| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Entfernung von w3i.Iq5.fraudWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
02.08.2012, 14:49
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Entfernung von w3i.Iq5.fraud Wiederhol den Fix bitte im abgesicherten Modus
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
02.08.2012, 18:35
| #17 |
 | Entfernung von w3i.Iq5.fraud Hallo cosinus
__________________Gut, ich hatte nun den fix im abgesicherten Modus wiederholt, mit folgendem Ergebnis Code:
ATTFilter All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked not found.
Registry value HKEY_USERS\S-1-5-21-653325202-4118765903-1421518551-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
Registry value HKEY_USERS\S-1-5-21-653325202-4118765903-1421518551-1000\Software\Microsoft\Windows\CurrentVersion\Run\\SpybotSD TeaTimer not found.
File C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe not found.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin not found.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ConsentPromptBehaviorAdmin not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ConsentPromptBehaviorUser not found.
Registry value HKEY_USERS\S-1-5-21-653325202-4118765903-1421518551-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: $Recycle.Bin
User: All Users
User: CHRISTOPH
->Temp folder emptied: 8452 bytes
->Temporary Internet Files folder emptied: 172056 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 118866549 bytes
->Flash cache emptied: 635 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
User: TEMP
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 608 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 129204 bytes
Total Files Cleaned = 114,00 mb
[EMPTYFLASH]
User: $Recycle.Bin
User: All Users
User: CHRISTOPH
->Flash cache emptied: 0 bytes
User: Default
User: Default User
User: Public
User: TEMP
Total Flash Files Cleaned = 0,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.55.0 log created on 08022012_192237
Files\Folders moved on Reboot...
C:\Users\CHRISTOPH\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
PendingFileRenameOperations files...
File C:\Users\CHRISTOPH\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found!
Registry entries deleted on Reboot...
der sich auch auskennt. Jetzt alles einigermaßen OK ? Christoph |
|
03.08.2012, 15:55
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Entfernung von w3i.Iq5.fraud Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html
__________________Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ |
|
03.08.2012, 18:21
| #19 |
| | Entfernung von w3i.Iq5.fraud Hallo cosinus Das Tool hatte ich heruntergeladen, die Parmeter geändert, und bei den beiden Funden auf "skip" gegangen. Hier das log Code:
ATTFilter 19:09:28.0775 1904 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
19:09:28.0908 1904 ============================================================
19:09:28.0908 1904 Current date / time: 2012/08/03 19:09:28.0908
19:09:28.0908 1904 SystemInfo:
19:09:28.0908 1904
19:09:28.0908 1904 OS Version: 6.1.7600 ServicePack: 0.0
19:09:28.0908 1904 Product type: Workstation
19:09:28.0908 1904 ComputerName: CHRISTOPH
19:09:28.0908 1904 UserName: CHRISTOPH
19:09:28.0908 1904 Windows directory: C:\Windows
19:09:28.0908 1904 System windows directory: C:\Windows
19:09:28.0908 1904 Running under WOW64
19:09:28.0908 1904 Processor architecture: Intel x64
19:09:28.0908 1904 Number of processors: 8
19:09:28.0908 1904 Page size: 0x1000
19:09:28.0908 1904 Boot type: Normal boot
19:09:28.0908 1904 ============================================================
19:09:29.0919 1904 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:09:29.0927 1904 ============================================================
19:09:29.0927 1904 \Device\Harddisk0\DR0:
19:09:29.0928 1904 MBR partitions:
19:09:29.0928 1904 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
19:09:29.0928 1904 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x169FFD4C
19:09:29.0959 1904 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x22B61000, BlocksNum 0x17823800
19:09:29.0959 1904 ============================================================
19:09:30.0003 1904 C: <-> \Device\Harddisk0\DR0\Partition1
19:09:30.0026 1904 G: <-> \Device\Harddisk0\DR0\Partition2
19:09:30.0026 1904 ============================================================
19:09:30.0026 1904 Initialize success
19:09:30.0026 1904 ============================================================
19:13:14.0378 4900 ============================================================
19:13:14.0378 4900 Scan started
19:13:14.0378 4900 Mode: Manual; SigCheck; TDLFS;
19:13:14.0378 4900 ============================================================
19:13:15.0158 4900 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
19:13:15.0252 4900 1394ohci - ok
19:13:15.0283 4900 Acceler (c49c56b35bfc6cda8d1fdcad2885568f) C:\Windows\system32\DRIVERS\Acceler.sys
19:13:15.0299 4900 Acceler - ok
19:13:15.0346 4900 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
19:13:15.0377 4900 ACPI - ok
19:13:15.0377 4900 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
19:13:15.0470 4900 AcpiPmi - ok
19:13:15.0548 4900 AdobeActiveFileMonitor4.0 (2486c8e3f14496341e90cf2ab8bc82ed) C:\Program Files (x86)\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
19:13:15.0580 4900 AdobeActiveFileMonitor4.0 ( UnsignedFile.Multi.Generic ) - warning
19:13:15.0580 4900 AdobeActiveFileMonitor4.0 - detected UnsignedFile.Multi.Generic (1)
19:13:15.0689 4900 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:13:15.0704 4900 AdobeARMservice - ok
19:13:15.0845 4900 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:13:15.0876 4900 AdobeFlashPlayerUpdateSvc - ok
19:13:15.0938 4900 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
19:13:15.0985 4900 adp94xx - ok
19:13:16.0032 4900 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
19:13:16.0079 4900 adpahci - ok
19:13:16.0094 4900 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
19:13:16.0110 4900 adpu320 - ok
19:13:16.0141 4900 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
19:13:16.0282 4900 AeLookupSvc - ok
19:13:16.0375 4900 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe
19:13:16.0438 4900 AESTFilters - ok
19:13:16.0500 4900 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
19:13:16.0578 4900 AFD - ok
19:13:16.0609 4900 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
19:13:16.0640 4900 agp440 - ok
19:13:16.0656 4900 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
19:13:16.0703 4900 ALG - ok
19:13:16.0734 4900 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
19:13:16.0750 4900 aliide - ok
19:13:16.0812 4900 AMD External Events Utility (be778d82b983ba8f8c700c007a04326f) C:\Windows\system32\atiesrxx.exe
19:13:16.0874 4900 AMD External Events Utility - ok
19:13:16.0890 4900 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
19:13:16.0921 4900 amdide - ok
19:13:16.0952 4900 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
19:13:16.0999 4900 AmdK8 - ok
19:13:17.0015 4900 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
19:13:17.0062 4900 AmdPPM - ok
19:13:17.0108 4900 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys
19:13:17.0140 4900 amdsata - ok
19:13:17.0155 4900 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
19:13:17.0202 4900 amdsbs - ok
19:13:17.0218 4900 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys
19:13:17.0218 4900 amdxata - ok
19:13:17.0342 4900 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
19:13:17.0358 4900 AntiVirSchedulerService - ok
19:13:17.0420 4900 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
19:13:17.0436 4900 AntiVirService - ok
19:13:17.0467 4900 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
19:13:17.0561 4900 AppID - ok
19:13:17.0592 4900 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
19:13:17.0686 4900 AppIDSvc - ok
19:13:17.0701 4900 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
19:13:17.0779 4900 Appinfo - ok
19:13:17.0810 4900 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
19:13:17.0842 4900 arc - ok
19:13:17.0873 4900 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
19:13:17.0904 4900 arcsas - ok
19:13:17.0935 4900 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:13:17.0998 4900 AsyncMac - ok
19:13:18.0013 4900 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
19:13:18.0029 4900 atapi - ok
19:13:18.0060 4900 AtiHdmiService (3b9014fb7ce9e20fd726321c7db7d8b0) C:\Windows\system32\drivers\AtiHdmi.sys
19:13:18.0169 4900 AtiHdmiService - ok
19:13:18.0528 4900 atikmdag (74813bcd647b441dc9c9c0db2833781d) C:\Windows\system32\DRIVERS\atikmdag.sys
19:13:18.0637 4900 atikmdag - ok
19:13:18.0809 4900 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
19:13:18.0871 4900 AudioEndpointBuilder - ok
19:13:18.0871 4900 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
19:13:18.0902 4900 AudioSrv - ok
19:13:18.0996 4900 avgntflt (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
19:13:19.0105 4900 avgntflt - ok
19:13:19.0136 4900 avipbb (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
19:13:19.0246 4900 avipbb - ok
19:13:19.0277 4900 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
19:13:19.0386 4900 avkmgr - ok
19:13:19.0417 4900 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
19:13:19.0480 4900 AxInstSV - ok
19:13:19.0558 4900 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
19:13:19.0636 4900 b06bdrv - ok
19:13:19.0667 4900 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:13:19.0729 4900 b57nd60a - ok
19:13:19.0823 4900 BBSvc (01a24b415926bb5f772dbe12459d97de) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
19:13:19.0838 4900 BBSvc - ok
19:13:19.0885 4900 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
19:13:19.0916 4900 BBUpdate - ok
19:13:19.0948 4900 BCM42RLY (e001dd475a7c27ebe5a0db45c11bad71) C:\Windows\system32\drivers\BCM42RLY.sys
19:13:20.0026 4900 BCM42RLY - ok
19:13:20.0228 4900 BCM43XX (f4cd5f52850bf2c978de178f256ba372) C:\Windows\system32\DRIVERS\bcmwl664.sys
19:13:20.0338 4900 BCM43XX - ok
19:13:20.0478 4900 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
19:13:20.0509 4900 BDESVC - ok
19:13:20.0572 4900 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:13:20.0634 4900 Beep - ok
19:13:20.0712 4900 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
19:13:20.0806 4900 BFE - ok
19:13:20.0884 4900 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
19:13:20.0946 4900 BITS - ok
19:13:20.0977 4900 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
19:13:21.0024 4900 blbdrive - ok
19:13:21.0055 4900 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
19:13:21.0118 4900 bowser - ok
19:13:21.0149 4900 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:13:21.0196 4900 BrFiltLo - ok
19:13:21.0211 4900 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:13:21.0242 4900 BrFiltUp - ok
19:13:21.0289 4900 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
19:13:21.0352 4900 Browser - ok
19:13:21.0398 4900 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:13:21.0445 4900 Brserid - ok
19:13:21.0461 4900 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:13:21.0508 4900 BrSerWdm - ok
19:13:21.0523 4900 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:13:21.0570 4900 BrUsbMdm - ok
19:13:21.0570 4900 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:13:21.0586 4900 BrUsbSer - ok
19:13:21.0617 4900 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
19:13:21.0632 4900 BTHMODEM - ok
19:13:21.0648 4900 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
19:13:21.0695 4900 bthserv - ok
19:13:21.0726 4900 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:13:21.0757 4900 cdfs - ok
19:13:21.0788 4900 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
19:13:21.0835 4900 cdrom - ok
19:13:21.0866 4900 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
19:13:21.0944 4900 CertPropSvc - ok
19:13:21.0976 4900 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
19:13:22.0007 4900 circlass - ok
19:13:22.0038 4900 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:13:22.0085 4900 CLFS - ok
19:13:22.0147 4900 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:13:22.0178 4900 clr_optimization_v2.0.50727_32 - ok
19:13:22.0210 4900 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:13:22.0241 4900 clr_optimization_v2.0.50727_64 - ok
19:13:22.0272 4900 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
19:13:22.0319 4900 CmBatt - ok
19:13:22.0334 4900 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
19:13:22.0366 4900 cmdide - ok
19:13:22.0412 4900 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
19:13:22.0475 4900 CNG - ok
19:13:22.0506 4900 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
19:13:22.0522 4900 Compbatt - ok
19:13:22.0568 4900 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
19:13:22.0615 4900 CompositeBus - ok
19:13:22.0646 4900 COMSysApp - ok
19:13:22.0646 4900 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
19:13:22.0678 4900 crcdisk - ok
19:13:22.0724 4900 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
19:13:22.0771 4900 CryptSvc - ok
19:13:22.0802 4900 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
19:13:22.0849 4900 CtClsFlt - ok
19:13:22.0912 4900 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
19:13:22.0974 4900 DcomLaunch - ok
19:13:23.0005 4900 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
19:13:23.0083 4900 defragsvc - ok
19:13:23.0130 4900 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
19:13:23.0208 4900 DfsC - ok
19:13:23.0239 4900 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
19:13:23.0348 4900 Dhcp - ok
19:13:23.0364 4900 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:13:23.0442 4900 discache - ok
19:13:23.0489 4900 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
19:13:23.0520 4900 Disk - ok
19:13:23.0567 4900 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
19:13:23.0629 4900 Dnscache - ok
19:13:23.0676 4900 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
19:13:23.0723 4900 dot3svc - ok
19:13:23.0754 4900 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
19:13:23.0801 4900 DPS - ok
19:13:23.0848 4900 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:13:23.0879 4900 drmkaud - ok
19:13:23.0972 4900 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
19:13:24.0019 4900 DXGKrnl - ok
19:13:24.0035 4900 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
19:13:24.0082 4900 EapHost - ok
19:13:24.0316 4900 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
19:13:24.0362 4900 ebdrv - ok
19:13:24.0487 4900 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
19:13:24.0550 4900 EFS - ok
19:13:24.0659 4900 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
19:13:24.0737 4900 ehRecvr - ok
19:13:24.0768 4900 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
19:13:24.0830 4900 ehSched - ok
19:13:24.0924 4900 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
19:13:24.0971 4900 elxstor - ok
19:13:24.0971 4900 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
19:13:25.0018 4900 ErrDev - ok
19:13:25.0096 4900 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
19:13:25.0158 4900 EventSystem - ok
19:13:25.0205 4900 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:13:25.0283 4900 exfat - ok
19:13:25.0314 4900 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:13:25.0361 4900 fastfat - ok
19:13:25.0439 4900 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
19:13:25.0501 4900 Fax - ok
19:13:25.0532 4900 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
19:13:25.0564 4900 fdc - ok
19:13:25.0579 4900 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
19:13:25.0657 4900 fdPHost - ok
19:13:25.0688 4900 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
19:13:25.0751 4900 FDResPub - ok
19:13:25.0782 4900 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:13:25.0798 4900 FileInfo - ok
19:13:25.0798 4900 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:13:25.0844 4900 Filetrace - ok
19:13:25.0860 4900 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
19:13:25.0891 4900 flpydisk - ok
19:13:25.0938 4900 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
19:13:25.0985 4900 FltMgr - ok
19:13:26.0078 4900 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
19:13:26.0094 4900 FontCache - ok
19:13:26.0141 4900 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:13:26.0156 4900 FontCache3.0.0.0 - ok
19:13:26.0203 4900 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:13:26.0234 4900 FsDepends - ok
19:13:26.0281 4900 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
19:13:26.0312 4900 Fs_Rec - ok
19:13:26.0375 4900 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
19:13:26.0422 4900 fvevol - ok
19:13:26.0437 4900 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
19:13:26.0468 4900 gagp30kx - ok
19:13:26.0531 4900 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
19:13:26.0578 4900 gpsvc - ok
19:13:26.0687 4900 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:13:26.0702 4900 gupdate - ok
19:13:26.0734 4900 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:13:26.0765 4900 gupdatem - ok
19:13:26.0780 4900 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:13:26.0843 4900 hcw85cir - ok
19:13:26.0874 4900 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:13:26.0921 4900 HDAudBus - ok
19:13:26.0952 4900 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
19:13:26.0983 4900 HidBatt - ok
19:13:27.0014 4900 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
19:13:27.0046 4900 HidBth - ok
19:13:27.0077 4900 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
19:13:27.0139 4900 HidIr - ok
19:13:27.0155 4900 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
19:13:27.0233 4900 hidserv - ok
19:13:27.0264 4900 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
19:13:27.0311 4900 HidUsb - ok
19:13:27.0342 4900 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
19:13:27.0404 4900 hkmsvc - ok
19:13:27.0436 4900 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
19:13:27.0498 4900 HomeGroupListener - ok
19:13:27.0529 4900 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
19:13:27.0592 4900 HomeGroupProvider - ok
19:13:27.0638 4900 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
19:13:27.0670 4900 HpSAMD - ok
19:13:27.0732 4900 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
19:13:27.0826 4900 HTTP - ok
19:13:27.0841 4900 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
19:13:27.0857 4900 hwpolicy - ok
19:13:27.0888 4900 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
19:13:27.0904 4900 i8042prt - ok
19:13:27.0935 4900 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys
19:13:27.0966 4900 iaStorV - ok
19:13:28.0075 4900 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:13:28.0138 4900 idsvc - ok
19:13:28.0138 4900 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
19:13:28.0153 4900 iirsp - ok
19:13:28.0231 4900 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
19:13:28.0340 4900 IKEEXT - ok
19:13:28.0372 4900 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
19:13:28.0387 4900 intelide - ok
19:13:28.0434 4900 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
19:13:28.0465 4900 intelppm - ok
19:13:28.0496 4900 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
19:13:28.0574 4900 IPBusEnum - ok
19:13:28.0606 4900 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:13:28.0652 4900 IpFilterDriver - ok
19:13:28.0699 4900 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
19:13:28.0793 4900 iphlpsvc - ok
19:13:28.0808 4900 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
19:13:28.0855 4900 IPMIDRV - ok
19:13:28.0886 4900 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:13:28.0949 4900 IPNAT - ok
19:13:28.0964 4900 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:13:28.0996 4900 IRENUM - ok
19:13:29.0011 4900 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
19:13:29.0027 4900 isapnp - ok
19:13:29.0042 4900 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
19:13:29.0089 4900 iScsiPrt - ok
19:13:29.0105 4900 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
19:13:29.0120 4900 kbdclass - ok
19:13:29.0136 4900 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
19:13:29.0183 4900 kbdhid - ok
19:13:29.0214 4900 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
19:13:29.0245 4900 KeyIso - ok
19:13:29.0276 4900 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
19:13:29.0308 4900 KSecDD - ok
19:13:29.0339 4900 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
19:13:29.0354 4900 KSecPkg - ok
19:13:29.0370 4900 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:13:29.0448 4900 ksthunk - ok
19:13:29.0495 4900 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
19:13:29.0542 4900 KtmRm - ok
19:13:29.0573 4900 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
19:13:29.0651 4900 LanmanServer - ok
19:13:29.0682 4900 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
19:13:29.0744 4900 LanmanWorkstation - ok
19:13:29.0791 4900 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:13:29.0854 4900 lltdio - ok
19:13:29.0885 4900 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
19:13:29.0963 4900 lltdsvc - ok
19:13:29.0994 4900 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
19:13:30.0041 4900 lmhosts - ok
19:13:30.0088 4900 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
19:13:30.0103 4900 LSI_FC - ok
19:13:30.0119 4900 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
19:13:30.0134 4900 LSI_SAS - ok
19:13:30.0150 4900 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:13:30.0166 4900 LSI_SAS2 - ok
19:13:30.0181 4900 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:13:30.0197 4900 LSI_SCSI - ok
19:13:30.0212 4900 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:13:30.0275 4900 luafv - ok
19:13:30.0306 4900 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
19:13:30.0337 4900 Mcx2Svc - ok
19:13:30.0353 4900 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
19:13:30.0368 4900 megasas - ok
19:13:30.0400 4900 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
19:13:30.0431 4900 MegaSR - ok
19:13:30.0446 4900 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:13:30.0493 4900 MMCSS - ok
19:13:30.0509 4900 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:13:30.0556 4900 Modem - ok
19:13:30.0587 4900 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:13:30.0602 4900 monitor - ok
19:13:30.0634 4900 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
19:13:30.0680 4900 mouclass - ok
19:13:30.0696 4900 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
19:13:30.0743 4900 mouhid - ok
19:13:30.0774 4900 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
19:13:30.0805 4900 mountmgr - ok
19:13:30.0899 4900 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:13:30.0914 4900 MozillaMaintenance - ok
19:13:30.0946 4900 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
19:13:30.0977 4900 mpio - ok
19:13:31.0008 4900 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:13:31.0070 4900 mpsdrv - ok
19:13:31.0148 4900 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
19:13:31.0211 4900 MpsSvc - ok
19:13:31.0242 4900 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
19:13:31.0289 4900 MRxDAV - ok
19:13:31.0320 4900 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:13:31.0367 4900 mrxsmb - ok
19:13:31.0414 4900 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:13:31.0460 4900 mrxsmb10 - ok
19:13:31.0476 4900 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:13:31.0507 4900 mrxsmb20 - ok
19:13:31.0538 4900 msahci (bccf16d5fb1109162380e3e28dc9e4e5) C:\Windows\system32\DRIVERS\msahci.sys
19:13:31.0570 4900 msahci - ok
19:13:31.0601 4900 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
19:13:31.0648 4900 msdsm - ok
19:13:31.0663 4900 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
19:13:31.0679 4900 MSDTC - ok
19:13:31.0694 4900 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:13:31.0726 4900 Msfs - ok
19:13:31.0741 4900 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:13:31.0819 4900 mshidkmdf - ok
19:13:31.0835 4900 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
19:13:31.0850 4900 msisadrv - ok
19:13:31.0882 4900 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
19:13:31.0928 4900 MSiSCSI - ok
19:13:31.0928 4900 msiserver - ok
19:13:31.0944 4900 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:13:32.0022 4900 MSKSSRV - ok
19:13:32.0038 4900 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:13:32.0084 4900 MSPCLOCK - ok
19:13:32.0100 4900 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:13:32.0147 4900 MSPQM - ok
19:13:32.0178 4900 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
19:13:32.0225 4900 MsRPC - ok
19:13:32.0240 4900 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
19:13:32.0256 4900 mssmbios - ok
19:13:32.0272 4900 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:13:32.0334 4900 MSTEE - ok
19:13:32.0350 4900 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
19:13:32.0381 4900 MTConfig - ok
19:13:32.0412 4900 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:13:32.0443 4900 Mup - ok
19:13:32.0490 4900 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
19:13:32.0568 4900 napagent - ok
19:13:32.0615 4900 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:13:32.0677 4900 NativeWifiP - ok
19:13:32.0755 4900 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
19:13:32.0802 4900 NDIS - ok
19:13:32.0818 4900 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:13:32.0849 4900 NdisCap - ok
19:13:32.0880 4900 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:13:32.0942 4900 NdisTapi - ok
19:13:32.0958 4900 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
19:13:33.0005 4900 Ndisuio - ok
19:13:33.0020 4900 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
19:13:33.0052 4900 NdisWan - ok
19:13:33.0083 4900 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
19:13:33.0161 4900 NDProxy - ok
19:13:33.0176 4900 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:13:33.0223 4900 NetBIOS - ok
19:13:33.0270 4900 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
19:13:33.0348 4900 NetBT - ok
19:13:33.0379 4900 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
19:13:33.0395 4900 Netlogon - ok
19:13:33.0442 4900 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
19:13:33.0520 4900 Netman - ok
19:13:33.0566 4900 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
19:13:33.0613 4900 netprofm - ok
19:13:33.0691 4900 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:13:33.0722 4900 NetTcpPortSharing - ok
19:13:33.0754 4900 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
19:13:33.0785 4900 nfrd960 - ok
19:13:33.0816 4900 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
19:13:33.0894 4900 NlaSvc - ok
19:13:33.0910 4900 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:13:33.0941 4900 Npfs - ok
19:13:33.0941 4900 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
19:13:34.0003 4900 nsi - ok
19:13:34.0034 4900 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:13:34.0081 4900 nsiproxy - ok
19:13:34.0190 4900 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys
19:13:34.0268 4900 Ntfs - ok
19:13:34.0362 4900 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:13:34.0424 4900 Null - ok
19:13:34.0471 4900 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys
19:13:34.0487 4900 nvraid - ok
19:13:34.0534 4900 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys
19:13:34.0565 4900 nvstor - ok
19:13:34.0596 4900 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
19:13:34.0627 4900 nv_agp - ok
19:13:34.0658 4900 O2FLASH (d955d5de998db2476bf0892be3a96c26) C:\Windows\system32\DRIVERS\o2flash.exe
19:13:34.0705 4900 O2FLASH - ok
19:13:34.0721 4900 O2MDGRDR (8c2953537ca19dfaa67d612407e0f33e) C:\Windows\system32\DRIVERS\o2mdgx64.sys
19:13:34.0830 4900 O2MDGRDR - ok
19:13:34.0846 4900 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
19:13:34.0892 4900 ohci1394 - ok
19:13:34.0924 4900 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:13:34.0986 4900 p2pimsvc - ok
19:13:35.0033 4900 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
19:13:35.0080 4900 p2psvc - ok
19:13:35.0095 4900 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
19:13:35.0111 4900 Parport - ok
19:13:35.0142 4900 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
19:13:35.0173 4900 partmgr - ok
19:13:35.0204 4900 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
19:13:35.0267 4900 PcaSvc - ok
19:13:35.0360 4900 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\dell support center\pcdsrvc_x64.pkms
19:13:35.0454 4900 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
19:13:35.0501 4900 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
19:13:35.0532 4900 pci - ok
19:13:35.0532 4900 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
19:13:35.0548 4900 pciide - ok
19:13:35.0579 4900 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
19:13:35.0626 4900 pcmcia - ok
19:13:35.0641 4900 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:13:35.0657 4900 pcw - ok
19:13:35.0704 4900 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:13:35.0797 4900 PEAUTH - ok
19:13:35.0875 4900 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
19:13:35.0906 4900 PerfHost - ok
19:13:36.0031 4900 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
19:13:36.0125 4900 pla - ok
19:13:36.0187 4900 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
19:13:36.0265 4900 PlugPlay - ok
19:13:36.0281 4900 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
19:13:36.0312 4900 PNRPAutoReg - ok
19:13:36.0343 4900 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:13:36.0374 4900 PNRPsvc - ok
19:13:36.0421 4900 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
19:13:36.0499 4900 PolicyAgent - ok
19:13:36.0546 4900 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
19:13:36.0608 4900 Power - ok
19:13:36.0686 4900 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
19:13:36.0764 4900 PptpMiniport - ok
19:13:36.0780 4900 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
19:13:36.0827 4900 Processor - ok
19:13:36.0889 4900 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
19:13:36.0967 4900 ProfSvc - ok
19:13:36.0998 4900 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
19:13:37.0014 4900 ProtectedStorage - ok
19:13:37.0045 4900 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
19:13:37.0108 4900 Psched - ok
19:13:37.0139 4900 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
19:13:37.0217 4900 PxHlpa64 - ok
19:13:37.0342 4900 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
19:13:37.0404 4900 ql2300 - ok
19:13:37.0513 4900 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
19:13:37.0560 4900 ql40xx - ok
19:13:37.0591 4900 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
19:13:37.0654 4900 QWAVE - ok
19:13:37.0669 4900 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:13:37.0716 4900 QWAVEdrv - ok
19:13:37.0747 4900 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:13:37.0794 4900 RasAcd - ok
19:13:37.0841 4900 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:13:37.0888 4900 RasAgileVpn - ok
19:13:37.0919 4900 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
19:13:37.0981 4900 RasAuto - ok
19:13:37.0997 4900 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:13:38.0059 4900 Rasl2tp - ok
19:13:38.0106 4900 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
19:13:38.0184 4900 RasMan - ok
19:13:38.0200 4900 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:13:38.0262 4900 RasPppoe - ok
19:13:38.0293 4900 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:13:38.0356 4900 RasSstp - ok
19:13:38.0387 4900 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
19:13:38.0449 4900 rdbss - ok
19:13:38.0480 4900 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
19:13:38.0496 4900 rdpbus - ok
19:13:38.0512 4900 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:13:38.0543 4900 RDPCDD - ok
19:13:38.0558 4900 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:13:38.0621 4900 RDPENCDD - ok
19:13:38.0636 4900 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:13:38.0668 4900 RDPREFMP - ok
19:13:38.0714 4900 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
19:13:38.0777 4900 RDPWD - ok
19:13:38.0824 4900 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
19:13:38.0870 4900 rdyboost - ok
19:13:38.0886 4900 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
19:13:38.0948 4900 RemoteAccess - ok
19:13:38.0995 4900 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
19:13:39.0073 4900 RemoteRegistry - ok
19:13:39.0089 4900 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
19:13:39.0136 4900 RpcEptMapper - ok
19:13:39.0167 4900 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
19:13:39.0182 4900 RpcLocator - ok
19:13:39.0245 4900 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
19:13:39.0276 4900 RpcSs - ok
19:13:39.0323 4900 RRNetCap (2abd2b3ba2ef0c3ba82284c2a5e28675) C:\Windows\system32\DRIVERS\rrnetcap.sys
19:13:39.0416 4900 RRNetCap - ok
19:13:39.0432 4900 RRNetCapMP (2abd2b3ba2ef0c3ba82284c2a5e28675) C:\Windows\system32\DRIVERS\rrnetcap.sys
19:13:39.0510 4900 RRNetCapMP - ok
19:13:39.0526 4900 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:13:39.0588 4900 rspndr - ok
19:13:39.0635 4900 RTL8167 (b49dc435ae3695bac5623dd94b05732d) C:\Windows\system32\DRIVERS\Rt64win7.sys
19:13:39.0697 4900 RTL8167 - ok
19:13:39.0728 4900 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
19:13:39.0760 4900 SamSs - ok
19:13:39.0775 4900 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
19:13:39.0822 4900 sbp2port - ok
19:13:39.0962 4900 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
19:13:40.0009 4900 SBSDWSCService - ok
19:13:40.0040 4900 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
19:13:40.0087 4900 SCardSvr - ok
19:13:40.0134 4900 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
19:13:40.0196 4900 scfilter - ok
19:13:40.0274 4900 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
19:13:40.0321 4900 Schedule - ok
19:13:40.0337 4900 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
19:13:40.0368 4900 SCPolicySvc - ok
19:13:40.0430 4900 sdbus (2c8d162efaf73abd36d8bcbb6340cae7) C:\Windows\system32\drivers\sdbus.sys
19:13:40.0477 4900 sdbus - ok
19:13:40.0493 4900 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
19:13:40.0555 4900 SDRSVC - ok
19:13:40.0586 4900 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:13:40.0649 4900 secdrv - ok
19:13:40.0664 4900 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
19:13:40.0727 4900 seclogon - ok
19:13:40.0758 4900 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
19:13:40.0820 4900 SENS - ok
19:13:40.0836 4900 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
19:13:40.0883 4900 SensrSvc - ok
19:13:40.0898 4900 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
19:13:40.0914 4900 Serenum - ok
19:13:40.0945 4900 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
19:13:40.0992 4900 Serial - ok
19:13:41.0008 4900 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
19:13:41.0039 4900 sermouse - ok
19:13:41.0070 4900 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
19:13:41.0117 4900 SessionEnv - ok
19:13:41.0148 4900 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
19:13:41.0195 4900 sffdisk - ok
19:13:41.0210 4900 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
19:13:41.0257 4900 sffp_mmc - ok
19:13:41.0273 4900 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
19:13:41.0288 4900 sffp_sd - ok
19:13:41.0320 4900 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
19:13:41.0351 4900 sfloppy - ok
19:13:41.0398 4900 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
19:13:41.0507 4900 SharedAccess - ok
19:13:41.0554 4900 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
19:13:41.0616 4900 ShellHWDetection - ok
19:13:41.0647 4900 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:13:41.0663 4900 SiSRaid2 - ok
19:13:41.0678 4900 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
19:13:41.0694 4900 SiSRaid4 - ok
19:13:41.0725 4900 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:13:41.0803 4900 Smb - ok
19:13:41.0834 4900 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
19:13:41.0850 4900 SNMPTRAP - ok
19:13:41.0881 4900 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:13:41.0881 4900 spldr - ok
19:13:41.0944 4900 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
19:13:42.0022 4900 Spooler - ok
19:13:42.0256 4900 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
19:13:42.0318 4900 sppsvc - ok
19:13:42.0427 4900 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
19:13:42.0490 4900 sppuinotify - ok
19:13:42.0583 4900 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
19:13:42.0646 4900 srv - ok
19:13:42.0692 4900 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
19:13:42.0755 4900 srv2 - ok
19:13:42.0786 4900 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
19:13:42.0833 4900 srvnet - ok
19:13:42.0864 4900 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
19:13:42.0942 4900 SSDPSRV - ok
19:13:42.0973 4900 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
19:13:43.0020 4900 SstpSvc - ok
19:13:43.0114 4900 STacSV (da7702025dfd169b909c4da3126762cc) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe
19:13:43.0160 4900 STacSV - ok
19:13:43.0176 4900 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
19:13:43.0207 4900 stexstor - ok
19:13:43.0270 4900 STHDA (caf5a9708671b14b9670260735b22c4e) C:\Windows\system32\DRIVERS\stwrt64.sys
19:13:43.0332 4900 STHDA - ok
19:13:43.0379 4900 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
19:13:43.0410 4900 stisvc - ok
19:13:43.0426 4900 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
19:13:43.0441 4900 swenum - ok
19:13:43.0566 4900 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
19:13:43.0644 4900 swprv - ok
19:13:43.0675 4900 SynTP (29ad5ff846e8939c10112f34cb2e334a) C:\Windows\system32\DRIVERS\SynTP.sys
19:13:43.0769 4900 SynTP - ok
19:13:43.0894 4900 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
19:13:43.0940 4900 SysMain - ok
19:13:44.0034 4900 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
19:13:44.0096 4900 TabletInputService - ok
19:13:44.0128 4900 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
19:13:44.0221 4900 TapiSrv - ok
19:13:44.0268 4900 tbhsd (4430e9b4c60aab672d16e801bad0555e) C:\Windows\system32\drivers\tbhsd.sys
19:13:44.0377 4900 tbhsd - ok
19:13:44.0408 4900 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
19:13:44.0471 4900 TBS - ok
19:13:44.0611 4900 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
19:13:44.0658 4900 Tcpip - ok
19:13:44.0892 4900 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
19:13:44.0939 4900 TCPIP6 - ok
19:13:45.0017 4900 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
19:13:45.0079 4900 tcpipreg - ok
19:13:45.0095 4900 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:13:45.0157 4900 TDPIPE - ok
19:13:45.0188 4900 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
19:13:45.0251 4900 TDTCP - ok
19:13:45.0282 4900 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
19:13:45.0344 4900 tdx - ok
19:13:45.0376 4900 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
19:13:45.0391 4900 TermDD - ok
19:13:45.0438 4900 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
19:13:45.0547 4900 TermService - ok
19:13:45.0563 4900 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
19:13:45.0610 4900 Themes - ok
19:13:45.0625 4900 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:13:45.0672 4900 THREADORDER - ok
19:13:45.0703 4900 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
19:13:45.0750 4900 TrkWks - ok
19:13:45.0781 4900 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
19:13:45.0828 4900 TrustedInstaller - ok
19:13:45.0844 4900 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:13:45.0922 4900 tssecsrv - ok
19:13:45.0968 4900 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
19:13:46.0031 4900 tunnel - ok
19:13:46.0062 4900 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
19:13:46.0062 4900 uagp35 - ok
19:13:46.0109 4900 udfs (31ba4a33afab6a69ea092b18017f737f) C:\Windows\system32\DRIVERS\udfs.sys
19:13:46.0171 4900 udfs - ok
19:13:46.0218 4900 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
19:13:46.0265 4900 UI0Detect - ok
19:13:46.0296 4900 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
19:13:46.0327 4900 uliagpkx - ok
19:13:46.0358 4900 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
19:13:46.0405 4900 umbus - ok
19:13:46.0421 4900 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
19:13:46.0452 4900 UmPass - ok
19:13:46.0499 4900 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
19:13:46.0561 4900 upnphost - ok
19:13:46.0577 4900 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys
19:13:46.0592 4900 usbccgp - ok
19:13:46.0639 4900 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
19:13:46.0686 4900 usbcir - ok
19:13:46.0733 4900 usbehci (cb490987a7f6928a04bb838e3bd8a936) C:\Windows\system32\DRIVERS\usbehci.sys
19:13:46.0764 4900 usbehci - ok
19:13:46.0795 4900 usbhub (18124ef0a881a00ee222d02a3ee30270) C:\Windows\system32\DRIVERS\usbhub.sys
19:13:46.0811 4900 usbhub - ok
19:13:46.0826 4900 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
19:13:46.0826 4900 usbohci - ok
19:13:46.0842 4900 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
19:13:46.0889 4900 usbprint - ok
19:13:46.0920 4900 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:13:46.0936 4900 USBSTOR - ok
19:13:46.0936 4900 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
19:13:46.0982 4900 usbuhci - ok
19:13:47.0060 4900 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
19:13:47.0107 4900 usbvideo - ok
19:13:47.0138 4900 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
19:13:47.0185 4900 UxSms - ok
19:13:47.0232 4900 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
19:13:47.0248 4900 VaultSvc - ok
19:13:47.0263 4900 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
19:13:47.0279 4900 vdrvroot - ok
19:13:47.0310 4900 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
19:13:47.0372 4900 vds - ok
19:13:47.0419 4900 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:13:47.0450 4900 vga - ok
19:13:47.0450 4900 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:13:47.0513 4900 VgaSave - ok
19:13:47.0560 4900 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
19:13:47.0591 4900 vhdmp - ok
19:13:47.0622 4900 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
19:13:47.0653 4900 viaide - ok
19:13:47.0669 4900 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
19:13:47.0700 4900 volmgr - ok
19:13:47.0747 4900 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
19:13:47.0794 4900 volmgrx - ok
19:13:47.0809 4900 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
19:13:47.0840 4900 volsnap - ok
19:13:47.0872 4900 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
19:13:47.0918 4900 vsmraid - ok
19:13:48.0028 4900 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
19:13:48.0074 4900 VSS - ok
19:13:48.0199 4900 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
19:13:48.0246 4900 vwifibus - ok
19:13:48.0277 4900 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
19:13:48.0308 4900 vwififlt - ok
19:13:48.0340 4900 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
19:13:48.0386 4900 W32Time - ok
19:13:48.0386 4900 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
19:13:48.0418 4900 WacomPen - ok
19:13:48.0464 4900 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
19:13:48.0542 4900 WANARP - ok
19:13:48.0542 4900 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
19:13:48.0574 4900 Wanarpv6 - ok
19:13:48.0683 4900 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
19:13:48.0745 4900 wbengine - ok
19:13:48.0854 4900 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
19:13:48.0901 4900 WbioSrvc - ok
19:13:48.0964 4900 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
19:13:49.0026 4900 wcncsvc - ok
19:13:49.0042 4900 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
19:13:49.0057 4900 WcsPlugInService - ok
19:13:49.0088 4900 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
19:13:49.0120 4900 Wd - ok
19:13:49.0182 4900 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:13:49.0229 4900 Wdf01000 - ok
19:13:49.0260 4900 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:13:49.0322 4900 WdiServiceHost - ok
19:13:49.0322 4900 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:13:49.0338 4900 WdiSystemHost - ok
19:13:49.0385 4900 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
19:13:49.0432 4900 WebClient - ok
19:13:49.0447 4900 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
19:13:49.0556 4900 Wecsvc - ok
19:13:49.0588 4900 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
19:13:49.0666 4900 wercplsupport - ok
19:13:49.0681 4900 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
19:13:49.0775 4900 WerSvc - ok
19:13:49.0837 4900 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:13:49.0884 4900 WfpLwf - ok
19:13:49.0900 4900 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
19:13:49.0915 4900 WimFltr - ok
19:13:49.0931 4900 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:13:49.0946 4900 WIMMount - ok
19:13:49.0962 4900 WinDefend - ok
19:13:49.0978 4900 WinHttpAutoProxySvc - ok
19:13:50.0024 4900 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
19:13:50.0071 4900 Winmgmt - ok
19:13:50.0212 4900 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
19:13:50.0274 4900 WinRM - ok
19:13:50.0399 4900 WinUsb (4d52c872018af7e18d078978dcc3f6f2) C:\Windows\system32\DRIVERS\WinUsb.sys
19:13:50.0461 4900 WinUsb - ok
19:13:50.0539 4900 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
19:13:50.0570 4900 Wlansvc - ok
19:13:50.0617 4900 wltrysvc (13b0a570e1ae451c92da550085d72cf3) C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
19:13:50.0633 4900 wltrysvc ( UnsignedFile.Multi.Generic ) - warning
19:13:50.0633 4900 wltrysvc - detected UnsignedFile.Multi.Generic (1)
19:13:50.0664 4900 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:13:50.0695 4900 WmiAcpi - ok
19:13:50.0758 4900 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
19:13:50.0804 4900 wmiApSrv - ok
19:13:50.0851 4900 WMPNetworkSvc - ok
19:13:50.0867 4900 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
19:13:50.0914 4900 WPCSvc - ok
19:13:50.0929 4900 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
19:13:50.0976 4900 WPDBusEnum - ok
19:13:50.0992 4900 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:13:51.0023 4900 ws2ifsl - ok
19:13:51.0070 4900 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
19:13:51.0132 4900 wscsvc - ok
19:13:51.0132 4900 WSearch - ok
19:13:51.0319 4900 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
19:13:51.0350 4900 wuauserv - ok
19:13:51.0460 4900 WudfPf (c63907207b837a5c05cf6d1606aa0008) C:\Windows\system32\drivers\WudfPf.sys
19:13:51.0506 4900 WudfPf - ok
19:13:51.0553 4900 WUDFRd (d885a873d733020f8b9b9ff4b1666158) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:13:51.0584 4900 WUDFRd - ok
19:13:51.0600 4900 wudfsvc (27b9bee5aac00139e3a3af5d6227a0dc) C:\Windows\System32\WUDFSvc.dll
19:13:51.0616 4900 wudfsvc - ok
19:13:51.0647 4900 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
19:13:51.0709 4900 WwanSvc - ok
19:13:51.0740 4900 MBR (0x1B8) (271ddc6b28ba387226da9e1b70a03f37) \Device\Harddisk0\DR0
19:13:52.0302 4900 \Device\Harddisk0\DR0 - ok
19:13:52.0427 4900 Boot (0x1200) (ec0dc8883fb5717cd37d75dac1504402) \Device\Harddisk0\DR0\Partition0
19:13:52.0427 4900 \Device\Harddisk0\DR0\Partition0 - ok
19:13:52.0442 4900 Boot (0x1200) (50f56a8b60c0572209add532d63fde5f) \Device\Harddisk0\DR0\Partition1
19:13:52.0442 4900 \Device\Harddisk0\DR0\Partition1 - ok
19:13:52.0474 4900 Boot (0x1200) (1c8f21f628091ec348ce6f1ac6848de7) \Device\Harddisk0\DR0\Partition2
19:13:52.0474 4900 \Device\Harddisk0\DR0\Partition2 - ok
19:13:52.0474 4900 ============================================================
19:13:52.0474 4900 Scan finished
19:13:52.0474 4900 ============================================================
19:13:52.0489 1188 Detected object count: 2
19:13:52.0489 1188 Actual detected object count: 2
19:14:32.0207 1188 AdobeActiveFileMonitor4.0 ( UnsignedFile.Multi.Generic ) - skipped by user
19:14:32.0207 1188 AdobeActiveFileMonitor4.0 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:14:32.0207 1188 wltrysvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:14:32.0207 1188 wltrysvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:15:00.0864 0632 Deinitialize success
Christoph |
|
03.08.2012, 20:51
| #20 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Entfernung von w3i.Iq5.fraud Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.08.2012, 09:40
| #21 |
| | Entfernung von w3i.Iq5.fraud Hallo cosinus Bin wie besschreiben vorgegangen. Allerdings hatte ich dabei erwischt, während des scans die Maus zu benutzen, somit startete ich nochmals von vorne. Nach wie vor kann ich avira nicht komplett abschalten, soviel ich weiß, müsste dies über das trsy icon möglich sein, welches bei mir nicht vorhanden ist, und ich konnte es heute durch einen Produktupdateversuch nicht hinzufügen. Sollte aus dem log ersichtlich sein, dass durch avira wesentliche Behinderungen entstanden sind, bitte mitteilen. Dann würde ich offline gehen und avira komplett deinstallieren und neu installieren. Ergebnis: Combofix Logfile: Code:
ATTFilter ComboFix 12-08-04.02 - CHRISTOPH 04.08.2012 10:00:39.2.8 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.49.1031.18.4085.2597 [GMT 2:00]
ausgeführt von:: c:\users\CHRISTOPH\Downloads\ComboFix.exe
AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\PCDr\5907\Downloads\140239b3-d59a-46fa-b856-17682a46cb44.dll
c:\programdata\PCDr\5907\Downloads\246b20c1-8ea9-4148-a34e-d03c8a1d5a76.dll
c:\programdata\PCDr\5907\Downloads\27e5bc9a-105f-4d7f-8352-e6ef1c8933dd.dll
c:\programdata\PCDr\5907\Downloads\a2192d8a-3d73-4ff7-be9b-02134f41db63.dll
c:\programdata\PCDr\5907\Downloads\adb45b82-004f-4eed-bd54-d60d7eda1ff5.dll
c:\programdata\PCDr\5907\Downloads\c2690c4c-81f4-4565-a861-643c7af1fa90.dll
c:\programdata\PCDr\5907\Downloads\e86f11dd-8b83-43cc-899e-f935ce0a1ea0.dll
c:\programdata\PCDr\5907\Downloads\f0fc9c9c-10ba-435b-8365-dadb523644ff.dll
c:\users\CHRISTOPH\4.0
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-07-04 bis 2012-08-04 ))))))))))))))))))))))))))))))
.
.
2012-08-03 10:46 . 2012-06-29 10:04 9133488 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9E284D2B-4F77-4C79-872A-9B1668E930F2}\mpengine.dll
2012-08-01 19:00 . 2012-08-01 19:00 -------- d-----w- C:\_OTL
2012-07-29 10:09 . 2012-07-29 10:09 476976 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-07-29 10:09 . 2012-07-29 10:09 -------- d-----w- c:\program files (x86)\Java
2012-07-28 15:55 . 2012-07-28 15:55 -------- d-----w- c:\users\CHRISTOPH\AppData\Roaming\Malwarebytes
2012-07-28 15:54 . 2012-07-28 15:54 -------- d-----w- c:\programdata\Malwarebytes
2012-07-28 15:54 . 2012-07-03 11:46 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-28 15:54 . 2012-07-28 15:54 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-07-28 14:57 . 2012-07-28 14:57 -------- d-----w- C:\escan
2012-07-12 17:45 . 2012-07-12 17:45 -------- d-----w- c:\program files (x86)\Common Files\Dell
2012-07-11 21:24 . 2012-06-12 03:02 3147264 ----a-w- c:\windows\system32\win32k.sys
2012-07-11 16:17 . 2012-06-06 05:50 2003968 ----a-w- c:\windows\system32\msxml6.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-02 16:29 . 2012-04-18 18:18 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-02 16:29 . 2011-05-16 14:36 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-07-29 10:09 . 2010-06-30 18:18 472880 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-07-28 21:15 . 2011-08-24 14:30 81984 ----a-w- c:\windows\system32\bdod.bin
2012-07-12 12:32 . 2012-05-25 09:41 2300696 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2012-07-12 12:32 . 2012-05-25 09:41 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2012-07-11 21:21 . 2010-05-20 15:48 59701280 ----a-w- c:\windows\system32\MRT.exe
2012-07-08 09:34 . 2012-05-23 14:10 2300696 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-07-08 09:34 . 2012-05-23 14:09 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-07-08 09:34 . 2012-05-23 14:09 1236816 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-07-05 18:22 . 2012-05-30 08:38 1236816 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-06-02 22:19 . 2012-06-22 12:22 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-22 12:22 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:19 . 2012-06-22 12:22 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-22 12:22 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-22 12:22 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:15 . 2012-06-22 12:22 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:15 . 2012-06-22 12:22 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-22 12:21 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:15 . 2012-06-22 12:21 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-05-31 10:25 . 2010-05-19 18:55 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-05-09 20:03 . 2012-05-08 18:13 98848 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-05-09 20:03 . 2012-05-08 18:13 132832 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-05-06 10:17 . 2012-05-06 10:17 4518720 ----a-w- c:\users\CHRISTOPH\FileZilla_3.5.3_win32-setup.exe
2009-10-14 17:14 . 2010-08-13 12:32 83184 --sha-w- c:\program files\Info.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-08-14 98304]
"PDVDDXSrv"="c:\program files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2009-12-29 140520]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2009-06-24 409744]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [2009-10-15 498160]
"Adobe Photo Downloader"="c:\program files (x86)\Adobe\Photoshop Elements 4.0\apdproxy.exe" [2005-09-08 57344]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"Ulead Memory Card Detector"="c:\program files (x86)\Ulead Systems\Ulead Photo Explorer 8.0\Monitor.exe" [2002-12-10 49152]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-07-18 348664]
"Secure Browser (Firefox 3) (2) - Adobe Reader Speed Launcher"="c:\program files (x86)\Common Files\Dell\Kontainers\AviLaunch.exe" [2011-10-28 1961000]
"Secure Browser (Firefox 3) (2) - Adobe ARM"="c:\program files (x86)\Common Files\Dell\Kontainers\AviLaunch.exe" [2011-10-28 1961000]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.2.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]
openSUSE-uninst.exe [2010-8-7 62436]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~2\COMMON~1\Dell\KONTAI~1\AviLdr.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-12 136176]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-02 250056]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-12 136176]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-14 113120]
R3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc_x64.pkms [2012-04-10 25072]
R3 RRNetCap;RRNetCap Service;c:\windows\system32\DRIVERS\rrnetcap.sys [2011-12-09 37480]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-16 27760]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe [2009-03-02 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-14 202752]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-05-09 86224]
S2 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Acceler.sys [2009-09-17 23912]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2009-06-15 172704]
S3 O2MDGRDR;O2MDGRDR;c:\windows\system32\DRIVERS\o2mdgx64.sys [2009-11-13 74272]
S3 RRNetCapMP;RRNetCapMP;c:\windows\system32\DRIVERS\rrnetcap.sys [2011-12-09 37480]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-05-22 215040]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2012-08-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-18 16:29]
.
2012-08-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-12 18:43]
.
2012-08-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-12 18:43]
.
2012-07-27 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\Dell Support Center\uaclauncher.exe [2012-04-13 06:11]
.
2012-08-04 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\Dell Support Center\uaclauncher.exe [2012-04-13 06:11]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-20 487424]
"Broadcom Wireless Manager UI"="c:\program files\Dell\Dell Wireless WLAN Card\WLTRAY.exe" [2009-07-17 4968960]
"QuickSet"="c:\program files\Dell\QuickSet\QuickSet.exe" [2010-06-09 3216544]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - ProfilePath - c:\users\CHRISTOPH\AppData\Roaming\Mozilla\Firefox\Profiles\4m9tbk1c.default\
FF - prefs.js: browser.startup.homepage - about:blank
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.10:37 04.08.2012
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0]
"ImagePath"="\??\c:\program files\dell support center\pcdsrvc_x64.pkms"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\DRIVERS\o2flash.exe
c:\program files (x86)\OpenOffice.org 3\program\soffice.exe
c:\program files (x86)\OpenOffice.org 3\program\soffice.bin
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-08-04 10:14:05 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-08-04 08:14
.
Vor Suchlauf: 17 Verzeichnis(se), 104.296.017.920 Bytes frei
Nach Suchlauf: 21 Verzeichnis(se), 103.855.718.400 Bytes frei
.
- - End Of File - - 68E872A53AE56939C560BFF0DCF95C1B
Der Rechner hatte sich nachdem der scan beendet war, von selber neu gestartet und das log wie hier gepostet angezeigt. Mit freundlichen Grüssen Christoph |
|
04.08.2012, 14:23
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Entfernung von w3i.Iq5.fraud Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.08.2012, 10:32
| #23 |
| | Entfernung von w3i.Iq5.fraud Lieber cosinus Bevor ich die von dir angegebenen Anwendungen ausführe, möchte ich zuerst erwähnen, dass sich seit vermutlich gestern die Umschaltsperre, also jene Taste ganz links neben dem "a", auch caps lock genannt, wenn sie eingerastet ist, am Bildschirm nicht mehr anzeigt. Vielleilleicht kann zuerst dies wiederhergestellt werden. Kann auch sein, dass ich selber einen Fehler gemacht hatte. Das selber gilt für die NUM-Taste. Wenn sie eingerastet ist, wird nicht mehr angezeigt. Auch wird am Bildschirm nicht mehr angzeigt, wenn ich beispieslweise eine der F-Tasten drücke, um heller oder dunkler zu stellen, oder die Lautstärke verändere. Das hatte bisher alles problemlos geklappt. Christoph |
|
05.08.2012, 15:36
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Entfernung von w3i.Iq5.fraud Was soll da am Bildschirm nicht mehr angezeigt werden?! Seit wann wird überahupt am Bildschirm was angezeigt, das NUM oder CAPS aktivi ist?! Wozu hast du die drei Kontroll-LEDs rechts oben an der Tastatur? 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.08.2012, 17:24
| #25 |
| | Entfernung von w3i.Iq5.fraud Hallo cosinus Da ich mit einem Notebook arbeite, gibt es keine LED-Lichter-Tastatur. Bisher wurden die jeweiligen Änderungen der Tastatur, beispielsweiese die der NUM Taste kurz durch ein "N" oder die der Umschaltsperre durch ein "A" bei Aktivierung oder durchgestrichenes "A" bei Deaktivierung jeweils rechts unten i.d. Nähe der Uhrzeit, dh. etwas darüber, angezeigt, die Änderung von Helligkeit, Lautsärke mit den F Tasten jeweils knapp überder Taskleiste mehr in der Mitte. Da ich z.T. Texte in denen auch öfter Sätze oder Überchriften in Großbuchstaben vorkommen, und auch aus anderen Gründen, sind mir diese Anzeigen wertvoll und hilfreich. Habe inzwischen die Funktion selber wiederherstellen können Chrstoph Geändert von christophbkg (05.08.2012 um 18:03 Uhr) |
|
08.08.2012, 18:56
| #26 |
| | Entfernung von w3i.Iq5.fraud Hallo cosinus 1) GMER ließ sich problemlos ausführen, kein Absturz. Es wurde allerdings anstatt eines logfiles nur die Rückmeldung "Gmer has not found any modifications" eingeblendet. Nun gut, das sollte ja auch genügen. 2) Osam ließ sich nicht öffnen, ich ging mit 7zip dran, doch immer wieder kam die Fehlermeldung  obwohl, wie du siehst, auch dieser Teil auf der heruntergeladenen Liste mitenthalten ist, hatte ich auch seperat geöffnet, konnte auswählen zwischen "intern", "extern", usw. doch kam immer wieder diese Fehlermeldung. 3) aswMBR lief problemlos, du hattest nicht mitgeteilt, welche Art von scan, beispielsweisle quick scan, oder C: auswählen, daher wählte ich erst einmal quick scan. Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-08-08 19:21:37
-----------------------------
19:21:37.795 OS Version: Windows x64 6.1.7600
19:21:37.795 Number of processors: 8 586 0x1E05
19:21:37.796 ComputerName: CHRISTOPH UserName: CHRISTOPH
19:21:38.985 Initialize success
19:22:46.093 AVAST engine defs: 12080800
19:24:00.896 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
19:24:00.911 Disk 0 Vendor: TOSHIBA_MK5056GSY LH002D Size: 476940MB BusType: 11
19:24:00.927 Disk 0 MBR read successfully
19:24:00.927 Disk 0 MBR scan
19:24:00.942 Disk 0 unknown MBR code
19:24:00.958 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
19:24:00.974 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 15000 MB offset 81920
19:24:00.989 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 185343 MB offset 30801920
19:24:01.005 Disk 0 Partition - 80 (A) 0F Extended LBA 276553 MB offset 410385740
19:24:01.036 Disk 0 Partition 4 00 83 Linux 81920 MB offset 414582784
19:24:01.052 Disk 0 Partition - 00 05 Extended 2048 MB offset 410385741
19:24:01.067 Disk 0 Partition 5 00 82 Linux swap 2047 MB offset 410388480
19:24:01.083 Disk 0 Partition - 00 05 Extended 192583 MB offset 582356251
19:24:01.114 Disk 0 Partition 6 00 07 HPFS/NTFS NTFS 192583 MB offset 582356992
19:24:01.161 Disk 0 scanning C:\Windows\system32\drivers
19:24:10.318 Service scanning
19:24:28.820 Modules scanning
19:24:28.835 Disk 0 trace - called modules:
19:24:28.882 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
19:24:28.882 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c31060]
19:24:28.898 3 CLASSPNP.SYS[fffff8800164243f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004afe060]
19:24:29.834 AVAST engine scan C:\Windows
19:24:31.628 AVAST engine scan C:\Windows\system32
19:26:42.231 AVAST engine scan C:\Windows\system32\drivers
19:26:56.989 AVAST engine scan C:\Users\CHRISTOPH
19:32:22.294 AVAST engine scan C:\ProgramData
19:34:13.772 Scan finished successfully
19:34:53.193 Disk 0 MBR has been saved successfully to "C:\Neuer Ordner (1)\MBR.dat"
19:34:53.209 The log file has been saved successfully to "C:\Neuer Ordner (1)\Scan log.txt"
Christoph |
|
09.08.2012, 13:35
| #27 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Entfernung von w3i.Iq5.fraudZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
09.08.2012, 19:33
| #28 |
| | Entfernung von w3i.Iq5.fraud Hallo cosinus Ja, der Tip mit dem richtigen Entpacken > und schon funktioniert es :-) Danke :-) Somit gibt es auch ein Osam log. Ergebnis: OSAM Logfile: Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 20:25:48 on 09.08.2012 OS: Windows 7 Home Premium Edition (Build 7600), 64-bit Default Browser: Microsoft Corporation Internet Explorer 9.00.8112.16421 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [AppInit DLLs] -----( HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows )----- "AppInit_DLLs" - "Dell Inc" - C:\PROGRA~2\COMMON~1\Dell\KONTAI~1\AviLdr.DLL [Boot Execute] -----( HKLM\SYSTEM\CurrentControlSet\Control\Session Manager )----- "BootExecute" - ? - C:\Windows\system32\autochk.exe [Common] -----( %SystemRoot%\Tasks )----- "GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe "PCDoctorBackgroundMonitorTask.job" - "PC-Doctor, Inc." - C:\Program Files\Dell Support Center\uaclauncher.exe "SystemToolsDailyTest.job" - "PC-Doctor, Inc." - C:\Program Files\Dell Support Center\uaclauncher.exe [Control Panel Objects] -----( %SystemRoot%\system32 )----- "BCMWLCPL.CPL" - "Dell Inc." - C:\Windows\system32\BCMWLCPL.CPL -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )----- "Adobe Gamma" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma.cpl [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "avgntflt" (avgntflt) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avgntflt.sys "avipbb" (avipbb) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avipbb.sys "avkmgr" (avkmgr) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avkmgr.sys "BCM42RLY" (BCM42RLY) - "Broadcom Corporation" - C:\Windows\System32\drivers\BCM42RLY.sys "PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver" (PCDSRVC{1E208CE0-FB7451FF-06020101}_0) - "PC-Doctor, Inc." - c:\program files\dell support center\pcdsrvc_x64.pkms "WimFltr" (WimFltr) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\wimfltr.sys [Explorer] -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" - ? - C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll -----( HKLM\Software\Classes\Protocols\Handler )----- {828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL {0A9007C0-4076-11D3-8789-0000F8105754} "Microsoft Infotech Storage Protocol for IE 4.0" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll {828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL {03C514A3-1EFB-4856-9F99-10D7BE1653C0} "Windows Live Mail HTML Asynchronous Pluggable Protocol Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {5E2121EE-0300-11D4-8D3B-444553540000} "Catalyst Context Menu extension" - ? - (File not found | COM-object registry key not found) {0563DB41-F538-4B37-A92D-4659049B7766} "CLSID_WLMCMimeFilter" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll "CorelDRAW Shell Extension Component" - ? - (File not found | COM-object registry key not found) {993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\msoshext.dll {C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\msoshext.dll {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} "OpenOffice.org Column Handler" - ? - C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll {087B3AE3-E237-4467-B8DB-5A38AB959AC9} "OpenOffice.org Infotip Handler" - ? - C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll {63542C48-9552-494A-84F7-73AA6A7C99C1} "OpenOffice.org Property Sheet Handler" - ? - C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll {3B092F0C-7696-40E3-A80F-68D74DA84210} "OpenOffice.org Thumbnail Viewer" - ? - C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll {E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? - (File not found | COM-object registry key not found) {2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} "Windows Live Photo Gallery Autoplay Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} "Windows Live Photo Gallery Editor Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} "Windows Live Photo Gallery Editor Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F30F90-3E96-453B-AFCD-D71989ECC2C7} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F33137-EE26-412F-8D71-F84E4C2C6625} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F374B7-B390-4884-B372-2FC349F2172B} "Windows Live Photo Gallery Viewer Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} "Windows Live Photo Gallery Viewer Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {06A2568A-CED6-4187-BB20-400B8C02BE5A} "{06A2568A-CED6-4187-BB20-400B8C02BE5A}" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe -----( HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad )----- {E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? - (File not found | COM-object registry key not found) [Internet Explorer] -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) ITBar7Height64 "ITBar7Height64" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout64" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} "Java Plug-in 1.6.0_17" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / {8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_33" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} "Java Plug-in 1.6.0_33" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_33" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\npjpi160_33.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} "WMI Class" - ? - C:\Windows\SysWOW64\Dell\SYSTEM~1\SysPro.exe / https://support.dell.com/systemprofiler/SysProExe.CAB {E2883E8F-472F-4FB0-9522-AC9BF37916A7} "{E2883E8F-472F-4FB0-9522-AC9BF37916A7}" - ? - (File not found | COM-object registry key not found) / hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- {53707962-6F74-2D53-2644-206D7942484F} "ClsidExtension" - "Safer Networking Limited" - C:\PROGRA~2\SPYBOT~1\SDHelper.dll {5F7B1267-94A9-47F5-98DB-E99415F33AEC} "In Blog veröffentlichen" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )----- {8dcb7100-df86-4384-8842-8fa844297b3f} "Bing Bar" - "Microsoft Corporation." - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll {d2ce3e00-f94a-4740-988e-03dc2f38c34f} "Bing Bar Helper" - "Microsoft Corporation." - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} "Deaktivierungs-Add-on für Browser von Google Analytics" - "Google, Inc." - C:\Program Files (x86)\Google\Google Analytics Opt-Out\gaoptout.dll {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "Java(tm) Plug-In SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\ssv.dll {53707962-6F74-2D53-2644-206D7942484F} "Spybot-S&D IE Protection" - "Safer Networking Limited" - C:\PROGRA~2\SPYBOT~1\SDHelper.dll {9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live Anmelde-Hilfsprogramm" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [Logon] -----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini "OpenOffice.org 3.2.lnk" - ? - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe (Shortcut exists | File found, but it contains no detailed information | File exists) "openSUSE-uninst.exe" - ? - C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\openSUSE-uninst.exe (File found, but it contains no detailed information) -----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "Adobe Photo Downloader" - "Adobe Systems Incorporated" - "C:\Program Files (x86)\Adobe\Photoshop Elements 4.0\apdproxy.exe" "avgnt" - "Avira Operations GmbH & Co. KG" - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min "Dell Webcam Central" - "Creative Technology Ltd" - "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2 "Desktop Disc Tool" - ? - "c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" "PDVDDXSrv" - "CyberLink Corp." - "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" "Secure Browser (Firefox 3) (2) - Adobe ARM" - "Dell Inc." - C:\Program Files (x86)\Common Files\Dell\Kontainers\AviLaunch.exe "C:\Program Files (x86)\Dell\Secure Browsers\Secure Browser (Firefox 3) (2)\Firefox\Files\C\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "Secure Browser (Firefox 3) (2) - Adobe Reader Speed Launcher" - "Dell Inc." - C:\Program Files (x86)\Common Files\Dell\Kontainers\AviLaunch.exe "C:\Program Files (x86)\Dell\Secure Browsers\Secure Browser (Firefox 3) (2)\Firefox\Files\C\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "StartCCC" - "Advanced Micro Devices, Inc." - "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun "SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "Ulead Memory Card Detector" - "Ulead Systems, Inc." - C:\Program Files (x86)\Ulead Systems\Ulead Photo Explorer 8.0\Monitor.exe [Network Providers] -----( HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order )----- "Dell Wireless WLAN Card Logon Provider" - "Dell Inc." - C:\Windows\System32\BCMLogon.dll [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103" (WinDefend) - ? - C:\Program Files (x86)\Windows Defender\mpsvc.dll (File not found) "@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe" (File not found) "Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe "Adobe Active File Monitor V4" (AdobeActiveFileMonitor4.0) - ? - C:\Program Files (x86)\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe (File found, but it contains no detailed information) "Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe "Avira Echtzeit Scanner" (AntiVirService) - "Avira Operations GmbH & Co. KG" - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe "Avira Planer" (AntiVirSchedulerService) - "Avira Operations GmbH & Co. KG" - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe "BBUpdate" (BBUpdate) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE "Bing Bar Update Service" (BBSvc) - "Microsoft Corporation." - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE "Dell Wireless WLAN Tray Service" (wltrysvc) - ? - C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE (File found, but it contains no detailed information) "Google Update Service (gupdate)" (gupdate) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe "SBSD Security Center Service" (SBSDWSCService) - "Safer Networking Ltd." - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe ===[ Logfile end ]=========================================[ Logfile end ]=== Mit freundlichen Grüssen Christoph |
|
10.08.2012, 21:14
| #29 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Entfernung von w3i.Iq5.fraud Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
12.08.2012, 10:20
| #30 |
| | Entfernung von w3i.Iq5.fraud Hallo cosinus Gut, beides upgedatet und gescannt. Zuerst das Malewarebytes log Ergebnis: Code:
ATTFilter Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Datenbank Version: v2012.08.11.01 Windows 7 x64 NTFS Internet Explorer 9.0.8112.16421 CHRISTOPH :: CHRISTOPH [Administrator] 11.08.2012 08:34:42 mbam-log-2012-08-11 (08-34-42).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|G:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 425259 Laufzeit: 50 Minute(n), 41 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 08/11/2012 at 11:26 AM
Application Version : 5.5.1012
Core Rules Database Version : 9044
Trace Rules Database Version: 6856
Scan type : Complete Scan
Total Scan Time : 01:40:21
Operating System Information
Windows 7 Home Premium 64-bit (Build 6.01.7600)
UAC On - Administrator
Memory items scanned : 746
Memory threats detected : 0
Registry items scanned : 66210
Registry threats detected : 0
File items scanned : 198050
File threats detected : 283
Adware.Tracking Cookie
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\AYZ2494O.txt [ /ad.dyntracker.de ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\HPSW6UFO.txt [ /ad1.adfarm1.adition.com ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\8TTV34FR.txt [ /ad.zanox.com ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\4QNKXU9S.txt [ /adfarm1.adition.com ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\40EAKDS3.txt [ /www.zanox-affiliate.de ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\6Y24CI55.txt [ /adform.net ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\BLJL0X6P.txt [ /zanox-affiliate.de ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\TVK0XQ9I.txt [ /zanox.com ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\YQVW29C6.txt [ /imrworldwide.com ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\BUK62U3G.txt [ /dyntracker.com ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\9D6AU8V9.txt [ /track.adform.net ]
C:\Users\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\B7ONCXZV.txt [ /tracking.quisma.com ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\D5KGIC6G.txt [ Cookie:christoph@www.google.de/accounts ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\3F4BUVBV.txt [ Cookie:christoph@adfarm1.adition.com/ ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\0Q3CCK0L.txt [ Cookie:christoph@www.google.com/accounts ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\MXJU8IVZ.txt [ Cookie:christoph@ad.yieldmanager.com/ ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\NWFLBOT0.txt [ Cookie:christoph@ad2.adfarm1.adition.com/ ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\B20SV1R4.txt [ Cookie:christoph@amazon-adsystem.com/ ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\KMSFN6QZ.txt [ Cookie:christoph@accounts.google.com/ ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\2J754MUA.txt [ Cookie:christoph@ad3.adfarm1.adition.com/ ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\EHDEG3UT.txt [ Cookie:christoph@livestat.derstandard.at/ ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\UNWWANET.txt [ Cookie:christoph@www.googleadservices.com/pagead/conversion/1070564663/ ]
C:\USERS\CHRISTOPH\AppData\Roaming\Microsoft\Windows\Cookies\Low\PLZFRO8K.txt [ Cookie:christoph@accounts.youtube.com/accounts ]
C:\USERS\CHRISTOPH\Cookies\HPSW6UFO.txt [ Cookie:christoph@ad1.adfarm1.adition.com/ ]
C:\USERS\CHRISTOPH\Cookies\4QNKXU9S.txt [ Cookie:christoph@adfarm1.adition.com/ ]
C:\USERS\CHRISTOPH\Cookies\BLJL0X6P.txt [ Cookie:christoph@zanox-affiliate.de/ ]
C:\USERS\CHRISTOPH\Cookies\TVK0XQ9I.txt [ Cookie:christoph@zanox.com/ ]
C:\USERS\CHRISTOPH\Cookies\BUK62U3G.txt [ Cookie:christoph@dyntracker.com/ ]
C:\USERS\CHRISTOPH\Cookies\B7ONCXZV.txt [ Cookie:christoph@tracking.quisma.com/ ]
macromedia.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\XND3SPNF ]
.doubleclick.net [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
livestat.derstandard.at [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.pro-market.net [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
ww251.smartadserver.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4YU8YZV8.DEFAULT\COOKIES.SQLITE ]
macromedia.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3) (2)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\GPTFZRCT ]
statse.webtrendslive.com [ C:\PROGRAM FILES (X86)\DELL\SECURE BROWSERS\SECURE BROWSER (FIREFOX 3) (2)\FIREFOX\FILES\C\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZYCRQIHI.DEFAULT\COOKIES.SQLITE ]
media.mtvnservices.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\GPTFZRCT ]
s0.2mdn.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\GPTFZRCT ]
C:\USERS\CHRISTOPH\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\CHRISTOPH@CONTENT.YIELDMANAGER[1].TXT [ /CONTENT.YIELDMANAGER ]
statse.webtrendslive.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
livestat.derstandard.at [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.liveperson.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
server.lon.liveperson.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.liveperson.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
server.adformdsp.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adformdsp.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.microsoftsto.112.2o7.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.mtvn.112.2o7.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.findmyhome.at [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.findmyhome.at [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.findmyhome.at [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
adserver2.atman.pl [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.yieldmanager.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.tracking.mindshare.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
tomtailor.dyntracker.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.tracker.vinsight.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
www.moviepilot.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.moviepilot.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.moviepilot.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.moviepilot.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad1.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
welche ich mir erlaubt habe, zu löschen, und sah, als ich dann danach kurz den Browser benutzte, dass diese wohl teilweise auch im Laufe der Zeit wieder auftauchen werden, in diesem Fall waren es 12 Stück, siehe zweites Ergebnis: Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 08/11/2012 at 04:55 PM
Application Version : 5.5.1012
Core Rules Database Version : 9044
Trace Rules Database Version: 6856
Scan type : Complete Scan
Total Scan Time : 01:46:34
Operating System Information
Windows 7 Home Premium 64-bit (Build 6.01.7600)
UAC On - Limited User
Memory items scanned : 667
Memory threats detected : 0
Registry items scanned : 66125
Registry threats detected : 0
File items scanned : 198133
File threats detected : 12
Adware.Tracking Cookie
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\CHRISTOPH\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4M9TBK1C.DEFAULT\COOKIES.SQLITE ]
Christoph Geändert von christophbkg (12.08.2012 um 10:27 Uhr) |
|
| Themen zu Entfernung von w3i.Iq5.fraud |
| antivir, avira, blue, desktop, erstell, erstellt, escan, fehlermeldung, files, folge, folgende, gen, gen:trojan.heur.@x9@xo5bi3ji, gepostet, heute, hilfreiche, infected, infiziert, logfile, offending, spybot, troja, trojaner, version, virus, w3i.iq5.fraud, worte |
Linear-Darstellung
