No Extras.txt log was created? Here is the OTL
OTL logfile created on: 05/10/2011 14:18:56 - Run 2
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Theo\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
3.25 Gb Total Physical Memory | 2.29 Gb Available Physical Memory | 70.55% Memory free
6.72 Gb Paging File | 5.79 Gb Available in Paging File | 86.13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 450.70 Gb Total Space | 186.57 Gb Free Space | 41.40% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 8.56 Gb Free Space | 57.07% Space Free | Partition Type: NTFS
Drive F: | 149.04 Gb Total Space | 34.41 Gb Free Space | 23.09% Space Free | Partition Type: NTFS
Drive K: | 480.69 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: THEO-PC | User Name: Theo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/10/05 14:17:37 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Theo\Desktop\OTL.exe
PRC - [2011/09/27 12:15:12 | 003,077,528 | ---- | M] () -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,228,520 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe
PRC - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010/06/07 17:05:06 | 000,240,232 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2009/09/28 12:48:08 | 000,264,040 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeChat\LifeChat.exe
PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/02/23 20:43:12 | 000,576,000 | ---- | M] (MagicISO, Inc.) -- C:\Program Files\MagicDisc\MagicDisc.exe
PRC - [2009/01/29 23:50:06 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe
PRC - [2009/01/29 23:50:06 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2009/01/13 11:32:52 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
PRC - [2008/12/18 12:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
PRC - [2008/11/09 21:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2007/09/13 17:35:08 | 001,261,568 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
========== Modules (No Company Name) ==========
MOD - [2011/09/27 12:15:12 | 003,077,528 | ---- | M] () -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
MOD - [2011/08/15 23:36:10 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\4c3cda96b8f12220da20f2f8d1b9439c\System.Xml.ni.dll
MOD - [2011/08/15 23:34:18 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b9ea0d414c4861120bfb7365d8ec0939\System.ni.dll
MOD - [2011/06/19 09:24:10 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\f6deb187f24bb3185841092b89fbfdbb\mscorlib.ni.dll
MOD - [2011/03/15 07:13:46 | 004,254,560 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010/08/10 00:01:06 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2010/03/24 21:17:36 | 008,794,464 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
MOD - [2007/09/13 17:35:08 | 001,261,568 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (gusvc)
SRV - [2011/06/12 11:15:00 | 031,125,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010/06/07 17:05:06 | 000,240,232 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009/01/29 23:50:06 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter)
SRV - [2009/01/13 11:32:52 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe -- (AERTFilters)
SRV - [2008/12/18 12:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV - [2008/11/09 21:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
========== Driver Services (SafeList) ==========
DRV - [2011/10/05 13:59:42 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BC380F9F-04C4-49ED-B011-6E57668C94C5}\MpKsl04a651d2.sys -- (MpKsl04a651d2)
DRV - [2011/04/27 15:25:24 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/04/18 13:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/11/09 15:35:30 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\cpuz135_x32.sys -- (cpuz135)
DRV - [2010/06/08 00:57:00 | 010,888,168 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/12/20 11:53:32 | 000,234,016 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2009/11/23 09:43:30 | 000,009,968 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2009/11/23 09:43:30 | 000,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
DRV - [2009/11/23 09:43:28 | 000,074,480 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2009/02/24 19:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2008/11/05 00:16:40 | 000,022,904 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Dell Support Center\HWDiag\bin\pcd5srvc.pkms -- (PCD5SRVC{3F6A8B78-EC003E00-05040104})
DRV - [2008/01/21 03:23:25 | 000,220,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel(R)
DRV - [2007/12/26 03:46:00 | 000,288,768 | ---- | M] (NETGEAR Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wg111v2.sys -- (RTLWUSB)
DRV - [2007/12/26 03:46:00 | 000,288,768 | ---- | M] (NETGEAR Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wg111v2.sys -- (RTL8187)
DRV - [2007/01/19 04:20:54 | 000,021,728 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\scmndisp.sys -- (SCMNdisP)
DRV - [2006/11/02 08:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2706452045-893641700-2708655402-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://google.com/
IE - HKU\S-1-5-21-2706452045-893641700-2708655402-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2706452045-893641700-2708655402-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledItems:
firefox@tvunetworks.com:2
FF - prefs.js..extensions.enabledItems: 5
FF - prefs.js..extensions.enabledItems: 3
FF - prefs.js..extensions.enabledItems: 1
FF - prefs.js..extensions.enabledItems: {B042753D-F57E-4e8e-A01B-7379A6D4CEFB}:1.21
FF - prefs.js..extensions.enabledItems: {e001c731-5e37-4538-a5cb-8168736a2360}:0.9.9.99
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pages.tvunetworks.com/WebPlayer: C:\Windows\system32\TVUAx\npTVUAx.dll (TVU networks)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Users\Theo\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.23\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/28 23:41:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.23\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/28 23:41:23 | 000,000,000 | ---D | M]
[2009/12/27 00:34:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Theo\AppData\Roaming\Mozilla\Extensions
[2011/10/04 23:34:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Theo\AppData\Roaming\Mozilla\Firefox\Profiles\q15h6s1j.default\extensions
[2010/07/04 04:45:37 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Theo\AppData\Roaming\Mozilla\Firefox\Profiles\q15h6s1j.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/08/29 14:36:16 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Users\Theo\AppData\Roaming\Mozilla\Firefox\Profiles\q15h6s1j.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2011/09/27 17:18:08 | 000,000,000 | ---D | M] (BitDefender QuickScan) -- C:\Users\Theo\AppData\Roaming\Mozilla\Firefox\Profiles\q15h6s1j.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
[2010/08/22 00:41:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Theo\AppData\Roaming\Mozilla\Firefox\Profiles\q15h6s1j.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2010/07/04 04:45:11 | 000,000,000 | ---D | M] (TVU Web Player) -- C:\Users\Theo\AppData\Roaming\Mozilla\Firefox\Profiles\q15h6s1j.default\extensions\firefox@tvunetworks.com
[2011/01/21 18:44:38 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/02/21 11:22:32 | 000,712,704 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
Hosts file not found
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.6.22.dll (BitComet)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKU\S-1-5-21-2706452045-893641700-2708655402-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [LifeChat] C:\Program Files\Microsoft LifeChat\LifeChat.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2706452045-893641700-2708655402-1000..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe ()
O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
O4 - Startup: C:\Users\Theo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\S-1-5-21-2706452045-893641700-2708655402-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2706452045-893641700-2708655402-1000\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\S-1-5-21-2706452045-893641700-2708655402-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &D&ownload &with BitComet - C:\Program Files\BitComet\BitComet.exe (
www.BitComet.com)
O8 - Extra context menu item: &D&ownload all video with BitComet - C:\Program Files\BitComet\BitComet.exe (
www.BitComet.com)
O8 - Extra context menu item: &D&ownload all with BitComet - C:\Program Files\BitComet\BitComet.exe (
www.BitComet.com)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll (Google Inc.)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.6.22.dll (BitComet)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{01166B69-3C18-406B-8135-E7DFA986093B}: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.dll) - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: F:\Documents and Settings\Nelly\My Documents\My Pictures\2062457065_f3bd393abe_b.jpg
O24 - Desktop BackupWallPaper: F:\Documents and Settings\Nelly\My Documents\My Pictures\2062457065_f3bd393abe_b.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2008/05/11 23:59:37 | 000,000,000 | ---- | M] () - F:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2003/05/18 19:54:20 | 000,061,440 | R--- | M] () - K:\autoplay.exe -- [ CDFS ]
O32 - AutoRun File - [2003/02/12 08:01:48 | 000,000,050 | R--- | M] () - K:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O35 - HKU\S-1-5-21-2706452045-893641700-2708655402-1000..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-2706452045-893641700-2708655402-1000\...exe [@ = exefile] -- "%1" %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 30 Days ==========
[2011/10/05 14:17:35 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Users\Theo\Desktop\OTL.exe
[2011/10/05 14:00:47 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{D5B42FC3-5979-4496-BC97-EC488F0D5248}
[2011/10/05 14:00:09 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{722849E4-BF60-4F7D-89CC-D0BDEBFC4275}
[2011/10/04 23:24:26 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{914971F5-5445-41D0-A84F-005F81FD6C0D}
[2011/10/04 04:28:51 | 001,548,080 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Theo\Desktop\tdsskiller.exe
[2011/10/04 04:11:22 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{6B6D1DF8-D0DA-4A3D-A465-9DEBCECF9A65}
[2011/10/04 04:10:59 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{08202E02-9CFE-4189-8500-B542BB085FB2}
[2011/10/04 04:04:06 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{C36EE130-2982-48D8-9658-1A5B61A06301}
[2011/10/04 04:03:32 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{DD74B400-851D-4101-A6BC-512F88987D5B}
[2011/10/04 03:59:03 | 001,932,256 | ---- | C] (Symantec Corporation) -- C:\Users\Theo\Desktop\FixTDSS.exe
[2011/10/03 17:53:04 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{4952403D-9101-46A2-B475-EEEAB509D934}
[2011/10/03 17:52:54 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{F2B00644-EE5A-43E3-B607-E917E10542BA}
[2011/09/30 12:50:06 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{B2E4A496-CE8C-4ADB-8704-2A8E989AFE9D}
[2011/09/30 12:49:40 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{FFFF3708-C5BF-4E30-B354-EF7DFE208FAB}
[2011/09/29 16:45:42 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{D868709D-4E85-4A44-9363-A43D41901BFD}
[2011/09/29 16:44:59 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{03F06182-77CE-4005-A984-0F29E4D080F5}
[2011/09/29 16:34:20 | 000,071,398 | ---- | C] (jpshortstuff) -- C:\Users\Theo\Desktop\GooredFix.exe
[2011/09/29 16:01:08 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\Apple
[2011/09/29 04:08:03 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011/09/29 04:03:59 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/09/29 03:50:44 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{B4390FC6-D143-4706-8C4D-B05CA589E889}
[2011/09/29 03:50:33 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{2FE08101-6E12-4C38-89CE-5BF85B54A3C4}
[2011/09/29 03:02:56 | 000,000,000 | ---D | C] -- C:\ComboFix
[2011/09/28 22:26:46 | 004,232,793 | R--- | C] (Swearware) -- C:\Users\Theo\Desktop\ComboFix.exe
[2011/09/28 11:59:15 | 000,607,260 | R--- | C] (Swearware) -- C:\Users\Theo\Desktop\dds.scr
[2011/09/28 11:10:32 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{1670AECF-2D5F-4E7D-922A-0B052B0EA579}
[2011/09/28 11:10:00 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{2FB47DB9-9AD8-4871-9E62-9F56D56F0605}
[2011/09/27 20:16:10 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\Adobe
[2011/09/27 17:43:27 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{200A26C3-ED57-45A1-B9DB-0435EE194784}
[2011/09/27 17:43:14 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{ABB95063-75E0-4388-A824-3CF9B471D228}
[2011/09/27 17:42:54 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\Apple Computer
[2011/09/27 17:32:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/09/27 17:18:26 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Roaming\QuickScan
[2011/09/27 12:20:36 | 000,000,000 | ---D | C] -- C:\Program Files\LeagueOfLegends
[2011/09/27 12:15:57 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\PMB Files
[2011/09/27 12:15:42 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2011/09/27 01:27:02 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/09/27 01:27:02 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/09/26 22:23:35 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Data Recovery
[2011/09/26 22:23:12 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{F41CE8B4-FD8E-4266-86A6-CEA476305902}
[2011/09/26 22:22:48 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{75AE3CB7-217A-4AFA-BD83-3249AB1602E9}
[2011/09/26 17:15:20 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{9CB6E8B9-0D81-457B-AC38-0E2EA13FDD57}
[2011/09/26 17:15:01 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{05D29A35-B1E1-47B3-9171-EB0ACC6C2F17}
[2011/09/23 18:46:50 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\Spotify
[2011/09/23 18:46:48 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Roaming\Spotify
[2011/09/23 04:17:03 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{B971B3B8-19EB-4BB7-9C0E-D8CE9A80C4E2}
[2011/09/23 04:16:41 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{CA5A3D8D-3D9C-418B-B630-C8274D3CC9D7}
[2011/09/21 06:33:07 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{2A0DDE97-D592-4521-A0B1-AD21355B1A36}
[2011/09/21 06:32:46 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{F6ECA60A-813E-4654-B5DB-9567FAAAB8DA}
[2011/09/20 15:11:59 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{2C878E57-B375-4AA5-8C3D-B7A67B2F5C41}
[2011/09/20 15:11:41 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{2B0ABFAA-2FCF-4931-A025-0749BF0F3F44}
[2011/09/20 11:22:10 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{E509769F-7370-4413-8854-A50806F2ECF7}
[2011/09/19 14:06:30 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{0F48F7C2-8FC4-423C-BAC8-3077A6DCCD76}
[2011/09/19 14:06:08 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{FDE01B69-458D-4C52-9F9E-7756FAF0555F}
[2011/09/18 23:23:40 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{59075ACD-82C9-4EA5-8EFE-7E6E06112BCD}
[2011/09/18 23:19:53 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{48A8C448-C682-4280-9E35-7ABBE4DF2E68}
[2011/09/16 05:27:08 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{95CFF71D-705F-46C8-A11B-26C538BBEFEE}
[2011/09/16 05:26:51 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{4A0CF688-B0DF-4E5B-9A79-FAF2ED6D33DA}
[2011/09/15 03:03:29 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{7B03AFD9-695C-4F32-8522-A46B9CCF9E5D}
[2011/09/15 03:03:08 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{B4CDF735-E57B-47D5-A77D-2A33B27E2824}
[2011/09/09 19:36:53 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{68F5182F-73B8-420F-A544-9D1BA6B12C0B}
[2011/09/09 19:36:35 | 000,000,000 | ---D | C] -- C:\Users\Theo\AppData\Local\{FF5461E5-0B25-41B7-B692-7C876A751E35}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/10/05 14:17:37 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Theo\Desktop\OTL.exe
[2011/10/05 14:06:56 | 000,613,764 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/10/05 14:06:56 | 000,110,112 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/10/05 14:03:03 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/05 13:59:53 | 000,055,637 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011/10/05 13:59:53 | 000,055,637 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011/10/05 13:59:44 | 000,003,616 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/10/05 13:59:43 | 000,003,616 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/10/05 13:59:40 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/05 13:59:37 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/10/04 22:12:58 | 000,021,504 | ---- | M] () -- C:\Users\Theo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/10/04 16:58:10 | 000,000,774 | ---- | M] () -- C:\Users\Theo\Application Data\Microsoft\Internet Explorer\Quick Launch\Firefox.lnk
[2011/10/04 04:28:58 | 001,548,080 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Theo\Desktop\tdsskiller.exe
[2011/10/04 03:59:03 | 001,932,256 | ---- | M] (Symantec Corporation) -- C:\Users\Theo\Desktop\FixTDSS.exe
[2011/10/03 17:50:33 | 000,020,408 | ---- | M] () -- C:\Users\Theo\AppData\Roaming\wklnhst.dat
[2011/10/03 17:43:17 | 294,296,604 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/09/29 16:48:22 | 000,139,264 | ---- | M] () -- C:\Users\Theo\Desktop\SystemLook.exe
[2011/09/29 16:34:19 | 000,071,398 | ---- | M] (jpshortstuff) -- C:\Users\Theo\Desktop\GooredFix.exe
[2011/09/29 03:00:47 | 004,232,793 | R--- | M] (Swearware) -- C:\Users\Theo\Desktop\ComboFix.exe
[2011/09/28 11:59:17 | 000,607,260 | R--- | M] (Swearware) -- C:\Users\Theo\Desktop\dds.scr
[2011/09/28 11:21:05 | 000,302,592 | ---- | M] () -- C:\Users\Theo\Desktop\rjdszd5d.exe
[2011/09/27 20:14:08 | 000,000,104 | ---- | M] () -- C:\Users\Theo\Desktop\Computer.lnk
[2011/09/27 17:37:54 | 000,002,154 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/09/27 17:23:36 | 000,002,521 | ---- | M] () -- C:\Users\Theo\Desktop\HiJackThis.lnk
[2011/09/27 17:02:51 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2011/09/27 12:05:26 | 000,000,744 | ---- | M] () -- C:\Users\Theo\Desktop\Play League of Legends.lnk
[2011/09/27 12:04:17 | 000,000,746 | ---- | M] () -- C:\Users\Theo\Desktop\Ventrilo.lnk
[2011/09/27 12:03:27 | 000,000,774 | ---- | M] () -- C:\Users\Theo\Desktop\Firefox.lnk
[2011/09/27 01:11:26 | 000,000,908 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/09/26 22:25:17 | 000,000,448 | ---- | M] () -- C:\ProgramData\6DSS92c31Apgjk
[2011/09/26 22:23:40 | 000,000,232 | ---- | M] () -- C:\ProgramData\~6DSS92c31Apgjk
[2011/09/26 22:23:40 | 000,000,152 | ---- | M] () -- C:\ProgramData\~6DSS92c31Apgjkr
[2011/09/26 22:09:38 | 000,049,244 | ---- | M] () -- C:\Users\Theo\Desktop\tumblr_lrvk2bACXu1qm835jo1_500.jpg
[2011/09/24 21:50:56 | 000,061,658 | ---- | M] () -- C:\Users\Theo\Desktop\301626_10150382107480149_551940148_10261352_2068483297_n.jpg
[2011/09/23 18:46:49 | 000,000,820 | ---- | M] () -- C:\Users\Theo\Desktop\Spotify.lnk
[2011/09/11 08:18:07 | 000,000,104 | ---- | M] () -- C:\Users\Theo\Desktop\Recycle Bin - Shortcut.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/10/04 16:58:10 | 000,000,774 | ---- | C] () -- C:\Users\Theo\Application Data\Microsoft\Internet Explorer\Quick Launch\Firefox.lnk
[2011/10/03 17:43:17 | 294,296,604 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011/09/29 16:48:24 | 000,139,264 | ---- | C] () -- C:\Users\Theo\Desktop\SystemLook.exe
[2011/09/28 11:21:05 | 000,302,592 | ---- | C] () -- C:\Users\Theo\Desktop\rjdszd5d.exe
[2011/09/27 20:14:08 | 000,000,104 | ---- | C] () -- C:\Users\Theo\Desktop\Computer.lnk
[2011/09/27 17:37:54 | 000,002,154 | ---- | C] () -- C:\Windows\epplauncher.mif
[2011/09/27 17:32:11 | 000,001,810 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/09/27 12:04:17 | 000,000,746 | ---- | C] () -- C:\Users\Theo\Desktop\Ventrilo.lnk
[2011/09/27 12:03:27 | 000,000,774 | ---- | C] () -- C:\Users\Theo\Desktop\Firefox.lnk
[2011/09/27 01:51:55 | 000,001,866 | ---- | C] () -- C:\Users\Theo\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011/09/27 01:51:52 | 000,000,701 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v2 Smart Wizard.lnk
[2011/09/27 01:51:51 | 000,001,878 | ---- | C] () -- C:\Users\Theo\Desktop\Skype.lnk
[2011/09/27 01:51:49 | 000,000,744 | ---- | C] () -- C:\Users\Theo\Desktop\Play League of Legends.lnk
[2011/09/27 01:49:37 | 000,001,950 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Photo Gallery.lnk
[2011/09/27 01:49:36 | 000,001,768 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker.lnk
[2011/09/27 01:49:35 | 000,001,743 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2011/09/27 01:49:34 | 000,001,229 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2011/09/27 01:49:33 | 000,001,160 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2011/09/27 01:49:32 | 000,002,027 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011/09/27 01:49:31 | 000,001,039 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2011/09/27 01:49:30 | 000,001,803 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011/09/27 01:49:29 | 000,001,757 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Defender.lnk
[2011/09/27 01:49:28 | 000,001,703 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Contacts.lnk
[2011/09/27 01:49:27 | 000,001,852 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Collaboration.lnk
[2011/09/27 01:49:26 | 000,001,770 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Calendar.lnk
[2011/09/27 01:49:25 | 000,001,971 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Station Launcher.lnk
[2011/09/27 01:49:24 | 000,001,854 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
[2011/09/27 01:49:23 | 000,001,018 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
[2011/09/27 01:49:22 | 000,001,924 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk
[2011/09/27 01:49:21 | 000,001,630 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011/09/27 01:49:20 | 000,000,715 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Betfair Casino.lnk
[2011/09/27 01:49:19 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/09/27 01:49:18 | 000,002,425 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2011/09/27 01:49:17 | 000,000,888 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk
[2011/09/27 01:27:03 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/09/27 01:27:02 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2011/09/27 01:27:02 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/09/27 01:27:02 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/09/27 01:27:02 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/09/27 01:11:26 | 000,000,908 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/09/26 22:23:40 | 000,000,232 | ---- | C] () -- C:\ProgramData\~6DSS92c31Apgjk
[2011/09/26 22:23:40 | 000,000,152 | ---- | C] () -- C:\ProgramData\~6DSS92c31Apgjkr
[2011/09/26 22:23:29 | 000,000,448 | ---- | C] () -- C:\ProgramData\6DSS92c31Apgjk
[2011/09/26 22:09:38 | 000,049,244 | ---- | C] () -- C:\Users\Theo\Desktop\tumblr_lrvk2bACXu1qm835jo1_500.jpg
[2011/09/24 21:50:56 | 000,061,658 | ---- | C] () -- C:\Users\Theo\Desktop\301626_10150382107480149_551940148_10261352_2068483297_n.jpg
[2011/09/23 18:46:49 | 000,000,820 | ---- | C] () -- C:\Users\Theo\Desktop\Spotify.lnk
[2011/09/23 18:46:49 | 000,000,806 | ---- | C] () -- C:\Users\Theo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2011/09/11 08:18:07 | 000,000,104 | ---- | C] () -- C:\Users\Theo\Desktop\Recycle Bin - Shortcut.lnk
[2011/06/14 18:49:38 | 000,045,202 | ---- | C] () -- C:\Users\Theo\AppData\Roaming\room_v3.dat
[2011/06/14 18:37:06 | 000,099,170 | ---- | C] () -- C:\Windows\War3Unin.dat
[2011/05/14 19:32:12 | 000,009,638 | -HS- | C] () -- C:\Users\Theo\AppData\Local\7w0k63i7188ib0ldt3363x
[2011/05/14 19:32:12 | 000,009,638 | -HS- | C] () -- C:\ProgramData\7w0k63i7188ib0ldt3363x
[2011/05/07 01:03:22 | 000,010,484 | -HS- | C] () -- C:\Users\Theo\AppData\Local\bn5b6b462h21s58w
[2011/05/07 01:03:22 | 000,010,484 | -HS- | C] () -- C:\ProgramData\bn5b6b462h21s58w
[2011/05/05 09:46:04 | 000,176,808 | ---- | C] () -- C:\Windows\System32\mlfcache.dat
[2010/11/12 01:17:43 | 000,000,056 | ---- | C] () -- C:\Windows\System32\ezsidmv.dat
[2010/11/08 19:32:51 | 000,000,146 | ---- | C] () -- C:\Windows\WININIT.INI
[2010/08/29 14:47:04 | 000,000,033 | ---- | C] () -- C:\ProgramData\{081230F8-EA50-42A9-983C-D22ABC2EED3B}.ini
[2010/08/29 14:45:55 | 000,001,264 | ---- | C] () -- C:\ProgramData\ss.ini
[2010/08/21 15:48:25 | 000,000,691 | ---- | C] () -- C:\Users\Theo\AppData\Roaming\GetValue.vbs
[2010/08/21 15:48:25 | 000,000,035 | ---- | C] () -- C:\Users\Theo\AppData\Roaming\SetValue.bat
[2010/08/21 12:36:50 | 000,000,036 | ---- | C] () -- C:\Users\Theo\AppData\Local\housecall.guid.cache
[2010/06/29 13:53:16 | 000,020,408 | ---- | C] () -- C:\Users\Theo\AppData\Roaming\wklnhst.dat
[2010/04/13 16:12:22 | 000,000,262 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2010/03/02 15:16:27 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010/02/27 18:33:42 | 000,001,356 | ---- | C] () -- C:\Users\Theo\AppData\Local\d3d9caps.dat
[2010/02/05 05:11:45 | 000,000,040 | ---- | C] () -- C:\Windows\ujf635.bin
[2009/12/27 02:22:47 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/12/27 02:22:47 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/12/26 21:20:28 | 000,021,504 | ---- | C] () -- C:\Users\Theo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/03 10:27:28 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 16:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/07/04 19:42:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1472.dll
[2009/04/11 19:02:01 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009/04/11 17:07:30 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2009/02/28 20:25:54 | 001,774,540 | ---- | C] () -- C:\Program Files\Picture 005.jpg
[2007/01/01 01:12:02 | 000,055,637 | ---- | C] () -- C:\ProgramData\nvModes.001
[2007/01/01 01:12:00 | 000,055,637 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2006/11/02 13:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 13:47:37 | 000,383,120 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 11:33:01 | 000,613,764 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 11:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 11:33:01 | 000,110,112 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 11:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 11:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 11:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 09:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 09:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 08:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
========== LOP Check ==========
[2011/07/07 04:51:26 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\Advanced Combat Tracker
[2010/08/29 14:36:15 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\BitComet
[2010/08/05 03:33:53 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\Cyzuy
[2010/08/16 02:37:53 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\Elgi
[2010/06/21 19:17:04 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\Facebook
[2010/08/05 00:57:40 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\Imam
[2010/08/20 23:55:39 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\Irce
[2011/06/25 00:51:42 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\LolClient
[2010/08/16 10:03:20 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\Mieb
[2011/06/01 23:04:19 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\ProfitUI Reborn Updater
[2011/10/01 02:18:37 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\QuickScan
[2011/01/10 01:08:12 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\RIFT
[2011/09/26 20:54:28 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\Spotify
[2010/06/29 13:53:18 | 000,000,000 | ---D | M] -- C:\Users\Theo\AppData\Roaming\Template
[2011/10/05 04:08:29 | 000,032,622 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========