Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Vista home Security 2012/LAN problems after factory restore [Closed]


  • This topic is locked This topic is locked

#1
nelsons313

nelsons313

    New Member

  • Member
  • Pip
  • 3 posts
Specs:
Windows vista home premium 64bit
computer specs; http://h10025.www1.h...cname=c01527396

Ok so my mothers computer had got the Vista home security 2012 trojan virus and she didnt have many important files(she mostly use's this computer for the web only) so i decided after running a full scan on malwarebytes and avg and finding no infections(go figure) to just do a full factory system restore via F11( i think lol) in the boot menu. the process went flawless without any hiccups throughout the setup as well.

i connect to the internet straight from my broadband modem via ethernet cable.
The problem: before the system reset the internet was not working, "network cable is unplugged" i figured it was just the trojan giving me the issue so i went ahead with the system restore. BUT after the restore everything is running fine, i ran malwarebytes again and still couldnt find any infections but my internet is still not working right. all the cords corresponding to my modem/pc ect are hooked up correctly i have triple checked but the problem is still the same when i use the diagnose and repair tool i get "a network cable is unplugged" ALSO for some reason there are no yellow and green traffic lights comming from my ethernet port so i checked it under the device manager and it says the device is working properely, all the drivers are updated and as far as i can tell the settings are fine. i believe the ethernet card like most other hardware devices on this pc are intergrated, but im not sure if thats the case idk how to replace it or if i need to. Thanks for any help in advance :)

OTL logfile created on: 1/1/2012 3:15:46 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Nelson\Downloads
64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19019)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.87 Gb Total Physical Memory | 1.59 Gb Available Physical Memory | 55.29% Memory free
5.96 Gb Paging File | 4.38 Gb Available in Paging File | 73.43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 285.94 Gb Total Space | 246.00 Gb Free Space | 86.03% Space Free | Partition Type: NTFS
Drive D: | 12.15 Gb Total Space | 1.65 Gb Free Space | 13.60% Space Free | Partition Type: NTFS

Computer Name: NELSON-PC | User Name: Nelson | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/01/01 15:15:33 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Nelson\Downloads\OTL.exe
PRC - [2011/11/25 10:13:22 | 000,480,880 | ---- | M] () -- C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe
PRC - [2011/10/15 00:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2008/02/09 02:06:00 | 003,220,856 | ---- | M] (Symantec Corporation) -- c:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_4.EXE
PRC - [2008/02/09 02:06:00 | 000,308,600 | ---- | M] (Symantec Corporation) -- c:\Program Files (x86)\Symantec\LiveUpdate\AUPDATE.EXE
PRC - [2008/02/09 02:06:00 | 000,238,968 | ---- | M] (Symantec Corporation) -- c:\Program Files (x86)\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2008/02/09 02:06:00 | 000,062,840 | ---- | M] (Symantec Corporation) -- c:\Program Files (x86)\Symantec\LiveUpdate\LuCallbackProxy.exe
PRC - [2008/02/06 04:48:00 | 000,149,864 | ---- | M] (Symantec Corporation) -- c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2007/04/18 07:01:34 | 000,065,536 | ---- | M] (Hewlett-Packard Company) -- C:\hp\support\hpsysdrv.exe
PRC - [2007/04/07 01:56:47 | 000,132,760 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Java\jre1.6.0_01\bin\jusched.exe


========== Modules (No Company Name) ==========

MOD - [2012/01/01 14:14:28 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\024d3dc8d8df47a0420a382959c64fdf\PresentationFramework.Aero.ni.dll
MOD - [2012/01/01 14:14:15 | 014,327,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\4f15f4468f90ae42f43a74b94b064fae\PresentationFramework.ni.dll
MOD - [2012/01/01 14:14:00 | 012,216,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\8a84d9c1f313d52f24bf191df15eead2\PresentationCore.ni.dll
MOD - [2012/01/01 14:13:49 | 003,313,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\880639d34ff339510176a4c8b4251954\WindowsBase.ni.dll
MOD - [2012/01/01 14:13:32 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\31729b33207d1093721f9e943302b900\System.Management.ni.dll
MOD - [2012/01/01 14:13:20 | 006,616,576 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\45d73bf5a07b8fd8a12fcf7d68e9b318\System.Data.ni.dll
MOD - [2012/01/01 14:13:07 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a4fd3b000abfd4712b02ec223df3e9dd\System.Runtime.Remoting.ni.dll
MOD - [2012/01/01 14:13:05 | 000,627,712 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\7895f580432cd243f19aa40db58d38bc\System.EnterpriseServices.ni.dll
MOD - [2012/01/01 14:13:05 | 000,280,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\7895f580432cd243f19aa40db58d38bc\System.EnterpriseServices.Wrapper.dll
MOD - [2012/01/01 14:13:04 | 000,627,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\9a01d9b5c7b5509bbc964881ce2be5a1\System.Transactions.ni.dll
MOD - [2012/01/01 14:13:02 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6d75eb3ca10a514754f5e87cc2134f07\System.Windows.Forms.ni.dll
MOD - [2012/01/01 14:12:54 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\19d027c3381110e60c003f2c8bd307ee\System.Drawing.ni.dll
MOD - [2012/01/01 14:12:49 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\38b9d09539b67b08ee996db6c71f8a9b\System.Xml.ni.dll
MOD - [2012/01/01 14:12:45 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\982c005f97eacba888acdda322c49362\System.Configuration.ni.dll
MOD - [2012/01/01 14:12:36 | 007,868,416 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\57ac9ba5419d6bf4b79f2979b0755428\System.ni.dll
MOD - [2012/01/01 14:12:31 | 011,486,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\c068708e16abf0be77a21b9f29817d83\mscorlib.ni.dll
MOD - [2011/11/25 10:13:22 | 000,480,880 | ---- | M] () -- C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe
MOD - [2008/07/27 10:22:54 | 000,113,664 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
MOD - [2008/07/27 10:03:15 | 002,933,248 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2008/07/27 10:03:15 | 000,261,632 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2008/07/03 11:45:00 | 000,032,768 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Content.XmlSerializers.dll
MOD - [2008/07/03 11:42:56 | 000,007,168 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\RemotingClient.dll
MOD - [2008/07/03 11:42:54 | 000,057,344 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
MOD - [2008/07/03 11:42:48 | 000,114,688 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\ECLibrary.dll
MOD - [2008/07/03 11:42:46 | 000,010,240 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingClients.dll
MOD - [2008/07/03 11:42:40 | 000,040,960 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingServer.dll
MOD - [2008/07/03 11:42:40 | 000,028,672 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingMessages.dll
MOD - [2008/07/03 11:42:40 | 000,005,632 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingInterface.dll
MOD - [2008/01/20 18:49:49 | 000,368,640 | ---- | M] () -- C:\WINDOWS\SysWOW64\msjetoledb40.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2008/01/20 18:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2007/10/18 07:37:22 | 000,412,672 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\DRIVERS\xaudio64.exe -- (XAudioService)
SRV - [2011/10/15 00:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2008/08/06 06:17:40 | 001,245,064 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2008/07/27 10:03:13 | 000,069,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/02/09 02:06:00 | 003,220,856 | ---- | M] (Symantec Corporation) [On_Demand | Running] -- c:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_4.EXE -- (LiveUpdate)
SRV - [2008/02/09 02:06:00 | 000,238,968 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files (x86)\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2008/02/06 04:48:00 | 000,149,864 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice)
SRV - [2008/02/06 04:48:00 | 000,149,864 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - [2008/02/06 04:48:00 | 000,149,864 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2008/02/06 04:48:00 | 000,149,864 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2007/08/21 11:22:00 | 000,267,096 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files (x86)\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/11/25 00:25:52 | 000,015,360 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\pneteth.sys -- (pneteth)
DRV:64bit: - [2008/08/06 06:19:14 | 000,172,080 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2008/05/08 05:27:00 | 000,411,136 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\CAXHWBS2.sys -- (CAXHWBS2)
DRV:64bit: - [2008/05/08 05:25:12 | 000,740,864 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\CAX_CNXT.sys -- (winachsf)
DRV:64bit: - [2008/05/08 05:24:08 | 001,487,872 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\CAX_DP.sys -- (HSF_DP)
DRV:64bit: - [2008/02/19 03:06:00 | 000,028,720 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\SymIMv.sys -- (SymIM)
DRV:64bit: - [2008/02/04 21:34:00 | 000,271,408 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV:64bit: - [2008/02/04 21:34:00 | 000,144,944 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SYMFW.SYS -- (SYMFW)
DRV:64bit: - [2008/02/04 21:34:00 | 000,048,176 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SYMNDISV.SYS -- (SYMNDISV)
DRV:64bit: - [2008/02/04 21:34:00 | 000,028,720 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV:64bit: - [2008/02/04 21:34:00 | 000,016,432 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SYMDNS.SYS -- (SYMDNS)
DRV:64bit: - [2008/01/31 03:51:00 | 000,476,720 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SRTSPL64.SYS -- (SRTSPL)
DRV:64bit: - [2008/01/31 03:51:00 | 000,440,880 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SRTSP64.SYS -- (SRTSP)
DRV:64bit: - [2008/01/31 03:51:00 | 000,032,304 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\SRTSPX64.SYS -- (SRTSPX)
DRV:64bit: - [2007/10/18 07:37:10 | 000,010,240 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\xaudio64.sys -- (XAudio)
DRV:64bit: - [2006/06/19 06:27:24 | 000,017,024 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\mdmxsdk.sys -- (mdmxsdk)
DRV - [2008/04/21 00:00:00 | 001,417,776 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20080421.003\EX64.SYS -- (NAVEX15)
DRV - [2008/04/21 00:00:00 | 000,486,960 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2008/04/21 00:00:00 | 000,134,704 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2008/04/21 00:00:00 | 000,125,488 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20080421.003\ENG64.SYS -- (NAVENG)
DRV - [2007/11/06 02:07:00 | 000,251,952 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20071204.002\IDSviA64.sys -- (IDSvia64)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...avilion&pf=cndt
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...avilion&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...avilion&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...avilion&pf=cndt

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...avilion&pf=cndt
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...avilion&pf=cndt
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)



O1 HOSTS File: ([2006/09/18 13:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Reg Error: Value error.) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_01\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [ccApp] c:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [KBD] C:\hp\KBD\KbdStub.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Java\jre1.6.0_01\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [DriverMax] C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions)
O4 - HKCU..\Run: [DriverMax_RESTART] C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions)
O4 - Startup: C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk = C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_01\bin\ssv.dll (Sun Microsystems, Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_01)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9F66E658-1B8D-4E05-9A79-4179D0015E47}: DhcpNameServer = 8.8.8.8
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe ()
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\img24.jpg
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/01/01 00:55:10 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\WindowsPowerShell
[2012/01/01 00:55:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\WindowsPowerShell
[2012/01/01 00:49:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2012/01/01 00:47:49 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2012/01/01 00:42:55 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011/12/31 21:46:08 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2011/12/31 21:23:46 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2011/12/31 20:39:48 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011/12/31 20:32:24 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Local\Innovative Solutions
[2011/12/31 20:32:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
[2011/12/31 20:32:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Innovative Solutions
[2011/12/31 18:38:59 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Roaming\WinBatch
[2011/12/31 18:15:14 | 000,000,000 | ---D | C] -- C:\SWSetup
[2011/12/31 18:12:30 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Roaming\Macromedia
[2011/12/31 18:12:02 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Roaming\Adobe
[2011/12/31 18:05:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PdaNet for Android
[2011/12/31 18:05:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PdaNet for Android
[2011/12/31 16:40:23 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Local\Hewlett-Packard
[2011/12/31 16:40:17 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Roaming\Symantec
[2011/12/31 16:39:47 | 000,000,000 | R--D | C] -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/12/31 16:39:47 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Searches
[2011/12/31 16:39:47 | 000,000,000 | R--D | C] -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/12/31 16:39:39 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Roaming\Identities
[2011/12/31 16:39:37 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Contacts
[2011/12/31 16:39:20 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Roaming\hewlett-packard
[2011/12/31 16:34:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2011/12/31 16:34:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
[2011/12/31 16:33:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2011/12/31 16:32:16 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Roaming\HP TCS
[2011/12/31 16:31:25 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Local\Adobe
[2011/12/31 16:31:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2011/12/31 16:30:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\User Guides
[2011/12/31 16:30:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2011/12/31 16:30:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2011/12/31 16:30:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Try Microsoft Office for 60 days
[2011/12/31 16:30:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quicken Financial Center
[2011/12/31 16:29:54 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Local\VirtualStore
[2011/12/31 16:29:51 | 000,000,000 | --SD | C] -- C:\Users\Nelson\AppData\Roaming\Microsoft
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Videos
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Saved Games
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Pictures
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Music
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Links
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Favorites
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Downloads
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Documents
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\Desktop
[2011/12/31 16:29:51 | 000,000,000 | R--D | C] -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\AppData\Local\Temporary Internet Files
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\Templates
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\Start Menu
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\SendTo
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\Recent
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\PrintHood
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\NetHood
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\Documents\My Videos
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\Documents\My Pictures
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\Documents\My Music
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\My Documents
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\Local Settings
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\AppData\Local\History
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\Cookies
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\Application Data
[2011/12/31 16:29:51 | 000,000,000 | -HSD | C] -- C:\Users\Nelson\AppData\Local\Application Data
[2011/12/31 16:29:51 | 000,000,000 | -H-D | C] -- C:\Users\Nelson\AppData
[2011/12/31 16:29:51 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Local\Temp
[2011/12/31 16:29:51 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Local\Microsoft
[2011/12/31 16:29:51 | 000,000,000 | ---D | C] -- C:\Users\Nelson\AppData\Roaming\Media Center Programs
[2011/12/31 16:26:48 | 000,000,000 | -HSD | C] -- C:\ProgramData\Templates
[2011/12/31 16:26:48 | 000,000,000 | -HSD | C] -- C:\ProgramData\Start Menu
[2011/12/31 16:26:48 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Videos
[2011/12/31 16:26:48 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Pictures
[2011/12/31 16:26:48 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Music
[2011/12/31 16:26:48 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favorites
[2011/12/31 16:26:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings
[2011/12/31 16:26:48 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents
[2011/12/31 16:26:48 | 000,000,000 | -HSD | C] -- C:\ProgramData\Desktop
[2011/12/31 16:26:48 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data
[2011/12/31 15:06:48 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011/12/31 15:04:42 | 000,000,000 | -HSD | C] -- C:\System Volume Information

========== Files - Modified Within 30 Days ==========

[2012/01/01 15:03:44 | 000,690,960 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/01/01 15:03:44 | 000,595,446 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/01/01 15:03:44 | 000,101,144 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/01/01 14:44:29 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/01/01 14:44:25 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/01/01 14:44:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/01/01 14:43:53 | 3084,050,432 | -HS- | M] () -- C:\hiberfil.sys
[2012/01/01 14:04:34 | 000,000,975 | ---- | M] () -- C:\Users\Nelson\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/01/01 14:01:46 | 000,309,832 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/12/31 20:32:24 | 000,000,963 | ---- | M] () -- C:\Users\Nelson\Desktop\DriverMax.lnk
[2011/12/31 18:42:02 | 000,000,338 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForNelson.job
[2011/12/31 18:06:50 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2011/12/31 18:05:55 | 000,000,954 | ---- | M] () -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk
[2011/12/31 17:06:47 | 000,000,560 | ---- | M] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - Nelson.job
[2011/12/31 16:39:23 | 000,000,044 | ---- | M] () -- C:\Windows\System\hpsysdrv.dat
[2011/12/31 16:30:45 | 000,001,823 | RHS- | M] () -- C:\Windows\SysWow64\drivers\103C_HP_CPC_FK792AA-ABA a6600f_YC_0Pavi_QMXX846_E84NAv6PrA1_49_INapa_SFOXCONN_VHP P N_B5.20_T081024_WUH1_L409_M2941_J320_7Intel_8Pentium Dual E2200_92.2_#081227_N10DE07DC_Z14F12F20_G10DE07E1.MRK
[2011/12/31 16:30:45 | 000,001,823 | RHS- | M] () -- C:\Windows\SysNative\drivers\103C_HP_CPC_FK792AA-ABA a6600f_YC_0Pavi_QMXX846_E84NAv6PrA1_49_INapa_SFOXCONN_VHP P N_B5.20_T081024_WUH1_L409_M2941_J320_7Intel_8Pentium Dual E2200_92.2_#081227_N10DE07DC_Z14F12F20_G10DE07E1.MRK
[2011/12/31 16:30:37 | 000,001,368 | ---- | M] () -- C:\Users\Public\Desktop\Snapfish Photos - FREE - 1st 25 Prints.lnk
[2011/12/31 16:30:16 | 000,002,153 | ---- | M] () -- C:\Users\Public\Desktop\eBay.lnk
[2011/12/31 15:24:38 | 000,047,092 | ---- | M] () -- C:\Windows\SysNative\license.rtf

========== Files Created - No Company Name ==========

[2012/01/01 00:49:03 | 000,137,536 | ---- | C] () -- C:\Windows\SysNative\nvshext.dll
[2012/01/01 00:49:02 | 000,837,952 | ---- | C] () -- C:\Windows\SysNative\easyupdatusapiu64.dll
[2012/01/01 00:42:55 | 000,068,928 | ---- | C] () -- C:\Windows\SysNative\OpenCL.dll
[2012/01/01 00:42:54 | 024,742,720 | ---- | C] () -- C:\Windows\SysNative\nvoglv64.dll
[2012/01/01 00:42:54 | 012,971,840 | ---- | C] () -- C:\Windows\SysNative\drivers\nvlddmkm.sys
[2012/01/01 00:42:54 | 002,542,912 | ---- | C] () -- C:\Windows\SysNative\nvcuvid.dll
[2012/01/01 00:42:54 | 001,533,248 | ---- | C] () -- C:\Windows\SysNative\nvdispco64.dll
[2012/01/01 00:42:54 | 001,454,400 | ---- | C] () -- C:\Windows\SysNative\nvgenco64.dll
[2012/01/01 00:42:54 | 000,007,384 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2012/01/01 00:42:53 | 024,796,992 | ---- | C] () -- C:\Windows\SysNative\nvcompiler.dll
[2012/01/01 00:42:53 | 007,581,504 | ---- | C] () -- C:\Windows\SysNative\nvcuda.dll
[2012/01/01 00:42:53 | 002,232,128 | ---- | C] () -- C:\Windows\SysNative\nvcuvenc.dll
[2011/12/31 22:29:33 | 000,024,064 | ---- | C] () -- C:\Windows\SysNative\wsepno.dll
[2011/12/31 22:29:31 | 000,044,544 | ---- | C] () -- C:\Windows\SysNative\msscb.dll
[2011/12/31 22:29:31 | 000,012,288 | ---- | C] () -- C:\Windows\SysNative\msshooks.dll
[2011/12/31 22:29:30 | 000,106,605 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
[2011/12/31 22:29:30 | 000,106,605 | ---- | C] () -- C:\Windows\SysNative\StructuredQuerySchema.bin
[2011/12/31 22:29:30 | 000,080,896 | ---- | C] () -- C:\Windows\SysNative\propdefs.dll
[2011/12/31 22:29:30 | 000,067,072 | ---- | C] () -- C:\Windows\SysNative\xmlfilter.dll
[2011/12/31 22:29:30 | 000,043,008 | ---- | C] () -- C:\Windows\SysNative\rtffilt.dll
[2011/12/31 22:29:30 | 000,037,376 | ---- | C] () -- C:\Windows\SysNative\mimefilt.dll
[2011/12/31 22:29:30 | 000,018,904 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchemaTrivial.bin
[2011/12/31 22:29:30 | 000,018,904 | ---- | C] () -- C:\Windows\SysNative\StructuredQuerySchemaTrivial.bin
[2011/12/31 22:29:27 | 001,676,800 | ---- | C] () -- C:\Windows\SysNative\chsbrkr.dll
[2011/12/31 22:29:27 | 000,921,088 | ---- | C] () -- C:\Windows\SysNative\propsys.dll
[2011/12/31 22:29:27 | 000,347,648 | ---- | C] () -- C:\Windows\SysNative\srchadmin.dll
[2011/12/31 22:29:27 | 000,317,440 | ---- | C] () -- C:\Windows\SysNative\thawbrkr.dll
[2011/12/31 22:29:27 | 000,316,928 | ---- | C] () -- C:\Windows\SysNative\msshsq.dll
[2011/12/31 22:29:27 | 000,280,064 | ---- | C] () -- C:\Windows\SysNative\offfilt.dll
[2011/12/31 22:29:27 | 000,181,248 | ---- | C] () -- C:\Windows\SysNative\nlhtml.dll
[2011/12/31 22:29:27 | 000,180,736 | ---- | C] () -- C:\Windows\SysNative\korwbrkr.dll
[2011/12/31 22:29:27 | 000,087,552 | ---- | C] () -- C:\Windows\SysNative\mssitlb.dll
[2011/12/31 22:29:27 | 000,040,448 | ---- | C] () -- C:\Windows\SysNative\mssprxy.dll
[2011/12/31 22:29:26 | 011,967,524 | ---- | C] () -- C:\Windows\SysWow64\korwbrkr.lex
[2011/12/31 22:29:26 | 011,967,524 | ---- | C] () -- C:\Windows\SysNative\korwbrkr.lex
[2011/12/31 22:29:26 | 006,100,480 | ---- | C] () -- C:\Windows\SysNative\chtbrkr.dll
[2011/12/31 22:29:26 | 000,796,672 | ---- | C] () -- C:\Windows\SysNative\mssvp.dll
[2011/12/31 22:29:26 | 000,498,176 | ---- | C] () -- C:\Windows\SysNative\mssph.dll
[2011/12/31 22:29:26 | 000,312,832 | ---- | C] () -- C:\Windows\SysNative\mssphtb.dll
[2011/12/31 22:29:26 | 000,258,560 | ---- | C] () -- C:\Windows\SysNative\SearchProtocolHost.exe
[2011/12/31 22:29:26 | 000,112,128 | ---- | C] () -- C:\Windows\SysNative\SearchFilterHost.exe
[2011/12/31 22:29:26 | 000,078,848 | ---- | C] () -- C:\Windows\SysNative\msstrc.dll
[2011/12/31 22:29:26 | 000,073,728 | ---- | C] () -- C:\Windows\SysNative\msscntrs.dll
[2011/12/31 22:29:25 | 002,209,792 | ---- | C] () -- C:\Windows\SysNative\tquery.dll
[2011/12/31 22:29:25 | 002,176,512 | ---- | C] () -- C:\Windows\SysNative\mssrch.dll
[2011/12/31 22:29:25 | 000,598,016 | ---- | C] () -- C:\Windows\SysNative\SearchIndexer.exe
[2011/12/31 21:51:09 | 001,638,912 | ---- | C] () -- C:\Windows\SysNative\mshtml.tlb
[2011/12/31 21:51:09 | 000,096,768 | ---- | C] () -- C:\Windows\SysNative\mshtmled.dll
[2011/12/31 21:51:08 | 001,062,912 | ---- | C] () -- C:\Windows\SysNative\mstime.dll
[2011/12/31 21:51:08 | 000,243,712 | ---- | C] () -- C:\Windows\SysNative\occache.dll
[2011/12/31 21:51:07 | 000,252,416 | ---- | C] () -- C:\Windows\SysNative\iepeers.dll
[2011/12/31 21:51:07 | 000,219,136 | ---- | C] () -- C:\Windows\SysNative\ieui.dll
[2011/12/31 21:51:07 | 000,071,680 | ---- | C] () -- C:\Windows\SysNative\msfeedsbs.dll
[2011/12/31 21:51:07 | 000,056,832 | ---- | C] () -- C:\Windows\SysNative\licmgr10.dll
[2011/12/31 21:51:07 | 000,031,744 | ---- | C] () -- C:\Windows\SysNative\jsproxy.dll
[2011/12/31 21:51:06 | 001,486,848 | ---- | C] () -- C:\Windows\SysNative\urlmon.dll
[2011/12/31 21:51:06 | 000,710,656 | ---- | C] () -- C:\Windows\SysNative\msfeeds.dll
[2011/12/31 21:51:05 | 001,147,904 | ---- | C] () -- C:\Windows\SysNative\wininet.dll
[2011/12/31 21:51:05 | 000,459,776 | ---- | C] () -- C:\Windows\SysNative\iedkcs32.dll
[2011/12/31 21:51:05 | 000,162,816 | ---- | C] () -- C:\Windows\SysNative\ieUnatt.exe
[2011/12/31 21:51:05 | 000,132,096 | ---- | C] () -- C:\Windows\SysNative\iesysprep.dll
[2011/12/31 21:51:05 | 000,077,312 | ---- | C] () -- C:\Windows\SysNative\iesetup.dll
[2011/12/31 21:51:05 | 000,072,192 | ---- | C] () -- C:\Windows\SysNative\iernonce.dll
[2011/12/31 21:51:05 | 000,070,656 | ---- | C] () -- C:\Windows\SysNative\ie4uinit.exe
[2011/12/31 21:51:05 | 000,057,667 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/12/31 21:51:05 | 000,057,667 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2011/12/31 21:51:05 | 000,012,288 | ---- | C] () -- C:\Windows\SysNative\msfeedssync.exe
[2011/12/31 21:51:04 | 002,340,864 | ---- | C] () -- C:\Windows\SysNative\iertutil.dll
[2011/12/31 21:51:04 | 000,479,232 | ---- | C] () -- C:\Windows\SysNative\html.iec
[2011/12/31 21:51:03 | 001,538,560 | ---- | C] () -- C:\Windows\SysNative\inetcpl.cpl
[2011/12/31 21:51:02 | 012,474,368 | ---- | C] () -- C:\Windows\SysNative\ieframe.dll
[2011/12/31 21:51:01 | 009,264,640 | ---- | C] () -- C:\Windows\SysNative\mshtml.dll
[2011/12/31 21:45:42 | 000,161,792 | ---- | C] () -- C:\Windows\SysNative\advpack.dll
[2011/12/31 21:45:42 | 000,088,064 | ---- | C] () -- C:\Windows\SysNative\admparse.dll
[2011/12/31 21:45:42 | 000,085,504 | ---- | C] () -- C:\Windows\SysNative\icardie.dll
[2011/12/31 21:45:42 | 000,022,528 | ---- | C] () -- C:\Windows\SysNative\corpol.dll
[2011/12/31 21:45:41 | 000,223,232 | ---- | C] () -- C:\Windows\SysNative\msls31.dll
[2011/12/31 21:45:41 | 000,157,696 | ---- | C] () -- C:\Windows\SysNative\ieakeng.dll
[2011/12/31 21:45:41 | 000,077,824 | ---- | C] () -- C:\Windows\SysNative\tdc.ocx
[2011/12/31 21:45:41 | 000,052,736 | ---- | C] () -- C:\Windows\SysNative\imgutil.dll
[2011/12/31 21:45:40 | 000,481,280 | ---- | C] () -- C:\Windows\SysNative\ieapfltr.dll
[2011/12/31 21:45:40 | 000,125,952 | ---- | C] () -- C:\Windows\SysNative\inseng.dll
[2011/12/31 21:45:40 | 000,076,288 | ---- | C] () -- C:\Windows\SysNative\wextract.exe
[2011/12/31 21:45:40 | 000,063,488 | ---- | C] () -- C:\Windows\SysNative\pngfilt.dll
[2011/12/31 21:45:39 | 000,508,416 | ---- | C] () -- C:\Windows\SysNative\dxtmsft.dll
[2011/12/31 21:45:39 | 000,318,464 | ---- | C] () -- C:\Windows\SysNative\dxtrans.dll
[2011/12/31 21:45:38 | 000,304,640 | ---- | C] () -- C:\Windows\SysNative\webcheck.dll
[2011/12/31 21:45:37 | 000,278,528 | ---- | C] () -- C:\Windows\SysNative\WinFXDocObj.exe
[2011/12/31 21:45:37 | 000,271,872 | ---- | C] () -- C:\Windows\SysNative\ieaksie.dll
[2011/12/31 21:45:37 | 000,241,664 | ---- | C] () -- C:\Windows\SysNative\msrating.dll
[2011/12/31 21:45:37 | 000,163,840 | ---- | C] () -- C:\Windows\SysNative\ieakui.dll
[2011/12/31 21:45:37 | 000,131,584 | ---- | C] () -- C:\Windows\SysNative\PDMSetup.exe
[2011/12/31 21:45:37 | 000,129,024 | ---- | C] () -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2011/12/31 21:45:37 | 000,128,512 | ---- | C] () -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2011/12/31 21:45:37 | 000,125,440 | ---- | C] () -- C:\Windows\SysNative\SetDepNx.exe
[2011/12/31 21:45:37 | 000,041,984 | ---- | C] () -- C:\Windows\SysNative\mshta.exe
[2011/12/31 21:45:36 | 000,817,664 | ---- | C] () -- C:\Windows\SysNative\jscript.dll
[2011/12/31 21:45:36 | 000,612,864 | ---- | C] () -- C:\Windows\SysNative\vbscript.dll
[2011/12/31 21:45:36 | 000,108,032 | ---- | C] () -- C:\Windows\SysNative\url.dll
[2011/12/31 21:45:36 | 000,048,128 | ---- | C] () -- C:\Windows\SysNative\mshtmler.dll
[2011/12/31 21:45:34 | 003,698,584 | ---- | C] () -- C:\Windows\SysNative\ieapfltr.dat
[2011/12/31 21:45:34 | 000,193,536 | ---- | C] () -- C:\Windows\SysNative\iexpress.exe
[2011/12/31 21:25:23 | 000,270,720 | ---- | C] () -- C:\Windows\SysNative\MpSigStub.exe
[2011/12/31 21:08:01 | 000,049,160 | ---- | C] () -- C:\Windows\SysNative\infocardcpl.cpl
[2011/12/31 21:07:57 | 000,011,264 | ---- | C] () -- C:\Windows\SysNative\icardres.dll
[2011/12/31 21:07:56 | 000,052,760 | ---- | C] () -- C:\Windows\SysNative\PresentationHostProxy.dll
[2011/12/31 21:07:55 | 001,383,936 | ---- | C] () -- C:\Windows\SysNative\icardagt.exe
[2011/12/31 21:07:55 | 001,168,928 | ---- | C] () -- C:\Windows\SysNative\PresentationNative_v0300.dll
[2011/12/31 21:07:55 | 000,167,432 | ---- | C] () -- C:\Windows\SysNative\infocardapi.dll
[2011/12/31 21:07:47 | 000,126,520 | ---- | C] () -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2011/12/31 21:07:45 | 000,357,904 | ---- | C] () -- C:\Windows\SysNative\PresentationHost.exe
[2011/12/31 21:00:20 | 000,013,824 | ---- | C] () -- C:\Windows\SysNative\netfxperf.dll
[2011/12/31 21:00:11 | 000,112,120 | ---- | C] () -- C:\Windows\SysNative\dfshim.dll
[2011/12/31 21:00:04 | 000,406,528 | ---- | C] () -- C:\Windows\SysNative\mscoree.dll
[2011/12/31 20:59:58 | 000,158,208 | ---- | C] () -- C:\Windows\SysNative\mscorier.dll
[2011/12/31 20:59:56 | 000,076,288 | ---- | C] () -- C:\Windows\SysNative\mscories.dll
[2011/12/31 20:54:53 | 000,032,768 | ---- | C] () -- C:\Windows\SysNative\nshhttp.dll
[2011/12/31 20:54:51 | 000,610,304 | ---- | C] () -- C:\Windows\SysNative\drivers\http.sys
[2011/12/31 20:54:50 | 000,033,792 | ---- | C] () -- C:\Windows\SysNative\httpapi.dll
[2011/12/31 20:48:59 | 000,101,376 | ---- | C] () -- C:\Windows\SysNative\MSNP.ax
[2011/12/31 20:48:57 | 000,375,808 | ---- | C] () -- C:\Windows\SysNative\psisdecd.dll
[2011/12/31 20:48:57 | 000,289,792 | ---- | C] () -- C:\Windows\SysNative\psisrndr.ax
[2011/12/31 20:46:31 | 000,002,048 | ---- | C] () -- C:\Windows\SysNative\winrsmgr.dll
[2011/12/31 20:46:30 | 000,013,312 | ---- | C] () -- C:\Windows\SysNative\wsmplpxy.dll
[2011/12/31 20:46:30 | 000,013,312 | ---- | C] () -- C:\Windows\SysNative\winrssrv.dll
[2011/12/31 20:46:21 | 000,053,760 | ---- | C] () -- C:\Windows\SysNative\pwrshplugin.dll
[2011/12/31 20:46:20 | 000,051,200 | ---- | C] () -- C:\Windows\SysNative\winrs.exe
[2011/12/31 20:46:20 | 000,024,064 | ---- | C] () -- C:\Windows\SysNative\winrshost.exe
[2011/12/31 20:46:20 | 000,013,824 | ---- | C] () -- C:\Windows\SysNative\wsmprovhost.exe
[2011/12/31 20:46:16 | 000,232,960 | ---- | C] () -- C:\Windows\SysNative\wecsvc.dll
[2011/12/31 20:46:16 | 000,113,152 | ---- | C] () -- C:\Windows\SysNative\wevtfwd.dll
[2011/12/31 20:46:16 | 000,113,152 | ---- | C] () -- C:\Windows\SysNative\wecutil.exe
[2011/12/31 20:46:16 | 000,084,992 | ---- | C] () -- C:\Windows\SysNative\wecapi.dll
[2011/12/31 20:46:16 | 000,054,272 | ---- | C] () -- C:\Windows\SysNative\WsmRes.dll
[2011/12/31 20:46:09 | 000,201,184 | ---- | C] () -- C:\Windows\SysNative\winrm.vbs
[2011/12/31 20:46:09 | 000,002,426 | ---- | C] () -- C:\Windows\SysWow64\WsmTxt.xsl
[2011/12/31 20:46:09 | 000,002,426 | ---- | C] () -- C:\Windows\SysNative\WsmTxt.xsl
[2011/12/31 20:46:08 | 000,201,184 | ---- | C] () -- C:\Windows\SysWow64\winrm.vbs
[2011/12/31 20:46:08 | 000,004,675 | ---- | C] () -- C:\Windows\SysWow64\wsmanconfig_schema.xml
[2011/12/31 20:46:08 | 000,004,675 | ---- | C] () -- C:\Windows\SysNative\wsmanconfig_schema.xml
[2011/12/31 20:46:06 | 002,050,048 | ---- | C] () -- C:\Windows\SysNative\WsmSvc.dll
[2011/12/31 20:46:06 | 000,370,688 | ---- | C] () -- C:\Windows\SysNative\winrscmd.dll
[2011/12/31 20:46:06 | 000,352,768 | ---- | C] () -- C:\Windows\SysNative\WSManMigrationPlugin.dll
[2011/12/31 20:46:06 | 000,348,672 | ---- | C] () -- C:\Windows\SysNative\WSManHTTPConfig.exe
[2011/12/31 20:46:06 | 000,310,272 | ---- | C] () -- C:\Windows\SysNative\WsmWmiPl.dll
[2011/12/31 20:46:06 | 000,180,736 | ---- | C] () -- C:\Windows\SysNative\WsmAuto.dll
[2011/12/31 20:39:37 | 000,135,680 | ---- | C] () -- C:\Windows\SysNative\NVCOSMB.DLL
[2011/12/31 20:32:24 | 000,000,963 | ---- | C] () -- C:\Users\Nelson\Desktop\DriverMax.lnk
[2011/12/31 20:15:11 | 012,240,896 | ---- | C] () -- C:\Windows\SysNative\NlsLexicons0007.dll
[2011/12/31 20:15:10 | 002,644,480 | ---- | C] () -- C:\Windows\SysNative\NlsLexicons0009.dll
[2011/12/31 20:14:53 | 001,361,920 | ---- | C] () -- C:\Windows\SysNative\NaturalLanguage6.dll
[2011/12/31 20:12:20 | 000,594,944 | ---- | C] () -- C:\Windows\SysNative\RMActivate_isv.exe
[2011/12/31 20:12:20 | 000,594,432 | ---- | C] () -- C:\Windows\SysNative\RMActivate.exe
[2011/12/31 20:12:19 | 000,413,696 | ---- | C] () -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2011/12/31 20:12:18 | 000,535,040 | ---- | C] () -- C:\Windows\SysNative\secproc.dll
[2011/12/31 20:12:18 | 000,534,016 | ---- | C] () -- C:\Windows\SysNative\secproc_isv.dll
[2011/12/31 20:12:18 | 000,409,600 | ---- | C] () -- C:\Windows\SysNative\RMActivate_ssp.exe
[2011/12/31 20:12:16 | 000,159,232 | ---- | C] () -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2011/12/31 20:12:16 | 000,158,720 | ---- | C] () -- C:\Windows\SysNative\secproc_ssp.dll
[2011/12/31 20:12:15 | 000,457,216 | ---- | C] () -- C:\Windows\SysNative\msdrm.dll
[2011/12/31 20:06:34 | 000,301,568 | ---- | C] () -- C:\Windows\SysNative\shsvcs.dll
[2011/12/31 20:05:24 | 000,141,312 | ---- | C] () -- C:\Windows\SysNative\netiohlp.dll
[2011/12/31 20:05:23 | 000,032,256 | ---- | C] () -- C:\Windows\SysNative\NETSTAT.EXE
[2011/12/31 20:05:23 | 000,023,040 | ---- | C] () -- C:\Windows\SysNative\ARP.EXE
[2011/12/31 20:05:23 | 000,021,504 | ---- | C] () -- C:\Windows\SysNative\ROUTE.EXE
[2011/12/31 20:05:23 | 000,012,800 | ---- | C] () -- C:\Windows\SysNative\MRINFO.EXE
[2011/12/31 20:05:23 | 000,011,264 | ---- | C] () -- C:\Windows\SysNative\finger.exe
[2011/12/31 20:05:23 | 000,010,752 | ---- | C] () -- C:\Windows\SysNative\TCPSVCS.EXE
[2011/12/31 20:05:23 | 000,010,240 | ---- | C] () -- C:\Windows\SysNative\HOSTNAME.EXE
[2011/12/31 20:05:22 | 000,017,920 | ---- | C] () -- C:\Windows\SysNative\netevent.dll
[2011/12/31 20:03:41 | 000,372,736 | ---- | C] () -- C:\Windows\SysNative\unregmp2.exe
[2011/12/31 20:02:59 | 001,245,184 | ---- | C] () -- C:\Windows\SysNative\WMNetMgr.dll
[2011/12/31 20:02:58 | 000,112,640 | ---- | C] () -- C:\Windows\SysNative\logagent.exe
[2011/12/31 20:02:02 | 002,900,480 | ---- | C] () -- C:\Windows\SysNative\WMVCORE.DLL
[2011/12/31 20:02:01 | 003,547,136 | ---- | C] () -- C:\Windows\SysNative\mf.dll
[2011/12/31 20:01:24 | 012,898,304 | ---- | C] () -- C:\Windows\SysNative\shell32.dll
[2011/12/31 20:01:22 | 000,454,144 | ---- | C] () -- C:\Windows\SysNative\shlwapi.dll
[2011/12/31 20:01:13 | 013,425,152 | ---- | C] () -- C:\Windows\SysNative\wmp.dll
[2011/12/31 20:01:08 | 008,147,968 | ---- | C] () -- C:\Windows\SysNative\wmploc.DLL
[2011/12/31 19:59:35 | 000,032,256 | ---- | C] () -- C:\Windows\SysNative\Apphlpdm.dll
[2011/12/31 19:59:34 | 004,240,384 | ---- | C] () -- C:\Windows\SysNative\GameUXLegacyGDFs.dll
[2011/12/31 19:59:25 | 004,692,368 | ---- | C] () -- C:\Windows\SysNative\ntoskrnl.exe
[2011/12/31 19:59:25 | 001,560,960 | ---- | C] () -- C:\Windows\SysNative\ntdll.dll
[2011/12/31 19:59:17 | 000,002,048 | ---- | C] () -- C:\Windows\SysNative\tzres.dll
[2011/12/31 19:58:56 | 001,794,560 | ---- | C] () -- C:\Windows\SysNative\msxml6.dll
[2011/12/31 19:58:50 | 001,030,656 | ---- | C] () -- C:\Windows\SysNative\printfilterpipelinesvc.exe
[2011/12/31 19:58:49 | 000,718,336 | ---- | C] () -- C:\Windows\SysNative\rpcss.dll
[2011/12/31 19:58:48 | 000,231,424 | ---- | C] () -- C:\Windows\SysNative\sdohlp.dll
[2011/12/31 19:58:48 | 000,163,840 | ---- | C] () -- C:\Windows\SysNative\iasrecst.dll
[2011/12/31 19:58:48 | 000,075,776 | ---- | C] () -- C:\Windows\SysNative\iasads.dll
[2011/12/31 19:58:48 | 000,061,440 | ---- | C] () -- C:\Windows\SysNative\iasdatastore.dll
[2011/12/31 19:58:48 | 000,036,352 | ---- | C] () -- C:\Windows\SysNative\printfilterpipelineprxy.dll
[2011/12/31 19:58:48 | 000,024,576 | ---- | C] () -- C:\Windows\SysNative\iashost.exe
[2011/12/31 19:58:45 | 000,462,848 | ---- | C] () -- C:\Windows\SysNative\odbc32.dll
[2011/12/31 19:58:39 | 000,656,384 | ---- | C] () -- C:\Windows\SysNative\kerberos.dll
[2011/12/31 19:58:32 | 000,025,600 | ---- | C] () -- C:\Windows\SysNative\amxread.dll
[2011/12/31 19:58:32 | 000,015,872 | ---- | C] () -- C:\Windows\SysNative\apilogen.dll
[2011/12/31 19:58:22 | 001,692,160 | ---- | C] () -- C:\Windows\SysNative\lsasrv.dll
[2011/12/31 19:58:22 | 000,268,800 | ---- | C] () -- C:\Windows\SysNative\msv1_0.dll
[2011/12/31 19:58:22 | 000,205,312 | ---- | C] () -- C:\Windows\SysNative\wdigest.dll
[2011/12/31 19:58:21 | 000,515,656 | ---- | C] () -- C:\Windows\SysNative\drivers\ksecdd.sys
[2011/12/31 19:58:21 | 000,094,720 | ---- | C] () -- C:\Windows\SysNative\secur32.dll
[2011/12/31 19:58:21 | 000,011,264 | ---- | C] () -- C:\Windows\SysNative\lsass.exe
[2011/12/31 19:58:16 | 000,847,872 | ---- | C] () -- C:\Windows\SysNative\oleaut32.dll
[2011/12/31 19:58:14 | 001,875,456 | ---- | C] () -- C:\Windows\SysNative\msxml3.dll
[2011/12/31 19:58:10 | 000,791,552 | ---- | C] () -- C:\Windows\SysNative\localspl.dll
[2011/12/31 19:58:08 | 001,280,512 | ---- | C] () -- C:\Windows\SysNative\rpcrt4.dll
[2011/12/31 19:58:05 | 001,420,176 | ---- | C] () -- C:\Windows\SysNative\drivers\tcpip.sys
[2011/12/31 19:58:03 | 001,251,840 | ---- | C] () -- C:\Windows\SysNative\sdclt.exe
[2011/12/31 19:58:01 | 000,461,312 | ---- | C] () -- C:\Windows\SysNative\drivers\srv.sys
[2011/12/31 19:57:16 | 000,093,184 | ---- | C] () -- C:\Windows\SysNative\mciavi32.dll
[2011/12/31 19:57:16 | 000,054,272 | ---- | C] () -- C:\Windows\SysNative\iyuv_32.dll
[2011/12/31 19:57:16 | 000,038,400 | ---- | C] () -- C:\Windows\SysNative\msvidc32.dll
[2011/12/31 19:57:16 | 000,025,600 | ---- | C] () -- C:\Windows\SysNative\msyuv.dll
[2011/12/31 19:57:15 | 000,108,544 | ---- | C] () -- C:\Windows\SysNative\avifil32.dll
[2011/12/31 19:57:15 | 000,076,800 | ---- | C] () -- C:\Windows\SysNative\avicap32.dll
[2011/12/31 19:57:15 | 000,015,872 | ---- | C] () -- C:\Windows\SysNative\msrle32.dll
[2011/12/31 19:57:15 | 000,013,824 | ---- | C] () -- C:\Windows\SysNative\tsbyuv.dll
[2011/12/31 19:57:14 | 000,143,360 | ---- | C] () -- C:\Windows\SysNative\msvfw32.dll
[2011/12/31 19:57:11 | 001,208,832 | ---- | C] () -- C:\Windows\SysNative\kernel32.dll
[2011/12/31 19:57:03 | 000,730,112 | ---- | C] () -- C:\Windows\SysNative\msdtcprx.dll
[2011/12/31 19:57:03 | 000,048,640 | ---- | C] () -- C:\Windows\SysNative\xolehlp.dll
[2011/12/31 19:57:00 | 000,094,208 | ---- | C] () -- C:\Windows\SysNative\drivers\pacer.sys
[2011/12/31 19:57:00 | 000,039,424 | ---- | C] () -- C:\Windows\SysNative\traffic.dll
[2011/12/31 19:57:00 | 000,017,920 | ---- | C] () -- C:\Windows\SysNative\pacerprf.dll
[2011/12/31 19:57:00 | 000,016,896 | ---- | C] () -- C:\Windows\SysNative\wshqos.dll
[2011/12/31 19:56:58 | 001,923,584 | ---- | C] () -- C:\Windows\SysNative\ole32.dll
[2011/12/31 19:56:54 | 000,082,944 | ---- | C] () -- C:\Windows\SysNative\msasn1.dll
[2011/12/31 19:56:21 | 000,560,128 | ---- | C] () -- C:\Windows\SysNative\EncDec.dll
[2011/12/31 19:56:21 | 000,416,768 | ---- | C] () -- C:\Windows\SysNative\sbe.dll
[2011/12/31 19:56:21 | 000,226,816 | ---- | C] () -- C:\Windows\SysNative\mpg2splt.ax
[2011/12/31 19:56:21 | 000,210,944 | ---- | C] () -- C:\Windows\SysNative\sbeio.dll
[2011/12/31 19:56:19 | 000,344,576 | ---- | C] () -- C:\Windows\SysNative\schannel.dll
[2011/12/31 19:56:15 | 000,818,688 | ---- | C] () -- C:\Windows\SysNative\WMSPDMOD.DLL
[2011/12/31 19:56:14 | 000,367,616 | ---- | C] () -- C:\Windows\SysNative\atmfd.dll
[2011/12/31 19:56:13 | 000,096,256 | ---- | C] () -- C:\Windows\SysNative\fontsub.dll
[2011/12/31 19:56:13 | 000,048,128 | ---- | C] () -- C:\Windows\SysNative\atmlib.dll
[2011/12/31 19:56:11 | 000,274,432 | ---- | C] () -- C:\Windows\SysNative\drivers\mrxsmb10.sys
[2011/12/31 19:56:11 | 000,135,168 | ---- | C] () -- C:\Windows\SysNative\drivers\mrxsmb.sys
[2011/12/31 19:56:11 | 000,105,984 | ---- | C] () -- C:\Windows\SysNative\drivers\mrxsmb20.sys
[2011/12/31 19:56:08 | 000,883,200 | ---- | C] () -- C:\Windows\SysNative\drivers\dxgkrnl.sys
[2011/12/31 19:56:08 | 000,399,872 | ---- | C] () -- C:\Windows\SysNative\emdmgmt.dll
[2011/12/31 19:56:08 | 000,187,392 | ---- | C] () -- C:\Windows\SysNative\drivers\nwifi.sys
[2011/12/31 19:56:08 | 000,048,640 | ---- | C] () -- C:\Windows\SysNative\dataclen.dll
[2011/12/31 19:56:08 | 000,047,104 | ---- | C] () -- C:\Windows\SysNative\cdd.dll
[2011/12/31 19:56:05 | 000,633,856 | ---- | C] () -- C:\Windows\SysNative\comctl32.dll
[2011/12/31 19:56:02 | 000,975,360 | ---- | C] () -- C:\Windows\SysNative\inetcomm.dll
[2011/12/31 19:56:01 | 002,424,320 | ---- | C] () -- C:\Windows\SysNative\mstscax.dll
[2011/12/31 19:56:00 | 000,730,624 | ---- | C] () -- C:\Windows\SysNative\mstsc.exe
[2011/12/31 19:55:58 | 000,531,456 | ---- | C] () -- C:\Windows\SysNative\IPSECSVC.DLL
[2011/12/31 19:55:56 | 000,880,640 | ---- | C] () -- C:\Windows\SysNative\timedate.cpl
[2011/12/31 19:55:54 | 000,090,624 | ---- | C] () -- C:\Windows\SysNative\drivers\bowser.sys
[2011/12/31 19:55:51 | 000,439,808 | ---- | C] () -- C:\Windows\SysNative\winhttp.dll
[2011/12/31 19:55:49 | 000,088,576 | ---- | C] () -- C:\Windows\SysNative\atl.dll
[2011/12/31 19:55:47 | 000,388,608 | ---- | C] () -- C:\Windows\SysNative\gdi32.dll
[2011/12/31 19:55:44 | 000,097,792 | ---- | C] () -- C:\Windows\SysNative\drivers\dfsc.sys
[2011/12/31 19:54:24 | 000,295,936 | ---- | C] () -- C:\Windows\SysNative\raschap.dll
[2011/12/31 19:54:24 | 000,280,576 | ---- | C] () -- C:\Windows\SysNative\rastls.dll
[2011/12/31 19:52:58 | 002,762,240 | ---- | C] () -- C:\Windows\SysNative\win32k.sys
[2011/12/31 19:52:45 | 000,087,552 | ---- | C] () -- C:\Windows\SysNative\consent.exe
[2011/12/31 19:52:40 | 000,660,480 | ---- | C] () -- C:\Windows\SysNative\win32spl.dll
[2011/12/31 19:52:39 | 000,407,552 | ---- | C] () -- C:\Windows\SysNative\drivers\afd.sys
[2011/12/31 19:52:37 | 000,361,984 | ---- | C] () -- C:\Windows\SysNative\es.dll
[2011/12/31 19:52:35 | 001,570,816 | ---- | C] () -- C:\Windows\SysNative\quartz.dll
[2011/12/31 19:52:34 | 000,450,048 | ---- | C] () -- C:\Windows\SysNative\winsrv.dll
[2011/12/31 19:52:34 | 000,085,504 | ---- | C] () -- C:\Windows\SysNative\csrsrv.dll
[2011/12/31 19:52:32 | 000,437,248 | ---- | C] () -- C:\Windows\SysNative\WSDApi.dll
[2011/12/31 19:52:30 | 000,267,776 | ---- | C] () -- C:\Windows\SysNative\spoolsv.exe
[2011/12/31 19:52:27 | 000,227,328 | ---- | C] () -- C:\Windows\SysNative\scrobj.dll
[2011/12/31 19:52:27 | 000,197,632 | ---- | C] () -- C:\Windows\SysNative\scrrun.dll
[2011/12/31 19:52:27 | 000,166,912 | ---- | C] () -- C:\Windows\SysNative\wscript.exe
[2011/12/31 19:52:27 | 000,147,968 | ---- | C] () -- C:\Windows\SysNative\cscript.exe
[2011/12/31 19:52:27 | 000,144,384 | ---- | C] () -- C:\Windows\SysNative\wshom.ocx
[2011/12/31 19:52:27 | 000,101,888 | ---- | C] () -- C:\Windows\SysNative\wshext.dll
[2011/12/31 19:52:25 | 000,295,424 | ---- | C] () -- C:\Windows\SysNative\MP4SDECD.DLL
[2011/12/31 19:52:21 | 000,084,480 | ---- | C] () -- C:\Windows\SysNative\asycfilt.dll
[2011/12/31 19:52:20 | 000,050,688 | ---- | C] () -- C:\Windows\SysNative\rtutils.dll
[2011/12/31 19:52:18 | 000,104,960 | ---- | C] () -- C:\Windows\SysNative\cabview.dll
[2011/12/31 19:52:01 | 000,176,128 | ---- | C] () -- C:\Windows\SysNative\drivers\srv2.sys
[2011/12/31 19:52:01 | 000,144,896 | ---- | C] () -- C:\Windows\SysNative\drivers\srvnet.sys
[2011/12/31 19:52:00 | 000,557,056 | ---- | C] () -- C:\Windows\SysNative\wmpeffects.dll
[2011/12/31 19:51:58 | 000,202,752 | ---- | C] () -- C:\Windows\SysNative\wkssvc.dll
[2011/12/31 19:50:46 | 001,691,648 | ---- | C] () -- C:\Windows\SysNative\connect.dll
[2011/12/31 19:50:44 | 000,072,192 | ---- | C] () -- C:\Windows\SysNative\l3codeca.acm
[2011/12/31 19:50:42 | 000,189,952 | ---- | C] () -- C:\Windows\SysNative\t2embed.dll
[2011/12/31 19:50:39 | 001,075,600 | ---- | C] () -- C:\Windows\SysNative\winload.efi
[2011/12/31 19:50:39 | 001,062,800 | ---- | C] () -- C:\Windows\SysNative\winload.exe
[2011/12/31 19:50:39 | 000,990,096 | ---- | C] () -- C:\Windows\SysNative\winresume.efi
[2011/12/31 19:50:39 | 000,979,344 | ---- | C] () -- C:\Windows\SysNative\winresume.exe
[2011/12/31 19:50:38 | 000,020,880 | ---- | C] () -- C:\Windows\SysNative\kdusb.dll
[2011/12/31 19:50:38 | 000,018,832 | ---- | C] () -- C:\Windows\SysNative\kd1394.dll
[2011/12/31 19:50:38 | 000,018,320 | ---- | C] () -- C:\Windows\SysNative\kdcom.dll
[2011/12/31 19:50:36 | 000,324,608 | ---- | C] () -- C:\Windows\SysNative\PortableDeviceApi.dll
[2011/12/31 19:47:28 | 000,368,128 | ---- | C] () -- C:\Windows\SysNative\wmpdxm.dll
[2011/12/31 19:47:27 | 000,009,216 | ---- | C] () -- C:\Windows\SysNative\spwmp.dll
[2011/12/31 19:47:27 | 000,005,120 | ---- | C] () -- C:\Windows\SysNative\msdxm.ocx
[2011/12/31 19:47:27 | 000,005,120 | ---- | C] () -- C:\Windows\SysNative\dxmasf.dll
[2011/12/31 19:47:25 | 000,043,520 | ---- | C] () -- C:\Windows\SysNative\msdxm.tlb
[2011/12/31 19:47:25 | 000,018,432 | ---- | C] () -- C:\Windows\SysNative\amcompat.tlb
[2011/12/31 19:46:53 | 000,218,112 | ---- | C] () -- C:\Windows\SysNative\wintrust.dll
[2011/12/31 19:44:44 | 000,854,528 | ---- | C] () -- C:\Windows\SysNative\schedsvc.dll
[2011/12/31 19:44:44 | 000,655,872 | ---- | C] () -- C:\Windows\SysNative\taskschd.dll
[2011/12/31 19:44:44 | 000,499,712 | ---- | C] () -- C:\Windows\SysNative\wmicmiplugin.dll
[2011/12/31 19:44:44 | 000,410,112 | ---- | C] () -- C:\Windows\SysNative\taskcomp.dll
[2011/12/31 19:44:44 | 000,267,776 | ---- | C] () -- C:\Windows\SysNative\taskeng.exe
[2011/12/31 19:44:41 | 000,622,080 | ---- | C] () -- C:\Windows\SysNative\usp10.dll
[2011/12/31 19:43:41 | 001,398,784 | ---- | C] () -- C:\Windows\SysNative\mfc42.dll
[2011/12/31 19:43:41 | 001,360,384 | ---- | C] () -- C:\Windows\SysNative\mfc42u.dll
[2011/12/31 19:41:15 | 000,470,016 | ---- | C] () -- C:\Windows\SysNative\PhotoMetadataHandler.dll
[2011/12/31 19:41:15 | 000,386,560 | ---- | C] () -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2011/12/31 19:41:14 | 000,841,216 | ---- | C] () -- C:\Windows\SysNative\WindowsCodecs.dll
[2011/12/31 19:39:37 | 000,176,640 | ---- | C] () -- C:\Windows\SysNative\Faultrep.dll
[2011/12/31 19:39:37 | 000,120,832 | ---- | C] () -- C:\Windows\SysNative\wersvc.dll
[2011/12/31 19:39:11 | 000,221,184 | ---- | C] () -- C:\Windows\SysNative\dnsapi.dll
[2011/12/31 19:39:11 | 000,117,760 | ---- | C] () -- C:\Windows\SysNative\dnsrslvr.dll
[2011/12/31 19:39:11 | 000,028,672 | ---- | C] () -- C:\Windows\SysNative\dnscacheugc.exe
[2011/12/31 19:39:02 | 002,608,803 | ---- | C] () -- C:\Windows\SysNative\wlan.tmf
[2011/12/31 19:39:00 | 000,376,832 | ---- | C] () -- C:\Windows\SysNative\wlansec.dll
[2011/12/31 19:39:00 | 000,353,280 | ---- | C] () -- C:\Windows\SysNative\wlanmsm.dll
[2011/12/31 19:39:00 | 000,157,184 | ---- | C] () -- C:\Windows\SysNative\L2SecHC.dll
[2011/12/31 19:38:59 | 000,615,936 | ---- | C] () -- C:\Windows\SysNative\wlansvc.dll
[2011/12/31 19:38:59 | 000,097,792 | ---- | C] () -- C:\Windows\SysNative\wlanhlp.dll
[2011/12/31 19:38:59 | 000,086,528 | ---- | C] () -- C:\Windows\SysNative\wlanapi.dll
[2011/12/31 19:38:43 | 000,648,704 | ---- | C] () -- C:\Windows\SysNative\netapi32.dll
[2011/12/31 19:38:41 | 001,090,048 | ---- | C] () -- C:\Windows\SysNative\wmpmde.dll
[2011/12/31 19:31:59 | 002,621,440 | ---- | C] () -- C:\Windows\SysNative\wucltux.dll
[2011/12/31 19:31:59 | 002,424,024 | ---- | C] () -- C:\Windows\SysNative\wuaueng.dll
[2011/12/31 19:31:59 | 000,057,560 | ---- | C] () -- C:\Windows\SysNative\wuauclt.exe
[2011/12/31 19:31:59 | 000,043,744 | ---- | C] () -- C:\Windows\SysNative\wups2.dll
[2011/12/31 19:31:51 | 000,098,816 | ---- | C] () -- C:\Windows\SysNative\wudriver.dll
[2011/12/31 19:31:51 | 000,038,112 | ---- | C] () -- C:\Windows\SysNative\wups.dll
[2011/12/31 19:31:50 | 000,700,640 | ---- | C] () -- C:\Windows\SysNative\wuapi.dll
[2011/12/31 19:31:43 | 000,185,416 | ---- | C] () -- C:\Windows\SysNative\wuwebv.dll
[2011/12/31 19:31:43 | 000,036,864 | ---- | C] () -- C:\Windows\SysNative\wuapp.exe
[2011/12/31 18:39:29 | 000,004,984 | ---- | C] () -- C:\Windows\SysNative\drivers\nvphy.bin
[2011/12/31 18:06:50 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2011/12/31 18:05:55 | 000,708,168 | ---- | C] () -- C:\Windows\SysNative\WinUSBCoInstaller.dll
[2011/12/31 18:05:55 | 000,000,954 | ---- | C] () -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk
[2011/12/31 18:05:54 | 001,490,656 | ---- | C] () -- C:\Windows\SysNative\WdfCoInstaller01007.dll
[2011/12/31 18:05:54 | 000,015,360 | ---- | C] () -- C:\Windows\SysNative\drivers\pneteth.sys
[2011/12/31 17:39:29 | 000,000,975 | ---- | C] () -- C:\Users\Nelson\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/12/31 16:41:55 | 000,000,560 | ---- | C] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - Nelson.job
[2011/12/31 16:39:54 | 000,000,951 | ---- | C] () -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2011/12/31 16:39:51 | 000,000,981 | ---- | C] () -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/12/31 16:39:46 | 000,000,976 | ---- | C] () -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2011/12/31 16:39:37 | 000,000,917 | ---- | C] () -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2011/12/31 16:39:23 | 000,000,044 | ---- | C] () -- C:\Windows\System\hpsysdrv.dat
[2011/12/31 16:39:21 | 000,000,338 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForNelson.job
[2011/12/31 16:34:12 | 000,001,924 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk
[2011/12/31 16:34:02 | 000,001,060 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
[2011/12/31 16:31:17 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 8.lnk
[2011/12/31 16:30:51 | 000,000,172 | ---- | C] () -- C:\Users\Public\Desktop\Help and Support.lnk
[2011/12/31 16:30:39 | 000,001,823 | RHS- | C] () -- C:\Windows\SysWow64\drivers\103C_HP_CPC_FK792AA-ABA a6600f_YC_0Pavi_QMXX846_E84NAv6PrA1_49_INapa_SFOXCONN_VHP P N_B5.20_T081024_WUH1_L409_M2941_J320_7Intel_8Pentium Dual E2200_92.2_#081227_N10DE07DC_Z14F12F20_G10DE07E1.MRK
[2011/12/31 16:30:39 | 000,001,823 | RHS- | C] () -- C:\Windows\SysNative\drivers\103C_HP_CPC_FK792AA-ABA a6600f_YC_0Pavi_QMXX846_E84NAv6PrA1_49_INapa_SFOXCONN_VHP P N_B5.20_T081024_WUH1_L409_M2941_J320_7Intel_8Pentium Dual E2200_92.2_#081227_N10DE07DC_Z14F12F20_G10DE07E1.MRK
[2011/12/31 16:30:37 | 000,001,368 | ---- | C] () -- C:\Users\Public\Desktop\Snapfish Photos - FREE - 1st 25 Prints.lnk
[2011/12/31 16:30:17 | 000,001,903 | ---- | C] () -- C:\Users\Public\Desktop\HP Total Care Advisor.lnk
[2011/12/31 16:30:17 | 000,001,903 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Total Care Advisor.lnk
[2011/12/31 16:30:15 | 000,002,153 | ---- | C] () -- C:\Users\Public\Desktop\eBay.lnk
[2011/12/31 16:30:15 | 000,001,562 | ---- | C] () -- C:\Users\Public\Desktop\Try Microsoft Office for 60 days.lnk
[2011/12/31 16:30:14 | 000,002,186 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quicken Financial Center.lnk
[2011/12/31 16:30:14 | 000,002,171 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
[2011/12/31 16:30:14 | 000,000,182 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pandora Internet Radio.url
[2011/12/31 16:29:51 | 000,001,268 | ---- | C] () -- C:\Users\Nelson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite Deluxe.lnk
[2011/12/31 16:29:51 | 000,000,258 | ---- | C] () -- C:\Users\Nelson\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/12/31 16:29:51 | 000,000,240 | ---- | C] () -- C:\Users\Nelson\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/12/31 15:01:44 | 3084,050,432 | -HS- | C] () -- C:\hiberfil.sys
[2008/08/06 06:04:20 | 000,107,384 | ---- | C] () -- C:\Windows\hpqins13.dat
[2008/08/06 05:40:30 | 000,327,680 | ---- | C] () -- C:\Windows\SysWow64\pythoncom25.dll
[2008/08/06 05:40:30 | 000,102,400 | ---- | C] () -- C:\Windows\SysWow64\pywintypes25.dll
[2008/01/20 18:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2008/01/20 18:49:49 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2006/11/02 07:37:05 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 04:37:14 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2006/11/02 04:24:17 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2006/11/02 04:18:17 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2006/11/02 01:47:54 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin

========== LOP Check ==========

[2011/12/31 18:38:59 | 000,000,000 | ---D | M] -- C:\Users\Nelson\AppData\Roaming\WinBatch
[2012/01/01 00:57:57 | 000,007,726 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >



(Extras.Txt) i didnt know if this was needed or not but ima put it here just in case :P
OTL Extras logfile created on: 1/1/2012 3:15:46 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Nelson\Downloads
64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19019)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.87 Gb Total Physical Memory | 1.59 Gb Available Physical Memory | 55.29% Memory free
5.96 Gb Paging File | 4.38 Gb Available in Paging File | 73.43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 285.94 Gb Total Space | 246.00 Gb Free Space | 86.03% Space Free | Partition Type: NTFS
Drive D: | 12.15 Gb Total Space | 1.65 Gb Free Space | 13.60% Space Free | Partition Type: NTFS

Computer Name: NELSON-PC | User Name: Nelson | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe ()

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" ()
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l ()
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" ()
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1F4020B9-AA80-44B0-AE84-B3312419638E}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{39356A74-4DE1-41A7-BD6F-36765C146442}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=c:\windows\system32\svchost.exe |
"{40A2953F-E05C-404B-9C7F-63376AEE99CD}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=c:\windows\system32\svchost.exe |
"{57048887-BFB7-4DC7-84F8-67BA3D505BCD}" = lport=3702 | protocol=17 | dir=in | app=c:\windows\system32\netproj.exe |
"{5DA47F0D-BF1C-4DB7-8E2E-7ADDFF959A6F}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=c:\windows\system32\svchost.exe |
"{691916D6-8EF7-4BBE-B2C1-D36348881859}" = rport=5357 | protocol=6 | dir=out | app=system |
"{8BC2DB6F-69E9-4187-A3CF-8B563B1FE20E}" = rport=3702 | protocol=17 | dir=out | app=c:\windows\system32\netproj.exe |
"{951A2BDC-9104-4FB7-8432-DAD29AA9CAE5}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=c:\windows\system32\svchost.exe |
"{B3275AB8-4DE8-4372-B287-AB72C8C42DC8}" = lport=5358 | protocol=6 | dir=in | app=system |
"{CC4D2D48-D987-460C-8FC4-17CE5E206C37}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{CE859DE3-C2BA-4AC9-A335-E93705F286DB}" = lport=5357 | protocol=6 | dir=in | app=system |
"{DB517247-D475-4BD9-846C-C712FCD6C07F}" = rport=5358 | protocol=6 | dir=out | app=system |
"{F98F921C-A038-4218-BE7A-D47F92424D1D}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=c:\windows\system32\svchost.exe |
"{FD0E53FE-2DF5-4538-9BA1-9A99A5920F97}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=c:\windows\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{3001FC1B-2416-47D0-94CF-F2D2CA923E20}" = protocol=6 | dir=in | app=c:\windows\system32\netproj.exe |
"{50A1244A-F4DE-4F25-AE88-C88CFA7625BF}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe |
"{6D28B6D4-C504-4EF5-8589-1F1D34097FCD}" = dir=in | app=c:\program files (x86)\cyberlink\powerdirector\pdr.exe |
"{C8CC88FF-5DBE-46D0-BF9C-45B8728C79AC}" = protocol=6 | dir=out | app=c:\windows\system32\netproj.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{2B8AD1EE-28D4-42FF-AE4B-856E5862D583}" = ccCommon64
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{399D00B8-46E3-4547-A0F5-75F58079F2CD}" = SymNet x64
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{90B5B05F-AFDA-4922-A153-45B14200BA77}" = SPBBC 64bit
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.5.20
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D75B1A1F-BBEC-4DF2-ACE4-9B166438A621}" = Symantec Real Time Storage Protection Component (x64)
"{F303C668-7674-484A-8C04-579881C382F8}" = Norton Protection Center
"CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1" = Soft Data Fax Modem with SmartCP
"HP Photosmart Essential" = HP Photosmart Essential 3.0
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"NVIDIA Drivers" = NVIDIA Drivers
"OfficeTrial" = Microsoft Office Home and Student 60 day trial

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{09633A5E-3089-41A8-9FF1-382171423C5D}" = PSSWCORE
"{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}" = LightScribe System Software 1.14.17.1
"{15B8AFD9-92E9-4E86-96D9-83FAC510B82E}" = HPPhotoSmartPhotobookWebPack1
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite Deluxe
"{22F761D1-8063-4170-ADF7-2D2F47834CA9}" = VideoToolkit01
"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check for Health Check
"{305D4B08-5807-4475-B1C8-D54685534864}" = LightScribeTemplateLabeler
"{31478BE1-CDE5-4753-A8B2-F6D4BC1FBE09}" = Component Framework
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java™ SE Runtime Environment 6 Update 1
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{55979C41-7D6A-49CC-B591-64AC1BBE2C8B}" = HP Picasso Media Center Add-In
"{55A6283C-638A-4EE0-B491-51118554BDA2}" = Norton Confidential Core
"{5DAA9C36-8F8B-462F-8CCA-E205BC3751F5}" = HP Active Support Library
"{62120008-8E1E-4807-860D-A8B48F8552DB}" = Norton Protection Center
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
"{6B976ADF-8AE8-434E-B282-A06C7F624D2F}" = Python 2.5.2
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{77FFBA7E-0973-4F39-BBDB-AC2F537578D2}" = Norton AntiVirus
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{97ABD26A-3249-46CB-B2E2-F66E64B2E480}" = HP Demo
"{9DBA770F-BF73-4D39-B1DF-6035D95268FC}" = HP Customer Feedback
"{A0640EC2-B97E-4FC1-AD14-227C9E386BB4}" = HP Recovery Manager RSS
"{AC76BA86-7AD7-1033-7B44-A81200000003}" = Adobe Reader 8.1.2
"{B24E05CC-46FF-4787-BBB8-5CD516AFB118}" = ccCommon
"{B9AB88D8-3A09-4A4A-8993-0E2F6F9F294B}" = muvee autoProducer 6.1
"{C1C185CA-C531-49F5-A6FA-B838405A049D}" = Norton Internet Security
"{C27C82E4-9C53-4D76-9ED3-A01A3D5EE679}" = HP Customer Experience Enhancements
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C8FD5BC1-92EF-4C15-92A9-F9AC7F61985F}" = HP Update
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}" = HP Photosmart Essential 2.5
"{E3EFA461-EB83-4C3B-9C47-2C1D58A01555}" = Norton AntiVirus Help
"{E535C94A-B87F-4182-BEA8-1E9322078D3E}" = Cards_Calendar_OrderGift_DoMorePlugout
"{E80F62FF-5D3C-4A19-8409-9721F2928206}" = LiveUpdate (Symantec Corporation)
"{ECEE0279-785F-4CB3-9F28-E69813234BF8}" = SPORE Creature Creator Trial Edition
"{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}" = AppCore
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{f32502b5-5b64-4882-bf61-77f23edcac4f}" = HP Total Care Advisor
"{FA3B34BE-4246-4062-90A3-34CBBEA12B72}" = HPTCSSetup
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"DMX5_is1" = DriverMax 6
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"PC-Doctor for Windows" = Hardware Diagnostic Tools
"PdaNet_is1" = PdaNet for Android 3.02
"PsuedoLiveUpdate" = LiveUpdate (Symantec Corporation)
"SymSetup.{C1C185CA-C531-49F5-A6FA-B838405A049D}" = Norton Internet Security (Symantec Corporation)
"WildTangent hp Master Uninstall" = My HP Games
"Yahoo! Companion" = Yahoo! Toolbar

========== Last 10 Event Log Errors ==========

[ System Events ]
Error - 12/31/2011 11:32:51 PM | Computer Name = Nelson-PC | Source = Microsoft-Windows-Servicing | ID = 4385
Description =

Error - 12/31/2011 11:32:51 PM | Computer Name = Nelson-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description =

Error - 12/31/2011 11:32:51 PM | Computer Name = Nelson-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description =

Error - 12/31/2011 11:32:51 PM | Computer Name = Nelson-PC | Source = Microsoft-Windows-Servicing | ID = 4385
Description =

Error - 12/31/2011 11:32:51 PM | Computer Name = Nelson-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description =

Error - 12/31/2011 11:32:51 PM | Computer Name = Nelson-PC | Source = Microsoft-Windows-Servicing | ID = 4385
Description =

Error - 12/31/2011 11:32:51 PM | Computer Name = Nelson-PC | Source = Microsoft-Windows-Servicing | ID = 4375
Description =

Error - 12/31/2011 11:32:51 PM | Computer Name = Nelson-PC | Source = Microsoft-Windows-Servicing | ID = 4385
Description =

Error - 12/31/2011 11:32:51 PM | Computer Name = Nelson-PC | Source = Microsoft-Windows-Servicing | ID = 4385
Description =

Error - 1/1/2012 6:02:01 PM | Computer Name = Nelson-PC | Source = HTTP | ID = 15016
Description =


< End of report >

Edited by nelsons313, 02 January 2012 - 01:55 AM.

  • 0

Advertisements


#2
nelsons313

nelsons313

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
upppppppppppppppppppppppppppppppppppppppp
  • 0

#3
Gammo

Gammo

    Member 2k

  • Malware Removal
  • 2,299 posts
Hello and welcome to Geekstogo!

We apologize for the delay in responding to your request for help.
If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below.

I'm quite sure your problem is not being caused by malware. Your OTL log is also clean. It's probably just a 'normal' software problem (caused by a wrong/missing driver for instance). I suggest you start a new topic about your problem here. :thumbsup:
  • 0

#4
Gammo

Gammo

    Member 2k

  • Malware Removal
  • 2,299 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP