NGINX Virus and Firefox Problems

Just this evening, I got the "welcome to nginx" white screen when going to espn.com. Over the past two weeks or so I've also constantly had issues with unresponsive scripts in Firefox (usually something about xpcom popping up four or five times) when I come back on from hibernate. There are also a lot of ip address conflict issues lately - though I don't know if that's related or not to the two prior issues. Also I could not run the gmer program - it crashed about 2 min into the run twice in a row. I'm running Windows 7 on a lenovo thinkpad t400 and I use the latest version of firefox as a browser. I haven't had any virus issues in years and I ran a malware bytes full scan check last week with no problems. Thanks for your help and service - you guys are the best.

DDS:
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.5.1
Run by Jared at 22:44:33 on 2012-07-14
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.1944.710 [GMT -4:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\spoolsv.exe
C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\ABBYY\Lingvo\14.0\Licensing\NetworkLicenseServer.exe
C:\Program Files\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
C:\Program Files\Lenovo\Access Connections\AcPrfMgrSvc.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\LENOVO\HOTKEY\tposdsvc.exe
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\Windows\Explorer.EXE
C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Windows\System32\rpcnet.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Lenovo\Access Connections\AcSvc.exe
C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Lenovo\Message Center Plus\MCPLaunch.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\ThinkVantage\PrdCtr\LPMLCHK.EXE
C:\Program Files\ThinkVantage\PrdCtr\LPMGR.EXE
C:\Program Files\ABBYY Lingvo x3\LvAgent.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Absolute Software\Absolute Notifier\AbsoluteNotifier.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\TpShocks.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files\ABBYY Lingvo x3\Tutor.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Users\Jared\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Random House\WUD-WG\WGRU.exe
C:\Program Files\Lenovo\Access Connections\SvcGuiHlpr.exe
C:\PROGRA~1\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Intel\AMT\LMS.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Lenovo\System Update\SUService.exe
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE
C:\ProgramData\Rpcnet\Bin\rpcld.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
c:\program files\windows defender\MpCmdRun.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://google.com/
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
uURLSearchHooks: H - No File
mURLSearchHooks: H - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
EB: Canon Easy-WebPrint EX: {21347690-ec41-4f9a-8887-1f4aee672439} - c:\program files\canon\easy-webprint ex\ewpexhlp.dll
uRun: [uTorrent] "c:\program files\utorrent\uTorrent.exe" /MINIMIZED
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [Tutor.exe] "c:\program files\abbyy lingvo x3\Tutor.exe" /AS
mRun: [Acrobat Assistant 8.0] "c:\program files\adobe\acrobat 9.0\acrobat\Acrotray.exe"
mRun: [Adobe Acrobat Speed Launcher] "c:\program files\adobe\acrobat 9.0\acrobat\Acrobat_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [CreateLMBCShortCut] "c:\program files\lenovo\mobile broadband connect\UserShortcutCreator.exe"
mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup
mRun: [LVCOMSX] "c:\program files\common files\logishrd\lcommgr\LVComSX.exe"
mRun: [lxdqmon.exe] "c:\program files\lexmark z2400 series\lxdqmon.exe"
mRun: [Message Center Plus] c:\program files\lenovo\message center plus\MCPLaunch.exe /start
mRun: [LPMailChecker] c:\progra~1\thinkv~1\prdctr\LPMLCHK.exe
mRun: [LPManager] c:\progra~1\thinkv~1\prdctr\LPMGR.exe
mRun: [SmartAudio] c:\program files\conexant\saii\SAIICpl.exe /t
mRun: [Lingvo Launcher] "c:\program files\abbyy lingvo x3\LvAgent.exe" /STARTUP
mRun: [PWMTRV] rundll32 c:\progra~1\thinkpad\utilit~1\PWMTR32V.DLL,PwrMgrBkGndMonitor
mRun: [ATICustomerCare] "c:\program files\ati\aticustomercare\ATICustomerCare.exe"
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [AcWin7Hlpr] c:\program files\lenovo\access connections\AcTBenabler.exe
mRun: [Absolute Notifier] "c:\program files\absolute software\absolute notifier\AbsoluteNotifier.exe"
mRun: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun: [TpShocks] TpShocks.exe
mRun: [EvtMgr6] c:\program files\logitech\setpointp\SetPoint.exe /launchGaming
mRun: [Ad-Aware Browsing Protection] "c:\programdata\ad-aware browsing protection\adawarebp.exe"
StartupFolder: c:\users\jared\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\jared\appdata\roaming\dropbox\bin\Dropbox.exe
StartupFolder: c:\users\jared\appdata\roaming\micros~1\windows\startm~1\programs\startup\random~1.lnk - c:\program files\random house\wud-wg\WGRU.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\vpncli~1.lnk - c:\windows\installer\{b0bf7057-6869-4e4b-920c-ea2a58da07f0}\Icon3E5562ED7.ico
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: Translate with ABBYY Lingvo x&3 - c:\program files\abbyy lingvo x3\Lingvo.exe/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{69A83257-2A31-4569-BA02-724FF2074429} : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{69A83257-2A31-4569-BA02-724FF2074429}\C696E6B6379737 : DhcpNameServer = 75.75.75.75 75.75.76.76
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: AutorunsDisabled - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: c:\progra~1\google\google~1\googledesktopnetwork3.dll c:\windows\system32\acaptuser32.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\jared\appdata\roaming\mozilla\firefox\profiles\uxec0yck.jared\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?hl=en&source=mpes
FF - prefs.js: network.proxy.type - 2
FF - plugin: c:\program files\adobe\acrobat 9.0\acrobat\air\nppdf32.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\amazon\mp3 downloader\npAmazonMP3DownloaderPlugin.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\google updater\2.4.2432.1652\npCIDetect14.dll
FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: c:\program files\google\update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdjvu.dll
FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll
FF - plugin: c:\users\jared\appdata\locallow\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\users\jared\appdata\roaming\facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\users\jared\appdata\roaming\mozilla\firefox\profiles\uxec0yck.jared\extensions\{1bc9ba34-1eed-42ca-a505-6d2f1a935bbb}\plugins\npietab2.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_265.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 DozeHDD;DozeHDD;c:\windows\system32\drivers\DOZEHDD.SYS [2010-10-28 25416]
R0 TPDIGIMN;TPDIGIMN;c:\windows\system32\drivers\ApsHM86.sys [2010-6-16 20592]
R1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\drivers\smiif32.sys [2011-5-10 13680]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 ABBYY.Licensing.Lingvo.Desktop.14.0;ABBYY Lingvo x3 Licencing Service;c:\program files\common files\abbyy\lingvo\14.0\licensing\NetworkLicenseServer.exe [2010-5-7 816392]
R2 AbsoluteNotifier;Absolute Notifier;c:\program files\absolute software\absolute notifier\AbsoluteNotifierService.exe [2011-5-10 10920]
R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-1-3 63928]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-8-18 172032]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\intel\bluetoothhs\BTHSAmpPalService.exe [2011-8-8 948736]
R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service;c:\program files\intel\bluetoothhs\BTHSSecurityMgr.exe [2011-6-3 102672]
R2 DMAgent;Intel® PROSet/Wireless WiMAX Red Bend Device Management Service;c:\program files\intel\wimax\bin\DMAgent.exe [2009-7-2 348160]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\lenovo\communications utility\CamMute.exe [2011-5-10 41320]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\lenovo\communications utility\TPKNRSVC.exe [2011-5-10 65896]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\lenovo\virtscrl\lvvsst.exe [2010-10-29 93032]
R2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-4-17 11032]
R2 WinFLdrv;WinFLdrv;c:\windows\system32\WinFLdrv.sys [2010-11-23 17984]
R3 amdkmdag;amdkmdag;c:\windows\system32\drivers\atipmdag.sys [2009-8-24 5073920]
R3 amdkmdap;amdkmdap;c:\windows\system32\drivers\atikmpag.sys [2009-8-24 106496]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter;c:\windows\system32\drivers\AmpPal.sys [2011-8-8 243712]
R3 bpenum;Intel® WiMAX Link Enumerator;c:\windows\system32\drivers\bpenum.sys [2009-6-10 56320]
R3 e1yexpress;Intel® Gigabit Network Connections Driver;c:\windows\system32\drivers\e1y6232.sys [2012-4-30 223960]
R3 intelkmd;intelkmd;c:\windows\system32\drivers\igdpmd32.sys [2009-9-22 5946368]
R3 NETwNs32;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\drivers\NETwNs32.sys [2011-8-3 7517696]
R3 PCDSRVC{3037D694-FD904ACA-06020200}_0;PCDSRVC{3037D694-FD904ACA-06020200}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\pc-doctor\pcdsrvc.pkms [2011-3-31 22640]
R3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\drivers\tvti2c.sys [2009-7-2 38336]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-13 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2009-10-27 133104]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\lenovo\hotkey\micmute.exe [2012-4-30 101736]
S2 lxdqCATSCustConnectService;lxdqCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdqserv.exe [2009-4-27 94208]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-12 250056]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol;c:\windows\system32\drivers\AmpPal.sys [2011-8-8 243712]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 DozeSvc;Lenovo Doze Mode Service;c:\program files\thinkpad\utilities\DOZESVC.EXE [2010-10-28 280640]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\google\google desktop search\GoogleDesktop.exe [2009-10-27 30192]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2009-10-27 133104]
S3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\netw5v32.sys [2009-6-10 4231168]
S3 rcmirror;rcmirror;c:\windows\system32\drivers\rcmirror.sys [2010-1-18 3200]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-2-24 52224]
S3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\drivers\WSDPrint.sys [2009-7-13 17920]
.
=============== Created Last 30 ================
.
2012-07-15 02:43:22 56200 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{2c7e02cb-5ba8-4687-ac0a-ffa8ec01fff7}\offreg.dll
2012-07-13 14:37:33 6762896 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{2c7e02cb-5ba8-4687-ac0a-ffa8ec01fff7}\mpengine.dll
2012-07-12 00:15:10 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-07-09 16:49:00 53632 ----a-w- c:\windows\system32\drivers\stream.sys
2012-07-05 16:01:34 -------- d-----w- c:\users\jared\appdata\local\ElevatedDiagnostics
2012-07-03 01:18:54 -------- d-----w- c:\program files\Oracle
2012-07-03 01:18:03 772504 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-06-24 13:52:09 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-24 13:51:41 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-24 13:49:23 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-06-24 13:49:23 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-19 01:05:12 -------- d-----w- c:\users\jared\appdata\local\Lenovo
2012-06-19 00:54:34 309264 ----a-w- c:\windows\system32\drivers\SynTP.sys
2012-06-19 00:54:34 175376 ----a-w- c:\windows\system32\SynTPAPI.dll
2012-06-19 00:54:34 122128 ----a-w- c:\windows\system32\SynTPCo9.dll
2012-06-19 00:54:33 224528 ----a-w- c:\windows\system32\SynCtrl.dll
2012-06-19 00:54:33 1048576 ----a-w- c:\windows\system32\syndata.bin
2012-06-17 19:30:44 -------- d-----w- c:\programdata\GFI Software
2012-06-15 14:18:20 -------- d-----w- c:\users\jared\appdata\local\Macromedia
.
==================== Find3M ====================
.
2012-07-14 23:04:59 17920 ----a-w- c:\windows\system32\rpcnetp.exe
2012-07-13 23:04:43 58288 ----a-w- c:\windows\system32\rpcnet.dll
2012-07-12 14:31:59 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-12 14:31:59 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-12 04:08:54 17920 ----a-w- c:\windows\system32\rpcnetp.dll
2012-06-25 17:35:41 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2012-06-08 16:24:10 13160 ----a-w- c:\windows\system32\Upgrd.exe
2012-06-08 16:23:59 58288 ------w- c:\windows\system32\rpcnet.exe
2012-06-06 05:05:52 1390080 ----a-w- c:\windows\system32\msxml6.dll
2012-06-06 05:05:52 1236992 ----a-w- c:\windows\system32\msxml3.dll
2012-06-06 05:03:06 805376 ----a-w- c:\windows\system32\cdosys.dll
2012-06-04 17:42:57 49592 ----a-w- c:\windows\system32\pkgslv.exe
2012-06-04 17:42:56 46008 ----a-w- c:\windows\system32\pkgmgr.dll
2012-06-02 08:33:25 1800192 ----a-w- c:\windows\system32\jscript9.dll
2012-06-02 08:25:08 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-06-02 08:25:03 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2012-06-02 08:20:33 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2012-06-02 08:16:52 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-06-02 04:45:04 67440 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-06-02 04:45:03 134000 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-06-02 04:40:59 369336 ----a-w- c:\windows\system32\drivers\cng.sys
2012-06-02 04:40:39 225280 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 04:39:10 219136 ----a-w- c:\windows\system32\ncrypt.dll
2012-05-04 23:29:16 687504 ----a-w- c:\windows\system32\deployJava1.dll
2012-05-01 04:44:12 164352 ----a-w- c:\windows\system32\profsvc.dll
2012-04-28 03:17:07 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-04-26 04:45:55 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-04-26 04:45:54 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-04-26 04:41:16 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-04-24 04:36:42 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2012-04-24 04:36:42 1158656 ----a-w- c:\windows\system32\crypt32.dll
2012-04-24 04:36:42 103936 ----a-w- c:\windows\system32\cryptnet.dll
.
=================== ROOTKIT ====================
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.1.7601 Disk: HITACHI_ rev.PB2Z -> Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
.
device: opened successfully
user: MBR read successfully
.
Disk trace:
called modules: >>UNKNOWN [0x83019000]<< >>UNKNOWN [0x893C6000]<< >>UNKNOWN [0x893B5000]<< >>UNKNOWN [0x88C12000]<< >>UNKNOWN [0x8342B000]<< >>UNKNOWN [0x88E1D000]<< >>UNKNOWN [0x96BE3000]<< >>UNKNOWN [0x8FB35000]<< >>UNKNOWN [0x891B3000]<< >>UNKNOWN [0x895D4000]<<
_asm { DEC EBP; POP EDX; NOP ; ADD [EBX], AL; ADD [EAX], AL; ADD [EAX+EAX], AL; ADD [EAX], AL; }
1 ntkrnlpa!IofCallDriver[0x8305055A] -> \Device\Harddisk0\DR0[0x86930030]
\Driver\Disk[0x8692FD68] -> IRP_MJ_CREATE -> 0x893CA39F
3 [0x893CA59E] -> ntkrnlpa!IofCallDriver[0x8305055A] -> [0x85F096C8]
\Driver\ACPI[0x85AAC1E0] -> IRP_MJ_CREATE -> 0x88C1B4CC
5 [0x88C1B3D4] -> ntkrnlpa!IofCallDriver[0x8305055A] -> \Device\Ide\IAAStorageDevice-1[0x85B04028]
\Driver\iaStor[0x85F05C90] -> IRP_MJ_CREATE -> 0x88E61954
kernel: MBR read successfully
_asm { JMP 0x10; }
user & kernel MBR OK
copy of MBR has been found in sector 1 !
copy of MBR has been found in sector 9 !
Warning: possible TDL3 rootkit infection !
.
============= FINISH: 22:47:28.08 ===============

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Please Download
TDSSKiller.zip

>>> Double-click on TDSSKiller.exe to run the application.

• Click on the Start Scan button and wait for the scan and disinfection process to be over.
• If an infected file is detected, the default action will be Cure, click on Continue
  
• If a suspicious file is detected, the default action will be Skip, click on Continue
  
• If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file here.
• If no reboot is required, click on Report. A log file will appear. Please copy and paste the contents of that file in your next reply.

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it

• Click the "Scan" button to start scan.
• Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
• Please post the contents of that log in your next reply.

There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.

===

Please post the logs for my review.

Thanks for the reply and the help. The Avast seems to have stalled out - after three hours of no movement I just grabbed the log. Here are the logs:

TDS:
15:42:50.0808 7888 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
15:42:52.0456 7888 ============================================================
15:42:52.0456 7888 Current date / time: 2012/07/19 15:42:52.0456
15:42:52.0456 7888 SystemInfo:
15:42:52.0456 7888
15:42:52.0456 7888 OS Version: 6.1.7601 ServicePack: 1.0
15:42:52.0456 7888 Product type: Workstation
15:42:52.0456 7888 ComputerName: JARED-PC
15:42:52.0456 7888 UserName: Jared
15:42:52.0456 7888 Windows directory: C:\Windows
15:42:52.0456 7888 System windows directory: C:\Windows
15:42:52.0456 7888 Processor architecture: Intel x86
15:42:52.0456 7888 Number of processors: 2
15:42:52.0456 7888 Page size: 0x1000
15:42:52.0456 7888 Boot type: Normal boot
15:42:52.0456 7888 ============================================================
15:42:55.0000 7888 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x7E2D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
15:42:55.0014 7888 ============================================================
15:42:55.0015 7888 \Device\Harddisk0\DR0:
15:42:55.0047 7888 MBR partitions:
15:42:55.0047 7888 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2EE000
15:42:55.0047 7888 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x1BB4E7F8
15:42:55.0047 7888 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1BE3D000, BlocksNum 0x1388000
15:42:55.0047 7888 ============================================================
15:42:55.0105 7888 C: <-> \Device\Harddisk0\DR0\Partition1
15:42:55.0152 7888 S: <-> \Device\Harddisk0\DR0\Partition0
15:42:55.0207 7888 Q: <-> \Device\Harddisk0\DR0\Partition2
15:42:55.0207 7888 ============================================================
15:42:55.0207 7888 Initialize success
15:42:55.0207 7888 ============================================================
15:43:42.0100 10100 ============================================================
15:43:42.0100 10100 Scan started
15:43:42.0100 10100 Mode: Manual;
15:43:42.0100 10100 ============================================================
15:43:44.0244 10100 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
15:43:44.0264 10100 !SASCORE - ok
15:43:46.0663 10100 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
15:43:46.0665 10100 1394ohci - ok
15:43:46.0770 10100 61883 (beb5e6a8c17c3c7485563281e0f9e77e) C:\Windows\system32\DRIVERS\61883.sys
15:43:46.0771 10100 61883 - ok
15:43:48.0115 10100 ABBYY.Licensing.Lingvo.Desktop.14.0 (f87ab6ad0921efdb051d83d9b7224bbb) C:\Program Files\Common Files\ABBYY\Lingvo\14.0\Licensing\NetworkLicenseServer.exe
15:43:48.0222 10100 ABBYY.Licensing.Lingvo.Desktop.14.0 - ok
15:43:48.0454 10100 AbsoluteNotifier (28d79aaa4e1c15577a86f930e8da5e50) C:\Program Files\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
15:43:48.0501 10100 AbsoluteNotifier - ok
15:43:49.0358 10100 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
15:43:49.0406 10100 ACPI - ok
15:43:49.0614 10100 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
15:43:49.0623 10100 AcpiPmi - ok
15:43:50.0111 10100 AcPrfMgrSvc (40c186d35c0e307240d6bca399332b24) C:\Program Files\Lenovo\Access Connections\AcPrfMgrSvc.exe
15:43:50.0113 10100 AcPrfMgrSvc - ok
15:43:50.0812 10100 AcSvc (51e12e36bdeb10c0d9dbdb1fa4914800) C:\Program Files\Lenovo\Access Connections\AcSvc.exe
15:43:50.0836 10100 AcSvc - ok
15:43:51.0405 10100 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:43:51.0424 10100 AdobeARMservice - ok
15:43:52.0034 10100 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:43:52.0049 10100 AdobeFlashPlayerUpdateSvc - ok
15:43:52.0558 10100 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
15:43:52.0594 10100 adp94xx - ok
15:43:53.0112 10100 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
15:43:53.0143 10100 adpahci - ok
15:43:53.0359 10100 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
15:43:53.0368 10100 adpu320 - ok
15:43:53.0598 10100 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
15:43:53.0599 10100 AeLookupSvc - ok
15:43:53.0892 10100 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
15:43:53.0938 10100 AFD - ok
15:43:54.0098 10100 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
15:43:54.0100 10100 agp440 - ok
15:43:54.0196 10100 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
15:43:54.0198 10100 aic78xx - ok
15:43:54.0262 10100 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
15:43:54.0263 10100 ALG - ok
15:43:54.0390 10100 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
15:43:54.0391 10100 aliide - ok
15:43:54.0463 10100 AMD External Events Utility (d4713285c6f84272635dfe73bd9ed389) C:\Windows\system32\atiesrxx.exe
15:43:54.0466 10100 AMD External Events Utility - ok
15:43:54.0510 10100 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
15:43:54.0511 10100 amdagp - ok
15:43:54.0543 10100 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
15:43:54.0544 10100 amdide - ok
15:43:54.0595 10100 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
15:43:54.0596 10100 AmdK8 - ok
15:43:55.0452 10100 amdkmdag (3a894b97304c06ff46b5e7b6d1936bc3) C:\Windows\system32\DRIVERS\atipmdag.sys
15:43:55.0543 10100 amdkmdag - ok
15:43:56.0915 10100 amdkmdap (8e1023b042f6502cc83308fb1ebf5aa2) C:\Windows\system32\DRIVERS\atikmpag.sys
15:43:56.0916 10100 amdkmdap - ok
15:43:57.0141 10100 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
15:43:57.0142 10100 AmdPPM - ok
15:43:57.0201 10100 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
15:43:57.0203 10100 amdsata - ok
15:43:57.0251 10100 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
15:43:57.0254 10100 amdsbs - ok
15:43:57.0281 10100 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
15:43:57.0290 10100 amdxata - ok
15:43:57.0345 10100 AMPPAL (99bbef4a68bf398ed647f4eeb8ff66d4) C:\Windows\system32\DRIVERS\AMPPAL.sys
15:43:57.0348 10100 AMPPAL - ok
15:43:57.0353 10100 AMPPALP (99bbef4a68bf398ed647f4eeb8ff66d4) C:\Windows\system32\DRIVERS\amppal.sys
15:43:57.0355 10100 AMPPALP - ok
15:43:58.0866 10100 AMPPALR3 (ef4022e9c59b20438c1304424d9441f4) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
15:43:58.0943 10100 AMPPALR3 - ok
15:43:59.0633 10100 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
15:43:59.0634 10100 AppID - ok
15:43:59.0843 10100 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
15:43:59.0871 10100 AppIDSvc - ok
15:44:00.0181 10100 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
15:44:00.0183 10100 Appinfo - ok
15:44:00.0358 10100 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
15:44:00.0361 10100 AppMgmt - ok
15:44:00.0562 10100 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
15:44:00.0564 10100 arc - ok
15:44:00.0991 10100 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
15:44:00.0992 10100 arcsas - ok
15:44:01.0132 10100 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
15:44:01.0162 10100 AsyncMac - ok
15:44:01.0417 10100 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
15:44:01.0418 10100 atapi - ok
15:44:03.0818 10100 atikmdag (3a894b97304c06ff46b5e7b6d1936bc3) C:\Windows\system32\DRIVERS\atikmdag.sys
15:44:04.0111 10100 atikmdag - ok
15:44:04.0865 10100 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
15:44:04.0874 10100 AudioEndpointBuilder - ok
15:44:04.0884 10100 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
15:44:04.0887 10100 Audiosrv - ok
15:44:05.0226 10100 Avc (c44bdd77e06053cf5afe046f3a47c16b) C:\Windows\system32\DRIVERS\avc.sys
15:44:05.0227 10100 Avc - ok
15:44:05.0292 10100 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
15:44:05.0296 10100 AxInstSV - ok
15:44:05.0575 10100 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
15:44:05.0580 10100 b06bdrv - ok
15:44:05.0705 10100 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
15:44:05.0761 10100 b57nd60x - ok
15:44:06.0032 10100 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
15:44:06.0044 10100 BDESVC - ok
15:44:06.0106 10100 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
15:44:06.0129 10100 Beep - ok
15:44:06.0281 10100 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
15:44:06.0288 10100 BFE - ok
15:44:06.0451 10100 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\system32\qmgr.dll
15:44:06.0470 10100 BITS - ok
15:44:07.0073 10100 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
15:44:07.0097 10100 blbdrive - ok
15:44:07.0749 10100 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
15:44:07.0804 10100 Bonjour Service - ok
15:44:08.0074 10100 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
15:44:08.0075 10100 bowser - ok
15:44:08.0134 10100 bpenum (416b334ce8f5ff6b3a761dc09c284452) C:\Windows\system32\DRIVERS\bpenum.sys
15:44:08.0159 10100 bpenum - ok
15:44:08.0314 10100 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:44:08.0315 10100 BrFiltLo - ok
15:44:08.0341 10100 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:44:08.0343 10100 BrFiltUp - ok
15:44:08.0414 10100 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys
15:44:08.0416 10100 BridgeMP - ok
15:44:08.0493 10100 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
15:44:08.0504 10100 Browser - ok
15:44:08.0541 10100 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
15:44:08.0544 10100 Brserid - ok
15:44:08.0656 10100 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
15:44:08.0658 10100 BrSerWdm - ok
15:44:08.0679 10100 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:44:08.0681 10100 BrUsbMdm - ok
15:44:08.0695 10100 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
15:44:08.0696 10100 BrUsbSer - ok
15:44:08.0716 10100 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
15:44:08.0718 10100 BTHMODEM - ok
15:44:09.0088 10100 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
15:44:09.0096 10100 bthserv - ok
15:44:09.0442 10100 BTHSSecurityMgr (8893814133afdd17431e2682ede2dce9) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
15:44:09.0444 10100 BTHSSecurityMgr - ok
15:44:09.0559 10100 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
15:44:09.0581 10100 cdfs - ok
15:44:09.0754 10100 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
15:44:09.0756 10100 cdrom - ok
15:44:10.0096 10100 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
15:44:10.0099 10100 CertPropSvc - ok
15:44:10.0152 10100 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
15:44:10.0154 10100 circlass - ok
15:44:10.0413 10100 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
15:44:10.0418 10100 CLFS - ok
15:44:10.0623 10100 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:44:10.0626 10100 clr_optimization_v2.0.50727_32 - ok
15:44:10.0918 10100 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:44:10.0963 10100 clr_optimization_v4.0.30319_32 - ok
15:44:11.0018 10100 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
15:44:11.0019 10100 CmBatt - ok
15:44:11.0054 10100 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
15:44:11.0056 10100 cmdide - ok
15:44:11.0155 10100 CNG (247b4ce2dab1160cd422d532d5241e1f) C:\Windows\system32\Drivers\cng.sys
15:44:11.0160 10100 CNG - ok
15:44:11.0546 10100 CnxtHdAudService (726803d911045d283509d3cdd91d8e52) C:\Windows\system32\drivers\CHDRT32.sys
15:44:11.0551 10100 CnxtHdAudService - ok
15:44:11.0622 10100 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
15:44:11.0623 10100 Compbatt - ok
15:44:11.0715 10100 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
15:44:11.0717 10100 CompositeBus - ok
15:44:11.0743 10100 COMSysApp - ok
15:44:11.0769 10100 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
15:44:11.0770 10100 crcdisk - ok
15:44:11.0982 10100 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
15:44:12.0006 10100 CryptSvc - ok
15:44:12.0358 10100 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
15:44:12.0363 10100 CSC - ok
15:44:12.0440 10100 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
15:44:12.0448 10100 CscService - ok
15:44:12.0517 10100 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys
15:44:12.0545 10100 CVirtA - ok
15:44:13.0181 10100 CVPND (66257cb4e4fb69887cddc71663741435) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
15:44:13.0244 10100 CVPND - ok
15:44:14.0219 10100 CVPNDRVA (18994842386fd3039279d7865740abbd) C:\Windows\system32\Drivers\CVPNDRVA.sys
15:44:14.0223 10100 CVPNDRVA - ok
15:44:14.0431 10100 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
15:44:14.0467 10100 DcomLaunch - ok
15:44:14.0666 10100 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
15:44:14.0688 10100 defragsvc - ok
15:44:14.0733 10100 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
15:44:14.0735 10100 DfsC - ok
15:44:14.0871 10100 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
15:44:14.0913 10100 Dhcp - ok
15:44:14.0968 10100 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
15:44:14.0970 10100 discache - ok
15:44:15.0081 10100 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
15:44:15.0083 10100 Disk - ok
15:44:15.0399 10100 DLABMFSM (5b149ccfe275f4de0b4b8ec6b9f6821e) C:\Windows\system32\DLA\DLABMFSM.SYS
15:44:15.0413 10100 DLABMFSM - ok
15:44:15.0439 10100 DLABOIOM (ad4cb3d783634c90a9d0ce360933a63c) C:\Windows\system32\DLA\DLABOIOM.SYS
15:44:15.0440 10100 DLABOIOM - ok
15:44:15.0451 10100 DLACDBHM (5230cdb7e715f3a3b4a882e254cdd35d) C:\Windows\system32\Drivers\DLACDBHM.SYS
15:44:15.0453 10100 DLACDBHM - ok
15:44:15.0466 10100 DLADResM (93d03238cc3f0ee3c0b3985d110ec575) C:\Windows\system32\DLA\DLADResM.SYS
15:44:15.0467 10100 DLADResM - ok
15:44:15.0531 10100 DLAIFS_M (6a82f77c4a6f5235bf352f0028e2ef52) C:\Windows\system32\DLA\DLAIFS_M.SYS
15:44:15.0532 10100 DLAIFS_M - ok
15:44:15.0580 10100 DLAOPIOM (0e6052c0ada37504896a847231a3907d) C:\Windows\system32\DLA\DLAOPIOM.SYS
15:44:15.0581 10100 DLAOPIOM - ok
15:44:15.0585 10100 DLAPoolM (29670bb4e2b973c5b55a76107d4910b2) C:\Windows\system32\DLA\DLAPoolM.SYS
15:44:15.0586 10100 DLAPoolM - ok
15:44:15.0738 10100 DLARTL_M (77fe51f0f8d86804cb81f6ef6bfb86dd) C:\Windows\system32\Drivers\DLARTL_M.SYS
15:44:15.0739 10100 DLARTL_M - ok
15:44:15.0824 10100 DLAUDFAM (6b087732b86c1d866d69dbbe463ea90a) C:\Windows\system32\DLA\DLAUDFAM.SYS
15:44:15.0826 10100 DLAUDFAM - ok
15:44:15.0876 10100 DLAUDF_M (bbeecb95f2841ae4a3e3690d46d7153d) C:\Windows\system32\DLA\DLAUDF_M.SYS
15:44:15.0877 10100 DLAUDF_M - ok
15:44:16.0052 10100 DMAgent (1a599ed18fd1277c77c613cf6bfd395b) C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
15:44:16.0056 10100 DMAgent - ok
15:44:16.0308 10100 DNE (b5aa5aa5ac327bd7c1aec0c58f0c1144) C:\Windows\system32\DRIVERS\dne2000.sys
15:44:16.0310 10100 DNE - ok
15:44:16.0397 10100 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
15:44:16.0402 10100 Dnscache - ok
15:44:16.0823 10100 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
15:44:16.0830 10100 dot3svc - ok
15:44:17.0018 10100 DozeHDD (3c2fec38d9d825c69c29fe5eb7339cb5) C:\Windows\system32\DRIVERS\DozeHDD.sys
15:44:17.0019 10100 DozeHDD - ok
15:44:17.0294 10100 DozeSvc (a318df063df2bc2c5f81644997068631) C:\Program Files\ThinkPad\Utilities\DOZESVC.EXE
15:44:17.0311 10100 DozeSvc - ok
15:44:17.0600 10100 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
15:44:17.0606 10100 DPS - ok
15:44:17.0719 10100 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
15:44:17.0756 10100 drmkaud - ok
15:44:18.0125 10100 DRVMCDB (83106585494d5eb96f59187200c144bd) C:\Windows\system32\Drivers\DRVMCDB.SYS
15:44:18.0127 10100 DRVMCDB - ok
15:44:18.0134 10100 DRVNDDM (ffc371525aa55d1bae18715ebcb8797c) C:\Windows\system32\Drivers\DRVNDDM.SYS
15:44:18.0136 10100 DRVNDDM - ok
15:44:18.0269 10100 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
15:44:18.0277 10100 DXGKrnl - ok
15:44:18.0360 10100 e1yexpress (f8261752ab473e3b24376aab280ad15a) C:\Windows\system32\DRIVERS\e1y6232.sys
15:44:18.0363 10100 e1yexpress - ok
15:44:18.0443 10100 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
15:44:18.0469 10100 EapHost - ok
15:44:19.0957 10100 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
15:44:20.0042 10100 ebdrv - ok
15:44:21.0715 10100 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
15:44:21.0748 10100 EFS - ok
15:44:22.0018 10100 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
15:44:22.0030 10100 ehRecvr - ok
15:44:22.0070 10100 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
15:44:22.0072 10100 ehSched - ok
15:44:22.0425 10100 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
15:44:22.0431 10100 elxstor - ok
15:44:22.0490 10100 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
15:44:22.0510 10100 ErrDev - ok
15:44:22.0831 10100 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
15:44:22.0867 10100 EventSystem - ok
15:44:23.0880 10100 EvtEng (b6c691d8cae275ed9b2782e62626f36a) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
15:44:23.0927 10100 EvtEng - ok
15:44:24.0927 10100 ewusbnet - ok
15:44:25.0292 10100 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
15:44:25.0318 10100 exfat - ok
15:44:25.0355 10100 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
15:44:25.0358 10100 fastfat - ok
15:44:25.0437 10100 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
15:44:25.0447 10100 Fax - ok
15:44:25.0637 10100 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
15:44:25.0639 10100 fdc - ok
15:44:25.0766 10100 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
15:44:25.0778 10100 fdPHost - ok
15:44:25.0799 10100 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
15:44:25.0804 10100 FDResPub - ok
15:44:25.0836 10100 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
15:44:25.0838 10100 FileInfo - ok
15:44:25.0850 10100 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
15:44:25.0852 10100 Filetrace - ok
15:44:26.0287 10100 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
15:44:26.0314 10100 FLEXnet Licensing Service - ok
15:44:26.0354 10100 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
15:44:26.0355 10100 flpydisk - ok
15:44:26.0426 10100 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
15:44:26.0429 10100 FltMgr - ok
15:44:26.0718 10100 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
15:44:26.0760 10100 FontCache - ok
15:44:27.0100 10100 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:44:27.0101 10100 FontCache3.0.0.0 - ok
15:44:27.0232 10100 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
15:44:27.0234 10100 FsDepends - ok
15:44:27.0352 10100 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
15:44:27.0353 10100 Fs_Rec - ok
15:44:27.0457 10100 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
15:44:27.0460 10100 fvevol - ok
15:44:27.0511 10100 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:44:27.0513 10100 gagp30kx - ok
15:44:27.0517 10100 GdmWmPrt - ok
15:44:27.0574 10100 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:44:27.0576 10100 GEARAspiWDM - ok
15:44:27.0845 10100 GoogleDesktopManager-051210-111108 (9f5f2f0fb0a7f5aa9f16b9a7b6dad89f) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
15:44:27.0846 10100 GoogleDesktopManager-051210-111108 - ok
15:44:28.0143 10100 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
15:44:28.0155 10100 gpsvc - ok
15:44:28.0268 10100 gupdate (626a24ed1228580b9518c01930936df9) C:\Program Files\Google\Update\GoogleUpdate.exe
15:44:28.0270 10100 gupdate - ok
15:44:28.0333 10100 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files\Google\Update\GoogleUpdate.exe
15:44:28.0334 10100 gupdatem - ok
15:44:28.0392 10100 gusvc (408ddd80eede47175f6844817b90213e) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:44:28.0395 10100 gusvc - ok
15:44:28.0687 10100 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
15:44:28.0689 10100 hcw85cir - ok
15:44:28.0790 10100 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
15:44:28.0810 10100 HDAudBus - ok
15:44:28.0872 10100 HECI (2df64415a28ce036ac6acec7645a996f) C:\Windows\system32\DRIVERS\HECI.sys
15:44:28.0874 10100 HECI - ok
15:44:28.0909 10100 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
15:44:28.0911 10100 HidBatt - ok
15:44:28.0945 10100 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
15:44:28.0963 10100 HidBth - ok
15:44:29.0009 10100 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
15:44:29.0011 10100 HidIr - ok
15:44:29.0092 10100 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll
15:44:29.0098 10100 hidserv - ok
15:44:29.0181 10100 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
15:44:29.0207 10100 HidUsb - ok
15:44:29.0265 10100 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
15:44:29.0274 10100 hkmsvc - ok
15:44:29.0519 10100 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
15:44:29.0529 10100 HomeGroupListener - ok
15:44:29.0832 10100 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
15:44:29.0846 10100 HomeGroupProvider - ok
15:44:29.0935 10100 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
15:44:29.0937 10100 HpSAMD - ok
15:44:30.0031 10100 HSF_DPV (fadd7095163cb3cb4073793ebb50fe75) C:\Windows\system32\DRIVERS\HSX_DPV.sys
15:44:30.0041 10100 HSF_DPV - ok
15:44:30.0277 10100 HSXHWAZL (058783bedd17615d1fece09f77960436) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
15:44:30.0281 10100 HSXHWAZL - ok
15:44:30.0396 10100 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
15:44:30.0402 10100 HTTP - ok
15:44:30.0471 10100 hwdatacard - ok
15:44:30.0490 10100 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
15:44:30.0492 10100 hwpolicy - ok
15:44:30.0555 10100 hwusbdev - ok
15:44:30.0581 10100 hwusbfake - ok
15:44:30.0682 10100 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
15:44:30.0685 10100 i8042prt - ok
15:44:31.0356 10100 IAANTMON (0e899d0db39617aa0b2f992e7e95b5eb) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
15:44:31.0411 10100 IAANTMON - ok
15:44:32.0087 10100 iaStor (01446278d4563b3013c92830ae6cbb26) C:\Windows\system32\DRIVERS\iaStor.sys
15:44:32.0089 10100 iaStor - ok
15:44:32.0164 10100 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
15:44:32.0169 10100 iaStorV - ok
15:44:32.0266 10100 IBMPMDRV (fa3d0a6da7bb7968efe5c5bc267f0e55) C:\Windows\system32\DRIVERS\ibmpmdrv.sys
15:44:32.0268 10100 IBMPMDRV - ok
15:44:32.0290 10100 IBMPMSVC (495f184a29b80b51735bcee91d84fe8f) C:\Windows\system32\ibmpmsvc.exe
15:44:32.0309 10100 IBMPMSVC - ok
15:44:32.0509 10100 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:44:32.0511 10100 IDriverT - ok
15:44:32.0734 10100 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:44:32.0744 10100 idsvc - ok
15:44:34.0031 10100 igfx (36cc40b02ae593d6152ac8bd657720af) C:\Windows\system32\DRIVERS\igdkmd32.sys
15:44:34.0327 10100 igfx - ok
15:44:34.0660 10100 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
15:44:34.0663 10100 iirsp - ok
15:44:34.0941 10100 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
15:44:35.0008 10100 IKEEXT - ok
15:44:35.0105 10100 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
15:44:35.0107 10100 intelide - ok
15:44:36.0502 10100 intelkmd (36cc40b02ae593d6152ac8bd657720af) C:\Windows\system32\DRIVERS\igdpmd32.sys
15:44:36.0617 10100 intelkmd - ok
15:44:37.0681 10100 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
15:44:37.0683 10100 intelppm - ok
15:44:37.0851 10100 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
15:44:37.0859 10100 IPBusEnum - ok
15:44:37.0890 10100 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:44:37.0892 10100 IpFilterDriver - ok
15:44:38.0357 10100 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
15:44:38.0369 10100 iphlpsvc - ok
15:44:38.0424 10100 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
15:44:38.0426 10100 IPMIDRV - ok
15:44:38.0456 10100 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
15:44:38.0459 10100 IPNAT - ok
15:44:38.0892 10100 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
15:44:38.0900 10100 iPod Service - ok
15:44:38.0965 10100 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
15:44:38.0967 10100 IRENUM - ok
15:44:39.0342 10100 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
15:44:39.0356 10100 isapnp - ok
15:44:39.0535 10100 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
15:44:39.0601 10100 iScsiPrt - ok
15:44:39.0901 10100 IviRegMgr (213822072085b5bbad9af30ab577d817) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
15:44:39.0903 10100 IviRegMgr - ok
15:44:39.0983 10100 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
15:44:39.0985 10100 kbdclass - ok
15:44:40.0059 10100 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
15:44:40.0061 10100 kbdhid - ok
15:44:40.0217 10100 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:44:40.0227 10100 KeyIso - ok
15:44:40.0428 10100 KSecDD (b7895b4182c0d16f6efadeb8081e8d36) C:\Windows\system32\Drivers\ksecdd.sys
15:44:40.0430 10100 KSecDD - ok
15:44:40.0501 10100 KSecPkg (d30159ac9237519fbc62c6ec247d2d46) C:\Windows\system32\Drivers\ksecpkg.sys
15:44:40.0504 10100 KSecPkg - ok
15:44:40.0930 10100 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
15:44:40.0943 10100 KtmRm - ok
15:44:41.0363 10100 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\System32\srvsvc.dll
15:44:41.0379 10100 LanmanServer - ok
15:44:41.0436 10100 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
15:44:41.0454 10100 LanmanWorkstation - ok
15:44:41.0740 10100 Lavasoft Kernexplorer - ok
15:44:41.0772 10100 Lbd - ok
15:44:42.0433 10100 LBTServ (910344e2a984010435ae84783b25e5eb) C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
15:44:42.0437 10100 LBTServ - ok
15:44:42.0595 10100 LENOVO.CAMMUTE (8b5eb24fce3926128138b769d50cee1b) C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
15:44:42.0596 10100 LENOVO.CAMMUTE - ok
15:44:42.0911 10100 LENOVO.MICMUTE (340288b3b2edc8afd5ff127df85142a7) C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
15:44:42.0913 10100 LENOVO.MICMUTE - ok
15:44:42.0965 10100 lenovo.smi (9aac267a225f3caebb9e633f7eb16e4b) C:\Windows\system32\DRIVERS\smiif32.sys
15:44:42.0993 10100 lenovo.smi - ok
15:44:43.0223 10100 LENOVO.TPKNRSVC (f1a055e1381528e947cdb959117b67d0) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
15:44:43.0224 10100 LENOVO.TPKNRSVC - ok
15:44:43.0264 10100 Lenovo.VIRTSCRLSVC (6f2cc57eb5836d2ac9bd37f3554d55f8) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
15:44:43.0266 10100 Lenovo.VIRTSCRLSVC - ok
15:44:43.0398 10100 LHidFilt (01cc7fb6e790ef044b411377f3a1ff41) C:\Windows\system32\DRIVERS\LHidFilt.Sys
15:44:43.0400 10100 LHidFilt - ok
15:44:43.0466 10100 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
15:44:43.0468 10100 lltdio - ok
15:44:43.0531 10100 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
15:44:43.0542 10100 lltdsvc - ok
15:44:43.0569 10100 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
15:44:43.0590 10100 lmhosts - ok
15:44:43.0732 10100 LMouFilt (a2e7eae8898d7b4b8c302b8f4e836bb5) C:\Windows\system32\DRIVERS\LMouFilt.Sys
15:44:43.0734 10100 LMouFilt - ok
15:44:43.0905 10100 LMS (6a38bf67bba38e8087f2a0f05fab6de7) C:\Program Files\Intel\AMT\LMS.exe
15:44:43.0908 10100 LMS - ok
15:44:44.0477 10100 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:44:44.0481 10100 LSI_FC - ok
15:44:44.0532 10100 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:44:44.0535 10100 LSI_SAS - ok
15:44:44.0950 10100 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:44:44.0953 10100 LSI_SAS2 - ok
15:44:44.0982 10100 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:44:44.0985 10100 LSI_SCSI - ok
15:44:45.0018 10100 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
15:44:45.0021 10100 luafv - ok
15:44:46.0035 10100 LVcKap (3eb293211b3adfa50c5bd84660c6ef33) C:\Windows\system32\DRIVERS\LVcKap.sys
15:44:46.0102 10100 LVcKap - ok
15:44:47.0379 10100 LVMVDrv (f323ba024da94ec7524755a3b3625097) C:\Windows\system32\DRIVERS\LVMVDrv.sys
15:44:47.0442 10100 LVMVDrv - ok
15:44:49.0048 10100 lvpopflt (b0456b8a332135c1216ff2374b584161) C:\Windows\system32\DRIVERS\lvpopflt.sys
15:44:49.0108 10100 lvpopflt - ok
15:44:49.0570 10100 LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\Windows\system32\DRIVERS\LVPr2Mon.sys
15:44:49.0572 10100 LVPr2Mon - ok
15:44:50.0064 10100 LVPrcSrv (0ddfdcaa92c7f553328db06ba599bea9) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
15:44:50.0066 10100 LVPrcSrv - ok
15:44:50.0142 10100 LVSrvLauncher (cf670e0917da4fc4e0aa1068a635b673) C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
15:44:50.0143 10100 LVSrvLauncher - ok
15:44:50.0213 10100 LVUSBSta (f7e15f2fe7790733df86e95a76556389) C:\Windows\system32\DRIVERS\LVUSBSta.sys
15:44:50.0216 10100 LVUSBSta - ok
15:44:50.0740 10100 LVUVC (92d03dc19eae9d0a86735705e374fdad) C:\Windows\system32\DRIVERS\lvuvc.sys
15:44:50.0835 10100 LVUVC - ok
15:44:51.0673 10100 lxdqCATSCustConnectService (4a0b6533f035d74729942ee1d19c35c5) C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdqserv.exe
15:44:51.0703 10100 lxdqCATSCustConnectService - ok
15:44:51.0781 10100 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
15:44:51.0791 10100 Mcx2Svc - ok
15:44:51.0960 10100 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
15:44:51.0982 10100 mdmxsdk - ok
15:44:52.0010 10100 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
15:44:52.0012 10100 megasas - ok
15:44:52.0063 10100 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
15:44:52.0078 10100 MegaSR - ok
15:44:52.0329 10100 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
15:44:52.0338 10100 MMCSS - ok
15:44:52.0496 10100 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
15:44:52.0499 10100 Modem - ok
15:44:52.0643 10100 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
15:44:52.0645 10100 monitor - ok
15:44:52.0766 10100 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
15:44:52.0768 10100 mouclass - ok
15:44:52.0789 10100 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
15:44:52.0791 10100 mouhid - ok
15:44:52.0829 10100 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
15:44:52.0832 10100 mountmgr - ok
15:44:53.0034 10100 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:44:53.0056 10100 MozillaMaintenance - ok
15:44:53.0119 10100 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
15:44:53.0121 10100 mpio - ok
15:44:53.0161 10100 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
15:44:53.0164 10100 mpsdrv - ok
15:44:53.0337 10100 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
15:44:53.0352 10100 MpsSvc - ok
15:44:53.0697 10100 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
15:44:53.0700 10100 MRxDAV - ok
15:44:53.0757 10100 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:44:53.0771 10100 mrxsmb - ok
15:44:53.0927 10100 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:44:53.0931 10100 mrxsmb10 - ok
15:44:54.0004 10100 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:44:54.0007 10100 mrxsmb20 - ok
15:44:54.0064 10100 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
15:44:54.0067 10100 msahci - ok
15:44:54.0284 10100 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
15:44:54.0287 10100 msdsm - ok
15:44:54.0348 10100 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
15:44:54.0360 10100 MSDTC - ok
15:44:54.0584 10100 MSDV (114b67c324d64c8195fd3bf93b4df02a) C:\Windows\system32\DRIVERS\msdv.sys
15:44:54.0586 10100 MSDV - ok
15:44:54.0694 10100 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
15:44:54.0697 10100 Msfs - ok
15:44:54.0729 10100 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
15:44:54.0732 10100 mshidkmdf - ok
15:44:54.0870 10100 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
15:44:54.0886 10100 msisadrv - ok
15:44:54.0950 10100 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
15:44:55.0000 10100 MSiSCSI - ok
15:44:55.0003 10100 msiserver - ok
15:44:55.0079 10100 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
15:44:55.0095 10100 MSKSSRV - ok
15:44:55.0121 10100 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
15:44:55.0123 10100 MSPCLOCK - ok
15:44:55.0177 10100 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
15:44:55.0180 10100 MSPQM - ok
15:44:55.0611 10100 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
15:44:55.0656 10100 MsRPC - ok
15:44:55.0796 10100 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
15:44:55.0798 10100 mssmbios - ok
15:44:55.0846 10100 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
15:44:55.0848 10100 MSTEE - ok
15:44:55.0890 10100 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
15:44:55.0893 10100 MTConfig - ok
15:44:56.0150 10100 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
15:44:56.0173 10100 Mup - ok
15:44:56.0230 10100 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
15:44:56.0250 10100 napagent - ok
15:44:56.0326 10100 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
15:44:56.0331 10100 NativeWifiP - ok
15:44:56.0683 10100 NBService (87a00faedd703d8d2bdcb29ce5eeea6b) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
15:44:56.0707 10100 NBService - ok
15:44:57.0541 10100 NDIS (3723262737d90f58059ceda7373b0387) C:\Windows\system32\drivers\ndis.sys
15:44:57.0549 10100 NDIS - ok
15:44:57.0657 10100 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
15:44:57.0679 10100 NdisCap - ok
15:44:57.0730 10100 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
15:44:57.0733 10100 NdisTapi - ok
15:44:57.0774 10100 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
15:44:57.0776 10100 Ndisuio - ok
15:44:57.0821 10100 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
15:44:57.0825 10100 NdisWan - ok
15:44:58.0036 10100 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
15:44:58.0039 10100 NDProxy - ok
15:44:58.0075 10100 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
15:44:58.0078 10100 NetBIOS - ok
15:44:58.0168 10100 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
15:44:58.0172 10100 NetBT - ok
15:44:58.0234 10100 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:44:58.0243 10100 Netlogon - ok
15:44:58.0386 10100 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
15:44:58.0399 10100 Netman - ok
15:44:58.0450 10100 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
15:44:58.0463 10100 netprofm - ok
15:44:58.0671 10100 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:44:58.0673 10100 NetTcpPortSharing - ok
15:44:59.0411 10100 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
15:44:59.0583 10100 netw5v32 - ok
15:45:01.0284 10100 NETwNs32 (5c979c481981e04919ecbb3b88d54b34) C:\Windows\system32\DRIVERS\NETwNs32.sys
15:45:01.0482 10100 NETwNs32 - ok
15:45:02.0387 10100 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
15:45:02.0414 10100 nfrd960 - ok
15:45:02.0666 10100 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
15:45:02.0721 10100 NlaSvc - ok
15:45:02.0803 10100 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
15:45:02.0806 10100 Npfs - ok
15:45:03.0004 10100 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
15:45:03.0024 10100 nsi - ok
15:45:03.0043 10100 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
15:45:03.0045 10100 nsiproxy - ok
15:45:03.0414 10100 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
15:45:03.0427 10100 Ntfs - ok
15:45:04.0114 10100 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
15:45:04.0135 10100 Null - ok
15:45:04.0290 10100 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
15:45:04.0294 10100 nvraid - ok
15:45:04.0335 10100 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
15:45:04.0339 10100 nvstor - ok
15:45:04.0406 10100 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
15:45:04.0409 10100 nv_agp - ok
15:45:04.0797 10100 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
15:45:04.0819 10100 ohci1394 - ok
15:45:05.0215 10100 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:45:05.0217 10100 ose - ok
15:45:05.0329 10100 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
15:45:05.0348 10100 p2pimsvc - ok
15:45:05.0423 10100 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
15:45:05.0477 10100 p2psvc - ok
15:45:05.0874 10100 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
15:45:05.0897 10100 Parport - ok
15:45:05.0966 10100 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
15:45:05.0969 10100 partmgr - ok
15:45:06.0036 10100 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
15:45:06.0047 10100 Parvdm - ok
15:45:06.0096 10100 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
15:45:06.0139 10100 PcaSvc - ok
15:45:06.0589 10100 PCDSRVC{3037D694-FD904ACA-06020200}_0 (2dd9d5a9150c7015ac7f215efa59e44f) c:\program files\pc-doctor\pcdsrvc.pkms
15:45:06.0638 10100 PCDSRVC{3037D694-FD904ACA-06020200}_0 - ok
15:45:06.0868 10100 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
15:45:06.0872 10100 pci - ok
15:45:06.0923 10100 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
15:45:06.0925 10100 pciide - ok
15:45:06.0966 10100 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
15:45:06.0970 10100 pcmcia - ok
15:45:07.0003 10100 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
15:45:07.0005 10100 pcw - ok
15:45:07.0112 10100 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
15:45:07.0140 10100 PEAUTH - ok
15:45:08.0228 10100 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
15:45:08.0273 10100 PeerDistSvc - ok
15:45:09.0107 10100 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
15:45:09.0186 10100 pla - ok
15:45:09.0713 10100 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
15:45:09.0742 10100 PlugPlay - ok
15:45:09.0838 10100 Pml Driver HPZ12 (379f7a0ec9fbe07629fd3f244d3e3e44) C:\Windows\system32\HPZipm12.dll
15:45:09.0845 10100 Pml Driver HPZ12 - ok
15:45:09.0894 10100 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
15:45:09.0906 10100 PNRPAutoReg - ok
15:45:09.0929 10100 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
15:45:09.0942 10100 PNRPsvc - ok
15:45:10.0016 10100 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
15:45:10.0027 10100 PolicyAgent - ok
15:45:10.0324 10100 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
15:45:10.0342 10100 Power - ok
15:45:11.0175 10100 Power Manager DBC Service (75fc38862db8b5897cd96753aca133ed) C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE
15:45:11.0322 10100 Power Manager DBC Service - ok
15:45:12.0379 10100 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
15:45:12.0382 10100 PptpMiniport - ok
15:45:12.0411 10100 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
15:45:12.0428 10100 Processor - ok
15:45:12.0486 10100 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
15:45:12.0510 10100 ProfSvc - ok
15:45:12.0546 10100 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:45:12.0555 10100 ProtectedStorage - ok
15:45:12.0751 10100 psadd (80ddc44934305224aebfc37a264803c2) C:\Windows\system32\DRIVERS\psadd.sys
15:45:12.0753 10100 psadd - ok
15:45:12.0820 10100 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
15:45:12.0823 10100 Psched - ok
15:45:13.0459 10100 PwmEWSvc (dd080f6bf9de8e8dfbe3a7a4d90d3755) C:\Program Files\ThinkPad\Utilities\PWMEWSVC.EXE
15:45:13.0462 10100 PwmEWSvc - ok
15:45:13.0502 10100 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
15:45:13.0505 10100 PxHelp20 - ok
15:45:13.0811 10100 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
15:45:13.0857 10100 ql2300 - ok
15:45:15.0134 10100 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
15:45:15.0137 10100 ql40xx - ok
15:45:15.0411 10100 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
15:45:15.0456 10100 QWAVE - ok
15:45:15.0472 10100 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
15:45:15.0475 10100 QWAVEdrv - ok
15:45:15.0574 10100 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
15:45:15.0600 10100 RasAcd - ok
15:45:15.0706 10100 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
15:45:15.0708 10100 RasAgileVpn - ok
15:45:15.0770 10100 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
15:45:15.0784 10100 RasAuto - ok
15:45:16.0188 10100 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:45:16.0191 10100 Rasl2tp - ok
15:45:16.0372 10100 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
15:45:16.0416 10100 RasMan - ok
15:45:16.0491 10100 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
15:45:16.0494 10100 RasPppoe - ok
15:45:16.0587 10100 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
15:45:16.0590 10100 RasSstp - ok
15:45:16.0658 10100 rcmirror (a7bad9853a70e2e7808be027efe0522a) C:\Windows\system32\DRIVERS\rcmirror.sys
15:45:16.0675 10100 rcmirror - ok
15:45:17.0102 10100 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
15:45:17.0107 10100 rdbss - ok
15:45:17.0310 10100 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
15:45:17.0313 10100 rdpbus - ok
15:45:17.0414 10100 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:45:17.0443 10100 RDPCDD - ok
15:45:17.0624 10100 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
15:45:17.0635 10100 RDPDR - ok
15:45:17.0738 10100 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
15:45:17.0757 10100 RDPENCDD - ok
15:45:17.0779 10100 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
15:45:17.0781 10100 RDPREFMP - ok
15:45:17.0855 10100 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
15:45:17.0859 10100 RDPWD - ok
15:45:18.0275 10100 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
15:45:18.0285 10100 rdyboost - ok
15:45:18.0343 10100 regi (001b4278407f4303efc902a2b16f2453) C:\Windows\system32\drivers\regi.sys
15:45:18.0345 10100 regi - ok
15:45:19.0076 10100 RegSrvc (6c47ac711f5fb55c5387a85d50ab4703) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
15:45:19.0101 10100 RegSrvc - ok
15:45:19.0358 10100 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
15:45:19.0369 10100 RemoteAccess - ok
15:45:19.0563 10100 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
15:45:19.0578 10100 RemoteRegistry - ok
15:45:19.0759 10100 rimmptsk (c2ef513bbe069f0d4ee0938a76f975d3) C:\Windows\system32\DRIVERS\rimmptsk.sys
15:45:19.0761 10100 rimmptsk - ok
15:45:19.0791 10100 rimsptsk (c398bca91216755b098679a8da8a2300) C:\Windows\system32\DRIVERS\rimsptsk.sys
15:45:19.0794 10100 rimsptsk - ok
15:45:19.0834 10100 rismxdp (2a2554cb24506e0a0508fc395c4a1b42) C:\Windows\system32\DRIVERS\rixdptsk.sys
15:45:19.0836 10100 rismxdp - ok
15:45:20.0356 10100 RoxMediaDB10 (eb9eeb379848f356797eb9ef31114ca5) C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
15:45:20.0413 10100 RoxMediaDB10 - ok
15:45:21.0168 10100 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
15:45:21.0182 10100 RpcEptMapper - ok
15:45:21.0662 10100 rpcld (b1574dcb4ae3efacc24aa87b4ae6fc55) C:\ProgramData\Rpcnet\Bin\rpcld.exe
15:45:21.0662 10100 Suspicious file (NoAccess): C:\ProgramData\Rpcnet\Bin\rpcld.exe. md5: b1574dcb4ae3efacc24aa87b4ae6fc55
15:45:21.0663 10100 rpcld ( LockedFile.Multi.Generic ) - warning
15:45:21.0663 10100 rpcld - detected LockedFile.Multi.Generic (1)
15:45:21.0831 10100 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
15:45:21.0840 10100 RpcLocator - ok
15:45:21.0932 10100 rpcnet (6684437f3628ef237c354f77d33426d1) C:\Windows\System32\rpcnet.exe
15:45:21.0946 10100 rpcnet - ok
15:45:21.0999 10100 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
15:45:22.0016 10100 RpcSs - ok
15:45:22.0371 10100 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
15:45:22.0373 10100 rspndr - ok
15:45:22.0438 10100 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
15:45:22.0441 10100 s3cap - ok
15:45:22.0600 10100 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:45:22.0609 10100 SamSs - ok
15:45:22.0911 10100 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
15:45:22.0912 10100 SASDIFSV - ok
15:45:23.0096 10100 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
15:45:23.0098 10100 SASKUTIL - ok
15:45:23.0189 10100 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
15:45:23.0192 10100 sbp2port - ok
15:45:23.0240 10100 SBRE - ok
15:45:23.0350 10100 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
15:45:23.0365 10100 SCardSvr - ok
15:45:23.0409 10100 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
15:45:23.0412 10100 scfilter - ok
15:45:23.0806 10100 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
15:45:23.0827 10100 Schedule - ok
15:45:24.0154 10100 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
15:45:24.0156 10100 SCPolicySvc - ok
15:45:24.0384 10100 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys
15:45:24.0387 10100 sdbus - ok
15:45:24.0426 10100 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
15:45:24.0442 10100 SDRSVC - ok
15:45:24.0660 10100 SeaPort (4a5809a1d796e2675ac0332bf7b0cb11) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
15:45:24.0663 10100 SeaPort - ok
15:45:24.0731 10100 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
15:45:24.0734 10100 secdrv - ok
15:45:24.0890 10100 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
15:45:24.0903 10100 seclogon - ok
15:45:24.0971 10100 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll
15:45:24.0997 10100 SENS - ok
15:45:25.0194 10100 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
15:45:25.0240 10100 SensrSvc - ok
15:45:25.0331 10100 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
15:45:25.0334 10100 Serenum - ok
15:45:25.0378 10100 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
15:45:25.0381 10100 Serial - ok
15:45:25.0498 10100 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
15:45:25.0515 10100 sermouse - ok
15:45:25.0602 10100 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
15:45:25.0651 10100 SessionEnv - ok
15:45:25.0691 10100 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
15:45:25.0714 10100 sffdisk - ok
15:45:25.0741 10100 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
15:45:25.0759 10100 sffp_mmc - ok
15:45:25.0777 10100 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
15:45:25.0780 10100 sffp_sd - ok
15:45:25.0818 10100 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
15:45:25.0843 10100 sfloppy - ok
15:45:26.0172 10100 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
15:45:26.0226 10100 SharedAccess - ok
15:45:26.0480 10100 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
15:45:26.0497 10100 ShellHWDetection - ok
15:45:26.0727 10100 Shockprf (bc31655a03d9e9ed6f7116bafb9b38c7) C:\Windows\system32\DRIVERS\Apsx86.sys
15:45:26.0729 10100 Shockprf - ok
15:45:26.0823 10100 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
15:45:26.0826 10100 sisagp - ok
15:45:26.0889 10100 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:45:26.0919 10100 SiSRaid2 - ok
15:45:26.0951 10100 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
15:45:26.0954 10100 SiSRaid4 - ok
15:45:27.0246 10100 SkypeUpdate (a36827ccb692b30a4e02767e4cd55fdb) C:\Program Files\Skype\Updater\Updater.exe
15:45:27.0248 10100 SkypeUpdate - ok
15:45:27.0389 10100 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
15:45:27.0400 10100 Smb - ok
15:45:27.0474 10100 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
15:45:27.0527 10100 SNMPTRAP - ok
15:45:28.0841 10100 SNP2UVC (a10c0f1f8d394e7d392fad72b7a01c1b) C:\Windows\system32\DRIVERS\snp2uvc.sys
15:45:28.0938 10100 SNP2UVC - ok
15:45:29.0989 10100 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
15:45:29.0991 10100 spldr - ok
15:45:30.0116 10100 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
15:45:30.0134 10100 Spooler - ok
15:45:30.0602 10100 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
15:45:30.0714 10100 sppsvc - ok
15:45:31.0339 10100 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
15:45:31.0354 10100 sppuinotify - ok
15:45:31.0719 10100 SQLWriter (d2f4f32b59440011174b4f8137af4e0c) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
15:45:31.0721 10100 SQLWriter - ok
15:45:32.0014 10100 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
15:45:32.0019 10100 srv - ok
15:45:32.0407 10100 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
15:45:32.0412 10100 srv2 - ok
15:45:32.0443 10100 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
15:45:32.0447 10100 srvnet - ok
15:45:32.0651 10100 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
15:45:32.0691 10100 SSDPSRV - ok
15:45:32.0736 10100 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
15:45:32.0764 10100 SstpSvc - ok
15:45:32.0802 10100 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
15:45:32.0804 10100 stexstor - ok
15:45:32.0895 10100 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
15:45:32.0916 10100 StiSvc - ok
15:45:33.0439 10100 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
15:45:33.0440 10100 stllssvr - ok
15:45:33.0677 10100 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
15:45:33.0680 10100 storflt - ok
15:45:33.0766 10100 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\Windows\system32\storsvc.dll
15:45:33.0846 10100 StorSvc - ok
15:45:33.0869 10100 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
15:45:33.0872 10100 storvsc - ok
15:45:34.0240 10100 SUService (59b5a060a31bd4bab030c4fcd1048292) C:\Program Files\Lenovo\System Update\SUService.exe
15:45:34.0262 10100 SUService - ok
15:45:34.0424 10100 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
15:45:34.0449 10100 swenum - ok
15:45:34.0844 10100 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
15:45:34.0869 10100 swprv - ok
15:45:35.0011 10100 SynTP (b53aa89920bba67857c899389186fb56) C:\Windows\system32\DRIVERS\SynTP.sys
15:45:35.0016 10100 SynTP - ok
15:45:35.0596 10100 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
15:45:35.0663 10100 SysMain - ok
15:45:36.0152 10100 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
15:45:36.0168 10100 TabletInputService - ok
15:45:36.0276 10100 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
15:45:36.0294 10100 TapiSrv - ok
15:45:36.0401 10100 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
15:45:36.0417 10100 TBS - ok
15:45:37.0053 10100 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
15:45:37.0077 10100 Tcpip - ok
15:45:38.0393 10100 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
15:45:38.0403 10100 TCPIP6 - ok
15:45:40.0697 10100 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
15:45:40.0700 10100 tcpipreg - ok
15:45:40.0797 10100 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
15:45:40.0800 10100 TDPIPE - ok
15:45:40.0919 10100 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
15:45:40.0922 10100 TDTCP - ok
15:45:41.0067 10100 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
15:45:41.0070 10100 tdx - ok
15:45:41.0258 10100 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
15:45:41.0261 10100 TermDD - ok
15:45:41.0884 10100 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
15:45:41.0937 10100 TermService - ok
15:45:42.0160 10100 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
15:45:42.0205 10100 Themes - ok
15:45:43.0003 10100 ThinkVantage Registry Monitor Service (94f77b2b3bb01b23398b6f1d3a3ce7ff) C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
15:45:43.0056 10100 ThinkVantage Registry Monitor Service - ok
15:45:43.0611 10100 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
15:45:43.0621 10100 THREADORDER - ok
15:45:44.0559 10100 TPDIGIMN (c5dc9e462407b274b504de2aa3220c2e) C:\Windows\system32\DRIVERS\ApsHM86.sys
15:45:44.0561 10100 TPDIGIMN - ok
15:45:44.0625 10100 TPHDEXLGSVC (4b2f57221e4ca268967eed0c4f2b7726) C:\Windows\system32\TPHDEXLG.exe
15:45:44.0659 10100 TPHDEXLGSVC - ok
15:45:45.0083 10100 TPHKLOAD (1dbf0267cebf80f0bd24dfe895367db5) C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
15:45:45.0086 10100 TPHKLOAD - ok
15:45:45.0133 10100 TPHKSVC (cb0625c2f5b7c72c50c5ae34f8e8f7d0) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
15:45:45.0135 10100 TPHKSVC - ok
15:45:45.0290 10100 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\Windows\system32\drivers\tpm.sys
15:45:45.0293 10100 TPM - ok
15:45:45.0531 10100 TPPWRIF (c9da1fef94ef44d7bd0ca0cbdad5c44c) C:\Windows\system32\drivers\Tppwr32v.sys
15:45:45.0597 10100 TPPWRIF - ok
15:45:45.0776 10100 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
15:45:45.0792 10100 TrkWks - ok
15:45:46.0183 10100 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
15:45:46.0185 10100 TrustedInstaller - ok
15:45:46.0407 10100 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:45:46.0409 10100 tssecsrv - ok
15:45:46.0463 10100 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
15:45:46.0466 10100 TsUsbFlt - ok
15:45:47.0025 10100 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
15:45:47.0069 10100 tunnel - ok
15:45:48.0446 10100 TVT Backup Service (9e55e6cec91433cefc63cc0382e0ef04) C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
15:45:48.0536 10100 TVT Backup Service - ok
15:45:49.0823 10100 TVTI2C (cac5d5979850c9ad41a88033013bc806) C:\Windows\system32\DRIVERS\Tvti2c.sys
15:45:49.0826 10100 TVTI2C - ok
15:45:49.0987 10100 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
15:45:49.0991 10100 uagp35 - ok
15:45:50.0207 10100 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
15:45:50.0212 10100 udfs - ok
15:45:50.0413 10100 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
15:45:50.0430 10100 UI0Detect - ok
15:45:50.0706 10100 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
15:45:50.0761 10100 uliagpkx - ok
15:45:50.0879 10100 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
15:45:50.0882 10100 umbus - ok
15:45:50.0925 10100 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
15:45:50.0928 10100 UmPass - ok
15:45:51.0039 10100 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
15:45:51.0057 10100 UmRdpService - ok
15:45:53.0044 10100 UNS (fa84735377d00e12597d2a1d8d2c320e) C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
15:45:53.0151 10100 UNS - ok
15:45:54.0460 10100 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
15:45:54.0478 10100 upnphost - ok
15:45:55.0009 10100 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
15:45:55.0021 10100 USBAAPL - ok
15:45:55.0119 10100 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys
15:45:55.0122 10100 usbaudio - ok
15:45:55.0331 10100 usbccgp (399d1015fccc3fcb438a59cb9567e266) C:\Windows\system32\DRIVERS\usbccgp.sys
15:45:55.0334 10100 usbccgp - ok
15:45:55.0399 10100 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
15:45:55.0402 10100 usbcir - ok
15:45:55.0582 10100 usbehci (600b15106c0ae72d8583c5b710315ac6) C:\Windows\system32\drivers\usbehci.sys
15:45:55.0585 10100 usbehci - ok
15:45:55.0632 10100 usbhub (e5110252be0b1d03cccdf41ed31d02c1) C:\Windows\system32\DRIVERS\usbhub.sys
15:45:55.0637 10100 usbhub - ok
15:45:55.0795 10100 usbohci (e82967c733660a90f0248100d157be67) C:\Windows\system32\drivers\usbohci.sys
15:45:55.0798 10100 usbohci - ok
15:45:55.0952 10100 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
15:45:56.0035 10100 usbprint - ok
15:45:56.0112 10100 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:45:56.0116 10100 USBSTOR - ok
15:45:56.0318 10100 usbuhci (bc5421344ce62c0394d93157d5fe5ef3) C:\Windows\system32\drivers\usbuhci.sys
15:45:56.0350 10100 usbuhci - ok
15:45:56.0389 10100 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
15:45:56.0409 10100 UxSms - ok
15:45:56.0563 10100 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:45:56.0572 10100 VaultSvc - ok
15:45:56.0777 10100 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
15:45:56.0780 10100 vdrvroot - ok
15:45:56.0927 10100 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
15:45:56.0980 10100 vds - ok
15:45:57.0107 10100 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
15:45:57.0110 10100 vga - ok
15:45:57.0179 10100 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
15:45:57.0182 10100 VgaSave - ok
15:45:57.0233 10100 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
15:45:57.0237 10100 vhdmp - ok
15:45:57.0307 10100 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
15:45:57.0311 10100 viaagp - ok
15:45:57.0363 10100 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
15:45:57.0366 10100 ViaC7 - ok
15:45:57.0382 10100 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
15:45:57.0385 10100 viaide - ok
15:45:57.0408 10100 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
15:45:57.0412 10100 vmbus - ok
15:45:57.0524 10100 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
15:45:57.0560 10100 VMBusHID - ok
15:45:57.0733 10100 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
15:45:57.0753 10100 volmgr - ok
15:45:57.0796 10100 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
15:45:57.0802 10100 volmgrx - ok
15:45:58.0035 10100 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
15:45:58.0065 10100 volsnap - ok
15:45:58.0117 10100 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
15:45:58.0121 10100 vsmraid - ok
15:45:58.0448 10100 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
15:45:58.0475 10100 VSS - ok
15:45:58.0619 10100 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
15:45:58.0622 10100 vwifibus - ok
15:45:58.0644 10100 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
15:45:58.0647 10100 vwififlt - ok
15:45:58.0708 10100 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
15:45:58.0711 10100 vwifimp - ok
15:45:58.0779 10100 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
15:45:58.0798 10100 W32Time - ok
15:45:58.0834 10100 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
15:45:58.0837 10100 WacomPen - ok
15:45:59.0009 10100 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
15:45:59.0013 10100 WANARP - ok
15:45:59.0016 10100 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
15:45:59.0019 10100 Wanarpv6 - ok
15:45:59.0525 10100 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
15:45:59.0540 10100 WatAdminSvc - ok
15:46:00.0523 10100 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
15:46:00.0588 10100 wbengine - ok
15:46:02.0116 10100 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
15:46:02.0193 10100 WbioSrvc - ok
15:46:02.0250 10100 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
15:46:02.0269 10100 wcncsvc - ok
15:46:02.0307 10100 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
15:46:02.0337 10100 WcsPlugInService - ok
15:46:02.0530 10100 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
15:46:02.0559 10100 Wd - ok
15:46:02.0594 10100 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
15:46:02.0601 10100 Wdf01000 - ok
15:46:02.0628 10100 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
15:46:02.0654 10100 WdiServiceHost - ok
15:46:02.0658 10100 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
15:46:02.0675 10100 WdiSystemHost - ok
15:46:02.0863 10100 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
15:46:02.0882 10100 WebClient - ok
15:46:03.0048 10100 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
15:46:03.0065 10100 Wecsvc - ok
15:46:03.0105 10100 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
15:46:03.0136 10100 wercplsupport - ok
15:46:03.0186 10100 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
15:46:03.0214 10100 WerSvc - ok
15:46:03.0480 10100 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
15:46:03.0483 10100 WfpLwf - ok
15:46:03.0875 10100 WiMAXAppSrv (6cc8be5f41c29a5dd8500bdf2d720042) C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
15:46:03.0932 10100 WiMAXAppSrv - ok
15:46:03.0967 10100 WimFltr (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\Windows\system32\DRIVERS\wimfltr.sys
15:46:03.0971 10100 WimFltr - ok
15:46:04.0132 10100 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
15:46:04.0153 10100 WIMMount - ok
15:46:04.0298 10100 winachsf (bb9cbaf6ac20452b245c324f1f50ee81) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
15:46:04.0306 10100 winachsf - ok
15:46:04.0602 10100 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
15:46:04.0609 10100 WinDefend - ok
15:46:05.0206 10100 WinFLdrv (7acc77e135a709ae0f7e1df428a2f908) C:\Windows\system32\WinFLdrv.sys
15:46:05.0223 10100 Suspicious file (Hidden): C:\Windows\system32\WinFLdrv.sys. md5: 7acc77e135a709ae0f7e1df428a2f908
15:46:05.0224 10100 WinFLdrv ( HiddenFile.Multi.Generic ) - warning
15:46:05.0224 10100 WinFLdrv - detected HiddenFile.Multi.Generic (1)
15:46:05.0229 10100 WinHttpAutoProxySvc - ok
15:46:05.0422 10100 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
15:46:05.0426 10100 Winmgmt - ok
15:46:05.0690 10100 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
15:46:05.0720 10100 WinRM - ok
15:46:06.0452 10100 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
15:46:06.0455 10100 WinUsb - ok
15:46:06.0764 10100 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
15:46:06.0807 10100 Wlansvc - ok
15:46:07.0537 10100 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:46:07.0593 10100 wlidsvc - ok
15:46:08.0030 10100 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
15:46:08.0034 10100 WmiAcpi - ok
15:46:08.0255 10100 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
15:46:08.0258 10100 wmiApSrv - ok
15:46:08.0813 10100 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
15:46:08.0848 10100 WMPNetworkSvc - ok
15:46:09.0471 10100 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
15:46:09.0491 10100 WPCSvc - ok
15:46:09.0528 10100 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
15:46:09.0547 10100 WPDBusEnum - ok
15:46:09.0706 10100 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
15:46:09.0709 10100 ws2ifsl - ok
15:46:09.0737 10100 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\system32\wscsvc.dll
15:46:09.0755 10100 wscsvc - ok
15:46:09.0905 10100 WSDPrintDevice (553f6ccd7c58eb98d4a8fbdaf283d7a9) C:\Windows\system32\DRIVERS\WSDPrint.sys
15:46:09.0908 10100 WSDPrintDevice - ok
15:46:09.0912 10100 WSearch - ok
15:46:10.0428 10100 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
15:46:10.0492 10100 wuauserv - ok
15:46:11.0258 10100 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
15:46:11.0262 10100 WudfPf - ok
15:46:11.0317 10100 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:46:11.0321 10100 WUDFRd - ok
15:46:11.0488 10100 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
15:46:11.0507 10100 wudfsvc - ok
15:46:11.0884 10100 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
15:46:11.0928 10100 WwanSvc - ok
15:46:11.0989 10100 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys
15:46:11.0992 10100 XAudio - ok
15:46:12.0347 10100 XAudioService (cd5f291a1161f15896d1a4d63daff5df) C:\Windows\system32\DRIVERS\xaudio.exe
15:46:12.0391 10100 XAudioService - ok
15:46:12.0488 10100 MBR (0x1B8) (1a4a2b7f82580f855fb8b95fe98557c3) \Device\Harddisk0\DR0
15:46:13.0122 10100 \Device\Harddisk0\DR0 - ok
15:46:13.0156 10100 Boot (0x1200) (8d88b08712d37e3e2da6dadaff23dc67) \Device\Harddisk0\DR0\Partition0
15:46:13.0157 10100 \Device\Harddisk0\DR0\Partition0 - ok
15:46:13.0171 10100 Boot (0x1200) (1eab163c4bbdadc29497f281e8642a84) \Device\Harddisk0\DR0\Partition1
15:46:13.0172 10100 \Device\Harddisk0\DR0\Partition1 - ok
15:46:13.0212 10100 Boot (0x1200) (44632c8f3598a855f0e77d6210ccf283) \Device\Harddisk0\DR0\Partition2
15:46:13.0213 10100 \Device\Harddisk0\DR0\Partition2 - ok
15:46:13.0214 10100 ============================================================
15:46:13.0214 10100 Scan finished
15:46:13.0214 10100 ============================================================
15:46:13.0224 11896 Detected object count: 2
15:46:13.0224 11896 Actual detected object count: 2
15:47:19.0759 11896 rpcld ( LockedFile.Multi.Generic ) - skipped by user
15:47:19.0759 11896 rpcld ( LockedFile.Multi.Generic ) - User select action: Skip
15:47:19.0761 11896 WinFLdrv ( HiddenFile.Multi.Generic ) - skipped by user
15:47:19.0761 11896 WinFLdrv ( HiddenFile.Multi.Generic ) - User select action: Skip
15:49:00.0314 10980 Deinitialize success

AVAST:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-19 15:49:47
-----------------------------
15:49:47.922 OS Version: Windows 6.1.7601 Service Pack 1
15:49:47.922 Number of processors: 2 586 0x170A
15:49:47.924 ComputerName: JARED-PC UserName: Jared
15:50:05.805 Initialize success
15:50:49.503 AVAST engine defs: 12071901
15:51:13.445 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
15:51:13.447 Disk 0 Vendor: HITACHI_ PB2Z Size: 238475MB BusType: 3
15:51:13.494 Disk 0 MBR read successfully
15:51:13.496 Disk 0 MBR scan
15:51:13.522 Disk 0 unknown MBR code
15:51:13.549 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 1500 MB offset 2048
15:51:13.563 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 226972 MB offset 3074048
15:51:13.594 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 10000 MB offset 467914752
15:51:13.601 Disk 0 scanning sectors +488394752
15:51:13.666 Disk 0 scanning C:\Windows\system32\drivers
15:51:46.172 Service scanning
15:53:05.819 Modules scanning
15:53:59.040 Disk 0 trace - called modules:
15:53:59.067 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll iaStor.sys
15:53:59.076 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86930030]
15:53:59.083 3 CLASSPNP.SYS[893ca59e] -> nt!IofCallDriver -> [0x85f096c8]
15:53:59.091 5 ACPI.sys[88c1b3d4] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x85b04028]
15:54:00.306 AVAST engine scan C:\Windows
15:54:21.496 AVAST engine scan C:\Windows\system32
15:58:20.983 File: C:\Windows\system32\WinFLdrv.sys **HIDDEN**
16:01:02.207 AVAST engine scan C:\Windows\system32\drivers
16:02:11.715 AVAST engine scan C:\Users\Jared
18:15:19.116 Disk 0 MBR has been saved successfully to "C:\Users\Jared\Desktop\MBR.dat"
18:15:19.332 The log file has been saved successfully to "C:\Users\Jared\Desktop\aswMBR.txt"

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Please download ComboFix from any of the links below, and save it to your desktop. For information regarding this download, please visit this web page: http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Link 1
Link 2


* IMPORTANT !!! Save ComboFix.exe to your Desktop

IMPORTANT....

1. Close any open browsers.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

3. Do not install any other programs until this if fixed.

How to : Disable Anti-virus and Firewall...
http://www.bleepingcomputer.com/forums/topic114351.html

Double click on ComboFix.exe & follow the prompts.

• When finished, it will produce a report for you.
• Please post the C:\ComboFix.txt

Note:
Do not mouse click ComboFix's window while it's running. That may cause it to stall

Note: If you have difficulty properly disabling your protective programs, refer to this link --> http://www.bleepingcomputer.com/forums/topic114351.html
===

Third party programs if not up to date can be the cause infiltration of an infection.

Please run this security check for my review.

Download Security Check by screen317 from here.

• Save it to your Desktop.
• Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
• A Notepad document should open automatically called checkup.txt; please post the contents of that document.

===

Note: If after running ComboFix you get this error message "Illegal operation attempted on a registry key that has been marked for deletion." when attempting to run a program all you need to do is restart the computer to reset the registry.
===

If the problem persists after this please execute this.

Click the button. In the Search box, type Command Prompt, and then, in the list of results, double-click Command Prompt.

at the cursor type:
ipconfig /flushdns <-- (A space between g and / is needed)

repeat with
ipconfig /renew

Then hit Enter, type Exit, hit the Enter key.

You may need to run CMD - Command Prompt on Vista - Windows 7 with Elevated Privilege
http://www.mydigitallife.info/2007/02/17/how-to-open-elevated-command-prompt-with-administrator-privileges-in-windows-vista/
<<<>>>


If not joy continue...

Launch Notepad, and copy/paste all the blue instructions below to it.
Save in: Desktop
File Name: fixme.reg
Save as Type: All files
Click: Save

REGEDIT4

[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges]
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges]
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains]

Then, disconnect from the Internet!
Next,
Back on the Desktop, double-click on the fixme.reg file you just saved and click on Yes when asked to merge the information.

On a Vista or Windows 7 operating system right click on the fixme.reg file and run as Administrator.

Optional if the following programs are in your computer.
Note that since the Domains are deleted SpywareBlaster protection must be re-enabled. Spybot's Immunize feature must be used again, also you have to re-install IE-SpyAd if installed.


Please post the logs for my review and let me know if the problem persists.

I went to espn.com with no problems. Here are the logs:

ComboFix 12-07-20.02 - Jared 07/20/2012 11:12:07.4.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.1944.943 [GMT -4:00]
Running from: c:\users\Jared\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\SET6B6D.tmp
c:\windows\system32\SET7260.tmp
.
.
((((((((((((((((((((((((( Files Created from 2012-06-20 to 2012-07-20 )))))))))))))))))))))))))))))))
.
.
2012-07-20 15:30 . 2012-07-20 15:30 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-07-20 15:30 . 2012-07-20 15:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-07-17 15:59 . 2012-06-29 08:44 6891424 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1D1440EC-BA6D-49FD-9AA8-FA98B7D7DEDD}\mpengine.dll
2012-07-12 00:15 . 2012-06-12 02:40 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-07-09 16:49 . 2012-01-14 03:59 53632 ----a-w- c:\windows\system32\drivers\stream.sys
2012-07-05 16:01 . 2012-07-05 16:01 -------- d-----w- c:\users\Jared\AppData\Local\ElevatedDiagnostics
2012-07-03 01:20 . 2012-07-03 01:20 -------- d-----w- c:\program files\Common Files\Java
2012-07-03 01:18 . 2012-07-03 01:18 -------- d-----w- c:\program files\Oracle
2012-07-03 01:18 . 2012-05-04 23:29 772504 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-06-29 00:52 . 2012-06-29 00:52 -------- d-----w- c:\users\Default\AppData\Local\Google
2012-06-24 13:52 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-24 13:52 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-24 13:52 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-24 13:52 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-24 13:51 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-24 13:51 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-24 13:51 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-24 13:49 . 2012-06-02 19:19 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-24 13:49 . 2012-06-02 19:12 33792 ----a-w- c:\windows\system32\wuapp.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-20 14:11 . 2010-10-28 22:13 17920 ----a-w- c:\windows\system32\rpcnetp.exe
2012-07-19 22:22 . 2009-10-26 21:55 58288 ----a-w- c:\windows\system32\rpcnet.dll
2012-07-12 14:31 . 2012-04-12 19:08 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-12 14:31 . 2011-05-19 16:58 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-12 04:08 . 2010-10-28 22:15 17920 ----a-w- c:\windows\system32\rpcnetp.dll
2012-06-25 17:35 . 2011-12-13 15:21 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2012-06-08 16:24 . 2011-07-05 15:23 13160 ----a-w- c:\windows\system32\Upgrd.exe
2012-06-08 16:23 . 2009-10-26 21:54 58288 ------w- c:\windows\system32\rpcnet.exe
2012-06-04 17:42 . 2010-08-20 19:22 49592 ----a-w- c:\windows\system32\pkgslv.exe
2012-06-04 17:42 . 2010-08-20 19:22 46008 ----a-w- c:\windows\system32\pkgmgr.dll
2012-05-31 16:25 . 2009-10-27 11:55 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-05-04 23:29 . 2010-04-28 20:53 687504 ----a-w- c:\windows\system32\deployJava1.dll
2012-05-01 04:44 . 2012-06-13 14:51 164352 ----a-w- c:\windows\system32\profsvc.dll
2012-04-28 03:17 . 2012-06-13 14:52 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-04-26 04:45 . 2012-06-13 14:51 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-04-26 04:45 . 2012-06-13 14:51 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-04-26 04:41 . 2012-06-13 14:51 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-04-24 04:36 . 2012-06-13 14:51 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2012-04-24 04:36 . 2012-06-13 14:51 1158656 ----a-w- c:\windows\system32\crypt32.dll
2012-04-24 04:36 . 2012-06-13 14:51 103936 ----a-w- c:\windows\system32\cryptnet.dll
2012-07-17 16:08 . 2011-03-22 21:45 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2010-08-26 16:26 . 2009-10-27 11:41 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Jared\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Jared\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Jared\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2012-06-20 23:02 556056 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2012-06-20 23:02 556056 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2012-06-20 23:02 556056 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2012-06-20 23:02 556056 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2012-02-15 399224]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-06-05 17345200]
"Tutor.exe"="c:\program files\ABBYY Lingvo x3\Tutor.exe" [2010-09-07 1324296]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2012-03-26 640440]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2012-03-27 40376]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"CreateLMBCShortCut"="c:\program files\Lenovo\Mobile Broadband Connect\UserShortcutCreator.exe" [2009-07-16 40960]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-08-26 30192]
"LVCOMSX"="c:\program files\Common Files\LogiShrd\LComMgr\LVComSX.exe" [2006-12-22 244512]
"lxdqmon.exe"="c:\program files\Lexmark Z2400 Series\lxdqmon.exe" [2010-02-04 672424]
"Message Center Plus"="c:\program files\LENOVO\Message Center Plus\MCPLaunch.exe" [2009-05-28 49976]
"LPMailChecker"="c:\progra~1\THINKV~1\PrdCtr\LPMLCHK.exe" [2009-01-28 124248]
"LPManager"="c:\progra~1\THINKV~1\PrdCtr\LPMGR.exe" [2009-01-28 185688]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2009-11-19 307768]
"Lingvo Launcher"="c:\program files\ABBYY Lingvo x3\LvAgent.exe" [2010-09-07 1774856]
"PWMTRV"="c:\progra~1\ThinkPad\UTILIT~1\PWMTR32V.DLL" [2012-03-15 4392512]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-05-04 311296]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-08-07 186904]
"AcWin7Hlpr"="c:\program files\Lenovo\Access Connections\AcTBenabler.exe" [2010-09-18 31592]
"Absolute Notifier"="c:\program files\Absolute Software\Absolute Notifier\AbsoluteNotifier.exe" [2011-05-10 85672]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-12-23 2321680]
"TpShocks"="TpShocks.exe" [2010-07-01 337256]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2011-10-07 1387288]
"Ad-Aware Browsing Protection"="c:\programdata\Ad-Aware Browsing Protection\adawarebp.exe" [2011-10-21 198032]
.
c:\users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Jared\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
Random House Webster's Unabridged Dictionary WordGenius Activate.LNK - c:\program files\Random House\WUD-WG\WGRU.exe [2009-10-27 128592]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2009-8-27 50688]
VPN Client.lnk - c:\windows\Installer\{B0BF7057-6869-4E4B-920C-EA2A58DA07F0}\Icon3E5562ED7.ico [2010-11-5 6144]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AutorunsDisabled]
2011-09-27 19:03 66328 ----a-w- c:\program files\Common Files\logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll c:\windows\System32\acaptuser32.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKLM\~\startupfolder\C:^Users^Jared^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Product Registration.lnk]
path=c:\users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk
backup=c:\windows\pss\Logitech . Product Registration.lnk.Startup
backupExtension=.Startup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
2008-08-14 14:58 611712 ----a-w- c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
2009-09-04 01:43 767312 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2011-03-21 18:56 1230704 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EzPrint]
2010-02-04 01:17 107176 ----a-w- c:\program files\Lexmark Z2400 Series\ezprint.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
2012-06-20 23:02 12163848 ----a-w- c:\program files\Google\Drive\googledrivesync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2012-03-27 01:09 421736 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2009-10-14 10:36 2793304 ----a-w- c:\program files\Logitech\Logitech WebCam Software\LWS.exe
.
R0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys [x]
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [x]
R2 GdmWmPrt;GCT WiMax Protocol Driver;c:\windows\system32\DRIVERS\gdmwmprt.sys [x]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [x]
R2 lxdqCATSCustConnectService;lxdqCATSCustConnectService;c:\windows\system32\spool\DRIVERS\W32X86\3\\lxdqserv.exe [x]
R2 rpcld;Remote Procedure Call (RPC) LD;c:\programdata\Rpcnet\Bin\rpcld.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys [x]
R3 DozeSvc;Lenovo Doze Mode Service;c:\program files\ThinkPad\Utilities\DOZESVC.EXE [x]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [x]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [x]
R3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [x]
R3 Lavasoft Kernexplorer;Lavasoft helper driver;c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [x]
R3 PwmEWSvc;Cisco EnergyWise Enabler;c:\program files\ThinkPad\Utilities\PWMEWSVC.EXE [x]
R3 rcmirror;rcmirror;c:\windows\system32\DRIVERS\rcmirror.sys [x]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [x]
S0 DozeHDD;DozeHDD;c:\windows\System32\DRIVERS\DozeHDD.sys [x]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM86.sys [x]
S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiif32.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [x]
S2 ABBYY.Licensing.Lingvo.Desktop.14.0;ABBYY Lingvo x3 Licencing Service;c:\program files\Common Files\ABBYY\Lingvo\14.0\Licensing\NetworkLicenseServer.exe [x]
S2 AbsoluteNotifier;Absolute Notifier;c:\program files\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 DMAgent;Intel® PROSet/Wireless WiMAX Red Bend Device Management Service;c:\program files\Intel\WiMAX\Bin\DMAgent.exe [x]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [x]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [x]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [x]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [x]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [x]
S2 TPHKSVC;On Screen Display;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [x]
S2 UNS;Intel® Active Management Technology User Notification Service;c:\program files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [x]
S2 WiMAXAppSrv;Intel® PROSet/Wireless WiMAX Service;c:\program files\Intel\WiMAX\Bin\AppSrv.exe [x]
S2 WinFLdrv;WinFLdrv;c:\windows\system32\WinFLdrv.sys [x]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys [x]
S3 bpenum;Intel® WiMAX Link Enumerator;c:\windows\system32\DRIVERS\bpenum.sys [x]
S3 e1yexpress;Intel® Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y6232.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd32.sys [x]
S3 NETwNs32;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\DRIVERS\NETwNs32.sys [x]
S3 PCDSRVC{3037D694-FD904ACA-06020200}_0;PCDSRVC{3037D694-FD904ACA-06020200}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\pc-doctor\pcdsrvc.pkms [x]
S3 Power Manager DBC Service;Power Manager DBC Service;c:\program files\ThinkPad\Utilities\PWMDBSVC.EXE [x]
S3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\DRIVERS\Tvti2c.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - SASENUM
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Contents of the 'Scheduled Tasks' folder
.
2012-07-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-12 14:32]
.
2012-07-19 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-27 11:15]
.
2012-07-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-10-27 11:44]
.
2012-07-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-10-27 11:44]
.
2012-07-13 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:54]
.
2012-07-20 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:54]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://google.com/
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
IE: Translate with ABBYY Lingvo x&3 - c:\program files\ABBYY Lingvo x3\Lingvo.exe/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Jared\AppData\Roaming\Mozilla\Firefox\Profiles\uxec0yck.Jared\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?hl=en&source=mpes
FF - prefs.js: network.proxy.type - 2
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\PCDSRVC{3037D694-FD904ACA-06020200}_0]
"ImagePath"="\??\c:\program files\pc-doctor\pcdsrvc.pkms"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-2886773906-1503155382-1841928733-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*õg€j¢
*€²
]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-2886773906-1503155382-1841928733-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*õg€j¢
*€²
\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-07-20 11:33:36
ComboFix-quarantined-files.txt 2012-07-20 15:33
ComboFix2.txt 2012-02-10 17:51
.
Pre-Run: 20,188,991,488 bytes free
Post-Run: 20,196,339,712 bytes free
.
- - End Of File - - 35A08AEF1CC92713E3658284FB8B2420

Results of screen317's Security Check version 0.99.43
Windows 7 Service Pack 1 x86 (UAC is disabled!)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Ad-Aware
Out of date HijackThis installed!
SUPERAntiSpyware
Malwarebytes Anti-Malware version 1.61.0.1400
HijackThis 2.0.2
CCleaner
JavaFX 2.1.1
Java™ 7 Update 5
Adobe Flash Player 11.3.300.265
Adobe Reader X (10.1.3)
Mozilla Firefox (14.0.1)
````````Process Check: objlist.exe by Laurent````````
Ad-Aware AAWService.exe is disabled!
Ad-Aware AAWTray.exe is disabled!
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````

The ComboFix log is clean.

Remove this old version of HijackThis using the Add/Remove programs applet.
HijackThis 2.0.2

p.s. did you have to run anything else but ComboFix to remove the redirection?

I removed the hijack program.

If you're asking if I had to do the ipconfig part of the fix, then no - I didn't. I just ran combo fix and then security check with no hiccups.

I also just tested to see whether the unresponsive script problem would happen after I come back online after a hibernate and I'm happy to see it's not happening (this is when it happened the most - all the xpcom stuff). The broswer is still a bit slow, but perhaps I need to do some more cleaning up on the computer.

Ok - I was just paying close attention to the hiccups in browser usage. Every now and then I go to a new site and the firefox window itself does a strange little movement and I can read the browser is trying to go s0.2mdn.net before I go the site I chose. I think this may be what's still causing it to act strange. It seems like some kind of redirect.

ad.doubleclick.net seems to be at work too.

And the unresponsive scripts are back: Script: resource://gre/modules/XPCOMUtils.jsm:357.

If you're asking if I had to do the ipconfig part of the fix, then no

Please do the rest of the instructions I gave you.

If the problem persists please run ComboFix again and post the log.

Sorry for the confusing response. I forgot say I did also do the fixme.reg action as you asked the first time. I only skipped the ipconifg action because I thought I was only to do that if I had an illegal operation issue (though I just did it). The ip address conflict seems to be connected to an iphone that is used in our house by a friend. So we can rule that out. All the weird stuff with browser that I described in the last post is still happening though. I re-ran combofix - this time it rebooted when done (did not do it the first time) and there were new deletions:

ComboFix 12-07-21.01 - Jared 07/21/2012 10:46:00.5.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.1944.769 [GMT -4:00]
Running from: c:\users\Jared\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Jared\AppData\Local\Temp\_MEI20642\_ctypes.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\_elementtree.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\_hashlib.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\_socket.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\_ssl.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\pyexpat.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\pysqlite2._sqlite.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\python26.dll
c:\users\Jared\AppData\Local\Temp\_MEI20642\pythoncom26.dll
c:\users\Jared\AppData\Local\Temp\_MEI20642\PyWinTypes26.dll
c:\users\Jared\AppData\Local\Temp\_MEI20642\select.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\unicodedata.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\win32api.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\win32com.shell.shell.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\win32crypt.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\win32event.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\win32file.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\win32inet.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\win32pdh.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\win32process.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\windows._cacheinvalidation.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\wx._controls_.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\wx._core_.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\wx._gdi_.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\wx._html2.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\wx._misc_.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\wx._windows_.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\wx._wizard.pyd
c:\users\Jared\AppData\Local\Temp\_MEI20642\wxbase293u_net_vc.dll
c:\users\Jared\AppData\Local\Temp\_MEI20642\wxbase293u_vc.dll
c:\users\Jared\AppData\Local\Temp\_MEI20642\wxmsw293u_adv_vc.dll
c:\users\Jared\AppData\Local\Temp\_MEI20642\wxmsw293u_core_vc.dll
c:\users\Jared\AppData\Local\Temp\_MEI20642\wxmsw293u_html_vc.dll
c:\users\Jared\AppData\Local\Temp\_MEI20642\wxmsw293u_webview_vc.dll
c:\windows\TEMP\logishrd\LVPrcInj01.dll
.
.
((((((((((((((((((((((((( Files Created from 2012-06-21 to 2012-07-21 )))))))))))))))))))))))))))))))
.
.
2012-07-21 15:11 . 2012-03-14 02:15 6582328 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{21DF0908-FBCD-45F9-80C9-D1B2D8FF57F8}\mpengine.dll
2012-07-21 15:08 . 2012-07-21 15:08 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-07-21 15:08 . 2012-07-21 15:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-07-20 19:33 . 2012-06-29 08:44 6891424 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8B3B6CFC-FF7A-445D-8345-BEFD5CDED0A7}\mpengine.dll
2012-07-17 15:59 . 2012-06-29 08:44 6891424 ------w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1D1440EC-BA6D-49FD-9AA8-FA98B7D7DEDD}\mpengine.dll
2012-07-11 15:15 . 2012-06-06 05:05 1019904 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2012-07-09 16:49 . 2012-01-14 03:59 53632 ----a-w- c:\windows\system32\drivers\stream.sys
2012-07-05 16:01 . 2012-07-05 16:01 -------- d-----w- c:\users\Jared\AppData\Local\ElevatedDiagnostics
2012-07-03 01:20 . 2012-07-03 01:20 -------- d-----w- c:\program files\Common Files\Java
2012-07-03 01:18 . 2012-07-03 01:18 -------- d-----w- c:\program files\Oracle
2012-07-03 01:18 . 2012-05-04 23:29 772504 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-06-29 00:52 . 2012-06-29 00:52 -------- d-----w- c:\users\Default\AppData\Local\Google
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-21 15:10 . 2010-10-28 22:13 17920 ----a-w- c:\windows\system32\rpcnetp.exe
2012-07-21 15:10 . 2009-10-26 21:55 58288 ----a-w- c:\windows\system32\rpcnet.dll
2012-07-12 14:31 . 2012-04-12 19:08 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-12 14:31 . 2011-05-19 16:58 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-12 04:08 . 2010-10-28 22:15 17920 ----a-w- c:\windows\system32\rpcnetp.dll
2012-06-25 17:35 . 2011-12-13 15:21 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2012-06-12 02:40 . 2012-07-12 00:15 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-06-08 16:24 . 2011-07-05 15:23 13160 ----a-w- c:\windows\system32\Upgrd.exe
2012-06-08 16:23 . 2009-10-26 21:54 58288 ------w- c:\windows\system32\rpcnet.exe
2012-06-04 17:42 . 2010-08-20 19:22 49592 ----a-w- c:\windows\system32\pkgslv.exe
2012-06-04 17:42 . 2010-08-20 19:22 46008 ----a-w- c:\windows\system32\pkgmgr.dll
2012-06-02 22:19 . 2012-06-24 13:52 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-24 13:52 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-24 13:51 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-24 13:51 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:19 . 2012-06-24 13:52 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:12 . 2012-06-24 13:52 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:12 . 2012-06-24 13:51 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 19:19 . 2012-06-24 13:49 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 19:12 . 2012-06-24 13:49 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-06-02 08:25 . 2012-07-12 00:18 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-05-31 16:25 . 2009-10-27 11:55 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-05-04 23:29 . 2010-04-28 20:53 687504 ----a-w- c:\windows\system32\deployJava1.dll
2012-05-01 04:44 . 2012-06-13 14:51 164352 ----a-w- c:\windows\system32\profsvc.dll
2012-04-28 03:17 . 2012-06-13 14:52 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-04-26 04:45 . 2012-06-13 14:51 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-04-26 04:45 . 2012-06-13 14:51 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-04-26 04:41 . 2012-06-13 14:51 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-04-24 04:36 . 2012-06-13 14:51 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2012-04-24 04:36 . 2012-06-13 14:51 1158656 ----a-w- c:\windows\system32\crypt32.dll
2012-04-24 04:36 . 2012-06-13 14:51 103936 ----a-w- c:\windows\system32\cryptnet.dll
2012-07-17 16:08 . 2011-03-22 21:45 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2010-08-26 16:26 . 2009-10-27 11:41 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Jared\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Jared\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Jared\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2012-06-20 23:02 556056 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2012-06-20 23:02 556056 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2012-06-20 23:02 556056 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2012-06-20 23:02 556056 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2012-02-15 399224]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-06-05 17345200]
"Tutor.exe"="c:\program files\ABBYY Lingvo x3\Tutor.exe" [2010-09-07 1324296]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2012-03-26 640440]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2012-03-27 40376]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"CreateLMBCShortCut"="c:\program files\Lenovo\Mobile Broadband Connect\UserShortcutCreator.exe" [2009-07-16 40960]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-08-26 30192]
"LVCOMSX"="c:\program files\Common Files\LogiShrd\LComMgr\LVComSX.exe" [2006-12-22 244512]
"lxdqmon.exe"="c:\program files\Lexmark Z2400 Series\lxdqmon.exe" [2010-02-04 672424]
"Message Center Plus"="c:\program files\LENOVO\Message Center Plus\MCPLaunch.exe" [2009-05-28 49976]
"LPMailChecker"="c:\progra~1\THINKV~1\PrdCtr\LPMLCHK.exe" [2009-01-28 124248]
"LPManager"="c:\progra~1\THINKV~1\PrdCtr\LPMGR.exe" [2009-01-28 185688]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2009-11-19 307768]
"Lingvo Launcher"="c:\program files\ABBYY Lingvo x3\LvAgent.exe" [2010-09-07 1774856]
"PWMTRV"="c:\progra~1\ThinkPad\UTILIT~1\PWMTR32V.DLL" [2012-03-15 4392512]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-05-04 311296]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-08-07 186904]
"AcWin7Hlpr"="c:\program files\Lenovo\Access Connections\AcTBenabler.exe" [2010-09-18 31592]
"Absolute Notifier"="c:\program files\Absolute Software\Absolute Notifier\AbsoluteNotifier.exe" [2011-05-10 85672]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-12-23 2321680]
"TpShocks"="TpShocks.exe" [2010-07-01 337256]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2011-10-07 1387288]
"Ad-Aware Browsing Protection"="c:\programdata\Ad-Aware Browsing Protection\adawarebp.exe" [2011-10-21 198032]
.
c:\users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Jared\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
Random House Webster's Unabridged Dictionary WordGenius Activate.LNK - c:\program files\Random House\WUD-WG\WGRU.exe [2009-10-27 128592]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2009-8-27 50688]
VPN Client.lnk - c:\windows\Installer\{B0BF7057-6869-4E4B-920C-EA2A58DA07F0}\Icon3E5562ED7.ico [2010-11-5 6144]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AutorunsDisabled]
2011-09-27 19:03 66328 ----a-w- c:\program files\Common Files\logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll c:\windows\System32\acaptuser32.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKLM\~\startupfolder\C:^Users^Jared^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Product Registration.lnk]
path=c:\users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk
backup=c:\windows\pss\Logitech . Product Registration.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
2008-08-14 14:58 611712 ----a-w- c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
2009-09-04 01:43 767312 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2011-03-21 18:56 1230704 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EzPrint]
2010-02-04 01:17 107176 ----a-w- c:\program files\Lexmark Z2400 Series\ezprint.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
2012-06-20 23:02 12163848 ----a-w- c:\program files\Google\Drive\googledrivesync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2012-03-27 01:09 421736 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2009-10-14 10:36 2793304 ----a-w- c:\program files\Logitech\Logitech WebCam Software\LWS.exe
.
R0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys [x]
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [x]
R2 GdmWmPrt;GCT WiMax Protocol Driver;c:\windows\system32\DRIVERS\gdmwmprt.sys [x]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [x]
R2 lxdqCATSCustConnectService;lxdqCATSCustConnectService;c:\windows\system32\spool\DRIVERS\W32X86\3\\lxdqserv.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys [x]
R3 DozeSvc;Lenovo Doze Mode Service;c:\program files\ThinkPad\Utilities\DOZESVC.EXE [x]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [x]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [x]
R3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [x]
R3 Lavasoft Kernexplorer;Lavasoft helper driver;c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [x]
R3 PCDSRVC{3037D694-FD904ACA-06020200}_0;PCDSRVC{3037D694-FD904ACA-06020200}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\pc-doctor\pcdsrvc.pkms [x]
R3 Power Manager DBC Service;Power Manager DBC Service;c:\program files\ThinkPad\Utilities\PWMDBSVC.EXE [x]
R3 PwmEWSvc;Cisco EnergyWise Enabler;c:\program files\ThinkPad\Utilities\PWMEWSVC.EXE [x]
R3 rcmirror;rcmirror;c:\windows\system32\DRIVERS\rcmirror.sys [x]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [x]
S0 DozeHDD;DozeHDD;c:\windows\System32\DRIVERS\DozeHDD.sys [x]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM86.sys [x]
S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiif32.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [x]
S2 ABBYY.Licensing.Lingvo.Desktop.14.0;ABBYY Lingvo x3 Licencing Service;c:\program files\Common Files\ABBYY\Lingvo\14.0\Licensing\NetworkLicenseServer.exe [x]
S2 AbsoluteNotifier;Absolute Notifier;c:\program files\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 DMAgent;Intel® PROSet/Wireless WiMAX Red Bend Device Management Service;c:\program files\Intel\WiMAX\Bin\DMAgent.exe [x]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [x]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [x]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [x]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [x]
S2 rpcld;Remote Procedure Call (RPC) LD;c:\programdata\Rpcnet\Bin\rpcld.exe [x]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [x]
S2 TPHKSVC;On Screen Display;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [x]
S2 UNS;Intel® Active Management Technology User Notification Service;c:\program files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [x]
S2 WiMAXAppSrv;Intel® PROSet/Wireless WiMAX Service;c:\program files\Intel\WiMAX\Bin\AppSrv.exe [x]
S2 WinFLdrv;WinFLdrv;c:\windows\system32\WinFLdrv.sys [x]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys [x]
S3 bpenum;Intel® WiMAX Link Enumerator;c:\windows\system32\DRIVERS\bpenum.sys [x]
S3 e1yexpress;Intel® Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y6232.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd32.sys [x]
S3 NETwNs32;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\DRIVERS\NETwNs32.sys [x]
S3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\DRIVERS\Tvti2c.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - SASENUM
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Contents of the 'Scheduled Tasks' folder
.
2012-07-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-12 14:32]
.
2012-07-20 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-27 11:15]
.
2012-07-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-10-27 11:44]
.
2012-07-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-10-27 11:44]
.
2012-07-13 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:54]
.
2012-07-21 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:54]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://google.com/
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
IE: Translate with ABBYY Lingvo x&3 - c:\program files\ABBYY Lingvo x3\Lingvo.exe/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Jared\AppData\Roaming\Mozilla\Firefox\Profiles\uxec0yck.Jared\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?hl=en&source=mpes
FF - prefs.js: network.proxy.type - 2
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\PCDSRVC{3037D694-FD904ACA-06020200}_0]
"ImagePath"="\??\c:\program files\pc-doctor\pcdsrvc.pkms"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-2886773906-1503155382-1841928733-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*õg€j¢
*€²
]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-2886773906-1503155382-1841928733-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*õg€j¢
*€²
\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'Explorer.exe'(9248)
c:\programdata\Ad-Aware Browsing Protection\adawarebp.dll
c:\users\Jared\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
c:\program files\Lenovo\Access Connections\ACDeskBand.dll
c:\program files\Lenovo\Access Connections\AcLocSettings.dll
c:\program files\Lenovo\Access Connections\AcCryptHlpr.dll
c:\program files\Lenovo\Access Connections\ACHelper.dll
c:\program files\Lenovo\Access Connections\AcSvcStub.dll
c:\program files\ABBYY Lingvo x3\LvHook.dll
c:\program files\Lenovo\Drag-to-Disc\Shellex.dll
c:\windows\system32\DLAAPI_W.DLL
c:\program files\Lenovo\Drag-to-Disc\ShellRes.dll
c:\windows\System32\ieframe.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\ibmpmsvc.exe
c:\windows\system32\atieclxx.exe
c:\windows\system32\WLANExt.exe
c:\windows\system32\conhost.exe
c:\program files\Lenovo\Access Connections\AcPrfMgrSvc.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Cisco Systems\VPN Client\cvpnd.exe
c:\program files\Intel\WiFi\bin\EvtEng.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
c:\program files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\windows\system32\taskhost.exe
c:\windows\System32\rpcnet.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\progra~1\LENOVO\VIRTSCRL\virtscrl.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\Lenovo\Access Connections\AcSvc.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\LENOVO\HOTKEY\tposdsvc.exe
c:\program files\Lenovo\Zoom\TpScrex.exe
c:\program files\Lenovo\HOTKEY\TPONSCR.exe
c:\windows\system32\conhost.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\ThinkVantage\PrdCtr\LPMLCHK.EXE
c:\program files\ThinkVantage\PrdCtr\LPMGR.EXE
c:\windows\System32\rundll32.exe
c:\windows\System32\TpShocks.exe
c:\progra~1\ThinkPad\UTILIT~1\SCHTASK.exe
c:\program files\Synaptics\SynTP\SynTPLpr.exe
c:\windows\system32\igfxext.exe
c:\program files\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
c:\windows\system32\igfxsrvc.exe
c:\program files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\DllHost.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Intel\AMT\LMS.exe
c:\windows\system32\sppsvc.exe
c:\program files\Lenovo\System Update\SUService.exe
c:\program files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
.
**************************************************************************
.
Completion time: 2012-07-21 11:21:07 - machine was rebooted
ComboFix-quarantined-files.txt 2012-07-21 15:20
ComboFix2.txt 2012-07-20 15:33
ComboFix3.txt 2012-02-10 17:51
.
Pre-Run: 19,562,545,152 bytes free
Post-Run: 19,839,717,376 bytes free
.
- - End Of File - - A0B69C3541EA547BFE0E99A565FFEBB4

Ant this go s0.2mdn.net is constantly causing the browser to slow down and freeze and then the browser itself shakes before going to the site.

Ant this go s0.2mdn.net is constantly causing the browser to slow down and freeze and then the browser itself shakes before going to the site.

This is coming from a Java or some malforme Firefox extension or plug-in.

You can stop going to s0.2mdn.net by installing this HOSTS file.

Download HostsXpert

Tutorial, go here:
http://i28.photobucket.com/albums/c227/tetonbob/emoticons/HostsXpert4.jpg

• Unzip HostsXpert to it's own folder.
• Run HostsXpert.exe
• Click: Make Writable? in the upper left corner.
• Click: Download
• Click: MVPs Hosts
• Click: Replace
• Click: OK
• Click: Make ReadOnly
• Close HostsXpert.

Note: If a custom Hosts file was in place, also edit those entries back in.
*/*
I suggest that you update the new version of the Hosts file, every 6 weeks. I Do.

All you need to know about the hosts file.
http://www.mvps.org/winhelp2002/hosts.htm
===

Keep me posted.

Nothing happens when I click on MVPs hosts. I can't get to replace.