Thanks for getting back to me. Here's the log as requested:
ComboFix 10-06-22.03 - laptop 23/06/2010 14:08:39.1.1 - x86
Microsoft® Windows Vista™ Home Basic 6.0.6001.1.1252.44.1033.18.2814.1838 [GMT 1:00]
Running from: c:\users\laptop\Desktop\ComboFix.exe
SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.
((((((((((((((((((((((((( Files Created from 2010-05-23 to 2010-06-23 )))))))))))))))))))))))))))))))
.
2010-06-21 22:52 . 2010-06-21 22:52 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2010-06-21 22:52 . 2010-06-22 19:10 242896 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-06-21 22:52 . 2010-06-21 22:52 216200 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-06-21 22:52 . 2010-06-22 19:10 29584 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-06-21 22:52 . 2010-06-22 19:05 -------- d-----w- c:\windows\system32\drivers\Avg
2010-06-21 22:49 . 2010-06-21 22:49 -------- d-----w- c:\programdata\avg9
2010-06-21 20:52 . 2010-06-21 20:52 -------- d-----w- c:\program files\Trend Micro
2010-06-21 20:22 . 2010-06-21 20:22 -------- d-----w- c:\program files\TrendMicro
2010-06-21 20:13 . 2010-06-21 20:13 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-21 19:39 . 2010-06-21 19:39 -------- d-----w- c:\users\laptop\AppData\Roaming\Malwarebytes
2010-06-21 19:39 . 2010-04-29 14:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-06-21 19:39 . 2010-06-21 19:39 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-06-21 19:39 . 2010-06-21 19:39 -------- d-----w- c:\programdata\Malwarebytes
2010-06-21 19:39 . 2010-04-29 14:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-06-21 19:20 . 2010-06-21 19:20 63488 ----a-w- c:\users\laptop\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
2010-06-21 19:20 . 2010-06-21 19:20 52224 ----a-w- c:\users\laptop\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
2010-06-21 19:20 . 2010-06-21 19:20 117760 ----a-w- c:\users\laptop\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
2010-06-21 18:28 . 2010-06-21 18:28 -------- d-----w- c:\users\laptop\AppData\Roaming\SUPERAntiSpyware.com
2010-06-21 18:28 . 2010-06-21 18:28 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2010-06-21 18:28 . 2010-06-21 18:28 -------- d-----w- c:\program files\SUPERAntiSpyware
2010-06-21 18:22 . 2010-06-21 18:22 -------- d-----w- c:\program files\CCleaner
2010-06-20 14:57 . 2010-06-20 14:57 -------- d-----w- c:\users\laptop\AppData\Roaming\Birdstep Technology
2010-06-20 14:56 . 2009-02-17 19:38 112128 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2010-06-20 14:56 . 2008-12-30 10:57 103040 ----a-w- c:\windows\system32\drivers\ewusbfake.sys
2010-06-20 14:56 . 2008-12-13 10:27 102784 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2010-06-20 14:56 . 2008-04-14 08:36 621056 ----a-w- c:\windows\system32\drivers\mod7700.sys
2010-06-20 14:56 . 2007-08-09 03:06 23424 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
2010-06-20 14:54 . 2010-06-20 14:54 -------- d-----w- c:\program files\3 Mobile Broadband
2010-06-19 20:20 . 2010-06-19 20:20 -------- d-----w- c:\users\laptop\AppData\Roaming\Birdstep Technology(69)
2010-06-19 20:18 . 2010-06-19 20:18 -------- d-----w- c:\program files\Huawei Modems(19)
2010-06-19 20:17 . 2010-06-19 20:17 -------- d-----w- c:\program files\3 Mobile Broadband(12)
2010-06-12 19:54 . 2010-06-12 20:39 -------- d-----w- c:\users\laptop\Tracing
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-22 19:33 . 2009-08-24 16:55 12 ----a-w- c:\windows\bthservsdp.dat
2010-06-21 20:14 . 2008-10-25 18:07 -------- d-----w- c:\program files\Common Files\Java
2010-06-21 20:13 . 2008-10-25 18:07 -------- d-----w- c:\program files\Java
2010-06-20 20:44 . 2009-09-13 21:20 -------- d-----w- c:\program files\Google
2010-06-20 14:55 . 2010-02-28 14:04 -------- d-----w- c:\program files\Huawei Modems
2010-06-20 14:55 . 2010-02-28 14:04 70667 ----a-w- c:\windows\Huawei ModemsUninstall.exe
2010-06-20 14:54 . 2008-10-25 16:46 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-06-20 14:45 . 2010-02-27 13:23 -------- d-----w- c:\programdata\Birdstep Technology
2010-06-20 14:40 . 2009-07-17 19:13 75264 ----a-w- c:\users\laptop\AppData\Local\GDIPFONTCACHEV1.DAT
2010-06-20 14:35 . 2010-01-01 21:06 -------- d-----w- c:\program files\Microsoft Silverlight
2010-06-20 14:16 . 2009-07-18 11:28 63174 ----a-w- c:\programdata\nvModes.dat
2010-06-19 22:01 . 2009-03-12 15:43 -------- d-----w- c:\programdata\NVIDIA
2010-05-21 13:14 . 2009-11-11 21:29 221568 ------w- c:\windows\system32\MpSigStub.exe
2008-10-25 17:09 . 2008-10-25 16:56 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-07-11 13543968]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-07-11 92704]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-17 1049896]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2008-09-24 468264]
"UpdateLBPShortCut"="c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"UpdatePSTShortCut"="c:\program files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2008-10-07 210216]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2007-12-24 222504]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-08-01 202032]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"UpdatePDIRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-10-09 75008]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2008-04-15 488752]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-05 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-09-21 305440]
"AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2010-06-22 2065248]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
S1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\Drivers\avgldx86.sys [2010-06-21 216200]
S1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\Drivers\avgtdix.sys [2010-06-22 242896]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
S2 avg9emc;AVG Free E-mail Scanner;c:\program files\AVG\AVG9\avgemc.exe [2010-06-21 916760]
S2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [2010-06-21 308064]
S2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe [2008-01-21 21504]
S2 Recovery Service for Windows;Recovery Service for Windows;c:\program files\SMINST\BLService.exe [2008-10-06 365952]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
S3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [2008-12-30 103040]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2008-05-09 43040]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
bthsvcs REG_MULTI_SZ BthServ
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ezSharedSvc
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 17:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
2010-06-23 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-09-13 21:20]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.co.uk/
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=91&bd=Presario&pf=cnnb
IE: &AOL Toolbar Search - c:\programdata\AOL\ieToolbar\resources\en-GB\local\search.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
.
- - - - ORPHANS REMOVED - - - -
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2010-06-23 14:17
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2010-06-23 14:20:52
ComboFix-quarantined-files.txt 2010-06-23 13:20
Pre-Run: 107,157,884,928 bytes free
Post-Run: 107,095,113,728 bytes free
- - End Of File - - 1066C404D85255BC9A9E5A9C83539AB2