Model 0CF456 (Microprocessor)
Chipset Vendor Intel
Chipset Model i945PM
Chipset Revision 03
Southbridge Vendor Intel
Southbridge Model 82801GHM (ICH7-M/U)
Southbridge Revision A1
System Temperature 69 °C
BIOS
Brand Dell Inc.
Version A07
Date 6/27/2007
PCI Data
Slot PCMCIA
Slot Type PCMCIA
Slot Usage Available
Bus Width 32 bit
Slot Designation PCMCIA 0
Characteristics 5V, 3.3V, PC Card-16, CardBus, Zoom Video, Modem Ring Resume
Slot Number 0
Graphics
Monitor
Name Generic PnP Monitor on NVIDIA GeForce Go 7950 GTX
Current Resolution 1600x1200 pixels
Work Resolution 1600x1170 pixels
State Enabled, Primary
Monitor Width 1600
Monitor Height 1200
Monitor BPP 16 bits per pixel
Monitor Frequency 60 Hz
Device \\.\DISPLAY1\Monitor0
NVIDIA GeForce Go 7950 GTX
Manufacturer NVIDIA
Model GeForce Go 7950 GTX
GPU G71M
Device ID 10DE-0297
Revision A2
Subvendor Dell (1028)
Current Performance Level Level 3
Current GPU Clock 575 MHz
Current Memory Clock 600 MHz
Technology 90 nm
Die Size 196 mm²
Transistors 278 M
Release Date Oct 2006
DirectX Support 9.0c
DirectX Shader Model 3.0
OpenGL Support 2.0
Bus Interface PCI Express x16
Driver version 7.15.11.7431
BIOS Version 5.71.22.45.06
ROPs 16
Shaders Vertex 24/Pixel 248
Memory Type GDDR3
Memory 512 MB
Bus Width 256 Bit
Count of performance levels : 3
Level 1 - "Default"
GPU Clock 100 MHz
Memory Clock 100 MHz
Level 2 - "2D Desktop"
GPU Clock 200 MHz
Memory Clock 300 MHz
Level 3 - "3D Applications"
GPU Clock 575 MHz
Memory Clock 600 MHz
Storage
Hard drives
Hitachi HTS722020K9A300 ATA Device
Manufacturer Hitachi
Product Family Travelstar
Series Prefix Standard
Model Capacity For This Specific Drive 200GB
Heads 16
Cylinders 24,321
Tracks 6,201,855
Sectors 390,716,865
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number *deleted
Firmware Version Number DC4OC54P
LBA Size 48-bit LBA
Power On Count 3396 times
Power On Time 204.1 days
Features S.M.A.R.T., APM, AAM, NCQ
Max. Transfer Mode SATA II 3.0Gb/s
Used Transfer Mode SATA II 3.0Gb/s
Interface SATA
Capacity 186 GB
Real size 200,049,647,616 bytes
RAID Type None
S.M.A.R.T
Status Good
Temperature 45 °C
Temperature Range OK (less than 50 °C)
S.M.A.R.T attributes
01
Attribute name Read Error Rate
Real value 0
Current 100
Worst 100
Threshold 62
Raw Value 0000000000
Status Good
02
Attribute name Throughput Performance
Real value 3,376
Current 116
Worst 116
Threshold 0
Raw Value 0000000D30
Status Good
03
Attribute name Spin-Up Time
Real value 1 ms
Current 171
Worst 171
Threshold 33
Raw Value 0000000001
Status Good
04
Attribute name Start/Stop Count
Real value 3,569
Current 98
Worst 98
Threshold 0
Raw Value 0000000DF1
Status Good
05
Attribute name Reallocated Sectors Count
Real value 0
Current 100
Worst 100
Threshold 5
Raw Value 0000000000
Status Good
07
Attribute name Seek Error Rate
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
08
Attribute name Seek Time Performance
Real value 28
Current 130
Worst 130
Threshold 0
Raw Value 000000001C
Status Good
09
Attribute name Power-On Hours (POH)
Real value 204d 3h
Current 89
Worst 89
Threshold 0
Raw Value 0000001323
Status Good
0A
Attribute name Spin Retry Count
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
0C
Attribute name Device Power Cycle Count
Real value 3,396
Current 98
Worst 98
Threshold 0
Raw Value 0000000D44
Status Good
BF
Attribute name G-sense error rate
Real value 65,536
Current 100
Worst 100
Threshold 0
Raw Value 0000010000
Status Good
C0
Attribute name Power-off Retract Count
Real value 40
