F
Frog
Windows XP Pro Sp3
I have something going on here that is beyond my limited technical
skills to understand. Thus, I will attempt to describe what I am seeing
and hope somebody can make some sense out of what I am seeing.
Listed under Event Viewer, I fond the following:
System (The same entry has appeared numerous times)
Listed with a yellow triangle with a ! in the triangle.
Type...Date...Time...Source...Category...Event...User...Computer
Warning...5/8/2009...3:55:05
PM...WinDefend...None...3004...N/A...Frog-ADF6F864
Description:Windows Defender Real-Time Protection agent has detectede
changes. Microsoft recommends you analyze the software that made these
changes for potential risks. You can use information about how these
programs operate to choose whether to allow them to run or remove them
from your computer. Allow changes only if you trust the program or the
software publisher. Windows Defender can't undo changes that you allow.
Seeing this information in Event Viewer, I next made a visit to the
History information in Windows Defender. There I found the following
(an entry was included for every item I found in the Event Viewer):
Program and actions:
Name…Alert level…Action Taken …Date…Status
Unknown…Unknown…Permit…5/8/2009 3:55 PM…Succeeded
Description:
This program has potentially unwanted behavior.
Advice:
Permit this detected item only if you trust the program or the software
publisher.
Resources:
firewallport:
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\1695:UDP
Category:
Not Yet Classified
When I visit the registry location identified above, I find the
following on the right side of the window:
Name…Type…Data
(Default)…REG_SZ…(value not set)
My next visit was to Windows Firewall – Exceptions Tab
Programs and Services:
Checked – Call of Duty® 4 – Modern Warfare ™
Not Checked – File and Printer Sharing
Checked – Network Diagnostics for Windows XP
Checked – PnkBstrA
Checked – PnkBstrB
Checked – Remote Assistance
Not Checked – Remote Desktop
Not Checked – UpnP Framework
Checked - WinDVD
Can anybody help me understand what all of this means? I don’t know
what program is responsible for this causing this activity to occur. Help!
Note: I recently thought I had some sort of virus of malware present on
my system. Well, I decided after many attempts to follow the
instructions passed my way on this group, I decided to reinstall a
backup that was made on April 15, 2009. The problem, however, continues
as stated above. Other that showing up in the locations identified
above, my system seems to be performing as usual.
Thanks in advance for any help or guidance sent my way on this subject.
Frog
P.S. Please let me know if there is some other information you require
before you can help me decipher this problem.
I have something going on here that is beyond my limited technical
skills to understand. Thus, I will attempt to describe what I am seeing
and hope somebody can make some sense out of what I am seeing.
Listed under Event Viewer, I fond the following:
System (The same entry has appeared numerous times)
Listed with a yellow triangle with a ! in the triangle.
Type...Date...Time...Source...Category...Event...User...Computer
Warning...5/8/2009...3:55:05
PM...WinDefend...None...3004...N/A...Frog-ADF6F864
Description:Windows Defender Real-Time Protection agent has detectede
changes. Microsoft recommends you analyze the software that made these
changes for potential risks. You can use information about how these
programs operate to choose whether to allow them to run or remove them
from your computer. Allow changes only if you trust the program or the
software publisher. Windows Defender can't undo changes that you allow.
Seeing this information in Event Viewer, I next made a visit to the
History information in Windows Defender. There I found the following
(an entry was included for every item I found in the Event Viewer):
Program and actions:
Name…Alert level…Action Taken …Date…Status
Unknown…Unknown…Permit…5/8/2009 3:55 PM…Succeeded
Description:
This program has potentially unwanted behavior.
Advice:
Permit this detected item only if you trust the program or the software
publisher.
Resources:
firewallport:
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\1695:UDP
Category:
Not Yet Classified
When I visit the registry location identified above, I find the
following on the right side of the window:
Name…Type…Data
(Default)…REG_SZ…(value not set)
My next visit was to Windows Firewall – Exceptions Tab
Programs and Services:
Checked – Call of Duty® 4 – Modern Warfare ™
Not Checked – File and Printer Sharing
Checked – Network Diagnostics for Windows XP
Checked – PnkBstrA
Checked – PnkBstrB
Checked – Remote Assistance
Not Checked – Remote Desktop
Not Checked – UpnP Framework
Checked - WinDVD
Can anybody help me understand what all of this means? I don’t know
what program is responsible for this causing this activity to occur. Help!
Note: I recently thought I had some sort of virus of malware present on
my system. Well, I decided after many attempts to follow the
instructions passed my way on this group, I decided to reinstall a
backup that was made on April 15, 2009. The problem, however, continues
as stated above. Other that showing up in the locations identified
above, my system seems to be performing as usual.
Thanks in advance for any help or guidance sent my way on this subject.
Frog
P.S. Please let me know if there is some other information you require
before you can help me decipher this problem.