Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Strange links appearing on web pages

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Strange links appearing on web pages

Unread postby Cypher » October 9th, 2012, 10:58 am

Hi Mark,
Ok lets try this again.
Uninstall Google Chrome using the instructions Here

Then download and install it again, once done let me know if the problem is still there.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns
Advertisement
Register to Remove

Re: Strange links appearing on web pages

Unread postby m2thef2thec » October 9th, 2012, 7:47 pm

Hi Cypher

I've done that but the problem is still there. I've noticed the item 'searchqu' come up in the logs I've posted. Is this the offending article? I've done some reading about it and it looks pretty malicious.

Regards
Mark
m2thef2thec
Regular Member
 
Posts: 21
Joined: October 13th, 2011, 11:21 am

Re: Strange links appearing on web pages

Unread postby Cypher » October 10th, 2012, 5:03 am

Hi Mark,
I've done that but the problem is still there. I've noticed the item 'searchqu' come up in the logs I've posted. Is this the offending article? I've done some reading about it and it looks pretty malicious.
searchqu could very well be the culprit, but we took care of that earlier.
It's odd that the only browser affected is Chrome, i would expect your other browsers to be affected to.
Lets run another searchqu search to be sure we got it all.

  • Double-click SystemLook.exe to run it.
  • Copy and paste the content of the following codebox into the main textfield:
    Code: Select all
    :filefind
    *Fun4IM*
    *Bandoo*
    *Searchnu*
    *Searchqu*
    *iLivid*
    *whitesmoke*
    *datamngr*
    *trolltech*
    
    :folderfind
    *Fun4IM*
    *Bandoo*
    *Searchnu*
    *Searchqu*
    *iLivid*
    *whitesmoke*
    *datamngr*
    *trolltech*
    
    :Regfind
    Fun4IM
    Bandoo
    Searchnu
    Searchqu
    iLivid
    whitesmoke
    datamngr
    kelkoopartners
    trolltech
    
  • Click the Look button to start the scan.
    Because of the Registry searches, the scan may take 15 minutes or a bit more to run on a large machine. Please be patient.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
Note: The log can also be found on your Desktop entitled SystemLook.txt
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Re: Strange links appearing on web pages

Unread postby m2thef2thec » October 10th, 2012, 9:24 am

Hi Cypher

Here is the SystemLook log:

SystemLook 30.07.11 by jpshortstuff
Log created at 23:11 on 10/10/2012 by Mark
Administrator - Elevation successful

========== filefind ==========

Searching for "*Fun4IM*"
No files found.

Searching for "*Bandoo*"
No files found.

Searching for "*Searchnu*"
No files found.

Searching for "*Searchqu*"
C:\_OTL\MovedFiles\10032012_012434\C_Users\Mark\AppData\Local\Temp\Searchqu.ini --a--c- 357 bytes [00:36 29/08/2012] [00:36 29/08/2012] 24864CD94B7F53B343690D08F0FDF73E
C:\_OTL\MovedFiles\10032012_012434\C_Users\Mark\AppData\Local\Temp\searchqutoolbar-manifest.xml --a--c- 9422 bytes [08:42 27/02/2012] [08:42 27/02/2012] B4CF632013D5A08B137DB737D2825F12

Searching for "*iLivid*"
No files found.

Searching for "*whitesmoke*"
No files found.

Searching for "*datamngr*"
No files found.

Searching for "*trolltech*"
No files found.

========== folderfind ==========

Searching for "*Fun4IM*"
No folders found.

Searching for "*Bandoo*"
No folders found.

Searching for "*Searchnu*"
No folders found.

Searching for "*Searchqu*"
No folders found.

Searching for "*iLivid*"
No folders found.

Searching for "*whitesmoke*"
No folders found.

Searching for "*datamngr*"
No folders found.

Searching for "*trolltech*"
No folders found.

========== Regfind ==========

Searching for "Fun4IM"
No data found.

Searching for "Bandoo"
No data found.

Searching for "Searchnu"
No data found.

Searching for "Searchqu"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AB310581-AC80-11D1-8DF3-00C04FB6EF63}]
@="ISearchQueryHelper"

Searching for "iLivid"
No data found.

Searching for "whitesmoke"
No data found.

Searching for "datamngr"
No data found.

Searching for "kelkoopartners"
No data found.

Searching for "trolltech"
No data found.

-= EOF =-
m2thef2thec
Regular Member
 
Posts: 21
Joined: October 13th, 2011, 11:21 am

Re: Strange links appearing on web pages

Unread postby Cypher » October 10th, 2012, 10:33 am

Hi Mark,
Nothing there to explain the problem with Chrome.

  • Double-click OTL.exe to start the program.
  • Copy and Paste the following code into the Image textbox. Do not include the word Code
    Code: Select all
    :commands
    [createrestorepoint]
    
    :processes
    killallprocesses
    
    :otl
    IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}
    IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2925418
    IE - HKCU\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}
    FF - prefs.js..browser.startup.homepage: "http://www.searchnu.com/421"
    FF - prefs.js..extensions.enabledAddons: {a94e8dc9-07aa-45a7-8af2-a0375473a5cd}:3.7.0.6
    FF - prefs.js..extensions.enabledAddons: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145
    FF - prefs.js..extensions.enabledAddons: {1FD91A9C-410C-4090-BBCC-55D3450EF433}:1.0
    FF - prefs.js..extensions.enabledAddons: {99079a25-328f-4bd4-be04-00955acaa0a7}:4.6.1.01
    FF - prefs.js..extensions.enabledAddons: {C3949AC2-4B17-43ee-B4F1-D26B9D42404D}:15.0.5
    O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    
    :files
    ipconfig /flushdns /c
    
    :commands
    [emptytemp]
    [resethosts]
    
    
  • Then click the Run Fix button at the top.
  • Click Image.
  • OTL may ask to reboot the machine. Please do so if asked.
  • The report should appear in Notepad after the reboot.Copy and Paste that report in your next reply.

Next.

Please download TDSSKiller and save it to your Desktop.

  • Double click TDSSKiller.exe to run it.
  • Under Additional Options check Verify file digital signatures
  • IMPORTANT: Ensure Detect TDLFS file system remains UNchecked.
  • Click Start scan and allow it to scan for Malicious objects.

    • If Malicious objects are detected, the default action will be Cure, ensure Cure is selected then click Continue
    • If suspicious objects are detected, the default action will be Skip, ensure Skip is selected then click Continue
    • If Unsigned files are detected, the default action will be Skip, ensure Skip is selected then click Continue

    DO NOT change the default actions.

  • It may ask you to reboot the computer to complete the process. Click on Reboot Now and allow the computer to reboot.
  • A log will be created on your root (usually C:) drive. The log is like UtilityName.Version_Date_Time_log.txt.
    for example, C:\TDSSKiller.2.4.1.2_20.04.2010_15.31.43_log.txt.
  • If no reboot is required, click on Report. A log file should appear.
  • Please post the contents in your next reply

Logs/Information to Post in your Next Reply

  • OTL Fix log.
  • TDSSKiller log.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Re: Strange links appearing on web pages

Unread postby m2thef2thec » October 11th, 2012, 10:17 am

Hi Cypher

I've run OTL but the same thing has happened as before: It reached [emptytemp] and [resethosts] then stopped responding. I logged out and logged in again and the following appeared in a text file named 10112012_235330:

Files\Folders moved on Reboot...
C:\Users\Mark\AppData\Local\Temp\~DF4279.tmp moved successfully.
File\Folder C:\Users\Mark\AppData\Local\Temp\~DF4A18.tmp not found!
File\Folder C:\Users\Mark\AppData\Local\Temp\~DF4A2A.tmp not found!
File\Folder C:\Users\Mark\AppData\Local\Temp\~DF4A99.tmp not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Here is the output log from the TDSSKiller program:

00:06:37.0703 5052 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
00:06:39.0014 5052 ============================================================
00:06:39.0014 5052 Current date / time: 2012/10/12 00:06:39.0014
00:06:39.0014 5052 SystemInfo:
00:06:39.0014 5052
00:06:39.0014 5052 OS Version: 6.0.6002 ServicePack: 2.0
00:06:39.0014 5052 Product type: Workstation
00:06:39.0014 5052 ComputerName: MNMSPUTER
00:06:39.0015 5052 UserName: Mark
00:06:39.0015 5052 Windows directory: C:\Windows
00:06:39.0015 5052 System windows directory: C:\Windows
00:06:39.0015 5052 Processor architecture: Intel x86
00:06:39.0015 5052 Number of processors: 4
00:06:39.0015 5052 Page size: 0x1000
00:06:39.0015 5052 Boot type: Normal boot
00:06:39.0015 5052 ============================================================
00:06:40.0349 5052 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
00:06:40.0481 5052 ============================================================
00:06:40.0481 5052 \Device\Harddisk0\DR0:
00:06:40.0481 5052 MBR partitions:
00:06:40.0481 5052 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4E20000
00:06:40.0481 5052 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x4E20800, BlocksNum 0x33147D4C
00:06:40.0481 5052 ============================================================
00:06:40.0523 5052 C: <-> \Device\Harddisk0\DR0\Partition1
00:06:40.0610 5052 D: <-> \Device\Harddisk0\DR0\Partition2
00:06:40.0611 5052 ============================================================
00:06:40.0611 5052 Initialize success
00:06:40.0611 5052 ============================================================
00:07:46.0444 6252 ============================================================
00:07:46.0444 6252 Scan started
00:07:46.0444 6252 Mode: Manual; SigCheck;
00:07:46.0444 6252 ============================================================
00:07:47.0836 6252 ================ Scan system memory ========================
00:07:47.0836 6252 System memory - ok
00:07:47.0836 6252 ================ Scan services =============================
00:07:47.0981 6252 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
00:07:48.0164 6252 ACPI - ok
00:07:48.0277 6252 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
00:07:48.0315 6252 AdobeARMservice - ok
00:07:48.0408 6252 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
00:07:48.0437 6252 AdobeFlashPlayerUpdateSvc - ok
00:07:48.0489 6252 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
00:07:48.0585 6252 adp94xx - ok
00:07:48.0604 6252 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
00:07:48.0668 6252 adpahci - ok
00:07:48.0694 6252 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
00:07:48.0766 6252 adpu160m - ok
00:07:48.0778 6252 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
00:07:48.0840 6252 adpu320 - ok
00:07:48.0860 6252 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
00:07:49.0021 6252 AeLookupSvc - ok
00:07:49.0088 6252 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
00:07:49.0211 6252 AFD - ok
00:07:49.0245 6252 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
00:07:49.0301 6252 agp440 - ok
00:07:49.0322 6252 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
00:07:49.0378 6252 aic78xx - ok
00:07:49.0408 6252 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
00:07:49.0585 6252 ALG - ok
00:07:49.0597 6252 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
00:07:49.0645 6252 aliide - ok
00:07:49.0674 6252 [ 50EBBB86E493BD9AB7DDF914A90EEF8E ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
00:07:49.0760 6252 AMD External Events Utility - ok
00:07:49.0786 6252 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
00:07:49.0843 6252 amdagp - ok
00:07:49.0879 6252 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
00:07:49.0927 6252 amdide - ok
00:07:49.0951 6252 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
00:07:50.0176 6252 AmdK7 - ok
00:07:50.0190 6252 [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
00:07:50.0304 6252 AmdK8 - ok
00:07:50.0592 6252 [ 70EB74785AB7FC603FEF19D87B7A7946 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
00:07:51.0849 6252 amdkmdag - ok
00:07:51.0926 6252 [ BA99833BBDE9C4FF389FC8114FB14843 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
00:07:51.0979 6252 amdkmdap - ok
00:07:51.0999 6252 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
00:07:52.0069 6252 Appinfo - ok
00:07:52.0153 6252 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:07:52.0180 6252 Apple Mobile Device - ok
00:07:52.0223 6252 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
00:07:52.0300 6252 arc - ok
00:07:52.0326 6252 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
00:07:52.0423 6252 arcsas - ok
00:07:52.0535 6252 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
00:07:52.0559 6252 aspnet_state - ok
00:07:52.0594 6252 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
00:07:52.0738 6252 AsyncMac - ok
00:07:52.0758 6252 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
00:07:52.0840 6252 atapi - ok
00:07:53.0022 6252 [ 70EB74785AB7FC603FEF19D87B7A7946 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
00:07:53.0890 6252 atikmdag - ok
00:07:53.0918 6252 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:07:53.0970 6252 AudioEndpointBuilder - ok
00:07:53.0993 6252 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
00:07:54.0024 6252 Audiosrv - ok
00:07:54.0075 6252 [ 08015D34F6FDD0B355805BAD978497C3 ] bcm4sbxp C:\Windows\system32\DRIVERS\bcm4sbxp.sys
00:07:54.0172 6252 bcm4sbxp - ok
00:07:54.0224 6252 [ C2F56B680C4207521630C013E0ECE002 ] BCMIDI C:\Windows\system32\Drivers\bcmidi2.sys
00:07:54.0275 6252 BCMIDI ( UnsignedFile.Multi.Generic ) - warning
00:07:54.0275 6252 BCMIDI - detected UnsignedFile.Multi.Generic (1)
00:07:54.0296 6252 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
00:07:54.0351 6252 Beep - ok
00:07:54.0395 6252 [ CEC372AD06CB5A27547DC6ACD6318CF3 ] BEHRINGER_PT_MIDI C:\Windows\system32\drivers\bhrngr_m.sys
00:07:54.0427 6252 BEHRINGER_PT_MIDI - ok
00:07:54.0518 6252 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
00:07:54.0606 6252 BFE - ok
00:07:54.0700 6252 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
00:07:54.0809 6252 BITS - ok
00:07:54.0813 6252 blbdrive - ok
00:07:54.0929 6252 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
00:07:54.0963 6252 Bonjour Service - ok
00:07:55.0022 6252 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
00:07:55.0078 6252 bowser - ok
00:07:55.0099 6252 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
00:07:55.0186 6252 BrFiltLo - ok
00:07:55.0207 6252 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
00:07:55.0260 6252 BrFiltUp - ok
00:07:55.0293 6252 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
00:07:55.0348 6252 Browser - ok
00:07:55.0378 6252 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
00:07:55.0521 6252 Brserid - ok
00:07:55.0538 6252 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
00:07:55.0637 6252 BrSerWdm - ok
00:07:55.0677 6252 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
00:07:55.0785 6252 BrUsbMdm - ok
00:07:55.0804 6252 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
00:07:55.0910 6252 BrUsbSer - ok
00:07:55.0921 6252 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
00:07:55.0993 6252 BTHMODEM - ok
00:07:56.0035 6252 [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5 C:\Windows\system32\drivers\BVRPMPR5.SYS
00:07:56.0083 6252 BVRPMPR5 ( UnsignedFile.Multi.Generic ) - warning
00:07:56.0084 6252 BVRPMPR5 - detected UnsignedFile.Multi.Generic (1)
00:07:56.0104 6252 [ 1778EBA872274C1226D869CD9486847E ] Capture Device Service C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
00:07:56.0155 6252 Capture Device Service - ok
00:07:56.0184 6252 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
00:07:56.0309 6252 cdfs - ok
00:07:56.0358 6252 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
00:07:56.0437 6252 cdrom - ok
00:07:56.0470 6252 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
00:07:56.0508 6252 CertPropSvc - ok
00:07:56.0551 6252 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys
00:07:56.0655 6252 circlass - ok
00:07:56.0687 6252 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
00:07:56.0716 6252 CLFS - ok
00:07:56.0747 6252 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:07:56.0782 6252 clr_optimization_v2.0.50727_32 - ok
00:07:56.0812 6252 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:07:56.0840 6252 clr_optimization_v4.0.30319_32 - ok
00:07:56.0882 6252 [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
00:07:56.0930 6252 cmdide - ok
00:07:56.0966 6252 [ 82B8C91D327CFECF76CB58716F7D4997 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
00:07:57.0014 6252 Compbatt - ok
00:07:57.0028 6252 COMSysApp - ok
00:07:57.0078 6252 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
00:07:57.0122 6252 crcdisk - ok
00:07:57.0146 6252 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
00:07:57.0248 6252 Crusoe - ok
00:07:57.0293 6252 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
00:07:57.0359 6252 CryptSvc - ok
00:07:57.0427 6252 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
00:07:57.0486 6252 DcomLaunch - ok
00:07:57.0594 6252 [ 20A04D8077CCCBA1711070EB01F02AFB ] DELTAII C:\Windows\system32\DRIVERS\deltaII.sys
00:07:57.0687 6252 DELTAII - ok
00:07:57.0727 6252 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
00:07:57.0770 6252 DfsC - ok
00:07:57.0800 6252 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
00:07:57.0851 6252 Dhcp - ok
00:07:57.0880 6252 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
00:07:57.0906 6252 disk - ok
00:07:57.0964 6252 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
00:07:58.0027 6252 Dnscache - ok
00:07:58.0053 6252 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
00:07:58.0104 6252 dot3svc - ok
00:07:58.0156 6252 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
00:07:58.0230 6252 DPS - ok
00:07:58.0261 6252 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
00:07:58.0337 6252 drmkaud - ok
00:07:58.0373 6252 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
00:07:58.0429 6252 DXGKrnl - ok
00:07:58.0464 6252 [ 5E72C8FBBA5E949995CEB4D25656F904 ] E100B C:\Windows\system32\DRIVERS\e100b325.sys
00:07:58.0488 6252 E100B - ok
00:07:58.0526 6252 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
00:07:58.0636 6252 E1G60 - ok
00:07:58.0684 6252 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
00:07:58.0745 6252 EapHost - ok
00:07:58.0821 6252 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
00:07:58.0848 6252 Ecache - ok
00:07:58.0923 6252 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
00:07:58.0994 6252 ehRecvr - ok
00:07:59.0056 6252 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
00:07:59.0186 6252 ehSched - ok
00:07:59.0197 6252 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
00:07:59.0266 6252 ehstart - ok
00:07:59.0288 6252 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
00:07:59.0385 6252 elxstor - ok
00:07:59.0514 6252 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
00:07:59.0771 6252 EMDMgmt - ok
00:07:59.0850 6252 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
00:07:59.0982 6252 EventSystem - ok
00:08:00.0018 6252 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
00:08:00.0318 6252 exfat - ok
00:08:00.0349 6252 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
00:08:00.0485 6252 fastfat - ok
00:08:00.0527 6252 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
00:08:00.0664 6252 fdc - ok
00:08:00.0693 6252 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
00:08:00.0817 6252 fdPHost - ok
00:08:00.0869 6252 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
00:08:01.0020 6252 FDResPub - ok
00:08:01.0051 6252 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
00:08:01.0167 6252 FileInfo - ok
00:08:01.0196 6252 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
00:08:01.0350 6252 Filetrace - ok
00:08:01.0386 6252 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
00:08:01.0501 6252 flpydisk - ok
00:08:01.0582 6252 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
00:08:01.0656 6252 FltMgr - ok
00:08:01.0782 6252 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
00:08:01.0888 6252 FontCache - ok
00:08:01.0936 6252 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
00:08:02.0026 6252 FontCache3.0.0.0 - ok
00:08:02.0067 6252 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
00:08:02.0180 6252 Fs_Rec - ok
00:08:02.0217 6252 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
00:08:02.0267 6252 gagp30kx - ok
00:08:02.0296 6252 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:08:02.0327 6252 GEARAspiWDM - ok
00:08:02.0361 6252 [ 947DA3AD94A7593BFA439939AC5E823B ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll
00:08:02.0387 6252 getPlusHelper - ok
00:08:02.0434 6252 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
00:08:02.0529 6252 gpsvc - ok
00:08:02.0695 6252 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
00:08:02.0714 6252 gupdate - ok
00:08:02.0745 6252 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
00:08:02.0761 6252 gupdatem - ok
00:08:02.0910 6252 [ AC33BE07397814A442DC305223DE3524 ] HCW85BDA C:\Windows\system32\drivers\HCW85BDA.sys
00:08:03.0141 6252 HCW85BDA - ok
00:08:03.0186 6252 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:08:03.0296 6252 HdAudAddService - ok
00:08:03.0334 6252 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
00:08:03.0420 6252 HDAudBus - ok
00:08:03.0445 6252 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
00:08:03.0550 6252 HidBth - ok
00:08:03.0589 6252 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
00:08:03.0702 6252 HidIr - ok
00:08:03.0744 6252 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
00:08:03.0797 6252 hidserv - ok
00:08:03.0835 6252 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
00:08:03.0892 6252 HidUsb - ok
00:08:03.0916 6252 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
00:08:03.0979 6252 hkmsvc - ok
00:08:04.0000 6252 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
00:08:04.0054 6252 HpCISSs - ok
00:08:04.0084 6252 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
00:08:04.0178 6252 HTTP - ok
00:08:04.0213 6252 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
00:08:04.0257 6252 i2omp - ok
00:08:04.0316 6252 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
00:08:04.0384 6252 i8042prt - ok
00:08:04.0406 6252 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
00:08:04.0510 6252 iaStorV - ok
00:08:04.0632 6252 [ 7D38902D8F29E6EF25CBB81BAA4A9210 ] icsak C:\Program Files\CheckPoint\ZAForceField\AK\icsak.sys
00:08:04.0690 6252 icsak - ok
00:08:04.0850 6252 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
00:08:04.0947 6252 IDriverT ( UnsignedFile.Multi.Generic ) - warning
00:08:04.0947 6252 IDriverT - detected UnsignedFile.Multi.Generic (1)
00:08:05.0088 6252 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
00:08:05.0286 6252 idsvc - ok
00:08:05.0317 6252 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
00:08:05.0413 6252 iirsp - ok
00:08:05.0561 6252 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
00:08:05.0727 6252 IKEEXT - ok
00:08:05.0796 6252 [ 9F5898EBD3BBE82EADF2EFA595F02A72 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
00:08:05.0988 6252 IntcAzAudAddService - ok
00:08:06.0032 6252 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
00:08:06.0057 6252 intelide - ok
00:08:06.0098 6252 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
00:08:06.0148 6252 intelppm - ok
00:08:06.0182 6252 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
00:08:06.0254 6252 IPBusEnum - ok
00:08:06.0275 6252 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:08:06.0332 6252 IpFilterDriver - ok
00:08:06.0405 6252 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
00:08:06.0489 6252 iphlpsvc - ok
00:08:06.0493 6252 IpInIp - ok
00:08:06.0514 6252 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
00:08:06.0601 6252 IPMIDRV - ok
00:08:06.0657 6252 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
00:08:06.0705 6252 IPNAT - ok
00:08:06.0748 6252 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
00:08:06.0866 6252 iPod Service - ok
00:08:06.0899 6252 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
00:08:06.0943 6252 IRENUM - ok
00:08:07.0015 6252 [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
00:08:07.0065 6252 isapnp - ok
00:08:07.0202 6252 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
00:08:07.0230 6252 iScsiPrt - ok
00:08:07.0261 6252 [ C76357E42FF11A00B3FE0A7B341E3F5F ] ISWKL C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
00:08:07.0289 6252 ISWKL - ok
00:08:07.0434 6252 [ 7AAD72B665E984EF644A6812C48B37DF ] IswSvc C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
00:08:07.0499 6252 IswSvc - ok
00:08:07.0570 6252 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
00:08:07.0633 6252 iteatapi - ok
00:08:07.0656 6252 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
00:08:07.0739 6252 iteraid - ok
00:08:07.0783 6252 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
00:08:07.0817 6252 kbdclass - ok
00:08:07.0864 6252 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
00:08:07.0912 6252 kbdhid - ok
00:08:07.0965 6252 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
00:08:08.0069 6252 KeyIso - ok
00:08:08.0116 6252 [ 94D67D49BD9503BB1D838405D80F2058 ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
00:08:08.0138 6252 KL1 - ok
00:08:08.0166 6252 [ 713576569667AC9E0F8556076004A96B ] kl2 C:\Windows\system32\DRIVERS\kl2.sys
00:08:08.0198 6252 kl2 - ok
00:08:08.0247 6252 [ F5CA41F028B32118CCD69652A4C0141A ] KLIF C:\Windows\system32\DRIVERS\klif.sys
00:08:08.0271 6252 KLIF - ok
00:08:08.0317 6252 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
00:08:08.0349 6252 KSecDD - ok
00:08:08.0380 6252 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
00:08:08.0436 6252 KtmRm - ok
00:08:08.0523 6252 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
00:08:08.0589 6252 LanmanServer - ok
00:08:08.0620 6252 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:08:08.0771 6252 LanmanWorkstation - ok
00:08:08.0838 6252 [ 29FAB5363138F6E322F4CD780ED9D337 ] LicCtrlService C:\Windows\runservice.exe
00:08:08.0923 6252 LicCtrlService ( UnsignedFile.Multi.Generic ) - warning
00:08:08.0923 6252 LicCtrlService - detected UnsignedFile.Multi.Generic (1)
00:08:08.0965 6252 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
00:08:09.0089 6252 lltdio - ok
00:08:09.0149 6252 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
00:08:09.0270 6252 lltdsvc - ok
00:08:09.0335 6252 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
00:08:09.0460 6252 lmhosts - ok
00:08:09.0724 6252 [ 63DAF163D1617DD611BD0AB8E41A43E8 ] LMIGuardianSvc D:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
