OTL logfile created on: 08/08/2012 17:54:52 - Run 1
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Users\Nick\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19088)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
1.99 Gb Total Physical Memory | 0.78 Gb Available Physical Memory | 39.35% Memory free
4.22 Gb Paging File | 2.80 Gb Available in Paging File | 66.47% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 37.26 Gb Total Space | 1.30 Gb Free Space | 3.48% Space Free | Partition Type: NTFS
Drive E: | 35.80 Gb Total Space | 2.18 Gb Free Space | 6.10% Space Free | Partition Type: NTFS
Computer Name: RASCAL | User Name: Nick | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012/08/08 17:54:17 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Nick\Desktop\OTL.exe
PRC - [2012/08/02 19:19:44 | 000,686,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\Macromed\Flash\FlashUtil32_11_3_300_270_ActiveX.exe
PRC - [2012/07/03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/07/03 13:46:44 | 000,462,920 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2008/10/29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
========== Modules (No Company Name) ==========
MOD - [2011/09/27 08:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/09/27 08:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
========== Win32 Services (SafeList) ==========
SRV - [2012/08/02 20:19:30 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/07/03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/03/26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/08/21 13:31:50 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Disabled | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE -- (!SASCORE)
SRV - [2011/01/10 15:24:20 | 000,993,848 | ---- | M] (Secunia) [Disabled | Stopped] -- C:\Program Files\Secunia\PSI\psia.exe -- (Secunia PSI Agent)
SRV - [2008/01/19 08:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/07/26 16:20:02 | 000,077,824 | ---- | M] (TOSHIBA Corporation) [Disabled | Stopped] -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
SRV - [2007/02/23 12:27:50 | 000,537,520 | ---- | M] ( ) [Disabled | Stopped] -- C:\Windows\System32\lxcfcoms.exe -- (lxcf_device)
SRV - [2007/02/05 18:13:14 | 000,094,208 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
SRV - [2006/11/14 20:33:10 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Disabled | Stopped] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (CFSvcs)
SRV - [2006/10/05 11:10:12 | 000,009,216 | ---- | M] (Agere Systems) [Disabled | Stopped] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2006/08/23 16:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2006/05/25 19:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) [Disabled | Stopped] -- C:\Windows\System32\TODDSrv.exe -- (TODDSrv)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2012/07/03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/03/20 20:44:12 | 000,074,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/08/21 13:31:42 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011/08/21 13:31:41 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS -- (SASDIFSV)
DRV - [2011/05/15 12:16:34 | 000,019,456 | ---- | M] (nerds.de) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ipmidi.sys -- (ipMIDI)
DRV - [2010/09/01 09:30:58 | 000,015,544 | ---- | M] (Secunia) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\psi_mf.sys -- (PSI)
DRV - [2008/03/18 10:02:18 | 000,292,864 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTL8187B.sys -- (RTL8187B)
DRV - [2008/02/13 05:04:12 | 000,051,200 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2008/01/19 07:14:59 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2007/07/30 11:54:02 | 000,038,400 | ---- | M] (REDC) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007/07/26 16:18:04 | 000,285,184 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tos_sps32.sys -- (tos_sps32)
DRV - [2007/02/24 14:42:22 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007/01/23 16:40:20 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2007/01/18 15:47:18 | 000,211,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\KR10N.sys -- (KR10N)
DRV - [2007/01/18 15:40:56 | 000,219,392 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\KR10I.sys -- (KR10I)
DRV - [2006/12/14 14:11:58 | 000,007,680 | ---- | M] (ATK0100) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2006/11/28 14:11:00 | 001,161,888 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006/10/18 12:50:04 | 000,016,128 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tdcmdpst.sys -- (tdcmdpst)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={sea...putEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:5643
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:5643
IE - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={sea...utputEncoding}&sourceid=ie7&rlz=1I7ADBF_en-GB
IE - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local
========== FireFox ==========
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: E:\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2852: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2910: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1662: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veoh.com/VeohTVPlugin: C:\Program Files\Veoh Networks\VeohWebPlayer\NPVeohTVPlugin.dll (Veoh Networks )
FF - HKLM\Software\MozillaPlugins\@veoh.com/VeohWebPlayer: C:\Program Files\Veoh Networks\VeohWebPlayer\npWebPlayerVideoPluginATL.dll (Veoh)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Nick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\
web@veoh.com: C:\Program Files\Veoh Networks\VeohWebPlayer\FFVideoFinder [2009/01/04 13:03:16 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{CB348AF2-F425-4435-9357-0D9D58198DB4}: C:\Users\Nick\AppData\Local\{CB348AF2-F425-4435-9357-0D9D58198DB4}
[2008/06/24 23:19:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nick\AppData\Roaming\Mozilla\Extensions
[2011/06/02 18:12:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\x690r7dy.default\extensions
[2010/04/27 18:37:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\x690r7dy.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2008/10/15 21:51:10 | 000,000,000 | ---D | M] (eMusic Toolbar) -- C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\x690r7dy.default\extensions\{9ee802e8-c931-47ab-b570-aa8f791598ca}
[2010/02/13 22:12:45 | 000,000,000 | ---D | M] (Answers) -- C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\x690r7dy.default\extensions\{C0D0F6D1-9FC9-4b0a-B485-D5E13AF40D51}
[2011/04/02 11:55:45 | 000,000,000 | ---D | M] (Cooliris) -- C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\x690r7dy.default\extensions\
piclens@cooliris.com
[2011/06/14 14:32:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/05/19 13:32:59 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\EMUSIC DOWNLOAD MANAGER\XULRUNNER\EXTENSIONS\
DLM_ITUNES@EMUSIC.COM
File not found (No name found) -- C:\PROGRAM FILES\EMUSIC DOWNLOAD MANAGER\XULRUNNER\EXTENSIONS\
DLM_WINAMP@EMUSIC.COM
File not found (No name found) -- C:\PROGRAM FILES\EMUSIC DOWNLOAD MANAGER\XULRUNNER\EXTENSIONS\
DLM_WMP@EMUSIC.COM
[2011/02/02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010/01/13 23:46:00 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
O1 HOSTS File: ([2012/08/08 08:51:54 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Veoh Web Player Video Finder) - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll (Veoh Networks Inc)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
O9 - Extra Button: Sky - {08E730A4-FB02-45BD-A900-01E4AD8016F6} -
http://www.sky.com File not found
O9 - Extra Button: eBay.co.uk - Buy It Sell It Love It - {76577871-04EC-495E-A12B-91F7C3600AFA} -
http://rover.ebay.com/rover/1/710-44557-9400-3/4 File not found
O9 - Extra Button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} -
http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=home File not found
O9 - Extra Button: Fiddler2 - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - C:\Program Files\Fiddler2\Fiddler.exe (Eric Lawrence)
O9 - Extra 'Tools' menuitem : Fiddler2 - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - C:\Program Files\Fiddler2\Fiddler.exe (Eric Lawrence)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\..Trusted Domains: hotmail.com ([]https in Trusted sites)
O15 - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\..Trusted Domains: live.com ([]https in Trusted sites)
O15 - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\..Trusted Domains: msn.com ([]https in Trusted sites)
O15 - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\..Trusted Domains: passport.com ([]https in Trusted sites)
O16 - DPF: {5334504D-0000-0010-8000-00AA00389B71}
http://codecs.microsoft.com/codecs/i386/mpg4sax.cab (Reg Error: Key error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F432A177-1FEF-4FCD-AC95-B26D38EC4C89}: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Users\Nick\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Nick\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-1679104175-3360602346-445433529-1000\...com [@ = ComFile] -- Reg Error: Key error. File not found
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ==========
[2012/08/08 17:54:17 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Nick\Desktop\OTL.exe
[2012/08/08 17:44:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/08/08 17:43:59 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/08/08 17:43:59 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/08/08 08:55:54 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/08/08 08:32:03 | 000,000,000 | ---D | C] -- C:\ComboFix
[2012/08/08 08:28:34 | 004,729,922 | R--- | C] (Swearware) -- C:\Users\Nick\Desktop\ComboFix.exe
[2012/08/07 08:40:58 | 000,000,000 | ---D | C] -- C:\FRST
[2012/08/06 23:04:28 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2012/08/06 22:54:23 | 000,000,000 | ---D | C] -- C:\ham27096h
[2012/08/06 22:50:57 | 004,725,168 | R--- | C] (Swearware) -- C:\Users\Nick\Desktop\ham.exe
[2012/08/06 22:50:09 | 000,000,000 | ---D | C] -- C:\ham25723h
[2012/08/06 22:41:57 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/08/06 22:41:57 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/08/06 22:41:57 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/08/06 22:41:44 | 000,000,000 | ---D | C] -- C:\ham
[2012/08/06 22:41:42 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/08/06 22:41:13 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/08/06 20:16:51 | 000,000,000 | ---D | C] -- C:\VirginMedia
[2012/08/06 20:02:23 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/07/28 17:05:13 | 000,000,000 | ---D | C] -- C:\Users\Nick\Desktop\turtles wip3_data
[2012/07/28 16:46:19 | 000,000,000 | ---D | C] -- C:\Users\Nick\Desktop\turtles wip2_data
[2012/07/28 00:05:32 | 000,000,000 | ---D | C] -- C:\Users\Nick\Desktop\turtles1 wip_data
[2012/07/27 23:43:55 | 000,000,000 | ---D | C] -- C:\Users\Nick\Desktop\turtles wip_data
[2012/07/22 14:43:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/07/22 14:42:37 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/07/22 14:27:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012/07/22 14:27:18 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Nick\Desktop\*.tmp files -> C:\Users\Nick\Desktop\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/08/08 17:54:17 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Nick\Desktop\OTL.exe
[2012/08/08 17:44:01 | 000,000,911 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/08/08 17:32:15 | 000,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{CE2140C2-316F-474C-90A1-A4E2FC3F3E14}.job
[2012/08/08 17:32:05 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/08/08 17:31:37 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/08/08 17:31:37 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/08/08 17:31:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/08/08 08:51:54 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012/08/08 08:33:57 | 000,615,990 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/08/08 08:33:57 | 000,016,552 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/08/08 08:24:18 | 004,729,922 | R--- | M] (Swearware) -- C:\Users\Nick\Desktop\ComboFix.exe
[2012/08/06 23:27:41 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/08/06 22:38:40 | 004,725,168 | R--- | M] (Swearware) -- C:\Users\Nick\Desktop\ham.exe
[2012/08/06 22:05:10 | 000,002,243 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/08/06 20:25:01 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/08/02 20:19:30 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/08/02 20:19:29 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/08/01 23:59:40 | 000,951,767 | ---- | M] () -- C:\Users\Nick\.DLMSave_back.xml
[2012/08/01 23:59:40 | 000,951,767 | ---- | M] () -- C:\Users\Nick\.DLMSave.xml
[2012/08/01 23:59:40 | 000,001,858 | ---- | M] () -- C:\Users\Nick\.Setting.ini
[2012/07/28 17:17:35 | 000,011,061 | ---- | M] () -- C:\Users\Nick\Desktop\turtles wip3.aup
[2012/07/28 17:05:15 | 000,011,088 | ---- | M] () -- C:\Users\Nick\Desktop\turtles wip3.aup.bak
[2012/07/28 16:46:25 | 000,009,411 | ---- | M] () -- C:\Users\Nick\Desktop\turtles wip2.aup
[2012/07/28 00:39:01 | 002,308,497 | ---- | M] () -- C:\Users\Nick\Desktop\turtles2 wip.mp3
[2012/07/28 00:21:07 | 002,308,497 | ---- | M] () -- C:\Users\Nick\Desktop\turtles1 wip.mp3
[2012/07/28 00:05:33 | 000,008,815 | ---- | M] () -- C:\Users\Nick\Desktop\turtles1 wip.aup
[2012/07/27 23:43:56 | 000,009,417 | ---- | M] () -- C:\Users\Nick\Desktop\turtles wip.aup
[2012/07/23 08:48:49 | 000,078,653 | ---- | M] () -- C:\Users\Nick\Desktop\MDUdirectDebit.pdf
[2012/07/22 14:27:54 | 000,001,731 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Nick\Desktop\*.tmp files -> C:\Users\Nick\Desktop\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/08/08 17:44:01 | 000,000,911 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/08/06 22:41:57 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/08/06 22:41:57 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/08/06 22:41:57 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/08/06 22:41:57 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/08/06 22:41:57 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/08/06 20:02:31 | 000,001,831 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/07/28 17:05:15 | 000,011,088 | ---- | C] () -- C:\Users\Nick\Desktop\turtles wip3.aup.bak
[2012/07/28 17:05:15 | 000,011,061 | ---- | C] () -- C:\Users\Nick\Desktop\turtles wip3.aup
[2012/07/28 16:46:25 | 000,009,411 | ---- | C] () -- C:\Users\Nick\Desktop\turtles wip2.aup
[2012/07/28 00:38:36 | 002,308,497 | ---- | C] () -- C:\Users\Nick\Desktop\turtles2 wip.mp3
[2012/07/28 00:20:48 | 002,308,497 | ---- | C] () -- C:\Users\Nick\Desktop\turtles1 wip.mp3
[2012/07/28 00:05:33 | 000,008,815 | ---- | C] () -- C:\Users\Nick\Desktop\turtles1 wip.aup
[2012/07/27 23:43:56 | 000,009,417 | ---- | C] () -- C:\Users\Nick\Desktop\turtles wip.aup
[2012/07/23 08:48:49 | 000,078,653 | ---- | C] () -- C:\Users\Nick\Desktop\MDUdirectDebit.pdf
[2012/07/22 14:27:54 | 000,001,731 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/07/01 07:56:36 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2012/06/23 14:16:34 | 000,059,856 | ---- | C] () -- C:\Windows\System32\midiio.dll
[2012/04/08 14:31:28 | 000,000,218 | ---- | C] () -- C:\Users\Nick\.recently-used.xbel
[2011/12/03 17:26:30 | 000,798,720 | ---- | C] () -- C:\Users\Nick\Untitled-1.indd
[2011/11/27 19:09:15 | 000,951,767 | ---- | C] () -- C:\Users\Nick\.DLMSave_back.xml
[2011/11/27 19:09:15 | 000,951,767 | ---- | C] () -- C:\Users\Nick\.DLMSave.xml
[2011/11/27 19:08:38 | 000,001,858 | ---- | C] () -- C:\Users\Nick\.Setting.ini
[2011/06/15 09:22:37 | 000,017,480 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro35.sys
[2011/06/12 15:12:18 | 000,001,458 | -HS- | C] () -- C:\Users\Nick\AppData\Local\80b8pg205i3703f7k01v8p6t64t7nml47ly
[2011/06/12 15:12:18 | 000,001,458 | -HS- | C] () -- C:\ProgramData\80b8pg205i3703f7k01v8p6t64t7nml47ly
[2011/05/23 12:45:00 | 000,000,000 | ---- | C] () -- C:\Users\Nick\AppData\Local\{1A947A75-8C8A-41BD-8BF2-3E99540BE26C}
[2011/05/07 18:15:30 | 000,000,013 | ---- | C] () -- C:\Users\Nick\cvdm.err
[2011/03/25 08:07:58 | 000,650,752 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011/03/25 08:07:58 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010/10/31 17:17:41 | 000,000,256 | ---- | C] () -- C:\Windows\System32\pool.bin
[2010/09/28 09:18:07 | 000,000,001 | -H-- | C] () -- C:\Windows\mulch200.ini
[2010/07/15 12:34:05 | 000,000,120 | ---- | C] () -- C:\Users\Nick\AppData\Local\Xbarifefeq.dat
[2010/07/15 12:34:05 | 000,000,000 | ---- | C] () -- C:\Users\Nick\AppData\Local\Bwatotevigulus.bin
[2009/01/24 16:11:42 | 000,000,680 | ---- | C] () -- C:\Users\Nick\AppData\Local\d3d9caps.dat
[2007/11/25 02:07:27 | 000,047,104 | ---- | C] () -- C:\Users\Nick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
< End of report >