Current 100
Worst 100
Threshold 0
Raw Value 0000000028
Status Good
C1
Attribute name Load/Unload Cycle Count
Real value 24,517
Current 98
Worst 98
Threshold 0
Raw Value 0000005FC5
Status Good
C2
Attribute name Temperature
Real value 45 °C
Current 122
Worst 122
Threshold 0
Raw Value 00000A002D
Status Good
C4
Attribute name Reallocation Event Count
Real value 1
Current 100
Worst 100
Threshold 0
Raw Value 0000000001
Status Good
C5
Attribute name Current Pending Sector Count
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
C6
Attribute name Uncorrectable Sector Count
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
C7
Attribute name UltraDMA CRC Error Count
Real value 0
Current 200
Worst 200
Threshold 0
Raw Value 0000000000
Status Good
DF
Attribute name Load/Unload Retry Count
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
E1
Attribute name Load/Unload Cycle Count
Real value 24,517
Current 98
Worst 98
Threshold 0
Raw Value 0000005FC5
Status Good
Partition 0
Partition ID Disk #0, Partition #0
Size 62.7 MB
Partition 1
Partition ID Disk #0, Partition #1
Disk Letter D:
File System NTFS
Volume Serial Number C0A17535
Size 10 GB
Used Space 9.44 GB (94%)
Free Space 570 MB (6%)
Partition 2
Partition ID Disk #0, Partition #2
Disk Letter C:
File System NTFS
Volume Serial Number 50B615AB
Size 174 GB
Used Space 36.9 GB (21%)
Free Space 137 GB (79%)
Partition 3
Partition ID Disk #0, Partition #3
Size 2.00 GB
Flash drives
Wintec Flash Disk USB Device
Interface USB
Capacity 7.6 GB
Real size 8,162,115,584 bytes
RAID Type None
S.M.A.R.T
S.M.A.R.T not supported
Partition 0
Partition ID Disk #1, Partition #0
Disk Letter F:
File System NTFS
Volume Serial Number 1C0D7120
Size 7.6 GB
Used Space 2.8 GB (36%)
Free Space 4.8 GB (64%)
Optical Drives
Optiarc DVD+-RW AD-5540A ATA Device
Media Type DVD Writer
Name Optiarc DVD+-RW AD-5540A ATA Device
Availability Running/Full Power
Capabilities Random Access, Supports Writing, Supports Removable Media
Read capabilities CD-R, CD-RW, CD-ROM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Write capabilities CD-R, CD-RW, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive E:
Media Loaded FALSE
SCSI Bus 1
SCSI Logical Unit 0
SCSI Port 1
SCSI Target Id 0
Status OK
Audio
Sound Card
High Definition Audio Device
Playback Device
Speakers (High Definition Audio Device)
Peripherals
Standard PS/2 Keyboard
Device Kind Keyboard
Device Name Standard PS/2 Keyboard
Vendor (Standard keyboards)
Location plugged into keyboard port
Driver
Date 6-21-2006
Version 6.0.6001.18000
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
HID Keyboard Device
Device Kind Keyboard
Device Name HID Keyboard Device
Vendor Broadcom Corp
Location USB Human Interface Device
Driver
Date 6-21-2006
Version 6.0.6001.18000
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
PS/2 Compatible Mouse
Device Kind Mouse
Device Name PS/2 Compatible Mouse
Vendor Microsoft
Location plugged into PS/2 mouse port
Driver
Date 6-21-2006
Version 6.0.6001.18000
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor Broadcom Corp
Location USB Human Interface Device
Driver
Date 6-21-2006
Version 6.0.6001.18000
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
Flash Disk      
Device Kind Portable Device
Device Name Flash Disk
Vendor WINTEC
Comment Flash Disk
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.0.6001.18000
File C:\Windows\system32\DRIVERS\WUDFRd.sys
Printers
Artisan 720(Network) (Default Printer)
Printer Port EPDF1506:ARTISAN 720
Print Processor WinPrint
Availability Always
Priority 1
Duplex None
Print Quality 360 * 360 dpi Color
Status Unknown
Driver
Driver Name EPSON Artisan 720 Series (v5.10)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FMAIGYA.DLL
Fax
Printer Port SHRFAX:
Print Processor WinPrint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Monochrome
Status Unknown
Driver
Driver Name Microsoft Shared Fax Driver (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\FXSDRV.DLL
Microsoft XPS Document Writer
Printer Port XPSPort:
Print Processor WinPrint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Microsoft XPS Document Writer (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\mxdwdrv.dll
Network
You are connected to the internet
Connected through Intel Wireless WiFi Link 4965AGN
IP Address 10.0.0.117
Subnet mask 255.255.255.0
Gateway server 10.0.0.1
Preferred DNS server 75.75.75.75
Alternate DNS server 75.75.76.76
DHCP Enabled
DHCP server 10.0.0.1
External IP Address 76.24.62.141
Adapter Type IEEE 802.11 wireless
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Hybrid node
Link Speed 15.4 KBps
Computer Name
NetBIOS Name Joanna-PC
DNS Name Joanna-PC
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain Joanna-PC
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Using native Wi-Fi API version 2
Available access points count 3
Wi-Fi (HOME-9B45-2.4)
SSID HOME-9B45-2.4
Frequency 2412000 kHz
Channel Number 1
Name HOME-9B45-2.4
Signal Strength/Quality 99
Security Enabled
State The interface is connected to a network
Dot11 Type Infrastructure BSS network
Network Connectible
Network Flags There is a profile for this network
Cipher Algorithm to be used when joining this network AES-CCMP algorithm
Default Auth used to join this network for the first time 802.11i RSNA algorithm that uses PSK
Wi-Fi (HOME-9B45-5)
SSID HOME-9B45-5
Frequency 5765000 kHz
Channel Number 153
Name HOME-9B45-5
Signal Strength/Quality 99
Security Enabled
State The interface is connected to a network
Dot11 Type Infrastructure BSS network
Network Connectible
Network Flags Currently Connected to this network
Cipher Algorithm to be used when joining this network AES-CCMP algorithm
Default Auth used to join this network for the first time 802.11i RSNA algorithm that uses PSK
Wi-Fi (xfinitywifi)
SSID xfinitywifi
Frequency 2412000 kHz
Channel Number 1
Name xfinitywifi
Signal Strength/Quality 99
Security Disabled
State The interface is connected to a network
Dot11 Type Infrastructure BSS network
Network Connectible
Network Flags There is a profile for this network
Cipher Algorithm to be used when joining this network No Cipher algorithm is enabled/supported
Default Auth used to join this network for the first time IEEE 802.11 Open System authentication algorithm
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
Network Discovery Disabled
File and Printer Sharing Disabled
File and printer sharing service Enabled
Simple File Sharing Enabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
Enabled
Bluetooth Device (Personal Area Network)
Connection Name Bluetooth Network Connection
DHCP enabled Yes
MAC Address 00-1C-26-EF-F7-94
Broadcom NetXtreme 57xx Gigabit Controller
Connection-specific DNS Suffix hsd1.nh.comcast.net
Connection Name Local Area Connection
DHCP enabled Yes
MAC Address 00-1C-23-0D-66-CC
Intel® Wireless WiFi Link 4965AGN
Connection-specific DNS Suffix hsd1.nh.comcast.net
Connection Name Wireless Network Connection 2
NetBIOS over TCPIP Yes
DHCP enabled Yes
MAC Address 00-13-E8-7F-46-2F
IP Address 10.0.0.117
Subnet mask 255.255.255.0
Gateway server 10.0.0.1
DHCP 10.0.0.1
DNS Server 75.75.75.75
75.75.76.76
Network Shares
No network shares
Current TCP Connections
C:\Program Files\Epson Software\Event Manager\EEventManager.exe (12)
Local 0.0.0.0:2968 LISTEN
C:\Program Files\Google\Chrome\Application\chrome.exe (2616)
Local 10.0.0.117:49289 ESTABLISHED Remote 199.27.76.193:80 (Querying... ) (HTTP)
Local 10.0.0.117:49305 ESTABLISHED Remote 23.235.39.249:80 (Querying... ) (HTTP)
Local 10.0.0.117:49315 ESTABLISHED Remote 23.48.114.36:80 (Querying... ) (HTTP)
Local 10.0.0.117:49316 ESTABLISHED Remote 23.235.39.249:80 (Querying... ) (HTTP)
Local 10.0.0.117:49262 ESTABLISHED Remote 199.27.76.134:80 (Querying... ) (HTTP)
Local 10.0.0.117:49332 ESTABLISHED Remote 23.48.114.36:80 (Querying... ) (HTTP)
Local 10.0.0.117:49333 ESTABLISHED Remote 23.48.114.36:80 (Querying... ) (HTTP)
Local 10.0.0.117:49334 ESTABLISHED Remote 23.48.114.36:80 (Querying... ) (HTTP)
Local 10.0.0.117:49335 ESTABLISHED Remote 23.48.114.36:80 (Querying... ) (HTTP)
Local 10.0.0.117:49336 ESTABLISHED Remote 23.48.114.36:80 (Querying... ) (HTTP)
Local 10.0.0.117:49337 ESTABLISHED Remote 23.48.114.36:80 (Querying... ) (HTTP)
Local 10.0.0.117:49338 ESTABLISHED Remote 54.231.9.33:80 (Querying... ) (HTTP)
Local 10.0.0.117:49219 ESTABLISHED Remote 23.235.39.129:80 (Querying... ) (HTTP)
Local 10.0.0.117:49345 ESTABLISHED Remote 108.168.208.206:80 (Querying... ) (HTTP)
Local 10.0.0.117:49346 ESTABLISHED Remote 23.235.39.134:80 (Querying... ) (HTTP)
Local 10.0.0.117:49232 ESTABLISHED Remote 173.194.123.77:80 (Querying... ) (HTTP)
Local 10.0.0.117:49348 ESTABLISHED Remote 108.168.208.206:80 (Querying... ) (HTTP)
Local 10.0.0.117:49238 ESTABLISHED Remote 184.25.109.34:80 (Querying... ) (HTTP)
Local 10.0.0.117:49241 ESTABLISHED Remote 23.235.46.196:80 (Querying... ) (HTTP)
Local 10.0.0.117:49366 ESTABLISHED Remote 67.228.177.87:80 (Querying... ) (HTTP)
Local 10.0.0.117:49347 ESTABLISHED Remote 108.168.208.206:80 (Querying... ) (HTTP)
Local 10.0.0.117:49368 ESTABLISHED Remote 173.194.123.91:80 (Querying... ) (HTTP)
Local 10.0.0.117:49369 ESTABLISHED Remote 173.194.123.77:443 (Querying... ) (HTTPS)
C:\Program Files\Windows Media Player\wmplayer.exe (3928)
Local 10.0.0.117:49372 ESTABLISHED Remote 184.25.109.233:80 (Querying... ) (HTTP)
Local 10.0.0.117:49376 CLOSE-WAIT Remote 157.56.59.250:80 (Querying... ) (HTTP)
lsass.exe (740)
Local 0.0.0.0:49153 LISTEN
mbamservice.exe (2724)
Local 127.0.0.1:43227 LISTEN
services.exe (692)
Local 0.0.0.0:49157 LISTEN
svchost.exe (1196)
Local 0.0.0.0:49154 LISTEN
svchost.exe (1232)
Local 0.0.0.0:49155 LISTEN
svchost.exe (972)
Local 0.0.0.0:135 (DCE) LISTEN
System Process
Local 10.0.0.117:49246 TIME-WAIT Remote 192.0.78.23:443 (Querying... ) (HTTPS)
Local 10.0.0.117:49322 TIME-WAIT Remote 104.244.43.76:443 (Querying... ) (HTTPS)
Local 10.0.0.117:49342 TIME-WAIT Remote 23.48.114.36:80 (Querying... ) (HTTP)
Local 10.0.0.117:49367 TIME-WAIT Remote 68.232.32.220:1935 (Querying... )
Local 10.0.0.117:49357 TIME-WAIT Remote 93.184.215.81:80 (Querying... ) (HTTP)
Local 10.0.0.117:49363 TIME-WAIT Remote 54.217.211.5:443 (Querying... ) (HTTPS)
System Process
Local 10.0.0.117:139 (NetBIOS session service) LISTEN
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 0.0.0.0:2869 LISTEN
Local 0.0.0.0:5357 LISTEN
wininit.exe (640)
Local 0.0.0.0:49152 LISTEN
Generated with Speccy v1.28.709