00:08:09.0770 6252 LMIGuardianSvc - ok
00:08:09.0811 6252 [ 4F69FAAABB7DB0D43E327C0B6AAB40FC ] LMIInfo D:\Program Files\LogMeIn\x86\RaInfo.sys
00:08:09.0827 6252 LMIInfo - ok
00:08:09.0863 6252 [ 175F50F37EEAA1D4D744BCCCBB7CF68C ] LMIMaint D:\Program Files\LogMeIn\x86\RaMaint.exe
00:08:09.0879 6252 LMIMaint - ok
00:08:09.0917 6252 [ 4477689E2D8AE6B78BA34C9AF4CC1ED1 ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
00:08:09.0969 6252 lmimirr - ok
00:08:09.0973 6252 LMIRfsClientNP - ok
00:08:09.0998 6252 [ 3FAA563DDF853320F90259D455A01D79 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
00:08:10.0015 6252 LMIRfsDriver - ok
00:08:10.0171 6252 [ 432618FA75B61059D2C57D6A7E55147A ] LogMeIn D:\Program Files\LogMeIn\x86\LogMeIn.exe
00:08:10.0314 6252 LogMeIn - ok
00:08:10.0357 6252 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
00:08:10.0431 6252 LSI_FC - ok
00:08:10.0454 6252 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
00:08:10.0506 6252 LSI_SAS - ok
00:08:10.0551 6252 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
00:08:10.0598 6252 LSI_SCSI - ok
00:08:10.0638 6252 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
00:08:10.0726 6252 luafv - ok
00:08:10.0791 6252 [ DDF15A42E27E8EFE27B18FD403151A86 ] MatSvc C:\Program Files\Microsoft Fix it Center\Matsvc.exe
00:08:10.0824 6252 MatSvc - ok
00:08:10.0883 6252 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
00:08:10.0922 6252 Mcx2Svc - ok
00:08:10.0946 6252 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
00:08:11.0018 6252 megasas - ok
00:08:11.0039 6252 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
00:08:11.0116 6252 MMCSS - ok
00:08:11.0142 6252 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
00:08:11.0201 6252 Modem - ok
00:08:11.0221 6252 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
00:08:11.0279 6252 monitor - ok
00:08:11.0315 6252 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
00:08:11.0379 6252 mouclass - ok
00:08:11.0407 6252 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
00:08:11.0461 6252 mouhid - ok
00:08:11.0475 6252 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
00:08:11.0501 6252 MountMgr - ok
00:08:11.0581 6252 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
00:08:11.0631 6252 mpio - ok
00:08:11.0648 6252 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
00:08:11.0732 6252 mpsdrv - ok
00:08:11.0808 6252 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
00:08:11.0921 6252 MpsSvc - ok
00:08:11.0938 6252 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
00:08:11.0984 6252 Mraid35x - ok
00:08:12.0033 6252 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
00:08:12.0087 6252 MRxDAV - ok
00:08:12.0197 6252 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
00:08:12.0274 6252 mrxsmb - ok
00:08:12.0296 6252 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:08:12.0325 6252 mrxsmb10 - ok
00:08:12.0359 6252 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:08:12.0383 6252 mrxsmb20 - ok
00:08:12.0454 6252 [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci C:\Windows\system32\drivers\msahci.sys
00:08:12.0503 6252 msahci - ok
00:08:12.0539 6252 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
00:08:12.0598 6252 msdsm - ok
00:08:12.0648 6252 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
00:08:12.0740 6252 MSDTC - ok
00:08:12.0779 6252 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
00:08:12.0839 6252 Msfs - ok
00:08:12.0869 6252 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
00:08:12.0959 6252 msisadrv - ok
00:08:12.0998 6252 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
00:08:13.0131 6252 MSiSCSI - ok
00:08:13.0134 6252 msiserver - ok
00:08:13.0162 6252 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
00:08:13.0278 6252 MSKSSRV - ok
00:08:13.0331 6252 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
00:08:13.0441 6252 MSPCLOCK - ok
00:08:13.0455 6252 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
00:08:13.0575 6252 MSPQM - ok
00:08:13.0603 6252 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
00:08:13.0682 6252 MsRPC - ok
00:08:13.0712 6252 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
00:08:13.0805 6252 mssmbios - ok
00:08:13.0835 6252 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
00:08:13.0936 6252 MSTEE - ok
00:08:13.0971 6252 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
00:08:14.0054 6252 Mup - ok
00:08:14.0162 6252 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
00:08:14.0221 6252 napagent - ok
00:08:14.0287 6252 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
00:08:14.0355 6252 NativeWifiP - ok
00:08:14.0473 6252 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
00:08:14.0512 6252 NDIS - ok
00:08:14.0559 6252 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
00:08:14.0630 6252 NdisTapi - ok
00:08:14.0681 6252 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
00:08:14.0725 6252 Ndisuio - ok
00:08:14.0803 6252 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
00:08:14.0889 6252 NdisWan - ok
00:08:14.0918 6252 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
00:08:14.0960 6252 NDProxy - ok
00:08:15.0000 6252 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
00:08:15.0071 6252 NetBIOS - ok
00:08:15.0154 6252 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
00:08:15.0233 6252 netbt - ok
00:08:15.0261 6252 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
00:08:15.0304 6252 Netlogon - ok
00:08:15.0374 6252 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
00:08:15.0496 6252 Netman - ok
00:08:15.0570 6252 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:08:15.0611 6252 NetMsmqActivator - ok
00:08:15.0615 6252 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:08:15.0631 6252 NetPipeActivator - ok
00:08:15.0679 6252 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
00:08:15.0728 6252 netprofm - ok
00:08:15.0742 6252 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:08:15.0759 6252 NetTcpActivator - ok
00:08:15.0770 6252 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:08:15.0787 6252 NetTcpPortSharing - ok
00:08:15.0812 6252 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
00:08:15.0886 6252 nfrd960 - ok
00:08:15.0959 6252 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
00:08:16.0001 6252 NlaSvc - ok
00:08:16.0024 6252 [ EF7A048FE8E3F102C78C9BD7C448BB6C ] nosGetPlusHelper C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
00:08:16.0078 6252 nosGetPlusHelper - ok
00:08:16.0124 6252 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
00:08:16.0185 6252 Npfs - ok
00:08:16.0223 6252 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
00:08:16.0299 6252 nsi - ok
00:08:16.0317 6252 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
00:08:16.0360 6252 nsiproxy - ok
00:08:16.0413 6252 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
00:08:16.0559 6252 Ntfs - ok
00:08:16.0598 6252 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
00:08:16.0740 6252 ntrigdigi - ok
00:08:16.0777 6252 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
00:08:16.0841 6252 Null - ok
00:08:16.0898 6252 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
00:08:16.0949 6252 nvraid - ok
00:08:16.0963 6252 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
00:08:17.0012 6252 nvstor - ok
00:08:17.0068 6252 [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
00:08:17.0134 6252 nv_agp - ok
00:08:17.0137 6252 NwlnkFlt - ok
00:08:17.0141 6252 NwlnkFwd - ok
00:08:17.0197 6252 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
00:08:17.0298 6252 ohci1394 - ok
00:08:17.0370 6252 [ B366BFEE54DE3E7842A06BC6779C1175 ] OKAV Agent Service C:\Program Files\Trend Micro\OKAVAgent\OKAVAgent.exe
00:08:17.0473 6252 OKAV Agent Service - ok
00:08:17.0574 6252 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
00:08:17.0770 6252 p2pimsvc - ok
00:08:17.0832 6252 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
00:08:17.0925 6252 p2psvc - ok
00:08:17.0987 6252 [ 8A79FDF04A73428597E2CAF9D0D67850 ] Parport C:\Windows\system32\DRIVERS\parport.sys
00:08:18.0112 6252 Parport - ok
00:08:18.0140 6252 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
00:08:18.0160 6252 partmgr - ok
00:08:18.0191 6252 [ 6C580025C81CAF3AE9E3617C22CAD00E ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
00:08:18.0285 6252 Parvdm - ok
00:08:18.0318 6252 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
00:08:18.0524 6252 PcaSvc - ok
00:08:18.0553 6252 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
00:08:18.0581 6252 pci - ok
00:08:18.0593 6252 [ 3B1901E401473E03EB8C874271E50C26 ] pciide C:\Windows\system32\drivers\pciide.sys
00:08:18.0640 6252 pciide - ok
00:08:18.0725 6252 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
00:08:18.0778 6252 pcmcia - ok
00:08:18.0877 6252 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
00:08:19.0001 6252 PEAUTH - ok
00:08:19.0106 6252 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
00:08:19.0252 6252 pla - ok
00:08:19.0296 6252 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
00:08:19.0349 6252 PlugPlay - ok
00:08:19.0442 6252 [ E9605A180001A6B5551112D91DE92CA1 ] PMBDeviceInfoProvider C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
00:08:19.0542 6252 PMBDeviceInfoProvider - ok
00:08:19.0581 6252 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
00:08:19.0639 6252 PNRPAutoReg - ok
00:08:19.0649 6252 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
00:08:19.0730 6252 PNRPsvc - ok
00:08:19.0773 6252 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
00:08:19.0879 6252 PolicyAgent - ok
00:08:19.0932 6252 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
00:08:20.0017 6252 PptpMiniport - ok
00:08:20.0053 6252 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
00:08:20.0141 6252 Processor - ok
00:08:20.0197 6252 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
00:08:20.0316 6252 ProfSvc - ok
00:08:20.0325 6252 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
00:08:20.0347 6252 ProtectedStorage - ok
00:08:20.0397 6252 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
00:08:20.0465 6252 PSched - ok
00:08:20.0489 6252 [ C50DE6D0C04B230F185A13FDE0F047FA ] pwdrvio C:\Windows\system32\pwdrvio.sys
00:08:20.0519 6252 pwdrvio - ok
00:08:20.0563 6252 [ CDC5704308222400AD606BCF87B006A5 ] pwdspio C:\Windows\system32\pwdspio.sys
00:08:20.0646 6252 pwdspio - ok
00:08:20.0682 6252 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
00:08:20.0713 6252 PxHelp20 - ok
00:08:20.0855 6252 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
00:08:20.0965 6252 ql2300 - ok
00:08:21.0014 6252 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
00:08:21.0082 6252 ql40xx - ok
00:08:21.0128 6252 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
00:08:21.0194 6252 QWAVE - ok
00:08:21.0207 6252 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
00:08:21.0259 6252 QWAVEdrv - ok
00:08:21.0518 6252 [ 70EB74785AB7FC603FEF19D87B7A7946 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
00:08:22.0044 6252 R300 - ok
00:08:22.0072 6252 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
00:08:22.0192 6252 RasAcd - ok
00:08:22.0211 6252 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
00:08:22.0355 6252 RasAuto - ok
00:08:22.0382 6252 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
00:08:22.0492 6252 Rasl2tp - ok
00:08:22.0542 6252 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
00:08:22.0687 6252 RasMan - ok
00:08:22.0719 6252 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
00:08:22.0776 6252 RasPppoe - ok
00:08:22.0803 6252 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
00:08:22.0848 6252 RasSstp - ok
00:08:22.0910 6252 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
00:08:22.0958 6252 rdbss - ok
00:08:22.0992 6252 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
00:08:23.0101 6252 RDPCDD - ok
00:08:23.0185 6252 [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
00:08:23.0356 6252 rdpdr - ok
00:08:23.0409 6252 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
00:08:23.0467 6252 RDPENCDD - ok
00:08:23.0533 6252 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
00:08:23.0668 6252 RDPWD - ok
00:08:23.0716 6252 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
00:08:23.0768 6252 RemoteAccess - ok
00:08:23.0827 6252 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
00:08:23.0887 6252 RemoteRegistry - ok
00:08:23.0972 6252 [ 17E0BEF5CA5C9CE52CC8082AC6EBC449 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe
00:08:24.0001 6252 RichVideo - ok
00:08:24.0022 6252 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
00:08:24.0121 6252 RpcLocator - ok
00:08:24.0138 6252 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
00:08:24.0186 6252 RpcSs - ok
00:08:24.0207 6252 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
00:08:24.0269 6252 rspndr - ok
00:08:24.0282 6252 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
00:08:24.0303 6252 SamSs - ok
00:08:24.0329 6252 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
00:08:24.0380 6252 sbp2port - ok
00:08:24.0410 6252 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
00:08:24.0466 6252 SCardSvr - ok
00:08:24.0966 6252 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
00:08:25.0061 6252 Schedule - ok
00:08:25.0080 6252 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
00:08:25.0115 6252 SCPolicySvc - ok
00:08:25.0139 6252 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
00:08:25.0204 6252 SDRSVC - ok
00:08:25.0229 6252 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
00:08:25.0323 6252 secdrv - ok
00:08:25.0348 6252 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
00:08:25.0419 6252 seclogon - ok
00:08:25.0464 6252 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
00:08:25.0506 6252 SENS - ok
00:08:25.0544 6252 [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
00:08:25.0655 6252 Serenum - ok
00:08:25.0708 6252 [ 6D663022DB3E7058907784AE14B69898 ] Serial C:\Windows\system32\DRIVERS\serial.sys
00:08:25.0950 6252 Serial - ok
00:08:25.0984 6252 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
00:08:26.0190 6252 sermouse - ok
00:08:26.0226 6252 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
00:08:26.0541 6252 SessionEnv - ok
00:08:26.0595 6252 [ 103B79418DA647736EE95645F305F68A ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
00:08:26.0744 6252 sffdisk - ok
00:08:26.0759 6252 [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
00:08:27.0006 6252 sffp_mmc - ok
00:08:27.0061 6252 [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
00:08:27.0327 6252 sffp_sd - ok
00:08:27.0349 6252 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
00:08:27.0588 6252 sfloppy - ok
00:08:27.0624 6252 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
00:08:27.0861 6252 SharedAccess - ok
00:08:27.0933 6252 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:08:28.0028 6252 ShellHWDetection - ok
00:08:28.0046 6252 [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
00:08:28.0116 6252 sisagp - ok
00:08:28.0127 6252 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
00:08:28.0219 6252 SiSRaid2 - ok
00:08:28.0245 6252 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
00:08:28.0305 6252 SiSRaid4 - ok
00:08:28.0367 6252 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate D:\Program Files\skype\Updater\Updater.exe
00:08:28.0424 6252 SkypeUpdate - ok
00:08:28.0509 6252 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
00:08:28.0815 6252 slsvc - ok
00:08:28.0848 6252 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
00:08:28.0926 6252 SLUINotify - ok
00:08:29.0013 6252 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
00:08:29.0105 6252 Smb - ok
00:08:29.0133 6252 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
00:08:29.0220 6252 SNMPTRAP - ok
00:08:29.0257 6252 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
00:08:29.0292 6252 spldr - ok
00:08:29.0334 6252 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
00:08:29.0474 6252 Spooler - ok
00:08:29.0558 6252 [ 9263C8898732E2B890F7E954E7729AB7 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
00:08:29.0596 6252 SQLWriter - ok
00:08:29.0649 6252 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
00:08:29.0719 6252 srv - ok
00:08:29.0733 6252 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
00:08:29.0782 6252 srv2 - ok
00:08:29.0801 6252 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
00:08:29.0857 6252 srvnet - ok
00:08:29.0894 6252 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
00:08:29.0937 6252 SSDPSRV - ok
00:08:29.0966 6252 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
00:08:30.0023 6252 SstpSvc - ok
00:08:30.0044 6252 Steam Client Service - ok
00:08:30.0125 6252 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
00:08:30.0185 6252 stisvc - ok
00:08:30.0203 6252 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
00:08:30.0238 6252 swenum - ok
00:08:30.0323 6252 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
00:08:30.0376 6252 swprv - ok
00:08:30.0440 6252 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
00:08:30.0494 6252 Symc8xx - ok
00:08:30.0523 6252 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
00:08:30.0575 6252 Sym_hi - ok
00:08:30.0585 6252 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
00:08:30.0637 6252 Sym_u3 - ok
00:08:30.0681 6252 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
00:08:30.0767 6252 SysMain - ok
00:08:30.0810 6252 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:08:30.0924 6252 TabletInputService - ok
00:08:31.0036 6252 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
00:08:31.0141 6252 TapiSrv - ok
00:08:31.0168 6252 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
00:08:31.0254 6252 TBS - ok
00:08:31.0289 6252 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
00:08:31.0344 6252 Tcpip - ok
00:08:31.0420 6252 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
00:08:31.0471 6252 Tcpip6 - ok
00:08:31.0507 6252 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
00:08:31.0574 6252 tcpipreg - ok
00:08:31.0600 6252 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
00:08:31.0673 6252 TDPIPE - ok
00:08:31.0718 6252 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
00:08:31.0792 6252 TDTCP - ok
00:08:31.0820 6252 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
00:08:31.0956 6252 tdx - ok
00:08:31.0965 6252 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
00:08:32.0047 6252 TermDD - ok
00:08:32.0164 6252 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
00:08:32.0239 6252 TermService - ok
00:08:32.0258 6252 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
00:08:32.0283 6252 Themes - ok
00:08:32.0321 6252 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
00:08:32.0361 6252 THREADORDER - ok
00:08:32.0393 6252 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
00:08:32.0463 6252 TrkWks - ok
00:08:32.0544 6252 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:08:32.0580 6252 TrustedInstaller - ok
00:08:32.0615 6252 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
00:08:32.0677 6252 tssecsrv - ok
00:08:32.0704 6252 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
00:08:32.0778 6252 tunmp - ok
00:08:32.0824 6252 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
00:08:32.0868 6252 tunnel - ok
00:08:32.0893 6252 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
00:08:32.0943 6252 uagp35 - ok
00:08:32.0977 6252 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
00:08:33.0043 6252 udfs - ok
00:08:33.0082 6252 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
00:08:33.0145 6252 UI0Detect - ok
00:08:33.0168 6252 [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
00:08:33.0211 6252 uliagpkx - ok
00:08:33.0229 6252 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
00:08:33.0300 6252 uliahci - ok
00:08:33.0331 6252 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
00:08:33.0412 6252 UlSata - ok
00:08:33.0444 6252 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
00:08:33.0523 6252 ulsata2 - ok
00:08:33.0548 6252 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
00:08:33.0606 6252 umbus - ok
00:08:33.0641 6252 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
00:08:33.0725 6252 upnphost - ok
00:08:33.0768 6252 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
00:08:33.0848 6252 USBAAPL - ok
00:08:33.0886 6252 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
00:08:33.0941 6252 usbaudio - ok
00:08:33.0966 6252 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
00:08:34.0019 6252 usbccgp - ok
00:08:34.0040 6252 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
00:08:34.0136 6252 usbcir - ok
00:08:34.0160 6252 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
00:08:34.0220 6252 usbehci - ok
00:08:34.0302 6252 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
00:08:34.0373 6252 usbhub - ok
00:08:34.0391 6252 [ 4F8DD5C9B756EFCE251784D6AC63E4AB ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
00:08:34.0487 6252 usbohci - ok
00:08:34.0508 6252 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
00:08:34.0567 6252 usbprint - ok
00:08:34.0611 6252 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
00:08:34.0665 6252 usbscan - ok
00:08:34.0687 6252 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:08:34.0745 6252 USBSTOR - ok
00:08:34.0791 6252 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
00:08:34.0838 6252 usbuhci - ok
00:08:34.0869 6252 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
00:08:34.0926 6252 UxSms - ok
00:08:35.0026 6252 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
00:08:35.0104 6252 vds - ok
00:08:35.0129 6252 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
00:08:35.0199 6252 vga - ok
00:08:35.0246 6252 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
00:08:35.0365 6252 VgaSave - ok
00:08:35.0391 6252 [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp C:\Windows\system32\drivers\viaagp.sys
00:08:35.0475 6252 viaagp - ok
00:08:35.0494 6252 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
00:08:35.0607 6252 ViaC7 - ok
00:08:35.0634 6252 [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide C:\Windows\system32\drivers\viaide.sys
00:08:35.0708 6252 viaide - ok
00:08:35.0774 6252 VideoAcceleratorService - ok
00:08:35.0810 6252 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
00:08:35.0917 6252 volmgr - ok
00:08:35.0943 6252 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
00:08:36.0034 6252 volmgrx - ok
00:08:36.0087 6252 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
00:08:36.0194 6252 volsnap - ok
00:08:36.0333 6252 [ 6983D0BCAC64C2D7460C2125F804F118 ] Vsdatant C:\Windows\system32\DRIVERS\vsdatant.sys
00:08:36.0489 6252 Vsdatant - ok
00:08:36.0493 6252 vsdatant7 - ok
00:08:36.0530 6252 vsmon - ok
00:08:36.0556 6252 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
00:08:36.0607 6252 vsmraid - ok
00:08:36.0696 6252 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
00:08:36.0853 6252 VSS - ok
00:08:36.0926 6252 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
00:08:36.0997 6252 W32Time - ok
00:08:37.0039 6252 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
00:08:37.0133 6252 WacomPen - ok
00:08:37.0162 6252 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
00:08:37.0243 6252 Wanarp - ok
00:08:37.0247 6252 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
00:08:37.0273 6252 Wanarpv6 - ok
00:08:37.0328 6252 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
00:08:37.0396 6252 wcncsvc - ok
00:08:37.0428 6252 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:08:37.0509 6252 WcsPlugInService - ok
00:08:37.0542 6252 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
00:08:37.0590 6252 Wd - ok
00:08:37.0679 6252 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
00:08:37.0720 6252 Wdf01000 - ok
00:08:37.0788 6252 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
00:08:37.0846 6252 WdiServiceHost - ok
00:08:37.0850 6252 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
00:08:37.0883 6252 WdiSystemHost - ok
00:08:37.0932 6252 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
00:08:37.0988 6252 WebClient - ok
00:08:38.0015 6252 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
00:08:38.0073 6252 Wecsvc - ok
00:08:38.0107 6252 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
00:08:38.0183 6252 wercplsupport - ok
00:08:38.0216 6252 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
00:08:38.0258 6252 WerSvc - ok
00:08:38.0372 6252 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
00:08:38.0471 6252 WinDefend - ok
00:08:38.0478 6252 WinHttpAutoProxySvc - ok
00:08:38.0570 6252 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
00:08:38.0605 6252 Winmgmt - ok
00:08:38.0697 6252 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
00:08:38.0829 6252 WinRM - ok
00:08:38.0886 6252 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
00:08:39.0000 6252 Wlansvc - ok
00:08:39.0028 6252 [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
00:08:39.0104 6252 WmiAcpi - ok
00:08:39.0143 6252 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
00:08:39.0206 6252 wmiApSrv - ok
00:08:39.0453 6252 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
00:08:39.0690 6252 WMPNetworkSvc - ok
00:08:39.0717 6252 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
00:08:39.0999 6252 WPCSvc - ok
00:08:40.0040 6252 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
00:08:40.0253 6252 WPDBusEnum - ok
00:08:40.0275 6252 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
00:08:40.0359 6252 WpdUsb - ok
00:08:40.0444 6252 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
00:08:40.0682 6252 WPFFontCache_v0400 - ok
00:08:40.0716 6252 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
00:08:40.0820 6252 ws2ifsl - ok
00:08:40.0851 6252 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
00:08:40.0913 6252 wscsvc - ok
00:08:40.0932 6252 WSearch - ok
00:08:41.0002 6252 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
00:08:41.0191 6252 wuauserv - ok
00:08:41.0219 6252 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
00:08:41.0274 6252 WUDFRd - ok
00:08:41.0307 6252 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
00:08:41.0395 6252 wudfsvc - ok
00:08:41.0399 6252 ================ Scan global ===============================
00:08:41.0449 6252 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
00:08:41.0484 6252 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
00:08:41.0504 6252 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
00:08:41.0598 6252 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
00:08:41.0601 6252 [Global] - ok
00:08:41.0602 6252 ================ Scan MBR ==================================
00:08:41.0606 6252 [ F2A390AA8C95E2F06764E30D505E75D3 ] \Device\Harddisk0\DR0
00:08:41.0802 6252 \Device\Harddisk0\DR0 - ok
00:08:41.0802 6252 ================ Scan VBR ==================================
00:08:41.0805 6252 [ 2631976D553FA2F645260CCF41AFC0B7 ] \Device\Harddisk0\DR0\Partition1
00:08:41.0806 6252 \Device\Harddisk0\DR0\Partition1 - ok
00:08:41.0831 6252 [ 75B7857F4E46083952ECDC3430CB9C06 ] \Device\Harddisk0\DR0\Partition2
00:08:41.0832 6252 \Device\Harddisk0\DR0\Partition2 - ok
00:08:41.0833 6252 ============================================================
00:08:41.0833 6252 Scan finished
00:08:41.0833 6252 ============================================================
00:08:41.0842 4672 Detected object count: 4
00:08:41.0842 4672 Actual detected object count: 4
00:09:06.0638 4672 BCMIDI ( UnsignedFile.Multi.Generic ) - skipped by user
00:09:06.0638 4672 BCMIDI ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:09:06.0639 4672 BVRPMPR5 ( UnsignedFile.Multi.Generic ) - skipped by user
00:09:06.0639 4672 BVRPMPR5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:09:06.0641 4672 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
00:09:06.0641 4672 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:09:06.0641 4672 LicCtrlService ( UnsignedFile.Multi.Generic ) - skipped by user
00:09:06.0641 4672 LicCtrlService ( UnsignedFile.Multi.Generic ) - User select action: Skip

Regards
Mark
m2thef2thec
Regular Member
 
Posts: 21
Joined: October 13th, 2011, 11:21 am

Re: Strange links appearing on web pages

Unread postby Cypher » October 11th, 2012, 10:46 am

Hi Mark,
A collogue has suggested that the problem you are having, could be caused by something called text-enhance
You must have agreed to install this Adware when installing other software.
Do the following then let me know if it solves the problem.

  • Right-click OTL.exe and select " Run as administrator " to run it.
  • Copy and Paste the following code into the Image textbox. Do not include the word Code
    Code: Select all
    :processes
    killallprocesses
    
    :files
    C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgbbadfnppehacgnbbpjjbajahlhhkem\1.0_0\
    C:\Users\Mark\AppData\Roaming\Mozilla\Firefox\Profiles\i0zxhjrq.default\extensions\5045d8f65ca4e@5045d8f65ca87.info
    ipconfig /flushdns /c
    
    :commands
    [REBOOT]
    
    
  • Then click the Run Fix button at the top.
  • Click Image.
  • OTL may ask to reboot the machine. Please do so if asked.
  • The report should appear in Notepad after the reboot.Copy and Paste that report in your next reply.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Re: Strange links appearing on web pages

Unread postby m2thef2thec » October 11th, 2012, 9:10 pm

Hi Cypher

I clicked the link to Text Enhance and recognised the domain immediately. I bought a program from them a couple of years ago. I don't remember agreeing to the Text Enhance add-on and I don't understand why it's only activated itself just recently, and only on Chrome. Anyway, your fix has worked, and the links have now disappeared.

Here is the OTL log:

========== PROCESSES ==========
All processes killed
========== FILES ==========
C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgbbadfnppehacgnbbpjjbajahlhhkem\1.0_0 folder moved successfully.
C:\Users\Mark\AppData\Roaming\Mozilla\Firefox\Profiles\i0zxhjrq.default\extensions\5045d8f65ca4e@5045d8f65ca87.info\content folder moved successfully.
C:\Users\Mark\AppData\Roaming\Mozilla\Firefox\Profiles\i0zxhjrq.default\extensions\5045d8f65ca4e@5045d8f65ca87.info folder moved successfully.
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Mark\Desktop\cmd.bat deleted successfully.
C:\Users\Mark\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

OTL by OldTimer - Version 3.2.69.0 log created on 10122012_105721

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Many, many thanks for your help with this problem. My machine appears to be running more smoothly, and more quickly.

I have used your service in the past and have recommended it to others. I will continue to do so.

Best Regards
Mark
m2thef2thec
Regular Member
 
Posts: 21
Joined: October 13th, 2011, 11:21 am

Re: Strange links appearing on web pages

Unread postby Cypher » October 12th, 2012, 5:34 am

Hi Mark,
I clicked the link to Text Enhance and recognised the domain immediately. I bought a program from them a couple of years ago. I don't remember agreeing to the Text Enhance add-on and I don't understand why it's only activated itself just recently.

I can't explain that myself, but it was obviously the source of the problem.
Check the extensions to make sure the Codec-v extension is gone.
http://support.google.com/chrome/bin/an ... wer=187443

If still present remove it or text-enhance could be installed again.
Many, many thanks for your help with this problem. My machine appears to be running more smoothly, and more quickly.

You're most welcome glad we could hep.

Your latest set of logs appear to be clean!
This is my general post for when your logs show no more signs of malware.

You can now delete any tools/logs we used if they remain on your Desktop.

Remember to update your Antivirus programs and other security products regularly to avoid new threats that could infect your system.
You can use one of these sites to check if any updates are needed for your pc.
Secunia Software Inspector
F-secure Health Check

Microsoft Windows Update
Microsoft releases patches for Windows and Office products regularly to patch up Windows and Office products loopholes and fix any bugs found. Install the updates immediately if they are found.
To update Windows
Go to Start > All Programs > Windows Update > Check for updates.
To update Office
Open up any Office program.
Go to Help > Check for Updates

I would be grateful if you could reply to this post so that I know you have read it and, if you've no other questions, the thread can be closed.

Safe surfing!
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Re: Strange links appearing on web pages

Unread postby m2thef2thec » October 13th, 2012, 8:46 am

Thanks Cypher

I have removed codec-v from my Chrome extensions.

All is now well and this thread can be closed.

Thanks once again.
m2thef2thec
Regular Member
 
Posts: 21
Joined: October 13th, 2011, 11:21 am

Re: Strange links appearing on web pages

Unread postby Cypher » October 13th, 2012, 10:36 am

Hi Mark,
Thanks once again.

My pleasure :)

As your problems appear to have been resolved, this topic is now closed.

We are pleased we could help you resolve your computer's malware issues.

If you would like to make a comment or leave a compliment regarding the help you have received, please see Feedback for Our Helpers - Say "Thanks" Here.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns
Advertisement
Register to Remove

Previous

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 66 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware