Detected Applications - There is no data to display.
-
C:\ProgramData\Microsoft\Windows\Containers
Directory of C:\ProgramData\Microsoft\Windows\Containers
10/02/2018 11:00 PM <DIR> .
10/02/2018 11:00 PM <DIR> ..
12/21/2018 06:47 PM <DIR> BaseImages
12/22/2018 11:54 AM <DIR> Dumps
12/21/2018 08:20 PM <DIR> Sandboxes
12/21/2018 08:20 PM <DIR> Zygotes
0 File(s) 0 bytes
6 Dir(s) 230,609,969,152 bytes freeDirectory of C:\ProgramData\Microsoft\Windows\Containers\BaseImages
12/21/2018 06:47 PM <DIR> .
12/21/2018 06:47 PM <DIR> ..
12/21/2018 06:47 PM <DIR> 81d3cadc-05e5-4680-9e82-e479c73896b6
0 File(s) 0 bytesDirectory of C:\ProgramData\Microsoft\Windows\Containers\BaseImages\81d3cadc-05e5-4680-9e82-e479c73896b6
12/21/2018 06:47 PM <DIR> .
12/21/2018 06:47 PM <DIR> ..
12/21/2018 06:46 PM <DIR> Files
12/21/2018 06:47 PM <DIR> Snapshot
12/21/2018 06:46 PM 4,194,304 SystemTemplate.vhdx
12/21/2018 06:46 PM 75,497,472 SystemTemplateBase.vhdx
2 File(s) 79,691,776 bytes
4 Dir(s) 230,609,874,944 bytes freeFile folder
C:\ProgramData\Microsoft\Windows
3.23 GB (3,469,314,133 bytes)
10,497 Files, 1,134 Folders
Read-only (Only applies to files in folder)
These were Containers Properties under C:\ProgramData\Microsoft\Windows
-
For the time being I ran Secteer immediate for path C:\Program files and again with C:\Program Files (x86) to see if any software was not latest and I found two.
After Secunia PSI went away, I have been using PatchMyPC, SUMO, Heimdal Pro to see what needs updating. Unlike Secunia which used to show almost everything, these 3 give bits and pieces and that is why I was looking for a better option.
Thanks for looking into this.
Like Secteer excludes scanning Recycle Bin, similarly this directory structure of Containers needs to be excluded also.
C:\ProgramData\Microsoft\Windows
and
C:\Users\All Users\Microsoft\Windows
That's my thought.
@Tom Once again appreciate your time and patience in resolving these issues. -
For some reason there is an issue in that folder, that cause the structure to recurse / loop endlessly.
We are looking at approaches to avoid following such loops (in a generic way, rather than excluding that specific folder). Due to the holidays a solution is not right around the corner, but it is on the high priority list and we will address it soon.
-
@Tom
Another question. Does one need to be logged in through browser for inspections to work? The reason I ask is, I did not login to vulndetect.com for few days and when i logged in today, I see last inspection 6 days ago.Last CheckIn a minute ago
Last Inspection 6 days ago
Next CheckIn in 11 minutes
-
@KI108 No, the agent will run if the PC is turned on. So no need for logging in via browser.
But I suppose this could be because even the automatic inspection is failing for you.
Could you send me your log again via email?
-
@Tom
I have emailed the log to you. Thanks for looking into it. -
@Tom
It was set to 08:20 CST and I had changed to 09:20 CST to force it yesterday but it still didn't do anything.Last CheckIn 14 minutes ago
Last Inspection 7 days ago
Next CheckIn in 9 minutes
Next Inspection in 9 minutes
Will see what happens in the next 10 minutes
-
@Tom
It worked this time.Last CheckIn a minute ago
Last Inspection a minute ago
Next CheckIn in an hour
Next Inspection in a day
Though it did the c:\ and came back with the bad allocation after all the 0x00000005 => Access is denied.
Also the version still shows version:: 0.10.11.0 in the log. With the back -end changes you mentioned in other post of Nothing to see was this supposed to change?
-
@KI108 Yes, this was expected
We did not have time to work on changes to the agent yet, and this is something that we need to investigate and test properly, before we deploy it.
And I'm afraid that we need to clear an issue or two more before we can fix this one, sorry.
I'll keep you posted when there is news. -
@KI108 Sorry for the long wait, we are planning to make improvements to the agent during next week. I hope you have time to test later in the week.
-
@Tom Sure, I will once you update the agent. Thanks for looking into it.
-
@KI108 We now have a new version of the agent, can you please test it and report back to us?
https://test.vulndetect.com/dl/secteerSetup.exeThe new version is NOT available from the normal download location yet.
-
@Tom Thanks. It worked now.
Though it scanned some of the Containers sub directories like below, but it did complete - Enumerated filesystem in 15.439msAdobe Flash Player 32.0.0.114 OkBy: Adobe Systems Incorporated
Based on: C:\ProgramData\Microsoft\Windows\Containers\BaseImages\2bf54f2a-aaae-44b6-af12-df9f443cfa5b\Files\Users\All Users\Microsoft\Windows\Containers\BaseImages\2bf54f2a-aaae-44b6-af12-df9f443cfa5b\Files\Windows\System32\Macromed\Flash\Flash.ocx
Open product homepagecurl 7.55.1 InsecureRecommended version: 7.63 Ok
By: haxx.se
Based on: C:\ProgramData\Microsoft\Windows\Containers\BaseImages\2bf54f2a-aaae-44b6-af12-df9f443cfa5b\Files\Users\All Users\Microsoft\Windows\Containers\BaseImages\2bf54f2a-aaae-44b6-af12-df9f443cfa5b\Files\Windows\System32\curl.exe
Open product homepageSome are marked as Unknown / Untracked
Microsoft Office 2016 16.0.11126.20200 Unknown Microsoft Outlook 2016 16.0.11126.20266 Unknown Microsoft PowerPoint 2016 16.0.11126.20266 Unknown Microsoft Word 2016 16.0.11126.20266 Unknown Opera Internet Browser 58.0.3135.53 Untracked Unknown Amazon Kindle for PC 1.25.1.52064 Untracked Ok