Mozilla Firefox slow;not sure if its virus or not,,,help

View previous topic View next topic Go down

Mozilla Firefox slow;not sure if its virus or not,,,help

Post by uvita on 11th January 2011, 1:30 pm

Mozilla Firefox is loading very slow. Ran antivirus and it showed nothing. Also did object scan which showed a virus called JS Pack in the kaspersky antivirus Sandbox (safe run)---meaning, the antivirus has a safe run where I can run browsers with a green box around the browser and if by chance there are untrusted pop ups or sites I go to and there is any thing on it then it will do no harm to computer. As soon as it showed a trojan in sandbox, kaspersky antivirus deleted it and showed my computer with no threats and is protected but still few days now broswer is slow in running and not sure if this virus is still there

Also do not understand that even though nothing is running...my taskmanager still shows CPU usage of 45% or more. And when firefox or chrome is running iy=t is maxed out, Please Help..thanks

uvita
Intermediate
Intermediate

Posts Posts : 163
Joined Joined : 2009-01-06
OS OS : Windows Vista with Media Edition
Points Points : 29910
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by Belahzur on 11th January 2011, 11:04 pm

Download [You must be registered and logged in to see this link.] by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245121
# Likes # Likes : 1

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by uvita on 13th January 2011, 5:02 pm

hello, here are both the log and text:

This is the log:

OTL logfile created on: 1/13/2011 10:49:31 AM - Run 3
OTL by OldTimer - Version 3.2.20.2 Folder = C:\Users\Patel\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

4.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 61.00% Memory free
8.00 Gb Paging File | 6.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 288.01 Gb Total Space | 184.40 Gb Free Space | 64.03% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 2.60 Gb Free Space | 26.05% Space Free | Partition Type: NTFS

Computer Name: PATEL-PC | User Name: Patel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/01/13 10:35:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Patel\Desktop\OTL.exe
PRC - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/09/14 15:34:34 | 000,340,520 | ---- | M] (Kaspersky Lab) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
PRC - [2009/03/05 15:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/09/05 16:17:08 | 001,836,288 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe
PRC - [2008/09/05 16:17:08 | 000,095,488 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe
PRC - [2008/09/05 16:16:54 | 002,340,096 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
PRC - [2007/07/24 10:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe


========== Modules (SafeList) ==========

MOD - [2011/01/13 10:35:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Patel\Desktop\OTL.exe
MOD - [2010/08/31 09:39:57 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2008/06/02 10:44:18 | 000,031,744 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\WLTRYSVC.EXE -- (wltrysvc)
SRV:64bit: - [2008/01/20 20:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/09/14 15:34:34 | 000,340,520 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe -- (AVP)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/01/26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/09/05 16:16:54 | 002,340,096 | ---- | M] (Sensible Vision ) [Auto | Running] -- C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe -- (FAService)
SRV - [2008/07/27 12:03:13 | 000,069,632 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007/07/24 10:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2010/09/28 15:44:52 | 000,051,712 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2009/11/11 16:35:26 | 000,353,296 | ---- | M] () [File_System | System | Running] -- C:\Windows\SysNative\DRIVERS\klif.sys -- (KLIF)
DRV:64bit: - [2009/11/03 16:33:44 | 000,027,152 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\klim6.sys -- (KLIM6)
DRV:64bit: - [2009/10/14 20:18:38 | 000,040,464 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\klbg.sys -- (KLBG)
DRV:64bit: - [2009/10/02 18:39:32 | 000,021,008 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\klmouflt.sys -- (klmouflt)
DRV:64bit: - [2009/09/01 14:29:56 | 000,157,712 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\kl1.sys -- (kl1)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/05/09 00:14:20 | 000,015,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\NuidFltr.sys -- (NuidFltr)
DRV:64bit: - [2009/03/09 00:06:00 | 000,319,840 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Vid.sys -- (OA001Vid)
DRV:64bit: - [2009/03/06 14:33:58 | 000,159,840 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Ufd.sys -- (OA001Ufd)
DRV:64bit: - [2008/08/14 16:18:54 | 008,029,792 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\igdkmd64.sys -- (igfx)
DRV:64bit: - [2008/08/02 15:36:16 | 000,243,840 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\facap.sys -- (FACAP)
DRV:64bit: - [2008/07/15 14:20:42 | 000,126,464 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel(R)
DRV:64bit: - [2008/06/02 10:44:16 | 000,022,520 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCM42RLY.sys -- (BCM42RLY)
DRV:64bit: - [2008/06/02 10:44:14 | 001,374,712 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\bcmwl664.sys -- (BCM43XX)
DRV:64bit: - [2008/05/06 16:06:00 | 000,014,464 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2008/02/24 01:40:04 | 000,239,104 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\k57nd60a.sys -- (k57nd60a) Broadcom NetLink (TM)
DRV:64bit: - [2008/02/21 09:24:20 | 000,062,976 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimmpx64.sys -- (rimmptsk)
DRV:64bit: - [2008/01/20 20:47:28 | 000,046,080 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2008/01/20 20:46:55 | 000,111,104 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\sdbus.sys -- (sdbus)
DRV:64bit: - [2007/12/18 16:57:12 | 000,059,392 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\itecir.sys -- (itecir)
DRV:64bit: - [2007/07/27 18:45:52 | 000,057,856 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rixdpx64.sys -- (rismxdp)
DRV:64bit: - [2007/07/26 19:33:54 | 000,055,296 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimspx64.sys -- (rimsptsk)
DRV:64bit: - [2006/09/18 15:36:24 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.param.yahoo-fr: "chrf-ytbm"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "chrf-ytbm"
FF - prefs.js..browser.search.param.yahoo-type: "${8}"
FF - prefs.js..browser.startup.homepage: "http://www.google.com"
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:0.3.3
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.6.5
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:9.0.0.736
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.6.1
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.1.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23


FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/08/13 11:20:06 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/12/23 22:19:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/12/30 22:16:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2010/11/14 02:17:21 | 000,000,000 | ---D | M]

[2009/06/11 20:03:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Patel\AppData\Roaming\mozilla\Extensions
[2011/01/12 12:30:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Patel\AppData\Roaming\mozilla\Firefox\Profiles\46mb2dv2.default\extensions
[2010/12/13 23:13:25 | 000,000,000 | ---D | M] ("ColorfulTabs") -- C:\Users\Patel\AppData\Roaming\mozilla\Firefox\Profiles\46mb2dv2.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2010/12/13 23:13:24 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Patel\AppData\Roaming\mozilla\Firefox\Profiles\46mb2dv2.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/10/30 23:32:00 | 000,000,000 | ---D | M] (AnyColor) -- C:\Users\Patel\AppData\Roaming\mozilla\Firefox\Profiles\46mb2dv2.default\extensions\anycolor.pavlos256@gmail.com
[2010/09/14 14:01:44 | 000,000,000 | ---D | M] (Personas) -- C:\Users\Patel\AppData\Roaming\mozilla\Firefox\Profiles\46mb2dv2.default\extensions\personas@christopher.beard
[2010/12/19 11:31:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/12/19 11:31:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2010/09/14 14:32:23 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010/08/13 11:20:06 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2010/12/19 11:31:21 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2011/01/11 19:07:51 | 000,428,712 | R--- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 14763 more lines...
O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\ievkbd.dll (Kaspersky Lab)
O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\klwtbbho.dll (Kaspersky Lab)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O2 - BHO: (no name) - MRI_DISABLED - No CLSID value found.
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Windows\SysNative\WLTRAY.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe ()
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe ()
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [FAStartup] File not found
O4 - HKLM..\Run: [FATrayAlert] C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe (Sensible Vision )
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [WMPNSCFG] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O9:64bit: - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\klwtbbho.dll (Kaspersky Lab)
O9:64bit: - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_23)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_23)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\x64\sbhook64.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\sbhook64.dll (Kaspersky Lab)
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\x64\kloehk.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\kloehk.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\mzvkbd3.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\sbhook.dll (Kaspersky Lab)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Value error. - C:\Windows\SysNative\igfxdev.dll ()
O20:64bit: - Winlogon\Notify\klogon: DllName - Reg Error: Value error. - C:\Windows\SysNative\klogon.dll ()
O20 - Winlogon\Notify\FastAccess: DllName - C:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll - C:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll ()
O20 - Winlogon\Notify\igfxcui: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\klogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img20.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img20.jpg
O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/01/13 10:35:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Patel\Desktop\OTL.exe
[2011/01/11 12:37:30 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2011/01/01 12:47:44 | 000,000,000 | ---D | C] -- C:\Users\Patel\Installs
[2010/12/30 22:25:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2010/12/30 22:16:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2010/12/30 22:15:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2010/12/30 22:15:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2010/12/30 22:14:18 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010/12/30 22:09:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/12/30 22:09:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2010/12/30 22:06:29 | 000,000,000 | ---D | C] -- C:\Users\Patel\AppData\Local\Microsoft Help
[2010/12/30 22:06:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2010/12/30 22:06:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010/12/30 22:04:38 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010/12/24 09:28:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2010/12/24 09:27:55 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysWow64\GEARAspi.dll
[2010/12/24 09:26:46 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2010/12/24 09:26:44 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2010/12/24 09:26:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2010/12/24 09:20:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2010/12/23 22:26:04 | 000,000,000 | ---D | C] -- C:\Users\Patel\AppData\Local\Apple Computer
[2010/12/23 22:26:03 | 000,000,000 | ---D | C] -- C:\Users\Patel\AppData\Roaming\Apple Computer
[2010/12/23 22:24:19 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2010/12/23 22:22:57 | 000,000,000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2010/12/23 22:17:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2010/12/23 22:17:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2010/12/23 22:17:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010/12/23 22:12:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2010/12/23 22:10:55 | 000,000,000 | ---D | C] -- C:\Users\Patel\{1b350054-3bbd-4d63-b54a-c37dd7ff1c14}
[2010/12/23 22:02:52 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010/12/23 22:02:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2010/12/19 11:53:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010/12/19 11:32:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010/12/19 11:32:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/12/19 11:31:50 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/12/19 11:31:50 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/12/19 11:31:50 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/12/19 11:31:49 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/12/19 11:03:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2010/12/17 11:45:49 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2010/12/17 11:45:48 | 000,000,000 | ---D | C] -- C:\Users\Patel\AppData\Local\temp
[2010/12/17 11:37:38 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2010/12/17 11:20:41 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2010/12/17 11:20:41 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2010/12/17 11:20:41 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2010/12/17 11:20:31 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/12/17 11:20:12 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/12/17 11:19:49 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2010/12/17 11:19:45 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2010/12/16 18:28:06 | 000,000,000 | ---D | C] -- C:\Users\Patel\AppData\Roaming\Malwarebytes
[2010/12/16 18:27:48 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/12/16 18:27:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2010/12/16 18:27:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/12/16 18:27:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/12/15 15:19:10 | 000,292,352 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010/12/15 15:19:09 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2010/12/15 15:19:06 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2010/12/15 15:17:13 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2010/12/15 15:17:07 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2010/12/15 15:17:02 | 000,476,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2010/12/15 15:16:55 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2010/12/15 15:16:53 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2010/12/15 15:16:51 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010/12/15 15:16:51 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2010/12/15 15:16:50 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieencode.dll
[2010/12/15 15:10:14 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll
[2010/12/15 15:10:10 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll

========== Files - Modified Within 30 Days ==========

[2011/01/13 10:37:33 | 000,123,392 | ---- | M] () -- C:\Users\Patel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/13 10:35:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Patel\Desktop\OTL.exe
[2011/01/13 10:24:30 | 000,703,388 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/01/13 10:24:30 | 000,604,502 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/01/13 10:24:30 | 000,104,170 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/01/13 10:19:21 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/13 10:19:17 | 000,003,712 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/01/13 10:19:16 | 000,003,712 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/01/13 10:18:48 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/01/12 23:01:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/11 19:07:51 | 000,428,712 | R--- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2010/12/31 11:02:29 | 000,000,952 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys
[2010/12/31 10:06:15 | 000,376,448 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/12/28 09:26:13 | 000,462,848 | ---- | M] () -- C:\Windows\SysNative\odbc32.dll
[2010/12/28 08:57:35 | 000,409,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2010/12/27 12:26:54 | 000,020,992 | ---- | M] () -- C:\Users\Patel\Desktop\Ram's Blog_December_26_2010.doc
[2010/12/27 11:29:49 | 000,432,080 | ---- | M] () -- C:\Users\Patel\Desktop\VN320157.WMA
[2010/12/24 09:28:06 | 000,001,696 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/12/23 22:17:48 | 000,001,758 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010/12/23 19:22:29 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/12/20 18:08:40 | 000,024,152 | ---- | M] () -- C:\Windows\SysNative\drivers\mbam.sys
[2010/12/19 11:53:37 | 000,001,924 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2010/12/19 11:31:21 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/12/19 11:31:21 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/12/19 11:31:21 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/12/19 11:31:21 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/12/16 18:27:48 | 000,000,950 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk

========== Files Created - No Company Name ==========

[2011/01/11 12:37:30 | 000,462,848 | ---- | C] () -- C:\Windows\SysNative\odbc32.dll
[2011/01/11 12:37:20 | 001,251,840 | ---- | C] () -- C:\Windows\SysNative\sdclt.exe
[2010/12/27 12:26:51 | 000,020,992 | ---- | C] () -- C:\Users\Patel\Desktop\Ram's Blog_December_26_2010.doc
[2010/12/27 11:29:45 | 000,432,080 | ---- | C] () -- C:\Users\Patel\Desktop\VN320157.WMA
[2010/12/24 09:28:06 | 000,001,696 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/12/24 09:27:55 | 000,126,312 | ---- | C] () -- C:\Windows\SysNative\GEARAspi64.dll
[2010/12/24 09:27:54 | 000,034,152 | ---- | C] () -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[2010/12/23 22:17:48 | 000,001,758 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010/12/23 19:22:29 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010/12/19 11:53:37 | 000,001,924 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2010/12/17 11:20:41 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010/12/17 11:20:41 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010/12/17 11:20:41 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
[2010/12/17 11:20:41 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010/12/17 11:20:41 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010/12/16 18:27:48 | 000,000,950 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/16 18:27:41 | 000,024,152 | ---- | C] () -- C:\Windows\SysNative\drivers\mbam.sys
[2010/12/15 15:19:21 | 002,751,488 | ---- | C] () -- C:\Windows\SysNative\win32k.sys
[2010/12/15 15:19:10 | 000,367,104 | ---- | C] () -- C:\Windows\SysNative\atmfd.dll
[2010/12/15 15:19:09 | 000,048,128 | ---- | C] () -- C:\Windows\SysNative\atmlib.dll
[2010/12/15 15:19:07 | 000,096,256 | ---- | C] () -- C:\Windows\SysNative\fontsub.dll
[2010/12/15 15:18:59 | 000,087,552 | ---- | C] () -- C:\Windows\SysNative\consent.exe
[2010/12/15 15:17:32 | 005,693,440 | ---- | C] () -- C:\Windows\SysNative\mshtml.dll
[2010/12/15 15:17:29 | 007,015,424 | ---- | C] () -- C:\Windows\SysNative\ieframe.dll
[2010/12/15 15:17:23 | 001,129,984 | ---- | C] () -- C:\Windows\SysNative\mstime.dll
[2010/12/15 15:17:15 | 000,590,848 | ---- | C] () -- C:\Windows\SysNative\msfeeds.dll
[2010/12/15 15:17:05 | 000,758,784 | ---- | C] () -- C:\Windows\SysNative\mshtmled.dll
[2010/12/15 15:17:04 | 001,032,704 | ---- | C] () -- C:\Windows\SysNative\wininet.dll
[2010/12/15 15:16:58 | 001,426,944 | ---- | C] () -- C:\Windows\SysNative\urlmon.dll
[2010/12/15 15:16:56 | 000,267,776 | ---- | C] () -- C:\Windows\SysNative\ieaksie.dll
[2010/12/15 15:16:55 | 000,485,376 | ---- | C] () -- C:\Windows\SysNative\html.iec
[2010/12/15 15:16:55 | 000,249,856 | ---- | C] () -- C:\Windows\SysNative\iepeers.dll
[2010/12/15 15:16:53 | 000,480,256 | ---- | C] () -- C:\Windows\SysNative\iedkcs32.dll
[2010/12/15 15:16:53 | 000,375,296 | ---- | C] () -- C:\Windows\SysNative\iertutil.dll
[2010/12/15 15:16:53 | 000,208,896 | ---- | C] () -- C:\Windows\SysNative\occache.dll
[2010/12/15 15:16:50 | 000,086,528 | ---- | C] () -- C:\Windows\SysNative\ieencode.dll
[2010/12/15 15:16:50 | 000,032,256 | ---- | C] () -- C:\Windows\SysNative\jsproxy.dll
[2010/12/15 15:16:47 | 001,383,424 | ---- | C] () -- C:\Windows\SysNative\mshtml.tlb
[2010/12/15 15:16:46 | 000,422,400 | ---- | C] () -- C:\Windows\SysNative\ieapfltr.dll
[2010/12/15 15:12:09 | 000,002,048 | ---- | C] () -- C:\Windows\SysNative\tzres.dll
[2010/12/15 15:10:18 | 000,854,528 | ---- | C] () -- C:\Windows\SysNative\schedsvc.dll
[2010/12/15 15:10:16 | 000,655,872 | ---- | C] () -- C:\Windows\SysNative\taskschd.dll
[2010/12/15 15:10:15 | 000,499,712 | ---- | C] () -- C:\Windows\SysNative\wmicmiplugin.dll
[2010/12/15 15:10:13 | 000,267,776 | ---- | C] () -- C:\Windows\SysNative\taskeng.exe
[2010/12/15 15:10:12 | 000,410,112 | ---- | C] () -- C:\Windows\SysNative\taskcomp.dll
[2009/07/13 17:20:33 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2009/06/21 22:05:20 | 000,123,392 | ---- | C] () -- C:\Users\Patel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/06/18 09:23:06 | 000,000,025 | ---- | C] () -- C:\Windows\cdplayer.ini
[2009/06/11 19:46:44 | 000,424,092 | ---- | C] () -- C:\Users\Patel\AppData\Local\dd_vcredistMSI6FCC.txt
[2009/06/11 19:46:44 | 000,011,414 | ---- | C] () -- C:\Users\Patel\AppData\Local\dd_vcredistUI6FCC.txt
[2009/06/11 12:52:57 | 000,001,356 | ---- | C] () -- C:\Users\Patel\AppData\Local\d3d9caps.dat
[2009/06/11 12:15:45 | 000,000,732 | ---- | C] () -- C:\Users\Patel\AppData\Local\d3d9caps64.dat
[2008/09/05 16:16:36 | 000,233,216 | ---- | C] () -- C:\Windows\SysWow64\FACrashRpt.dll
[2008/09/05 16:16:36 | 000,059,136 | ---- | C] () -- C:\Windows\SysWow64\FAib.dll
[2008/09/05 16:16:20 | 000,087,296 | ---- | C] () -- C:\Windows\SysWow64\FAIEExtension.dll
[2008/01/20 20:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2008/01/20 20:49:49 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll

< End of report >



uvita
Intermediate
Intermediate

Posts Posts : 163
Joined Joined : 2009-01-06
OS OS : Windows Vista with Media Edition
Points Points : 29910
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by uvita on 13th January 2011, 5:04 pm

it did not create an extra...don't know where to find...it opened the OTL text and saved on the desktop a OTL named document...when opened it looked the same to me...here it is

OTL logfile created on: 1/13/2011 10:49:31 AM - Run 3
OTL by OldTimer - Version 3.2.20.2 Folder = C:\Users\Patel\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

4.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 61.00% Memory free
8.00 Gb Paging File | 6.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 288.01 Gb Total Space | 184.40 Gb Free Space | 64.03% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 2.60 Gb Free Space | 26.05% Space Free | Partition Type: NTFS

Computer Name: PATEL-PC | User Name: Patel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/01/13 10:35:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Patel\Desktop\OTL.exe
PRC - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/09/14 15:34:34 | 000,340,520 | ---- | M] (Kaspersky Lab) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
PRC - [2009/03/05 15:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/09/05 16:17:08 | 001,836,288 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe
PRC - [2008/09/05 16:17:08 | 000,095,488 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe
PRC - [2008/09/05 16:16:54 | 002,340,096 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
PRC - [2007/07/24 10:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe


========== Modules (SafeList) ==========

MOD - [2011/01/13 10:35:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Patel\Desktop\OTL.exe
MOD - [2010/08/31 09:39:57 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2008/06/02 10:44:18 | 000,031,744 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\WLTRYSVC.EXE -- (wltrysvc)
SRV:64bit: - [2008/01/20 20:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/09/14 15:34:34 | 000,340,520 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe -- (AVP)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/01/26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/09/05 16:16:54 | 002,340,096 | ---- | M] (Sensible Vision ) [Auto | Running] -- C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe -- (FAService)
SRV - [2008/07/27 12:03:13 | 000,069,632 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007/07/24 10:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2010/09/28 15:44:52 | 000,051,712 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2009/11/11 16:35:26 | 000,353,296 | ---- | M] () [File_System | System | Running] -- C:\Windows\SysNative\DRIVERS\klif.sys -- (KLIF)
DRV:64bit: - [2009/11/03 16:33:44 | 000,027,152 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\klim6.sys -- (KLIM6)
DRV:64bit: - [2009/10/14 20:18:38 | 000,040,464 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\klbg.sys -- (KLBG)
DRV:64bit: - [2009/10/02 18:39:32 | 000,021,008 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\klmouflt.sys -- (klmouflt)
DRV:64bit: - [2009/09/01 14:29:56 | 000,157,712 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\kl1.sys -- (kl1)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/05/09 00:14:20 | 000,015,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\NuidFltr.sys -- (NuidFltr)
DRV:64bit: - [2009/03/09 00:06:00 | 000,319,840 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Vid.sys -- (OA001Vid)
DRV:64bit: - [2009/03/06 14:33:58 | 000,159,840 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Ufd.sys -- (OA001Ufd)
DRV:64bit: - [2008/08/14 16:18:54 | 008,029,792 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\igdkmd64.sys -- (igfx)
DRV:64bit: - [2008/08/02 15:36:16 | 000,243,840 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\facap.sys -- (FACAP)
DRV:64bit: - [2008/07/15 14:20:42 | 000,126,464 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel(R)
DRV:64bit: - [2008/06/02 10:44:16 | 000,022,520 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCM42RLY.sys -- (BCM42RLY)
DRV:64bit: - [2008/06/02 10:44:14 | 001,374,712 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\bcmwl664.sys -- (BCM43XX)
DRV:64bit: - [2008/05/06 16:06:00 | 000,014,464 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2008/02/24 01:40:04 | 000,239,104 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\k57nd60a.sys -- (k57nd60a) Broadcom NetLink (TM)
DRV:64bit: - [2008/02/21 09:24:20 | 000,062,976 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimmpx64.sys -- (rimmptsk)
DRV:64bit: - [2008/01/20 20:47:28 | 000,046,080 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2008/01/20 20:46:55 | 000,111,104 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\sdbus.sys -- (sdbus)
DRV:64bit: - [2007/12/18 16:57:12 | 000,059,392 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\itecir.sys -- (itecir)
DRV:64bit: - [2007/07/27 18:45:52 | 000,057,856 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rixdpx64.sys -- (rismxdp)
DRV:64bit: - [2007/07/26 19:33:54 | 000,055,296 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimspx64.sys -- (rimsptsk)
DRV:64bit: - [2006/09/18 15:36:24 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.param.yahoo-fr: "chrf-ytbm"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "chrf-ytbm"
FF - prefs.js..browser.search.param.yahoo-type: "${8}"
FF - prefs.js..browser.startup.homepage: "http://www.google.com"
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:0.3.3
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.6.5
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:9.0.0.736
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.6.1
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.1.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23


FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/08/13 11:20:06 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/12/23 22:19:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/12/30 22:16:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2010/11/14 02:17:21 | 000,000,000 | ---D | M]

[2009/06/11 20:03:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Patel\AppData\Roaming\mozilla\Extensions
[2011/01/12 12:30:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Patel\AppData\Roaming\mozilla\Firefox\Profiles\46mb2dv2.default\extensions
[2010/12/13 23:13:25 | 000,000,000 | ---D | M] ("ColorfulTabs") -- C:\Users\Patel\AppData\Roaming\mozilla\Firefox\Profiles\46mb2dv2.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2010/12/13 23:13:24 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Patel\AppData\Roaming\mozilla\Firefox\Profiles\46mb2dv2.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/10/30 23:32:00 | 000,000,000 | ---D | M] (AnyColor) -- C:\Users\Patel\AppData\Roaming\mozilla\Firefox\Profiles\46mb2dv2.default\extensions\anycolor.pavlos256@gmail.com
[2010/09/14 14:01:44 | 000,000,000 | ---D | M] (Personas) -- C:\Users\Patel\AppData\Roaming\mozilla\Firefox\Profiles\46mb2dv2.default\extensions\personas@christopher.beard
[2010/12/19 11:31:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/12/19 11:31:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2010/09/14 14:32:23 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010/08/13 11:20:06 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2010/12/19 11:31:21 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2011/01/11 19:07:51 | 000,428,712 | R--- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 127.0.0.1 [You must be registered and logged in to see this link.]
O1 - Hosts: 14763 more lines...
O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\ievkbd.dll (Kaspersky Lab)
O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\klwtbbho.dll (Kaspersky Lab)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O2 - BHO: (no name) - MRI_DISABLED - No CLSID value found.
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Windows\SysNative\WLTRAY.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe ()
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe ()
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [FAStartup] File not found
O4 - HKLM..\Run: [FATrayAlert] C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe (Sensible Vision )
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [WMPNSCFG] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O9:64bit: - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\klwtbbho.dll (Kaspersky Lab)
O9:64bit: - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_23)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_23)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\x64\sbhook64.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\sbhook64.dll (Kaspersky Lab)
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\x64\kloehk.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\x64\kloehk.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\mzvkbd3.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\sbhook.dll (Kaspersky Lab)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Value error. - C:\Windows\SysNative\igfxdev.dll ()
O20:64bit: - Winlogon\Notify\klogon: DllName - Reg Error: Value error. - C:\Windows\SysNative\klogon.dll ()
O20 - Winlogon\Notify\FastAccess: DllName - C:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll - C:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll ()
O20 - Winlogon\Notify\igfxcui: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\klogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img20.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img20.jpg
O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/01/13 10:35:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Patel\Desktop\OTL.exe
[2011/01/11 12:37:30 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2011/01/01 12:47:44 | 000,000,000 | ---D | C] -- C:\Users\Patel\Installs
[2010/12/30 22:25:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2010/12/30 22:16:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2010/12/30 22:15:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2010/12/30 22:15:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2010/12/30 22:14:18 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010/12/30 22:09:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/12/30 22:09:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2010/12/30 22:06:29 | 000,000,000 | ---D | C] -- C:\Users\Patel\AppData\Local\Microsoft Help
[2010/12/30 22:06:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2010/12/30 22:06:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010/12/30 22:04:38 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010/12/24 09:28:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2010/12/24 09:27:55 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysWow64\GEARAspi.dll
[2010/12/24 09:26:46 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2010/12/24 09:26:44 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2010/12/24 09:26:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2010/12/24 09:20:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2010/12/23 22:26:04 | 000,000,000 | ---D | C] -- C:\Users\Patel\AppData\Local\Apple Computer
[2010/12/23 22:26:03 | 000,000,000 | ---D | C] -- C:\Users\Patel\AppData\Roaming\Apple Computer
[2010/12/23 22:24:19 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2010/12/23 22:22:57 | 000,000,000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2010/12/23 22:17:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2010/12/23 22:17:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2010/12/23 22:17:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010/12/23 22:12:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2010/12/23 22:10:55 | 000,000,000 | ---D | C] -- C:\Users\Patel\{1b350054-3bbd-4d63-b54a-c37dd7ff1c14}
[2010/12/23 22:02:52 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010/12/23 22:02:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2010/12/19 11:53:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010/12/19 11:32:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010/12/19 11:32:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/12/19 11:31:50 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/12/19 11:31:50 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/12/19 11:31:50 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/12/19 11:31:49 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/12/19 11:03:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2010/12/17 11:45:49 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2010/12/17 11:45:48 | 000,000,000 | ---D | C] -- C:\Users\Patel\AppData\Local\temp
[2010/12/17 11:37:38 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2010/12/17 11:20:41 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2010/12/17 11:20:41 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2010/12/17 11:20:41 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2010/12/17 11:20:31 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/12/17 11:20:12 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/12/17 11:19:49 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2010/12/17 11:19:45 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2010/12/16 18:28:06 | 000,000,000 | ---D | C] -- C:\Users\Patel\AppData\Roaming\Malwarebytes
[2010/12/16 18:27:48 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/12/16 18:27:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2010/12/16 18:27:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/12/16 18:27:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/12/15 15:19:10 | 000,292,352 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010/12/15 15:19:09 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2010/12/15 15:19:06 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2010/12/15 15:17:13 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2010/12/15 15:17:07 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2010/12/15 15:17:02 | 000,476,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2010/12/15 15:16:55 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2010/12/15 15:16:53 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2010/12/15 15:16:51 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010/12/15 15:16:51 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2010/12/15 15:16:50 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieencode.dll
[2010/12/15 15:10:14 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll
[2010/12/15 15:10:10 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll

========== Files - Modified Within 30 Days ==========

[2011/01/13 10:37:33 | 000,123,392 | ---- | M] () -- C:\Users\Patel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/13 10:35:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Patel\Desktop\OTL.exe
[2011/01/13 10:24:30 | 000,703,388 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/01/13 10:24:30 | 000,604,502 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/01/13 10:24:30 | 000,104,170 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/01/13 10:19:21 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/13 10:19:17 | 000,003,712 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/01/13 10:19:16 | 000,003,712 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/01/13 10:18:48 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/01/12 23:01:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/11 19:07:51 | 000,428,712 | R--- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2010/12/31 11:02:29 | 000,000,952 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys
[2010/12/31 10:06:15 | 000,376,448 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/12/28 09:26:13 | 000,462,848 | ---- | M] () -- C:\Windows\SysNative\odbc32.dll
[2010/12/28 08:57:35 | 000,409,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2010/12/27 12:26:54 | 000,020,992 | ---- | M] () -- C:\Users\Patel\Desktop\Ram's Blog_December_26_2010.doc
[2010/12/27 11:29:49 | 000,432,080 | ---- | M] () -- C:\Users\Patel\Desktop\VN320157.WMA
[2010/12/24 09:28:06 | 000,001,696 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/12/23 22:17:48 | 000,001,758 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010/12/23 19:22:29 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/12/20 18:08:40 | 000,024,152 | ---- | M] () -- C:\Windows\SysNative\drivers\mbam.sys
[2010/12/19 11:53:37 | 000,001,924 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2010/12/19 11:31:21 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/12/19 11:31:21 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/12/19 11:31:21 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/12/19 11:31:21 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/12/16 18:27:48 | 000,000,950 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk

========== Files Created - No Company Name ==========

[2011/01/11 12:37:30 | 000,462,848 | ---- | C] () -- C:\Windows\SysNative\odbc32.dll
[2011/01/11 12:37:20 | 001,251,840 | ---- | C] () -- C:\Windows\SysNative\sdclt.exe
[2010/12/27 12:26:51 | 000,020,992 | ---- | C] () -- C:\Users\Patel\Desktop\Ram's Blog_December_26_2010.doc
[2010/12/27 11:29:45 | 000,432,080 | ---- | C] () -- C:\Users\Patel\Desktop\VN320157.WMA
[2010/12/24 09:28:06 | 000,001,696 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/12/24 09:27:55 | 000,126,312 | ---- | C] () -- C:\Windows\SysNative\GEARAspi64.dll
[2010/12/24 09:27:54 | 000,034,152 | ---- | C] () -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[2010/12/23 22:17:48 | 000,001,758 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010/12/23 19:22:29 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010/12/19 11:53:37 | 000,001,924 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2010/12/17 11:20:41 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010/12/17 11:20:41 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010/12/17 11:20:41 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
[2010/12/17 11:20:41 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010/12/17 11:20:41 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010/12/16 18:27:48 | 000,000,950 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/16 18:27:41 | 000,024,152 | ---- | C] () -- C:\Windows\SysNative\drivers\mbam.sys
[2010/12/15 15:19:21 | 002,751,488 | ---- | C] () -- C:\Windows\SysNative\win32k.sys
[2010/12/15 15:19:10 | 000,367,104 | ---- | C] () -- C:\Windows\SysNative\atmfd.dll
[2010/12/15 15:19:09 | 000,048,128 | ---- | C] () -- C:\Windows\SysNative\atmlib.dll
[2010/12/15 15:19:07 | 000,096,256 | ---- | C] () -- C:\Windows\SysNative\fontsub.dll
[2010/12/15 15:18:59 | 000,087,552 | ---- | C] () -- C:\Windows\SysNative\consent.exe
[2010/12/15 15:17:32 | 005,693,440 | ---- | C] () -- C:\Windows\SysNative\mshtml.dll
[2010/12/15 15:17:29 | 007,015,424 | ---- | C] () -- C:\Windows\SysNative\ieframe.dll
[2010/12/15 15:17:23 | 001,129,984 | ---- | C] () -- C:\Windows\SysNative\mstime.dll
[2010/12/15 15:17:15 | 000,590,848 | ---- | C] () -- C:\Windows\SysNative\msfeeds.dll
[2010/12/15 15:17:05 | 000,758,784 | ---- | C] () -- C:\Windows\SysNative\mshtmled.dll
[2010/12/15 15:17:04 | 001,032,704 | ---- | C] () -- C:\Windows\SysNative\wininet.dll
[2010/12/15 15:16:58 | 001,426,944 | ---- | C] () -- C:\Windows\SysNative\urlmon.dll
[2010/12/15 15:16:56 | 000,267,776 | ---- | C] () -- C:\Windows\SysNative\ieaksie.dll
[2010/12/15 15:16:55 | 000,485,376 | ---- | C] () -- C:\Windows\SysNative\html.iec
[2010/12/15 15:16:55 | 000,249,856 | ---- | C] () -- C:\Windows\SysNative\iepeers.dll
[2010/12/15 15:16:53 | 000,480,256 | ---- | C] () -- C:\Windows\SysNative\iedkcs32.dll
[2010/12/15 15:16:53 | 000,375,296 | ---- | C] () -- C:\Windows\SysNative\iertutil.dll
[2010/12/15 15:16:53 | 000,208,896 | ---- | C] () -- C:\Windows\SysNative\occache.dll
[2010/12/15 15:16:50 | 000,086,528 | ---- | C] () -- C:\Windows\SysNative\ieencode.dll
[2010/12/15 15:16:50 | 000,032,256 | ---- | C] () -- C:\Windows\SysNative\jsproxy.dll
[2010/12/15 15:16:47 | 001,383,424 | ---- | C] () -- C:\Windows\SysNative\mshtml.tlb
[2010/12/15 15:16:46 | 000,422,400 | ---- | C] () -- C:\Windows\SysNative\ieapfltr.dll
[2010/12/15 15:12:09 | 000,002,048 | ---- | C] () -- C:\Windows\SysNative\tzres.dll
[2010/12/15 15:10:18 | 000,854,528 | ---- | C] () -- C:\Windows\SysNative\schedsvc.dll
[2010/12/15 15:10:16 | 000,655,872 | ---- | C] () -- C:\Windows\SysNative\taskschd.dll
[2010/12/15 15:10:15 | 000,499,712 | ---- | C] () -- C:\Windows\SysNative\wmicmiplugin.dll
[2010/12/15 15:10:13 | 000,267,776 | ---- | C] () -- C:\Windows\SysNative\taskeng.exe
[2010/12/15 15:10:12 | 000,410,112 | ---- | C] () -- C:\Windows\SysNative\taskcomp.dll
[2009/07/13 17:20:33 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2009/06/21 22:05:20 | 000,123,392 | ---- | C] () -- C:\Users\Patel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/06/18 09:23:06 | 000,000,025 | ---- | C] () -- C:\Windows\cdplayer.ini
[2009/06/11 19:46:44 | 000,424,092 | ---- | C] () -- C:\Users\Patel\AppData\Local\dd_vcredistMSI6FCC.txt
[2009/06/11 19:46:44 | 000,011,414 | ---- | C] () -- C:\Users\Patel\AppData\Local\dd_vcredistUI6FCC.txt
[2009/06/11 12:52:57 | 000,001,356 | ---- | C] () -- C:\Users\Patel\AppData\Local\d3d9caps.dat
[2009/06/11 12:15:45 | 000,000,732 | ---- | C] () -- C:\Users\Patel\AppData\Local\d3d9caps64.dat
[2008/09/05 16:16:36 | 000,233,216 | ---- | C] () -- C:\Windows\SysWow64\FACrashRpt.dll
[2008/09/05 16:16:36 | 000,059,136 | ---- | C] () -- C:\Windows\SysWow64\FAib.dll
[2008/09/05 16:16:20 | 000,087,296 | ---- | C] () -- C:\Windows\SysWow64\FAIEExtension.dll
[2008/01/20 20:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2008/01/20 20:49:49 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll

< End of report >

uvita
Intermediate
Intermediate

Posts Posts : 163
Joined Joined : 2009-01-06
OS OS : Windows Vista with Media Edition
Points Points : 29910
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by Belahzur on 14th January 2011, 1:17 am

ComboFix should not be run without the guidance of a helper!

It is a powerful tool and is intended by its creator to be "used under the guidance and supervision of an expert", NOT for private or regular use.

See ComboFix's [You must be registered and logged in to see this link.]

Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.

Please refer to this thread for more information on why you shouldn't use ComboFix without supervision of a trained expert: [You must be registered and logged in to see this link.]

Since you have done anyway, did you get the log file?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245121
# Likes # Likes : 1

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by uvita on 14th January 2011, 4:24 pm

no I have not used it since the last time you guys had helped me with my computer. I had deleted the exe file but I still saw it showing up when I run kaspersky and when I try to locate it through search to see if I can find and delete; it would shut my computer down instead of trying to find. I t don't know how else to get rid of it. On my windows xp I was able to delete like u guys used to tell me but with Vista I have no idea how to

uvita
Intermediate
Intermediate

Posts Posts : 163
Joined Joined : 2009-01-06
OS OS : Windows Vista with Media Edition
Points Points : 29910
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by Belahzur on 15th January 2011, 12:57 am

Please download and run this tool.

Download Malwarebytes' Anti-Malware from [You must be registered and logged in to see this link.]

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.


Post the contents of the MBAM Log.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245121
# Likes # Likes : 1

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by uvita on 15th January 2011, 3:27 am

hello,

this is the logfile:

Malwarebytes' Anti-Malware 1.50.1.1100
[You must be registered and logged in to see this link.]

Database version: 5522

Windows 6.0.6001 Service Pack 1
Internet Explorer 7.0.6001.18000

1/14/2011 9:21:57 PM
mbam-log-2011-01-14 (21-21-57).txt

Scan type: Quick scan
Objects scanned: 158713
Time elapsed: 6 minute(s), 5 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

uvita
Intermediate
Intermediate

Posts Posts : 163
Joined Joined : 2009-01-06
OS OS : Windows Vista with Media Edition
Points Points : 29910
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by Belahzur on 16th January 2011, 1:42 am

Hello.

Please download ComboFix from [You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.]


Rename ComboFix.exe to commy.exe before you save it to your Desktop
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found [You must be registered and logged in to see this link.]
  • Click Start then copy paste the following command into the search box & hit enter: "%userprofile%\desktop\commy.exe" /stepdel
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. This will not install in Vista. Just continue scanning, and skip the console install.
  • When finished, it shall produce a log for you. Please include the contents of C:\ComboFix.txt in your next reply.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245121
# Likes # Likes : 1

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by uvita on 16th January 2011, 4:36 pm

the text...posting in more than one post

ComboFix 11-01-15.01 - Patel 01/16/2011 9:39.2.2 - x64
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1033.18.4054.2617 [GMT -6]
Running from: c:\users\Patel\Desktop\commy.exe
Command switches used :: /stepdel
AV: Kaspersky Internet Security *Disabled/Outdated* {56547CC9-C9B2-849D-8FEF-A496150D6A06}
AV: Kaspersky Internet Security *Disabled/Updated* {AE1D740B-8F0F-D137-211D-873D44B3F4AE}
FW: Kaspersky Internet Security *Disabled* {6E6FFDEC-83DD-85C5-A4B0-0DA3EBDE2D7D}
FW: Kaspersky Internet Security *Disabled* {9626F52E-C560-D06F-0A42-2E08BA60B3D5}
SP: Kaspersky Internet Security *Disabled/Outdated* {ED359D2D-EF88-8B13-B55F-9FE46E8A20BB}
SP: Kaspersky Internet Security *Disabled/Updated* {157C95EF-A935-DEB9-1BAD-BC4F3F34BE13}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\arp.exe . . . . Failed to delete
c:\windows\system32\slwga.dll . . . . Failed to delete
c:\windows\system32\systemcpl.dll . . . . Failed to delete
c:\windows\SysWow64\arp.exe

.
((((((((((((((((((((((((( Files Created from 2010-12-16 to 2011-01-16 )))))))))))))))))))))))))))))))
.

2011-01-16 16:07 . 2011-01-16 16:10 -------- d-----w- c:\users\Patel\AppData\Local\temp
2011-01-16 16:07 . 2011-01-16 16:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-01-15 03:14 . 2010-12-21 00:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-01-15 03:14 . 2011-01-15 03:15 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-01-14 16:21 . 2010-11-10 05:35 8199504 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3A44300D-BA40-4400-9404-F9528728CFC3}\mpengine.dll
2011-01-01 18:47 . 2011-01-01 18:51 -------- d-----w- c:\users\Patel\Installs
2010-12-31 15:41 . 2010-12-31 15:41 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2010-12-31 04:16 . 2010-12-31 15:55 -------- d-----w- c:\program files (x86)\Microsoft Works
2010-12-31 04:14 . 2010-12-31 04:14 -------- d-----w- c:\windows\PCHEALTH
2010-12-31 04:09 . 2010-12-31 04:09 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2010-12-31 04:06 . 2010-12-31 04:06 -------- d-----w- c:\users\Patel\AppData\Local\Microsoft Help
2010-12-31 04:06 . 2011-01-11 19:17 -------- d-----w- c:\programdata\Microsoft Help
2010-12-31 04:04 . 2010-12-31 04:04 -------- d-----r- C:\MSOCache
2010-12-24 15:27 . 2008-04-17 18:12 126312 ----a-w- c:\windows\system32\GEARAspi64.dll
2010-12-24 15:27 . 2008-04-17 18:12 107368 ----a-w- c:\windows\SysWow64\GEARAspi.dll
2010-12-24 15:27 . 2009-05-18 19:17 34152 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2010-12-24 15:26 . 2010-12-24 15:26 -------- d-----w- c:\program files\iPod
2010-12-24 15:26 . 2010-12-24 15:27 -------- d-----w- c:\program files\iTunes
2010-12-24 15:26 . 2010-12-24 15:27 -------- d-----w- c:\program files (x86)\iTunes
2010-12-24 15:20 . 2010-12-24 15:20 -------- d-----w- c:\program files\Common Files\Apple
2010-12-24 04:26 . 2010-12-24 04:26 -------- d-----w- c:\users\Patel\AppData\Local\Apple Computer
2010-12-24 04:26 . 2010-12-24 15:39 -------- d-----w- c:\users\Patel\AppData\Roaming\Apple Computer
2010-12-24 04:24 . 2010-12-24 15:27 -------- dc----w- c:\windows\system32\DRVSTORE
2010-12-24 04:22 . 2010-12-24 04:24 -------- d-----w- c:\programdata\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2010-12-24 04:17 . 2010-12-24 15:26 -------- d-----w- c:\programdata\Apple Computer
2010-12-24 04:12 . 2010-12-24 04:12 -------- d-----w- c:\program files (x86)\Apple Software Update
2010-12-24 04:10 . 2010-12-24 04:10 -------- d-----w- c:\users\Patel\{1b350054-3bbd-4d63-b54a-c37dd7ff1c14}
2010-12-24 04:02 . 2010-12-24 04:02 -------- d-----w- c:\program files\Bonjour
2010-12-24 04:02 . 2010-12-24 04:02 -------- d-----w- c:\program files (x86)\Bonjour
2010-12-19 17:53 . 2010-12-19 17:53 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2010-12-19 17:32 . 2010-12-19 17:32 -------- d-----w- c:\program files (x86)\Common Files\Java
2010-12-19 17:31 . 2010-12-19 17:31 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2010-12-19 17:31 . 2010-12-19 17:31 472808 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
2010-12-19 17:03 . 2010-12-19 17:03 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-31 17:02 . 2009-07-13 23:20 952 --sha-w- c:\programdata\KGyGaAvL.sys
2010-12-21 00:08 . 2010-12-17 00:27 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-11-29 23:38 . 2010-11-29 23:38 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx
2010-11-29 23:38 . 2010-11-29 23:38 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts
2010-11-06 11:10 . 2010-12-15 21:10 357376 ----a-w- c:\windows\SysWow64\taskschd.dll
2010-11-06 11:10 . 2010-12-15 21:10 270336 ----a-w- c:\windows\SysWow64\taskcomp.dll
2010-11-06 04:35 . 2010-12-15 21:10 499712 ----a-w- c:\windows\system32\wmicmiplugin.dll
2010-11-06 04:35 . 2010-12-15 21:10 655872 ----a-w- c:\windows\system32\taskschd.dll
2010-11-06 04:35 . 2010-12-15 21:10 410112 ----a-w- c:\windows\system32\taskcomp.dll
2010-11-06 04:35 . 2010-12-15 21:10 854528 ----a-w- c:\windows\system32\schedsvc.dll
2010-11-05 00:53 . 2010-12-15 21:10 171520 ----a-w- c:\windows\SysWow64\taskeng.exe
2010-11-04 21:16 . 2010-12-15 21:10 267776 ----a-w- c:\windows\system32\taskeng.exe
2010-10-28 15:18 . 2010-12-15 21:19 48128 ----a-w- c:\windows\system32\atmlib.dll
2010-10-28 15:02 . 2010-12-15 21:19 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2010-10-28 13:23 . 2010-12-15 21:19 367104 ----a-w- c:\windows\system32\atmfd.dll
2010-10-28 13:17 . 2010-12-15 21:12 2048 ----a-w- c:\windows\system32\tzres.dll
2010-10-28 13:03 . 2010-12-15 21:19 292352 ----a-w- c:\windows\SysWow64\atmfd.dll
2010-10-28 12:56 . 2010-12-15 21:12 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2010-10-20 18:25 . 2010-12-15 21:17 1032704 ----a-w- c:\windows\system32\wininet.dll
2010-10-20 18:19 . 2010-12-15 21:16 86528 ----a-w- c:\windows\system32\ieencode.dll
2010-10-20 17:45 . 2010-12-15 21:17 833024 ----a-w- c:\windows\SysWow64\wininet.dll
2010-10-20 17:41 . 2010-12-15 21:16 78336 ----a-w- c:\windows\SysWow64\ieencode.dll
2010-10-20 16:48 . 2010-12-15 21:16 485376 ----a-w- c:\windows\system32\html.iec
2010-10-20 16:17 . 2010-12-15 21:16 1383424 ----a-w- c:\windows\system32\mshtml.tlb
2010-10-20 16:16 . 2010-12-15 21:16 389632 ----a-w- c:\windows\SysWow64\html.iec
2010-10-20 15:51 . 2010-12-15 21:16 1383424 ----a-w- c:\windows\SysWow64\mshtml.tlb
2010-10-19 16:41 . 2009-10-05 04:38 270720 ------w- c:\windows\system32\MpSigStub.exe
.
((((((((((((((((((((((((((((( [You must be registered and logged in to see this link.] )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-07-24 16:50 . 2006-07-24 16:50 47920 c:\windows\SysWOW64\VBAME.DLL
+ 2006-07-24 16:50 . 2006-07-24 16:50 39728 c:\windows\SysWOW64\SCP32.DLL
+ 2010-10-07 18:23 . 2010-10-07 18:23 75040 c:\windows\SysWOW64\jdns_sd.dll
+ 2006-10-26 20:10 . 2006-10-26 20:10 33088 c:\windows\SysWOW64\FM20ENU.DLL
+ 2010-10-07 18:23 . 2010-10-07 18:23 91424 c:\windows\SysWOW64\dnssd.dll
+ 2008-01-21 02:47 . 2008-01-21 02:47 74752 c:\windows\system32\WpdMtpUS.dll
+ 2008-01-21 02:47 . 2008-01-21 02:47 37376 c:\windows\system32\WpdConns.dll
+ 2008-01-21 02:23 . 2011-01-16 16:10 48232 c:\windows\system32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2006-11-02 15:45 . 2011-01-16 16:10 81518 c:\windows\system32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2009-06-11 18:17 . 2011-01-16 16:10 14548 c:\windows\system32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2270993539-1690040038-609193612-1000_UserData.bin
+ 2010-12-31 04:23 . 2008-11-10 17:41 67472 c:\windows\system32\spool\drivers\x64\msonpui.dll
+ 2010-10-07 18:36 . 2010-10-07 18:36 69408 c:\windows\system32\jdns_sd.dll
+ 2010-12-24 15:27 . 2009-05-18 19:17 34152 c:\windows\system32\DRVSTORE\GEARAspiWD_B60A2DA9F47E0A7F3329B57AA751F1789961A8BE\x64\GEARAspiWDM.sys
+ 2010-09-28 21:44 . 2010-09-28 21:44 51712 c:\windows\system32\DriverStore\FileRepository\usbaapl64.inf_6a3cd96d\usbaapl64.sys
+ 2010-04-20 02:29 . 2010-04-20 02:29 22528 c:\windows\system32\DriverStore\FileRepository\netaapl64.inf_7e8ed503\netaapl64.sys
+ 2008-01-21 02:47 . 2008-01-21 02:47 46080 c:\windows\system32\drivers\WpdUsb.sys
+ 2010-09-28 21:44 . 2010-09-28 21:44 51712 c:\windows\system32\drivers\usbaapl64.sys
+ 2010-10-07 18:36 . 2010-10-07 18:36 96544 c:\windows\system32\dnssd.dll
+ 2009-06-11 18:16 . 2011-01-16 15:11 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-06-11 18:16 . 2010-12-17 15:42 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-06-11 18:16 . 2011-01-16 15:11 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-06-11 18:16 . 2010-12-17 15:42 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-06-11 18:16 . 2011-01-16 15:11 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-06-11 18:16 . 2010-12-17 15:42 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-12-21 01:46 . 2010-11-12 05:29 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-12-21 01:46 . 2011-01-13 19:34 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-12-21 01:46 . 2010-11-12 05:29 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-12-21 01:46 . 2011-01-13 19:34 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-12-21 01:46 . 2010-11-12 05:29 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-12-21 01:46 . 2011-01-13 19:34 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-11-30 16:29 . 2011-01-13 16:18 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-11-30 16:29 . 2010-12-17 15:38 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-11-30 16:29 . 2010-12-17 15:38 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-11-30 16:29 . 2011-01-13 16:18 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-12-19 17:04 . 2010-12-19 17:04 28160 c:\windows\Installer\2eeb3e.msi
+ 2010-12-24 04:12 . 2010-12-24 04:12 27136 c:\windows\Installer\{C41300B9-185D-475E-BFEC-39EF732F19B1}\AppleSoftwareUpdateIco.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
- 2010-10-02 17:46 . 2010-10-02 17:46 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2010-10-02 17:46 . 2011-01-11 18:45 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2006-07-24 16:50 . 2006-07-24 16:50 47920 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\VBAME.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 54088 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\SCANOST.EXE
+ 2009-03-04 23:24 . 2009-03-04 23:24 75608 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\RM.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 38240 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\RECALL.DLL
+ 2009-01-07 03:31 . 2009-01-07 03:31 48512 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\PUBTRAP.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 52072 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\OUTLVBA.DLL
+ 2008-10-25 14:18 . 2008-10-25 14:18 72568 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONFILTER.DLL
+ 2008-10-25 14:18 . 2008-10-25 14:18 98696 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONENOTEM.EXE
+ 2006-07-24 16:50 . 2006-07-24 16:50 92976 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\MSADDNDR.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 34192 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\DUMPSTER.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 87392 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\DLGSETP.DLL
+ 2006-10-27 03:17 . 2006-10-27 03:17 11072 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\XLCALL32.DLL
+ 2006-10-27 03:13 . 2006-10-27 03:13 72472 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\XL12CNVP.DLL
+ 2006-10-27 21:11 . 2006-10-27 21:11 21264 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\WRD12EXE.EXE
+ 2010-12-31 04:16 . 2010-12-31 04:16 12096 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\WORDPOL.DLL
+ 2006-10-27 04:58 . 2006-10-27 04:58 33080 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\VPREVIEW.EXE
+ 2010-12-31 04:16 . 2010-12-31 04:16 12080 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\VBIDEPOL.DLL
+ 2010-12-31 04:15 . 2010-12-31 04:15 64288 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\VBIDEPIA.DLL
+ 2006-10-26 20:04 . 2006-10-26 20:04 76624 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\TWSTRUCT.DLL
+ 2006-10-26 20:04 . 2006-10-26 20:04 19784 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\TWRECS.DLL
+ 2006-10-26 20:04 . 2006-10-26 20:04 51008 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\TWRECE.DLL
+ 2006-10-26 20:04 . 2006-10-26 20:04 27456 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\TWORIENT.DLL
+ 2006-10-26 20:04 . 2006-10-26 20:04 58168 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\TWLAY32.DLL
+ 2006-10-26 20:05 . 2006-10-26 20:05 86840 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\TWCUTLIN.DLL
+ 2006-10-26 20:04 . 2006-10-26 20:04 29976 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\THOCRAPI.DLL
+ 2006-10-27 01:59 . 2006-10-27 01:59 15672 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\SMARTTAGINSTALL.EXE
+ 2006-10-27 01:49 . 2006-10-27 01:49 34104 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\SETLANG.EXE
+ 2006-10-27 02:55 . 2006-10-27 02:55 55056 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\SCANOST.EXE
+ 2006-10-27 02:55 . 2006-10-27 02:55 76576 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\RM.DLL
+ 2006-10-26 20:04 . 2006-10-26 20:04 19784 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\REVERSE.DLL
+ 2006-10-27 02:12 . 2006-10-27 02:12 40424 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\REFIEBAR.DLL
+ 2006-10-27 03:13 . 2006-10-27 03:13 38168 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\REFEDIT.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 39208 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\RECALL.DLL
+ 2006-10-27 02:09 . 2006-10-27 02:09 48448 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PUBTRAP.DLL
+ 2006-10-26 20:05 . 2006-10-26 20:05 77144 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PSOM.DLL
+ 2010-12-31 04:16 . 2010-12-31 04:16 12112 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PPTPOL.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 53048 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OUTLVBA.DLL
+ 2006-10-27 21:16 . 2006-10-27 21:16 46864 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OUTLRPC.DLL
+ 2006-10-27 01:59 . 2006-10-27 01:59 46936 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OSETUPPS.DLL
+ 2006-10-27 02:24 . 2006-10-27 02:24 72504 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ONFILTER.DLL
+ 2006-10-27 02:24 . 2006-10-27 02:24 98632 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ONENOTEM.EXE
+ 2006-10-27 01:59 . 2006-10-27 01:59 16728 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OMUOPTINPS.DLL
+ 2006-10-27 02:00 . 2006-10-27 02:00 23392 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OISCTRL.DLL
+ 2006-10-27 21:11 . 2006-10-27 21:11 54680 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OFFRHD.DLL
+ 2010-12-31 04:16 . 2010-12-31 04:16 11544 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OFFICEPL.DLL
+ 2006-10-27 02:12 . 2006-10-27 02:12 65824 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\NAME.DLL
+ 2010-12-31 04:16 . 2010-12-31 04:16 12104 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSTAGPOL.DLL
+ 2010-12-31 04:15 . 2010-12-31 04:15 20280 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSTAGPIA.DLL
+ 2006-10-27 01:59 . 2006-10-27 01:59 43832 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSSH.DLL
+ 2006-10-27 21:26 . 2006-10-27 21:26 35152 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSOSTYLE.DLL
+ 2006-10-27 01:56 . 2006-10-27 01:56 67408 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSONPUI.DLL
+ 2006-10-27 01:56 . 2006-10-27 01:56 32592 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSONPMON.DLL


Last edited by uvita on 16th January 2011, 4:47 pm; edited 1 time in total

uvita
Intermediate
Intermediate

Posts Posts : 163
Joined Joined : 2009-01-06
OS OS : Windows Vista with Media Edition
Points Points : 29910
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by uvita on 16th January 2011, 4:37 pm

8 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSOMSE.DLL
+ 2006-10-27 02:12 . 2006-10-27 02:12 67896 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSOHTMED.EXE
+ 2006-10-27 21:01 . 2006-10-27 21:01 76088 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSOHEV.DLL
+ 2006-10-27 03:13 . 2006-10-27 03:13 26936 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSOEURO.DLL
+ 2006-10-27 01:48 . 2006-10-27 01:48 14664 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSOCFU.DLL
+ 2006-10-27 01:59 . 2006-10-27 01:59 19768 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSMH.DLL
+ 2006-10-27 01:52 . 2006-10-27 01:52 48424 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSE7.EXE
+ 2006-10-27 03:18 . 2006-10-27 03:18 66880 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSAEXP30.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 21312 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MLSHEXT.DLL
+ 2006-10-27 02:12 . 2006-10-27 02:12 89400 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\METCONV.DLL
+ 2006-10-27 03:41 . 2006-10-27 03:41 66368 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\INLAUNCH.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 35112 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVESYSTEMMODE.DLL
+ 2006-10-27 06:47 . 2006-10-27 06:47 16688 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVESTDURLLAUNCHER.EXE
+ 2006-10-27 06:47 . 2006-10-27 06:47 22808 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVENEW.DLL
+ 2006-10-27 06:47 . 2006-10-27 06:47 31016 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEMONITOR.EXE
+ 2006-10-27 06:47 . 2006-10-27 06:47 33568 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVECLEAN.EXE
+ 2006-10-27 21:37 . 2006-10-27 21:37 34088 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEAUTOPROXY.DLL
+ 2006-10-27 06:47 . 2006-10-27 06:47 65824 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEAUDITSERVICE.EXE
+ 2010-12-31 04:15 . 2010-12-31 04:15 12096 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GRAPHPOL.DLL
+ 2006-10-26 20:04 . 2006-10-26 20:04 75576 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\FORM.DLL
+ 2010-12-31 04:14 . 2010-12-31 04:14 12096 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\EXCELPOL.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 35160 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\DUMPSTER.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 87344 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\DLGSETP.DLL
+ 2006-10-27 03:30 . 2006-10-27 03:30 65312 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\COLLIMP.DLL
+ 2006-10-27 02:12 . 2006-10-27 02:12 53576 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\AUTHZAX.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 56120 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACERCLR.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 15160 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEODTXT.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 15160 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEODPDX.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 15160 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEODEXL.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 15160 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEODDBS.DLL
+ 2006-10-27 21:00 . 2006-10-27 21:00 47976 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEERR.DLL
+ 2006-10-27 03:18 . 2006-10-27 03:18 94016 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACCOLK.DLL
+ 2006-11-02 12:40 . 2010-12-24 15:24 86016 c:\windows\inf\infstrng.dat
- 2006-11-02 12:40 . 2010-12-13 20:49 86016 c:\windows\inf\infstrng.dat
+ 2006-11-02 12:40 . 2010-12-24 15:24 86016 c:\windows\inf\infstor.dat
- 2006-11-02 12:40 . 2010-12-13 20:49 86016 c:\windows\inf\infstor.dat
- 2006-11-02 12:40 . 2010-12-13 20:49 51200 c:\windows\inf\infpub.dat
+ 2006-11-02 12:40 . 2010-12-24 15:24 51200 c:\windows\inf\infpub.dat
+ 2010-12-31 04:16 . 2010-12-31 04:16 39624 c:\windows\assembly\GAC_MSIL\System.AddIn\2.0.0.0__b03f5f7f11d50a3a\System.AddIn.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 72472 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.DesignTime\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.DesignTime.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 39704 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.Contract\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.Contract.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 39712 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.ComRPCChannel\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.ComRPCChannel.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 60200 c:\windows\assembly\GAC_MSIL\Microsoft.Office.InfoPath\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Infopath.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 39728 c:\windows\assembly\GAC_MSIL\Microsoft.Office.InfoPath.Vsta\12.0.0.0__71e9bce111e9429c\Microsoft.Office.InfoPath.Vsta.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 43840 c:\windows\assembly\GAC_MSIL\Microsoft.Office.InfoPath.FormControl\12.0.0.0__71e9bce111e9429c\microsoft.office.infopath.formcontrol.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 16384 c:\windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 10576 c:\windows\assembly\GAC\Policy.11.0.office\12.0.0.0__71e9bce111e9429c\Policy.11.0.Office.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 11112 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Vbe.Interop\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Vbe.Interop.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 11128 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.Word\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.Word.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 11136 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.SmartTag\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.SmartTag.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 12104 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.Publisher\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.Publisher.dll
+ 2010-12-31 15:56 . 2010-12-31 15:56 11152 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.PowerPoint\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.PowerPoint.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 12632 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.OutlookViewCtl\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.OutlookViewCtl.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 12104 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.Outlook\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.Outlook.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 12616 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.InfoPath\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.InfoPath.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 12616 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.InfoPath.Xml\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.InfoPath.Xml.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 11128 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.Graph\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.Graph.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 11144 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.Excel\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.Excel.dll
+ 2010-12-31 04:14 . 2010-12-31 04:14 12104 c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.Access\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.Access.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 63336 c:\windows\assembly\GAC\Microsoft.Vbe.Interop\12.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 13312 c:\windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.stdformat.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 19320 c:\windows\assembly\GAC\Microsoft.Office.Interop.SmartTag\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.SmartTag.dll
+ 2010-12-31 04:15 . 2010-12-31 04:15 35648 c:\windows\assembly\GAC\Microsoft.Office.Interop.OutlookViewCtl\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.OutlookViewCtl.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 17208 c:\windows\assembly\GAC\Microsoft.Office.Interop.OneNote\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.OneNote.dll
+ 2010-12-31 04:15 . 2010-12-31 04:15 88896 c:\windows\assembly\GAC\Microsoft.Office.Interop.InfoPath.Xml\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.InfoPath.Xml.dll
+ 2010-12-31 04:14 . 2010-12-31 04:14 80696 c:\windows\assembly\GAC\Microsoft.Office.Interop.Access.Dao\12.0.0.0__71e9bce111e9429c\Microsoft.Office.interop.access.dao.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 16712 c:\windows\assembly\GAC\Microsoft.Office.InfoPath.Permission\12.0.0.0__71e9bce111e9429c\Microsoft.Office.InfoPath.Permission.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 31560 c:\windows\assembly\GAC\ipdmctrl\11.0.0.0__71e9bce111e9429c\IPDMCTRL.DLL
+ 2010-12-31 04:16 . 2010-12-31 04:16 82784 c:\windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 65536 c:\windows\assembly\GAC\dao\10.0.4504.0__31bf3856ad364e35\DAO.DLL
+ 2009-12-18 19:13 . 2011-01-15 06:44 1846 c:\windows\system32\WDI\ERCQueuedResolutions.dat
+ 2010-12-31 01:48 . 2010-12-31 01:48 9560 c:\windows\system32\networklist\icons\{CC52B292-5233-49E1-B1A9-BD660181F59F}_48.bin
+ 2010-12-31 01:48 . 2010-12-31 01:48 4280 c:\windows\system32\networklist\icons\{CC52B292-5233-49E1-B1A9-BD660181F59F}_32.bin
+ 2010-12-31 01:48 . 2010-12-31 01:48 2456 c:\windows\system32\networklist\icons\{CC52B292-5233-49E1-B1A9-BD660181F59F}_24.bin
+ 2011-01-16 16:08 . 2011-01-16 16:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2010-12-17 17:36 . 2010-12-17 17:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2010-12-17 17:36 . 2010-12-17 17:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-01-16 16:08 . 2011-01-16 16:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2010-12-31 04:16 . 2010-12-31 04:16 4096 c:\windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\msdatasrc.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 4608 c:\windows\assembly\GAC\Extensibility\7.0.3300.0__b03f5f7f11d50a3a\extensibility.dll
+ 2006-10-26 19:45 . 2006-10-26 19:45 293376 c:\windows\SysWOW64\WISPTIS.EXE
+ 2011-01-11 18:37 . 2010-12-28 14:57 409600 c:\windows\SysWOW64\odbc32.dll
- 2008-01-21 02:50 . 2008-01-21 02:50 409600 c:\windows\SysWOW64\odbc32.dll
+ 2006-07-24 16:50 . 2006-07-24 16:50 125744 c:\windows\SysWOW64\MSSTDFMT.DLL
+ 2010-12-19 17:31 . 2010-12-19 17:31 157472 c:\windows\SysWOW64\javaws.exe
+ 2010-12-19 17:31 . 2010-12-19 17:31 145184 c:\windows\SysWOW64\javaw.exe
+ 2010-12-19 17:31 . 2010-12-19 17:31 145184 c:\windows\SysWOW64\java.exe
+ 2010-10-07 18:23 . 2010-10-07 18:23 197920 c:\windows\SysWOW64\dnssdX.dll
+ 2010-10-07 18:23 . 2010-10-07 18:23 107808 c:\windows\SysWOW64\dns-sd.exe
+ 2008-01-21 02:47 . 2008-01-21 02:47 193024 c:\windows\system32\WpdMtp.dll
+ 2009-06-29 21:39 . 2011-01-16 03:23 268152 c:\windows\system32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2010-12-31 04:23 . 2008-11-10 17:41 864144 c:\windows\system32\spool\drivers\x64\msonpdrv.dll
+ 2006-11-02 12:46 . 2011-01-16 15:39 604502 c:\windows\system32\perfh009.dat
- 2006-11-02 12:46 . 2010-12-17 15:45 604502 c:\windows\system32\perfh009.dat
+ 2006-11-02 12:46 . 2011-01-16 15:39 104170 c:\windows\system32\perfc009.dat
- 2006-11-02 12:46 . 2010-12-17 15:45 104170 c:\windows\system32\perfc009.dat
+ 2011-01-11 18:37 . 2010-12-28 15:26 462848 c:\windows\system32\odbc32.dll
+ 2006-11-02 15:21 . 2010-12-31 16:06 376448 c:\windows\system32\FNTCACHE.DAT
+ 2010-12-24 15:27 . 2008-04-17 18:12 126312 c:\windows\system32\DRVSTORE\GEARAspiWD_B60A2DA9F47E0A7F3329B57AA751F1789961A8BE\x64\GEARAspi64.dll
+ 2010-12-24 15:27 . 2008-04-17 18:12 107368 c:\windows\system32\DRVSTORE\GEARAspiWD_B60A2DA9F47E0A7F3329B57AA751F1789961A8BE\x64\GEARAspi.dll
+ 2008-01-21 02:47 . 2008-01-21 02:47 934912 c:\windows\system32\drivers\UMDF\WpdMtpDr.dll
+ 2010-10-07 18:36 . 2010-10-07 18:36 237856 c:\windows\system32\dnssdX.dll
+ 2010-10-07 18:36 . 2010-10-07 18:36 119584 c:\windows\system32\dns-sd.exe
- 2006-11-02 15:17 . 2009-06-11 20:05 262144 c:\windows\system32\config\systemprofile\ntuser.dat
+ 2006-11-02 15:17 . 2011-01-11 18:02 262144 c:\windows\system32\config\systemprofile\ntuser.dat
+ 2010-12-24 04:02 . 2010-12-24 04:02 811008 c:\windows\Installer\a9f461.msi
+ 2010-08-04 21:13 . 2010-08-04 21:13 686080 c:\windows\Installer\75d9b.msp
+ 2009-05-27 00:53 . 2009-05-27 00:53 579072 c:\windows\Installer\75cbb.msp
+ 2010-07-23 07:03 . 2010-07-23 07:03 338432 c:\windows\Installer\75c8e.msp
+ 2010-12-31 04:12 . 2010-12-31 04:12 846848 c:\windows\Installer\692117.msi
+ 2010-12-31 04:12 . 2010-12-31 04:12 501248 c:\windows\Installer\69210a.msi
+ 2010-12-31 04:10 . 2010-12-31 04:10 501248 c:\windows\Installer\6920f2.msi
+ 2010-12-31 04:10 . 2010-12-31 04:10 506880 c:\windows\Installer\6920ec.msi
+ 2010-12-31 04:10 . 2010-12-31 04:10 516608 c:\windows\Installer\6920e5.msi
+ 2010-12-31 04:09 . 2010-12-31 04:09 513024 c:\windows\Installer\6920de.msi
+ 2010-12-31 04:09 . 2010-12-31 04:09 501248 c:\windows\Installer\6920d8.msi
+ 2010-12-31 04:09 . 2010-12-31 04:09 502272 c:\windows\Installer\6920d2.msi
+ 2010-12-31 04:09 . 2010-12-31 04:09 501248 c:\windows\Installer\6920c6.msi
+ 2010-12-31 04:07 . 2010-12-31 04:07 501248 c:\windows\Installer\6920a8.msi
+ 2010-12-19 17:32 . 2010-12-19 17:32 180224 c:\windows\Installer\47ceec.msi
+ 2010-12-19 17:31 . 2010-12-19 17:31 677376 c:\windows\Installer\47cee6.msi
+ 2010-12-31 16:03 . 2010-12-31 16:03 217864 c:\windows\Installer\{90120000-006E-0409-0000-0000000FF1CE}\misc.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2010-12-24 15:29 . 2010-12-24 15:29 380928 c:\windows\Installer\{0C682623-8F66-46A8-B9B3-93FE1E66A001}\iTunesIco.exe
+ 2009-04-04 00:11 . 2009-04-04 00:11 408424 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\WINWORD.EXE
+ 2009-03-06 08:37 . 2009-03-06 08:37 501640 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\SOA.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 282032 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\SCNPST64.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 273320 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\SCNPST32.DLL
+ 2009-03-06 08:06 . 2009-03-06 08:06 407904 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\RTFHTML.DLL
+ 2009-03-06 10:26 . 2009-03-06 10:26 770464 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\REGFORM.EXE
+ 2009-03-06 09:41 . 2009-03-06 09:41 589704 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\PUBCONV.DLL
+ 2009-01-08 16:59 . 2009-01-08 16:59 624520 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\PTXT9.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 420696 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\PSTPRX32.DLL
+ 2008-10-25 12:21 . 2008-10-25 12:21 136072 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\PRTF9.DLL
+ 2010-12-31 15:56 . 2010-12-31 15:56 350064 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\PPTPIA.DLL
+ 2009-04-04 00:04 . 2009-04-04 00:04 521064 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\POWERPNT.EXE
+ 2008-11-21 06:49 . 2008-11-21 06:49 169360 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\OUTLPH.DLL
+ 2009-03-06 08:05 . 2009-03-06 08:05 593288 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\OUTLMIME.DLL
+ 2008-10-31 03:24 . 2008-10-31 03:24 137552 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\OUTLCTL.DLL
+ 2008-10-25 13:52 . 2008-10-25 13:52 664968 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONBTTNOL.DLL
+ 2008-10-25 13:52 . 2008-10-25 13:52 604056 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONBTTNIE.DLL
+ 2009-03-06 10:55 . 2009-03-06 10:55 194448 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\OMSXP32.DLL
+ 2009-03-06 10:55 . 2009-03-06 10:55 661888 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\OMSMAIN.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 253808 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\OLKFSTUB.DLL
+ 2006-07-24 16:50 . 2006-07-24 16:50 125744 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\MSSTDFMT.DLL
+ 2008-11-04 10:13 . 2008-11-04 10:13 118128 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\MSCONV97.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 340304 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\MIMEDIR.DLL
+ 2010-12-31 15:56 . 2010-12-31 15:56 118176 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\IPOMINT.DLL
+ 2008-10-25 15:27 . 2008-10-25 15:27 177040 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\IPOLK.DLL
+ 2009-03-04 23:24 . 2009-03-04 23:24 138072 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\IMPMAIL.DLL
+ 2008-11-21 06:48 . 2008-11-21 06:48 116600 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\EMABLT32.DLL
+ 2009-03-06 08:05 . 2009-03-06 08:05 127336 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\CONTAB32.DLL
+ 2008-10-26 12:26 . 2008-10-26 12:26 162680 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ACCWIZ.DLL
+ 2006-10-26 20:05 . 2006-10-26 20:05 530760 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\XPAGE3C.DLL
+ 2006-10-27 02:49 . 2006-10-27 02:49 509200 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\WRD12CVR.DLL
+ 2010-12-31 04:15 . 2010-12-31 04:15 781104 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\WORDPIA.DLL
+ 2006-10-27 21:23 . 2006-10-27 21:23 347432 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\WINWORD.EXE
+ 2006-10-26 20:05 . 2006-10-26 20:05 126784 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\TWCUTCHR.DLL
+ 2006-07-28 21:21 . 2006-07-28 21:21 277320 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\SSGEN.DLL
+ 2006-10-27 03:18 . 2006-10-27 03:18 502608 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\SOA.DLL
+ 2006-10-27 02:06 . 2006-10-27 02:06 439600 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\SETUP.EXE
+ 2006-10-27 02:13 . 2006-10-27 02:13 503624 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\SELFCERT.EXE
+ 2006-10-27 02:55 . 2006-10-27 02:55 272744 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\SCNPST64.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 263520 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\SCNPST32.DLL
+ 2006-10-27 21:16 . 2006-10-27 21:16 408880 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\RTFHTML.DLL
+ 2006-10-27 03:42 . 2006-10-27 03:42 744808 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\REGFORM.EXE
+ 2006-10-27 02:09 . 2006-10-27 02:09 590144 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PUBCONV.DLL
+ 2006-10-27 21:04 . 2006-10-27 21:04 624456 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PTXT9.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 413472 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PSTPRX32.DLL
+ 2006-10-27 02:09 . 2006-10-27 02:09 136008 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PRTF9.DLL
+ 2010-12-31 04:15 . 2010-12-31 04:15 248632 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PPTPIA.DLL
+ 2006-10-27 03:07 . 2006-10-27 03:07 368968 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PPSLAX.DLL
+ 2006-10-27 21:04 . 2006-10-27 21:04 465200 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\POWERPNT.EXE
+ 2006-10-27 03:30 . 2006-10-27 03:30 482088 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PORTCONN.DLL
+ 2006-10-27 21:16 . 2006-10-27 21:16 176976 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OUTLPH.DLL
+ 2006-10-27 21:16 . 2006-10-27 21:16 594256 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OUTLMIME.DLL
+ 2006-07-27 00:53 . 2006-07-27 00:53 459080 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OUTLFLTR.DLL
+ 2006-10-27 21:16 . 2006-10-27 21:16 138512 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OUTLCTL.DLL
+ 2006-10-27 02:23 . 2006-10-27 02:23 782720 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ONSYNCPC.DLL
+ 2006-10-27 21:39 . 2006-10-27 21:39 687432 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ONBTTNOL.DLL
+ 2006-10-27 02:32 . 2006-10-27 02:32 604000 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ONBTTNIE.DLL
+ 2006-10-27 02:34 . 2006-10-27 02:34 192848 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OMSXP32.DLL
+ 2006-10-27 02:34 . 2006-10-27 02:34 660792 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OMSMAIN.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 254776 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OLKFSTUB.DLL
+ 2006-10-27 02:00 . 2006-10-27 02:00 285008 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OISGRAPH.DLL
+ 2006-10-27 02:00 . 2006-10-27 02:00 998208 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OISAPP.DLL
+ 2006-10-27 02:00 . 2006-10-27 02:00 274744 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OIS.EXE
+ 2006-10-20 14:37 . 2006-10-20 14:37 637744 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OGALEGIT.DLL
+ 2010-12-31 04:15 . 2010-12-31 04:15 416544 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OFFICE.DLL
+ 2006-10-27 02:06 . 2006-10-27 02:06 232816 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ODEPLOY.EXE
+ 2006-10-27 01:55 . 2006-10-27 01:55 538904 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSTORES.DLL
+ 2006-10-27 01:55 . 2006-10-27 01:55 145688 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSTORE.EXE
+ 2006-10-27 01:55 . 2006-10-27 01:55 832800 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSTORDB.EXE
+ 2006-10-26 19:56 . 2006-10-26 19:56 505136 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSSOAP30.DLL
+ 2006-10-27 01:50 . 2006-10-27 01:50 672024 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSQRY32.EXE
+ 2006-10-26 20:47 . 2006-10-26 20:47 727840 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSPROOF6.DLL
+ 2006-10-26 19:56 . 2006-10-26 19:56 436520 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSORUN.DLL
+ 2006-10-27 01:56 . 2006-10-27 01:56 864080 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSONPDRV.DLL
+ 2006-10-27 02:12 . 2006-10-27 02:12 428816 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSODCW.DLL
+ 2006-10-27 20:59 . 2006-10-27 20:59 161080 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSOCF.DLL
+ 2006-10-26 19:58 . 2006-10-26 19:58 117552 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSCONV97.DLL
+ 2006-10-26 19:58 . 2006-10-26 19:58 290576 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSCDM.DLL
+ 2006-10-27 21:04 . 2006-10-27 21:04 497504 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MORPH9.DLL
+ 2006-10-27 01:52 . 2006-10-27 01:52 460616 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MODHELP.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 340248 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MIMEDIR.DLL
+ 2006-10-27 01:55 . 2006-10-27 01:55 828704 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MEDCAT.DLL
+ 2010-12-31 04:16 . 2010-12-31 04:16 118112 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\IPOMINT.DLL
+ 2010-12-31 04:16 . 2010-12-31 04:16 609104 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\IPOMHOST.DLL
+ 2006-10-27 03:42 . 2006-10-27 03:42 176976 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\IPOLK.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 138024 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\IMPMAIL.DLL
+ 2006-10-27 02:00 . 2006-10-27 02:00 178488 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\IETAG.DLL
+ 2006-10-27 02:12 . 2006-10-27 02:12 173328 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\IEAWSDC.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 631080 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEWEBSERVICES.DLL
+ 2006-10-27 06:48 . 2006-10-27 06:48 572216 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEWEBPLATFORMSERVICES.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 268080 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEWEBBROWSERTOOL2.DLL
+ 2006-10-27 06:48 . 2006-10-27 06:48 955680 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEUTIL.DLL
+ 2006-10-27 06:48 . 2006-10-27 06:48 222512 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVESYSTEMSERVICES.DLL
+ 2006-10-27 06:48 . 2006-10-27 06:48 363304 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVESKETCHTOOL.DLL
+ 2006-10-27 06:48 . 2006-10-27 06:48 224048 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEPROJECTTOOLSET.DLL
+ 2006-10-27 06:48 . 2006-10-27 06:48 317736 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEMIGRATOR.EXE
+ 2006-10-27 06:48 . 2006-10-27 06:48 197920 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEGAMES.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 284976 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEFETCHSERVICES.DLL
+ 2006-10-27 06:48 . 2006-10-27 06:48 377136 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEDATAVIEWERTOOL.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 768304 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVECOMPONENTMGR.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 117584 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVECOMMUNICATIONSSTATUSANDCONTROL.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 300336 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVECALENDARTOOL.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 284448 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEAUDIO.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 338216 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVE.EXE
+ 2010-12-31 04:15 . 2010-12-31 04:15 150320 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GRAPHPIA.DLL
+ 2006-10-27 21:09 . 2006-10-27 21:09 983376 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\FPWEC.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 154960 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ENVELOPE.DLL
+ 2006-10-27 02:55 . 2006-10-27 02:55 116544 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\EMABLT32.DLL
+ 2006-10-27 01:48 . 2006-10-27 01:48 434528 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\DWTRIG20.EXE
+ 2006-10-27 02:12 . 2006-10-27 02:12 106824 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\DSSM.EXE
+ 2006-10-27 06:48 . 2006-10-27 06:48 234784 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\DRAT.EXE
+ 2006-10-27 02:12 . 2006-10-27 02:12 189760 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\CONTACTPICKER.DLL
+ 2006-10-27 21:16 . 2006-10-27 21:16 133936 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\CONTAB32.DLL
+ 2006-10-27 01:59 . 2006-10-27 01:59 205616 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\CLVIEW.EXE
+ 2006-10-27 21:41 . 2006-10-27 21:41 399640 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\CDLMSO.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 371568 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEXBE.DLL
+ 2006-10-27 21:40 . 2006-10-27 21:40 208760 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEWSS.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 224104 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACETXT.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 551800 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEREP.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 289648 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACER3X.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 260976 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACER2X.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 392048 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEPDE.DLL
+ 2006-10-27 21:00 . 2006-10-27 21:00 387960 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEOLEDB.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 279352 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEODBC.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 207736 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACELTS.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 629616 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEEXCL.DLL
+ 2006-10-27 02:13 . 2006-10-27 02:13 338800 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEEXCH.DLL
+ 2006-10-27 21:00 . 2006-10-27 21:00 191360 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEES.DLL
+ 2006-10-27 21:00 . 2006-10-27 21:00 576376 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACEDAO.DLL
+ 2006-10-27 03:18 . 2006-10-27 03:18 162616 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACCWIZ.DLL
+ 2006-10-27 21:00 . 2006-10-27 21:00 576376 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACACEDAO.DLL
+ 2010-12-31 04:16 . 2010-12-31 04:16 330520 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.Blueprints\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.Blueprints.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 105248 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.AddInManager\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.AddInManager.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 211736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.Adapter\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.Adapter.dll
+ 2010-12-31 15:56 . 2010-12-31 15:56 609160 c:\windows\assembly\GAC_MSIL\Microsoft.Office.InfoPath.Client.Internal.Host\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Infopath.Client.Internal.Host.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 367400 c:\windows\assembly\GAC_32\Microsoft.VisualStudio.Tools.Applications.InteropAdapter\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.InteropAdapter.dll
+ 2011-01-11 19:09 . 2011-01-11 19:09 117144 c:\windows\assembly\GAC_32\Microsoft.Office.InfoPath.Client.Internal.Host.Interop\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Infopath.Client.Internal.Host.Interop.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 423784 c:\windows\assembly\GAC\office\12.0.0.0__71e9bce111e9429c\OFFICE.DLL
+ 2010-12-31 04:16 . 2010-12-31 04:16 229376 c:\windows\assembly\GAC\mscomctl\10.0.4504.0__31bf3856ad364e35\MSCOMCTL.DLL
+ 2010-12-31 04:15 . 2010-12-31 04:15 371496 c:\windows\assembly\GAC\Microsoft.Vbe.Interop.Forms\11.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.Forms.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 870256 c:\windows\assembly\GAC\Microsoft.Office.Interop.Word\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Word.dll
+ 2010-12-31 04:15 . 2010-12-31 04:15 232248 c:\windows\assembly\GAC\Microsoft.Office.Interop.Publisher\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Publisher.dll
+ 2011-01-11 19:07 . 2011-01-11 19:07 350064 c:\windows\assembly\GAC\Microsoft.Office.Interop.PowerPoint\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.PowerPoint.dll
+ 2010-12-31 04:15 . 2010-12-31 04:15 920376 c:\windows\assembly\GAC\Microsoft.Office.Interop.Outlook\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Outlook.dll
+ 2010-12-31 04:15 . 2010-12-31 04:15 146232 c:\windows\assembly\GAC\Microsoft.Office.Interop.InfoPath\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.InfoPath.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 404296 c:\windows\assembly\GAC\Microsoft.Office.Interop.InfoPath.SemiTrust\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.InfoPath.SemiTrust.dll
+ 2010-12-31 15:55 . 2010-12-31 15:55 149352 c:\windows\assembly\GAC\Microsoft.Office.Interop.Graph\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Graph.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 110592 c:\windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\adodb.dll
+ 2009-08-18 05:33 . 2009-08-18 05:33 1193832 c:\windows\SysWOW64\FM20.DLL
+ 2010-09-28 21:44 . 2010-09-28 21:44 4184352 c:\windows\system32\usbaaplrc.dll
+ 2011-01-11 18:37 . 2010-12-14 16:20 1251840 c:\windows\system32\sdclt.exe
+ 2010-09-28 21:44 . 2010-09-28 21:44 4184352 c:\windows\system32\DriverStore\FileRepository\usbaapl64.inf_6a3cd96d\usbaaplrc.dll
+ 2010-04-20 02:29 . 2010-04-20 02:29 1721576 c:\windows\system32\DriverStore\FileRepository\netaapl64.inf_7e8ed503\wdfcoinstaller01009.dll
+ 2006-11-02 15:22 . 2011-01-11 18:40 2866387 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareLicensing\tokens.dat
- 2006-11-02 15:22 . 2010-10-28 12:41 2866387 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareLicensing\tokens.dat

uvita
Intermediate
Intermediate

Posts Posts : 163
Joined Joined : 2009-01-06
OS OS : Windows Vista with Media Edition
Points Points : 29910
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by uvita on 16th January 2011, 4:38 pm

000 c:\windows\Installer\a9f750.msi
+ 2010-12-24 04:12 . 2010-12-24 04:12 1554944 c:\windows\Installer\a9f4a0.msi
+ 2010-12-24 04:03 . 2010-12-24 04:03 1991680 c:\windows\Installer\a9f46b.msi
+ 2010-12-17 06:17 . 2010-12-17 06:17 3362304 c:\windows\Installer\9d2f1.msp
+ 2010-09-17 12:04 . 2010-09-17 12:04 9401856 c:\windows\Installer\75e2f.msp
+ 2010-10-22 00:10 . 2010-10-22 00:10 3995136 c:\windows\Installer\75e18.msp
+ 2010-02-21 07:03 . 2010-02-21 07:03 4472832 c:\windows\Installer\75dfd.msp
+ 2010-08-14 00:01 . 2010-08-14 00:01 8993280 c:\windows\Installer\75de0.msp
+ 2010-08-13 23:59 . 2010-08-13 23:59 8182272 c:\windows\Installer\75dc9.msp
+ 2010-08-14 00:02 . 2010-08-14 00:02 2545664 c:\windows\Installer\75db2.msp
+ 2010-10-08 00:43 . 2010-10-08 00:43 1980416 c:\windows\Installer\75d84.msp
+ 2010-08-14 00:00 . 2010-08-14 00:00 9404928 c:\windows\Installer\75d6d.msp
+ 2009-08-05 13:49 . 2009-08-05 13:49 3457024 c:\windows\Installer\75d55.msp
+ 2010-03-25 00:54 . 2010-03-25 00:54 3126272 c:\windows\Installer\75d3b.msp
+ 2010-03-25 00:54 . 2010-03-25 00:54 2516992 c:\windows\Installer\75d3a.msp
+ 2009-07-27 10:31 . 2009-07-27 10:31 3738624 c:\windows\Installer\75d1e.msp
+ 2010-04-24 23:07 . 2010-04-24 23:07 4667392 c:\windows\Installer\75d07.msp
+ 2010-05-21 01:57 . 2010-05-21 01:57 4989952 c:\windows\Installer\75ced.msp
+ 2010-05-21 01:57 . 2010-05-21 01:57 5907456 c:\windows\Installer\75cec.msp
+ 2009-10-16 13:08 . 2009-10-16 13:08 2237952 c:\windows\Installer\75cd2.msp
+ 2009-08-18 19:08 . 2009-08-18 19:08 1373696 c:\windows\Installer\75ca5.msp
+ 2010-08-04 21:12 . 2010-08-04 21:12 1004544 c:\windows\Installer\75c77.msp
+ 2009-04-14 10:49 . 2009-04-14 10:49 1922560 c:\windows\Installer\6e570.msp
+ 2009-04-14 10:18 . 2009-04-14 10:18 9684480 c:\windows\Installer\6e568.msp
+ 2009-04-14 10:51 . 2009-04-14 10:51 1303040 c:\windows\Installer\6e556.msp
+ 2009-02-26 01:08 . 2009-02-26 01:08 8311808 c:\windows\Installer\6e53b.msp
+ 2009-04-14 09:20 . 2009-04-14 09:20 9573376 c:\windows\Installer\6e51c.msp
+ 2009-04-04 23:10 . 2009-04-04 23:10 1282560 c:\windows\Installer\6e513.msp
+ 2009-04-04 23:10 . 2009-04-04 23:10 7888384 c:\windows\Installer\6e50b.msp
+ 2009-04-04 23:10 . 2009-04-04 23:10 9926144 c:\windows\Installer\6e501.msp
+ 2009-04-04 23:05 . 2009-04-04 23:05 7999488 c:\windows\Installer\6e4f6.msp
+ 2009-04-04 16:14 . 2009-04-04 16:14 1094656 c:\windows\Installer\6e321.msp
+ 2010-11-21 05:35 . 2010-11-21 05:35 3359744 c:\windows\Installer\6e30c.msp
+ 2009-04-14 10:50 . 2009-04-14 10:50 5191680 c:\windows\Installer\6e2f5.msp
+ 2010-12-31 04:12 . 2010-12-31 04:12 1640960 c:\windows\Installer\692110.msi
+ 2010-12-31 04:12 . 2010-12-31 04:12 1652736 c:\windows\Installer\692104.msi
+ 2010-12-31 04:11 . 2010-12-31 04:11 1652736 c:\windows\Installer\6920fe.msi
+ 2010-12-31 04:11 . 2010-12-31 04:11 1652736 c:\windows\Installer\6920f8.msi
+ 2010-12-31 04:09 . 2010-12-31 04:09 2319872 c:\windows\Installer\6920cc.msi
+ 2010-12-31 04:08 . 2010-12-31 04:08 1647616 c:\windows\Installer\6920c0.msi
+ 2010-12-31 04:08 . 2010-12-31 04:08 1640960 c:\windows\Installer\6920ba.msi
+ 2010-12-31 04:08 . 2010-12-31 04:08 2022912 c:\windows\Installer\6920b4.msi
+ 2010-12-31 04:07 . 2010-12-31 04:07 1713152 c:\windows\Installer\6920ae.msi
+ 2010-12-31 04:06 . 2010-12-31 04:06 2397184 c:\windows\Installer\6920a2.msi
+ 2010-12-19 17:54 . 2010-12-19 17:54 2283008 c:\windows\Installer\5c4f6d.msi
+ 2010-12-24 15:29 . 2010-12-24 15:29 6252032 c:\windows\Installer\4ca36.msi
+ 2010-12-24 15:24 . 2010-12-24 15:24 3462656 c:\windows\Installer\4ca2e.msi
+ 2010-12-31 04:24 . 2011-01-11 19:17 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
+ 2010-12-31 04:24 . 2011-01-11 19:17 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2009-04-03 23:57 . 2009-04-03 23:57 4671320 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\WRD12CNV.DLL
+ 2008-11-21 09:12 . 2008-11-21 09:12 3750256 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\VVIEWER.DLL
+ 2008-10-25 15:35 . 2008-10-25 15:35 1847160 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\VVIEWDWG.DLL
+ 2008-08-26 04:50 . 2008-08-26 04:50 2585592 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\VBE6.DLL
+ 2008-11-10 08:41 . 2008-11-10 08:41 2014584 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\PPTVIEW.EXE
+ 2009-04-04 00:04 . 2009-04-04 00:04 8468840 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\PPCORE.DLL
+ 2009-03-06 10:00 . 2009-03-06 10:00 6596472 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONMAIN.DLL
+ 2008-11-10 16:49 . 2008-11-10 16:49 1165680 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONLIBS.DLL
+ 2008-11-25 04:16 . 2008-11-25 04:16 1020776 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONENOTE.EXE
+ 2009-03-06 08:05 . 2009-03-06 08:05 2964336 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\OLMAPI32.DLL
+ 2009-02-05 17:36 . 2009-02-05 17:36 1640800 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\OGL.DLL
+ 2009-03-06 09:41 . 2009-03-06 09:41 9589096 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\MSPUB.EXE
+ 2009-03-06 10:26 . 2009-03-06 10:26 5291376 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\IPEDITOR.DLL
+ 2009-03-06 10:26 . 2009-03-06 10:26 5466488 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\IPDESIGN.DLL
+ 2008-11-04 06:40 . 2008-11-04 06:40 1442160 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\INFOPATH.EXE
+ 2008-11-21 05:06 . 2008-11-21 05:06 1194848 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\FM20.DLL
+ 2006-10-26 20:05 . 2006-10-26 20:05 1181520 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\XIMAGE3B.DLL
+ 2006-10-27 21:11 . 2006-10-27 21:11 4235560 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\WRD12CNV.DLL
+ 2006-10-27 04:58 . 2006-10-27 04:58 3732792 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\VVIEWER.DLL
+ 2006-10-27 05:00 . 2006-10-27 05:00 1841984 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\VVIEWDWG.DLL
+ 2006-09-30 06:42 . 2006-09-30 06:42 2583344 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\VBE6.DLL
+ 2006-10-27 20:57 . 2006-10-27 20:57 2330968 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\STSLIST.DLL
+ 2006-10-27 01:52 . 2006-10-27 01:52 2012480 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PPTVIEW.EXE
+ 2006-10-27 21:04 . 2006-10-27 21:04 7980848 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\PPCORE.DLL
+ 2006-09-15 22:25 . 2006-09-15 22:25 3611416 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OUTLFLTR.DAT
+ 2006-10-27 02:07 . 2006-10-27 02:07 6536992 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OSETUP.DLL
+ 2006-10-27 21:03 . 2006-10-27 21:03 6579512 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ONMAIN.DLL
+ 2006-10-27 02:24 . 2006-10-27 02:24 1165112 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ONLIBS.DLL
+ 2006-10-27 21:03 . 2006-10-27 21:03 1018664 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ONENOTE.EXE
+ 2006-10-27 21:16 . 2006-10-27 21:16 2939704 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OLMAPI32.DLL
+ 2006-10-27 21:18 . 2006-10-27 21:18 1658152 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OGL.DLL
+ 2006-10-27 02:14 . 2006-10-27 02:14 7033152 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OFFOWC.DLL
+ 2006-10-27 02:42 . 2006-10-27 02:42 8423224 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OARTCONV.DLL
+ 2006-10-26 20:47 . 2006-10-26 20:47 1512304 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\NLSD0000.DLL
+ 2006-10-27 21:04 . 2006-10-27 21:04 9581360 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSPUB.EXE
+ 2006-10-27 02:00 . 2006-10-27 02:00 6635320 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSORES.DLL
+ 2006-10-27 21:10 . 2006-10-27 21:10 5281592 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\IPEDITOR.DLL
+ 2006-10-27 21:10 . 2006-10-27 21:10 5456704 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\IPDESIGN.DLL
+ 2006-10-27 21:10 . 2006-10-27 21:10 1439032 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\INFOPATH.EXE
+ 2006-10-27 21:37 . 2006-10-27 21:37 1396008 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEUIFRAMEWORK.DLL
+ 2006-10-27 21:38 . 2006-10-27 21:38 4746536 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVETRANSCEIVER.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 1163048 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVETEXTTOOLS.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 2738472 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVESTORAGEMGR.DLL
+ 2006-10-27 06:48 . 2006-10-27 06:48 2210608 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVESHELLEXTENSIONS.DLL
+ 2006-10-27 21:38 . 2006-10-27 21:38 7053096 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVERESOURCE.DLL
+ 2006-10-27 06:48 . 2006-10-27 06:48 1555232 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEMISC.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 3071288 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEDOCUMENTSHARETOOL.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 1359648 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVECRYPTO.DLL
+ 2006-10-27 21:38 . 2006-10-27 21:38 3508544 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVECOMMUNICATIONSSERVICES.DLL
+ 2006-10-27 21:37 . 2006-10-27 21:37 2689336 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVECOMMONCOMPONENTS.DLL
+ 2006-10-27 21:38 . 2006-10-27 21:38 6191400 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GROOVEACCOUNTMGR.DLL
+ 2006-10-27 02:02 . 2006-10-27 02:02 2526520 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\GRAPH.EXE
+ 2006-10-27 01:21 . 2006-10-27 01:21 1682232 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\FPSRVUTL.DLL
+ 2006-10-26 20:10 . 2006-10-26 20:10 1190688 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\FM20.DLL
+ 2010-12-31 04:15 . 2010-12-31 04:15 1276720 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\EXCELPIA.DLL
+ 2006-10-27 21:00 . 2006-10-27 21:00 1751904 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\ACECORE.DLL
+ 2010-12-31 15:55 . 2010-12-31 15:55 1279848 c:\windows\assembly\GAC\Microsoft.Office.Interop.Excel\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Excel.dll
+ 2010-12-31 04:15 . 2010-12-31 04:15 1612592 c:\windows\assembly\GAC\Microsoft.Office.Interop.Access\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Access.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 8007680 c:\windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
+ 2010-12-31 04:16 . 2010-12-31 04:16 1215328 c:\windows\assembly\GAC\IACore\1.7.6223.0__31bf3856ad364e35\IACore.dll
+ 2006-11-02 12:33 . 2011-01-11 18:53 10747904 c:\windows\system32\SMI\Store\Machine\schema.dat
- 2006-11-02 12:33 . 2010-12-17 00:40 10747904 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
+ 2006-11-02 12:35 . 2011-01-11 18:46 39334856 c:\windows\system32\mrt.exe
+ 2009-08-18 19:19 . 2009-08-18 19:19 10098688 c:\windows\Installer\9d315.msp
+ 2011-01-11 18:44 . 2011-01-11 18:44 20304384 c:\windows\Installer\9d2fd.msp
+ 2010-12-21 19:06 . 2010-12-21 19:06 11570688 c:\windows\Installer\9d2da.msp
+ 2009-04-14 10:21 . 2009-04-14 10:21 15303168 c:\windows\Installer\6e55f.msp
+ 2009-04-14 09:46 . 2009-04-14 09:46 15438848 c:\windows\Installer\6e54d.msp
+ 2009-05-07 15:04 . 2009-05-07 15:04 18341376 c:\windows\Installer\6e544.msp
+ 2009-04-14 10:56 . 2009-04-14 10:56 20498944 c:\windows\Installer\6e525.msp
+ 2009-04-04 23:09 . 2009-04-04 23:09 15190016 c:\windows\Installer\6e329.msp
+ 2009-04-04 17:36 . 2009-04-04 17:36 21390848 c:\windows\Installer\6e322.msp
+ 2009-04-14 09:22 . 2009-04-14 09:22 19840000 c:\windows\Installer\6e315.msp
+ 2010-12-31 04:23 . 2010-12-31 04:24 18181632 c:\windows\Installer\692120.msi
+ 2009-04-04 00:01 . 2009-04-04 00:01 15108448 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\XL12CNV.EXE
+ 2009-04-04 00:11 . 2009-04-04 00:11 17740136 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\WWLIB.DLL
+ 2009-03-06 08:06 . 2009-03-06 08:06 12707696 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\OUTLOOK.EXE
+ 2009-04-04 00:46 . 2009-04-04 00:46 17314688 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\MSO.DLL
+ 2009-03-06 08:37 . 2009-03-06 08:37 10222432 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\MSACCESS.EXE
+ 2009-04-04 00:11 . 2009-04-04 00:11 18330984 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\EXCEL.EXE
+ 2006-10-27 03:13 . 2006-10-27 03:13 14674216 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\XL12CNV.EXE
+ 2006-10-27 21:23 . 2006-10-27 21:23 17483560 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\WWLIB.DLL
+ 2006-10-27 21:16 . 2006-10-27 21:16 12813096 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OUTLOOK.EXE
+ 2006-10-27 21:14 . 2006-10-27 21:14 14151456 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OART.DLL
+ 2006-10-27 21:26 . 2006-10-27 21:26 16870712 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSO.DLL
+ 2006-10-27 21:01 . 2006-10-27 21:01 10371880 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\MSACCESS.EXE
+ 2006-10-27 21:07 . 2006-10-27 21:07 17891112 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\EXCEL.EXE
+ 2009-04-04 23:08 . 2009-04-04 23:08 343058432 c:\windows\Installer\6e4e7.msp
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WMPNSCFG"="c:\program files (x86)\Windows Media Player\WMPNSCFG.exe" [BU]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"FATrayAlert"="c:\program files (x86)\Sensible Vision\Fast Access\FATrayMon.exe" [2008-09-05 95488]
"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe" [2010-09-14 340520]
"FAStartup"="" [BU]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-10 35736]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2010-12-13 421160]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\FastAccess]
2008-09-05 22:16 140544 ----a-w- c:\program files (x86)\Sensible Vision\Fast Access\FALogNot.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~2\KASPER~1\KASPER~1\mzvkbd3.dll c:\progra~2\KASPER~1\KASPER~1\sbhook.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux3"=wdmaud.drv

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate1c9f02871325d5f;Google Update Service (gupdate1c9f02871325d5f);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-06-18 133104]
R3 FACAP;facap, FastAccess Video Capture;c:\windows\system32\DRIVERS\facap.sys [2008-08-02 243840]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2010-09-28 51712]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2008-05-06 14464]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 1020768]
S0 KLBG;Kaspersky Lab Boot Guard Driver;c:\windows\system32\DRIVERS\klbg.sys [2009-10-15 40464]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2009-11-03 27152]
S2 FAService;FAService;c:\program files (x86)\Sensible Vision\Fast Access\FAService.exe [2008-09-05 2340096]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2008-07-15 126464]
S3 itecir;ITECIR Infrared Receiver;c:\windows\system32\DRIVERS\itecir.sys [2007-12-18 59392]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2008-02-24 239104]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-10-03 21008]
S3 OA001Ufd;Creative Camera OA001 Upper Filter Driver;c:\windows\system32\DRIVERS\OA001Ufd.sys [2009-03-06 159840]
S3 OA001Vid;Creative Camera OA001 Function Driver;c:\windows\system32\DRIVERS\OA001Vid.sys [2009-03-09 319840]

.
Contents of the 'Scheduled Tasks' folder

2011-01-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-06-18 15:21]

2011-01-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-06-18 15:21]
.

--------- x86-64 -----------


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2008-06-02 3863040]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-08-26 153624]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-08-26 225816]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-08-26 199704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_Dlls"=0x1
"AppInit_DLLs"=c:\progra~2\KASPER~1\KASPER~1\x64\sbhook64.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = [You must be registered and logged in to see this link.]
mLocal Page = %SystemRoot%\system32\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Add to Anti-Banner - c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Patel\AppData\Roaming\Mozilla\Firefox\Profiles\46mb2dv2.default\
FF - prefs.js: browser.startup.homepage - [You must be registered and logged in to see this link.]
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Kaspersky URL Advisor: [You must be registered and logged in to see this link.] - c:\program files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - Ext: AnyColor: [You must be registered and logged in to see this link.] - %profile%\extensions\anycolor.pavlos256@gmail.com
FF - Ext: ColorfulTabs: {0545b830-f0aa-4d7e-8820-50a4629a56fe} - %profile%\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Personas: [You must be registered and logged in to see this link.] - %profile%\extensions\personas@christopher.beard
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
.
- - - - ORPHANS REMOVED - - - -

Notify-igfxcui - (no file)
Notify-klogon - (no file)


.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10e.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10e.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe
.
**************************************************************************
.
Completion time: 2011-01-16 10:26:44 - machine was rebooted
ComboFix-quarantined-files.txt 2011-01-16 16:26
ComboFix2.txt 2010-12-17 17:45

Pre-Run: 199,648,845,824 bytes free
Post-Run: 199,629,545,472 bytes free

- - End Of File - - 8D29513F2E5C9DD3B9ABBA1DDBDE31B0

uvita
Intermediate
Intermediate

Posts Posts : 163
Joined Joined : 2009-01-06
OS OS : Windows Vista with Media Edition
Points Points : 29910
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by Belahzur on 17th January 2011, 1:08 am

Run ESET Online Scan
Please do an online scan with [You must be registered and logged in to see this link.]. Please use Internet Explorer as it uses ActiveX.

  • Check (tick) this box: YES, I accept the Terms of Use.
  • Click on the Start button next to it.
  • When prompted to run ActiveX. click Yes.
  • You will be asked to install an ActiveX. Click Install.
  • Once installed, the scanner will be initialized.
  • After the scanner is initialized, click Start.
  • Check (tick) Remove found threats box.
  • Check (tick) Scan unwanted applications.
  • Click on Scan.
  • It will start scanning. Please be patient.
  • Once the scan is done, the log will be saved here: C:\Program Files\esetonlinescanner\log.txt.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245121
# Likes # Likes : 1

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by uvita on 17th January 2011, 8:09 pm

hello,

here is the log text:

ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK

uvita
Intermediate
Intermediate

Posts Posts : 163
Joined Joined : 2009-01-06
OS OS : Windows Vista with Media Edition
Points Points : 29910
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by Belahzur on 18th January 2011, 1:15 am

Hello.
How is the machine running now?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245121
# Likes # Likes : 1

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by uvita on 6th February 2011, 4:13 am

thanks for the help.......sorry for late thanks.

As for how machine...Sometimes I thinks it fine and sometimes net is slow in loading

uvita
Intermediate
Intermediate

Posts Posts : 163
Joined Joined : 2009-01-06
OS OS : Windows Vista with Media Edition
Points Points : 29910
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Mozilla Firefox slow;not sure if its virus or not,,,help

Post by Belahzur on 7th February 2011, 1:00 am

What browser are you using?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245121
# Likes # Likes : 1

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum