[RESOLVED] Had some Fake Alerts, now computer is very slow.

**krh1326** · March 16th, 2011, 10:43 PM

OTL logfile created on: 3/16/2011 10:26:45 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Ken Henrikson\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 77.00% Memory free
5.00 Gb Paging File | 4.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465.75 Gb Total Space | 241.79 Gb Free Space | 51.91% Space Free | Partition Type: NTFS
Drive D: | 323.04 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: ASUS-DESKTOP | User Name: Ken Henrikson | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/03/16 22:24:33 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ken Henrikson\Desktop\OTL.exe
PRC - [2011/01/17 17:15:32 | 000,822,560 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee.com\Agent\mcupdate.exe
PRC - [2010/11/22 19:15:16 | 001,193,848 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2010/10/13 23:28:54 | 000,188,136 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
PRC - [2010/10/13 23:28:54 | 000,171,168 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
PRC - [2010/10/13 23:28:54 | 000,141,792 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\mfevtps.exe
PRC - [2010/03/10 11:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
PRC - [2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/02/28 18:39:08 | 000,053,032 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe
PRC - [2008/02/28 18:38:58 | 001,440,552 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe

========== Modules (SafeList) ==========

MOD - [2011/03/16 22:24:33 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ken Henrikson\Desktop\OTL.exe
MOD - [2010/08/23 12:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (SessionLauncher)
SRV - [2010/10/13 23:28:54 | 000,188,136 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -- (mfefire)
SRV - [2010/10/13 23:28:54 | 000,171,168 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV - [2010/10/13 23:28:54 | 000,141,792 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\WINDOWS\system32\mfevtps.exe -- (mfevtp)
SRV - [2010/10/07 21:34:28 | 000,364,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2010/03/10 11:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McProxy)
SRV - [2010/03/10 11:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV - [2010/03/10 11:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV - [2010/03/10 11:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV - [2010/03/10 11:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV - [2010/01/15 08:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2008/06/23 10:08:34 | 000,362,992 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe -- (Roxio Upnp Server 10)
SRV - [2008/06/23 10:08:28 | 000,313,840 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe -- (Roxio UPnP Renderer 10)
SRV - [2008/06/23 10:06:18 | 000,309,744 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe -- (RoxLiveShare10)
SRV - [2008/06/23 10:06:10 | 000,166,384 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe -- (RoxWatch10)
SRV - [2008/06/23 10:05:38 | 001,120,752 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe -- (RoxMediaDB10)
SRV - [2008/02/28 18:39:08 | 000,053,032 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe -- (NeroRegInCDSrv)
SRV - [2008/02/28 18:38:58 | 001,440,552 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe -- (InCDsrvR)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Running] -- -- (catchme)
DRV - [2010/10/13 23:28:54 | 000,386,840 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2010/10/13 23:28:54 | 000,313,288 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfefirek.sys -- (mfefirek)
DRV - [2010/10/13 23:28:54 | 000,152,960 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2010/10/13 23:28:54 | 000,095,600 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2010/10/13 23:28:54 | 000,088,544 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendiskmp)
DRV - [2010/10/13 23:28:54 | 000,088,544 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendisk)
DRV - [2010/10/13 23:28:54 | 000,084,264 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mferkdet.sys -- (mferkdet)
DRV - [2010/10/13 23:28:54 | 000,084,072 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\mfetdi2k.sys -- (mfetdi2k)
DRV - [2010/10/13 23:28:54 | 000,055,840 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cfwids.sys -- (cfwids)
DRV - [2010/10/13 23:28:54 | 000,052,104 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2009/09/11 12:48:04 | 000,066,056 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2009/09/11 12:47:54 | 000,014,984 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2009/09/11 12:47:32 | 000,035,592 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2009/09/11 12:47:22 | 000,022,792 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2009/07/13 20:17:44 | 000,009,464 | ---- | M] (Sonic Solutions) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\cdralw2k.ROX.sys -- (Cdralw2k)
DRV - [2009/07/13 20:17:44 | 000,009,336 | ---- | M] (Sonic Solutions) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\cdr4_xp.ROX.sys -- (Cdr4_xp)
DRV - [2008/12/18 23:39:30 | 000,993,280 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV - [2008/08/24 15:22:40 | 000,014,208 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2008/08/05 00:29:28 | 000,039,456 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nvhda32.sys -- (NVHDA)
DRV - [2008/07/31 23:36:26 | 000,022,016 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008/07/31 23:36:20 | 000,054,784 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2008/06/23 11:11:24 | 000,057,328 | ---- | M] (Sonic Solutions) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\RxFilter.sys -- (RxFilter)
DRV - [2008/02/28 18:38:58 | 000,040,360 | ---- | M] (Nero AG) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)
DRV - [2008/02/28 18:38:48 | 000,128,424 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2008/02/28 18:38:48 | 000,038,952 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2008/02/14 02:12:00 | 001,389,056 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\monfilt.sys -- (monfilt)
DRV - [2007/12/17 05:14:06 | 000,012,400 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2007/04/16 22:46:00 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2004/08/14 20:00:00 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004/01/06 17:57:24 | 000,887,431 | ---- | M] (Conexant) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\winachcf.sys -- (Winachcf)
DRV - [2001/08/17 12:49:20 | 000,022,848 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LwUsbHid.sys -- (LwUsbHid)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-329068152-796845957-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://msnmember.msn.com/
IE - HKU\S-1-5-21-329068152-796845957-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-329068152-796845957-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 72 63 C9 9B 87 D4 CB 01 [binary data]
IE - HKU\S-1-5-21-329068152-796845957-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://msnmember.msn.com/"
FF - prefs.js..extensions.enabledItems: [email protected]:4.5
FF - prefs.js..extensions.enabledItems: [email protected]:5.0.31.0

FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/02/26 18:10:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/19 20:05:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/19 20:05:10 | 000,000,000 | ---D | M]

[2010/03/21 10:04:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Ken Henrikson\Application Data\Mozilla\Extensions
[2011/03/16 17:48:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Ken Henrikson\Application Data\Mozilla\Firefox\Profiles\ovu13fza.default\extensions
[2010/04/28 18:26:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Ken Henrikson\Application Data\Mozilla\Firefox\Profiles\ovu13fza.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/10/14 18:22:01 | 000,000,000 | ---D | M] (Battlefield Heroes Updater) -- C:\Documents and Settings\Ken Henrikson\Application Data\Mozilla\Firefox\Profiles\ovu13fza.default\extensions\[email protected]
[2010/03/21 10:04:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/02/26 18:10:15 | 000,000,000 | ---D | M] (HP Smart Web Printing) -- C:\PROGRAM FILES\HP\DIGITAL IMAGING\SMART WEB PRINTING\MOZILLAADDON3
[2010/10/13 23:28:54 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Mozilla Firefox\components\Scriptff.dll

O1 HOSTS File: ([2011/03/16 17:01:24 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110112071253.dll (McAfee, Inc.)
O4 - HKLM..\Run: [DMXLauncher] C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe ()
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatchTray10.exe (Sonic Solutions)
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-329068152-796845957-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-329068152-796845957-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-329068152-796845957-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-329068152-796845957-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O15 - HKU\S-1-5-21-329068152-796845957-725345543-1003\..Trusted Domains: //@install.mar@/ ([]msni in My Computer)
O15 - HKU\S-1-5-21-329068152-796845957-725345543-1003\..Trusted Domains: //@mail.mar@/ ([]msni in Local intranet)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsu...?1265501466609 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/micr...?1265566893765 (MUWebControl Class)
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} https://www.battlefieldheroes.com/st...r_5.0.31.0.cab (Battlefield Heroes Updater)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/...Uploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/ge...sh/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 167.206.254.1 167.206.254.2 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/02/06 18:19:25 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2005/06/08 13:39:22 | 006,475,776 | R--- | M] (FIRAXIS Games, Inc.) - D:\Autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2005/06/08 13:39:23 | 000,000,027 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.divxa32 - C:\WINDOWS\System32\DivXa32.acm (Packed With Joy !)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codec - C:\WINDOWS\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.ffds - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.vp60 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.vp61 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.vp62 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: wave3 - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16902109354000384)

========== Files/Folders - Created Within 30 Days ==========

[2011/03/16 22:24:37 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Ken Henrikson\Desktop\OTL.exe
[2011/03/16 21:24:18 | 001,377,112 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Ken Henrikson\Desktop\TDSSKiller.exe
[2011/03/16 20:49:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee
[2011/03/16 16:47:32 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011/03/16 16:45:36 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011/03/16 16:45:36 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011/03/16 16:45:36 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011/03/16 16:45:36 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011/03/16 16:41:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011/03/16 16:41:09 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/03/16 16:33:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ken Henrikson\Recent
[2011/03/13 19:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ken Henrikson\Desktop\Malware
[2011/03/11 19:07:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ken Henrikson\Start Menu\Programs\Firaxis Games
[2011/03/11 19:07:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Firaxis Games
[2011/03/11 19:01:22 | 000,000,000 | ---D | C] -- C:\Program Files\Firaxis Games
[2011/03/07 22:01:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\5150 Drivers
[2011/03/02 17:59:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ken Henrikson\My Documents\Engine Issues
[2011/03/02 17:16:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Ranger Rebuild
[2011/02/26 18:08:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP Product Assistant
[2011/02/26 18:07:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2011/02/26 15:02:58 | 000,000,000 | ---D | C] -- C:\Program Files\Cisco Systems
[2011/02/26 14:54:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Cisco Systems
[2011/02/24 23:15:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ken Henrikson\My Documents\Downloads
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/03/16 22:24:33 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ken Henrikson\Desktop\OTL.exe
[2011/03/16 21:47:22 | 000,133,632 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\Desktop\RKUnhookerLE.EXE
[2011/03/16 21:21:22 | 001,263,721 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\Desktop\tdsskiller.zip
[2011/03/16 20:53:55 | 000,502,644 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/03/16 20:53:54 | 000,088,042 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/03/16 20:49:39 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/03/16 20:49:20 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job
[2011/03/16 20:49:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/03/16 17:01:24 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011/03/16 16:47:37 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2011/03/16 16:44:57 | 004,288,660 | R--- | M] () -- C:\Documents and Settings\Ken Henrikson\Desktop\ComboFix.exe
[2011/03/15 19:27:21 | 000,007,824 | ---- | M] () -- C:\WINDOWS\R0SYSTEM.INI
[2011/03/15 19:27:16 | 000,000,450 | ---- | M] () -- C:\WINDOWS\r0viewinfo.ini
[2011/03/15 19:27:14 | 000,002,863 | ---- | M] () -- C:\WINDOWS\R0EDIT.INI
[2011/03/15 19:21:28 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\R0P
[2011/03/15 19:19:56 | 000,000,941 | ---- | M] () -- C:\WINDOWS\R0DB.INI
[2011/03/15 18:34:03 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011/03/13 18:47:25 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\defogger_reenable
[2011/03/12 13:44:16 | 003,450,041 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\My Documents\ACL07(1).pdf
[2011/03/10 18:08:49 | 000,002,483 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\Desktop\Word.lnk
[2011/03/10 12:27:50 | 001,377,112 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Ken Henrikson\Desktop\TDSSKiller.exe
[2011/03/07 21:08:34 | 000,192,000 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/03/07 19:50:55 | 000,303,477 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\My Documents\TorqueSpecs.pdf
[2011/03/07 00:29:07 | 000,000,184 | ---- | M] () -- C:\Documents and Settings\All Users\Documents\Dell Number.rtf
[2011/03/06 23:42:07 | 000,232,968 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011/03/06 23:42:07 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011/03/06 23:41:49 | 000,232,968 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011/03/05 15:10:40 | 000,139,080 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011/03/05 15:10:28 | 000,270,240 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2011/03/03 18:58:49 | 000,000,441 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\My Documents\SharedDocs.lnk
[2011/02/28 16:19:42 | 000,315,252 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\My Documents\638 BA.pdf
[2011/02/27 08:43:56 | 000,270,240 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2011/02/26 23:02:23 | 000,294,072 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/02/26 18:22:42 | 000,193,049 | ---- | M] () -- C:\WINDOWS\hpoins43.dat
[2011/02/26 18:08:28 | 000,001,018 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\HP Solution Center.lnk
[2011/02/26 18:07:36 | 000,001,985 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Windows Live Photo Gallery.lnk
[2011/02/25 20:42:40 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/02/23 12:24:30 | 000,083,325 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\My Documents\https_2__ui.labor.state.ny.us_UBOC_uiGateway.pdf
[2011/02/23 12:24:11 | 000,083,323 | ---- | M] () -- C:\Documents and Settings\Ken Henrikson\My Documents\https___ui.labor.state.ny.us_UBOC_uiGateway.pdf
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/03/16 21:47:35 | 000,133,632 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\Desktop\RKUnhookerLE.EXE
[2011/03/16 21:21:22 | 001,263,721 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\Desktop\tdsskiller.zip
[2011/03/16 16:47:37 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2011/03/16 16:47:34 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2011/03/16 16:45:36 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011/03/16 16:45:36 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011/03/16 16:45:36 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011/03/16 16:45:36 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011/03/16 16:45:36 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011/03/15 21:33:30 | 004,288,660 | R--- | C] () -- C:\Documents and Settings\Ken Henrikson\Desktop\ComboFix.exe
[2011/03/13 18:47:25 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\defogger_reenable
[2011/03/12 13:44:05 | 003,450,041 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\My Documents\ACL07(1).pdf
[2011/03/07 21:59:28 | 000,000,184 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\Dell Number.rtf
[2011/03/07 19:50:55 | 000,303,477 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\My Documents\TorqueSpecs.pdf
[2011/02/28 16:19:42 | 000,315,252 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\My Documents\638 BA.pdf
[2011/02/26 18:36:47 | 000,000,441 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\My Documents\SharedDocs.lnk
[2011/02/26 18:08:28 | 000,001,018 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\HP Solution Center.lnk
[2011/02/26 18:07:36 | 000,001,985 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Windows Live Photo Gallery.lnk
[2011/02/26 17:59:52 | 000,193,049 | ---- | C] () -- C:\WINDOWS\hpoins43.dat
[2011/02/26 17:59:52 | 000,000,675 | ---- | C] () -- C:\WINDOWS\hpomdl43.dat
[2011/02/26 15:04:27 | 000,001,810 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Cisco Connect.lnk
[2011/02/23 12:24:29 | 000,083,325 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\My Documents\https_2__ui.labor.state.ny.us_UBOC_uiGateway.pdf
[2011/02/23 12:24:09 | 000,083,323 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\My Documents\https___ui.labor.state.ny.us_UBOC_uiGateway.pdf
[2011/01/22 23:02:51 | 000,000,144 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\Local Settings\Application Data\rx_image32.Cache
[2011/01/22 22:14:48 | 000,010,540 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\Local Settings\Application Data\rx_audio.Cache
[2011/01/22 19:52:22 | 000,041,697 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2010/10/18 20:16:25 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010/10/18 20:16:23 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010/10/18 20:16:23 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010/08/30 19:19:31 | 000,000,281 | ---- | C] () -- C:\WINDOWS\EReg072.dat
[2010/05/24 15:33:00 | 004,670,829 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2010/05/24 15:33:00 | 001,529,856 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll
[2010/05/24 15:33:00 | 001,447,921 | ---- | C] () -- C:\WINDOWS\System32\ffmpegmt.dll
[2010/05/24 15:33:00 | 000,877,385 | ---- | C] () -- C:\WINDOWS\System32\ff_x264.dll
[2010/05/24 15:33:00 | 000,810,113 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010/05/24 15:33:00 | 000,336,384 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll
[2010/05/24 15:33:00 | 000,324,096 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll
[2010/05/24 15:33:00 | 000,248,320 | ---- | C] () -- C:\WINDOWS\System32\ff_kernelDeint.dll
[2010/05/24 15:33:00 | 000,216,576 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll
[2010/05/24 15:33:00 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll
[2010/05/24 15:33:00 | 000,145,408 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll
[2010/05/24 15:33:00 | 000,139,944 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2010/05/24 15:33:00 | 000,121,856 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll
[2010/05/24 15:33:00 | 000,116,736 | ---- | C] () -- C:\WINDOWS\System32\ff_tremor.dll
[2010/05/24 15:33:00 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010/05/24 15:33:00 | 000,100,864 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2010/05/24 15:33:00 | 000,097,792 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll
[2010/05/19 16:59:20 | 000,150,528 | ---- | C] () -- C:\WINDOWS\System32\mkx.dll
[2010/05/19 16:59:10 | 000,109,568 | ---- | C] () -- C:\WINDOWS\System32\avi.dll
[2010/05/19 16:59:02 | 000,141,824 | ---- | C] () -- C:\WINDOWS\System32\mp4.dll
[2010/05/19 16:58:52 | 000,123,392 | ---- | C] () -- C:\WINDOWS\System32\ogm.dll
[2010/05/19 16:58:24 | 000,113,152 | ---- | C] () -- C:\WINDOWS\System32\dsmux.exe
[2010/05/19 16:58:18 | 000,154,112 | ---- | C] () -- C:\WINDOWS\System32\ts.dll
[2010/05/19 16:58:08 | 000,249,856 | ---- | C] () -- C:\WINDOWS\System32\dxr.dll
[2010/05/19 16:57:42 | 000,097,792 | ---- | C] () -- C:\WINDOWS\System32\avs.dll
[2010/05/19 16:57:38 | 000,137,728 | ---- | C] () -- C:\WINDOWS\System32\mkv2vfr.exe
[2010/05/19 16:57:26 | 000,093,184 | ---- | C] () -- C:\WINDOWS\System32\avss.dll
[2010/05/19 16:57:20 | 000,358,400 | ---- | C] () -- C:\WINDOWS\System32\gdsmux.exe
[2010/05/19 16:55:40 | 000,080,384 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll
[2010/05/19 16:55:36 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll
[2010/04/03 15:49:35 | 000,000,180 | ---- | C] () -- C:\WINDOWS\System32\sam.ini
[2010/04/03 15:48:19 | 000,487,424 | ---- | C] () -- C:\WINDOWS\System32\FDRpage.dll
[2010/04/03 15:47:34 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\CreateDir.exe
[2010/03/21 10:04:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010/02/10 16:56:36 | 000,000,450 | ---- | C] () -- C:\WINDOWS\r0viewinfo.ini
[2010/02/10 16:46:42 | 000,223,488 | ---- | C] () -- C:\WINDOWS\System32\R0IMAGE.DLL
[2010/02/10 16:46:42 | 000,185,344 | ---- | C] () -- C:\WINDOWS\System32\R0IMG32.DLL
[2010/02/10 16:46:42 | 000,176,256 | ---- | C] () -- C:\WINDOWS\System32\R0TIFF.DLL
[2010/02/10 16:46:42 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\R0TIFF32.DLL
[2010/02/10 16:46:42 | 000,088,912 | ---- | C] () -- C:\WINDOWS\System32\R0PCX.DLL
[2010/02/10 16:46:42 | 000,068,304 | ---- | C] () -- C:\WINDOWS\System32\R0TGA.DLL
[2010/02/10 16:46:42 | 000,058,880 | ---- | C] () -- C:\WINDOWS\System32\R0TGA32.DLL
[2010/02/10 16:46:42 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\R0PCX32.DLL
[2010/02/10 16:46:42 | 000,023,168 | ---- | C] () -- C:\WINDOWS\System32\R0GIF.DLL
[2010/02/10 16:46:42 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\R0GIF32.DLL
[2010/02/10 16:46:41 | 000,007,824 | ---- | C] () -- C:\WINDOWS\R0SYSTEM.INI
[2010/02/10 16:46:41 | 000,002,863 | ---- | C] () -- C:\WINDOWS\R0EDIT.INI
[2010/02/10 16:46:41 | 000,002,543 | ---- | C] () -- C:\WINDOWS\R0LOCAL.INI
[2010/02/10 16:46:41 | 000,000,941 | ---- | C] () -- C:\WINDOWS\R0DB.INI
[2010/02/10 16:46:41 | 000,000,367 | ---- | C] () -- C:\WINDOWS\R0RM.INI
[2010/02/10 16:46:41 | 000,000,137 | ---- | C] () -- C:\WINDOWS\R0FAXSRV.INI
[2010/02/10 16:46:41 | 000,000,132 | ---- | C] () -- C:\WINDOWS\R0SAPI.INI
[2010/02/10 16:19:07 | 000,000,458 | ---- | C] () -- C:\WINDOWS\MTU.INI
[2010/02/10 15:00:08 | 000,000,291 | ---- | C] () -- C:\WINDOWS\EReg206.dat
[2010/02/07 22:01:42 | 000,139,080 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010/02/07 22:01:42 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\Application Data\PnkBstrK.sys
[2010/02/07 22:01:16 | 000,270,240 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010/02/07 22:01:16 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2010/02/07 22:01:15 | 002,427,248 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_heroes.exe
[2010/02/07 16:30:43 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010/02/07 16:30:08 | 000,192,000 | ---- | C] () -- C:\Documents and Settings\Ken Henrikson\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/02/07 14:46:52 | 000,000,191 | ---- | C] () -- C:\WINDOWS\PowerReg.dat
[2010/02/07 14:44:42 | 000,338,944 | ---- | C] () -- C:\WINDOWS\System32\LFFPX7.DLL
[2010/02/07 14:44:42 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\LFKODAK.DLL
[2010/02/07 13:32:40 | 000,023,112 | ---- | C] () -- C:\WINDOWS\hpqins15.dat
[2010/02/07 13:22:41 | 000,193,080 | ---- | C] () -- C:\WINDOWS\hpoins43.dat.temp
[2010/02/07 13:22:41 | 000,000,675 | ---- | C] () -- C:\WINDOWS\hpomdl43.dat.temp
[2010/02/07 08:50:53 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010/02/06 20:02:17 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2010/02/06 20:02:17 | 000,012,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2010/02/06 20:02:15 | 000,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2010/02/06 20:02:15 | 000,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2010/02/06 19:13:11 | 000,004,984 | R--- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2010/02/06 19:12:36 | 000,001,746 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2010/02/06 19:10:03 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010/02/06 19:09:52 | 000,035,716 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini

Thread: [RESOLVED] Had some Fake Alerts, now computer is very slow.

Thread Tools

Search Thread

Display

Threaded View

Thread Information

Users Browsing this Thread

Posting Permissions