Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

help needed


  • Please log in to reply

#1
Lathers

Lathers

    Member

  • Member
  • PipPip
  • 19 posts

comp is really slow

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-06-2017 01
Ran by Chris (administrator) on DELL-530 (17-06-2017 04:20:25)
Running from C:\Users\Chris\Desktop
Loaded Profiles: Chris (Available Profiles: Chris)
Platform: Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) Language: English (United States)
Internet Explorer Version 9 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Andrea Electronics Corporation) C:\Windows\System32\AERTSrv.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
() C:\Program Files\HDD Health\HDDHealthService.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\WzPreloader.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\WZQKPICK32.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\FAHWindow32.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_26_0_0_131.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_26_0_0_131.exe
(Lunascape Corporation) C:\Program Files\Lunascape\Lunascape6\Luna.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4907008 2008-01-17] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-10] (AVAST Software)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe [1971856 2016-08-12] ()
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6602152 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\system32\Macromed\Flash\FlashUtil32_26_0_0_126_Plugin.exe -update plugin
HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-05-10] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FAH.lnk [2017-02-21]
ShortcutTarget: FAH.lnk -> C:\Program Files\WinZip\FAHConsole.exe (WinZip Computing, S.L.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Update Notifier.lnk [2017-02-21]
ShortcutTarget: Update Notifier.lnk -> C:\Program Files\WinZip\WZUpdateNotifier.exe (WinZip)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2017-02-21]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (WinZip Computing, S.L.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Quick Pick.lnk [2017-02-21]
ShortcutTarget: WinZip Quick Pick.lnk -> C:\Program Files\WinZip\WZQKPICK32.exe (WinZip Computing, S.L.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{C010AF49-0C76-4353-BB35-19AE24C74C4F}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-gb/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-08-16] (RealPlayer)
BHO: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\ProgramData\Wondershare\Video Converter Ultimate\WSBrowserAppMgr.dll [2016-08-12] (Wondershare)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-04] (AVAST Software)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 -  No File

FireFox:
========
FF DefaultProfile: 2m53848d.default
FF ProfilePath: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\2m53848d.default [2017-06-17]
FF Extension: (Avast SafePrice) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\2m53848d.default\Extensions\sp@avast.com.xpi [2017-06-12]
FF Extension: (Avast Online Security) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\2m53848d.default\Extensions\wrc@avast.com.xpi [2017-06-12]
FF Extension: (Dr.Web Anti-Virus Link Checker) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\2m53848d.default\Extensions\{6614d11d-d21d-b211-ae23-815234e1ebb5}.xpi [2017-04-06]
FF Extension: (Adblock Plus) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\2m53848d.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-12]
FF HKLM\...\Firefox\Extensions: [{0153E448-190B-4987-BDE1-F256CADA672F}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: (RealPlayer Browser Record Plugin) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2013-05-06] [not signed]
FF HKLM\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com_xpi
FF Extension: (Wondershare Video Converter Ultimate) - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com_xpi [2016-08-18]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-16] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1221171.dll [2015-10-19] (Adobe Systems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2012-08-16] (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2012-08-16] (RealNetworks, Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default [2016-10-18]
CHR Extension: (Avast Online Security) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-07-05]
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2016-06-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-14]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2012-08-16]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-06-16] (Adobe Systems Incorporated) [File not signed]
R2 AERTFilters; C:\Windows\system32\AERTSrv.exe [77824 2007-12-05] (Andrea Electronics Corporation)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5732136 2017-05-10] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-10] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [310496 2017-05-10] (AVAST Software)
R2 HDDHealth; C:\Program Files\HDD Health\HDDHealthService.exe [17760 2013-03-08] () [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [258288 2017-05-10] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [148696 2017-05-10] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [268016 2017-05-10] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [41664 2017-05-10] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [34136 2017-05-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [31064 2017-05-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107928 2017-05-10] (AVAST Software)
R0 aswNdis; C:\Windows\System32\DRIVERS\aswNdis.sys [12112 2014-08-02] (ALWIL Software)
R0 aswNdis2; C:\Windows\system32\drivers\aswNdis2.sys [331264 2017-05-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [60760 2017-05-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [62152 2017-05-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [764576 2017-05-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [482608 2017-05-10] (AVAST Software)
R3 aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [181080 2017-05-13] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [279800 2017-05-10] (AVAST Software)
R3 gttap1; C:\Windows\System32\DRIVERS\gttap1.sys [32552 2013-09-12] (The OpenVPN Project)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [220088 2017-06-16] (Malwarebytes)
S3 MOSUMAC; C:\Windows\System32\DRIVERS\MOSUMAC.SYS [43520 2009-12-10] (--)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-17 04:20 - 2017-06-17 04:21 - 00014250 _____ C:\Users\Chris\Desktop\FRST.txt
2017-06-17 04:20 - 2017-06-17 04:20 - 00000948 _____ C:\Users\Public\Desktop\Lunascape6.lnk
2017-06-17 04:20 - 2017-06-17 04:20 - 00000948 _____ C:\ProgramData\Desktop\Lunascape6.lnk
2017-06-17 04:20 - 2017-06-17 04:20 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Lunascape
2017-06-17 04:16 - 2017-06-17 04:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lunascape6
2017-06-17 04:15 - 2017-06-17 04:15 - 00000000 ____D C:\Program Files\Lunascape
2017-06-17 04:09 - 2017-06-17 04:15 - 27775672 _____ C:\Users\Chris\Downloads\LunaSetup697_ml11_gl.exe
2017-06-17 04:01 - 2017-06-17 04:02 - 01777152 _____ (Farbar) C:\Users\Chris\Desktop\FRST.exe
2017-06-17 03:51 - 2017-06-17 04:06 - 00000000 ____D C:\Users\Chris\Downloads\csa
2017-06-17 03:45 - 2017-06-17 03:45 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-06-16 14:34 - 2017-06-16 14:35 - 00000242 _____ C:\Windows\ntbtlog.txt
2017-05-23 20:25 - 2017-05-23 20:32 - 368945248 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\office2007sp3-kb2526086-fullfile-en-us.exe
2017-05-23 20:25 - 2017-05-23 20:27 - 38808920 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\FileFormatConverters.exe
2017-05-23 20:25 - 2017-05-23 20:26 - 25685128 _____ (Microsoft Corporation) C:\Users\Chris\Downloads\wordview_en-us(1).exe
2017-05-19 21:34 - 2017-05-19 21:34 - 00000000 ____D C:\Users\Chris\Downloads\sww2
2017-05-18 22:34 - 2017-05-22 21:23 - 00000000 ____D C:\Users\Chris\Documents\New Folder
2017-05-18 21:57 - 2017-05-18 21:57 - 00448512 _____ (OldTimer Tools) C:\Users\Chris\Downloads\TFC(1).exe
2017-05-18 21:56 - 2017-05-18 21:56 - 00000822 _____ C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Temp File Cleaner.lnk
2017-05-18 21:56 - 2017-05-18 21:56 - 00000792 _____ C:\Users\Chris\Desktop\Temp File Cleaner.lnk
2017-05-18 21:56 - 2017-05-18 21:56 - 00000000 ____D C:\Program Files\Temp File Cleaner

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-17 04:20 - 2017-03-15 19:34 - 00000000 ____D C:\FRST
2017-06-17 04:20 - 2006-11-02 13:47 - 00005184 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2017-06-17 04:20 - 2006-11-02 13:47 - 00005184 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2017-06-17 03:49 - 2016-11-19 23:46 - 00000000 ____D C:\Users\Chris\AppData\LocalLow\Mozilla
2017-06-17 03:49 - 2013-07-23 22:29 - 00000000 ____D C:\Users\Chris\AppData\Roaming\vlc
2017-06-17 03:47 - 2016-02-24 15:25 - 00055808 _____ C:\Users\Chris\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-06-17 03:46 - 2017-04-25 22:28 - 00000000 ____D C:\Users\Chris\Downloads\nnn
2017-06-16 18:47 - 2012-12-13 20:48 - 00803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-06-16 18:47 - 2012-12-13 20:48 - 00144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-06-16 18:47 - 2008-10-23 13:28 - 00000000 ____D C:\Windows\system32\Macromed
2017-06-16 14:37 - 2016-06-10 15:08 - 00000000 ____D C:\Users\Chris\Desktop\pass
2017-06-16 14:34 - 2017-03-23 20:41 - 00002537 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2017-06-16 14:34 - 2017-03-23 20:41 - 00002537 _____ C:\ProgramData\Desktop\Sophos Virus Removal Tool.lnk
2017-06-16 14:34 - 2017-03-09 22:40 - 00000000 ____D C:\AdwCleaner
2017-06-16 14:34 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\inf
2017-06-16 13:11 - 2015-03-30 21:39 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Vso
2017-06-16 12:52 - 2017-02-05 21:29 - 00000000 ____D C:\Users\Chris\AppData\Local\CrashDumps
2017-06-16 12:47 - 2012-12-19 19:53 - 00000000 ____D C:\Users\Chris\AppData\Roaming\dvdcss
2017-06-16 12:28 - 2016-03-06 18:13 - 00001041 _____ C:\Users\Chris\AppData\Roaming\vso_ts_preview.xml
2017-06-16 12:20 - 2017-02-01 16:44 - 00220088 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-06-16 12:19 - 2017-02-26 18:37 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-06-16 12:19 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-06-16 12:19 - 2006-11-02 13:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2017-06-16 12:17 - 2006-11-02 14:01 - 00032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-06-16 12:10 - 2017-02-26 18:37 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-06-14 23:01 - 2011-12-28 15:53 - 00000000 ____D C:\Users\Chris\Documents\ConvertXToDVD
2017-06-14 22:22 - 2013-08-14 03:08 - 00000000 ____D C:\Windows\system32\MRT
2017-06-14 22:15 - 2006-11-02 11:24 - 145733648 ____C (Microsoft Corporation) C:\Windows\system32\mrt.exe
2017-05-23 20:31 - 2012-06-29 12:27 - 00000000 ____D C:\Program Files\Microsoft Office
2017-05-23 20:31 - 2006-11-02 12:18 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-23 20:30 - 2012-10-20 22:05 - 00000000 ____D C:\Program Files\MSECache
2017-05-22 21:23 - 2013-03-20 18:46 - 00000000 ____D C:\Users\Chris\Documents\Anti-Malware
2017-05-20 15:16 - 2017-03-15 19:44 - 00000508 _____ C:\Windows\wininit.ini

==================== Files in the root of some directories =======

2016-03-06 18:13 - 2017-06-16 12:28 - 0001041 _____ () C:\Users\Chris\AppData\Roaming\vso_ts_preview.xml
2016-05-16 20:15 - 2016-06-13 16:09 - 0001356 _____ () C:\Users\Chris\AppData\Local\d3d9caps.dat
2016-02-24 15:25 - 2017-06-17 03:47 - 0055808 _____ () C:\Users\Chris\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-06-17 01:00

==================== End of FRST.txt ============================

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 15-06-2017 01
Ran by Chris (17-06-2017 04:21:39)
Running from C:\Users\Chris\Desktop
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) (2011-02-04 10:32:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3299710142-3868310564-1978959094-500 - Administrator - Disabled)
Chris (S-1-5-21-3299710142-3868310564-1978959094-1001 - Administrator - Enabled) => C:\Users\Chris
Guest (S-1-5-21-3299710142-3868310564-1978959094-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 26 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 26.0.0.131 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.1.171 - Adobe Systems, Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
AudibleManager (HKLM\...\AudibleManager) (Version: 3484544.-2.2005037430.2005036444 - Audible, Inc.)
Avast Internet Security (HKLM\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
ConvertXtoDVD 4.0.9.322 (HKLM\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.0.9.322 - )
EasyBCD 1.7 (HKLM\...\EasyBCD) (Version: 1.7 - NeoSmart Technologies)
ffdshow [rev 2180] [2008-10-04] (HKLM\...\ffdshow_is1) (Version: 1.0 - )
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
HDD Health v4.2 (HKLM\...\HDD Health_is1) (Version:  - )
InPlay IPTV (HKLM\...\{4CE87481-C78C-4543-9AA0-2117CD5BF917}) (Version: 4.0.0 - Cobain ltd)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version:  - Intel Corporation)
K-Lite Codec Pack 7.0.0 (Standard) (HKLM\...\KLiteCodecPack_is1) (Version: 7.0.0 - )
Leawo Video Converter version  5.1.0.0 (HKLM\...\{331ED3CF-3A1B-467C-9A62-899E2D3B20C4}_is1) (Version:  - )
Lunascape6 (All Users) (HKLM\...\Lunascape6) (Version: 6.9.7.27470 - Lunascape)
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Excel Viewer 2003 (HKLM\...\{90840409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM\...\{90850409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 52.2.0 ESR (x86 en-GB) (HKLM\...\Mozilla Firefox 52.2.0 ESR (x86 en-GB)) (Version: 52.2.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 52.2.0.6367 - Mozilla)
MPC-HC 1.7.0 (HKLM\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.0.7858 - MPC-HC Team)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
Nero 7 Lite 7.10.1.2 (HKLM\...\Nero7Lite_is1) (Version: 7.10.1.2 - UpdatePack.nl)
PressReader (HKLM\...\{912CED74-88D3-4C5B-ACB0-132318649765}) (Version: 5.16.0115.0 - PressReader Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version:  - )
SafeZone Stable 1.48.2066.120 (Version: 1.48.2066.120 - Avast Software) Hidden
Samsung Story Album Viewer (HKLM\...\InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.)
Skitch (HKLM\...\Skitch 1.0.2.0) (Version: 2.2.0.4 - Evernote Corp.)
Sophos Virus Removal Tool (HKLM\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Temp File Cleaner (HKLM\...\Temp File Cleaner) (Version: 4.5.0.74(master)(8d92a0e96285c09fa03691e2b7618aee84c6c2b6) - Addpcs, LLC)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WinRAR 5.40 beta 1 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.1 - win.rar GmbH)
WinZip 21.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2410C}) (Version: 21.0.12288 - WinZip Computing, S.L. )
Wondershare Helper Compact 2.5.0 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.0 - Wondershare)
Wondershare Video Converter Ultimate(Build 8.8.0.3) (HKLM\...\Wondershare Video Converter Ultimate_is1) (Version: 8.8.0.3 - Wondershare Software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001_Classes\CLSID\{A2DF06F9-A21A-44A8-8A99-8B9C84F29160}\localserver32 -> C:\Users\Chris\AppData\Local\Chromium\Application\46.0.2480.0\delegate_execute.exe (The Chromium Authors) <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2EEC41BC-155E-4FB6-B264-D9E2D9DC9DDA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {677CD573-8156-4B83-8781-B7646D6B0415} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-06-16] (Adobe Systems Incorporated)
Task: {7A2C9CC7-9B50-44DA-BC40-043F49EFF2FE} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-10] (AVAST Software)
Task: {C9BE9F1E-CC67-4EAF-B2B3-6D345758AD23} - System32\Tasks\WinZip Update Notifier => C:\Program Files\WinZip\WZUpdateNotifier.exe [2017-02-10] (WinZip)
Task: {D55DA0BC-A796-4A82-BADA-3300E689BBC6} - System32\Tasks\SafeZone scheduled Autoupdate 1449186754 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-08-12] (Avast Software)
Task: {DC0B49E4-3258-40BE-81A6-B40E45F2E425} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Tweaking.com - Windows Repair Tray Icon.job => C:\Program Files\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe C:\Program Files\Tweaking.com\Windows Repair (All in One) Tweaking.com - Windows Repair )Created By Tweaking.com

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-05-10 06:34 - 2017-05-10 06:34 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-10 06:34 - 2017-05-10 06:34 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-10 06:34 - 2017-05-10 06:34 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-06-16 12:09 - 2017-06-16 12:09 - 05678080 _____ () C:\Program Files\AVAST Software\Avast\defs\17061600\algo.dll
2017-05-10 06:34 - 2017-05-10 06:34 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-05-10 06:34 - 2017-05-10 06:34 - 00230632 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2017-06-16 20:20 - 2017-06-16 20:20 - 05779232 _____ () C:\Program Files\AVAST Software\Avast\defs\17061602\algo.dll
2016-08-18 14:54 - 2015-02-27 14:38 - 00214528 _____ () C:\Windows\System32\WSCM32.dll
2014-03-25 06:27 - 2013-03-08 10:54 - 00017760 _____ () C:\Program Files\HDD Health\HDDHealthService.exe
2017-02-01 16:42 - 2017-04-12 02:38 - 01736992 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-05-10 06:33 - 2017-05-10 06:33 - 00134920 _____ () c:\Program Files\AVAST Software\Avast\vaarclient.dll
2015-08-26 08:44 - 2015-08-26 08:44 - 00055576 _____ () C:\Program Files\CCleaner\branding.dll
2017-05-10 06:34 - 2017-05-10 06:34 - 00991632 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2016-06-29 18:20 - 2016-06-29 18:20 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-10 06:33 - 2017-05-10 06:33 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-06-16 18:47 - 2017-06-16 18:47 - 20064256 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_131.dll
2015-06-03 01:32 - 2015-06-03 01:32 - 01167872 _____ () C:\Program Files\Lunascape\Lunascape6\cpprest120_xp_2_0.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Chris\Desktop\g.mp4:TOC.WMV [130]
AlternateDataStreams: C:\Users\Chris\Desktop\My DVD_Title1.mp4:TOC.WMV [130]
AlternateDataStreams: C:\Users\Chris\Downloads\20120317_142032-trim-03-17-trim-03-18-00-17-38.3gp:TOC.WMV [130]
AlternateDataStreams: C:\Users\Chris\Downloads\33.MPG:TOC.WMV [130]
AlternateDataStreams: C:\Users\Chris\Downloads\6094194_hd.mp4:TOC.WMV [130]
AlternateDataStreams: C:\Users\Chris\Downloads\a.3gp:TOC.WMV [130]
AlternateDataStreams: C:\Users\Chris\Downloads\new.mp4:TOC.WMV [130]
AlternateDataStreams: C:\Users\Chris\Downloads\og.avi:TOC.WMV [130]
AlternateDataStreams: C:\Users\Chris\Downloads\VID-20141015-WA0004.mp4:TOC.WMV [130]
AlternateDataStreams: C:\Users\Chris\Downloads\VID-20141016-WA0022.mp4:TOC.WMV [130]
AlternateDataStreams: C:\Users\Chris\Downloads\vid2.3gp:TOC.WMV [130]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\...\100sexlinks.com -> 100sexlinks.com

There are 5317 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-01-28 16:22 - 2017-02-25 19:36 - 00000027 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3299710142-3868310564-1978959094-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\img35.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HDDHealth.lnk => C:\Windows\pss\HDDHealth.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe
MSCONFIG\startupreg: ZAM => "C:\Program Files\Zemana AntiMalware\ZAM.exe" /minimized

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SLSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\slsvc.exe
FirewallRules: [SLSVC-In-TCP] => (Allow) %SystemRoot%\system32\slsvc.exe
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [{F4CFD83A-D58B-4331-9FC7-226F9784CDC4}] => (Allow) C:\Windows\System32\muzapp.exe
FirewallRules: [{12BEC677-E9D6-44B9-BABE-F2063712476A}] => (Allow) C:\Windows\System32\muzapp.exe
FirewallRules: [{63B46E60-3403-4499-A84A-2E131052042D}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [WMPNSS-WMP-Out-TCP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMPNSS-WMP-Out-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMPNSS-WMP-In-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMPNSS-WMP-Out-TCP-NoScope-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMPNSS-WMP-Out-UDP-NoScope-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMPNSS-WMP-In-UDP-NoScope-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMP-Out-TCP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMP-Out-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMP-In-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [TCP Query User{A80137C5-6CBA-412B-A1EC-D75758F79773}C:\Users\Chris\Desktop\pre-scan_6_31.05.2016.1.exe] => (Allow) C:\Users\Chris\Desktop\pre-scan_6_31.05.2016.1.exe
FirewallRules: [UDP Query User{8086F52E-78FA-489A-B2C4-2651DAE624EB}C:\Users\Chris\Desktop\pre-scan_6_31.05.2016.1.exe] => (Allow) C:\Users\Chris\Desktop\pre-scan_6_31.05.2016.1.exe
FirewallRules: [TCP Query User{01072E77-9C3B-4616-930C-17F242C61391}C:\users\chris\desktop\pre-scan_6_31.05.2016.1.exe] => (Block) C:\users\chris\desktop\pre-scan_6_31.05.2016.1.exe
FirewallRules: [UDP Query User{B4B0273B-6E73-4483-AA42-4F3F1458FF14}C:\users\chris\desktop\pre-scan_6_31.05.2016.1.exe] => (Block) C:\users\chris\desktop\pre-scan_6_31.05.2016.1.exe
FirewallRules: [TCP Query User{A8064AE8-6CBA-412B-A1EC-D72343F79773}C:\Users\Chris\Desktop\adsfix_3_09.06.2016.1.exe] => (Allow) C:\Users\Chris\Desktop\adsfix_3_09.06.2016.1.exe
FirewallRules: [UDP Query User{8012CD5F-78FA-489A-B2C4-2168ADE624EB}C:\Users\Chris\Desktop\adsfix_3_09.06.2016.1.exe] => (Allow) C:\Users\Chris\Desktop\adsfix_3_09.06.2016.1.exe
FirewallRules: [{DFECEA6A-5846-4D8E-8A7E-7E8EA11DA650}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{5820D49A-8C3F-4C48-B68B-9B51B26FF326}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{E1690B09-7E02-4A7E-BEB3-6CEC371B733F}C:\users\chris\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\chris\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{4D091E5B-2B77-4C4B-8F1D-81E396EF0AA0}C:\users\chris\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\chris\appdata\roaming\utorrent\utorrent.exe
StandardProfile\AuthorizedApplications: [C:\Users\Chris\Desktop\pre-scan_6_31.05.2016.1.exe] => Enabled:pre-scan_6_31.05.2016.1
StandardProfile\AuthorizedApplications: [C:\Users\Chris\Desktop\adsfix_3_09.06.2016.1.exe] => Enabled:adsfix_3_09.06.2016.1

==================== Restore Points =========================

12-06-2017 00:00:03 Scheduled Checkpoint
13-06-2017 00:00:03 Scheduled Checkpoint
14-06-2017 00:00:04 Scheduled Checkpoint
14-06-2017 03:00:13 Windows Update
14-06-2017 22:10:58 Windows Update
16-06-2017 16:29:10 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/16/2017 02:32:42 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\CHRIS\DOWNLOADS\ROCCO SIFFREDI\3 ARTEYA, NATALY GOLD, DOLLY DIORE, BRITTANY BARDOT, LAUREN MINARDI.MP4> in the hash map cannot be updated.

Context:  Application, SystemIndex Catalog

Details:
    A device attached to the system is not functioning.   (0x8007001f)

Error: (06/16/2017 02:32:42 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\CHRIS\DOWNLOADS\ROCCO SIFFREDI\2 LARA DE SANTIS, CAROLINA ABRIL, BRITTANY BARDOT.MP4> in the hash map cannot be updated.

Context:  Application, SystemIndex Catalog

Details:
    A device attached to the system is not functioning.   (0x8007001f)

Error: (06/16/2017 02:32:42 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\CHRIS\DOWNLOADS\ROCCO SIFFREDI\1 SUBIL ARCH.MP4> in the hash map cannot be updated.

Context:  Application, SystemIndex Catalog

Details:
    A device attached to the system is not functioning.   (0x8007001f)

Error: (06/16/2017 02:29:20 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\CHRIS\DOWNLOADS\TOP NOTCH ANAL 2 (540P NEW)\5 COVERS.JPG> in the hash map cannot be updated.

Context:  Application, SystemIndex Catalog

Details:
    A device attached to the system is not functioning.   (0x8007001f)

Error: (06/16/2017 02:29:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\CHRIS\DOWNLOADS\TOP NOTCH ANAL 2 (540P NEW)\3 ADRIANA CHECHIK.MP4> in the hash map cannot be updated.

Context:  Application, SystemIndex Catalog

Details:
    A device attached to the system is not functioning.   (0x8007001f)

Error: (06/16/2017 12:40:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program WinMail.exe version 6.0.6001.18000 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 1390
Start Time: 01d2e694b9527eab
Termination Time: 4

Error: (06/14/2017 03:03:34 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "PNRPsvc" in DLL "C:\Windows\system32\pnrpperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (06/14/2017 03:03:31 AM) (Source: Perflib) (EventID: 1010) (User: )
Description: The Collect Procedure for the "EmdCache" service in DLL "C:\Windows\system32\emdmgmt.dll" generated an exception or returned an invalid status. The performance data returned by the counter DLL will not be returned in the Perf Data Block. The first four bytes (DWORD) of the Data section contains the exception code or status code.

Error: (05/19/2017 09:29:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application mshta.exe, version 9.0.8112.16872, time stamp 0x58caa97d, faulting module ntdll.dll, version 6.0.6002.19623, time stamp 0x56ec3707, exception code 0xc0000005, fault offset 0x0004a123,
process id 0x1010, application start time 0x01d2d0dea470c70a.

Error: (04/27/2017 02:55:47 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: The Collect Procedure for the "EmdCache" service in DLL "C:\Windows\system32\emdmgmt.dll" generated an exception or returned an invalid status. The performance data returned by the counter DLL will not be returned in the Perf Data Block. The first four bytes (DWORD) of the Data section contains the exception code or status code.


System errors:
=============
Error: (06/16/2017 12:24:43 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Windows Update service hung on starting.

Error: (06/16/2017 12:20:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel AGP Bus Filter service failed to start due to the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (06/16/2017 12:08:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel AGP Bus Filter service failed to start due to the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (06/10/2017 12:53:50 AM) (Source: Dhcp) (EventID: 1002) (User: )
Description: The IP address lease 192.168.1.2 for the Network Card with network address 001EC982BAAF has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).

Error: (06/09/2017 11:25:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel AGP Bus Filter service failed to start due to the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (06/09/2017 11:21:31 PM) (Source: PlugPlayManager) (EventID: 10) (User: )
Description: Error writing to server side install pipe

Error: (06/09/2017 11:21:27 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (06/09/2017 11:21:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Malwarebytes Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (06/09/2017 11:21:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (06/09/2017 11:21:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The SAMSUNG Mobile Connectivity Service service terminated unexpectedly.  It has done this 1 time(s).


==================== Memory info ===========================

Processor: Intel® Core™2 Duo CPU E6750 @ 2.66GHz
Percentage of memory in use: 64%
Total physical RAM: 3060.45 MB
Available physical RAM: 1074.2 MB
Total Virtual: 6351.89 MB
Available Virtual: 4074.67 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:288.32 GB) (Free:139 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Recovery) (Fixed) (Total:9.77 GB) (Free:3.88 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: 5ED7C68A)
Partition 1: (Active) - (Size=288.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=9.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================


  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,388 posts
  • MVP
Get Process Explorer
 
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).  
 
View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures
 
 
Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  
 
Wait a full minute then:
 
File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.
 
 
 
Get the free version of Speccy:
 
http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER.    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), 
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top about 10-20 lines down.) Save the file.  Attach the file to your next post.  (More Reply Options, Choose File, Open, Attach This File)
 
 

  • 0

#3
Lathers

Lathers

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts

Process    CPU    Private Bytes    Working Set    PID    Description    Company Name    Verified Signer
System Idle Process    91.45    0 K    24 K    0            
WmiPrvSE.exe    3.89    7,484 K    9,872 K    3820            
procexp.exe    1.56    29,688 K    31,208 K    444    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com    
svchost.exe    0.78    93,760 K    93,196 K    1104    Host Process for Windows Services    Microsoft Corporation    
Interrupts    0.78    0 K    0 K    n/a    Hardware Interrupts and DPCs        
FAHWindow32.exe    0.78    1,280 K    2,536 K    3384    File Association Helper    WinZip Computing, S.L.    
dwm.exe    0.78    45,040 K    59,552 K    584    Desktop Window Manager    Microsoft Corporation    
firefox.exe    < 0.01    309,728 K    357,028 K    5252    Firefox    Mozilla Corporation    
explorer.exe    < 0.01    80,672 K    66,264 K    1160    Windows Explorer    Microsoft Corporation    
firefox.exe    < 0.01    115,692 K    189,784 K    5944    Firefox    Mozilla Corporation    
CCleaner.exe    < 0.01    15,840 K    16,020 K    1692            
AvastUI.exe    < 0.01    18,144 K    32,092 K    2504    Avast Antivirus    AVAST Software    
WzPreloader.exe    < 0.01    7,828 K    8,400 K    4036    WinZip Preloader    WinZip Computing, S.L.    
WZQKPICK32.exe        1,336 K    2,612 K    528    WinZip Quick Pick    WinZip Computing, S.L.    
wuauclt.exe        2,836 K    5,652 K    5236    Windows Update    Microsoft Corporation    
wmpnscfg.exe        1,696 K    3,436 K    2404    Windows Media Player Network Sharing Service Configuration Application    Microsoft Corporation    
wmpnetwk.exe        4,284 K    5,100 K    2412    Windows Media Player Network Sharing Service    Microsoft Corporation    
winlogon.exe        1,944 K    4,168 K    676            
wininit.exe        1,220 K    2,232 K    620            
unsecapp.exe        2,548 K    3,780 K    4804            
taskeng.exe        9,512 K    8,092 K    568    Task Scheduler Engine    Microsoft Corporation    
taskeng.exe        2,144 K    4,500 K    2376            
taskeng.exe        1,688 K    3,804 K    3600            
System        0 K    40,332 K    4            
svchost.exe        99,772 K    103,224 K    1116    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        3,348 K    4,960 K    868    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        3,368 K    4,436 K    940    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        16,640 K    10,324 K    1076    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        2,040 K    2,760 K    1220    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        8,424 K    10,048 K    1280    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        20,128 K    15,564 K    1396    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        13,824 K    10,744 K    1816    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        2,148 K    3,908 K    2172    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        4,316 K    3,944 K    2316    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        1,420 K    2,968 K    2392    Host Process for Windows Services    Microsoft Corporation    
svchost.exe        1,820 K    12,156 K    3056    Host Process for Windows Services    Microsoft Corporation    
ss_conn_service.exe        1,544 K    1,848 K    2216    MSS CS Connectivity Service    DEVGURU Co., LTD.    
spoolsv.exe        5,808 K    6,156 K    1792    Spooler SubSystem App    Microsoft Corporation    
smss.exe        292 K    136 K    508            
SLsvc.exe        7,036 K    3,252 K    1236    Microsoft Software Licensing Service    Microsoft Corporation    
services.exe        2,736 K    4,760 K    708            
SearchIndexer.exe        42,520 K    16,232 K    2648    Microsoft Windows Search Indexer    Microsoft Corporation    
RtHDVCpl.exe        8,816 K    4,856 K    2552    HD Audio Control Panel    Realtek Semiconductor    
prevhost.exe        1,880 K    6,080 K    4128    Preview Handler Surrogate Host    Microsoft Corporation    
mbamtray.exe        16,580 K    20,232 K    3016    Malwarebytes Tray Application    Malwarebytes    
MBAMService.exe        12,840 K    28,460 K    2676    Malwarebytes Service    Malwarebytes    
lsm.exe        1,876 K    2,232 K    732            
lsass.exe        3,884 K    7,632 K    720    Local Security Authority Process    Microsoft Corporation    
HDDHealthService.exe        784 K    1,056 K    2108            
ehsched.exe        948 K    2,104 K    2076    Windows Media Center Scheduler Service    Microsoft Corporation    
ehrecvr.exe        5,004 K    6,624 K    1496    Windows Media Center Receiver Service    Microsoft Corporation    
csrss.exe        2,420 K    9,984 K    632            
csrss.exe        2,116 K    4,848 K    576            
AvastSvc.exe        164,004 K    40,992 K    1564    Avast Service    AVAST Software    
audiodg.exe        16,264 K    13,988 K    1204            
aswidsagent.exe        16,032 K    25,744 K    3548    Avast Behavior Shield    AVAST Software s.r.o.    
afwServ.exe        17,616 K    25,132 K    1684    Avast firewall service    AVAST Software    
AERTSrv.exe        364 K    416 K    612    Andrea filters APO access service (32-bit)    Andrea Electronics Corporation    

 


  • 0

#4
Lathers

Lathers

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts

        Operating System
            Windows Vista Home Premium 32-bit SP2
        CPU
            Intel Core 2 Duo E6750 @ 2.66GHz    55 °C
            Conroe 65nm Technology
        RAM
            3.00GB Dual-Channel DDR2 @ 332MHz (5-5-5-15)
        Motherboard
            Dell Inc. 0K216C (Socket 775)    46 °C
        Graphics
            LCD TV (1600x1200@60Hz)
            Intel G33/G31 Express Chipset Family (Dell)
        Storage
            298GB Seagate ST3320613AS ATA Device (SATA)    38 °C
        Optical Drives
            Optiarc DVD+-RW AD-7200S ATA Device
        Audio
            Realtek High Definition Audio
Operating System
    Windows Vista Home Premium 32-bit SP2
    Computer type: Desktop
    Installation Date: 04/02/2011 10:32:19
        Windows Security Center
            User Account Control (UAC)    Enabled
            Notify level    2 - Default
        Windows Update
            AutoUpdate    Not configured
        Windows Defender
            Windows Defender    Enabled
        Firewall
            Firewall    Enabled
            Display Name    Avast Antivirus
        Antivirus
            Antivirus    Enabled
            Display Name    Avast Antivirus
            Virus Signature Database    Up to date
        .NET Frameworks installed
            v4.5 Full
            v4.5 Client
            v3.5 SP1
            v3.0 SP2
            v2.0 SP2
        Internet Explorer
            Version    9.0.8112.16421
        PowerShell
            Version    2.0
        Environment Variables
            USERPROFILE    C:\Users\Chris
            SystemRoot    C:\Windows
                User Variables
                    GOOGLE_API_KEY    "no"
                    GOOGLE_DEFAULT_CLIENT_ID    "no"
                    GOOGLE_DEFAULT_CLIENT_SECRET    "no"
                    TEMP    C:\Users\Chris\AppData\Local\Temp
                    TMP    C:\Users\Chris\AppData\Local\Temp
                Machine Variables
                    asl.log    Destination=file
                    ComSpec    C:\Windows\system32\cmd.exe
                    DFSTRACINGON    FALSE
                    FP_NO_HOST_CHECK    NO
                    NUMBER_OF_PROCESSORS    2
                    OS    Windows_NT
                    Path    C:\Windows\system32
                    C:\Windows
                    C:\Windows\system32\wbem
                    C:\Windows\System32\WindowsPowerShell\v1.0
                    C:\Program Files\QuickTime\QTSystem
                    PATHEXT    .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
                    PROCESSOR_ARCHITECTURE    x86
                    PROCESSOR_IDENTIFIER    x86 Family 6 Model 15 Stepping 11, GenuineIntel
                    PROCESSOR_LEVEL    6
                    PROCESSOR_REVISION    0f0b
                    PSModulePath    C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
                    TEMP    C:\Windows\TEMP
                    TMP    C:\Windows\TEMP
                    TRACE_FORMAT_SEARCH_PATH    \\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
                    USERNAME    SYSTEM
                    windir    C:\Windows
        Power Profile
            Active power scheme    High performance
            Hibernation    Disabled
            Turn Off Monitor after: (On AC Power)    Never
            Suspend after: (On AC Power)    Never
            Screen saver    Enabled
        Uptime
                Current Session
                    Current Time    17/06/2017 23:08:14
                    Current Uptime    18,394 sec (0 d, 05 h, 06 m, 34 s)
                    Last Boot Time    17/06/2017 18:01:40
        Services
            Running    Andrea RT Filters Service
            Running    Application Experience
            Running    Application Information
            Running    aswbIDSAgent
            Running    Avast Antivirus
            Running    Avast Firewall Service
            Running    Background Intelligent Transfer Service
            Running    Base Filtering Engine
            Running    CNG Key Isolation
            Running    COM+ Event System
            Running    Computer Browser
            Running    Cryptographic Services
            Running    DCOM Server Process Launcher
            Running    Desktop Window Manager Session Manager
            Running    DHCP Client
            Running    Diagnostic Policy Service
            Running    Diagnostic System Host
            Running    Distributed Link Tracking Client
            Running    DNS Client
            Running    Extensible Authentication Protocol
            Running    Function Discovery Provider Host
            Running    Function Discovery Resource Publication
            Running    Group Policy Client
            Running    HDDHealth
            Running    Human Interface Device Access
            Running    IKE and AuthIP IPsec Keying Modules
            Running    IP Helper
            Running    IPsec Policy Agent
            Running    KtmRm for Distributed Transaction Coordinator
            Running    Malwarebytes Service
            Running    Multimedia Class Scheduler
            Running    Network Connections
            Running    Network List Service
            Running    Network Location Awareness
            Running    Network Store Interface Service
            Running    Peer Name Resolution Protocol
            Running    Peer Networking Identity Manager
            Running    Plug and Play
            Running    Portable Device Enumerator Service
            Running    Print Spooler
            Running    Program Compatibility Assistant Service
            Running    ReadyBoost
            Running    Remote Access Connection Manager
            Running    Remote Procedure Call (RPC)
            Running    SAMSUNG Mobile Connectivity Service
            Running    Secondary Logon
            Running    Secure Socket Tunneling Protocol Service
            Running    Security Accounts Manager
            Running    Security Center
            Running    Server
            Running    Shell Hardware Detection
            Running    Software Licensing
            Running    SSDP Discovery
            Running    Superfetch
            Running    System Event Notification Service
            Running    Tablet PC Input Service
            Running    Task Scheduler
            Running    TCP/IP NetBIOS Helper
            Running    Telephony
            Running    Terminal Services
            Running    Themes
            Running    UPnP Device Host
            Running    User Profile Service
            Running    WebClient
            Running    Windows Audio
            Running    Windows Audio Endpoint Builder
            Running    Windows Driver Foundation - User-mode Driver Framework
            Running    Windows Error Reporting Service
            Running    Windows Event Log
            Running    Windows Firewall
            Running    Windows Font Cache Service
            Running    Windows Image Acquisition (WIA)
            Running    Windows Management Instrumentation
            Running    Windows Media Center Receiver Service
            Running    Windows Media Center Scheduler Service
            Running    Windows Media Player Network Sharing Service
            Running    Windows Search
            Running    Windows Time
            Running    Windows Update
            Running    WLAN AutoConfig
            Running    WMI Performance Adapter
            Running    Workstation
            Stopped    Adobe Flash Player Update Service
            Stopped    Application Layer Gateway Service
            Stopped    ASP.NET State Service
            Stopped    Certificate Propagation
            Stopped    COM+ System Application
            Stopped    DFS Replication
            Stopped    Diagnostic Service Host
            Stopped    Distributed Transaction Coordinator
            Stopped    Health Key and Certificate Management
            Stopped    Interactive Services Detection
            Stopped    Internet Connection Sharing (ICS)
            Stopped    Link-Layer Topology Discovery Mapper
            Stopped    Microsoft .NET Framework NGEN v2.0.50727_X86
            Stopped    Microsoft .NET Framework NGEN v4.0.30319_X86
            Stopped    Microsoft iSCSI Initiator Service
            Stopped    Microsoft Software Shadow Copy Provider
            Stopped    Mozilla Maintenance Service
            Stopped    Net.Msmq Listener Adapter
            Stopped    Net.Pipe Listener Adapter
            Stopped    Net.Tcp Listener Adapter
            Stopped    Net.Tcp Port Sharing Service
            Stopped    Netlogon
            Stopped    Network Access Protection Agent
            Stopped    Office Source Engine
            Stopped    Parental Controls
            Stopped    Peer Networking Grouping
            Stopped    Performance Logs & Alerts
            Stopped    PnP-X IP Bus Enumerator
            Stopped    PNRP Machine Name Publication Service
            Stopped    Problem Reports and Solutions Control Panel Support
            Stopped    Protected Storage
            Stopped    Quality Windows Audio Video Experience
            Stopped    Remote Access Auto Connection Manager
            Stopped    Remote Procedure Call (RPC) Locator
            Stopped    Remote Registry
            Stopped    Routing and Remote Access
            Stopped    SL UI Notification Service
            Stopped    Smart Card
            Stopped    Smart Card Removal Policy
            Stopped    SNMP Trap
            Stopped    Terminal Services Configuration
            Stopped    Thread Ordering Server
            Stopped    TPM Base Services
            Stopped    Virtual Disk
            Stopped    Volume Shadow Copy
            Stopped    Windows Backup
            Stopped    Windows CardSpace
            Stopped    Windows Color System
            Stopped    Windows Connect Now - Config Registrar
            Stopped    Windows Defender
            Stopped    Windows Event Collector
            Stopped    Windows Installer
            Stopped    Windows Media Center Extender Service
            Stopped    Windows Media Center Service Launcher
            Stopped    Windows Modules Installer
            Stopped    Windows Presentation Foundation Font Cache 3.0.0.0
            Stopped    Windows Presentation Foundation Font Cache 4.0.0.0
            Stopped    Windows Remote Management (WS-Management)
            Stopped    WinHTTP Web Proxy Auto-Discovery Service
            Stopped    Wired AutoConfig
        TimeZone
            TimeZone    GMT
            Language    English (United Kingdom)
            Location    United Kingdom
            Format    English (United Kingdom)
            Currency    £
            Date Format    dd/MM/yyyy
            Time Format    HH:mm:ss
        Scheduler
            17/06/2017 23:47;    Adobe Flash Player Updater
            18/06/2017 06:35;    SafeZone scheduled Autoupdate 1449186754
            18/06/2017 12:00;    WinZip Update Notifier
            CCleanerSkipUAC
       


  • 0

#5
Lathers

Lathers

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts

Hotfixes
                Installed
                        17/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        17/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        15/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        14/06/2017  Security Update for Microsoft Office 2007 suites (KB3203436)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        14/06/2017  Security Update for Microsoft Office 2007 suites (KB3191828)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        14/06/2017  Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3203438)
                            A security vulnerability exists in Microsoft Office Compatibility
                            Pack Service Pack 3 that could allow arbitrary code to run when
                            a maliciously modified file is opened. This update resolves that
                            vulnerability.
                        14/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        14/06/2017  Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3127894)
                            A security vulnerability exists in Microsoft Office Compatibility
                            Pack Service Pack 3 that could allow arbitrary code to run when
                            a maliciously modified file is opened. This update resolves that
                            vulnerability.
                        14/06/2017  Security Update for Word Viewer (KB3203427)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        14/06/2017  Security Update for Office 2003 (KB3203484)
                            A security vulnerability exists in Office 2003 that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        14/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        13/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        12/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        11/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        11/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        10/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        09/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        08/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        07/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        06/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        05/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        04/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        03/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        02/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        01/06/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        31/05/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        27/05/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        27/05/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        26/05/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        26/05/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        25/05/2017  Security Update for Microsoft Office 2007 suites (KB2825645)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        25/05/2017  Security Update for Microsoft Office 2007 suites (KB3191895)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        25/05/2017  Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2597974)
                            A security vulnerability exists in Microsoft Office Compatibility
                            Pack Service Pack 3 that could allow arbitrary code to run when
                            a maliciously modified file is opened. This update resolves that
                            vulnerability.
                        25/05/2017  Security Update for Microsoft Office 2007 suites (KB2596904)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        25/05/2017  Security Update for Microsoft Office 2007 suites (KB3085549)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        25/05/2017  Security Update for Microsoft Office 2007 suites (KB3127945)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        25/05/2017  Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3191835)
                            A security vulnerability exists in Microsoft Office Compatibility
                            Pack Service Pack 3 that could allow arbitrary code to run when
                            a maliciously modified file is opened. This update resolves that
                            vulnerability.
                        25/05/2017  Security Update for Microsoft Office 2007 suites (KB2984938)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        25/05/2017  Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3191830)
                            A security vulnerability exists in Microsoft Office Compatibility
                            Pack Service Pack 3 that could allow arbitrary code to run when
                            a maliciously modified file is opened. This update resolves that
                            vulnerability.
                        24/05/2017  Security Update for Microsoft Office PowerPoint 2007 (KB2596843)
                            A security vulnerability exists in Microsoft Office PowerPoint
                            2007 that could allow arbitrary code to run when a maliciously
                            modified file is opened. This update resolves that vulnerability.
                        24/05/2017  Security Update for Microsoft Office 2007 suites (KB2687499)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        24/05/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        24/05/2017  Security Update for Microsoft Office 2007 suites (KB2687311)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        24/05/2017  Security Update for Microsoft Office 2007 suites (KB2596672)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        24/05/2017  Update for Microsoft Office 2007 suites (KB2596848)
                            Microsoft has released an update for Microsoft Office 2007 suites
                            . This update provides the latest fixes to Microsoft Office 2007
                            suites . Additionally, this update contains stability and performance
                            improvements.
                        24/05/2017  Microsoft Office Compatibility Pack Service Pack 3 (SP3)
                            Service Pack 3 provides the latest updates to the Microsoft Office
                            Compatibility Pack.
                        24/05/2017  Security Update for Microsoft Office 2007 suites (KB2596785)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        24/05/2017  Security Update for Microsoft Office 2007 suites (KB2596615)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        24/05/2017  Security Update for Microsoft Office 2007 suites (KB2760416)
                            A security vulnerability exists in Microsoft Office 2007 suites
                            that could allow arbitrary code to run when a maliciously modified
                            file is opened. This update resolves that vulnerability.
                        18/05/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        11/05/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        11/05/2017  Security Update for Word Viewer (KB3191909)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        06/05/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        04/05/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        27/04/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        23/04/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        22/04/2017  Windows Malicious Software Removal Tool - April 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        21/04/2017  Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB4014661)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        21/04/2017  Security Update for Windows Vista (KB4014652)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        21/04/2017  Security Update for Microsoft Silverlight (KB4017094)
                            This security update to Silverlight includes fixes outlined in
                            KB 4017094. This update is backward compatible with web applications
                            built using previous versions of Silverlight.
                        21/04/2017  Security Update for Windows Vista (KB4014793)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        21/04/2017  Update for Windows Vista (KB4017018)
                            Install this update to resolve issues in Windows. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article for more information.
                            After you install this item, you may have to restart your computer.
                        21/04/2017  Security Update for Windows Vista (KB4015067)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        21/04/2017  Security Update for Windows Vista (KB4015383)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        21/04/2017  Security Update for Windows Vista (KB4014794)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        21/04/2017  April, 2017 Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 on Windows Vista SP2 and Server 2008 SP2 (KB4014984)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        21/04/2017  Security Update for Windows Vista (KB4015380)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        21/04/2017  Security Update for Windows Vista (KB4015195)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        04/04/2017  Windows Malicious Software Removal Tool - March 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        04/04/2017  Windows Malicious Software Removal Tool - March 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        30/03/2017  Windows Malicious Software Removal Tool - March 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        27/03/2017  Update for Windows Vista (KB4012864)
                            Install this update to resolve issues in Windows. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article for more information.
                            After you install this item, you may have to restart your computer.
                        27/03/2017  Windows Malicious Software Removal Tool - March 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        23/03/2017  Security Update for Windows Vista (KB4011981)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Windows Vista (KB4012598)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Windows Vista (KB3216916)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Windows Vista (KB3217587)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Windows Vista (KB4012583)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Windows Vista (KB4012584)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Windows Vista (KB4012497)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Word Viewer (KB3178693)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        23/03/2017  Security Update for Word Viewer (KB3178694)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        23/03/2017  Security Update for Windows Vista (KB3218362)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Windows Vista (KB3205715)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Windows Vista (KB3214051)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Word Viewer (KB3178653)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        23/03/2017  Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB4012204)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        23/03/2017  Security Update for Microsoft Silverlight (KB4013867)
                            This security update to Silverlight includes fixes outlined in
                            KB 4013867. This update is backward compatible with web applications
                            built using previous versions of Silverlight.
                        09/03/2017  Windows Malicious Software Removal Tool - February 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        04/03/2017  Windows Malicious Software Removal Tool - February 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        03/03/2017  Windows Malicious Software Removal Tool - February 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        24/02/2017  Windows Malicious Software Removal Tool - February 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        05/02/2017  Windows Malicious Software Removal Tool - January 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        16/01/2017  Windows Malicious Software Removal Tool - January 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        12/01/2017  Security Update for Windows Vista (KB3216775)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        12/01/2017  Windows Malicious Software Removal Tool - January 2017 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        04/01/2017  Update for Word Viewer (KB3141490)
                            Microsoft has released an update for Word Viewer . This update
                            provides the latest fixes to Word Viewer . Additionally, this
                            update contains stability and performance improvements.
                        18/12/2016  Windows Malicious Software Removal Tool - December 2016 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        17/12/2016  Security Update for Windows Vista (KB3196348)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/12/2016  Security Update for Windows Vista (KB3204724)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/12/2016  Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB3203621)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/12/2016  December, 2016 Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 on Windows Vista SP2 and Windows Server 2008 SP2 (KB3210142)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/12/2016  Security Update for Word Viewer (KB3128044)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        17/12/2016  Update for Windows Vista (KB3203884)
                            Install this update to resolve issues in Windows. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article for more information.
                            After you install this item, you may have to restart your computer.
                        17/12/2016  Security Update for Windows Vista (KB3204723)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/12/2016  Security Update for Word Viewer (KB3127995)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        17/12/2016  Security Update for Windows Vista (KB3205638)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/12/2016  Security Update for Windows Vista (KB3208481)
                            Install this update to resolve issues in Windows. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article for more information.
                            After you install this item, you may have to restart your computer.
                        17/12/2016  Security Update for Windows Vista (KB3203838)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/12/2016  Security Update for Word Viewer (KB3128043)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        17/12/2016  Security Update for Windows Vista (KB3196726)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/12/2016  Security Update for Windows Vista (KB3204808)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Windows Malicious Software Removal Tool - November 2016 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        11/11/2016  Security Update for Windows Vista (KB3203859)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Security Update for Windows Vista (KB3181707)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Security Update for Windows Vista (KB3198218)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Security Update for Windows Vista (KB3198483)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Security Update for Windows Vista (KB3194371)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Security Update for Windows Vista (KB3193418)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Update for Windows Vista (KB3200006)
                            Install this update to resolve issues in Windows. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article for more information.
                            After you install this item, you may have to restart your computer.
                        11/11/2016  Security Update for Windows Vista (KB3198510)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Security Update for Windows Vista (KB3196718)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB3197655)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Update for Windows Vista (KB3192321)
                            Install this update to resolve issues in Windows. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article for more information.
                            After you install this item, you may have to restart your computer.
                        11/11/2016  Security Update for Windows Vista (KB3198234)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/11/2016  Security Update for Word Viewer (KB3127962)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        14/10/2016  Security Update for Windows Vista (KB3191203)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/10/2016  Security Update for Windows Vista (KB3193515)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/10/2016  Security Update for Windows Vista (KB3167679)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/10/2016  October, 2016 Security and Quality Rollup for .NET Framework 3.0, 4.5.2, 4.6 on Windows Vista SP2 and Windows Server 2008 SP2 (KB3188744)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/10/2016  Security Update for Word Viewer (KB3127898)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        14/10/2016  Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB3191492)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/10/2016  Security Update for Windows Vista (KB3190847)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/10/2016  Windows Malicious Software Removal Tool - October 2016 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        14/10/2016  Security Update for Microsoft Silverlight (KB3193713)
                            This security update to Silverlight includes fixes outlined in
                            KB 3193713. This update is backward compatible with web applications
                            built using previous versions of Silverlight.
                        14/10/2016  Security Update for Windows Vista (KB3183431)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/10/2016  Security Update for Word Viewer (KB3118394)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        14/10/2016  Security Update for Windows Vista (KB3191256)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        22/09/2016  Update for Windows Vista (KB3182203)
                            Install this update to resolve issues in Windows. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article for more information.
                            After you install this item, you may have to restart your computer.
                        17/09/2016  Windows Malicious Software Removal Tool - September 2016 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        17/09/2016  Security Update for Windows Vista (KB3174644)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/09/2016  Security Update for Windows Vista (KB3184122)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/09/2016  Security Update for Word Viewer (KB3118297)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        17/09/2016  Security Update for Windows Vista (KB3177186)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/09/2016  Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB3185319)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/09/2016  Security Update for Microsoft Silverlight (KB3182373)
                            This security update to Silverlight includes fixes outlined in
                            KB 3182373. This update is backward compatible with web applications
                            built using previous versions of Silverlight.
                        17/09/2016  Security Update for Windows Vista (KB3185911)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/09/2016  Security Update for Windows Vista (KB3175024)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        17/09/2016  Update for Windows Vista (KB3185662)
                            Install this update to resolve issues in Windows. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article for more information.
                            After you install this item, you may have to restart your computer.
                        02/09/2016  Definition Update for Windows Defender - KB915597 (Definition 1.227.1393.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        30/08/2016  Definition Update for Windows Defender - KB915597 (Definition 1.227.1079.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        26/08/2016  Definition Update for Windows Defender - KB915597 (Definition 1.227.706.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        23/08/2016  Definition Update for Windows Defender - KB915597 (Definition 1.227.408.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        19/08/2016  Definition Update for Windows Defender - KB915597 (Definition 1.227.123.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        17/08/2016  Update for Windows Vista (KB3177723)
                            Install this update to resolve issues in Windows. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article for more information.
                            After you install this item, you may have to restart your computer.
                        16/08/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.4044.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        12/08/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.3703.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        12/08/2016  Security Update for Windows Vista (KB3177725)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        12/08/2016  Security Update for Windows Vista (KB3167679)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        12/08/2016  Windows Malicious Software Removal Tool - August 2016 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        12/08/2016  Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB3175443)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        12/08/2016  Security Update for Word Viewer (KB3115480)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        12/08/2016  Security Update for Word Viewer (KB3115479)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        12/08/2016  Security Update for Word Viewer (KB3115481)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        12/08/2016  Security Update for Windows Vista (KB3178034)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        11/08/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.3489.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        06/08/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.3258.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        05/08/2016  Windows Malicious Software Removal Tool - July 2016 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        05/08/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.3193.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        02/08/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.2931.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        29/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.2702.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        26/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.2406.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        22/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.2131.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        19/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.1878.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        15/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.1529.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        14/07/2016  Security Update for Word Viewer (KB3115395)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        14/07/2016  Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Vista SP2 and Windows Server 2008 SP2 (KB3163244)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/07/2016  Security Update for Microsoft .NET Framework 4.5.2 on Windows Vista, Windows 7, and Server 2008 (KB3135996)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/07/2016  Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB3170106)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/07/2016  Security Update for Windows Vista (KB3168965)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/07/2016  Security Update for Windows Vista (KB3170455)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/07/2016  Security Update for Microsoft .NET Framework 4.5.2 on Windows Vista, Windows 7, Server 2008 (KB3163251)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        14/07/2016  Windows Malicious Software Removal Tool - July 2016 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        14/07/2016  Security Update for Word Viewer (KB3115393)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        12/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.1250.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        12/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.1232.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        08/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.793.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        07/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.659.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        06/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.433.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        01/07/2016  Definition Update for Windows Defender - KB915597 (Definition 1.225.129.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        29/06/2016  Definition Update for Windows Defender - KB915597 (Definition 1.223.2819.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        24/06/2016  Definition Update for Windows Defender - KB915597 (Definition 1.223.2531.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        23/06/2016  Update for Microsoft Silverlight (KB3162593)
                            This update to Silverlight improves security, reliability, accessibility
                            support, startup performance, enhances line-of-business support
                            and includes several fixes to better support rich internet applications.
                            This update is backward compatible with web applications built
                            using previous versions of Silverlight.
                        22/06/2016  Definition Update for Windows Defender - KB915597 (Definition 1.223.2255.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        17/06/2016  Definition Update for Windows Defender - KB915597 (Definition 1.223.1800.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        15/06/2016  Security Update for Windows Vista (KB3164035)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        15/06/2016  Security Update for Windows Vista (KB3161664)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        15/06/2016  Security Update for Windows Vista (KB3161949)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        15/06/2016  Windows Malicious Software Removal Tool - June 2016 (KB890830)
                            After the download, this tool runs one time to check your computer
                            for infection by specific, prevalent malicious software (including
                            Blaster, Sasser, and Mydoom) and helps remove any infection that
                            is found. If an infection is found, the tool will display a status
                            report the next time that you start your computer. A new version
                            of the tool will be offered every month. If you want to manually
                            run the tool on your computer, you can download a copy from the
                            Microsoft Download Center, or you can run an online version from
                            microsoft.com. This tool is not a replacement for an antivirus
                            product. To help protect your computer, you should use an antivirus
                            product.
                        15/06/2016  Security Update for Windows Vista (KB3159398)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        15/06/2016  Update for Windows Vista (KB3162835)
                            Install this update to resolve issues in Windows. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article for more information.
                            After you install this item, you may have to restart your computer.
                        15/06/2016  Cumulative Security Update for Internet Explorer 9 for Windows Vista (KB3160005)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        15/06/2016  Security Update for Windows Vista (KB3161561)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        15/06/2016  Security Update for Windows Vista (KB3164033)
                            A security issue has been identified in a Microsoft software
                            product that could affect your system. You can help protect your
                            system by installing this update from Microsoft. For a complete
                            listing of the issues that are included in this update, see the
                            associated Microsoft Knowledge Base article. After you install
                            this update, you may have to restart your system.
                        15/06/2016  Security Update for Word Viewer (KB3115187)
                            A security vulnerability exists in Word Viewer that could allow
                            arbitrary code to run when a maliciously modified file is opened.
                            This update resolves that vulnerability.
                        15/06/2016  Definition Update for Windows Defender - KB915597 (Definition 1.223.1506.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        10/06/2016  Definition Update for Windows Defender - KB915597 (Definition 1.223.1196.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                        08/06/2016  Definition Update for Windows Defender - KB915597 (Definition 1.223.921.0)
                            Install this update to revise the definition files used to detect
                            spyware and other potentially unwanted software. Once you have
                            installed this item, it cannot be removed.
                Not Installed
                        09/12/2016  SAMSUNG Electronics Co., Ltd. - Other hardware - SAMSUNG Mobile MTP Device
                            Installation Status    Failed
                            SAMSUNG Electronics Co., Ltd. Other hardware software update
                            released in May, 2012
       


  • 0

#6
Lathers

Lathers

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts

System Folders
            Application Data    C:\ProgramData
            Cookies    C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Cookies
            Desktop    C:\Users\Chris\Desktop
            Documents    C:\Users\Public\Documents
            Fonts    C:\Windows\Fonts
            Global Favorites    C:\Users\Chris\Favorites
            Internet History    C:\Users\Chris\AppData\Local\Microsoft\Windows\History
            Local Application Data    C:\Users\Chris\AppData\Local
            Music    C:\Users\Public\Music
            Path for burning CD    C:\Users\Chris\AppData\Local\Microsoft\Windows\Burn\Burn
            Physical Desktop    C:\Users\Chris\Desktop
            Pictures    C:\Users\Public\Pictures
            Program Files    C:\Program Files
            Public Desktop    C:\Users\Public\Desktop
            Start Menu    C:\ProgramData\Microsoft\Windows\Start Menu
            Start Menu Programs    C:\ProgramData\Microsoft\Windows\Start Menu\Programs
            Startup    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
            Templates    C:\ProgramData\Microsoft\Windows\Templates
            Temporary Internet Files    C:\Users\Chris\AppData\Local\Microsoft\Windows\Temporary Internet Files
            User Favorites    C:\Users\Chris\Favorites
            Videos    C:\Users\Public\Videos
            Windows Directory    C:\Windows
            Windows/System    C:\Windows\system32
        Process List
                AERTSrv.exe
                    Process ID    612
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\AERTSrv.exe
                    Memory Usage    424 KB
                    Peak Memory Usage    1.72 MB
                afwServ.exe
                    Process ID    1684
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Program Files\AVAST Software\Avast\afwServ.exe
                    Memory Usage    25 MB
                    Peak Memory Usage    35 MB
                aswidsagent.exe
                    Process ID    3548
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Program Files\AVAST Software\Avast\aswidsagent.exe
                    Memory Usage    25 MB
                    Peak Memory Usage    36 MB
                audiodg.exe
                    Process ID    1204
                    User    LOCAL SERVICE
                    Domain    NT AUTHORITY
                    Memory Usage    20 MB
                    Peak Memory Usage    22 MB
                AvastSvc.exe
                    Process ID    1564
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
                    Memory Usage    65 MB
                    Peak Memory Usage    239 MB
                AvastUI.exe
                    Process ID    2504
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Program Files\AVAST Software\Avast\AvastUI.exe
                    Memory Usage    31 MB
                    Peak Memory Usage    34 MB
                CCleaner.exe
                    Process ID    1692
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Program Files\CCleaner\CCleaner.exe
                    Memory Usage    16 MB
                    Peak Memory Usage    17 MB
                csrss.exe
                    Process ID    576
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\csrss.exe
                    Memory Usage    4.77 MB
                    Peak Memory Usage    6.28 MB
                csrss.exe
                    Process ID    632
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\csrss.exe
                    Memory Usage    7.46 MB
                    Peak Memory Usage    22 MB
                dwm.exe
                    Process ID    584
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Windows\system32\Dwm.exe
                    Memory Usage    54 MB
                    Peak Memory Usage    74 MB
                ehrecvr.exe
                    Process ID    1496
                    User    NETWORK SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\ehome\ehRecvr.exe
                    Memory Usage    6.48 MB
                    Peak Memory Usage    9.82 MB
                ehsched.exe
                    Process ID    2076
                    User    NETWORK SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\ehome\ehsched.exe
                    Memory Usage    2.07 MB
                    Peak Memory Usage    3.59 MB
                explorer.exe
                    Process ID    1160
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Windows\Explorer.EXE
                    Memory Usage    61 MB
                    Peak Memory Usage    67 MB
                FAHWindow32.exe
                    Process ID    3384
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Program Files\WinZip\FAHWindow32.exe
                    Memory Usage    2.48 MB
                    Peak Memory Usage    4.26 MB
                firefox.exe
                    Process ID    5252
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Program Files\Mozilla Firefox\firefox.exe
                    Memory Usage    358 MB
                    Peak Memory Usage    908 MB
                firefox.exe
                    Process ID    5944
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Program Files\Mozilla Firefox\firefox.exe
                    Memory Usage    273 MB
                    Peak Memory Usage    391 MB
                HDDHealthService.exe
                    Process ID    2108
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Program Files\HDD Health\HDDHealthService.exe
                    Memory Usage    1.04 MB
                    Peak Memory Usage    2.53 MB
                lsass.exe
                    Process ID    720
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\lsass.exe
                    Memory Usage    7.54 MB
                    Peak Memory Usage    8.37 MB
                lsm.exe
                    Process ID    732
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\lsm.exe
                    Memory Usage    2.31 MB
                    Peak Memory Usage    3.91 MB
                MBAMService.exe
                    Process ID    2676
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
                    Memory Usage    28 MB
                    Peak Memory Usage    32 MB
                mbamtray.exe
                    Process ID    3016
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
                    Memory Usage    20 MB
                    Peak Memory Usage    23 MB
                RtHDVCpl.exe
                    Process ID    2552
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Windows\RtHDVCpl.exe
                    Memory Usage    4.77 MB
                    Peak Memory Usage    9.94 MB
                SearchFilterHost.exe
                    Process ID    5008
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\SearchFilterHost.exe
                    Memory Usage    7.62 MB
                    Peak Memory Usage    7.62 MB
                SearchIndexer.exe
                    Process ID    2648
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\SearchIndexer.exe
                    Memory Usage    16 MB
                    Peak Memory Usage    17 MB
                SearchProtocolHost.exe
                    Process ID    5544
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\SearchProtocolHost.exe
                    Memory Usage    9.18 MB
                    Peak Memory Usage    9.18 MB
                services.exe
                    Process ID    708
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\services.exe
                    Memory Usage    5.34 MB
                    Peak Memory Usage    6.75 MB
                SLsvc.exe
                    Process ID    1236
                    User    NETWORK SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\SLsvc.exe
                    Memory Usage    3.19 MB
                    Peak Memory Usage    15 MB
                smss.exe
                    Process ID    508
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    \SystemRoot\System32\smss.exe
                    Memory Usage    140 KB
                    Peak Memory Usage    772 KB
                Speccy.exe
                    Process ID    4712
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Program Files\Speccy\Speccy.exe
                    Memory Usage    22 MB
                    Peak Memory Usage    22 MB
                spoolsv.exe
                    Process ID    1792
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\System32\spoolsv.exe
                    Memory Usage    6.50 MB
                    Peak Memory Usage    9.18 MB
                ss_conn_service.exe
                    Process ID    2216
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
                    Memory Usage    1.83 MB
                    Peak Memory Usage    3.78 MB
                svchost.exe
                    Process ID    868
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\svchost.exe
                    Memory Usage    5.09 MB
                    Peak Memory Usage    6.47 MB
                svchost.exe
                    Process ID    940
                    User    NETWORK SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\svchost.exe
                    Memory Usage    4.50 MB
                    Peak Memory Usage    6.19 MB
                svchost.exe
                    Process ID    1076
                    User    LOCAL SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\System32\svchost.exe
                    Memory Usage    12 MB
                    Peak Memory Usage    12 MB
                svchost.exe
                    Process ID    1104
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\System32\svchost.exe
                    Memory Usage    90 MB
                    Peak Memory Usage    129 MB
                svchost.exe
                    Process ID    2172
                    User    NETWORK SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\svchost.exe
                    Memory Usage    3.82 MB
                    Peak Memory Usage    5.35 MB
                svchost.exe
                    Process ID    2316
                    User    LOCAL SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\svchost.exe
                    Memory Usage    3.87 MB
                    Peak Memory Usage    6.52 MB
                svchost.exe
                    Process ID    2392
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\System32\svchost.exe
                    Memory Usage    2.90 MB
                    Peak Memory Usage    4.07 MB
                svchost.exe
                    Process ID    1280
                    User    LOCAL SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\svchost.exe
                    Memory Usage    9.92 MB
                    Peak Memory Usage    13 MB
                svchost.exe
                    Process ID    1220
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\svchost.exe
                    Memory Usage    2.89 MB
                    Peak Memory Usage    4.63 MB
                svchost.exe
                    Process ID    3056
                    User    LOCAL SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\svchost.exe
                    Memory Usage    12 MB
                    Peak Memory Usage    13 MB
                svchost.exe
                    Process ID    1116
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\svchost.exe
                    Memory Usage    104 MB
                    Peak Memory Usage    1.62 GB
                svchost.exe
                    Process ID    1816
                    User    LOCAL SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\svchost.exe
                    Memory Usage    11 MB
                    Peak Memory Usage    241 MB
                svchost.exe
                    Process ID    1396
                    User    NETWORK SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\svchost.exe
                    Memory Usage    15 MB
                    Peak Memory Usage    25 MB
                System
                    Process ID    4
                    Memory Usage    40 MB
                    Peak Memory Usage    45 MB
                System Idle Process
                    Process ID    0
                taskeng.exe
                    Process ID    2376
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\taskeng.exe
                    Memory Usage    4.39 MB
                    Peak Memory Usage    6.25 MB
                taskeng.exe
                    Process ID    3600
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Windows\system32\taskeng.exe
                    Memory Usage    3.73 MB
                    Peak Memory Usage    4.94 MB
                taskeng.exe
                    Process ID    568
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Windows\system32\taskeng.exe
                    Memory Usage    7.95 MB
                    Peak Memory Usage    11 MB
                unsecapp.exe
                    Process ID    4804
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Windows\System32\wbem\unsecapp.exe
                    Memory Usage    3.73 MB
                    Peak Memory Usage    4.92 MB
                wininit.exe
                    Process ID    620
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\wininit.exe
                    Memory Usage    2.20 MB
                    Peak Memory Usage    4.13 MB
                winlogon.exe
                    Process ID    676
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\winlogon.exe
                    Memory Usage    4.09 MB
                    Peak Memory Usage    6.84 MB
                WmiApSrv.exe
                    Process ID    1928
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\system32\wbem\WmiApSrv.exe
                    Memory Usage    4.92 MB
                    Peak Memory Usage    4.93 MB
                WmiPrvSE.exe
                    Process ID    3820
                    User    NETWORK SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\System32\wbem\WmiPrvSE.exe
                    Memory Usage    14 MB
                    Peak Memory Usage    14 MB
                WmiPrvSE.exe
                    Process ID    4680
                    User    SYSTEM
                    Domain    NT AUTHORITY
                    Path    C:\Windows\System32\wbem\WmiPrvSE.exe
                    Memory Usage    27 MB
                    Peak Memory Usage    27 MB
                WmiPrvSE.exe
                    Process ID    4260
                    User    LOCAL SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Windows\System32\wbem\WmiPrvSE.exe
                    Memory Usage    8.34 MB
                    Peak Memory Usage    8.59 MB
                wmpnetwk.exe
                    Process ID    2412
                    User    NETWORK SERVICE
                    Domain    NT AUTHORITY
                    Path    C:\Program Files\Windows Media Player\wmpnetwk.exe
                    Memory Usage    5.00 MB
                    Peak Memory Usage    8.53 MB
                wmpnscfg.exe
                    Process ID    2404
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Program Files\Windows Media Player\wmpnscfg.exe
                    Memory Usage    3.36 MB
                    Peak Memory Usage    5.13 MB
                wuauclt.exe
                    Process ID    5236
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Windows\system32\wuauclt.exe
                    Memory Usage    5.52 MB
                    Peak Memory Usage    5.71 MB
                WzPreloader.exe
                    Process ID    4036
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Program Files\WinZip\WzPreloader.exe
                    Memory Usage    8.30 MB
                    Peak Memory Usage    82 MB
                WZQKPICK32.exe
                    Process ID    528
                    User    Chris
                    Domain    DELL-530
                    Path    C:\Program Files\WinZip\WZQKPICK32.exe
                    Memory Usage    2.55 MB
                    Peak Memory Usage    4.74 MB
        Security Options
            Accounts: Administrator account status    Disabled
            Accounts: Guest account status    Disabled
            Accounts: Limit local account use of blank passwords to console logon only    Enabled
            Accounts: Rename administrator account    Administrator
            Accounts: Rename guest account    Guest
            Audit: Audit the access of global system objects    Disabled
            Audit: Audit the use of Backup and Restore privilege    Disabled
            Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings    Not Defined
            Audit: Shut down system immediately if unable to log security audits    Disabled
            DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax    Not Defined
            DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax    Not Defined
            Devices: Allow undock without having to log on    Enabled
            Devices: Allowed to format and eject removable media    Not Defined
            Devices: Prevent users from installing printer drivers    Disabled
            Devices: Restrict CD-ROM access to locally logged-on user only    Not Defined
            Devices: Restrict floppy access to locally logged-on user only    Not Defined
            Domain controller: Allow server operators to schedule tasks    Not Defined
            Domain controller: LDAP server signing requirements    Not Defined
            Domain controller: Refuse machine account password changes    Not Defined
            Domain member: Digitally encrypt or sign secure channel data (always)    Enabled
            Domain member: Digitally encrypt secure channel data (when possible)    Enabled
            Domain member: Digitally sign secure channel data (when possible)    Enabled
            Domain member: Disable machine account password changes    Disabled
            Domain member: Maximum machine account password age    30 days
            Domain member: Require strong (Windows 2000 or later) session key    Enabled
            Interactive logon: Do not display last user name    Disabled
            Interactive logon: Do not require CTRL+ALT+DEL    Not Defined
            Interactive logon: Message text for users attempting to log on
            Interactive logon: Message title for users attempting to log on
            Interactive logon: Number of previous logons to cache (in case domain controller is not available)    10 logons
            Interactive logon: Prompt user to change password before expiration    14 days
            Interactive logon: Require Domain Controller authentication to unlock workstation    Disabled
            Interactive logon: Require smart card    Disabled
            Interactive logon: Smart card removal behavior    No Action
            Microsoft network client: Digitally sign communications (always)    Disabled
            Microsoft network client: Digitally sign communications (if server agrees)    Enabled
            Microsoft network client: Send unencrypted password to third-party SMB servers    Disabled
            Microsoft network server: Amount of idle time required before suspending session    15 minutes
            Microsoft network server: Digitally sign communications (always)    Disabled
            Microsoft network server: Digitally sign communications (if client agrees)    Disabled
            Microsoft network server: Disconnect clients when logon hours expire    Enabled
            Network access: Allow anonymous SID/Name translation    Disabled
            Network access: Do not allow anonymous enumeration of SAM accounts    Enabled
            Network access: Do not allow anonymous enumeration of SAM accounts and shares    Disabled
            Network access: Do not allow storage of credentials or .NET Passports for network authentication    Disabled
            Network access: Let Everyone permissions apply to anonymous users    Disabled
            Network access: Named Pipes that can be accessed anonymously    netlogon,lsarpc,samr,browser
            Network access: Remotely accessible registry paths    System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion
            Network access: Remotely accessible registry paths and sub-paths    System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog
            Network access: Restrict anonymous access to Named Pipes and Shares    Enabled
            Network access: Shares that can be accessed anonymously    Not Defined
            Network access: Sharing and security model for local accounts    Classic - local users authenticate as themselves
            Network security: Do not store LAN Manager hash value on next password change    Enabled
            Network security: Force logoff when logon hours expire    Disabled
            Network security: LAN Manager authentication level    Send NTLMv2 response only
            Network security: LDAP client signing requirements    Negotiate signing
            Network security: Minimum session security for NTLM SSP based (including secure RPC) clients    No minimum
            Network security: Minimum session security for NTLM SSP based (including secure RPC) servers    No minimum
            Recovery console: Allow automatic administrative logon    Enabled
            Recovery console: Allow floppy copy and access to all drives and all folders    Enabled
            Shutdown: Allow system to be shut down without having to log on    Enabled
            Shutdown: Clear virtual memory pagefile    Disabled
            System cryptography: Force strong key protection for user keys stored on the computer    Not Defined
            System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing    Disabled
            System objects: Require case insensitivity for non-Windows subsystems    Not Defined
            System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links)    Enabled
            System settings: Optional subsystems    Posix
            System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies    Disabled
            User Account Control: Admin Approval Mode for the Built-in Administrator account    Disabled
            User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop    Disabled
            User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode    Not Defined
            User Account Control: Behavior of the elevation prompt for standard users    Not Defined
            User Account Control: Detect application installations and prompt for elevation    Enabled
            User Account Control: Only elevate executables that are signed and validated    Disabled
            User Account Control: Only elevate UIAccess applications that are installed in secure locations    Enabled
            User Account Control: Run all administrators in Admin Approval Mode    Enabled
            User Account Control: Switch to the secure desktop when prompting for elevation    Enabled
            User Account Control: Virtualize file and registry write failures to per-user locations    Enabled
        Device Tree
                ACPI x86-based PC
                        Microsoft ACPI-Compliant System
                            ACPI Fan
                            ACPI Fixed Feature Button
                            ACPI Power Button
                            ACPI Thermal Zone
                            Intel Core2 Duo CPU E6750 @ 2.66GHz
                            Intel Core2 Duo CPU E6750 @ 2.66GHz
                            System board
                                PCI bus
                                    Intel 82562V 10/100 Network Connection
                                    Intel 82801 PCI Bridge - 244E
                                    Intel G33/G31/P35/P31 Express Chipset PCI Express Root Port - 29C1
                                    Intel G33/G31/P35/P31 Express Chipset Processor to I/O Controller - 29C0
                                    Intel ICH9 Family SMBus Controller - 2930
                                    Motherboard resources
                                        Intel® G33/G31 Express Chipset Family
                                            Generic PnP Monitor
                                        Intel® ICH9 Family USB Universal Host Controller - 2937
                                            USB Root Hub
                                        Intel® ICH9 Family USB Universal Host Controller - 2938
                                                USB Root Hub
                                                        USB Human Interface Device
                                                            HID-compliant mouse
                                        Intel® ICH9 Family USB Universal Host Controller - 2939
                                                USB Root Hub
                                                        USB Human Interface Device
                                                            HID Keyboard Device
                                        Intel® ICH9 Family USB2 Enhanced Host Controller - 293C
                                            USB Root Hub
                                        High Definition Audio Controller
                                            Realtek High Definition Audio
                                        Intel® ICH9 Family USB Universal Host Controller - 2934
                                            USB Root Hub
                                        Intel® ICH9 Family USB Universal Host Controller - 2935
                                            USB Root Hub
                                        Intel® ICH9 Family USB Universal Host Controller - 2936
                                            USB Root Hub
                                        Intel® ICH9 Family USB2 Enhanced Host Controller - 293A
                                            USB Root Hub
                                        Intel® ICH9R LPC Interface Controller - 2916
                                            Direct memory access controller
                                            High precision event timer
                                            Intel 82802 Firmware Hub Device
                                            Motherboard resources
                                            Motherboard resources
                                            Numeric data processor
                                            Programmable interrupt controller
                                            Standard floppy disk controller
                                            System CMOS/real time clock
                                            System speaker
                                            System timer
                                        Intel® ICH9R/DO/DH 4 port Serial ATA Storage Controller 1 - 2920
                                                IDE Channel
                                                    ST3320613AS ATA Device
                                                IDE Channel
                                                    Optiarc DVD+-RW AD-7200S ATA Device
                                        Intel® ICH9 Family 2 port Serial ATA Storage Controller 2 - 2926
                                            IDE Channel
                                            IDE Channel
CPU
        Intel Core 2 Duo E6750
            Cores    2
            Threads    2
            Name    Intel Core 2 Duo E6750
            Code Name    Conroe
            Package    Socket 775 LGA
            Technology    65nm
            Specification    Intel Core2 Duo CPU E6750 @ 2.66GHz
            Family    6
            Extended Family    6
            Model    F
            Extended Model    F
            Stepping    B
            Revision    G0
            Instructions    MMX, SSE, SSE2, SSE3, SSSE3, Intel 64, NX, VMX
            Virtualization    Supported, Enabled
            Hyperthreading    Not supported
            Fan Speed    1979 RPM
            Rated Bus Speed    1330.0 MHz
            Stock Core Speed    2666 MHz
            Stock Bus Speed    333 MHz
            Average Temperature    55 °C
                Caches
                    L1 Data Cache Size    2 x 32 KBytes
                    L1 Instructions Cache Size    2 x 32 KBytes
                    L2 Unified Cache Size    4096 KBytes
                Cores
                        Core 0
                            Core Speed    2660.0 MHz
                            Multiplier    x 8.0
                            Bus Speed    332.5 MHz
                            Rated Bus Speed    1330.0 MHz
                            Temperature    55 °C
                            Threads    APIC ID: 0
                        Core 1
                            Core Speed    2660.0 MHz
                            Multiplier    x 8.0
                            Bus Speed    332.5 MHz
                            Rated Bus Speed    1330.0 MHz
                            Temperature    54 °C
                            Threads    APIC ID: 1
RAM
        Memory slots
            Total memory slots    4
            Used memory slots    3
            Free memory slots    1
        Memory
            Type    DDR2
            Size    3072 MBytes
            Channels #    Dual
            DRAM Frequency    332.5 MHz
            CAS# Latency (CL)    5 clocks
            RAS# to CAS# Delay (tRCD)    5 clocks
            RAS# Precharge (tRP)    5 clocks
            Cycle Time (tRAS)    15 clocks
            Command Rate (CR)    2T
        Physical Memory
            Memory Usage    62 %
            Total Physical    2.99 GB
            Available Physical    1.12 GB
            Total Virtual    6.20 GB
            Available Virtual    4.19 GB
        SPD
            Number Of SPD Modules    3
                Slot #1
                    Type    DDR2
                    Size    1024 MBytes
                    Manufacturer    Samsung
                    Max Bandwidth    PC2-6400 (400 MHz)
                    Part Number    M3 78T2863RZS-CF7
                    Serial Number    2035838827
                    Week/year    35 / 08
                        Timing table
                                JEDEC #1
                                    Frequency    266.7 MHz
                                    CAS# Latency    4.0
                                    RAS# To CAS#    4
                                    RAS# Precharge    4
                                    tRAS    12
                                    tRC    16
                                    Voltage    1.800 V
                                JEDEC #2
                                    Frequency    333.3 MHz
                                    CAS# Latency    5.0
                                    RAS# To CAS#    5
                                    RAS# Precharge    5
                                    tRAS    16
                                    tRC    21
                                    Voltage    1.800 V
                                JEDEC #3
                                    Frequency    400.0 MHz
                                    CAS# Latency    6.0
                                    RAS# To CAS#    6
                                    RAS# Precharge    6
                                    tRAS    18
                                    tRC    24
                                    Voltage    1.800 V
                Slot #2
                    Type    DDR2
                    Size    1024 MBytes
                    Manufacturer    Unknown
                    Max Bandwidth    PC2-6400 (400 MHz)
                        Timing table
                                JEDEC #1
                                    Frequency    200.0 MHz
                                    CAS# Latency    3.0
                                    RAS# To CAS#    3
                                    RAS# Precharge    3
                                    tRAS    9
                                    tRC    12
                                    Voltage    1.800 V
                                JEDEC #2
                                    Frequency    266.7 MHz
                                    CAS# Latency    4.0
                                    RAS# To CAS#    4
                                    RAS# Precharge    4
                                    tRAS    12
                                    tRC    16
                                    Voltage    1.800 V
                                JEDEC #3
                                    Frequency    400.0 MHz
                                    CAS# Latency    5.0
                                    RAS# To CAS#    5
                                    RAS# Precharge    5
                                    tRAS    18
                                    tRC    23
                                    Voltage    1.800 V
                Slot #3
                    Type    DDR2
                    Size    1024 MBytes
                    Manufacturer    Samsung
                    Max Bandwidth    PC2-6400 (400 MHz)
                    Part Number    M3 78T2863RZS-CF7
                    Serial Number    2035838766
                    Week/year    35 / 08
                        Timing table
                                JEDEC #1
                                    Frequency    266.7 MHz
                                    CAS# Latency    4.0
                                    RAS# To CAS#    4
                                    RAS# Precharge    4
                                    tRAS    12
                                    tRC    16
                                    Voltage    1.800 V
                                JEDEC #2
                                    Frequency    333.3 MHz
                                    CAS# Latency    5.0
                                    RAS# To CAS#    5
                                    RAS# Precharge    5
                                    tRAS    16
                                    tRC    21
                                    Voltage    1.800 V
                                JEDEC #3
                                    Frequency    400.0 MHz
                                    CAS# Latency    6.0
                                    RAS# To CAS#    6
                                    RAS# Precharge    6
                                    tRAS    18
                                    tRC    24
                                    Voltage    1.800 V
Motherboard
    Manufacturer    Dell Inc.
    Model    0K216C (Socket 775)
    Version    ÿÿÿ
    Chipset Vendor    Intel
    Chipset Model    P35/G33/G31
    Chipset Revision    A2
    Southbridge Vendor    Intel
    Southbridge Model    82801IR (ICH9R)
    Southbridge Revision    02
    System Temperature    46 °C
        BIOS
            Brand    Dell Inc.
            Version    1.0.15
            Date    20/06/2008
        Voltage
            CPU CORE    1.344 V
            MEMORY CONTROLLER    3.072 V
            +3.3V    3.392 V
            +5V    5.107 V
            +12V    12.096 V
            -12V    -0.384 V
            -5V    -0.512 V
            +5V HIGH THRESHOLD    5.161 V
            CMOS BATTERY    3.232 V
        PCI Data
                Slot PCI
                    Slot Type    PCI
                    Slot Usage    Available
                    Bus Width    32 bit
                    Slot Designation    PCI1
                    Characteristics    5V, PME
                    Slot Number    0
                Slot PCI
                    Slot Type    PCI
                    Slot Usage    Available
                    Bus Width    32 bit
                    Slot Designation    PCI2
                    Characteristics    5V, PME
                    Slot Number    1
                Slot PCI
                    Slot Type    PCI
                    Slot Usage    Available
                    Data lanes    x16
                    Slot Designation    PCI3
                    Characteristics    5V, PME
                    Slot Number    2
                Slot PCI
                    Slot Type    PCI
                    Slot Usage    Available
                    Data lanes    x1
                    Slot Designation    PCI4
                    Characteristics    5V, PME
                    Slot Number    3
Graphics
        Monitor
            Name    LCD TV on Intel G33/G31 Express Chipset Family
            Current Resolution    1600x1200 pixels
            Work Resolution    1600x1167 pixels
            State    Enabled, Primary, Output devices support
            Monitor Width    1600
            Monitor Height    1200
            Monitor BPP    32 bits per pixel
            Monitor Frequency    60 Hz
            Device    \\.\DISPLAY1\Monitor0
        Intel G33/G31 Express Chipset Family
            Manufacturer    Intel
            Model    G33/G31 Express Chipset Family
            Device ID    8086-29C2
            Revision    3
            Subvendor    Dell (1028)
            Current Performance Level    Level 0
            Driver version    7.15.10.1472
                Count of performance levels : 1
                    Level 1 - "Perf Level 0"
Storage
        Hard drives
                ST3320613AS ATA Device
                    Manufacturer    Seagate
                    Form Factor    3.5"
                    Heads    16
                    Cylinders    38,913
                    Tracks    9,922,815
                    Sectors    625,137,345
                    SATA type    SATA-II 3.0Gb/s
                    Device type    Fixed
                    ATA Standard    ATA8-ACS
                    Serial Number    5SZ054NB
                    Firmware Version Number    DE11
                    LBA Size    48-bit LBA
                    Power On Count    3588 times
                    Power On Time    2519.3 days
                    Speed    7200 RPM
                    Features    S.M.A.R.T., AAM, NCQ
                    Max. Transfer Mode    SATA II 3.0Gb/s
                    Used Transfer Mode    SATA II 3.0Gb/s
                    Interface    SATA
                    Capacity    298 GB
                    Real size    320,072,933,376 bytes
                    RAID Type    None
                        S.M.A.R.T
                            Status    Good
                            Temperature    38 °C
                            Temperature Range    OK (less than 50 °C)
                                S.M.A.R.T attributes
                                        01
                                            Attribute name    Read Error Rate
                                            Real value    0
                                            Current    110
                                            Worst    99
                                            Threshold    6
                                            Raw Value    000184DB06
                                            Status    Good
                                        03
                                            Attribute name    Spin-Up Time
                                            Real value    0 ms
                                            Current    98
                                            Worst    97
                                            Threshold    0
                                            Raw Value    0000000000
                                            Status    Good
                                        04
                                            Attribute name    Start/Stop Count
                                            Real value    3,617
                                            Current    97
                                            Worst    97
                                            Threshold    20
                                            Raw Value    0000000E21
                                            Status    Good
                                        05
                                            Attribute name    Reallocated Sectors Count
                                            Real value    0
                                            Current    100
                                            Worst    100
                                            Threshold    36
                                            Raw Value    0000000000
                                            Status    Good
                                        07
                                            Attribute name    Seek Error Rate
                                            Real value    0
                                            Current    91
                                            Worst    60
                                            Threshold    30
                                            Raw Value    005F42F405
                                            Status    Good
                                        09
                                            Attribute name    Power-On Hours (POH)
                                            Real value    2519d 8h
                                            Current    31
                                            Worst    31
                                            Threshold    0
                                            Raw Value    000000EC30
                                            Status    Good
                                        0A
                                            Attribute name    Spin Retry Count
                                            Real value    11
                                            Current    100
                                            Worst    100
                                            Threshold    97
                                            Raw Value    000000000B
                                            Status    Good
                                        0C
                                            Attribute name    Device Power Cycle Count
                                            Real value    3,588
                                            Current    97
                                            Worst    97
                                            Threshold    20
                                            Raw Value    0000000E04
                                            Status    Good
                                        B8
                                            Attribute name    End-to-End error / IOEDC
                                            Real value    0
                                            Current    100
                                            Worst    100
                                            Threshold    99
                                            Raw Value    0000000000
                                            Status    Good
                                        BB
                                            Attribute name    Reported Uncorrectable Errors
                                            Real value    2
                                            Current    98
                                            Worst    98
                                            Threshold    0
                                            Raw Value    0000000002
                                            Status    Good
                                        BC
                                            Attribute name    Command Timeout
                                            Real value    131
                                            Current    100
                                            Worst    99
                                            Threshold    0
                                            Raw Value    0000000083
                                            Status    Good
                                        BD
                                            Attribute name    High Fly Writes (WDC)
                                            Real value    244
                                            Current    1
                                            Worst    1
                                            Threshold    0
                                            Raw Value    00000000F4
                                            Status    Good
                                        BE
                                            Attribute name    Airflow Temperature
                                            Real value    38 °C
                                            Current    62
                                            Worst    58
                                            Threshold    45
                                            Raw Value    00281B0026
                                            Status    Good
                                        C2
                                            Attribute name    Temperature
                                            Real value    38 °C
                                            Current    38
                                            Worst    42
                                            Threshold    0
                                            Raw Value    0000000026
                                            Status    Good
                                        C3
                                            Attribute name    Hardware ECC Recovered
                                            Real value    0
                                            Current    42
                                            Worst    33
                                            Threshold    0
                                            Raw Value    000184DB06
                                            Status    Good
                                        C5
                                            Attribute name    Current Pending Sector Count
                                            Real value    0
                                            Current    100
                                            Worst    100
                                            Threshold    0
                                            Raw Value    0000000000
                                            Status    Good
                                        C6
                                            Attribute name    Uncorrectable Sector Count
                                            Real value    0
                                            Current    100
                                            Worst    100
                                            Threshold    0
                                            Raw Value    0000000000
                                            Status    Good
                                        C7
                                            Attribute name    UltraDMA CRC Error Count
                                            Real value    0
                                            Current    200
                                            Worst    200
                                            Threshold    0
                                            Raw Value    0000000000
                                            Status    Good
                                        F0
                                            Attribute name    Head Flying Hours
                                            Real value    2929d 13h
                                            Current    100
                                            Worst    253
                                            Threshold    0
                                            Raw Value    00000112A5
                                            Status    Good
                                        F1
                                            Attribute name    Total LBAs Written
                                            Real value    3,387,430,950
                                            Current    100
                                            Worst    253
                                            Threshold    0
                                            Raw Value    00C9E81826
                                            Status    Good
                                        F2
                                            Attribute name    Total LBAs Read
                                            Real value    586,951,739
                                            Current    100
                                            Worst    253
                                            Threshold    0
                                            Raw Value    0022FC2C3B
                                            Status    Good
                        Partition 0
                            Partition ID    Disk #0, Partition #0
                            Disk Letter    C:
                            File System    NTFS
                            Volume Serial Number    EC9C0D8C
                            Size    288 GB
                            Used Space    153 GB (53%)
                            Free Space    134 GB (47%)
                        Partition 1
                            Partition ID    Disk #0, Partition #1
                            Disk Letter    D:
                            File System    NTFS
                            Volume Serial Number    3E204527
                            Size    9.77 GB
                            Used Space    5.88 GB (60%)
                            Free Space    3.88 GB (40%)
Optical Drives
        Optiarc DVD+-RW AD-7200S ATA Device
            Media Type    DVD Writer
            Name    Optiarc DVD+-RW AD-7200S ATA Device
            Availability    Running/Full Power
            Capabilities    Random Access, Supports Writing, Supports Removable Media
            Read capabilities    CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
            Write capabilities    CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
            Config Manager Error Code    Device is working properly
            Config Manager User Config    FALSE
            Drive    E:
            Media Loaded    FALSE
            SCSI Bus    1
            SCSI Logical Unit    0
            SCSI Port    1
            SCSI Target Id    0
            Status    OK
Audio
        Sound Card
            Realtek High Definition Audio
        Playback Device
            Speakers (Realtek High Definition Audio)
        Speaker Configuration
            Speaker type    Stereo
Peripherals
        HID Keyboard Device
            Device Kind    Keyboard
            Device Name    HID Keyboard Device
            Vendor    Unknown
            Location    USB Human Interface Device
                Driver
                    Date    6-21-2006
                    Version    6.0.6002.18005
                    File    C:\Windows\system32\DRIVERS\kbdhid.sys
                    File    C:\Windows\system32\DRIVERS\kbdclass.sys
        HID-compliant mouse
            Device Kind    Mouse
            Device Name    HID-compliant mouse
            Vendor    Logitech
            Location    USB Human Interface Device
                Driver
                    Date    6-21-2006
                    Version    6.0.6001.18000
                    File    C:\Windows\system32\DRIVERS\mouhid.sys
                    File    C:\Windows\system32\DRIVERS\mouclass.sys
        Printers
                Microsoft XPS Document Writer (Default Printer)
                    Printer Port    XPSPort:
                    Print Processor    WinPrint
                    Availability    Always
                    Priority    1
                    Duplex    None
                    Print Quality    600 * 600 dpi Color
                    Status    Unknown
                        Driver
                            Driver Name    Microsoft XPS Document Writer (v6.00)
                            Driver Path    C:\Windows\system32\spool\DRIVERS\W32X86\3\mxdwdrv.dll
Network
    You are connected to the internet
    Connected through    Intel 82562V 10/100 Network Connection
    IP Address    192.168.1.2
    Subnet mask    255.255.255.0
    Gateway server    192.168.1.1
    Preferred DNS server    192.168.1.1
    DHCP    Enabled
    DHCP server    192.168.1.1
    External IP Address    2.101.13.246
    Adapter Type    Ethernet
    NetBIOS over TCP/IP    Enabled via DHCP
    NETBIOS Node Type    Hybrid node
    Link Speed    666 Bps
        Computer Name
            NetBIOS Name    DELL-530
            DNS Name    DELL-530
            Membership    Part of workgroup
            Workgroup    WORKGROUP
        Remote Desktop
            Disabled
                Console
                    State    Active
                    Domain    DELL-530
        WinInet Info
            LAN Connection
            Local system uses a local area network to connect to the Internet
            Local system has RAS to connect to the Internet
        Wi-Fi Info
            Wi-Fi not enabled
        WinHTTPInfo
            WinHTTPSessionProxyType    No proxy
            Session Proxy
            Session Proxy Bypass
            Connect Retries    5
            Connect Timeout (ms)    60,000
            HTTP Version    HTTP 1.1
            Max Connects Per 1.0 Servers    INFINITE
            Max Connects Per Servers    INFINITE
            Max HTTP automatic redirects    10
            Max HTTP status continue    10
            Send Timeout (ms)    30,000
            IEProxy Auto Detect    No
            IEProxy Auto Config
            IEProxy
            IEProxy Bypass
            Default Proxy Config Access Type    No proxy
            Default Config Proxy
            Default Config Proxy Bypass
        Sharing and Discovery
            Network Discovery    Enabled
            File and Printer Sharing    Enabled
            File and printer sharing service    Disabled
            Simple File Sharing    Enabled
            Administrative Shares    Enabled
            Network access: Sharing and security model for local accounts    Classic - local users authenticate as themselves
        Adapters List
                Enabled
                        Intel® 82562V 10/100 Network Connection
                            Connection Name    Local Area Connection
                            NetBIOS over TCPIP    Yes
                            DHCP enabled    Yes
                            MAC Address    00-1E-C9-82-BA-AF
                            IP Address    192.168.1.2
                            Subnet mask    255.255.255.0
                            Gateway server    192.168.1.1
                            DHCP    192.168.1.1
                            DNS Server    192.168.1.1
                            0.0.0.0
        Network Shares
            E    E:\
        Current TCP Connections
                AvastSvc.exe (1564)
                    Local 0.0.0.0:27275    LISTEN
                    Local 127.0.0.1:12025    LISTEN
                    Local 127.0.0.1:12110    LISTEN
                    Local 127.0.0.1:12119    LISTEN
                    Local 127.0.0.1:12143    LISTEN
                    Local 127.0.0.1:12465    LISTEN
                    Local 127.0.0.1:12563    LISTEN
                    Local 127.0.0.1:12993    LISTEN
                    Local 127.0.0.1:12995    LISTEN
                    Local 127.0.0.1:27275    LISTEN
                    Local 192.168.1.2:50371    CLOSE-WAIT Remote 77.234.45.53:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:49168    ESTABLISHED Remote 77.234.43.11:80 (Querying... ) (HTTP)
                C:\Program Files\CCleaner\CCleaner.exe (1692)
                    Local 192.168.1.2:49670    CLOSE-WAIT Remote 151.101.16.64:80 (Querying... ) (HTTP)
                C:\Program Files\Mozilla Firefox\firefox.exe (5252)
                    Local 127.0.0.1:50162    ESTABLISHED Remote 127.0.0.1:50161 (Querying... )
                    Local 192.168.1.2:52826    ESTABLISHED Remote 54.225.209.104:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52461    ESTABLISHED Remote 216.58.206.46:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52476    ESTABLISHED Remote 216.58.206.46:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52477    ESTABLISHED Remote 157.240.1.23:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52494    ESTABLISHED Remote 157.240.1.35:443 (Querying... ) (HTTPS)
                    Local 127.0.0.1:50161    ESTABLISHED Remote 127.0.0.1:50162 (Querying... )
                    Local 192.168.1.2:52621    ESTABLISHED Remote 74.125.206.154:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52638    ESTABLISHED Remote 216.58.206.34:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52712    ESTABLISHED Remote 52.85.74.219:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52721    ESTABLISHED Remote 52.85.74.136:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52810    ESTABLISHED Remote 151.101.16.134:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52840    ESTABLISHED Remote 52.85.74.134:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52841    ESTABLISHED Remote 52.85.74.134:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52842    ESTABLISHED Remote 52.85.74.134:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52827    ESTABLISHED Remote 54.225.209.104:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52828    ESTABLISHED Remote 52.85.74.199:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52811    ESTABLISHED Remote 62.24.131.73:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52812    ESTABLISHED Remote 62.24.131.73:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52849    ESTABLISHED Remote 52.21.144.38:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52850    ESTABLISHED Remote 52.21.144.38:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52851    ESTABLISHED Remote 52.21.144.38:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52852    ESTABLISHED Remote 52.21.144.38:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52853    ESTABLISHED Remote 52.21.144.38:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52854    ESTABLISHED Remote 52.21.144.38:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52806    ESTABLISHED Remote 104.16.26.235:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52804    ESTABLISHED Remote 151.101.16.68:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52808    ESTABLISHED Remote 104.16.27.235:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52820    ESTABLISHED Remote 104.16.21.35:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52835    ESTABLISHED Remote 52.20.205.108:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52836    ESTABLISHED Remote 52.20.205.108:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52748    ESTABLISHED Remote 216.58.204.14:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52838    ESTABLISHED Remote 52.85.74.59:80 (Querying... ) (HTTP)
                C:\Program Files\Mozilla Firefox\firefox.exe (5944)
                    Local 127.0.0.1:50164    ESTABLISHED Remote 127.0.0.1:50165 (Querying... )
                    Local 127.0.0.1:50165    ESTABLISHED Remote 127.0.0.1:50164 (Querying... )
                lsass.exe (720)
                    Local 0.0.0.0:49155    LISTEN
                MBAMService.exe (2676)
                    Local 192.168.1.2:49212    CLOSE-WAIT Remote 54.201.217.73:443 (Querying... ) (HTTPS)
                services.exe (708)
                    Local 0.0.0.0:49156    LISTEN
                ss_conn_service.exe (2216)
                    Local 127.0.0.1:50911    LISTEN
                svchost.exe (1076)
                    Local 0.0.0.0:49153    LISTEN
                svchost.exe (1116)
                    Local 0.0.0.0:49154    LISTEN
                svchost.exe (940)
                    Local 0.0.0.0:135 (DCE)    LISTEN
                System Process
                    Local 192.168.1.2:52606    TIME-WAIT Remote 23.44.102.152:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52793    TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52794    TIME-WAIT Remote 93.184.220.66:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52795    TIME-WAIT Remote 104.19.195.102:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52797    TIME-WAIT Remote 172.217.23.2:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52800    TIME-WAIT Remote 216.58.206.40:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52801    TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52803    TIME-WAIT Remote 151.101.16.68:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52805    TIME-WAIT Remote 104.16.22.35:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52807    TIME-WAIT Remote 104.16.26.235:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52809    TIME-WAIT Remote 104.16.27.235:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52815    TIME-WAIT Remote 23.44.102.152:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52818    TIME-WAIT Remote 23.44.102.152:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52819    TIME-WAIT Remote 23.44.102.152:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52823    TIME-WAIT Remote 23.44.102.152:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52844    TIME-WAIT Remote 52.85.74.134:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52829    TIME-WAIT Remote 52.85.74.199:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52830    TIME-WAIT Remote 198.232.125.123:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52743    TIME-WAIT Remote 52.85.74.142:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52831    TIME-WAIT Remote 198.232.125.123:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52832    TIME-WAIT Remote 216.58.198.170:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52833    TIME-WAIT Remote 198.232.125.123:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52834    TIME-WAIT Remote 68.232.34.81:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52837    TIME-WAIT Remote 62.24.131.73:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52839    TIME-WAIT Remote 198.232.125.123:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52843    TIME-WAIT Remote 52.85.74.134:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52845    TIME-WAIT Remote 52.85.74.134:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52847    TIME-WAIT Remote 151.101.64.196:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52848    TIME-WAIT Remote 151.101.64.196:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52857    TIME-WAIT Remote 104.19.195.102:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52858    TIME-WAIT Remote 151.101.16.249:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52859    TIME-WAIT Remote 205.185.208.139:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52542    TIME-WAIT Remote 216.58.206.45:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52592    TIME-WAIT Remote 151.101.64.196:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52603    TIME-WAIT Remote 93.184.220.66:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52604    TIME-WAIT Remote 93.184.220.66:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52865    TIME-WAIT Remote 151.101.64.196:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52612    TIME-WAIT Remote 216.58.198.170:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52613    TIME-WAIT Remote 216.58.206.46:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52614    TIME-WAIT Remote 216.58.206.46:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52615    TIME-WAIT Remote 216.58.206.46:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52616    TIME-WAIT Remote 216.58.206.46:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52620    TIME-WAIT Remote 216.58.206.40:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52866    TIME-WAIT Remote 5.45.58.178:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52627    TIME-WAIT Remote 151.101.16.68:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52628    TIME-WAIT Remote 216.58.206.35:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52632    TIME-WAIT Remote 216.58.206.35:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52635    TIME-WAIT Remote 172.217.23.2:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52868    TIME-WAIT Remote 52.85.74.147:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52647    TIME-WAIT Remote 23.44.102.152:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52650    TIME-WAIT Remote 62.24.131.73:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52651    TIME-WAIT Remote 62.24.131.73:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52665    TIME-WAIT Remote 93.184.220.29:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52666    TIME-WAIT Remote 93.184.220.29:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52671    TIME-WAIT Remote 216.58.198.226:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52673    TIME-WAIT Remote 107.178.255.114:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52687    TIME-WAIT Remote 52.85.74.5:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52690    TIME-WAIT Remote 216.58.198.170:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52697    TIME-WAIT Remote 52.85.74.59:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52869    TIME-WAIT Remote 52.211.100.21:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52713    TIME-WAIT Remote 52.85.74.213:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52714    TIME-WAIT Remote 52.85.74.213:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52715    TIME-WAIT Remote 52.85.74.213:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52716    TIME-WAIT Remote 52.85.74.213:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52717    TIME-WAIT Remote 52.85.74.213:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52718    TIME-WAIT Remote 52.85.74.213:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52870    TIME-WAIT Remote 52.211.100.21:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52737    TIME-WAIT Remote 68.232.34.81:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52739    TIME-WAIT Remote 52.85.74.142:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52740    TIME-WAIT Remote 52.85.74.142:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52741    TIME-WAIT Remote 52.85.74.142:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52742    TIME-WAIT Remote 52.85.74.142:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52871    TIME-WAIT Remote 5.45.58.179:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52762    TIME-WAIT Remote 52.33.209.128:443 (Querying... ) (HTTPS)
                    Local 192.168.1.2:52766    TIME-WAIT Remote 104.28.29.94:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52767    TIME-WAIT Remote 5.45.58.175:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52768    TIME-WAIT Remote 5.45.58.176:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52775    TIME-WAIT Remote 104.28.29.94:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52786    TIME-WAIT Remote 151.101.128.196:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52787    TIME-WAIT Remote 151.101.64.196:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52788    TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52789    TIME-WAIT Remote 198.232.125.113:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52790    TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52791    TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
                    Local 192.168.1.2:52792    TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
                System Process
                    Local 0.0.0.0:445 (Windows shares)    LISTEN
                    Local 0.0.0.0:5357    LISTEN
                    Local 192.168.1.2:139 (NetBIOS session service)    LISTEN
                wininit.exe (620)
                    Local 0.0.0.0:49152    LISTEN
Generated with Speccy v1.30.730


  • 0

#7
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,388 posts
  • MVP

Speccy says you are running a bit hot for a desktop.  Can't really trust Speccy these days so let's get a second opinion.

 

Get Speedfan to monitor your temps in real time:
 
 
 
Download, save and Install it (Win 7 or Vista right click and Run As Admin.) then run it (Win 7 or Vista right click and Run As Admin.).
 
It will tell you your temps in real time tho the default is to show the hard drive temp in the systray.  You can change it:  Hit Configure then click on the highest temp and check Show in tray
 
What is the highest temp you see?  Run an antivirus scan or watch a video and see how high the temp goes.  Odds are that with an old PC like yours that the heatsink is clogged with dust and needs to be cleaned.  Shut it down, leave it connected and open it up.  Use a vacuum cleaner hose and a small brush to remove the dust from the heatsink,.  It's OK to remove the fan as long as you put it back in the same direction but do not disturb the heatsink or you will have to replace the thermal paste.
 
Speccy also say you have a Seagate drive which is showing  command timeouts and other errors.  Doesn't look that bad yet but Seagate's do not last very long so back up anything you can't bear to lose.
 
Process Explorer just shows that WMI is a bit high.  Search for
 
services.msc
hit Enter
 
Find 
 
Windows Management Instrumentation
 
and stop the service.  You will get a popup that warns that two other services will stop.  That's OK.
 
Does the PC feel faster now?
 
IF so get Windows Repair all in one
 
 
 
Download it and save it then run it.
 
You can skip to step 4 or 5 where it gives you the same picture as in the above link.
 
Uncheck ALL options but:
 
Repair WMI
 
then hit START.  Reboot when done.
 
IF it doesn't help or even if it does:
 
 
 
Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.
 
Reboot. 
 
Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator.  Then type (with an Enter after each line).
sfc  /scannow
 
(This will check your critical system files. Does this finish without complaint?  IF it says it couldn't fix everything then:
 
Copy the next two lines:
 
findstr  /c:"[SR]"  \windows\logs\cbs\cbs.log  >  \junk.txt 
notepad \junk.txt 
 
Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue.  Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)
 
 
1. Please download the Event Viewer Tool by Vino Rosso
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:
 
* System
4. Under 'Select type to list', select:
* Error
* Warning
 
 
Then use the 'Number of events' as follows:
 
 
1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.
 
 
Please post the Output log in your next reply then repeat but select Application.  (Each time you run VEW it overwrites the log so copy the first one to a Reply or rename it before running it a second time.)
 
 

  • 0

#8
Lathers

Lathers

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts

when i stopped it it told me windows security was at risk?

 

enclosed logs

 

wouldnt let me run the last thing got error 75

Attached Thumbnails

  • Untitled.jpg

Attached Files

  • Attached File  junk.txt   30.34KB   8 downloads

  • 0

#9
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,388 posts
  • MVP

The Security Warning is normal because without WMI Windows doesn't know if the anti-virus is still running.  Did it run better while WMI was off?

 

Error 75 means you forgot to right click VEW and Run As Admin


  • 0

#10
Lathers

Lathers

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts

Vino's Event Viewer v01c run on Windows Vista in English
Report run at 20/06/2017 00:40:03

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 18/06/2017 18:55:32
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The Intel AGP Bus Filter service failed to start due to the following error:  The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 19/06/2017 18:55:16
Type: Warning Category: 0
Event: 36 Source: W32Time
The time service has not synchronized the system time for 86400 seconds because none of the time service providers provided a usable time stamp. The time service will not update the local system time until it is able to synchronize with a time source. If the local system is configured to act as a time server for clients, it will stop advertising as a time source to clients. The time service will continue to retry and sync time with its time sources. Check system event log for other W32time events for more details. Run 'w32tm /resync' to force an instant time synchronization.

Log: 'System' Date/Time: 18/06/2017 18:53:09
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

 


  • 0

Advertisements


#11
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,388 posts
  • MVP

We can get rid of the first error easily enough:

Copy the next line:

sc config agp440 start= demand
 
Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue.  Right click and Paste (or Edit then Paste) and the copied lines should appear.  Hit Enter.
 
The time service error usually just means you need to point it at a different provider.  The default is time.windows.com but it seems to be a poor choice.  Better to change it to one of the .gov servers.
 
Right click on the clock and select Adjust Date Time then Internet Time then Change Settings then chose a different server then OK.  You  can test it with update now.  It generally fails the first time but works the second.
 
Can you run VEW again for Applications?

  • 0

#12
Lathers

Lathers

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts

Vino's Event Viewer v01c run on Windows Vista in English
Report run at 20/06/2017 11:51:18

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 18/06/2017 18:55:32
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The Intel AGP Bus Filter service failed to start due to the following error:  The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 19/06/2017 18:55:16
Type: Warning Category: 0
Event: 36 Source: W32Time
The time service has not synchronized the system time for 86400 seconds because none of the time service providers provided a usable time stamp. The time service will not update the local system time until it is able to synchronize with a time source. If the local system is configured to act as a time server for clients, it will stop advertising as a time source to clients. The time service will continue to retry and sync time with its time sources. Check system event log for other W32time events for more details. Run 'w32tm /resync' to force an instant time synchronization.

Log: 'System' Date/Time: 18/06/2017 18:53:09
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

 


  • 0

#13
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,388 posts
  • MVP

Is it still slow?

 

If so let's look at the boot log

 

Search for

 

msconfig

 

hit Enter

 

Click on Boot tab.  Check boot log box.  OK.

 

Reboot

 

Once it reboots look for

c:\Windows\ntbtlog.txt

 

This is a hidden files so first tell Windows to let you see it:

 

Open the Control Panel menu (View by: Large Icons)  and click Folder Options.
    After the new window appears select the View tab.
    Put a checkmark in the checkbox labeled Display the contents of system folders.
    Under the Hidden files and folders section select the radio button labeled Show hidden files and folders.
    Remove the checkmark from the checkbox labeled Hide file extensions for known file types.
    Remove the checkmark from the checkbox labeled Hide protected operating system files.
    Press the Apply button and then the OK button
 
Find ntbtlog.txt and double click on it to open it then copy and paste into a reply.

  • 0

#14
Lathers

Lathers

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts

Loaded driver \SystemRoot\system32\DRIVERS\sct_skmscan.sys
Loaded driver \SystemRoot\system32\DRIVERS\sct_skmscan.sys
 Service Pack 2 6 17 2017 18:01:30.375
Loaded driver \SystemRoot\system32\ntkrnlpa.exe
Loaded driver \SystemRoot\system32\hal.dll
Loaded driver \SystemRoot\system32\kdcom.dll
Loaded driver \SystemRoot\system32\mcupdate_GenuineIntel.dll
Loaded driver \SystemRoot\system32\PSHED.dll
Loaded driver \SystemRoot\system32\BOOTVID.dll
Loaded driver \SystemRoot\system32\CLFS.SYS
Loaded driver \SystemRoot\system32\CI.dll
Loaded driver \SystemRoot\system32\drivers\Wdf01000.sys
Loaded driver \SystemRoot\system32\drivers\WDFLDR.SYS
Loaded driver \SystemRoot\system32\drivers\acpi.sys
Loaded driver \SystemRoot\system32\drivers\WMILIB.SYS
Loaded driver \SystemRoot\system32\drivers\msisadrv.sys
Loaded driver \SystemRoot\system32\drivers\pci.sys
Loaded driver \SystemRoot\System32\drivers\partmgr.sys
Loaded driver \SystemRoot\system32\drivers\volmgr.sys
Loaded driver \SystemRoot\System32\drivers\volmgrx.sys
Loaded driver \SystemRoot\system32\drivers\pciide.sys
Loaded driver \SystemRoot\system32\drivers\PCIIDEX.SYS
Loaded driver \SystemRoot\system32\drivers\compbatt.sys
Loaded driver \SystemRoot\system32\drivers\BATTC.SYS
Loaded driver \SystemRoot\System32\drivers\mountmgr.sys
Loaded driver \SystemRoot\system32\drivers\atapi.sys
Loaded driver \SystemRoot\system32\drivers\ataport.SYS
Loaded driver \SystemRoot\system32\drivers\fltmgr.sys
Loaded driver \SystemRoot\system32\drivers\fileinfo.sys
Loaded driver \SystemRoot\System32\Drivers\ksecdd.sys
Loaded driver \SystemRoot\system32\drivers\ndis.sys
Loaded driver \SystemRoot\system32\drivers\msrpc.sys
Loaded driver \SystemRoot\system32\drivers\NETIO.SYS
Loaded driver \SystemRoot\system32\drivers\aswNdis2.sys
Loaded driver \SystemRoot\System32\drivers\tcpip.sys
Loaded driver \SystemRoot\System32\drivers\fwpkclnt.sys
Loaded driver \SystemRoot\system32\DRIVERS\aswNdis.sys
Loaded driver \SystemRoot\system32\drivers\aswRvrt.sys
Loaded driver \SystemRoot\system32\drivers\aswVmm.sys
Loaded driver \SystemRoot\System32\Drivers\Ntfs.sys
Loaded driver \SystemRoot\system32\drivers\volsnap.sys
Loaded driver \SystemRoot\System32\Drivers\spldr.sys
Loaded driver \SystemRoot\System32\Drivers\mup.sys
Loaded driver \SystemRoot\System32\drivers\ecache.sys
Loaded driver \SystemRoot\system32\drivers\disk.sys
Loaded driver \SystemRoot\system32\drivers\CLASSPNP.SYS
Loaded driver \SystemRoot\system32\drivers\crcdisk.sys
Loaded driver \SystemRoot\system32\drivers\aswbunivx.sys
Loaded driver \SystemRoot\system32\drivers\aswblogx.sys
Loaded driver \SystemRoot\system32\drivers\aswbidshx.sys
Did not load driver \SystemRoot\system32\drivers\aswNdis2.sys
Loaded driver \SystemRoot\system32\DRIVERS\tunnel.sys
Loaded driver \SystemRoot\system32\DRIVERS\tunmp.sys
Loaded driver \SystemRoot\system32\DRIVERS\intelppm.sys
Loaded driver \SystemRoot\System32\drivers\dxgkrnl.sys
Loaded driver \SystemRoot\system32\DRIVERS\igdkmd32.sys
Loaded driver \SystemRoot\system32\DRIVERS\e1e6032.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbuhci.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbehci.sys
Loaded driver \SystemRoot\system32\DRIVERS\HDAudBus.sys
Loaded driver \SystemRoot\system32\DRIVERS\fdc.sys
Loaded driver \SystemRoot\system32\DRIVERS\cdrom.sys
Loaded driver \SystemRoot\system32\DRIVERS\msiscsi.sys
Loaded driver \SystemRoot\system32\DRIVERS\rasl2tp.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndistapi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndiswan.sys
Loaded driver \SystemRoot\system32\DRIVERS\raspppoe.sys
Loaded driver \SystemRoot\system32\DRIVERS\raspptp.sys
Loaded driver \SystemRoot\system32\DRIVERS\rassstp.sys
Loaded driver \SystemRoot\system32\DRIVERS\gttap1.sys
Loaded driver \SystemRoot\System32\Drivers\pcouffin.sys
Loaded driver \SystemRoot\system32\DRIVERS\termdd.sys
Loaded driver \SystemRoot\system32\DRIVERS\kbdclass.sys
Loaded driver \SystemRoot\system32\DRIVERS\mouclass.sys
Loaded driver \SystemRoot\system32\DRIVERS\swenum.sys
Loaded driver \SystemRoot\system32\DRIVERS\mssmbios.sys
Loaded driver \SystemRoot\system32\DRIVERS\umbus.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbhub.sys
Loaded driver \SystemRoot\System32\Drivers\NDProxy.SYS
Did not load driver \SystemRoot\System32\Drivers\NDProxy.SYS
Loaded driver \SystemRoot\system32\drivers\RTKVHDA.sys
Loaded driver \SystemRoot\system32\drivers\aswSP.sys
Loaded driver \SystemRoot\system32\drivers\aswSnx.sys
Loaded driver \SystemRoot\System32\Drivers\Fs_Rec.SYS
Loaded driver \SystemRoot\System32\Drivers\Null.SYS
Loaded driver \SystemRoot\System32\Drivers\Beep.SYS
Did not load driver \SystemRoot\system32\DRIVERS\kbdhid.sys
Loaded driver \SystemRoot\system32\drivers\aswKbd.sys
Loaded driver \SystemRoot\System32\drivers\vga.sys
Loaded driver \SystemRoot\System32\DRIVERS\RDPCDD.sys
Loaded driver \SystemRoot\system32\drivers\rdpencdd.sys
Loaded driver \SystemRoot\System32\Drivers\Msfs.SYS
Loaded driver \SystemRoot\System32\Drivers\Npfs.SYS
Loaded driver \SystemRoot\System32\DRIVERS\rasacd.sys
Loaded driver \SystemRoot\system32\DRIVERS\tdx.sys
Loaded driver \SystemRoot\system32\DRIVERS\smb.sys
Loaded driver \SystemRoot\System32\DRIVERS\netbt.sys
Loaded driver \SystemRoot\system32\drivers\afd.sys
Loaded driver \SystemRoot\system32\drivers\aswRdr.sys
Loaded driver \SystemRoot\system32\drivers\ws2ifsl.sys
Loaded driver \SystemRoot\system32\DRIVERS\pacer.sys
Loaded driver \SystemRoot\system32\DRIVERS\netbios.sys
Loaded driver \SystemRoot\system32\DRIVERS\wanarp.sys
Loaded driver \SystemRoot\system32\DRIVERS\rdbss.sys
Loaded driver \SystemRoot\system32\drivers\nsiproxy.sys
Loaded driver \SystemRoot\System32\Drivers\dfsc.sys
Loaded driver \SystemRoot\system32\drivers\aswbidsdriverx.sys
Loaded driver \SystemRoot\system32\DRIVERS\hidusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\kbdhid.sys
Loaded driver \SystemRoot\system32\DRIVERS\mouhid.sys
Loaded driver \SystemRoot\system32\DRIVERS\monitor.sys
Loaded driver \SystemRoot\system32\drivers\luafv.sys
Loaded driver \SystemRoot\system32\drivers\aswMonFlt.sys
Loaded driver \SystemRoot\system32\drivers\WudfPf.sys
Loaded driver \SystemRoot\system32\DRIVERS\lltdio.sys
Loaded driver \SystemRoot\system32\DRIVERS\nwifi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndisuio.sys
Loaded driver \SystemRoot\system32\DRIVERS\rspndr.sys
Loaded driver \SystemRoot\system32\DRIVERS\asyncmac.sys
Loaded driver \SystemRoot\system32\drivers\HTTP.sys
Loaded driver \SystemRoot\System32\DRIVERS\srvnet.sys
Loaded driver \SystemRoot\system32\DRIVERS\bowser.sys
Loaded driver \SystemRoot\System32\drivers\mpsdrv.sys
Loaded driver \SystemRoot\system32\drivers\mrxdav.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb10.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb20.sys
Loaded driver \SystemRoot\System32\DRIVERS\srv2.sys
Loaded driver \SystemRoot\System32\DRIVERS\srv.sys
Did not load driver \SystemRoot\System32\DRIVERS\srv.sys
Did not load driver \SystemRoot\system32\drivers\agp440.sys
Loaded driver \SystemRoot\system32\drivers\peauth.sys
Loaded driver \SystemRoot\System32\drivers\tcpipreg.sys
Loaded driver \SystemRoot\system32\drivers\aswStmXP.sys
Loaded driver \SystemRoot\system32\DRIVERS\cdfs.sys
Loaded driver \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys
Loaded driver \??\C:\Users\Chris\AppData\Local\Temp\cpuz140\cpuz140_x32.sys
Loaded driver \??\C:\Users\Chris\AppData\Local\temp\3f3edfe2-8a87-4273-8fe5-eb75e711f1ed
Loaded driver \??\C:\Users\Chris\AppData\Local\Temp\cpuz140\cpuz140_x32.sys
Loaded driver \??\C:\Users\Chris\AppData\Local\temp\f6d15c6b-8275-42ed-ad7e-c60808e6f440
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys
Loaded driver \SystemRoot\system32\giveio.sys
Loaded driver \SystemRoot\system32\speedfan.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
 Service Pack 2 6 18 2017 19:45:03.375
Loaded driver \SystemRoot\system32\ntkrnlpa.exe
Loaded driver \SystemRoot\system32\hal.dll
Loaded driver \SystemRoot\system32\kdcom.dll
Loaded driver \SystemRoot\system32\mcupdate_GenuineIntel.dll
Loaded driver \SystemRoot\system32\PSHED.dll
Loaded driver \SystemRoot\system32\BOOTVID.dll
Loaded driver \SystemRoot\system32\CLFS.SYS
Loaded driver \SystemRoot\system32\CI.dll
Loaded driver \SystemRoot\system32\drivers\Wdf01000.sys
Loaded driver \SystemRoot\system32\drivers\WDFLDR.SYS
Loaded driver \SystemRoot\system32\drivers\acpi.sys
Loaded driver \SystemRoot\system32\drivers\WMILIB.SYS
Loaded driver \SystemRoot\system32\drivers\msisadrv.sys
Loaded driver \SystemRoot\system32\drivers\pci.sys
Loaded driver \SystemRoot\System32\drivers\partmgr.sys
Loaded driver \SystemRoot\system32\drivers\volmgr.sys
Loaded driver \SystemRoot\System32\drivers\volmgrx.sys
Loaded driver \SystemRoot\system32\drivers\pciide.sys
Loaded driver \SystemRoot\system32\drivers\PCIIDEX.SYS
Loaded driver \SystemRoot\system32\drivers\compbatt.sys
Loaded driver \SystemRoot\system32\drivers\BATTC.SYS
Loaded driver \SystemRoot\System32\drivers\mountmgr.sys
Loaded driver \SystemRoot\system32\drivers\atapi.sys
Loaded driver \SystemRoot\system32\drivers\ataport.SYS
Loaded driver \SystemRoot\system32\drivers\fltmgr.sys
Loaded driver \SystemRoot\system32\drivers\fileinfo.sys
Loaded driver \SystemRoot\System32\Drivers\ksecdd.sys
Loaded driver \SystemRoot\system32\drivers\ndis.sys
Loaded driver \SystemRoot\system32\drivers\msrpc.sys
Loaded driver \SystemRoot\system32\drivers\NETIO.SYS
Loaded driver \SystemRoot\system32\drivers\aswNdis2.sys
Loaded driver \SystemRoot\System32\drivers\tcpip.sys
Loaded driver \SystemRoot\System32\drivers\fwpkclnt.sys
Loaded driver \SystemRoot\system32\DRIVERS\aswNdis.sys
Loaded driver \SystemRoot\system32\drivers\aswRvrt.sys
Loaded driver \SystemRoot\system32\drivers\aswVmm.sys
Loaded driver \SystemRoot\System32\Drivers\Ntfs.sys
Loaded driver \SystemRoot\system32\drivers\volsnap.sys
Loaded driver \SystemRoot\System32\Drivers\spldr.sys
Loaded driver \SystemRoot\system32\speedfan.sys
Loaded driver \SystemRoot\System32\Drivers\mup.sys
Loaded driver \SystemRoot\system32\giveio.sys
Loaded driver \SystemRoot\System32\drivers\ecache.sys
Loaded driver \SystemRoot\system32\drivers\disk.sys
Loaded driver \SystemRoot\system32\drivers\CLASSPNP.SYS
Loaded driver \SystemRoot\system32\drivers\crcdisk.sys
Loaded driver \SystemRoot\system32\drivers\aswbunivx.sys
Loaded driver \SystemRoot\system32\drivers\aswblogx.sys
Loaded driver \SystemRoot\system32\drivers\aswbidshx.sys
Did not load driver \SystemRoot\system32\drivers\aswNdis2.sys
Loaded driver \SystemRoot\system32\DRIVERS\tunnel.sys
Loaded driver \SystemRoot\system32\DRIVERS\tunmp.sys
Loaded driver \SystemRoot\system32\DRIVERS\intelppm.sys
Loaded driver \SystemRoot\System32\drivers\dxgkrnl.sys
Loaded driver \SystemRoot\system32\DRIVERS\igdkmd32.sys
Loaded driver \SystemRoot\system32\DRIVERS\e1e6032.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbuhci.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbehci.sys
Loaded driver \SystemRoot\system32\DRIVERS\HDAudBus.sys
Loaded driver \SystemRoot\system32\DRIVERS\fdc.sys
Loaded driver \SystemRoot\system32\DRIVERS\cdrom.sys
Loaded driver \SystemRoot\system32\DRIVERS\msiscsi.sys
Loaded driver \SystemRoot\system32\DRIVERS\rasl2tp.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndistapi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndiswan.sys
Loaded driver \SystemRoot\system32\DRIVERS\raspppoe.sys
Loaded driver \SystemRoot\system32\DRIVERS\raspptp.sys
Loaded driver \SystemRoot\system32\DRIVERS\rassstp.sys
Loaded driver \SystemRoot\system32\DRIVERS\gttap1.sys
Loaded driver \SystemRoot\System32\Drivers\pcouffin.sys
Loaded driver \SystemRoot\system32\DRIVERS\termdd.sys
Loaded driver \SystemRoot\system32\DRIVERS\kbdclass.sys
Loaded driver \SystemRoot\system32\DRIVERS\mouclass.sys
Loaded driver \SystemRoot\system32\DRIVERS\swenum.sys
Loaded driver \SystemRoot\system32\DRIVERS\mssmbios.sys
Loaded driver \SystemRoot\system32\DRIVERS\umbus.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbhub.sys
Loaded driver \SystemRoot\System32\Drivers\NDProxy.SYS
Did not load driver \SystemRoot\System32\Drivers\NDProxy.SYS
Loaded driver \SystemRoot\system32\drivers\RTKVHDA.sys
Loaded driver \SystemRoot\system32\drivers\aswSP.sys
Loaded driver \SystemRoot\system32\drivers\aswSnx.sys
Loaded driver \SystemRoot\System32\Drivers\Fs_Rec.SYS
Loaded driver \SystemRoot\System32\Drivers\Null.SYS
Loaded driver \SystemRoot\System32\Drivers\Beep.SYS
Did not load driver \SystemRoot\system32\DRIVERS\kbdhid.sys
Loaded driver \SystemRoot\system32\drivers\aswKbd.sys
Loaded driver \SystemRoot\System32\drivers\vga.sys
Loaded driver \SystemRoot\System32\DRIVERS\RDPCDD.sys
Loaded driver \SystemRoot\system32\drivers\rdpencdd.sys
Loaded driver \SystemRoot\System32\Drivers\Msfs.SYS
Loaded driver \SystemRoot\System32\Drivers\Npfs.SYS
Loaded driver \SystemRoot\System32\DRIVERS\rasacd.sys
Loaded driver \SystemRoot\system32\DRIVERS\tdx.sys
Loaded driver \SystemRoot\system32\DRIVERS\smb.sys
Loaded driver \SystemRoot\System32\DRIVERS\netbt.sys
Loaded driver \SystemRoot\system32\drivers\afd.sys
Loaded driver \SystemRoot\system32\drivers\aswRdr.sys
Loaded driver \SystemRoot\system32\drivers\ws2ifsl.sys
Loaded driver \SystemRoot\system32\DRIVERS\pacer.sys
Loaded driver \SystemRoot\system32\DRIVERS\netbios.sys
Loaded driver \SystemRoot\system32\DRIVERS\wanarp.sys
Loaded driver \SystemRoot\system32\DRIVERS\rdbss.sys
Loaded driver \SystemRoot\system32\drivers\nsiproxy.sys
Loaded driver \SystemRoot\System32\Drivers\dfsc.sys
Loaded driver \SystemRoot\system32\drivers\aswbidsdriverx.sys
Loaded driver \SystemRoot\system32\DRIVERS\hidusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\mouhid.sys
Loaded driver \SystemRoot\system32\DRIVERS\kbdhid.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\monitor.sys
Loaded driver \SystemRoot\system32\drivers\luafv.sys
Loaded driver \SystemRoot\system32\drivers\aswMonFlt.sys
Loaded driver \SystemRoot\system32\drivers\WudfPf.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\asyncmac.sys
Loaded driver \SystemRoot\system32\DRIVERS\lltdio.sys
Loaded driver \SystemRoot\system32\DRIVERS\nwifi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndisuio.sys
Loaded driver \SystemRoot\system32\DRIVERS\rspndr.sys
Loaded driver \SystemRoot\system32\drivers\HTTP.sys
Loaded driver \SystemRoot\System32\DRIVERS\srvnet.sys
Loaded driver \SystemRoot\system32\DRIVERS\bowser.sys
Loaded driver \SystemRoot\System32\drivers\mpsdrv.sys
Loaded driver \SystemRoot\system32\drivers\mrxdav.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb10.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb20.sys
Loaded driver \SystemRoot\System32\DRIVERS\srv2.sys
Loaded driver \SystemRoot\System32\DRIVERS\srv.sys
Did not load driver \SystemRoot\System32\DRIVERS\srv.sys
Did not load driver \SystemRoot\system32\drivers\agp440.sys
Loaded driver \SystemRoot\system32\drivers\peauth.sys
Loaded driver \SystemRoot\System32\drivers\tcpipreg.sys
Loaded driver \SystemRoot\system32\drivers\aswStmXP.sys
Loaded driver \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys
Loaded driver \SystemRoot\system32\DRIVERS\cdfs.sys
 Service Pack 2 6 18 2017 19:53:50.375
Loaded driver \SystemRoot\system32\ntkrnlpa.exe
Loaded driver \SystemRoot\system32\hal.dll
Loaded driver \SystemRoot\system32\kdcom.dll
Loaded driver \SystemRoot\system32\mcupdate_GenuineIntel.dll
Loaded driver \SystemRoot\system32\PSHED.dll
Loaded driver \SystemRoot\system32\BOOTVID.dll
Loaded driver \SystemRoot\system32\CLFS.SYS
Loaded driver \SystemRoot\system32\CI.dll
Loaded driver \SystemRoot\system32\drivers\Wdf01000.sys
Loaded driver \SystemRoot\system32\drivers\WDFLDR.SYS
Loaded driver \SystemRoot\system32\drivers\acpi.sys
Loaded driver \SystemRoot\system32\drivers\WMILIB.SYS
Loaded driver \SystemRoot\system32\drivers\msisadrv.sys
Loaded driver \SystemRoot\system32\drivers\pci.sys
Loaded driver \SystemRoot\System32\drivers\partmgr.sys
Loaded driver \SystemRoot\system32\drivers\volmgr.sys
Loaded driver \SystemRoot\System32\drivers\volmgrx.sys
Loaded driver \SystemRoot\system32\drivers\pciide.sys
Loaded driver \SystemRoot\system32\drivers\PCIIDEX.SYS
Loaded driver \SystemRoot\system32\drivers\compbatt.sys
Loaded driver \SystemRoot\system32\drivers\BATTC.SYS
Loaded driver \SystemRoot\System32\drivers\mountmgr.sys
Loaded driver \SystemRoot\system32\drivers\atapi.sys
Loaded driver \SystemRoot\system32\drivers\ataport.SYS
Loaded driver \SystemRoot\system32\drivers\fltmgr.sys
Loaded driver \SystemRoot\system32\drivers\fileinfo.sys
Loaded driver \SystemRoot\System32\Drivers\ksecdd.sys
Loaded driver \SystemRoot\system32\drivers\ndis.sys
Loaded driver \SystemRoot\system32\drivers\msrpc.sys
Loaded driver \SystemRoot\system32\drivers\NETIO.SYS
Loaded driver \SystemRoot\system32\drivers\aswNdis2.sys
Loaded driver \SystemRoot\System32\drivers\tcpip.sys
Loaded driver \SystemRoot\System32\drivers\fwpkclnt.sys
Loaded driver \SystemRoot\system32\DRIVERS\aswNdis.sys
Loaded driver \SystemRoot\system32\drivers\aswRvrt.sys
Loaded driver \SystemRoot\system32\drivers\aswVmm.sys
Loaded driver \SystemRoot\System32\Drivers\Ntfs.sys
Loaded driver \SystemRoot\system32\drivers\volsnap.sys
Loaded driver \SystemRoot\System32\Drivers\spldr.sys
Loaded driver \SystemRoot\system32\speedfan.sys
Loaded driver \SystemRoot\System32\Drivers\mup.sys
Loaded driver \SystemRoot\system32\giveio.sys
Loaded driver \SystemRoot\System32\drivers\ecache.sys
Loaded driver \SystemRoot\system32\drivers\disk.sys
Loaded driver \SystemRoot\system32\drivers\CLASSPNP.SYS
Loaded driver \SystemRoot\system32\drivers\crcdisk.sys
Loaded driver \SystemRoot\system32\drivers\aswbunivx.sys
Loaded driver \SystemRoot\system32\drivers\aswblogx.sys
Loaded driver \SystemRoot\system32\drivers\aswbidshx.sys
Did not load driver \SystemRoot\system32\drivers\aswNdis2.sys
Loaded driver \SystemRoot\system32\DRIVERS\tunnel.sys
Loaded driver \SystemRoot\system32\DRIVERS\tunmp.sys
Loaded driver \SystemRoot\system32\DRIVERS\intelppm.sys
Loaded driver \SystemRoot\System32\drivers\dxgkrnl.sys
Loaded driver \SystemRoot\system32\DRIVERS\igdkmd32.sys
Loaded driver \SystemRoot\system32\DRIVERS\e1e6032.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbuhci.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbehci.sys
Loaded driver \SystemRoot\system32\DRIVERS\HDAudBus.sys
Loaded driver \SystemRoot\system32\DRIVERS\fdc.sys
Loaded driver \SystemRoot\system32\DRIVERS\cdrom.sys
Loaded driver \SystemRoot\system32\DRIVERS\msiscsi.sys
Loaded driver \SystemRoot\system32\DRIVERS\rasl2tp.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndistapi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndiswan.sys
Loaded driver \SystemRoot\system32\DRIVERS\raspppoe.sys
Loaded driver \SystemRoot\system32\DRIVERS\raspptp.sys
Loaded driver \SystemRoot\system32\DRIVERS\rassstp.sys
Loaded driver \SystemRoot\system32\DRIVERS\gttap1.sys
Loaded driver \SystemRoot\System32\Drivers\pcouffin.sys
Loaded driver \SystemRoot\system32\DRIVERS\termdd.sys
Loaded driver \SystemRoot\system32\DRIVERS\kbdclass.sys
Loaded driver \SystemRoot\system32\DRIVERS\mouclass.sys
Loaded driver \SystemRoot\system32\DRIVERS\swenum.sys
Loaded driver \SystemRoot\system32\DRIVERS\mssmbios.sys
Loaded driver \SystemRoot\system32\DRIVERS\umbus.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbhub.sys
Loaded driver \SystemRoot\System32\Drivers\NDProxy.SYS
Did not load driver \SystemRoot\System32\Drivers\NDProxy.SYS
Loaded driver \SystemRoot\system32\drivers\RTKVHDA.sys
Loaded driver \SystemRoot\system32\drivers\aswSP.sys
Loaded driver \SystemRoot\system32\drivers\aswSnx.sys
Loaded driver \SystemRoot\System32\Drivers\Fs_Rec.SYS
Loaded driver \SystemRoot\System32\Drivers\Null.SYS
Loaded driver \SystemRoot\System32\Drivers\Beep.SYS
Did not load driver \SystemRoot\system32\DRIVERS\kbdhid.sys
Loaded driver \SystemRoot\system32\drivers\aswKbd.sys
Loaded driver \SystemRoot\System32\drivers\vga.sys
Loaded driver \SystemRoot\System32\DRIVERS\RDPCDD.sys
Loaded driver \SystemRoot\system32\drivers\rdpencdd.sys
Loaded driver \SystemRoot\System32\Drivers\Msfs.SYS
Loaded driver \SystemRoot\System32\Drivers\Npfs.SYS
Loaded driver \SystemRoot\System32\DRIVERS\rasacd.sys
Loaded driver \SystemRoot\system32\DRIVERS\tdx.sys
Loaded driver \SystemRoot\system32\DRIVERS\smb.sys
Loaded driver \SystemRoot\System32\DRIVERS\netbt.sys
Loaded driver \SystemRoot\system32\drivers\afd.sys
Loaded driver \SystemRoot\system32\drivers\aswRdr.sys
Loaded driver \SystemRoot\system32\drivers\ws2ifsl.sys
Loaded driver \SystemRoot\system32\DRIVERS\pacer.sys
Loaded driver \SystemRoot\system32\DRIVERS\netbios.sys
Loaded driver \SystemRoot\system32\DRIVERS\wanarp.sys
Loaded driver \SystemRoot\system32\DRIVERS\rdbss.sys
Loaded driver \SystemRoot\system32\drivers\nsiproxy.sys
Loaded driver \SystemRoot\System32\Drivers\dfsc.sys
Loaded driver \SystemRoot\system32\drivers\aswbidsdriverx.sys
Loaded driver \SystemRoot\system32\DRIVERS\hidusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\mouhid.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\kbdhid.sys
Loaded driver \SystemRoot\system32\DRIVERS\monitor.sys
Loaded driver \SystemRoot\system32\drivers\luafv.sys
Loaded driver \SystemRoot\system32\drivers\aswMonFlt.sys
Loaded driver \SystemRoot\system32\drivers\WudfPf.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\lltdio.sys
Loaded driver \SystemRoot\system32\DRIVERS\nwifi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndisuio.sys
Loaded driver \SystemRoot\system32\DRIVERS\rspndr.sys
Loaded driver \SystemRoot\system32\DRIVERS\asyncmac.sys
Loaded driver \SystemRoot\system32\drivers\HTTP.sys
Loaded driver \SystemRoot\System32\DRIVERS\srvnet.sys
Loaded driver \SystemRoot\system32\DRIVERS\bowser.sys
Loaded driver \SystemRoot\System32\drivers\mpsdrv.sys
Loaded driver \SystemRoot\system32\drivers\mrxdav.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb10.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb20.sys
Loaded driver \SystemRoot\System32\DRIVERS\srv2.sys
Loaded driver \SystemRoot\System32\DRIVERS\srv.sys
Did not load driver \SystemRoot\System32\DRIVERS\srv.sys
Did not load driver \SystemRoot\system32\drivers\agp440.sys
Loaded driver \SystemRoot\system32\drivers\peauth.sys
Loaded driver \SystemRoot\System32\drivers\tcpipreg.sys
Loaded driver \SystemRoot\system32\drivers\aswStmXP.sys
Loaded driver \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys
Loaded driver \SystemRoot\system32\DRIVERS\cdfs.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\wpdusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
 Service Pack 2 6 20 2017 22:17:32.375
Loaded driver \SystemRoot\system32\ntkrnlpa.exe
Loaded driver \SystemRoot\system32\hal.dll
Loaded driver \SystemRoot\system32\kdcom.dll
Loaded driver \SystemRoot\system32\mcupdate_GenuineIntel.dll
Loaded driver \SystemRoot\system32\PSHED.dll
Loaded driver \SystemRoot\system32\BOOTVID.dll
Loaded driver \SystemRoot\system32\CLFS.SYS
Loaded driver \SystemRoot\system32\CI.dll
Loaded driver \SystemRoot\system32\drivers\Wdf01000.sys
Loaded driver \SystemRoot\system32\drivers\WDFLDR.SYS
Loaded driver \SystemRoot\system32\drivers\acpi.sys
Loaded driver \SystemRoot\system32\drivers\WMILIB.SYS
Loaded driver \SystemRoot\system32\drivers\msisadrv.sys
Loaded driver \SystemRoot\system32\drivers\pci.sys
Loaded driver \SystemRoot\System32\drivers\partmgr.sys
Loaded driver \SystemRoot\system32\drivers\volmgr.sys
Loaded driver \SystemRoot\System32\drivers\volmgrx.sys
Loaded driver \SystemRoot\system32\drivers\pciide.sys
Loaded driver \SystemRoot\system32\drivers\PCIIDEX.SYS
Loaded driver \SystemRoot\system32\drivers\compbatt.sys
Loaded driver \SystemRoot\system32\drivers\BATTC.SYS
Loaded driver \SystemRoot\System32\drivers\mountmgr.sys
Loaded driver \SystemRoot\system32\drivers\atapi.sys
Loaded driver \SystemRoot\system32\drivers\ataport.SYS
Loaded driver \SystemRoot\system32\drivers\fltmgr.sys
Loaded driver \SystemRoot\system32\drivers\fileinfo.sys
Loaded driver \SystemRoot\System32\Drivers\ksecdd.sys
Loaded driver \SystemRoot\system32\drivers\ndis.sys
Loaded driver \SystemRoot\system32\drivers\msrpc.sys
Loaded driver \SystemRoot\system32\drivers\NETIO.SYS
Loaded driver \SystemRoot\system32\drivers\aswNdis2.sys
Loaded driver \SystemRoot\System32\drivers\tcpip.sys
Loaded driver \SystemRoot\System32\drivers\fwpkclnt.sys
Loaded driver \SystemRoot\system32\DRIVERS\aswNdis.sys
Loaded driver \SystemRoot\system32\drivers\aswRvrt.sys
Loaded driver \SystemRoot\system32\drivers\aswVmm.sys
Loaded driver \SystemRoot\System32\Drivers\Ntfs.sys
Loaded driver \SystemRoot\system32\drivers\volsnap.sys
Loaded driver \SystemRoot\System32\Drivers\spldr.sys
Loaded driver \SystemRoot\system32\speedfan.sys
Loaded driver \SystemRoot\System32\Drivers\mup.sys
Loaded driver \SystemRoot\system32\giveio.sys
Loaded driver \SystemRoot\System32\drivers\ecache.sys
Loaded driver \SystemRoot\system32\drivers\disk.sys
Loaded driver \SystemRoot\system32\drivers\CLASSPNP.SYS
Loaded driver \SystemRoot\system32\drivers\crcdisk.sys
Loaded driver \SystemRoot\system32\drivers\aswbunivx.sys
Loaded driver \SystemRoot\system32\drivers\aswblogx.sys
Loaded driver \SystemRoot\system32\drivers\aswbidshx.sys
Did not load driver \SystemRoot\system32\drivers\aswNdis2.sys
Loaded driver \SystemRoot\system32\DRIVERS\tunnel.sys
Loaded driver \SystemRoot\system32\DRIVERS\tunmp.sys
Loaded driver \SystemRoot\system32\DRIVERS\intelppm.sys
Loaded driver \SystemRoot\System32\drivers\dxgkrnl.sys
Loaded driver \SystemRoot\system32\DRIVERS\igdkmd32.sys
Loaded driver \SystemRoot\system32\DRIVERS\e1e6032.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbuhci.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbehci.sys
Loaded driver \SystemRoot\system32\DRIVERS\HDAudBus.sys
Loaded driver \SystemRoot\system32\DRIVERS\fdc.sys
Loaded driver \SystemRoot\system32\DRIVERS\cdrom.sys
Loaded driver \SystemRoot\system32\DRIVERS\msiscsi.sys
Loaded driver \SystemRoot\system32\DRIVERS\rasl2tp.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndistapi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndiswan.sys
Loaded driver \SystemRoot\system32\DRIVERS\raspppoe.sys
Loaded driver \SystemRoot\system32\DRIVERS\raspptp.sys
Loaded driver \SystemRoot\system32\DRIVERS\rassstp.sys
Loaded driver \SystemRoot\system32\DRIVERS\gttap1.sys
Loaded driver \SystemRoot\System32\Drivers\pcouffin.sys
Loaded driver \SystemRoot\system32\DRIVERS\termdd.sys
Loaded driver \SystemRoot\system32\DRIVERS\kbdclass.sys
Loaded driver \SystemRoot\system32\DRIVERS\mouclass.sys
Loaded driver \SystemRoot\system32\DRIVERS\swenum.sys
Loaded driver \SystemRoot\system32\DRIVERS\mssmbios.sys
Loaded driver \SystemRoot\system32\DRIVERS\umbus.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbhub.sys
Loaded driver \SystemRoot\System32\Drivers\NDProxy.SYS
Did not load driver \SystemRoot\System32\Drivers\NDProxy.SYS
Loaded driver \SystemRoot\system32\drivers\RTKVHDA.sys
Loaded driver \SystemRoot\system32\drivers\aswSP.sys
Loaded driver \SystemRoot\system32\drivers\aswSnx.sys
Loaded driver \SystemRoot\System32\Drivers\Fs_Rec.SYS
Loaded driver \SystemRoot\System32\Drivers\Null.SYS
Loaded driver \SystemRoot\System32\Drivers\Beep.SYS
Did not load driver \SystemRoot\system32\DRIVERS\kbdhid.sys
Loaded driver \SystemRoot\system32\drivers\aswKbd.sys
Loaded driver \SystemRoot\System32\drivers\vga.sys
Loaded driver \SystemRoot\System32\DRIVERS\RDPCDD.sys
Loaded driver \SystemRoot\system32\drivers\rdpencdd.sys
Loaded driver \SystemRoot\System32\Drivers\Msfs.SYS
Loaded driver \SystemRoot\System32\Drivers\Npfs.SYS
Loaded driver \SystemRoot\System32\DRIVERS\rasacd.sys
Loaded driver \SystemRoot\system32\DRIVERS\tdx.sys
Loaded driver \SystemRoot\system32\DRIVERS\smb.sys
Loaded driver \SystemRoot\System32\DRIVERS\netbt.sys
Loaded driver \SystemRoot\system32\drivers\afd.sys
Loaded driver \SystemRoot\system32\drivers\aswRdr.sys
Loaded driver \SystemRoot\system32\drivers\ws2ifsl.sys
Loaded driver \SystemRoot\system32\DRIVERS\pacer.sys
Loaded driver \SystemRoot\system32\DRIVERS\netbios.sys
Loaded driver \SystemRoot\system32\DRIVERS\wanarp.sys
Loaded driver \SystemRoot\system32\DRIVERS\rdbss.sys
Loaded driver \SystemRoot\system32\drivers\nsiproxy.sys
Loaded driver \SystemRoot\System32\Drivers\dfsc.sys
Loaded driver \SystemRoot\system32\drivers\aswbidsdriverx.sys
Loaded driver \SystemRoot\system32\DRIVERS\hidusb.sys
Loaded driver \SystemRoot\system32\DRIVERS\mouhid.sys
Loaded driver \SystemRoot\system32\DRIVERS\kbdhid.sys
Loaded driver \SystemRoot\system32\DRIVERS\monitor.sys
Loaded driver \SystemRoot\system32\drivers\luafv.sys
Loaded driver \SystemRoot\system32\drivers\aswMonFlt.sys
Loaded driver \SystemRoot\system32\drivers\WudfPf.sys
Loaded driver \SystemRoot\system32\DRIVERS\asyncmac.sys
Loaded driver \SystemRoot\system32\DRIVERS\lltdio.sys
Loaded driver \SystemRoot\system32\DRIVERS\nwifi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndisuio.sys
Loaded driver \SystemRoot\system32\DRIVERS\rspndr.sys
Loaded driver \SystemRoot\system32\drivers\HTTP.sys
Loaded driver \SystemRoot\System32\DRIVERS\srvnet.sys
Loaded driver \SystemRoot\system32\DRIVERS\bowser.sys
Loaded driver \SystemRoot\System32\drivers\mpsdrv.sys
Loaded driver \SystemRoot\system32\drivers\mrxdav.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb10.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb20.sys
Loaded driver \SystemRoot\System32\DRIVERS\srv2.sys
Loaded driver \SystemRoot\System32\DRIVERS\srv.sys
Did not load driver \SystemRoot\System32\DRIVERS\srv.sys
Loaded driver \SystemRoot\system32\drivers\peauth.sys
Loaded driver \SystemRoot\System32\drivers\tcpipreg.sys
Loaded driver \SystemRoot\system32\drivers\aswStmXP.sys
Loaded driver \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys
Loaded driver \SystemRoot\system32\DRIVERS\cdfs.sys
 


  • 0

#15
Lathers

Lathers

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts

comp seems the same, i found this on a scan

 

# AdwCleaner v6.047 - Logfile created 20/06/2017 at 22:28:10
# Updated on 19/05/2017 by Malwarebytes
# Database : 2017-06-20.1 [Server]
# Operating System : Windows Vista ™ Home Premium Service Pack 2 (X86)
# Username : Chris - DELL-530
# Running from : C:\Users\Chris\Desktop\adwcleaner_6.047.exe
# Mode: Scan
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****

No malicious services found.


***** [ Folders ] *****

No malicious folders found.


***** [ Files ] *****

No malicious files found.


***** [ DLL ] *****

No malicious DLLs found.


***** [ WMI ] *****

No malicious keys found.


***** [ Shortcuts ] *****

No infected shortcut found.


***** [ Scheduled Tasks ] *****

No malicious task found.


***** [ Registry ] *****

Value Found:  HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION [ByteFence.exe]


***** [ Web browsers ] *****

No malicious Firefox based browser items found.
No malicious Chromium based browser items found.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP