Have Windows 7 64 bit
Here is my OTL:
OTL logfile created on: 1/8/2011 12:44:54 AM - Run 1
OTL by OldTimer - Version 3.2.20.1 Folder = C:\Users\mmclaughlin\Desktop\Appies
64bit- An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 32.00% Memory free
4.00 Gb Paging File | 2.00 Gb Available in Paging File | 56.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 140.79 Gb Total Space | 103.63 Gb Free Space | 73.61% Space Free | Partition Type: NTFS
Computer Name: KALA_JEERA | User Name: mmclaughlin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/01/08 00:44:25 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\mmclaughlin\Desktop\Appies\OTL.exe
PRC - [2010/11/30 09:53:12 | 000,233,936 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe
PRC - [2010/10/21 13:04:14 | 004,550,944 | ---- | M] () -- C:\Program Files (x86)\Data Deposit Box\backup.exe
PRC - [2010/10/06 08:48:51 | 000,580,896 | ---- | M] () -- C:\Program Files (x86)\Data Deposit Box\status.exe
PRC - [2010/05/05 14:45:43 | 000,039,816 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) -- C:\Program Files (x86)\Citrix\GoToMeeting\457\g2mstart.exe
PRC - [2010/05/05 14:45:43 | 000,039,816 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) -- C:\Program Files (x86)\Citrix\GoToMeeting\457\g2mlauncher.exe
PRC - [2010/05/05 14:45:43 | 000,039,816 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) -- C:\Program Files (x86)\Citrix\GoToMeeting\457\g2mcomm.exe
PRC - [2010/04/01 04:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2010/03/17 15:53:24 | 000,207,872 | ---- | M] (Alcatel-Lucent) -- C:\Program Files (x86)\Common Files\Motive\McciContextHookShim.exe
PRC - [2009/12/18 13:57:42 | 000,316,704 | ---- | M] () -- C:\Program Files (x86)\Data Deposit Box\starter.exe
PRC - [2009/12/18 13:57:38 | 000,181,536 | ---- | M] () -- C:\Program Files (x86)\Data Deposit Box\nts.exe
PRC - [2009/12/18 13:57:34 | 000,173,464 | ---- | M] () -- C:\Program Files (x86)\Data Deposit Box\startup.exe
PRC - [2009/10/15 12:22:14 | 002,066,968 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe
PRC - [2009/10/15 12:22:08 | 000,174,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\AMT\lms.exe
PRC - [2009/06/24 19:19:50 | 000,140,520 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2009/06/22 17:57:30 | 001,314,816 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
PRC - [2009/06/04 18:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/06/04 18:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
========== Modules (SafeList) ==========
MOD - [2011/01/08 00:44:25 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\mmclaughlin\Desktop\Appies\OTL.exe
MOD - [2010/08/21 00:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010/06/29 12:49:27 | 000,128,752 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2010/03/25 23:48:42 | 000,017,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2009/12/08 21:41:46 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 20:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2010/10/13 17:06:34 | 000,098,304 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe -- (IHA_MessageCenter)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/12/18 13:57:38 | 000,181,536 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Data Deposit Box\nts.exe -- (Online Backup Service)
SRV - [2009/10/15 12:22:14 | 002,066,968 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe -- (UNS) Intel®
SRV - [2009/10/15 12:22:08 | 000,174,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\AMT\lms.exe -- (LMS) Intel®
SRV - [2009/09/20 10:55:20 | 001,037,824 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2009/07/13 20:16:19 | 000,348,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/04 18:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
========== Driver Services (SafeList) ==========
DRV:64bit: - File not found [Kernel | Boot | Stopped] -- C:\Windows\SysNative\DRIVERS\PBADRV.sys -- (PBADRV)
DRV:64bit: - [2010/05/04 09:37:29 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010/02/17 13:23:05 | 000,014,920 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2010/02/17 13:23:05 | 000,012,360 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2009/12/08 21:41:46 | 006,171,136 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009/11/05 20:36:26 | 000,293,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1k62x64.sys -- (e1kexpress) Intel®
DRV:64bit: - [2009/10/22 12:54:24 | 000,040,464 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\97904392.sys -- (97904392)
DRV:64bit: - [2009/10/09 22:30:56 | 000,352,784 | ---- | M] (Kaspersky Lab) [1]drv) setup_9.0.0.722_23.12.2010_14-27[1]drv [File_System | System | Running] -- C:\Windows\SysNative\drivers\9790439.sys -- (setup_9.0.0.722_23.12.2010_14-27[1]drv)
DRV:64bit: - [2009/09/25 16:59:46 | 000,157,712 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\97904391.sys -- (97904391)
DRV:64bit: - [2009/07/13 20:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/13 20:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/23 17:28:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel®
DRV:64bit: - [2009/06/22 18:01:26 | 000,497,152 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV:64bit: - [2009/06/10 15:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/04 21:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV - [2010/03/17 15:53:38 | 000,021,248 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Motive\MREMP50.sys -- (MREMP50)
DRV - [2010/03/17 15:53:22 | 000,020,096 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Motive\MRESP50.sys -- (MRESP50)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USREL/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:25480
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "search"
FF - prefs.js..browser.startup.homepage: "https://mace.hayesin...w/Main/WebHome"
FF - prefs.js..extensions.enabledItems: [email protected]:2.0.8
FF - prefs.js..extensions.enabledItems: [email protected]:3.0a4
FF - prefs.js..extensions.enabledItems: [email protected]:4.51
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/06/17 11:57:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/06/30 11:08:17 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/11/19 13:48:58 | 000,000,000 | ---D | M]
[2010/05/04 10:31:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\mmclaughlin\AppData\Roaming\mozilla\Extensions
[2011/01/05 12:27:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\mmclaughlin\AppData\Roaming\mozilla\Firefox\Profiles\97zfrw5x.default\extensions
[2010/09/15 11:19:44 | 000,000,000 | ---D | M] (Zotero) -- C:\Users\mmclaughlin\AppData\Roaming\mozilla\Firefox\Profiles\97zfrw5x.default\extensions\[email protected]
[2010/09/08 11:05:37 | 000,000,000 | ---D | M] (Zotero WinWord Integration) -- C:\Users\mmclaughlin\AppData\Roaming\mozilla\Firefox\Profiles\97zfrw5x.default\extensions\[email protected]
[2010/12/26 14:21:49 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/10/10 14:31:56 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/10/26 12:10:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010/12/26 14:21:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2010/06/17 11:57:11 | 000,000,000 | ---D | M] (HP Smart Web Printing) -- C:\PROGRAM FILES (X86)\HP\DIGITAL IMAGING\SMART WEB PRINTING\MOZILLAADDON3
[2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
O1 HOSTS File: ([2010/12/22 20:02:01 | 000,002,874 | RHS- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 74.125.45.100 4-open-davinci.com
O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com
O1 - Hosts: 74.125.45.100 privatesecuredpayments.com
O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com
O1 - Hosts: 74.125.45.100 getantivirusplusnow.com
O1 - Hosts: 74.125.45.100 secure-plus-payments.com
O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com
O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com
O1 - Hosts: 74.125.45.100 www.getavplusnow.com
O1 - Hosts: 74.125.45.100 safebrowsing-cache.google.com
O1 - Hosts: 74.125.45.100 urs.microsoft.com
O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com
O1 - Hosts: 74.125.45.100 secure.paysecuresystem.com
O1 - Hosts: 74.125.45.100 paysoftbillsolution.com
O1 - Hosts: 74.125.45.100 protected.maxisoftwaremart.com
O1 - Hosts: 204.152.194.149 www.google.com
O1 - Hosts: 204.152.194.149 google.com
O1 - Hosts: 204.152.194.149 google.com.au
O1 - Hosts: 204.152.194.149 www.google.com.au
O1 - Hosts: 204.152.194.149 google.be
O1 - Hosts: 204.152.194.149 www.google.be
O1 - Hosts: 204.152.194.149 google.com.br
O1 - Hosts: 204.152.194.149 www.google.com.br
O1 - Hosts: 204.152.194.149 google.ca
O1 - Hosts: 204.152.194.149 www.google.ca
O1 - Hosts: 37 more lines...
O2:64bit: - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Ovid Toolbar BHO) - {E2202548-A1BB-4E98-95E3-2385F565C035} - C:\Program Files (x86)\OvidToolbar\OvidToolbar.dll (Wolters Kluwer Health)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Ovid Toolbar) - {50A48C18-E58B-4101-ACDB-9B3B34568FE1} - C:\Program Files (x86)\OvidToolbar\OvidToolbar.dll (Wolters Kluwer Health)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSSE] c:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [picon] C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PIconStartup.exe ()
O4:64bit: - HKLM..\Run: [Verizon_McciTrayApp] C:\Program Files\Verizon\McciTrayApp.exe (Alcatel-Lucent)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [GoToMeeting] C:\Program Files (x86)\Citrix\GoToMeeting\457\g2mstart.exe (Citrix Online, a division of Citrix Systems, Inc.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - Startup: C:\Users\mmclaughlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_23.12.2010_14-27[1].lnk = C:\Users\mmclaughlin\Desktop\Virus Removal Tool\setup_9.0.0.722_23.12.2010_14-27[1]\startup.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 1
O9 - Extra Button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} http://cdn.scan.onec...s/wlscctrl2.cab (Windows Live OneCare safety scanner control)
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} https://h20436.www2....re/HPDEXAXO.cab (HP Download Manager)
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.h...tDetection2.cab (GMNRev Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 71.242.0.12 71.250.0.12
O18:64bit: - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{a54d0637-578a-11df-a759-a4badbf081fb}\Shell - "" = AutoRun
O33 - MountPoints2\{a54d0637-578a-11df-a759-a4badbf081fb}\Shell\AutoRun\command - "" = E:\SETUP.EXE -- File not found
O33 - MountPoints2\{a54d0637-578a-11df-a759-a4badbf081fb}\Shell\configure\command - "" = E:\SETUP.EXE -- File not found
O33 - MountPoints2\{a54d0637-578a-11df-a759-a4badbf081fb}\Shell\install\command - "" = E:\SETUP.EXE -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/01/08 00:44:02 | 000,000,000 | ---D | C] -- C:\Users\mmclaughlin\Desktop\Appies
[2011/01/08 00:34:37 | 000,000,000 | ---D | C] -- C:\Users\mmclaughlin\Desktop\Notes
[2010/12/29 23:58:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2010/12/29 23:00:29 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/12/29 22:47:14 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\mmclaughlin\Desktop\mbam-setup-1.50.1.1100.exe
[2010/12/28 19:56:09 | 000,000,000 | ---D | C] -- C:\Users\mmclaughlin\AppData\Roaming\U3
[2010/12/27 00:46:31 | 000,000,000 | ---D | C] -- C:\Users\mmclaughlin\AppData\Roaming\SUPERAntiSpyware.com
[2010/12/27 00:46:31 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2010/12/27 00:46:16 | 000,000,000 | ---D | C] -- C:\ProgramData\!SASCORE
[2010/12/27 00:46:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2010/12/27 00:46:01 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010/12/23 08:32:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2010/12/23 08:32:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2010/12/23 07:43:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2010/12/23 07:42:53 | 000,352,784 | ---- | C] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\9790439.sys
[2010/12/23 07:42:53 | 000,157,712 | ---- | C] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\97904391.sys
[2010/12/23 07:42:53 | 000,040,464 | ---- | C] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\97904392.sys
[2010/12/23 00:41:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live Safety Center
[2010/12/23 00:21:09 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2010/12/22 21:21:43 | 000,000,000 | ---D | C] -- C:\Users\mmclaughlin\AppData\Roaming\Motive
[2010/12/22 21:21:41 | 000,000,000 | ---D | C] -- C:\Program Files\Verizon
[2010/12/22 21:18:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Motive
[2010/12/22 21:18:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Motive
[2010/12/22 21:18:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Motive
[2010/12/22 20:53:19 | 000,000,000 | ---D | C] -- C:\Users\mmclaughlin\AppData\Local\Diagnostics
[2010/12/22 20:49:01 | 000,000,000 | ---D | C] -- C:\Users\mmclaughlin\AppData\Local\VirtualStore
[2010/12/22 20:00:58 | 000,000,000 | -HSD | C] -- C:\ProgramData\IAGZSV
[2010/12/22 20:00:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\6cfbc4
[2010/12/20 09:39:38 | 000,000,000 | ---D | C] -- C:\Users\mmclaughlin\AppData\Roaming\Malwarebytes
[2010/12/20 09:39:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/12/20 09:39:19 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/12/20 09:39:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
========== Files - Modified Within 30 Days ==========
[2011/01/08 00:06:33 | 000,014,256 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/01/08 00:06:33 | 000,014,256 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/01/07 23:58:00 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/01/07 23:57:54 | 1608,720,384 | -HS- | M] () -- C:\hiberfil.sys
[2010/12/29 22:53:48 | 000,013,136 | ---- | M] () -- C:\Users\mmclaughlin\Desktop\REF cheat sheet.docx
[2010/12/29 22:47:23 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\mmclaughlin\Desktop\mbam-setup-1.50.1.1100.exe
[2010/12/28 19:49:36 | 000,730,384 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/12/28 19:49:36 | 000,626,844 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/12/28 19:49:36 | 000,107,160 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/12/27 14:02:26 | 000,624,128 | ---- | M] () -- C:\Users\mmclaughlin\Desktop\dds.scr
[2010/12/26 16:00:53 | 000,296,448 | ---- | M] () -- C:\Users\mmclaughlin\Desktop\gxslih1v.exe
[2010/12/23 15:11:10 | 000,032,768 | ---- | M] () -- C:\Users\mmclaughlin\Documents\15233_HTCat1255-E-tegrity.doc
[2010/12/23 07:43:54 | 000,002,336 | ---- | M] () -- C:\Users\mmclaughlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_23.12.2010_14-27[1].lnk
[2010/12/22 21:37:35 | 000,002,727 | ---- | M] () -- C:\Users\Public\Desktop\Vz In-Home Agent.lnk
[2010/12/22 20:02:01 | 000,002,874 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.20101223-115853.backup
[2010/12/22 20:02:01 | 000,002,874 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.20101223-115851.backup
[2010/12/22 20:02:01 | 000,002,874 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.20101223-115838.backup
[2010/12/22 20:02:01 | 000,002,874 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.20101223-115837.backup
[2010/12/22 20:02:01 | 000,002,874 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.20101223-115836.backup
[2010/12/22 20:02:01 | 000,002,874 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.20101223-115835.backup
[2010/12/22 20:02:01 | 000,002,874 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.20101223-115834.backup
[2010/12/22 20:02:01 | 000,002,874 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.20101223-115833.backup
[2010/12/22 20:02:01 | 000,002,874 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.20101223-115832.backup
[2010/12/22 20:02:01 | 000,002,874 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2010/12/22 20:01:09 | 000,001,857 | ---- | M] () -- C:\Users\mmclaughlin\Desktop\Computer.lnk
[2010/12/22 20:01:09 | 000,001,643 | ---- | M] () -- C:\Users\mmclaughlin\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Antivirus 2011.lnk
[2010/12/21 15:10:54 | 000,000,162 | -H-- | M] () -- C:\Users\mmclaughlin\Desktop\~$yes_Style_Guide_06.29.2010 (Repaired).doc
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/12/20 18:08:40 | 000,024,152 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/12/16 03:24:28 | 000,304,448 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/12/12 22:43:02 | 000,055,524 | ---- | M] () -- C:\Users\mmclaughlin\Documents\15509_HTB_903_SECCA DAH.docx
[2010/12/12 20:00:37 | 000,149,504 | ---- | M] () -- C:\Users\mmclaughlin\Documents\HTB 1255-E E tegrity-jb mm 12 9 10edit sl.doc
[2010/12/11 19:11:14 | 000,000,162 | -H-- | M] () -- C:\Users\mmclaughlin\Desktop\~$yes_Style_Guide_06.29.2010.doc
========== Files Created - No Company Name ==========
[2010/12/29 17:24:50 | 000,013,136 | ---- | C] () -- C:\Users\mmclaughlin\Desktop\REF cheat sheet.docx
[2010/12/27 14:02:19 | 000,624,128 | ---- | C] () -- C:\Users\mmclaughlin\Desktop\dds.scr
[2010/12/26 16:00:48 | 000,296,448 | ---- | C] () -- C:\Users\mmclaughlin\Desktop\gxslih1v.exe
[2010/12/23 15:11:09 | 000,032,768 | ---- | C] () -- C:\Users\mmclaughlin\Documents\15233_HTCat1255-E-tegrity.doc
[2010/12/23 07:43:54 | 000,002,336 | ---- | C] () -- C:\Users\mmclaughlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_23.12.2010_14-27[1].lnk
[2010/12/22 21:37:35 | 000,002,727 | ---- | C] () -- C:\Users\Public\Desktop\Vz In-Home Agent.lnk
[2010/12/22 20:01:09 | 000,001,857 | ---- | C] () -- C:\Users\mmclaughlin\Desktop\Computer.lnk
[2010/12/22 20:01:09 | 000,001,643 | ---- | C] () -- C:\Users\mmclaughlin\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Antivirus 2011.lnk
[2010/12/21 15:10:54 | 000,000,162 | -H-- | C] () -- C:\Users\mmclaughlin\Desktop\~$yes_Style_Guide_06.29.2010 (Repaired).doc
[2010/12/12 22:43:01 | 000,055,524 | ---- | C] () -- C:\Users\mmclaughlin\Documents\15509_HTB_903_SECCA DAH.docx
[2010/12/12 20:00:34 | 000,149,504 | ---- | C] () -- C:\Users\mmclaughlin\Documents\HTB 1255-E E tegrity-jb mm 12 9 10edit sl.doc
[2010/12/11 19:11:14 | 000,000,162 | -H-- | C] () -- C:\Users\mmclaughlin\Desktop\~$yes_Style_Guide_06.29.2010.doc
[2010/06/17 10:54:32 | 000,002,127 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2010/06/03 16:09:54 | 000,000,026 | ---- | C] () -- C:\Windows\starter.INI
[2010/05/04 13:49:33 | 000,000,117 | ---- | C] () -- C:\Windows\restore.INI
[2010/05/04 10:26:15 | 000,730,638 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 16:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
========== LOP Check ==========
[2010/05/04 09:47:23 | 000,000,000 | ---D | M] -- C:\Users\mmclaughlin\AppData\Roaming\DAEMON Tools Lite
[2009/07/14 00:08:49 | 000,016,160 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report >