  • 0

Advertisements


#26
Bruce1270

Bruce1270

    Trusted Helper

  • Malware Removal
  • 1,603 posts
Hi lasombrs

Sorry for the delay and thank you for all the information.

It looks like the system has reverted back to Service Pack 1 version when you were restoring/recovering it so we need to install SP2 and bring the internet explorer version back up to date for your system. I've also located
a more up to date driver which will hopefully resolve the BSOD. We also need to tidy up issues from the last FRST post. :)

Step1 - FRST fix


NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.

Download the attached fixlist.txt to your desktop. Attached File  fixlist.txt   1.01KB   95 downloads
  • Ensure fixlist.txt is in the same location as FRST.exe on your desktop.
    FRSTfix.JPG
  • Run FRST by right clicking on it and selecting Run as Administrator and press Fix
  • On completion a log (fixlog.txt) will be generated.
  • Please select all text in this fix, copy (CTRL + C) and then Paste (CTRL + V) in your next reply.


    Step2 - Service Pack update
  • Download Windows Vista Service Pack 2 here from the Microsoft website.
  • The file name is called Windows6.0-KB948465-X86.exe
  • Right click the file, select Run as Administrator and follow the on screen instructions to install.


    Step3 - Upgrade Internet Explorer
  • Download Internet explorer version 9 here from the Microsoft website.
  • The file name is called IE9-WindowsVista-x86-enu.exe
  • Right click the file, select Run as Administrator and follow the on screen instructions to install.


    Step4 - Upgrade Nvidia driver


    Install NVIDIA Driver
  • Download the Nvidia driver from the nvidia wesite here to your desktop.
  • Click the driver download link.
  • The license agreement dialog box appears.
  • Click Agree and Download and save the file to your PC.
  • Double click the NVIDIA driver installation .EXE file to launch the NVIDIA InstallShield Wizard.
  • Follow the instructions in the NVIDIA InstallShield Wizard to complete the installation.
    Note: After the driver installation, Windows may default to 16 - bpp color and disable the Desktop Window Manager (DWM). To work around this issue, set the color to 32 - bpp and then reboot the PC.
  • You can delete the downloaded driver file from your desltop once install has completed.

    Things for your next post.
  • fixlog.txt
  • confirm that your upgrades to SP2 and internet explorer went successfully.
  • Confirm that your driver upgrade went successfully.
  • What issues, if any, are you still having with your computer?

    Thanks

  • 0

#27
lasombrs

lasombrs

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
Fix result of Farbar Recovery Scan Tool (x86) Version:27-08-2015
Ran by Joanna (2015-08-27 20:08:46) Run:6
Running from C:\Users\Joanna\Desktop
Loaded Profiles: Joanna (Available Profiles: Joanna)
Boot Mode: Normal
 
==============================================
 
fixlist content:
*****************
CreateRestorePoint:
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
CHR Extension: (No Name) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngocbkfmikdgphklgmmehbjjlfgdemm [2015-08-22]
CHR Extension: (No Name) - C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2015-08-22]
CHR HKLM\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] - <no Path\update_url>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.goo...ice/update2/crx
S3 XDva511; \??\C:\Windows\system32\XDva511.sys [X]
C:\Users\Joanna\Downloads\registry-defrag.exe
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state on
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset c:\resetlog.txt
CMD: ipconfig /release
CMD: ipconfig /renew
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
Hosts:
EmptyTemp:
 
*****************
 
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => key not found. 
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found. 
C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngocbkfmikdgphklgmmehbjjlfgdemm => moved successfully
C:\Users\Joanna\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic => moved successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\hkhkiakolggnnicallabhkobalpeplpi" => key removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif" => key removed successfully.
XDva511 => Unable to stop service.
XDva511 => service removed successfully.
C:\Users\Joanna\Downloads\registry-defrag.exe => moved successfully
 
=========  bitsadmin /reset /allusers =========
 
 
BITSADMIN version 3.0 [ 7.0.6001 ]
BITS administration utility.
© Copyright 2000-2006 Microsoft Corp.
 
0 out of 0 jobs canceled.
 
========= End of CMD: =========
 
 
=========  netsh advfirewall reset =========
 
Ok.
 
 
========= End of CMD: =========
 
 
=========  netsh advfirewall set allprofiles state on =========
 
Ok.
 
 
========= End of CMD: =========
 
 
=========  ipconfig /flushdns =========
 
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========= End of CMD: =========
 
 
=========  netsh winsock reset catalog =========
 
 
Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.
 
 
========= End of CMD: =========
 
 
=========  netsh int ip reset c:\resetlog.txt =========
 
Reseting Echo Request, failed.
Access is denied.
 
Reseting Interface, OK!
A reboot is required to complete this action.
 
 
========= End of CMD: =========
 
 
=========  ipconfig /release =========
 
 
Windows IP Configuration
 
No operation can be performed on Bluetooth Network Connection while it has its media disconnected.
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Connection-specific DNS Suffix  . : 
   IPv6 Address. . . . . . . . . . . : 2601:188:c201:755b::b3fc
   IPv6 Address. . . . . . . . . . . : 2601:188:c201:755b:86:414b:2fa1:dea5
   Temporary IPv6 Address. . . . . . : 2601:188:c201:755b:dec:568a:9ac0:1ed4
   Link-local IPv6 Address . . . . . : fe80::86:414b:2fa1:dea5%16
   Default Gateway . . . . . . . . . : fe80::68ee:96ff:fefb:9b48%16
 
Ethernet adapter Bluetooth Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Tunnel adapter Local Area Connection* 6:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Tunnel adapter Local Area Connection* 7:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Tunnel adapter Local Area Connection* 12:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
========= End of CMD: =========
 
 
=========  ipconfig /renew =========
 
 
Windows IP Configuration
 
No operation can be performed on Bluetooth Network Connection while it has its media disconnected.
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Connection-specific DNS Suffix  . : hsd1.nh.comcast.net
   IPv6 Address. . . . . . . . . . . : 2601:188:c201:755b::b3fc
   IPv6 Address. . . . . . . . . . . : 2601:188:c201:755b:86:414b:2fa1:dea5
   Temporary IPv6 Address. . . . . . : 2601:188:c201:755b:dec:568a:9ac0:1ed4
   Link-local IPv6 Address . . . . . : fe80::86:414b:2fa1:dea5%16
   IPv4 Address. . . . . . . . . . . : 10.0.0.117
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : fe80::68ee:96ff:fefb:9b48%16
                                       10.0.0.1
 
Ethernet adapter Bluetooth Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Tunnel adapter Local Area Connection* 6:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.nh.comcast.net
 
Tunnel adapter Local Area Connection* 7:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Tunnel adapter Local Area Connection* 12:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
========= End of CMD: =========
 
 
=========  netsh int ipv4 reset =========
 
Reseting Echo Request, failed.
Access is denied.
 
Reseting Interface, OK!
A reboot is required to complete this action.
 
 
========= End of CMD: =========
 
 
=========  netsh int ipv6 reset =========
 
Reseting Echo Request, failed.
Access is denied.
 
There's no user specified settings to be reset.
 
 
========= End of CMD: =========
 
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 18.3 MB temporary data Removed.
 
 
The system needed a reboot.
 
 
==== End of Fixlog 20:10:38 ====
 
 
Having issues with the updates. SP2 wont install saying I don't have SP1, other updates wont install since I don't have SP2. Working on manually updating all of SP1 to see if I can install SP2. Will edit post when it has worked.
 
Yeah, so every time i try i get this
sp2.jpg
Follow the link, try to install sp1 and get this .....
sp1.jpg
 
because that makes total sense:/
 
And of course IE9 tells me this
ie9.jpg
I think the driver for Nvidia installed properly though
I th

Edited by lasombrs, 27 August 2015 - 07:10 PM.

  • 0

#28
Bruce1270

Bruce1270

    Trusted Helper

  • Malware Removal
  • 1,603 posts
Hi Lasombrs

It may be that reverting back to SP1 it needs further updates before SP2 can be installed.

Keep trying Windows Update and clicking on Check for updates and allow windows to download and install what it finds. This may take several goes. What you may find is that windows will download and install service pack 2 and internet explorer 9 automatically.

Let me know how this goes.

Thanks
  • 0

#29
lasombrs

lasombrs

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

Ok I think i have everything installed. I have gotten several new BSOD that I have not seen before since starting to install everything. but each one has only shown up once and i am not sure what caused them.


  • 0

#30
Bruce1270

Bruce1270

    Trusted Helper

  • Malware Removal
  • 1,603 posts
Hi Lasombrs

OK. Now that you have everything installed try rebooting your machine several times to see if you still get the BSOD's. Let me know how this goes.

Also post fresh logs.
  • Please run Farbars Recovery Scan Tool again. Run FRST by right clicking on it and selecting Run as Administrator. Allow it to update if it wants to.
  • Please tick the Addition.txt box under Optional Scan.
  • Press Scan button.
  • It will make logs FRST.txt & Addition.txt in the same directory the tool is run.
  • Please copy and paste the FRST.txt and Addition.txt to your reply.

    Thanks

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP