I downloaded "All in one Repair" for my Windows 7 OS to install some missing system32 programs that I accidentally deleted. I now have a partitioned X:\ windows\system32 drive\path. it was the sole directory open and available to me because of access restrictions. I have no C:\ drive, all my personal files and folders seems to have vanished, I have no MS programs, no start menu, cannot startup windows, System restore is inoperable and access restricted, I am granted a log on window with a cmd prompt to system32 that has limited options outside its path. It has taken me 2 weeks to gain some control by partitioning a drive from the primary and downloading some apps from a usb to even be able to get internet option. I am at my last resort and completely out of ideas on what to do. I have read page after page of txt's but even when I attempt any possible solution I am met with the wall of access denied. All the dll's, exe's, cab's, ext's, and app's are either missing or configured incorrectly in registry or directory. My computer is a mess and I am at a loss. Please Help!
Here is an audit I copied for reference. I would really appreciate if someone can direct me to resolve this problem. This is a complete audit and am sorry if its long but I wanted to make sure that all information was available. ( I originally had Win 7 as OS but it was altered as was the local disk drive and path, partitions.) What troubles me the most is the access restrictions and the open control and access allowance to my computer from some outside groups with full permission. I feel my control and security stripped off and I am uncomfortable with the issue. I just want my windows programs and if possible my personal files and folders restored back to what it was and to completely close off any outside admin\auth\mgmt with access to my home computer. I don't know what went wrong or what happened between downloading some rescue programs for recovery to what I am left with but I would be grateful for any help to resto
Thank you for all and any considerations to my request.
Computer Audit :: 8/29/2014 2:12:22 AM
System Overview
-------------------------------------------------------------------------------------
| Item | Value |
-------------------------------------------------------------------------------------
| Computer Name | MININT-3OI4SMD |
| Domain Name | WORKGROUP |
| Site Name | |
| Roles | |
| Description | |
| Operating System | Microsoft(R) Windows Vista Ultimate Edition |
| Manufacturer | Compaq Presario 061 |
| Model | PX787AA-ABA SR1503WM NA530 |
| Serial Number | CNH52426L5 |
| Asset Tag | |
| Number Of Processors | 1 |
| Processor Description | Intel(R) Celeron(R) CPU 2.93GHz |
| Total Memory | 1024MB |
| Total Hard Drive | 12.7GB |
| Display | 800 x 600 pixels, true colour |
| BIOS Version | IntelR - 42302e31 Phoenix - Award BIOS v6.00PG Rev. 3.08 |
| User Name | SYSTEM |
| System Uptime | 1 Days, 4 Hours, 54 Minutes |
| Local Time | 2014-08-29 02:11:44 |
-------------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Installed Software
Active Setup
----------------------------------------------------------------------
| Name | Version | Installed |
----------------------------------------------------------------------
| Active Directory Service Interface | 5,0,00,0 | Yes |
| Microsoft Windows Script 5.6 | 5,6,0,8833 | Yes |
| Windows Desktop Update | 6,1,7601,17514 | Yes |
----------------------------------------------------------------------
--------------------------------------------------------------------------------
Installed Programs
No programs found.
--------------------------------------------------------------------------------
Software Updates
No information found.
--------------------------------------------------------------------------------
Operating System
---------------------------------------------------
| Name | Value |
---------------------------------------------------
| Name | Vista |
| Edition | Ultimate Edition |
| Install Date | |
| Registered Owner | Microsoft |
| Registered Organization | Microsoft |
| Product ID | |
| Major Version Number | 6 |
| Minor Version Number | 1 |
| Build Number | 7601 |
| Service Pack | Service Pack 1 |
| Service Pack Version | 1.0 |
| Plus! Version Number | |
| DirectX Version | |
| Windows Directory | X:\windows\ |
| System Directory | X:\windows\system32\ |
| Temporary Directory | X:\windows\TEMP\ |
---------------------------------------------------
--------------------------------------------------------------------------------
Peripherals
---------------------------------------------------------
| Name | Description |
---------------------------------------------------------
| Mouse | 3 Button Mouse, has wheel |
| Keyboard | Japanese, 12 function keys |
| Display Description | 800 x 600 pixels, true colour |
| Network Installed | Yes |
---------------------------------------------------------
--------------------------------------------------------------------------------
Security
Internet Software
No Internet type software found.
--------------------------------------------------------------------------------
Open Ports
TCP 0.0.0.0:135
-------------------------------------------------------------
| Item | Value |
-------------------------------------------------------------
| Port Protocol | TCP |
| Local Address | 0.0.0.0 |
| Local Port | 135 |
| Caption | TCP 0.0.0.0:135 |
| Service Name | epmap |
| Remote Address | 0.0.0.0 |
| Remote Port | 0 |
| Connection State | Listening (LISTEN) |
| Process Name | X:\windows\system32\svchost.exe |
| Process ID | 584 |
| Process Description | Host Process for Windows Services |
| Process Manufacturer | Microsoft Corporation |
-------------------------------------------------------------
-------------------------------------------------------------------------------------
| Item | Value |
-------------------------------------------------------------------------------------
| Port Protocol | TCP |
| Local Address | 127.0.0.1 |
| Local Port | 54150 |
| Caption | TCP 127.0.0.1:54150 |
| Service Name | |
| Remote Address | 127.0.0.1 |
| Remote Port | 54151 |
| Connection State | Connection established (ESTABLISHED) |
| Process Name | E:\UBCD4Win\plugin\Applications\FireFox\files\firefox.exe |
| Process ID | 2816 |
| Process Description | Firefox |
| Process Manufacturer | Mozilla Corporation |
-------------------------------------------------------------------------------------
UDP 0.0.0.0:500
-------------------------------------------------------------
| Item | Value |
-------------------------------------------------------------
| Port Protocol | UDP |
| Local Address | 0.0.0.0 |
| Local Port | 500 |
| Caption | UDP 0.0.0.0:500 |
| Service Name | isakmp |
| Process Name | X:\windows\system32\svchost.exe |
| Process ID | 924 |
| Process Description | Host Process for Windows Services |
| Process Manufacturer | Microsoft Corporation |
-------------------------------------------------------------
--------------------------------------------------------------------------------
UDP 0.0.0.0:4500
-------------------------------------------------------------
| Item | Value |
-------------------------------------------------------------
| Port Protocol | UDP |
| Local Address | 0.0.0.0 |
| Local Port | 4500 |
| Caption | UDP 0.0.0.0:4500 |
| Service Name | |
| Process Name | X:\windows\system32\svchost.exe |
| Process ID | 924 |
| Process Description | Host Process for Windows Services |
| Process Manufacturer | Microsoft Corporation |
-------------------------------------------------------------
--------------------------------------------------------------------------------
UDP 174.103.137.248:137
----------------------------------------------------
| Item | Value |
----------------------------------------------------
| Port Protocol | UDP |
| Local Address | 174.103.137.248 |
| Local Port | 137 |
| Caption | UDP 174.103.137.248:137 |
| Service Name | netbios-ns |
| Process Name | System |
| Process ID | 4 |
| Process Description | |
| Process Manufacturer | |
----------------------------------------------------
--------------------------------------------------------------------------------
UDP 174.103.137.248:138
----------------------------------------------------
| Item | Value |
----------------------------------------------------
| Port Protocol | UDP |
| Local Address | 174.103.137.248 |
| Local Port | 138 |
| Caption | UDP 174.103.137.248:138 |
| Service Name | netbios-dgm |
| Process Name | System |
| Process ID | 4 |
| Process Description | |
| Process Manufacturer | |
----------------------------------------------------
--------------------------------------------------------------------------------
Printer Permissions
No installed printers found
--------------------------------------------------------------------------------
Security Log
No security audit failures found or reported.
--------------------------------------------------------------------------------
Security Settings
-----------------------------------------------------------------
| Item | Name | Setting |
-----------------------------------------------------------------
| AutoLogon | Enabled | No |
| Screen Saver | Enabled | No |
| Screen Saver | Timeout | 0 Seconds |
| Screen Saver | Password Protected | No |
| All Accounts | Force Network Logoff | Never |
| All Accounts | Minimum Password Length | 0 Characters |
| All Accounts | Maximum Password Age | 42 Days |
| All Accounts | Historical Passwords | 0 remembered |
| All Accounts | Lockout Threshold | 0 Attempts |
| Automatic Updates | Update Status | Unknown |
| Automatic Updates | Update Schedule | Unknown |
| Internet Explorer | Run Script | Allow |
| Internet Explorer | Run ActiveX | Allow |
| Internet Explorer | Run Java | Allow |
| Internet Explorer | Download Files | Allow |
| Internet Explorer | Install Desktop Items | Prompt user |
| Internet Explorer | Launch Applications | Prompt user |
-----------------------------------------------------------------
--------------------------------------------------------------------------------
Share Permissions
System Restore
No restore points found, requires at least XP and the WMI service running.
--------------------------------------------------------------------------------
User Privileges
--------------------------------------------------
| Privilege Name |
--------------------------------------------------
| Create a token object |
| Replace a process level token |
| Lock pages in memory |
| Adjust memory quotas for a process |
| Act as part of the operating system |
| Manage auditing and security log |
| Take ownership of files or other objects |
| Load and unload device drivers |
| Profile system performance |
| Change the system time |
| Profile single process |
| Increase scheduling priority |
| Create a pagefile |
| Create permanent shared objects |
| Back up files and directories |
| Restore files and directories |
| Shut down the system |
| Debug programs |
| Generate security audits |
| Modify firmware environment values |
| Bypass traverse checking |
| Remove computer from docking station |
| Perform volume maintenance tasks |
| Impersonate a client after authentication |
| Create global objects |
| Access Credential Manager as a trusted caller |
| Modify an object label |
| Increase a process working set |
| Change the time zone |
| Create symbolic links |
--------------------------------------------------
--------------------------------------------------------------------------------
Windows Firewall
---------------------------------------------------
| Name | Setting |
---------------------------------------------------
| Firewall Enabled | Yes |
| Authorised Service | File and Printer Sharing |
| Authorised Service | Network Discovery |
| Authorised Service | Remote Desktop |
---------------------------------------------------
--------------------------------------------------------------------------------
Groups and Users
Local Groups
Administrators
-----------------------------------------------------------------------------------------------
| Name | Value |
-----------------------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Administrators |
| Comment Item | Administrators have complete and unrestricted access to the computer/domain |
-----------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
------------------------------------
| Group Name | Member Name |
------------------------------------
| Administrators | Administrator |
------------------------------------
--------------------------------------------------------------------------------
Policy
---------------------------------------------------------------
| Group Name | Privilege Name |
---------------------------------------------------------------
| Administrators | Manage auditing and security log |
| Administrators | Back up files and directories |
| Administrators | Restore files and directories |
| Administrators | Change the system time |
| Administrators | Shut down the system |
| Administrators | Force shutdown from a remote system |
| Administrators | Take ownership of files or other objects |
| Administrators | Debug programs |
| Administrators | Modify firmware environment values |
| Administrators | Profile system performance |
| Administrators | Profile single process |
| Administrators | Increase scheduling priority |
| Administrators | Load and unload device drivers |
| Administrators | Create a pagefile |
| Administrators | Adjust memory quotas for a process |
| Administrators | SeInteractiveLogonRight |
| Administrators | SeNetworkLogonRight |
---------------------------------------------------------------
--------------------------------------------------------------------------------
Backup Operators
-----------------------------------------------------------------------------------------------------------------------------
| Name | Value |
-----------------------------------------------------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Backup Operators |
| Comment Item | Backup Operators can override security restrictions for the sole purpose of backing up or restoring files |
-----------------------------------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
------------------------------------------------------
| Group Name | Privilege Name |
------------------------------------------------------
| Backup Operators | Back up files and directories |
| Backup Operators | Restore files and directories |
| Backup Operators | Shut down the system |
| Backup Operators | SeInteractiveLogonRight |
------------------------------------------------------
--------------------------------------------------------------------------------
Cryptographic Operators
-------------------------------------------------------------------------------
| Name | Value |
-------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Cryptographic Operators |
| Comment Item | Members are authorized to perform cryptographic operations. |
-------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
No information found.
--------------------------------------------------------------------------------
Distributed COM Users
------------------------------------------------------------------------------------------------------------
| Name | Value |
------------------------------------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Distributed COM Users |
| Comment Item | Members are allowed to launch, activate and use Distributed COM objects on this machine. |
------------------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
No information found.
--------------------------------------------------------------------------------
Event Log Readers
--------------------------------------------------------------------------------
| Name | Value |
--------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Event Log Readers |
| Comment Item | Members of this group can read event logs from local machine |
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
No information found.
--------------------------------------------------------------------------------
Guests
--------------------------------------------------------------------------------------------------------------------------------------------------
| Name | Value |
--------------------------------------------------------------------------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Guests |
| Comment Item | Guests have the same access as members of the Users group by default, except for the Guest account which is further restricted |
--------------------------------------------------------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
------------------------------
| Group Name | Member Name |
------------------------------
| Guests | Guest |
------------------------------
--------------------------------------------------------------------------------
Policy
------------------------------------------
| Group Name | Privilege Name |
------------------------------------------
| Guests | SeInteractiveLogonRight |
------------------------------------------
--------------------------------------------------------------------------------
IIS_IUSRS
-------------------------------------------------------------------------
| Name | Value |
-------------------------------------------------------------------------
| Group Type | Local |
| Group Name | IIS_IUSRS |
| Comment Item | Built-in group used by Internet Information Services. |
-------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
------------------------------
| Group Name | Member Name |
------------------------------
| IIS_IUSRS | IUSR |
------------------------------
--------------------------------------------------------------------------------
Policy
No information found.
--------------------------------------------------------------------------------
Network Configuration Operators
--------------------------------------------------------------------------------------------------------------------------------
| Name | Value |
--------------------------------------------------------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Network Configuration Operators |
| Comment Item | Members in this group can have some administrative privileges to manage configuration of networking features |
--------------------------------------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
No information found.
--------------------------------------------------------------------------------
Performance Log Users
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
| Name | Value |
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Performance Log Users |
| Comment Item | Members of this group may schedule logging of performance counters, enable trace providers, and collect event traces both locally and via remote access to this computer |
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
No information found.
--------------------------------------------------------------------------------
Performance Monitor Users
--------------------------------------------------------------------------------------------------
| Name | Value |
--------------------------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Performance Monitor Users |
| Comment Item | Members of this group can access performance counter data locally and remotely |
--------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
No information found.
--------------------------------------------------------------------------------
Power Users
------------------------------------------------------------------------------------------------------------------
| Name | Value |
------------------------------------------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Power Users |
| Comment Item | Power Users are included for backwards compatibility and possess limited administrative powers |
------------------------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
-------------------------------------------------------
| Group Name | Privilege Name |
-------------------------------------------------------
| Power Users | Change the system time |
| Power Users | Shut down the system |
| Power Users | Force shutdown from a remote system |
| Power Users | Profile single process |
| Power Users | Increase scheduling priority |
| Power Users | SeInteractiveLogonRight |
| Power Users | SeNetworkLogonRight |
| Power Users | SeRemoteInteractiveLogonRight |
-------------------------------------------------------
--------------------------------------------------------------------------------
Remote Desktop Users
---------------------------------------------------------------------------------
| Name | Value |
---------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Remote Desktop Users |
| Comment Item | Members in this group are granted the right to logon remotely |
---------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
No information found.
--------------------------------------------------------------------------------
Replicator
---------------------------------------------------------
| Name | Value |
---------------------------------------------------------
| Group Type | Local |
| Group Name | Replicator |
| Comment Item | Supports file replication in a domain |
---------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
No information found.
--------------------------------------------------------------------------------
Users
-------------------------------------------------------------------------------------------------------------------------------
| Name | Value |
-------------------------------------------------------------------------------------------------------------------------------
| Group Type | Local |
| Group Name | Users |
| Comment Item | Users are prevented from making accidental or intentional system-wide changes and can run most applications |
-------------------------------------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Members
No information found.
--------------------------------------------------------------------------------
Policy
------------------------------------------
| Group Name | Privilege Name |
------------------------------------------
| Users | Shut down the system |
| Users | SeInteractiveLogonRight |
------------------------------------------
--------------------------------------------------------------------------------
Global Groups
None
----------------------------------
| Name | Value |
----------------------------------
| Group Type | Global |
| Group Name | None |
| Comment Item | Ordinary users |
----------------------------------
--------------------------------------------------------------------------------
Members
--------------------------------
| Group Name | Member Name |
--------------------------------
| None | Administrator |
| None | Guest |
--------------------------------
--------------------------------------------------------------------------------
Policy
No information found.
--------------------------------------------------------------------------------
User Accounts
Administrator
--------------------------------------------------------------------------------
| Item | Value |
--------------------------------------------------------------------------------
| User Name | Administrator |
| Full Name | |
| Description | Built-in account for administering the computer/domain |
| Account Status | Enabled, Not Locked |
| Local Groups | Administrators |
| Global Groups | None &
