| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows-Systemblockierung paysaveWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
03.04.2012, 14:17
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Windows-Systemblockierung paysave Und du hast das Fixlog nicht gepostet 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
03.04.2012, 22:05
| #17 |
 | Windows-Systemblockierung paysave hier die fix-log
__________________ |
|
04.04.2012, 11:29
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows-Systemblockierung paysave Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten, Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html
__________________Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ |
|
04.04.2012, 13:12
| #19 |
| | Windows-Systemblockierung paysaveCode:
ATTFilter 14:09:50.0570 5848 TDSS rootkit removing tool 2.7.25.0 Apr 3 2012 13:42:32
14:09:50.0835 5848 ============================================================
14:09:50.0835 5848 Current date / time: 2012/04/04 14:09:50.0835
14:09:50.0835 5848 SystemInfo:
14:09:50.0835 5848
14:09:50.0835 5848 OS Version: 6.1.7601 ServicePack: 1.0
14:09:50.0835 5848 Product type: Workstation
14:09:50.0835 5848 ComputerName: EFFENBERGER-PC
14:09:50.0835 5848 UserName: Effenberger
14:09:50.0835 5848 Windows directory: C:\Windows
14:09:50.0835 5848 System windows directory: C:\Windows
14:09:50.0835 5848 Running under WOW64
14:09:50.0835 5848 Processor architecture: Intel x64
14:09:50.0835 5848 Number of processors: 4
14:09:50.0835 5848 Page size: 0x1000
14:09:50.0835 5848 Boot type: Normal boot
14:09:50.0835 5848 ============================================================
14:09:51.0069 5848 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:09:51.0085 5848 \Device\Harddisk0\DR0:
14:09:51.0085 5848 MBR used
14:09:51.0085 5848 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
14:09:51.0085 5848 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x33D53000
14:09:51.0085 5848 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x33D85800, BlocksNum 0x6400000
14:09:51.0147 5848 Initialize success
14:09:51.0147 5848 ============================================================
14:10:04.0064 3580 ============================================================
14:10:04.0064 3580 Scan started
14:10:04.0064 3580 Mode: Manual; SigCheck; TDLFS;
14:10:04.0064 3580 ============================================================
14:10:04.0329 3580 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
14:10:04.0423 3580 1394ohci - ok
14:10:04.0454 3580 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
14:10:04.0470 3580 ACPI - ok
14:10:04.0485 3580 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
14:10:04.0548 3580 AcpiPmi - ok
14:10:04.0641 3580 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:10:04.0641 3580 AdobeARMservice - ok
14:10:04.0735 3580 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
14:10:04.0766 3580 adp94xx - ok
14:10:04.0797 3580 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
14:10:04.0813 3580 adpahci - ok
14:10:04.0844 3580 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
14:10:04.0860 3580 adpu320 - ok
14:10:04.0891 3580 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
14:10:05.0031 3580 AeLookupSvc - ok
14:10:05.0125 3580 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
14:10:05.0156 3580 AFD - ok
14:10:05.0218 3580 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
14:10:05.0218 3580 agp440 - ok
14:10:05.0250 3580 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
14:10:05.0312 3580 ALG - ok
14:10:05.0343 3580 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
14:10:05.0359 3580 aliide - ok
14:10:05.0421 3580 AMD External Events Utility (c08ade825268d291afe06eda71415c7d) C:\Windows\system32\atiesrxx.exe
14:10:05.0484 3580 AMD External Events Utility - ok
14:10:05.0593 3580 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
14:10:05.0593 3580 amdide - ok
14:10:05.0640 3580 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
14:10:05.0655 3580 AmdK8 - ok
14:10:05.0842 3580 amdkmdag (f59a32a90c4f96189cd74473f7be572b) C:\Windows\system32\DRIVERS\atikmdag.sys
14:10:06.0030 3580 amdkmdag - ok
14:10:06.0061 3580 amdkmdap (0327723d45a7bb7c1fe4835eb784ac61) C:\Windows\system32\DRIVERS\atikmpag.sys
14:10:06.0092 3580 amdkmdap - ok
14:10:06.0139 3580 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
14:10:06.0154 3580 AmdPPM - ok
14:10:06.0201 3580 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
14:10:06.0217 3580 amdsata - ok
14:10:06.0248 3580 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
14:10:06.0248 3580 amdsbs - ok
14:10:06.0279 3580 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
14:10:06.0295 3580 amdxata - ok
14:10:06.0451 3580 AntiVirSchedulerService (a122d68ea2541453f787f341877cb40b) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
14:10:06.0466 3580 AntiVirSchedulerService - ok
14:10:06.0498 3580 AntiVirService (2fe359edeb34efcf42574752f8aebd3f) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
14:10:06.0498 3580 AntiVirService - ok
14:10:06.0576 3580 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
14:10:06.0732 3580 AppID - ok
14:10:06.0747 3580 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
14:10:06.0778 3580 AppIDSvc - ok
14:10:06.0810 3580 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
14:10:06.0872 3580 Appinfo - ok
14:10:06.0950 3580 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:10:06.0950 3580 Apple Mobile Device - ok
14:10:07.0028 3580 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
14:10:07.0044 3580 arc - ok
14:10:07.0059 3580 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
14:10:07.0059 3580 arcsas - ok
14:10:07.0106 3580 asmthub3 (d6d2bb2f4f5868549dde75f3146bc84e) C:\Windows\system32\drivers\asmthub3.sys
14:10:07.0402 3580 asmthub3 - ok
14:10:07.0434 3580 asmtxhci (1e758172367dc2a3653f16586d62a3f0) C:\Windows\system32\drivers\asmtxhci.sys
14:10:07.0449 3580 asmtxhci - ok
14:10:07.0527 3580 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:10:07.0527 3580 aspnet_state - ok
14:10:07.0558 3580 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:10:07.0605 3580 AsyncMac - ok
14:10:07.0652 3580 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
14:10:07.0668 3580 atapi - ok
14:10:07.0730 3580 AtiHDAudioService (dbb487d09f56c674430ac454fd8bcab9) C:\Windows\system32\drivers\AtihdW76.sys
14:10:07.0746 3580 AtiHDAudioService - ok
14:10:07.0777 3580 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:10:07.0855 3580 AudioEndpointBuilder - ok
14:10:07.0855 3580 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:10:07.0886 3580 AudioSrv - ok
14:10:07.0980 3580 Autodesk Content Service (1992c2a1867d95aa3a0802539358d162) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
14:10:07.0980 3580 Autodesk Content Service - ok
14:10:08.0073 3580 avgntflt (aa8f79a1bdfc03b3bc70c44ab00589b4) C:\Windows\system32\DRIVERS\avgntflt.sys
14:10:08.0073 3580 avgntflt - ok
14:10:08.0120 3580 avipbb (852e3c0a60d368c487949e55ad52a47f) C:\Windows\system32\DRIVERS\avipbb.sys
14:10:08.0136 3580 avipbb - ok
14:10:08.0136 3580 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
14:10:08.0151 3580 avkmgr - ok
14:10:08.0182 3580 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
14:10:08.0260 3580 AxInstSV - ok
14:10:08.0307 3580 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
14:10:08.0338 3580 b06bdrv - ok
14:10:08.0370 3580 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:10:08.0401 3580 b57nd60a - ok
14:10:08.0448 3580 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
14:10:08.0479 3580 BDESVC - ok
14:10:08.0510 3580 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:10:08.0572 3580 Beep - ok
14:10:08.0619 3580 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
14:10:08.0682 3580 BFE - ok
14:10:08.0728 3580 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
14:10:08.0775 3580 BITS - ok
14:10:08.0806 3580 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
14:10:08.0838 3580 blbdrive - ok
14:10:08.0916 3580 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
14:10:08.0947 3580 Bonjour Service - ok
14:10:08.0994 3580 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
14:10:09.0025 3580 bowser - ok
14:10:09.0072 3580 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
14:10:09.0103 3580 BrFiltLo - ok
14:10:09.0134 3580 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
14:10:09.0150 3580 BrFiltUp - ok
14:10:09.0181 3580 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
14:10:09.0228 3580 Browser - ok
14:10:09.0259 3580 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:10:09.0274 3580 Brserid - ok
14:10:09.0306 3580 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:10:09.0337 3580 BrSerWdm - ok
14:10:09.0368 3580 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:10:09.0399 3580 BrUsbMdm - ok
14:10:09.0415 3580 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:10:09.0446 3580 BrUsbSer - ok
14:10:09.0477 3580 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
14:10:09.0493 3580 BTHMODEM - ok
14:10:09.0524 3580 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
14:10:09.0555 3580 bthserv - ok
14:10:09.0586 3580 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:10:09.0649 3580 cdfs - ok
14:10:09.0680 3580 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
14:10:09.0711 3580 cdrom - ok
14:10:09.0742 3580 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:10:09.0805 3580 CertPropSvc - ok
14:10:09.0836 3580 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
14:10:09.0867 3580 circlass - ok
14:10:09.0914 3580 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:10:09.0930 3580 CLFS - ok
14:10:09.0976 3580 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:10:09.0992 3580 clr_optimization_v2.0.50727_32 - ok
14:10:10.0039 3580 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:10:10.0054 3580 clr_optimization_v2.0.50727_64 - ok
14:10:10.0101 3580 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:10:10.0117 3580 clr_optimization_v4.0.30319_32 - ok
14:10:10.0132 3580 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:10:10.0148 3580 clr_optimization_v4.0.30319_64 - ok
14:10:10.0210 3580 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
14:10:10.0242 3580 CmBatt - ok
14:10:10.0257 3580 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
14:10:10.0273 3580 cmdide - ok
14:10:10.0304 3580 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
14:10:10.0335 3580 CNG - ok
14:10:10.0366 3580 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
14:10:10.0382 3580 Compbatt - ok
14:10:10.0413 3580 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
14:10:10.0444 3580 CompositeBus - ok
14:10:10.0460 3580 COMSysApp - ok
14:10:10.0491 3580 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
14:10:10.0507 3580 crcdisk - ok
14:10:10.0538 3580 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
14:10:10.0585 3580 CryptSvc - ok
14:10:10.0616 3580 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:10:10.0663 3580 DcomLaunch - ok
14:10:10.0678 3580 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
14:10:10.0741 3580 defragsvc - ok
14:10:10.0788 3580 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
14:10:10.0819 3580 DfsC - ok
14:10:10.0834 3580 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
14:10:10.0897 3580 Dhcp - ok
14:10:10.0912 3580 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:10:10.0959 3580 discache - ok
14:10:11.0006 3580 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
14:10:11.0022 3580 Disk - ok
14:10:11.0053 3580 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
14:10:11.0084 3580 Dnscache - ok
14:10:11.0115 3580 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
14:10:11.0178 3580 dot3svc - ok
14:10:11.0178 3580 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
14:10:11.0209 3580 DPS - ok
14:10:11.0256 3580 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:10:11.0271 3580 drmkaud - ok
14:10:11.0318 3580 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
14:10:11.0349 3580 DXGKrnl - ok
14:10:11.0365 3580 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
14:10:11.0396 3580 EapHost - ok
14:10:11.0474 3580 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
14:10:11.0536 3580 ebdrv - ok
14:10:11.0583 3580 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
14:10:11.0614 3580 EFS - ok
14:10:11.0677 3580 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
14:10:11.0739 3580 ehRecvr - ok
14:10:11.0755 3580 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
14:10:11.0802 3580 ehSched - ok
14:10:11.0864 3580 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
14:10:11.0895 3580 elxstor - ok
14:10:11.0911 3580 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
14:10:11.0942 3580 ErrDev - ok
14:10:11.0973 3580 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
14:10:12.0036 3580 EventSystem - ok
14:10:12.0082 3580 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:10:12.0129 3580 exfat - ok
14:10:12.0160 3580 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:10:12.0176 3580 fastfat - ok
14:10:12.0207 3580 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
14:10:12.0238 3580 Fax - ok
14:10:12.0270 3580 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
14:10:12.0301 3580 fdc - ok
14:10:12.0332 3580 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
14:10:12.0379 3580 fdPHost - ok
14:10:12.0394 3580 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
14:10:12.0426 3580 FDResPub - ok
14:10:12.0472 3580 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:10:12.0472 3580 FileInfo - ok
14:10:12.0488 3580 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:10:12.0519 3580 Filetrace - ok
14:10:12.0597 3580 FLEXnet Licensing Service 64 (5cee6cd43ae5844c49300ea0b1e557ee) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
14:10:12.0644 3580 FLEXnet Licensing Service 64 - ok
14:10:12.0706 3580 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
14:10:12.0738 3580 flpydisk - ok
14:10:12.0769 3580 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
14:10:12.0784 3580 FltMgr - ok
14:10:12.0816 3580 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
14:10:12.0847 3580 FontCache - ok
14:10:12.0925 3580 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:10:12.0940 3580 FontCache3.0.0.0 - ok
14:10:12.0972 3580 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:10:12.0972 3580 FsDepends - ok
14:10:13.0003 3580 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
14:10:13.0018 3580 Fs_Rec - ok
14:10:13.0050 3580 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:10:13.0065 3580 fvevol - ok
14:10:13.0096 3580 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
14:10:13.0112 3580 gagp30kx - ok
14:10:13.0128 3580 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:10:13.0143 3580 GEARAspiWDM - ok
14:10:13.0174 3580 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
14:10:13.0252 3580 gpsvc - ok
14:10:13.0346 3580 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:10:13.0346 3580 gupdate - ok
14:10:13.0362 3580 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:10:13.0377 3580 gupdatem - ok
14:10:13.0377 3580 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:10:13.0393 3580 gusvc - ok
14:10:13.0471 3580 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:10:13.0502 3580 hcw85cir - ok
14:10:13.0549 3580 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
14:10:13.0580 3580 HdAudAddService - ok
14:10:13.0627 3580 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
14:10:13.0658 3580 HDAudBus - ok
14:10:13.0689 3580 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
14:10:13.0720 3580 HidBatt - ok
14:10:13.0736 3580 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
14:10:13.0767 3580 HidBth - ok
14:10:13.0798 3580 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
14:10:13.0830 3580 HidIr - ok
14:10:13.0845 3580 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
14:10:13.0908 3580 hidserv - ok
14:10:13.0939 3580 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
14:10:13.0954 3580 HidUsb - ok
14:10:13.0970 3580 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
14:10:14.0032 3580 hkmsvc - ok
14:10:14.0064 3580 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
14:10:14.0095 3580 HomeGroupListener - ok
14:10:14.0126 3580 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
14:10:14.0157 3580 HomeGroupProvider - ok
14:10:14.0188 3580 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
14:10:14.0204 3580 HpSAMD - ok
14:10:14.0251 3580 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
14:10:14.0313 3580 HTTP - ok
14:10:14.0344 3580 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
14:10:14.0344 3580 hwpolicy - ok
14:10:14.0376 3580 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
14:10:14.0391 3580 i8042prt - ok
14:10:14.0422 3580 iaStor (2fdaec4b02729c48c0fd1b0b4695995b) C:\Windows\system32\drivers\iaStor.sys
14:10:14.0438 3580 iaStor - ok
14:10:14.0532 3580 IAStorDataMgrSvc (d41861e56e7552c13674d7f147a02464) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
14:10:14.0547 3580 IAStorDataMgrSvc - ok
14:10:14.0594 3580 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
14:10:14.0610 3580 iaStorV - ok
14:10:14.0688 3580 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:10:14.0719 3580 idsvc - ok
14:10:14.0844 3580 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
14:10:14.0984 3580 igfx - ok
14:10:15.0031 3580 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
14:10:15.0031 3580 iirsp - ok
14:10:15.0078 3580 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
14:10:15.0156 3580 IKEEXT - ok
14:10:15.0280 3580 IntcAzAudAddService (cb7dadef3d83fe2c12655a0bdcba99f2) C:\Windows\system32\drivers\RTKVHD64.sys
14:10:15.0390 3580 IntcAzAudAddService - ok
14:10:15.0421 3580 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
14:10:15.0436 3580 intelide - ok
14:10:15.0468 3580 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:10:15.0483 3580 intelppm - ok
14:10:15.0514 3580 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
14:10:15.0577 3580 IPBusEnum - ok
14:10:15.0592 3580 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:10:15.0639 3580 IpFilterDriver - ok
14:10:15.0686 3580 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
14:10:15.0733 3580 iphlpsvc - ok
14:10:15.0764 3580 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
14:10:15.0795 3580 IPMIDRV - ok
14:10:15.0811 3580 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:10:15.0858 3580 IPNAT - ok
14:10:15.0936 3580 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
14:10:15.0967 3580 iPod Service - ok
14:10:16.0045 3580 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:10:16.0076 3580 IRENUM - ok
14:10:16.0123 3580 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
14:10:16.0123 3580 isapnp - ok
14:10:16.0154 3580 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
14:10:16.0170 3580 iScsiPrt - ok
14:10:16.0216 3580 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:10:16.0232 3580 kbdclass - ok
14:10:16.0263 3580 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
14:10:16.0294 3580 kbdhid - ok
14:10:16.0310 3580 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:10:16.0326 3580 KeyIso - ok
14:10:16.0341 3580 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
14:10:16.0357 3580 KSecDD - ok
14:10:16.0372 3580 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
14:10:16.0388 3580 KSecPkg - ok
14:10:16.0435 3580 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:10:16.0482 3580 ksthunk - ok
14:10:16.0528 3580 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
14:10:16.0575 3580 KtmRm - ok
14:10:16.0606 3580 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
14:10:16.0638 3580 LanmanServer - ok
14:10:16.0653 3580 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
14:10:16.0716 3580 LanmanWorkstation - ok
14:10:16.0762 3580 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:10:16.0809 3580 lltdio - ok
14:10:16.0840 3580 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
14:10:16.0872 3580 lltdsvc - ok
14:10:16.0903 3580 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
14:10:16.0965 3580 lmhosts - ok
14:10:17.0028 3580 LMS (1584deeae5aa0e3fb045f3d0eac585ea) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
14:10:17.0043 3580 LMS - ok
14:10:17.0074 3580 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
14:10:17.0090 3580 LSI_FC - ok
14:10:17.0121 3580 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
14:10:17.0137 3580 LSI_SAS - ok
14:10:17.0152 3580 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
14:10:17.0168 3580 LSI_SAS2 - ok
14:10:17.0184 3580 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
14:10:17.0199 3580 LSI_SCSI - ok
14:10:17.0230 3580 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:10:17.0277 3580 luafv - ok
14:10:17.0324 3580 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
14:10:17.0355 3580 Mcx2Svc - ok
14:10:17.0386 3580 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
14:10:17.0386 3580 megasas - ok
14:10:17.0433 3580 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
14:10:17.0449 3580 MegaSR - ok
14:10:17.0480 3580 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\drivers\HECIx64.sys
14:10:17.0496 3580 MEIx64 - ok
14:10:17.0542 3580 MemeoBackgroundService (8a43d23ace2e8c95a2d87b6e9599deda) C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
14:10:17.0542 3580 MemeoBackgroundService - ok
14:10:17.0574 3580 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:10:17.0636 3580 MMCSS - ok
14:10:17.0683 3580 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:10:17.0730 3580 Modem - ok
14:10:17.0761 3580 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:10:17.0792 3580 monitor - ok
14:10:17.0839 3580 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:10:17.0854 3580 mouclass - ok
14:10:17.0886 3580 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:10:17.0917 3580 mouhid - ok
14:10:17.0964 3580 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
14:10:17.0979 3580 mountmgr - ok
14:10:17.0995 3580 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
14:10:18.0010 3580 mpio - ok
14:10:18.0026 3580 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:10:18.0088 3580 mpsdrv - ok
14:10:18.0135 3580 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
14:10:18.0182 3580 MpsSvc - ok
14:10:18.0213 3580 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
14:10:18.0244 3580 MRxDAV - ok
14:10:18.0260 3580 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:10:18.0307 3580 mrxsmb - ok
14:10:18.0338 3580 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:10:18.0385 3580 mrxsmb10 - ok
14:10:18.0400 3580 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:10:18.0432 3580 mrxsmb20 - ok
14:10:18.0463 3580 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
14:10:18.0463 3580 msahci - ok
14:10:18.0494 3580 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
14:10:18.0510 3580 msdsm - ok
14:10:18.0541 3580 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
14:10:18.0556 3580 MSDTC - ok
14:10:18.0588 3580 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:10:18.0634 3580 Msfs - ok
14:10:18.0681 3580 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:10:18.0728 3580 mshidkmdf - ok
14:10:18.0759 3580 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
14:10:18.0759 3580 msisadrv - ok
14:10:18.0790 3580 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
14:10:18.0806 3580 MSiSCSI - ok
14:10:18.0822 3580 msiserver - ok
14:10:18.0853 3580 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:10:18.0900 3580 MSKSSRV - ok
14:10:18.0931 3580 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:10:18.0978 3580 MSPCLOCK - ok
14:10:19.0009 3580 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:10:19.0024 3580 MSPQM - ok
14:10:19.0056 3580 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
14:10:19.0071 3580 MsRPC - ok
14:10:19.0102 3580 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
14:10:19.0102 3580 mssmbios - ok
14:10:19.0134 3580 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:10:19.0149 3580 MSTEE - ok
14:10:19.0180 3580 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
14:10:19.0196 3580 MTConfig - ok
14:10:19.0227 3580 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:10:19.0227 3580 Mup - ok
14:10:19.0258 3580 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
14:10:19.0305 3580 napagent - ok
14:10:19.0336 3580 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:10:19.0383 3580 NativeWifiP - ok
14:10:19.0430 3580 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
14:10:19.0461 3580 NDIS - ok
14:10:19.0477 3580 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:10:19.0508 3580 NdisCap - ok
14:10:19.0524 3580 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:10:19.0570 3580 NdisTapi - ok
14:10:19.0602 3580 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
14:10:19.0633 3580 Ndisuio - ok
14:10:19.0664 3580 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
14:10:19.0726 3580 NdisWan - ok
14:10:19.0742 3580 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
14:10:19.0789 3580 NDProxy - ok
14:10:19.0820 3580 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:10:19.0882 3580 NetBIOS - ok
14:10:19.0898 3580 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
14:10:19.0960 3580 NetBT - ok
14:10:19.0992 3580 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:10:20.0007 3580 Netlogon - ok
14:10:20.0038 3580 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
14:10:20.0085 3580 Netman - ok
14:10:20.0163 3580 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:10:20.0179 3580 NetMsmqActivator - ok
14:10:20.0194 3580 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:10:20.0210 3580 NetPipeActivator - ok
14:10:20.0241 3580 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
14:10:20.0304 3580 netprofm - ok
14:10:20.0382 3580 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:10:20.0382 3580 NetTcpActivator - ok
14:10:20.0382 3580 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:10:20.0397 3580 NetTcpPortSharing - ok
14:10:20.0444 3580 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
14:10:20.0460 3580 nfrd960 - ok
14:10:20.0491 3580 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
14:10:20.0553 3580 NlaSvc - ok
14:10:20.0584 3580 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:10:20.0631 3580 Npfs - ok
14:10:20.0647 3580 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
14:10:20.0709 3580 nsi - ok
14:10:20.0725 3580 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:10:20.0772 3580 nsiproxy - ok
14:10:20.0803 3580 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
14:10:20.0865 3580 Ntfs - ok
14:10:20.0881 3580 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:10:20.0896 3580 Null - ok
14:10:20.0943 3580 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
14:10:20.0943 3580 nvraid - ok
14:10:20.0959 3580 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
14:10:20.0974 3580 nvstor - ok
14:10:21.0006 3580 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
14:10:21.0021 3580 nv_agp - ok
14:10:21.0037 3580 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
14:10:21.0068 3580 ohci1394 - ok
14:10:21.0115 3580 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:10:21.0130 3580 p2pimsvc - ok
14:10:21.0177 3580 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
14:10:21.0208 3580 p2psvc - ok
14:10:21.0224 3580 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
14:10:21.0255 3580 Parport - ok
14:10:21.0286 3580 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
14:10:21.0302 3580 partmgr - ok
14:10:21.0318 3580 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
14:10:21.0349 3580 PcaSvc - ok
14:10:21.0380 3580 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
14:10:21.0380 3580 pci - ok
14:10:21.0396 3580 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
14:10:21.0411 3580 pciide - ok
14:10:21.0427 3580 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
14:10:21.0442 3580 pcmcia - ok
14:10:21.0474 3580 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:10:21.0489 3580 pcw - ok
14:10:21.0505 3580 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:10:21.0583 3580 PEAUTH - ok
14:10:21.0630 3580 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
14:10:21.0661 3580 PerfHost - ok
14:10:21.0708 3580 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
14:10:21.0786 3580 pla - ok
14:10:21.0832 3580 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
14:10:21.0879 3580 PlugPlay - ok
14:10:21.0910 3580 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
14:10:21.0942 3580 PNRPAutoReg - ok
14:10:21.0973 3580 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:10:21.0988 3580 PNRPsvc - ok
14:10:22.0020 3580 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
14:10:22.0066 3580 PolicyAgent - ok
14:10:22.0082 3580 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
14:10:22.0113 3580 Power - ok
14:10:22.0160 3580 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
14:10:22.0207 3580 PptpMiniport - ok
14:10:22.0238 3580 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
14:10:22.0254 3580 Processor - ok
14:10:22.0285 3580 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
14:10:22.0332 3580 ProfSvc - ok
14:10:22.0363 3580 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:10:22.0378 3580 ProtectedStorage - ok
14:10:22.0410 3580 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
14:10:22.0425 3580 Psched - ok
14:10:22.0488 3580 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
14:10:22.0534 3580 ql2300 - ok
14:10:22.0566 3580 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
14:10:22.0581 3580 ql40xx - ok
14:10:22.0612 3580 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
14:10:22.0628 3580 QWAVE - ok
14:10:22.0644 3580 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:10:22.0675 3580 QWAVEdrv - ok
14:10:22.0706 3580 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:10:22.0753 3580 RasAcd - ok
14:10:22.0784 3580 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:10:22.0846 3580 RasAgileVpn - ok
14:10:22.0878 3580 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
14:10:22.0924 3580 RasAuto - ok
14:10:22.0956 3580 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:10:22.0987 3580 Rasl2tp - ok
14:10:23.0034 3580 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
14:10:23.0065 3580 RasMan - ok
14:10:23.0096 3580 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:10:23.0143 3580 RasPppoe - ok
14:10:23.0174 3580 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:10:23.0205 3580 RasSstp - ok
14:10:23.0221 3580 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
14:10:23.0252 3580 rdbss - ok
14:10:23.0268 3580 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
14:10:23.0299 3580 rdpbus - ok
14:10:23.0330 3580 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:10:23.0392 3580 RDPCDD - ok
14:10:23.0408 3580 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:10:23.0439 3580 RDPENCDD - ok
14:10:23.0486 3580 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:10:23.0533 3580 RDPREFMP - ok
14:10:23.0564 3580 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
14:10:23.0580 3580 RDPWD - ok
14:10:23.0626 3580 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
14:10:23.0642 3580 rdyboost - ok
14:10:23.0673 3580 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
14:10:23.0720 3580 RemoteAccess - ok
14:10:23.0751 3580 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
14:10:23.0798 3580 RemoteRegistry - ok
14:10:23.0829 3580 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
14:10:23.0860 3580 RpcEptMapper - ok
14:10:23.0892 3580 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
14:10:23.0923 3580 RpcLocator - ok
14:10:23.0954 3580 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:10:24.0001 3580 RpcSs - ok
14:10:24.0032 3580 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:10:24.0094 3580 rspndr - ok
14:10:24.0141 3580 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:10:24.0157 3580 RTL8167 - ok
14:10:24.0204 3580 RTL8192su (b3f36b4b3f192ea87ddc119f3a0b3e45) C:\Windows\system32\DRIVERS\RTL8192su.sys
14:10:24.0219 3580 RTL8192su - ok
14:10:24.0250 3580 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:10:24.0266 3580 SamSs - ok
14:10:24.0282 3580 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
14:10:24.0297 3580 sbp2port - ok
14:10:24.0344 3580 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
14:10:24.0375 3580 SCardSvr - ok
14:10:24.0406 3580 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
14:10:24.0438 3580 scfilter - ok
14:10:24.0469 3580 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
14:10:24.0516 3580 Schedule - ok
14:10:24.0547 3580 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:10:24.0578 3580 SCPolicySvc - ok
14:10:24.0594 3580 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
14:10:24.0625 3580 SDRSVC - ok
14:10:24.0687 3580 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:10:24.0734 3580 secdrv - ok
14:10:24.0765 3580 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
14:10:24.0796 3580 seclogon - ok
14:10:24.0828 3580 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
14:10:24.0859 3580 SENS - ok
14:10:24.0890 3580 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
14:10:24.0906 3580 SensrSvc - ok
14:10:24.0968 3580 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
14:10:24.0984 3580 Serenum - ok
14:10:25.0030 3580 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
14:10:25.0046 3580 Serial - ok
14:10:25.0108 3580 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
14:10:25.0124 3580 sermouse - ok
14:10:25.0171 3580 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
14:10:25.0233 3580 SessionEnv - ok
14:10:25.0264 3580 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
14:10:25.0280 3580 sffdisk - ok
14:10:25.0296 3580 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
14:10:25.0311 3580 sffp_mmc - ok
14:10:25.0327 3580 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
14:10:25.0358 3580 sffp_sd - ok
14:10:25.0405 3580 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
14:10:25.0436 3580 sfloppy - ok
14:10:25.0467 3580 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
14:10:25.0514 3580 SharedAccess - ok
14:10:25.0545 3580 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
14:10:25.0592 3580 ShellHWDetection - ok
14:10:25.0639 3580 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
14:10:25.0639 3580 SiSRaid2 - ok
14:10:25.0670 3580 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
14:10:25.0670 3580 SiSRaid4 - ok
14:10:25.0701 3580 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:10:25.0764 3580 Smb - ok
14:10:25.0810 3580 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
14:10:25.0842 3580 SNMPTRAP - ok
14:10:25.0873 3580 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:10:25.0873 3580 spldr - ok
14:10:25.0888 3580 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
14:10:25.0935 3580 Spooler - ok
14:10:25.0982 3580 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
14:10:26.0044 3580 sppsvc - ok
14:10:26.0060 3580 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
14:10:26.0091 3580 sppuinotify - ok
14:10:26.0138 3580 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
14:10:26.0200 3580 srv - ok
14:10:26.0216 3580 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
14:10:26.0247 3580 srv2 - ok
14:10:26.0278 3580 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
14:10:26.0294 3580 srvnet - ok
14:10:26.0325 3580 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
14:10:26.0388 3580 SSDPSRV - ok
14:10:26.0403 3580 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
14:10:26.0466 3580 SstpSvc - ok
14:10:26.0497 3580 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
14:10:26.0512 3580 stexstor - ok
14:10:26.0544 3580 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
14:10:26.0575 3580 stisvc - ok
14:10:26.0622 3580 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
14:10:26.0637 3580 swenum - ok
14:10:26.0653 3580 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
14:10:26.0731 3580 swprv - ok
14:10:26.0762 3580 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
14:10:26.0840 3580 SysMain - ok
14:10:26.0856 3580 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
14:10:26.0902 3580 TabletInputService - ok
14:10:26.0934 3580 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
14:10:26.0996 3580 TapiSrv - ok
14:10:27.0012 3580 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
14:10:27.0043 3580 TBS - ok
14:10:27.0121 3580 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
14:10:27.0168 3580 Tcpip - ok
14:10:27.0214 3580 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
14:10:27.0246 3580 TCPIP6 - ok
14:10:27.0277 3580 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
14:10:27.0324 3580 tcpipreg - ok
14:10:27.0339 3580 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:10:27.0355 3580 TDPIPE - ok
14:10:27.0402 3580 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
14:10:27.0417 3580 TDTCP - ok
14:10:27.0433 3580 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
14:10:27.0480 3580 tdx - ok
14:10:27.0526 3580 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
14:10:27.0542 3580 TermDD - ok
14:10:27.0573 3580 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
14:10:27.0636 3580 TermService - ok
14:10:27.0667 3580 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
14:10:27.0667 3580 Themes - ok
14:10:27.0698 3580 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:10:27.0729 3580 THREADORDER - ok
14:10:27.0745 3580 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
14:10:27.0776 3580 TrkWks - ok
14:10:27.0823 3580 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
14:10:27.0870 3580 TrustedInstaller - ok
14:10:27.0916 3580 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:10:27.0979 3580 tssecsrv - ok
14:10:28.0010 3580 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
14:10:28.0041 3580 TsUsbFlt - ok
14:10:28.0072 3580 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
14:10:28.0088 3580 TsUsbGD - ok
14:10:28.0119 3580 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
14:10:28.0166 3580 tunnel - ok
14:10:28.0182 3580 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
14:10:28.0197 3580 uagp35 - ok
14:10:28.0213 3580 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
14:10:28.0275 3580 udfs - ok
14:10:28.0306 3580 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
14:10:28.0338 3580 UI0Detect - ok
14:10:28.0384 3580 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
14:10:28.0384 3580 uliagpkx - ok
14:10:28.0431 3580 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
14:10:28.0462 3580 umbus - ok
14:10:28.0494 3580 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
14:10:28.0509 3580 UmPass - ok
14:10:28.0618 3580 UNS (fc43877b4625f6eb773c98233eb625c5) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
14:10:28.0681 3580 UNS - ok
14:10:28.0696 3580 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
14:10:28.0759 3580 upnphost - ok
14:10:28.0821 3580 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
14:10:28.0837 3580 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
14:10:28.0837 3580 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
14:10:28.0884 3580 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
14:10:28.0930 3580 usbccgp - ok
14:10:28.0962 3580 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
14:10:28.0993 3580 usbcir - ok
14:10:29.0008 3580 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
14:10:29.0040 3580 usbehci - ok
14:10:29.0071 3580 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
14:10:29.0086 3580 usbhub - ok
14:10:29.0118 3580 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
14:10:29.0133 3580 usbohci - ok
14:10:29.0180 3580 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:10:29.0211 3580 usbprint - ok
14:10:29.0274 3580 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:10:29.0305 3580 usbscan - ok
14:10:29.0320 3580 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:10:29.0367 3580 USBSTOR - ok
14:10:29.0398 3580 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
14:10:29.0430 3580 usbuhci - ok
14:10:29.0461 3580 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
14:10:29.0492 3580 UxSms - ok
14:10:29.0523 3580 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:10:29.0523 3580 VaultSvc - ok
14:10:29.0554 3580 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
14:10:29.0570 3580 vdrvroot - ok
14:10:29.0586 3580 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
14:10:29.0632 3580 vds - ok
14:10:29.0664 3580 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:10:29.0679 3580 vga - ok
14:10:29.0710 3580 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:10:29.0773 3580 VgaSave - ok
14:10:29.0804 3580 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
14:10:29.0820 3580 vhdmp - ok
14:10:29.0851 3580 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
14:10:29.0851 3580 viaide - ok
14:10:29.0898 3580 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
14:10:29.0913 3580 volmgr - ok
14:10:29.0944 3580 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
14:10:29.0960 3580 volmgrx - ok
14:10:29.0991 3580 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
14:10:30.0007 3580 volsnap - ok
14:10:30.0038 3580 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
14:10:30.0054 3580 vsmraid - ok
14:10:30.0100 3580 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
14:10:30.0178 3580 VSS - ok
14:10:30.0225 3580 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
14:10:30.0256 3580 vwifibus - ok
14:10:30.0288 3580 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
14:10:30.0319 3580 vwififlt - ok
14:10:30.0366 3580 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
14:10:30.0412 3580 W32Time - ok
14:10:30.0444 3580 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
14:10:30.0459 3580 WacomPen - ok
14:10:30.0506 3580 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:10:30.0568 3580 WANARP - ok
14:10:30.0584 3580 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:10:30.0615 3580 Wanarpv6 - ok
14:10:30.0662 3580 watchmi (261a725f8acedda695c7fff6d6ede6b5) C:\Program Files (x86)\watchmi\TvdService.exe
14:10:30.0693 3580 watchmi ( UnsignedFile.Multi.Generic ) - warning
14:10:30.0693 3580 watchmi - detected UnsignedFile.Multi.Generic (1)
14:10:30.0740 3580 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
14:10:30.0802 3580 wbengine - ok
14:10:30.0834 3580 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
14:10:30.0849 3580 WbioSrvc - ok
14:10:30.0865 3580 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
14:10:30.0896 3580 wcncsvc - ok
14:10:30.0912 3580 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
14:10:30.0958 3580 WcsPlugInService - ok
14:10:31.0005 3580 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
14:10:31.0005 3580 Wd - ok
14:10:31.0052 3580 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:10:31.0083 3580 Wdf01000 - ok
14:10:31.0099 3580 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:10:31.0177 3580 WdiServiceHost - ok
14:10:31.0177 3580 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:10:31.0192 3580 WdiSystemHost - ok
14:10:31.0224 3580 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
14:10:31.0255 3580 WebClient - ok
14:10:31.0255 3580 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
14:10:31.0286 3580 Wecsvc - ok
14:10:31.0317 3580 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
14:10:31.0364 3580 wercplsupport - ok
14:10:31.0395 3580 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
14:10:31.0426 3580 WerSvc - ok
14:10:31.0489 3580 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:10:31.0520 3580 WfpLwf - ok
14:10:31.0536 3580 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:10:31.0536 3580 WIMMount - ok
14:10:31.0567 3580 WinDefend - ok
14:10:31.0567 3580 WinHttpAutoProxySvc - ok
14:10:31.0629 3580 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
14:10:31.0676 3580 Winmgmt - ok
14:10:31.0738 3580 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
14:10:31.0801 3580 WinRM - ok
14:10:31.0848 3580 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
14:10:31.0879 3580 WinUsb - ok
14:10:31.0926 3580 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
14:10:31.0972 3580 Wlansvc - ok
14:10:32.0019 3580 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:10:32.0035 3580 wlcrasvc - ok
14:10:32.0113 3580 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:10:32.0175 3580 wlidsvc - ok
14:10:32.0238 3580 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
14:10:32.0269 3580 WmiAcpi - ok
14:10:32.0331 3580 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
14:10:32.0362 3580 wmiApSrv - ok
14:10:32.0409 3580 WMPNetworkSvc - ok
14:10:32.0425 3580 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
14:10:32.0456 3580 WPCSvc - ok
14:10:32.0472 3580 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
14:10:32.0487 3580 WPDBusEnum - ok
14:10:32.0534 3580 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:10:32.0596 3580 ws2ifsl - ok
14:10:32.0612 3580 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
14:10:32.0628 3580 wscsvc - ok
14:10:32.0643 3580 WSearch - ok
14:10:32.0659 3580 wsvd (82e8f5aa03df7dbdb8a33f700d5d8cda) C:\Windows\system32\DRIVERS\wsvd.sys
14:10:32.0674 3580 wsvd - ok
14:10:32.0721 3580 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
14:10:32.0830 3580 wuauserv - ok
14:10:32.0862 3580 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
14:10:32.0893 3580 WudfPf - ok
14:10:32.0924 3580 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:10:32.0955 3580 WUDFRd - ok
14:10:32.0986 3580 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
14:10:33.0002 3580 wudfsvc - ok
14:10:33.0018 3580 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
14:10:33.0049 3580 WwanSvc - ok
14:10:33.0080 3580 MBR (0x1B8) (eb2571b16b316c9fe5aa1c4797ff61ee) \Device\Harddisk0\DR0
14:10:34.0671 3580 \Device\Harddisk0\DR0 - ok
14:10:34.0702 3580 Boot (0x1200) (619a03a875d85497d559fa3e19e9de27) \Device\Harddisk0\DR0\Partition0
14:10:34.0702 3580 \Device\Harddisk0\DR0\Partition0 - ok
14:10:34.0718 3580 Boot (0x1200) (dc01d6940eccfb560d0027e5a877383b) \Device\Harddisk0\DR0\Partition1
14:10:34.0718 3580 \Device\Harddisk0\DR0\Partition1 - ok
14:10:34.0734 3580 Boot (0x1200) (60493bfdb0879334bfeb5a7cca6fd67a) \Device\Harddisk0\DR0\Partition2
14:10:34.0734 3580 \Device\Harddisk0\DR0\Partition2 - ok
14:10:34.0734 3580 ============================================================
14:10:34.0734 3580 Scan finished
14:10:34.0734 3580 ============================================================
14:10:34.0749 4860 Detected object count: 2
14:10:34.0749 4860 Actual detected object count: 2
14:10:50.0833 4860 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
14:10:50.0833 4860 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:10:50.0833 4860 watchmi ( UnsignedFile.Multi.Generic ) - skipped by user
14:10:50.0833 4860 watchmi ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
04.04.2012, 13:25
| #20 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows-Systemblockierung paysave Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.04.2012, 16:21
| #21 |
| | Windows-Systemblockierung paysaveCode:
ATTFilter ComboFix 12-04-04.02 - Effenberger 04.04.2012 16:35:43.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.6126.4599 [GMT 2:00]
ausgeführt von:: c:\users\Effenberger\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-03-04 bis 2012-04-04 ))))))))))))))))))))))))))))))
.
.
2012-04-04 14:39 . 2012-04-04 14:39 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-04-04 14:31 . 2002-07-25 15:06 282624 ----a-w- c:\program files (x86)\Common Files\InstallShield\UpdateService\agent.exe
2012-04-04 14:30 . 2012-04-04 14:30 -------- d-----w- c:\programdata\UDL
2012-04-04 14:29 . 2012-04-04 14:29 -------- d-----w- c:\program files (x86)\EPSON Print CD
2012-04-04 14:28 . 2003-02-27 14:12 696320 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2012-04-04 14:28 . 2002-12-05 12:10 155648 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2012-04-04 14:28 . 2002-12-02 13:22 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2012-04-04 14:28 . 2002-12-02 11:33 57344 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2012-04-04 14:28 . 2002-12-02 11:33 237568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2012-04-04 14:28 . 2012-04-04 14:28 282756 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2012-04-04 14:28 . 2012-04-04 14:28 163972 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2012-04-04 12:59 . 2006-10-30 22:10 120992 ----a-w- c:\windows\SysWow64\EpPicPrt.dll
2012-04-04 12:59 . 2006-10-19 22:10 80024 ----a-w- c:\windows\SysWow64\PICSDK.dll
2012-04-04 12:59 . 2006-10-19 22:10 501912 ----a-w- c:\windows\SysWow64\PICSDK2.dll
2012-04-04 12:59 . 2006-10-19 22:10 108704 ----a-w- c:\windows\SysWow64\PICEntry.dll
2012-04-04 12:59 . 2006-10-30 22:10 71840 ----a-w- c:\windows\SysWow64\EPPicMgr.dll
2012-04-04 12:59 . 2012-04-04 12:59 -------- d-----w- c:\users\Effenberger\AppData\Roaming\InstallShield
2012-04-04 12:51 . 2012-04-04 12:51 -------- d-----w- c:\users\Effenberger\AppData\Roaming\EPSON
2012-04-04 12:27 . 2012-04-04 12:27 -------- d-----w- c:\program files\EPSON
2012-04-04 12:26 . 2012-04-04 14:29 -------- d-----w- c:\program files (x86)\epson
2012-04-04 12:26 . 2007-04-17 22:00 101888 ----a-w- c:\windows\system32\esxcwiad.dll
2012-04-03 20:55 . 2012-04-03 20:55 -------- d-----w- c:\program files (x86)\7-Zip
2012-04-03 20:54 . 2012-03-20 01:51 8669240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1F2AE9E3-EAB6-44A2-9261-F33BBED2E3DD}\mpengine.dll
2012-04-02 19:35 . 2012-04-02 19:35 -------- d-----w- C:\_OTL
2012-04-02 19:30 . 2012-04-02 19:30 -------- d-----w- c:\users\Effenberger\AppData\Roaming\Avira
2012-04-02 19:25 . 2012-01-31 06:56 97312 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-04-02 19:25 . 2012-01-31 06:56 132320 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-04-02 19:25 . 2011-09-16 14:08 27760 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-04-02 19:25 . 2012-04-02 19:25 -------- d-----w- c:\programdata\Avira
2012-04-02 19:25 . 2012-04-02 19:25 -------- d-----w- c:\program files (x86)\Avira
2012-04-02 19:18 . 2012-04-02 19:18 -------- d-----w- c:\users\Effenberger\AppData\Roaming\OpenOffice.org
2012-04-02 19:17 . 2012-04-02 19:17 -------- d-----w- c:\program files (x86)\OpenOffice.org 3
2012-04-02 10:27 . 2012-04-02 10:27 -------- d-----w- c:\program files\iPod
2012-04-02 10:27 . 2012-04-02 10:28 -------- d-----w- c:\program files\iTunes
2012-04-02 10:27 . 2012-04-02 10:28 -------- d-----w- c:\program files (x86)\iTunes
2012-03-28 10:06 . 2012-03-28 10:06 592824 ----a-w- c:\program files (x86)\Mozilla Firefox\gkmedias.dll
2012-03-28 10:06 . 2012-03-28 10:06 44472 ----a-w- c:\program files (x86)\Mozilla Firefox\mozglue.dll
2012-03-27 13:21 . 2012-03-27 13:21 -------- d-----w- c:\program files (x86)\ESET
2012-03-27 12:45 . 2012-03-27 12:45 -------- d-----w- c:\users\Effenberger\AppData\Roaming\Malwarebytes
2012-03-27 12:45 . 2012-03-27 12:45 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-03-27 12:45 . 2012-03-27 12:45 -------- d-----w- c:\programdata\Malwarebytes
2012-03-27 12:45 . 2011-12-10 13:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-27 12:41 . 2012-03-27 12:41 -------- d-----w- c:\users\Effenberger\AppData\Local\ElevatedDiagnostics
2012-03-26 15:50 . 2012-03-26 15:50 -------- d-----w- c:\users\Effenberger\AppData\Local\Diagnostics
2012-03-26 15:35 . 2009-07-30 00:36 540192 ----a-w- c:\windows\system32\NVUNINST.EXE
2012-03-22 15:12 . 2012-03-22 16:01 -------- d-----w- c:\users\Effenberger\AppData\Roaming\CyberLink
2012-03-21 19:35 . 2012-03-14 16:23 65024 ----a-w- c:\windows\system32\pdfcmon.dll
2012-03-21 19:35 . 2005-04-15 18:58 1071088 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2012-03-21 19:35 . 2004-03-08 23:00 662288 ----a-w- c:\windows\SysWow64\MSCOMCT2.OCX
2012-03-21 19:35 . 1998-06-23 23:00 137000 ----a-w- c:\windows\SysWow64\MSMAPI32.OCX
2012-03-21 19:35 . 2012-03-21 19:35 -------- d-----w- c:\program files (x86)\PDFCreator
2012-03-21 19:35 . 1998-07-06 16:56 125712 ----a-w- c:\windows\SysWow64\VB6DE.DLL
2012-03-21 19:35 . 1998-07-06 16:55 158208 ----a-w- c:\windows\SysWow64\MSCMCDE.DLL
2012-03-21 19:35 . 1998-07-06 16:55 64512 ----a-w- c:\windows\SysWow64\MSCC2DE.DLL
2012-03-21 19:35 . 1998-07-05 23:00 23552 ----a-w- c:\windows\SysWow64\MSMPIDE.DLL
2012-03-21 02:08 . 2012-03-21 02:08 -------- d-----w- c:\program files (x86)\GUM4AD7.tmp
2012-03-14 04:40 . 2011-11-19 15:20 5559152 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-14 04:40 . 2011-11-19 14:50 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-03-14 04:40 . 2011-11-19 14:50 3913584 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-03-14 04:31 . 2012-02-03 04:34 3145728 ----a-w- c:\windows\system32\win32k.sys
2012-03-14 04:31 . 2012-02-10 06:36 1544192 ----a-w- c:\windows\system32\DWrite.dll
2012-03-14 04:31 . 2012-02-10 05:38 1077248 ----a-w- c:\windows\SysWow64\DWrite.dll
2012-03-13 17:38 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2012-03-13 17:38 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
2012-03-13 17:38 . 2012-02-17 04:58 210944 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-03-13 17:38 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-03-13 17:38 . 2012-01-25 06:38 77312 ----a-w- c:\windows\system32\rdpwsx.dll
2012-03-13 17:38 . 2012-01-25 06:38 149504 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-03-13 17:38 . 2012-01-25 06:33 9216 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-03-12 18:36 . 2012-03-12 18:36 -------- d-----w- c:\program files (x86)\Common Files\McNeel Shared
2012-03-12 18:36 . 2012-03-12 18:36 -------- d-----w- c:\program files (x86)\Rhinoceros 4.0
2012-03-10 12:29 . 2012-03-10 12:29 -------- d-----w- c:\programdata\McAfee
2012-03-10 12:29 . 2012-03-10 12:29 -------- d-----w- c:\windows\system32\Macromed
2012-03-05 14:46 . 2012-03-05 14:46 -------- d-----w- c:\users\Effenberger\AppData\Local\Mozilla
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-10 12:29 . 2011-08-22 17:09 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-02-23 07:18 . 2010-11-21 03:27 279656 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-02-18 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-05-20 284440]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-10-14 343168]
"CLMLServer"="c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe" [2010-08-03 107816]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-03-27 421736]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-01-31 258512]
.
c:\users\Effenberger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.3.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
watchmi tray.lnk - c:\windows\Installer\{409DC300-28AF-468F-9624-1F3309701881}\SHCT_TRAY_PROGRAMG_A10D8603999C4E9488776EF2533C58C9.exe [2012-2-18 300928]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update-Dienst (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-18 136176]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-02-20 1431888]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-18 136176]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-01-31 86224]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
S2 MemeoBackgroundService;MemeoBackgroundService;c:\program files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe [2011-09-28 25824]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-03-11 2656280]
S2 watchmi;watchmi service;c:\program files (x86)\watchmi\TvdService.exe [2011-10-07 70144]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\drivers\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\drivers\asmtxhci.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2012-04-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-18 12:47]
.
2012-04-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-18 12:47]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-08-16 12673128]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=MDNF&bmod=MDNF
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Effenberger\AppData\Roaming\Mozilla\Firefox\Profiles\qxrl2vay.default\
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11f_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11f_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-04-04 16:43:54 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-04-04 14:43
.
Vor Suchlauf: 8 Verzeichnis(se), 381.736.480.768 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 381.575.446.528 Bytes frei
.
- - End Of File - - 61EC623981052EAC03FE2EEAA279DA77
|
|
04.04.2012, 21:53
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows-Systemblockierung paysave Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop. Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehalalrm!
Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.04.2012, 12:32
| #23 |
| | Windows-Systemblockierung paysaveCode:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-04-05 13:15:36
-----------------------------
13:15:36.094 OS Version: Windows x64 6.1.7601 Service Pack 1
13:15:36.094 Number of processors: 4 586 0x2A07
13:15:36.094 ComputerName: EFFENBERGER-PC UserName: Effenberger
13:15:38.184 Initialize success
13:19:18.140 AVAST engine defs: 12040500
13:24:09.189 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
13:24:09.189 Disk 0 Vendor: WDC_WD50 15.0 Size: 476940MB BusType: 3
13:24:09.205 Disk 0 MBR read successfully
13:24:09.205 Disk 0 MBR scan
13:24:09.205 Disk 0 unknown MBR code
13:24:09.220 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
13:24:09.236 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 424614 MB offset 206848
13:24:09.252 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 51200 MB offset 869816320
13:24:09.267 Disk 0 Partition 4 00 12 Compaq diag NTFS 1024 MB offset 974673920
13:24:09.314 Disk 0 scanning C:\Windows\system32\drivers
13:24:15.850 Service scanning
13:24:30.312 Modules scanning
13:24:30.312 Disk 0 trace - called modules:
13:24:30.327 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
13:24:30.327 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80087d5060]
13:24:30.343 3 CLASSPNP.SYS[fffff88001d6f43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8005f5f050]
13:24:31.279 AVAST engine scan C:\Windows
13:24:33.120 AVAST engine scan C:\Windows\system32
13:26:12.570 AVAST engine scan C:\Windows\system32\drivers
13:26:20.479 AVAST engine scan C:\Users\Effenberger
13:27:02.053 AVAST engine scan C:\ProgramData
13:27:54.937 Scan finished successfully
13:31:01.358 Disk 0 MBR has been saved successfully to "C:\Users\Effenberger\Desktop\MBR.dat"
13:31:01.358 The log file has been saved successfully to "C:\Users\Effenberger\Desktop\aswMBR.txt"
|
|
05.04.2012, 14:01
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows-Systemblockierung paysave Wir sollten den MBR fixen, sichere für den Fall der Fälle ALLE wichtigen Daten, auch wenn meistens alles glatt geht. Hinweis: Mach bitte NICHT den MBR-Fix, wenn du noch andere Betriebssysteme wie zB Ubuntu installiert hast, ein MBR-Fix mit Windows-Tools macht ein parallel installiertes (Dualboot) Linux unbootbar. Mach den Fix auch dann nicht, wenn du zB mit TrueCrypt oder anderen Verschlüsselungsprogrammen eine Vollverschlüsselung der Windowspartition bzw. gesamten Festplatte hast Starte nach der Datensicherung aswmbr erneut und klick auf den Button FIXMBR. Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehalalrm! Anschließend Windows neu starten und ein neues Log mit aswMBR machen.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.04.2012, 15:43
| #25 |
| | Windows-Systemblockierung paysaveCode:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-04-06 16:30:52
-----------------------------
16:30:52.068 OS Version: Windows x64 6.1.7601 Service Pack 1
16:30:52.068 Number of processors: 4 586 0x2A07
16:30:52.068 ComputerName: EFFENBERGER-PC UserName: Effenberger
16:30:54.112 Initialize success
16:30:57.404 AVAST engine defs: 12040500
16:31:04.564 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:31:04.564 Disk 0 Vendor: WDC_WD50 15.0 Size: 476940MB BusType: 3
16:31:04.580 Disk 0 MBR read successfully
16:31:04.580 Disk 0 MBR scan
16:31:04.595 Disk 0 Windows 7 default MBR code
16:31:04.595 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
16:31:04.595 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 424614 MB offset 206848
16:31:04.626 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 51200 MB offset 869816320
16:31:04.642 Disk 0 Partition 4 00 12 Compaq diag NTFS 1024 MB offset 974673920
16:31:04.689 Disk 0 scanning C:\Windows\system32\drivers
16:31:12.146 Service scanning
16:31:29.633 Modules scanning
16:31:29.633 Disk 0 trace - called modules:
16:31:29.649 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
16:31:29.649 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80087d7060]
16:31:29.664 3 CLASSPNP.SYS[fffff88001da043f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8005f0f050]
16:31:31.521 AVAST engine scan C:\Windows
16:31:34.048 AVAST engine scan C:\Windows\system32
16:33:31.173 AVAST engine scan C:\Windows\system32\drivers
16:33:39.815 AVAST engine scan C:\Users\Effenberger
16:34:29.704 AVAST engine scan C:\ProgramData
16:35:25.084 Scan finished successfully
16:42:04.821 Disk 0 MBR has been saved successfully to "C:\Users\Effenberger\Desktop\MBR.dat"
16:42:04.821 The log file has been saved successfully to "C:\Users\Effenberger\Desktop\aswMBR1.txt"
|
|
06.04.2012, 15:46
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows-Systemblockierung paysave Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.04.2012, 16:42
| #27 |
| | Windows-Systemblockierung paysaveCode:
ATTFilter Malwarebytes Anti-Malware 1.60.1.1000 www.malwarebytes.org Datenbank Version: v2012.04.06.05 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Effenberger :: EFFENBERGER-PC [Administrator] 06.04.2012 17:05:32 mbam-log-2012-04-06 (17-05-32).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 365309 Laufzeit: 24 Minute(n), 44 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) |
|
06.04.2012, 16:54
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows-Systemblockierung paysave Ok, fehlt noch das andere Log
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.04.2012, 19:02
| #29 |
| | Windows-Systemblockierung paysaveCode:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 04/06/2012 at 06:43 PM
Application Version : 5.0.1146
Core Rules Database Version : 8424
Trace Rules Database Version: 6236
Scan type : Complete Scan
Total Scan Time : 00:57:46
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Administrator
Memory items scanned : 853
Memory threats detected : 0
Registry items scanned : 66628
Registry threats detected : 0
File items scanned : 253138
File threats detected : 289
Adware.Tracking Cookie
C:\Users\Effenberger\AppData\Roaming\Microsoft\Windows\Cookies\KAZP2L02.txt [ /mediaplex.com ]
C:\Users\Effenberger\AppData\Roaming\Microsoft\Windows\Cookies\K60P8Q68.txt [ /tracking.quisma.com ]
C:\Users\Effenberger\AppData\Roaming\Microsoft\Windows\Cookies\FQKUU9R2.txt [ /apmebf.com ]
C:\Users\Effenberger\AppData\Roaming\Microsoft\Windows\Cookies\NKGWTI2E.txt [ /fastclick.net ]
C:\USERS\EFFENBERGER\AppData\Roaming\Microsoft\Windows\Cookies\Low\DIA3CCT3.txt [ Cookie:effenberger@smartadserver.com/ ]
C:\USERS\EFFENBERGER\AppData\Roaming\Microsoft\Windows\Cookies\Low\7KTD8LWU.txt [ Cookie:effenberger@eas4.emediate.eu/ ]
C:\USERS\EFFENBERGER\AppData\Roaming\Microsoft\Windows\Cookies\Low\WFTH0W60.txt [ Cookie:effenberger@im.banner.t-online.de/ ]
C:\USERS\EFFENBERGER\AppData\Roaming\Microsoft\Windows\Cookies\Low\15QM6D3I.txt [ Cookie:effenberger@adtech.de/ ]
C:\USERS\EFFENBERGER\AppData\Roaming\Microsoft\Windows\Cookies\Low\L3LCGH82.txt [ Cookie:effenberger@adfarm1.adition.com/ ]
C:\USERS\EFFENBERGER\AppData\Roaming\Microsoft\Windows\Cookies\Low\2K1Y0ATZ.txt [ Cookie:effenberger@ad3.adfarm1.adition.com/ ]
C:\USERS\EFFENBERGER\Cookies\K60P8Q68.txt [ Cookie:effenberger@tracking.quisma.com/ ]
C:\USERS\EFFENBERGER\Cookies\FQKUU9R2.txt [ Cookie:effenberger@apmebf.com/ ]
C:\USERS\EFFENBERGER\Cookies\NKGWTI2E.txt [ Cookie:effenberger@fastclick.net/ ]
www.sunporno.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.enoratraffic.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.sunporno.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.dyntracker.de [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.sunporno.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sunporno.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sunporno.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sunporno.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sunporno.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sunporno.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.exoclick.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.google.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.youtube.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.xiti.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.im.banner.t-online.de [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad4.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad2.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.apmebf.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zanox.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.zanox.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
tracking.mlsat02.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tracking.mindshare.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tradetracker.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.euros4click.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
www.netdebit-counter.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
www.pornhub.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
www.pornhub.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.pornhub.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.exoclick.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.pornhub.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.pornhub.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.pornhub.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.pornhub.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.pornhub.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ads.trafficjunky.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
count.asnetworks.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adserver.adtechus.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
network.realmedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
tracking.mobile.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
a.visualrevenue.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ww251.smartadserver.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
adserver.flughafen-stuttgart.de [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\EFFENBERGER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QXRL2VAY.DEFAULT\COOKIES.SQLITE ]
|
|
06.04.2012, 20:03
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows-Systemblockierung paysave Sieht ok aus, da wurden nur Cookies gefunden. Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat. Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/ Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Windows-Systemblockierung paysave |
| eingefangen, fordert, gefangen, gen, hallo zusammen, troja, trojaner, windowssystem, zusammen |
Linear-Darstellung
