| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehrWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
24.06.2012, 17:03
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C  nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
25.06.2012, 09:31
| #17 |
 | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr Guten Morgen!
__________________Habe das Tool ausgeführt - und es hat auch gleich 16 Bedrohungen gefunden, davon aber unter Anderem auch Lightscribe  Hier der Log: Code:
ATTFilter 10:21:27.0860 4700 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
10:21:28.0562 4700 ============================================================
10:21:28.0562 4700 Current date / time: 2012/06/25 10:21:28.0562
10:21:28.0562 4700 SystemInfo:
10:21:28.0562 4700
10:21:28.0562 4700 OS Version: 6.0.6001 ServicePack: 1.0
10:21:28.0562 4700 Product type: Workstation
10:21:28.0562 4700 ComputerName: BRUNE-LAPTOP
10:21:28.0562 4700 UserName: brune
10:21:28.0562 4700 Windows directory: C:\Windows
10:21:28.0562 4700 System windows directory: C:\Windows
10:21:28.0562 4700 Processor architecture: Intel x86
10:21:28.0562 4700 Number of processors: 2
10:21:28.0562 4700 Page size: 0x1000
10:21:28.0562 4700 Boot type: Normal boot
10:21:28.0562 4700 ============================================================
10:21:32.0899 4700 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:21:32.0914 4700 ============================================================
10:21:32.0914 4700 \Device\Harddisk0\DR0:
10:21:32.0914 4700 MBR partitions:
10:21:32.0914 4700 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE79A6C8
10:21:32.0914 4700 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xE79A800, BlocksNum 0xB763800
10:21:33.0164 4700 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0x19EFE74E, BlocksNum 0x32C5E33
10:21:33.0164 4700 ============================================================
10:21:33.0351 4700 C: <-> \Device\Harddisk0\DR0\Partition0
10:21:33.0570 4700 D: <-> \Device\Harddisk0\DR0\Partition2
10:21:33.0694 4700 H: <-> \Device\Harddisk0\DR0\Partition1
10:21:33.0694 4700 ============================================================
10:21:33.0694 4700 Initialize success
10:21:33.0694 4700 ============================================================
10:21:51.0043 3852 ============================================================
10:21:51.0043 3852 Scan started
10:21:51.0043 3852 Mode: Manual; SigCheck; TDLFS;
10:21:51.0043 3852 ============================================================
10:22:07.0625 3852 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
10:22:09.0279 3852 ACPI - ok
10:22:09.0373 3852 adfs (6d7f09cd92a9fef3a8efce66231fdd79) C:\Windows\system32\drivers\adfs.sys
10:22:09.0404 3852 adfs - ok
10:22:09.0560 3852 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:22:09.0575 3852 AdobeFlashPlayerUpdateSvc - ok
10:22:09.0700 3852 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
10:22:09.0794 3852 adp94xx - ok
10:22:09.0872 3852 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
10:22:09.0919 3852 adpahci - ok
10:22:09.0965 3852 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
10:22:09.0981 3852 adpu160m - ok
10:22:10.0043 3852 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
10:22:10.0246 3852 adpu320 - ok
10:22:10.0293 3852 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
10:22:10.0402 3852 AeLookupSvc - ok
10:22:10.0527 3852 Afc (fe3ea6e9afc1a78e6edca121e006afb7) C:\Windows\system32\drivers\Afc.sys
10:22:11.0354 3852 Afc - ok
10:22:11.0494 3852 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
10:22:11.0650 3852 AFD - ok
10:22:11.0869 3852 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
10:22:12.0430 3852 AgereSoftModem - ok
10:22:12.0555 3852 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
10:22:12.0649 3852 agp440 - ok
10:22:12.0695 3852 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
10:22:12.0758 3852 aic78xx - ok
10:22:12.0883 3852 Akamai - ok
10:22:12.0945 3852 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
10:22:13.0709 3852 ALG - ok
10:22:13.0756 3852 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
10:22:13.0897 3852 aliide - ok
10:22:14.0037 3852 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
10:22:14.0068 3852 amdagp - ok
10:22:14.0099 3852 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
10:22:14.0115 3852 amdide - ok
10:22:14.0162 3852 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
10:22:14.0255 3852 AmdK7 - ok
10:22:14.0302 3852 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
10:22:14.0396 3852 AmdK8 - ok
10:22:14.0536 3852 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
10:22:14.0677 3852 Appinfo - ok
10:22:14.0989 3852 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:22:15.0020 3852 Apple Mobile Device - ok
10:22:15.0098 3852 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
10:22:15.0129 3852 arc - ok
10:22:15.0238 3852 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
10:22:15.0254 3852 arcsas - ok
10:22:15.0628 3852 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
10:22:15.0644 3852 aspnet_state - ok
10:22:15.0722 3852 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
10:22:15.0831 3852 AsyncMac - ok
10:22:15.0893 3852 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
10:22:15.0909 3852 atapi - ok
10:22:16.0361 3852 AudioEndpointBuilder (42076e29aafa0830a2c5d4e310f58dd1) C:\Windows\System32\Audiosrv.dll
10:22:16.0455 3852 AudioEndpointBuilder - ok
10:22:16.0455 3852 Audiosrv (42076e29aafa0830a2c5d4e310f58dd1) C:\Windows\System32\Audiosrv.dll
10:22:16.0502 3852 Audiosrv - ok
10:22:16.0658 3852 AVP (2718dc27571bd1e37813f5759d2dc118) C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
10:22:16.0689 3852 AVP - ok
10:22:16.0985 3852 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
10:22:17.0017 3852 Beep - ok
10:22:17.0313 3852 BFE (8582e233c346aefe759833e8a30dd697) C:\Windows\System32\bfe.dll
10:22:17.0391 3852 BFE - ok
10:22:17.0719 3852 BITS (02ed7b4dbc2a3232a389106da7515c3d) C:\Windows\System32\qmgr.dll
10:22:17.0921 3852 BITS - ok
10:22:18.0031 3852 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
10:22:18.0280 3852 blbdrive - ok
10:22:18.0327 3852 BlueletAudio - ok
10:22:18.0343 3852 BlueletSCOAudio - ok
10:22:18.0545 3852 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
10:22:18.0577 3852 Bonjour Service - ok
10:22:18.0623 3852 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
10:22:18.0733 3852 bowser - ok
10:22:18.0811 3852 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
10:22:18.0842 3852 BrFiltLo - ok
10:22:18.0857 3852 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
10:22:18.0904 3852 BrFiltUp - ok
10:22:18.0951 3852 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
10:22:19.0013 3852 Browser - ok
10:22:19.0107 3852 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
10:22:19.0669 3852 Brserid - ok
10:22:19.0762 3852 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
10:22:19.0887 3852 BrSerWdm - ok
10:22:19.0934 3852 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
10:22:20.0027 3852 BrUsbMdm - ok
10:22:20.0059 3852 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
10:22:20.0168 3852 BrUsbSer - ok
10:22:20.0199 3852 BT - ok
10:22:20.0261 3852 Btcsrusb - ok
10:22:20.0277 3852 BTHidEnum - ok
10:22:20.0308 3852 BTHidMgr - ok
10:22:20.0355 3852 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
10:22:20.0464 3852 BTHMODEM - ok
10:22:20.0636 3852 cbVSCService (ed5411a69c5bac78d245c893af64352a) C:\Program Files\Cobian Backup 10\cbVSCService.exe
10:22:20.0729 3852 cbVSCService ( UnsignedFile.Multi.Generic ) - warning
10:22:20.0729 3852 cbVSCService - detected UnsignedFile.Multi.Generic (1)
10:22:20.0761 3852 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
10:22:20.0839 3852 cdfs - ok
10:22:20.0917 3852 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
10:22:21.0010 3852 cdrom - ok
10:22:21.0135 3852 CertPropSvc (87c2d0377b23e2d8a41093c2f5fb1a5b) C:\Windows\System32\certprop.dll
10:22:21.0229 3852 CertPropSvc - ok
10:22:21.0322 3852 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
10:22:21.0369 3852 circlass - ok
10:22:21.0463 3852 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
10:22:21.0478 3852 CLFS - ok
10:22:21.0587 3852 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:22:21.0619 3852 clr_optimization_v2.0.50727_32 - ok
10:22:21.0712 3852 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
10:22:21.0790 3852 CmBatt - ok
10:22:21.0899 3852 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
10:22:22.0196 3852 cmdide - ok
10:22:22.0243 3852 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
10:22:22.0258 3852 Compbatt - ok
10:22:22.0274 3852 COMSysApp - ok
10:22:22.0321 3852 cpuz132 (097a0a4899b759a4f032bd464963b4be) C:\Windows\system32\drivers\cpuz132_x32.sys
10:22:22.0430 3852 cpuz132 ( UnsignedFile.Multi.Generic ) - warning
10:22:22.0430 3852 cpuz132 - detected UnsignedFile.Multi.Generic (1)
10:22:22.0477 3852 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
10:22:22.0539 3852 crcdisk - ok
10:22:22.0648 3852 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
10:22:22.0742 3852 Crusoe - ok
10:22:22.0835 3852 CryptSvc (6de363f9f99334514c46aec02d3e3678) C:\Windows\system32\cryptsvc.dll
10:22:22.0945 3852 CryptSvc - ok
10:22:23.0054 3852 DcomLaunch (301ae00e12408650baddc04dbc832830) C:\Windows\system32\rpcss.dll
10:22:23.0460 3852 DcomLaunch - ok
10:22:23.0538 3852 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
10:22:23.0741 3852 DfsC - ok
10:22:24.0786 3852 DFSR (fa3463f25f9cc9c3bcf1e7912feff099) C:\Windows\system32\DFSR.exe
10:22:25.0239 3852 DFSR - ok
10:22:25.0613 3852 Dhcp (43a988a9c10333476cb5fb667cbd629d) C:\Windows\System32\dhcpcsvc.dll
10:22:25.0722 3852 Dhcp - ok
10:22:25.0863 3852 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
10:22:25.0910 3852 disk - ok
10:22:26.0003 3852 Dnscache (4805d9a6d281c7a7defd9094dec6af7d) C:\Windows\System32\dnsrslvr.dll
10:22:26.0097 3852 Dnscache - ok
10:22:26.0175 3852 dot3svc (5af620a08c614e24206b79e8153cf1a8) C:\Windows\System32\dot3svc.dll
10:22:26.0331 3852 dot3svc - ok
10:22:26.0393 3852 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
10:22:26.0471 3852 DPS - ok
10:22:26.0580 3852 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
10:22:26.0627 3852 drmkaud - ok
10:22:26.0908 3852 Droppix Service (5028eced761f2d10d3c02b849f57835e) C:\Program Files\Common Files\Droppix\DxService.exe
10:22:27.0080 3852 Droppix Service ( UnsignedFile.Multi.Generic ) - warning
10:22:27.0080 3852 Droppix Service - detected UnsignedFile.Multi.Generic (1)
10:22:27.0407 3852 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
10:22:27.0516 3852 DXGKrnl - ok
10:22:27.0626 3852 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
10:22:27.0672 3852 E1G60 - ok
10:22:27.0735 3852 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
10:22:27.0782 3852 EapHost - ok
10:22:27.0828 3852 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
10:22:27.0860 3852 Ecache - ok
10:22:27.0922 3852 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
10:22:28.0156 3852 ehRecvr - ok
10:22:28.0218 3852 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
10:22:28.0359 3852 ehSched - ok
10:22:28.0499 3852 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
10:22:28.0577 3852 ehstart - ok
10:22:28.0686 3852 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
10:22:28.0796 3852 elxstor - ok
10:22:28.0983 3852 EMDMgmt (70b1a86df0c8ead17d2bc332edae2c7c) C:\Windows\system32\emdmgmt.dll
10:22:29.0076 3852 EMDMgmt - ok
10:22:29.0154 3852 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
10:22:29.0232 3852 ErrDev - ok
10:22:29.0310 3852 EventSystem (3cb3343d720168b575133a0a20dc2465) C:\Windows\system32\es.dll
10:22:29.0373 3852 EventSystem - ok
10:22:29.0482 3852 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
10:22:29.0919 3852 exfat - ok
10:22:29.0997 3852 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
10:22:30.0215 3852 fastfat - ok
10:22:30.0309 3852 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
10:22:30.0402 3852 fdc - ok
10:22:30.0480 3852 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
10:22:30.0574 3852 fdPHost - ok
10:22:30.0605 3852 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
10:22:30.0714 3852 FDResPub - ok
10:22:30.0761 3852 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
10:22:30.0777 3852 FileInfo - ok
10:22:30.0824 3852 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
10:22:30.0886 3852 Filetrace - ok
10:22:31.0697 3852 FirebirdServerMAGIXInstance (167d24a045499ebef438f231976158df) C:\Program Files\ALDI Foto Service Nord\Common\Database\bin\fbserver.exe
10:22:32.0025 3852 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning
10:22:32.0025 3852 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1)
10:22:32.0212 3852 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:22:32.0259 3852 FLEXnet Licensing Service - ok
10:22:32.0508 3852 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
10:22:32.0555 3852 flpydisk - ok
10:22:32.0602 3852 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
10:22:32.0633 3852 FltMgr - ok
10:22:32.0727 3852 FontCache3.0.0.0 (c9be08664611ddaf98e2331e9288b00b) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
10:22:32.0742 3852 FontCache3.0.0.0 - ok
10:22:32.0774 3852 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
10:22:32.0820 3852 Fs_Rec - ok
10:22:32.0898 3852 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
10:22:32.0914 3852 gagp30kx - ok
10:22:32.0992 3852 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:22:33.0008 3852 GEARAspiWDM - ok
10:22:33.0117 3852 gpsvc (d9f1113d9401185245573350712f92fc) C:\Windows\System32\gpsvc.dll
10:22:33.0351 3852 gpsvc - ok
10:22:33.0522 3852 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
10:22:33.0538 3852 gupdate - ok
10:22:33.0538 3852 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
10:22:33.0554 3852 gupdatem - ok
10:22:34.0037 3852 gusvc (408ddd80eede47175f6844817b90213e) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
10:22:34.0068 3852 gusvc - ok
10:22:34.0146 3852 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
10:22:34.0287 3852 HdAudAddService - ok
10:22:34.0334 3852 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:22:34.0412 3852 HDAudBus - ok
10:22:34.0443 3852 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
10:22:34.0568 3852 HidBth - ok
10:22:34.0599 3852 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
10:22:34.0724 3852 HidIr - ok
10:22:34.0770 3852 hidserv (8fa640195279ace21bea91396a0054fc) C:\Windows\system32\hidserv.dll
10:22:34.0817 3852 hidserv - ok
10:22:34.0864 3852 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys
10:22:34.0926 3852 HidUsb - ok
10:22:35.0004 3852 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
10:22:35.0067 3852 hkmsvc - ok
10:22:35.0129 3852 Hotkey (8b566ea71d5b76157a9cdb78f25a5731) C:\Windows\system32\drivers\Hotkey.sys
10:22:35.0145 3852 Hotkey ( UnsignedFile.Multi.Generic ) - warning
10:22:35.0145 3852 Hotkey - detected UnsignedFile.Multi.Generic (1)
10:22:35.0192 3852 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
10:22:35.0207 3852 HpCISSs - ok
10:22:35.0379 3852 hshld (8041fb828109307a522a7fa665c94449) C:\Program Files\Hotspot Shield\bin\openvpnas.exe
10:22:35.0410 3852 hshld ( UnsignedFile.Multi.Generic ) - warning
10:22:35.0410 3852 hshld - detected UnsignedFile.Multi.Generic (1)
10:22:35.0582 3852 HssDrv (4f28652ec514fa1ba473bc1a695a5c98) C:\Windows\system32\DRIVERS\HssDrv.sys
10:22:35.0597 3852 HssDrv - ok
10:22:35.0738 3852 HssSrv (882b18a2e79b3a99c0637f3ac9b28d03) C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
10:22:35.0878 3852 HssSrv ( UnsignedFile.Multi.Generic ) - warning
10:22:35.0878 3852 HssSrv - detected UnsignedFile.Multi.Generic (1)
10:22:36.0377 3852 HssTrayService (ea1d8fc49ae639c329137348fc4fe8ff) C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
10:22:36.0471 3852 HssTrayService ( UnsignedFile.Multi.Generic ) - warning
10:22:36.0471 3852 HssTrayService - detected UnsignedFile.Multi.Generic (1)
10:22:36.0502 3852 HssWd - ok
10:22:36.0580 3852 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
10:22:36.0892 3852 HTTP - ok
10:22:36.0954 3852 HWiNFO32 - ok
10:22:37.0017 3852 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
10:22:37.0032 3852 i2omp - ok
10:22:37.0110 3852 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
10:22:37.0329 3852 i8042prt - ok
10:22:37.0485 3852 IAANTMON (72b53e9c8924949dec8f3799bcba2251) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
10:22:37.0578 3852 IAANTMON - ok
10:22:37.0656 3852 iaStor (e5a0034847537eaee3c00349d5c34c5f) C:\Windows\system32\DRIVERS\iaStor.sys
10:22:37.0672 3852 iaStor - ok
10:22:37.0859 3852 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
10:22:37.0875 3852 iaStorV - ok
10:22:38.0202 3852 idsvc (7b630acaed64fef0c3e1cf255cb56686) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:22:38.0358 3852 idsvc - ok
10:22:38.0873 3852 igfx (a9221d13d8f1f772010ee293ba9baeb7) C:\Windows\system32\DRIVERS\igdkmd32.sys
10:22:39.0263 3852 igfx - ok
10:22:39.0497 3852 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
10:22:39.0513 3852 iirsp - ok
10:22:39.0716 3852 IJPLMSVC (51516252dbbfed36f70b341dba263167) C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
10:22:39.0762 3852 IJPLMSVC ( UnsignedFile.Multi.Generic ) - warning
10:22:39.0762 3852 IJPLMSVC - detected UnsignedFile.Multi.Generic (1)
10:22:39.0840 3852 IKEEXT (a3bc480a2bf8aa8e4dabd2d5dce0afac) C:\Windows\System32\ikeext.dll
10:22:39.0996 3852 IKEEXT - ok
10:22:40.0402 3852 IntcAzAudAddService (2b1b7e0cc16a361fc3e10d5c2e868c72) C:\Windows\system32\drivers\RTKVHDA.sys
10:22:40.0527 3852 IntcAzAudAddService - ok
10:22:40.0714 3852 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
10:22:40.0730 3852 intelide - ok
10:22:40.0792 3852 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
10:22:40.0854 3852 intelppm - ok
10:22:40.0932 3852 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
10:22:40.0979 3852 IPBusEnum - ok
10:22:41.0057 3852 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:22:41.0135 3852 IpFilterDriver - ok
10:22:41.0260 3852 iphlpsvc (6a35d233693edc29a12742049bc5e37f) C:\Windows\System32\iphlpsvc.dll
10:22:41.0369 3852 iphlpsvc - ok
10:22:41.0385 3852 IpInIp - ok
10:22:41.0432 3852 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
10:22:41.0494 3852 IPMIDRV - ok
10:22:41.0525 3852 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
10:22:41.0603 3852 IPNAT - ok
10:22:42.0134 3852 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
10:22:42.0508 3852 iPod Service - ok
10:22:42.0586 3852 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
10:22:42.0726 3852 IRENUM - ok
10:22:42.0804 3852 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
10:22:42.0836 3852 isapnp - ok
10:22:42.0914 3852 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
10:22:42.0929 3852 iScsiPrt - ok
10:22:42.0960 3852 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
10:22:42.0976 3852 iteatapi - ok
10:22:43.0038 3852 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
10:22:43.0054 3852 iteraid - ok
10:22:43.0163 3852 IviRegMgr (213822072085b5bbad9af30ab577d817) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
10:22:43.0179 3852 IviRegMgr - ok
10:22:43.0226 3852 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
10:22:43.0226 3852 kbdclass - ok
10:22:43.0272 3852 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
10:22:43.0335 3852 kbdhid - ok
10:22:43.0865 3852 KeyIso (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
10:22:43.0943 3852 KeyIso - ok
10:22:44.0130 3852 KL1 (186b54479d98e48aee0e9ada4b3c4d31) C:\Windows\system32\DRIVERS\kl1.sys
10:22:44.0146 3852 KL1 - ok
10:22:44.0162 3852 kl2 (bf485bfba13c0ab116701fd9c55324d0) C:\Windows\system32\DRIVERS\kl2.sys
10:22:44.0177 3852 kl2 - ok
10:22:44.0302 3852 KLIF (af04d0ce7939324e9a605b159295706c) C:\Windows\system32\DRIVERS\klif.sys
10:22:44.0318 3852 KLIF - ok
10:22:44.0380 3852 KLIM6 (6295a19003f935ecc6ccbe9e2376427b) C:\Windows\system32\DRIVERS\klim6.sys
10:22:44.0396 3852 KLIM6 - ok
10:22:44.0442 3852 klmouflt (3de1771c135328420315e21dde229bba) C:\Windows\system32\DRIVERS\klmouflt.sys
10:22:44.0458 3852 klmouflt - ok
10:22:44.0520 3852 KMWDFilter (72c55c745d804d62162144ebfd6390b8) C:\Windows\System32\Drivers\KMWDFilter.SYS
10:22:44.0552 3852 KMWDFilter ( UnsignedFile.Multi.Generic ) - warning
10:22:44.0552 3852 KMWDFilter - detected UnsignedFile.Multi.Generic (1)
10:22:44.0614 3852 KMWDSERVICE (2a1a5bbd85f62f0d7ab8276ac0566b37) C:\Program Files\Mouse Driver\KMWDSrv.exe
10:22:44.0661 3852 KMWDSERVICE ( UnsignedFile.Multi.Generic ) - warning
10:22:44.0661 3852 KMWDSERVICE - detected UnsignedFile.Multi.Generic (1)
10:22:44.0832 3852 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
10:22:44.0895 3852 KSecDD - ok
10:22:45.0004 3852 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
10:22:45.0098 3852 KtmRm - ok
10:22:45.0176 3852 LanmanServer (1925e63c91cf1610ae41bfd539062079) C:\Windows\system32\srvsvc.dll
10:22:45.0269 3852 LanmanServer - ok
10:22:45.0410 3852 LanmanWorkstation (2ae2e1628c5d3f1c0a46a67c9fa1df15) C:\Windows\System32\wkssvc.dll
10:22:45.0644 3852 LanmanWorkstation - ok
10:22:46.0191 3852 LightScribeService (2238b91ac1a12cc6cc4c4fed41258b2a) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
10:22:46.0269 3852 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
10:22:46.0269 3852 LightScribeService - detected UnsignedFile.Multi.Generic (1)
10:22:46.0503 3852 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
10:22:46.0581 3852 lltdio - ok
10:22:46.0691 3852 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
10:22:46.0816 3852 lltdsvc - ok
10:22:46.0862 3852 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
10:22:46.0972 3852 lmhosts - ok
10:22:47.0003 3852 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
10:22:47.0034 3852 LSI_FC - ok
10:22:47.0065 3852 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
10:22:47.0081 3852 LSI_SAS - ok
10:22:47.0096 3852 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
10:22:47.0112 3852 LSI_SCSI - ok
10:22:47.0143 3852 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
10:22:47.0190 3852 luafv - ok
10:22:47.0237 3852 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
10:22:47.0299 3852 Mcx2Svc - ok
10:22:47.0377 3852 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
10:22:47.0408 3852 megasas - ok
10:22:47.0486 3852 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
10:22:47.0596 3852 MegaSR - ok
10:22:47.0658 3852 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
10:22:47.0689 3852 MMCSS - ok
10:22:47.0720 3852 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
10:22:47.0783 3852 Modem - ok
10:22:47.0845 3852 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
10:22:47.0876 3852 monitor - ok
10:22:47.0923 3852 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
10:22:47.0939 3852 mouclass - ok
10:22:47.0970 3852 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
10:22:48.0017 3852 mouhid - ok
10:22:48.0032 3852 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
10:22:48.0095 3852 MountMgr - ok
10:22:48.0204 3852 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
10:22:48.0329 3852 MozillaMaintenance - ok
10:22:48.0391 3852 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
10:22:48.0407 3852 mpio - ok
10:22:48.0469 3852 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
10:22:48.0516 3852 mpsdrv - ok
10:22:48.0641 3852 MpsSvc (d1639ba315b0d79dec49a4b0e1fb929b) C:\Windows\system32\mpssvc.dll
10:22:48.0719 3852 MpsSvc - ok
10:22:48.0750 3852 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
10:22:48.0766 3852 Mraid35x - ok
10:22:48.0797 3852 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
10:22:48.0875 3852 MRxDAV - ok
10:22:48.0984 3852 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:22:49.0015 3852 mrxsmb - ok
10:22:49.0109 3852 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:22:49.0202 3852 mrxsmb10 - ok
10:22:49.0280 3852 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:22:49.0312 3852 mrxsmb20 - ok
10:22:49.0374 3852 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
10:22:49.0390 3852 msahci - ok
10:22:49.0405 3852 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
10:22:49.0421 3852 msdsm - ok
10:22:49.0468 3852 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
10:22:49.0530 3852 MSDTC - ok
10:22:49.0561 3852 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
10:22:49.0592 3852 Msfs - ok
10:22:49.0655 3852 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
10:22:49.0670 3852 msisadrv - ok
10:22:49.0733 3852 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
10:22:49.0780 3852 MSiSCSI - ok
10:22:49.0795 3852 msiserver - ok
10:22:49.0826 3852 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
10:22:49.0889 3852 MSKSSRV - ok
10:22:49.0889 3852 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
10:22:49.0936 3852 MSPCLOCK - ok
10:22:49.0951 3852 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
10:22:49.0998 3852 MSPQM - ok
10:22:50.0029 3852 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
10:22:50.0045 3852 MsRPC - ok
10:22:50.0123 3852 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
10:22:50.0138 3852 mssmbios - ok
10:22:50.0185 3852 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
10:22:50.0216 3852 MSTEE - ok
10:22:50.0263 3852 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
10:22:50.0279 3852 Mup - ok
10:22:50.0404 3852 napagent (c43b25863fbd65b6d2a142af3ae320ca) C:\Windows\system32\qagentRT.dll
10:22:50.0513 3852 napagent - ok
10:22:50.0560 3852 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
10:22:50.0622 3852 NativeWifiP - ok
10:22:50.0747 3852 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
10:22:50.0809 3852 NDIS - ok
10:22:50.0872 3852 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
10:22:50.0965 3852 NdisTapi - ok
10:22:50.0996 3852 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
10:22:51.0074 3852 Ndisuio - ok
10:22:51.0277 3852 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
10:22:51.0355 3852 NdisWan - ok
10:22:51.0386 3852 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
10:22:51.0449 3852 NDProxy - ok
10:22:51.0511 3852 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
10:22:51.0605 3852 NetBIOS - ok
10:22:51.0636 3852 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
10:22:51.0683 3852 netbt - ok
10:22:51.0714 3852 Netlogon (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
10:22:51.0745 3852 Netlogon - ok
10:22:51.0808 3852 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
10:22:51.0901 3852 Netman - ok
10:22:51.0948 3852 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
10:22:51.0995 3852 netprofm - ok
10:22:52.0182 3852 netr28 (b05ffe38336193a9b988b00b230c5b80) C:\Windows\system32\DRIVERS\netr28.sys
10:22:52.0244 3852 netr28 - ok
10:22:52.0338 3852 NetTcpPortSharing (0ad5876ef4e9eb77c8f93eb5b2fff386) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:22:52.0354 3852 NetTcpPortSharing - ok
10:22:52.0400 3852 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
10:22:52.0432 3852 nfrd960 - ok
10:22:52.0494 3852 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
10:22:52.0541 3852 NlaSvc - ok
10:22:52.0572 3852 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
10:22:52.0619 3852 Npfs - ok
10:22:52.0650 3852 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
10:22:52.0712 3852 nsi - ok
10:22:52.0728 3852 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
10:22:52.0775 3852 nsiproxy - ok
10:22:52.0931 3852 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
10:22:53.0024 3852 Ntfs - ok
10:22:53.0056 3852 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
10:22:53.0134 3852 ntrigdigi - ok
10:22:53.0180 3852 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
10:22:53.0227 3852 Null - ok
10:22:53.0258 3852 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
10:22:53.0290 3852 nvraid - ok
10:22:53.0305 3852 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
10:22:53.0321 3852 nvstor - ok
10:22:53.0352 3852 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
10:22:53.0368 3852 nv_agp - ok
10:22:53.0383 3852 NwlnkFlt - ok
10:22:53.0399 3852 NwlnkFwd - ok
10:22:53.0742 3852 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:22:53.0773 3852 odserv - ok
10:22:53.0820 3852 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
10:22:53.0914 3852 ohci1394 - ok
10:22:54.0070 3852 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:22:54.0101 3852 ose - ok
10:22:54.0179 3852 p2pimsvc (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
10:22:54.0756 3852 p2pimsvc - ok
10:22:54.0772 3852 p2psvc (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
10:22:54.0818 3852 p2psvc - ok
10:22:54.0850 3852 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
10:22:54.0959 3852 Parport - ok
10:22:54.0990 3852 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
10:22:55.0006 3852 partmgr - ok
10:22:55.0037 3852 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
10:22:55.0130 3852 Parvdm - ok
10:22:55.0224 3852 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
10:22:55.0286 3852 PcaSvc - ok
10:22:55.0364 3852 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
10:22:55.0427 3852 pccsmcfd - ok
10:22:55.0474 3852 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
10:22:55.0489 3852 pci - ok
10:22:55.0505 3852 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
10:22:55.0520 3852 pciide - ok
10:22:55.0567 3852 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
10:22:55.0598 3852 pcmcia - ok
10:22:55.0770 3852 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
10:22:55.0973 3852 PEAUTH - ok
10:22:56.0207 3852 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
10:22:56.0425 3852 pla - ok
10:22:56.0737 3852 PlugPlay (78f975cb6d18265be6f492edb2d7bc7b) C:\Windows\system32\umpnpmgr.dll
10:22:56.0800 3852 PlugPlay - ok
10:22:56.0893 3852 PNRPAutoReg (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
10:22:56.0987 3852 PNRPAutoReg - ok
10:22:57.0002 3852 PNRPsvc (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
10:22:57.0065 3852 PNRPsvc - ok
10:22:57.0252 3852 PolicyAgent (47b8f37aa18b74d8c2e1bc1a7a2c8f8a) C:\Windows\System32\ipsecsvc.dll
10:22:57.0424 3852 PolicyAgent - ok
10:22:57.0814 3852 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
10:22:57.0954 3852 PptpMiniport - ok
10:22:58.0016 3852 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
10:22:58.0063 3852 Processor - ok
10:22:58.0126 3852 ProfSvc (b627e4fc8585e8843c5905d4d3587a90) C:\Windows\system32\profsvc.dll
10:22:58.0204 3852 ProfSvc - ok
10:22:58.0250 3852 ProtectedStorage (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
10:22:58.0266 3852 ProtectedStorage - ok
10:22:58.0328 3852 ProtexisLicensing (f115af58abe5605d7d709cbfbd83f418) C:\Windows\system32\PSIService.exe
10:22:58.0344 3852 ProtexisLicensing - ok
10:22:58.0391 3852 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
10:22:58.0531 3852 PSched - ok
10:22:58.0640 3852 PxHelp20 (d970470f8f39470bdae94d313a1ccdce) C:\Windows\system32\Drivers\PxHelp20.sys
10:22:58.0640 3852 PxHelp20 - ok
10:22:58.0921 3852 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
10:22:59.0093 3852 ql2300 - ok
10:22:59.0155 3852 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
10:22:59.0171 3852 ql40xx - ok
10:22:59.0218 3852 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
10:22:59.0296 3852 QWAVE - ok
10:22:59.0358 3852 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
10:22:59.0420 3852 QWAVEdrv - ok
10:22:59.0436 3852 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
10:22:59.0498 3852 RasAcd - ok
10:22:59.0545 3852 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
10:22:59.0623 3852 RasAuto - ok
10:22:59.0686 3852 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:22:59.0732 3852 Rasl2tp - ok
10:22:59.0810 3852 RasMan (6e7c284fc5c4ec07ad164d93810385a6) C:\Windows\System32\rasmans.dll
10:22:59.0888 3852 RasMan - ok
10:22:59.0920 3852 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
10:22:59.0982 3852 RasPppoe - ok
10:23:00.0060 3852 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
10:23:00.0310 3852 RasSstp - ok
10:23:00.0388 3852 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
10:23:00.0497 3852 rdbss - ok
10:23:00.0528 3852 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:23:00.0918 3852 RDPCDD - ok
10:23:00.0996 3852 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
10:23:01.0058 3852 rdpdr - ok
10:23:01.0074 3852 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
10:23:01.0121 3852 RDPENCDD - ok
10:23:01.0183 3852 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
10:23:01.0246 3852 RDPWD - ok
10:23:01.0370 3852 regi (001b4278407f4303efc902a2b16f2453) C:\Windows\system32\drivers\regi.sys
10:23:01.0386 3852 regi - ok
10:23:01.0511 3852 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
10:23:01.0558 3852 RemoteAccess - ok
10:23:01.0636 3852 RemoteRegistry (cc4e32400f3c7253400cf8f3f3a0b676) C:\Windows\system32\regsvc.dll
10:23:01.0745 3852 RemoteRegistry - ok
10:23:01.0776 3852 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
10:23:01.0807 3852 ROOTMODEM - ok
10:23:01.0870 3852 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
10:23:01.0885 3852 RpcLocator - ok
10:23:01.0963 3852 RpcSs (301ae00e12408650baddc04dbc832830) C:\Windows\system32\rpcss.dll
10:23:02.0010 3852 RpcSs - ok
10:23:02.0041 3852 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
10:23:02.0072 3852 rspndr - ok
10:23:02.0166 3852 RTL8169 (b8b159fa669c6386a458fcd468ebb1e6) C:\Windows\system32\DRIVERS\Rtlh86.sys
10:23:02.0213 3852 RTL8169 - ok
10:23:02.0260 3852 RTSTOR (4f31cfdebd0a5bc27d45e7ebfefaaf6f) C:\Windows\system32\drivers\RTSTOR.SYS
10:23:02.0369 3852 RTSTOR - ok
10:23:02.0447 3852 SamSs (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
10:23:02.0462 3852 SamSs - ok
10:23:02.0556 3852 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
10:23:02.0572 3852 sbp2port - ok
10:23:02.0618 3852 SBRE - ok
10:23:02.0712 3852 SCardSvr (11387e32642269c7e62e8b52c060b3c6) C:\Windows\System32\SCardSvr.dll
10:23:02.0759 3852 SCardSvr - ok
10:23:02.0868 3852 Schedule (7b587b8a6d4a99f79d2902d0385f29bd) C:\Windows\system32\schedsvc.dll
10:23:02.0946 3852 Schedule - ok
10:23:03.0164 3852 SCPolicySvc (87c2d0377b23e2d8a41093c2f5fb1a5b) C:\Windows\System32\certprop.dll
10:23:03.0227 3852 SCPolicySvc - ok
10:23:03.0336 3852 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
10:23:03.0461 3852 SDRSVC - ok
10:23:03.0492 3852 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
10:23:03.0570 3852 secdrv - ok
10:23:03.0632 3852 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
10:23:03.0726 3852 seclogon - ok
10:23:03.0866 3852 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
10:23:03.0929 3852 SENS - ok
10:23:03.0991 3852 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\DRIVERS\serenum.sys
10:23:04.0069 3852 Serenum - ok
10:23:04.0132 3852 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
10:23:04.0225 3852 Serial - ok
10:23:04.0256 3852 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
10:23:04.0288 3852 sermouse - ok
10:23:04.0631 3852 ServiceLayer (f31e9531af225ca25350d5e87e999b31) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
10:23:04.0818 3852 ServiceLayer - ok
10:23:04.0880 3852 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
10:23:04.0897 3852 SessionEnv - ok
10:23:04.0944 3852 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
10:23:05.0131 3852 sffdisk - ok
10:23:05.0178 3852 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
10:23:05.0209 3852 sffp_mmc - ok
10:23:05.0287 3852 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
10:23:05.0318 3852 sffp_sd - ok
10:23:05.0334 3852 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
10:23:05.0443 3852 sfloppy - ok
10:23:05.0755 3852 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
10:23:05.0880 3852 SharedAccess - ok
10:23:05.0927 3852 ShellHWDetection (1e3fdb80e40a3ce645f229dfbdfb7694) C:\Windows\System32\shsvcs.dll
10:23:06.0067 3852 ShellHWDetection - ok
10:23:06.0161 3852 Si3531 (4346d5bbdde7756d8614a3f193d60984) C:\Windows\system32\DRIVERS\Si3531.sys
10:23:06.0176 3852 Si3531 - ok
10:23:06.0192 3852 SiFilter (e853c341bbf4ac0007a8db0858dbb09d) C:\Windows\system32\DRIVERS\SiWinAcc.sys
10:23:06.0207 3852 SiFilter - ok
10:23:06.0332 3852 SiRemFil (d80e6f142eb4963e82a8537dd745f51b) C:\Windows\system32\DRIVERS\SiRemFil.sys
10:23:06.0348 3852 SiRemFil - ok
10:23:06.0426 3852 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
10:23:06.0441 3852 sisagp - ok
10:23:06.0473 3852 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
10:23:06.0488 3852 SiSRaid2 - ok
10:23:06.0504 3852 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
10:23:06.0519 3852 SiSRaid4 - ok
10:23:07.0393 3852 slsvc (0ba91e1358ad25236863039bb2609a2e) C:\Windows\system32\SLsvc.exe
10:23:07.0799 3852 slsvc - ok
10:23:07.0986 3852 SLUINotify (7c6dc44ca0bfa6291629ab764200d1d4) C:\Windows\system32\SLUINotify.dll
10:23:08.0033 3852 SLUINotify - ok
10:23:08.0095 3852 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
10:23:08.0157 3852 Smb - ok
10:23:08.0189 3852 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
10:23:08.0204 3852 SNMPTRAP - ok
10:23:08.0220 3852 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
10:23:08.0235 3852 spldr - ok
10:23:08.0298 3852 Spooler (3665f79026a3f91fbca63f2c65a09b19) C:\Windows\System32\spoolsv.exe
10:23:08.0345 3852 Spooler - ok
10:23:08.0407 3852 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
10:23:08.0485 3852 srv - ok
10:23:08.0516 3852 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
10:23:08.0563 3852 srv2 - ok
10:23:08.0953 3852 srvcPVR (71db619f4068d7c70d447d73617cdfac) C:\Program Files\Sceneo\AbsolutTV\Services\PVR\PVRService.exe
10:23:09.0093 3852 srvcPVR ( UnsignedFile.Multi.Generic ) - warning
10:23:09.0093 3852 srvcPVR - detected UnsignedFile.Multi.Generic (1)
10:23:09.0296 3852 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
10:23:09.0374 3852 srvnet - ok
10:23:09.0437 3852 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\Windows\system32\DRIVERS\sscdbus.sys
10:23:09.0483 3852 sscdbus - ok
10:23:09.0515 3852 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\Windows\system32\DRIVERS\sscdmdfl.sys
10:23:09.0608 3852 sscdmdfl - ok
10:23:09.0639 3852 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\Windows\system32\DRIVERS\sscdmdm.sys
10:23:09.0686 3852 sscdmdm - ok
10:23:09.0749 3852 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
10:23:09.0858 3852 SSDPSRV - ok
10:23:09.0905 3852 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
10:23:09.0920 3852 ssmdrv - ok
10:23:09.0999 3852 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
10:23:10.0155 3852 SstpSvc - ok
10:23:10.0483 3852 StarOpen (306521935042fc0a6988d528643619b3) C:\Windows\system32\drivers\StarOpen.sys
10:23:10.0530 3852 StarOpen ( UnsignedFile.Multi.Generic ) - warning
10:23:10.0530 3852 StarOpen - detected UnsignedFile.Multi.Generic (1)
10:23:10.0623 3852 stisvc (7dd08a597bc56051f320da0baf69e389) C:\Windows\System32\wiaservc.dll
10:23:10.0873 3852 stisvc - ok
10:23:10.0951 3852 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
10:23:10.0966 3852 swenum - ok
10:23:11.0200 3852 swprv (b36c7cdb86f7f7a8e884479219766950) C:\Windows\System32\swprv.dll
10:23:11.0278 3852 swprv - ok
10:23:11.0356 3852 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
10:23:11.0372 3852 Symc8xx - ok
10:23:11.0419 3852 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
10:23:11.0434 3852 Sym_hi - ok
10:23:11.0544 3852 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
10:23:11.0575 3852 Sym_u3 - ok
10:23:11.0778 3852 SynTP (4c6de67ebb6c487f7690a373fcfde279) C:\Windows\system32\DRIVERS\SynTP.sys
10:23:11.0809 3852 SynTP - ok
10:23:11.0918 3852 SysMain (8710a92d0024b03b5fb9540df1f71f1d) C:\Windows\system32\sysmain.dll
10:23:11.0980 3852 SysMain - ok
10:23:12.0105 3852 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
10:23:12.0183 3852 TabletInputService - ok
10:23:12.0230 3852 taphss (0c3b2a9c4bd2dd9a6c2e4084314dd719) C:\Windows\system32\DRIVERS\taphss.sys
10:23:12.0246 3852 taphss - ok
10:23:12.0308 3852 TapiSrv (680916bb09ee0f3a6aca7c274b0d633f) C:\Windows\System32\tapisrv.dll
10:23:12.0402 3852 TapiSrv - ok
10:23:12.0495 3852 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
10:23:12.0526 3852 TBS - ok
10:23:12.0698 3852 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys
10:23:12.0823 3852 Tcpip - ok
10:23:12.0838 3852 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys
10:23:12.0932 3852 Tcpip6 - ok
10:23:13.0011 3852 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
10:23:13.0167 3852 tcpipreg - ok
10:23:13.0245 3852 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
10:23:13.0276 3852 TDPIPE - ok
10:23:13.0307 3852 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
10:23:13.0339 3852 TDTCP - ok
10:23:13.0354 3852 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
10:23:13.0401 3852 tdx - ok
10:23:13.0432 3852 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
10:23:13.0448 3852 TermDD - ok
10:23:13.0510 3852 TermService (d605031e225aaccbceb5b76a4f1603a6) C:\Windows\System32\termsrv.dll
10:23:13.0666 3852 TermService - ok
10:23:13.0900 3852 Themes (1e3fdb80e40a3ce645f229dfbdfb7694) C:\Windows\system32\shsvcs.dll
10:23:13.0916 3852 Themes - ok
10:23:14.0042 3852 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
10:23:14.0088 3852 THREADORDER - ok
10:23:14.0135 3852 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
10:23:14.0213 3852 TrkWks - ok
10:23:14.0385 3852 TrustedInstaller (16613a1bad034d4ecf957af18b7c2ff5) C:\Windows\servicing\TrustedInstaller.exe
10:23:14.0432 3852 TrustedInstaller - ok
10:23:14.0541 3852 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:23:14.0650 3852 tssecsrv - ok
10:23:14.0790 3852 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
10:23:14.0822 3852 tunmp - ok
10:23:14.0884 3852 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
10:23:14.0946 3852 tunnel - ok
10:23:15.0088 3852 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
10:23:15.0103 3852 uagp35 - ok
10:23:15.0135 3852 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
10:23:15.0213 3852 udfs - ok
10:23:15.0306 3852 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
10:23:15.0400 3852 UI0Detect - ok
10:23:15.0509 3852 UleadBurningHelper (be788a747457e6916586c410ec0111e7) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
10:23:15.0525 3852 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - warning
10:23:15.0525 3852 UleadBurningHelper - detected UnsignedFile.Multi.Generic (1)
10:23:15.0603 3852 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
10:23:15.0618 3852 uliagpkx - ok
10:23:15.0727 3852 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
10:23:15.0774 3852 uliahci - ok
10:23:15.0852 3852 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
10:23:15.0883 3852 UlSata - ok
10:23:15.0961 3852 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
10:23:15.0977 3852 ulsata2 - ok
10:23:16.0024 3852 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
10:23:16.0072 3852 umbus - ok
10:23:16.0181 3852 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
10:23:16.0243 3852 upnphost - ok
10:23:16.0321 3852 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
10:23:16.0368 3852 USBAAPL - ok
10:23:16.0446 3852 usbaudio (292a25bb75a568ae2c67169ba2c6365a) C:\Windows\system32\drivers\usbaudio.sys
10:23:16.0477 3852 usbaudio - ok
10:23:16.0571 3852 usbbus (9419faac6552a51542dbba02971c841c) C:\Windows\system32\DRIVERS\lgusbbus.sys
10:23:16.0618 3852 usbbus - ok
10:23:16.0680 3852 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
10:23:16.0727 3852 usbccgp - ok
10:23:16.0836 3852 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
10:23:16.0992 3852 usbcir - ok
10:23:17.0071 3852 UsbDiag (c0a466fa4ffec464320e159bc1bbdc0c) C:\Windows\system32\DRIVERS\lgusbdiag.sys
10:23:17.0087 3852 UsbDiag - ok
10:23:17.0180 3852 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
10:23:17.0227 3852 usbehci - ok
10:23:17.0305 3852 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
10:23:17.0383 3852 usbhub - ok
10:23:17.0445 3852 USBModem (f74a54774a9b0afeb3c40adec68aa600) C:\Windows\system32\DRIVERS\lgusbmodem.sys
10:23:17.0461 3852 USBModem - ok
10:23:17.0539 3852 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
10:23:17.0617 3852 usbohci - ok
10:23:17.0664 3852 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
10:23:17.0726 3852 usbprint - ok
10:23:17.0804 3852 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
10:23:18.0007 3852 usbscan - ok
10:23:18.0054 3852 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:23:18.0133 3852 USBSTOR - ok
10:23:18.0211 3852 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
10:23:18.0242 3852 usbuhci - ok
10:23:18.0304 3852 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
10:23:18.0398 3852 usbvideo - ok
10:23:18.0429 3852 uxddrv - ok
10:23:18.0460 3852 UxSms (032a0acc3909ae7215d524e29d536797) C:\Windows\System32\uxsms.dll
10:23:18.0538 3852 UxSms - ok
10:23:18.0585 3852 VComm - ok
10:23:18.0632 3852 VcommMgr - ok
10:23:18.0757 3852 vds (b13bc395b9d6116628f5af47e0802ac4) C:\Windows\System32\vds.exe
10:23:18.0835 3852 vds - ok
10:23:18.0928 3852 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
10:23:19.0006 3852 vga - ok
10:23:19.0038 3852 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
10:23:19.0084 3852 VgaSave - ok
10:23:19.0147 3852 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
10:23:19.0178 3852 viaagp - ok
10:23:19.0194 3852 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
10:23:19.0240 3852 ViaC7 - ok
10:23:19.0287 3852 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
10:23:19.0303 3852 viaide - ok
10:23:19.0381 3852 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
10:23:19.0396 3852 volmgr - ok
10:23:19.0428 3852 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
10:23:19.0459 3852 volmgrx - ok
10:23:19.0490 3852 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
10:23:19.0521 3852 volsnap - ok
10:23:19.0615 3852 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
10:23:19.0646 3852 vsmraid - ok
10:23:19.0771 3852 VSS (d5fb73d19c46ade183f968e13f186b23) C:\Windows\system32\vssvc.exe
10:23:19.0958 3852 VSS - ok
10:23:20.0020 3852 W32Time (1cf9206966a8458cda9a8b20df8ab7d3) C:\Windows\system32\w32time.dll
10:23:20.0083 3852 W32Time - ok
10:23:20.0332 3852 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
10:23:20.0410 3852 WacomPen - ok
10:23:20.0442 3852 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
10:23:20.0535 3852 Wanarp - ok
10:23:20.0551 3852 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
10:23:20.0598 3852 Wanarpv6 - ok
10:23:20.0676 3852 wcncsvc (f3a5c2e1a6533192b070d06ecf6be796) C:\Windows\System32\wcncsvc.dll
10:23:20.0722 3852 wcncsvc - ok
10:23:20.0800 3852 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
10:23:20.0832 3852 WcsPlugInService - ok
10:23:20.0941 3852 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
10:23:20.0988 3852 Wd - ok
10:23:21.0066 3852 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
10:23:21.0097 3852 Wdf01000 - ok
10:23:21.0144 3852 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
10:23:21.0175 3852 WdiServiceHost - ok
10:23:21.0190 3852 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
10:23:21.0237 3852 WdiSystemHost - ok
10:23:21.0346 3852 WebClient (cf9a5f41789b642db967021de06a2713) C:\Windows\System32\webclnt.dll
10:23:21.0440 3852 WebClient - ok
10:23:21.0471 3852 Wecsvc (905214925a88311fce52f66153de7610) C:\Windows\system32\wecsvc.dll
10:23:21.0565 3852 Wecsvc - ok
10:23:21.0612 3852 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
10:23:21.0643 3852 wercplsupport - ok
10:23:21.0705 3852 WerSvc (4081288554294f144e5a7d4ee20e3ce6) C:\Windows\System32\WerSvc.dll
10:23:21.0736 3852 WerSvc - ok
10:23:21.0908 3852 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
10:23:21.0924 3852 WinDefend - ok
10:23:21.0939 3852 WinHttpAutoProxySvc - ok
10:23:22.0095 3852 Winmgmt (00b79a7c984678f24cf052e5beb3a2f5) C:\Windows\system32\wbem\WMIsvc.dll
10:23:22.0173 3852 Winmgmt - ok
10:23:22.0376 3852 WinRM (20fc93fdc916843cfdfcaa7a1b0db16f) C:\Windows\system32\WsmSvc.dll
10:23:22.0516 3852 WinRM - ok
10:23:22.0579 3852 WisLMSvc (f0fe933e27f1e2a83ff322a0693a4724) C:\Program Files\Launch Manager\WisLMSvc.exe
10:23:22.0579 3852 WisLMSvc ( UnsignedFile.Multi.Generic ) - warning
10:23:22.0579 3852 WisLMSvc - detected UnsignedFile.Multi.Generic (1)
10:23:22.0750 3852 Wlansvc (275f4346e569df56cfb95243bd6f6ff0) C:\Windows\System32\wlansvc.dll
10:23:22.0891 3852 Wlansvc - ok
10:23:22.0969 3852 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
10:23:23.0016 3852 WmiAcpi - ok
10:23:23.0156 3852 wmiApSrv (aba4cf9f856d9a3a25f4ddd7690a6e9d) C:\Windows\system32\wbem\WmiApSrv.exe
10:23:23.0203 3852 wmiApSrv - ok
10:23:23.0468 3852 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
10:23:23.0593 3852 WMPNetworkSvc - ok
10:23:23.0655 3852 WPCSvc (5d94cd167751294962ba238d82dd1bb8) C:\Windows\System32\wpcsvc.dll
10:23:23.0764 3852 WPCSvc - ok
10:23:23.0811 3852 WPDBusEnum (396d406292b0cd26e3504ffe82784702) C:\Windows\system32\wpdbusenum.dll
10:23:23.0842 3852 WPDBusEnum - ok
10:23:23.0967 3852 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
10:23:24.0014 3852 WpdUsb - ok
10:23:24.0092 3852 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
10:23:24.0123 3852 ws2ifsl - ok
10:23:24.0186 3852 wscsvc (683dd16b590372f2c9661d277f35e49c) C:\Windows\System32\wscsvc.dll
10:23:24.0201 3852 wscsvc - ok
10:23:24.0217 3852 WSearch - ok
10:23:24.0747 3852 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
10:23:25.0480 3852 wuauserv - ok
10:23:25.0964 3852 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
10:23:26.0042 3852 WudfPf - ok
10:23:26.0104 3852 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:23:26.0151 3852 WUDFRd - ok
10:23:26.0214 3852 wudfsvc (2c0206ff8d2c75ac027d1096fa2fafda) C:\Windows\System32\WUDFSvc.dll
10:23:26.0245 3852 wudfsvc - ok
10:23:26.0604 3852 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} (74ec37b9eaf9fca015b933a526825c7a) C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
10:23:26.0635 3852 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
10:23:26.0697 3852 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
10:23:27.0181 3852 \Device\Harddisk0\DR0 - ok
10:23:27.0228 3852 Boot (0x1200) (5ac9ef36ff0143229eef44e02cb85d83) \Device\Harddisk0\DR0\Partition0
10:23:27.0228 3852 \Device\Harddisk0\DR0\Partition0 - ok
10:23:27.0259 3852 Boot (0x1200) (7d0413ec3773fac71aadcb647a732deb) \Device\Harddisk0\DR0\Partition1
10:23:27.0259 3852 \Device\Harddisk0\DR0\Partition1 - ok
10:23:27.0259 3852 Boot (0x1200) (df8898735c02d3bdf61a52dbfa983734) \Device\Harddisk0\DR0\Partition2
10:23:27.0259 3852 \Device\Harddisk0\DR0\Partition2 - ok
10:23:27.0274 3852 ============================================================
10:23:27.0274 3852 Scan finished
10:23:27.0274 3852 ============================================================
10:23:27.0290 6140 Detected object count: 16
10:23:27.0290 6140 Actual detected object count: 16
10:23:56.0776 6140 cbVSCService ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0776 6140 cbVSCService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0776 6140 cpuz132 ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0776 6140 cpuz132 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0792 6140 Droppix Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0792 6140 Droppix Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0792 6140 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0792 6140 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0792 6140 Hotkey ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0792 6140 Hotkey ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0792 6140 hshld ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0792 6140 hshld ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0792 6140 HssSrv ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0792 6140 HssSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0807 6140 HssTrayService ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0807 6140 HssTrayService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0807 6140 IJPLMSVC ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0807 6140 IJPLMSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0807 6140 KMWDFilter ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0807 6140 KMWDFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0823 6140 KMWDSERVICE ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0823 6140 KMWDSERVICE ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0823 6140 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0823 6140 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0823 6140 srvcPVR ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0823 6140 srvcPVR ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0823 6140 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0823 6140 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0838 6140 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0838 6140 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:23:56.0838 6140 WisLMSvc ( UnsignedFile.Multi.Generic ) - skipped by user
10:23:56.0838 6140 WisLMSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:26:07.0453 0940 ============================================================
10:26:07.0453 0940 Scan started
10:26:07.0453 0940 Mode: Manual; SigCheck; TDLFS;
10:26:07.0453 0940 ============================================================
10:26:14.0910 0940 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
10:26:14.0972 0940 ACPI - ok
10:26:15.0050 0940 adfs (6d7f09cd92a9fef3a8efce66231fdd79) C:\Windows\system32\drivers\adfs.sys
10:26:15.0082 0940 adfs - ok
10:26:15.0409 0940 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:26:15.0440 0940 AdobeFlashPlayerUpdateSvc - ok
10:26:15.0581 0940 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
10:26:15.0628 0940 adp94xx - ok
10:26:15.0721 0940 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
10:26:15.0752 0940 adpahci - ok
10:26:15.0768 0940 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
10:26:15.0799 0940 adpu160m - ok
10:26:15.0846 0940 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
10:26:15.0877 0940 adpu320 - ok
10:26:15.0971 0940 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
10:26:16.0018 0940 AeLookupSvc - ok
10:26:16.0096 0940 Afc (fe3ea6e9afc1a78e6edca121e006afb7) C:\Windows\system32\drivers\Afc.sys
10:26:16.0111 0940 Afc - ok
10:26:16.0283 0940 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
10:26:16.0298 0940 AFD - ok
10:26:16.0735 0940 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
10:26:16.0782 0940 AgereSoftModem - ok
10:26:16.0891 0940 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
10:26:16.0907 0940 agp440 - ok
10:26:16.0969 0940 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
10:26:16.0985 0940 aic78xx - ok
10:26:17.0047 0940 Akamai - ok
10:26:17.0156 0940 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
10:26:17.0188 0940 ALG - ok
10:26:17.0234 0940 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
10:26:17.0250 0940 aliide - ok
10:26:17.0297 0940 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
10:26:17.0312 0940 amdagp - ok
10:26:17.0344 0940 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
10:26:17.0359 0940 amdide - ok
10:26:17.0390 0940 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
10:26:17.0422 0940 AmdK7 - ok
10:26:17.0453 0940 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
10:26:17.0484 0940 AmdK8 - ok
10:26:17.0640 0940 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
10:26:17.0656 0940 Appinfo - ok
10:26:17.0827 0940 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:26:17.0843 0940 Apple Mobile Device - ok
10:26:17.0952 0940 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
10:26:17.0952 0940 arc - ok
10:26:18.0061 0940 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
10:26:18.0077 0940 arcsas - ok
10:26:18.0170 0940 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
10:26:18.0186 0940 aspnet_state - ok
10:26:18.0280 0940 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
10:26:18.0326 0940 AsyncMac - ok
10:26:18.0373 0940 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
10:26:18.0373 0940 atapi - ok
10:26:18.0467 0940 AudioEndpointBuilder (42076e29aafa0830a2c5d4e310f58dd1) C:\Windows\System32\Audiosrv.dll
10:26:18.0514 0940 AudioEndpointBuilder - ok
10:26:18.0529 0940 Audiosrv (42076e29aafa0830a2c5d4e310f58dd1) C:\Windows\System32\Audiosrv.dll
10:26:18.0560 0940 Audiosrv - ok
10:26:18.0685 0940 AVP (2718dc27571bd1e37813f5759d2dc118) C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
10:26:18.0701 0940 AVP - ok
10:26:18.0748 0940 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
10:26:18.0779 0940 Beep - ok
10:26:18.0857 0940 BFE (8582e233c346aefe759833e8a30dd697) C:\Windows\System32\bfe.dll
10:26:18.0935 0940 BFE - ok
10:26:19.0060 0940 BITS (02ed7b4dbc2a3232a389106da7515c3d) C:\Windows\System32\qmgr.dll
10:26:19.0106 0940 BITS - ok
10:26:19.0247 0940 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
10:26:19.0278 0940 blbdrive - ok
10:26:19.0294 0940 BlueletAudio - ok
10:26:19.0309 0940 BlueletSCOAudio - ok
10:26:19.0481 0940 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
10:26:19.0496 0940 Bonjour Service - ok
10:26:19.0574 0940 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
10:26:19.0590 0940 bowser - ok
10:26:19.0668 0940 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
10:26:19.0684 0940 BrFiltLo - ok
10:26:19.0886 0940 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
10:26:19.0964 0940 BrFiltUp - ok
10:26:20.0089 0940 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
10:26:20.0120 0940 Browser - ok
10:26:20.0214 0940 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
10:26:20.0261 0940 Brserid - ok
10:26:20.0308 0940 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
10:26:20.0370 0940 BrSerWdm - ok
10:26:20.0417 0940 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
10:26:20.0464 0940 BrUsbMdm - ok
10:26:20.0495 0940 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
10:26:20.0542 0940 BrUsbSer - ok
10:26:20.0542 0940 BT - ok
10:26:20.0557 0940 Btcsrusb - ok
10:26:20.0573 0940 BTHidEnum - ok
10:26:20.0573 0940 BTHidMgr - ok
10:26:20.0620 0940 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
10:26:20.0666 0940 BTHMODEM - ok
10:26:20.0744 0940 cbVSCService (ed5411a69c5bac78d245c893af64352a) C:\Program Files\Cobian Backup 10\cbVSCService.exe
10:26:20.0776 0940 cbVSCService ( UnsignedFile.Multi.Generic ) - warning
10:26:20.0776 0940 cbVSCService - detected UnsignedFile.Multi.Generic (1)
10:26:20.0807 0940 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
10:26:20.0838 0940 cdfs - ok
10:26:20.0885 0940 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
10:26:20.0916 0940 cdrom - ok
10:26:20.0978 0940 CertPropSvc (87c2d0377b23e2d8a41093c2f5fb1a5b) C:\Windows\System32\certprop.dll
10:26:21.0010 0940 CertPropSvc - ok
10:26:21.0088 0940 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
10:26:21.0119 0940 circlass - ok
10:26:21.0212 0940 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
10:26:21.0244 0940 CLFS - ok
10:26:21.0462 0940 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:26:21.0478 0940 clr_optimization_v2.0.50727_32 - ok
10:26:21.0602 0940 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
10:26:21.0649 0940 CmBatt - ok
10:26:21.0696 0940 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
10:26:21.0712 0940 cmdide - ok
10:26:21.0758 0940 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
10:26:21.0774 0940 Compbatt - ok
10:26:21.0790 0940 COMSysApp - ok
10:26:21.0852 0940 cpuz132 (097a0a4899b759a4f032bd464963b4be) C:\Windows\system32\drivers\cpuz132_x32.sys
10:26:21.0852 0940 cpuz132 ( UnsignedFile.Multi.Generic ) - warning
10:26:21.0852 0940 cpuz132 - detected UnsignedFile.Multi.Generic (1)
10:26:21.0914 0940 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
10:26:21.0930 0940 crcdisk - ok
10:26:22.0008 0940 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
10:26:22.0070 0940 Crusoe - ok
10:26:22.0148 0940 CryptSvc (6de363f9f99334514c46aec02d3e3678) C:\Windows\system32\cryptsvc.dll
10:26:22.0195 0940 CryptSvc - ok
10:26:22.0492 0940 DcomLaunch (301ae00e12408650baddc04dbc832830) C:\Windows\system32\rpcss.dll
10:26:22.0554 0940 DcomLaunch - ok
10:26:22.0632 0940 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
10:26:22.0663 0940 DfsC - ok
10:26:23.0303 0940 DFSR (fa3463f25f9cc9c3bcf1e7912feff099) C:\Windows\system32\DFSR.exe
10:26:23.0381 0940 DFSR - ok
10:26:23.0693 0940 Dhcp (43a988a9c10333476cb5fb667cbd629d) C:\Windows\System32\dhcpcsvc.dll
10:26:23.0740 0940 Dhcp - ok
10:26:24.0566 0940 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
10:26:24.0582 0940 disk - ok
10:26:24.0660 0940 Dnscache (4805d9a6d281c7a7defd9094dec6af7d) C:\Windows\System32\dnsrslvr.dll
10:26:24.0676 0940 Dnscache - ok
10:26:25.0440 0940 dot3svc (5af620a08c614e24206b79e8153cf1a8) C:\Windows\System32\dot3svc.dll
10:26:25.0487 0940 dot3svc - ok
10:26:25.0565 0940 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
10:26:25.0596 0940 DPS - ok
10:26:25.0830 0940 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
10:26:25.0892 0940 drmkaud - ok
10:26:26.0111 0940 Droppix Service (5028eced761f2d10d3c02b849f57835e) C:\Program Files\Common Files\Droppix\DxService.exe
10:26:26.0126 0940 Droppix Service ( UnsignedFile.Multi.Generic ) - warning
10:26:26.0126 0940 Droppix Service - detected UnsignedFile.Multi.Generic (1)
10:26:26.0251 0940 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
10:26:26.0298 0940 DXGKrnl - ok
10:26:26.0485 0940 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
10:26:26.0516 0940 E1G60 - ok
10:26:26.0563 0940 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
10:26:26.0579 0940 EapHost - ok
10:26:26.0657 0940 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
10:26:26.0672 0940 Ecache - ok
10:26:27.0374 0940 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
10:26:27.0406 0940 ehRecvr - ok
10:26:27.0452 0940 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
10:26:27.0468 0940 ehSched - ok
10:26:27.0593 0940 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
10:26:27.0608 0940 ehstart - ok
10:26:28.0560 0940 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
10:26:28.0576 0940 elxstor - ok
10:26:29.0044 0940 EMDMgmt (70b1a86df0c8ead17d2bc332edae2c7c) C:\Windows\system32\emdmgmt.dll
10:26:29.0090 0940 EMDMgmt - ok
10:26:29.0122 0940 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
10:26:29.0184 0940 ErrDev - ok
10:26:29.0418 0940 EventSystem (3cb3343d720168b575133a0a20dc2465) C:\Windows\system32\es.dll
10:26:29.0449 0940 EventSystem - ok
10:26:29.0543 0940 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
10:26:29.0574 0940 exfat - ok
10:26:29.0621 0940 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
10:26:29.0652 0940 fastfat - ok
10:26:29.0933 0940 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
10:26:29.0995 0940 fdc - ok
10:26:30.0136 0940 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
10:26:30.0276 0940 fdPHost - ok
10:26:30.0307 0940 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
10:26:30.0432 0940 FDResPub - ok
10:26:30.0494 0940 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
10:26:30.0526 0940 FileInfo - ok
10:26:30.0822 0940 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
10:26:30.0884 0940 Filetrace - ok
10:26:31.0836 0940 FirebirdServerMAGIXInstance (167d24a045499ebef438f231976158df) C:\Program Files\ALDI Foto Service Nord\Common\Database\bin\fbserver.exe
10:26:31.0976 0940 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning
10:26:31.0976 0940 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1)
10:26:32.0257 0940 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:26:32.0304 0940 FLEXnet Licensing Service - ok
10:26:33.0084 0940 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
10:26:33.0115 0940 flpydisk - ok
10:26:33.0146 0940 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
10:26:33.0162 0940 FltMgr - ok
10:26:33.0583 0940 FontCache3.0.0.0 (c9be08664611ddaf98e2331e9288b00b) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
10:26:33.0599 0940 FontCache3.0.0.0 - ok
10:26:33.0646 0940 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
10:26:33.0661 0940 Fs_Rec - ok
10:26:33.0786 0940 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
10:26:33.0802 0940 gagp30kx - ok
10:26:33.0926 0940 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:26:33.0942 0940 GEARAspiWDM - ok
10:26:34.0519 0940 gpsvc (d9f1113d9401185245573350712f92fc) C:\Windows\System32\gpsvc.dll
10:26:34.0597 0940 gpsvc - ok
10:26:35.0159 0940 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
10:26:35.0174 0940 gupdate - ok
10:26:35.0174 0940 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
10:26:35.0190 0940 gupdatem - ok
10:26:35.0377 0940 gusvc (408ddd80eede47175f6844817b90213e) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
10:26:35.0393 0940 gusvc - ok
10:26:35.0471 0940 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
10:26:35.0533 0940 HdAudAddService - ok
10:26:35.0658 0940 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:26:35.0689 0940 HDAudBus - ok
10:26:35.0752 0940 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
10:26:35.0814 0940 HidBth - ok
10:26:36.0048 0940 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
10:26:36.0095 0940 HidIr - ok
10:26:36.0142 0940 hidserv (8fa640195279ace21bea91396a0054fc) C:\Windows\system32\hidserv.dll
10:26:36.0188 0940 hidserv - ok
10:26:36.0469 0940 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys
10:26:36.0500 0940 HidUsb - ok
10:26:36.0703 0940 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
10:26:36.0734 0940 hkmsvc - ok
10:26:36.0766 0940 Hotkey (8b566ea71d5b76157a9cdb78f25a5731) C:\Windows\system32\drivers\Hotkey.sys
10:26:36.0781 0940 Hotkey ( UnsignedFile.Multi.Generic ) - warning
10:26:36.0781 0940 Hotkey - detected UnsignedFile.Multi.Generic (1)
10:26:36.0875 0940 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
10:26:36.0890 0940 HpCISSs - ok
10:26:37.0046 0940 hshld (8041fb828109307a522a7fa665c94449) C:\Program Files\Hotspot Shield\bin\openvpnas.exe
10:26:37.0062 0940 hshld ( UnsignedFile.Multi.Generic ) - warning
10:26:37.0062 0940 hshld - detected UnsignedFile.Multi.Generic (1)
10:26:37.0421 0940 HssDrv (4f28652ec514fa1ba473bc1a695a5c98) C:\Windows\system32\DRIVERS\HssDrv.sys
10:26:37.0436 0940 HssDrv - ok
10:26:37.0530 0940 HssSrv (882b18a2e79b3a99c0637f3ac9b28d03) C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
10:26:37.0592 0940 HssSrv ( UnsignedFile.Multi.Generic ) - warning
10:26:37.0592 0940 HssSrv - detected UnsignedFile.Multi.Generic (1)
10:26:37.0655 0940 HssTrayService (ea1d8fc49ae639c329137348fc4fe8ff) C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
10:26:37.0655 0940 HssTrayService ( UnsignedFile.Multi.Generic ) - warning
10:26:37.0655 0940 HssTrayService - detected UnsignedFile.Multi.Generic (1)
10:26:37.0670 0940 HssWd - ok
10:26:37.0733 0940 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
10:26:37.0764 0940 HTTP - ok
10:26:37.0764 0940 HWiNFO32 - ok
10:26:38.0076 0940 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
10:26:38.0092 0940 i2omp - ok
10:26:38.0466 0940 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
10:26:38.0497 0940 i8042prt - ok
10:26:38.0996 0940 IAANTMON (72b53e9c8924949dec8f3799bcba2251) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
10:26:39.0012 0940 IAANTMON - ok
10:26:39.0698 0940 iaStor (e5a0034847537eaee3c00349d5c34c5f) C:\Windows\system32\DRIVERS\iaStor.sys
10:26:42.0132 0940 iaStor - ok
10:26:42.0272 0940 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
10:26:42.0304 0940 iaStorV - ok
10:26:42.0538 0940 idsvc (7b630acaed64fef0c3e1cf255cb56686) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:26:42.0678 0940 idsvc - ok
10:26:43.0240 0940 igfx (a9221d13d8f1f772010ee293ba9baeb7) C:\Windows\system32\DRIVERS\igdkmd32.sys
10:26:43.0442 0940 igfx - ok
10:26:43.0739 0940 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
10:26:43.0754 0940 iirsp - ok
10:26:44.0144 0940 IJPLMSVC (51516252dbbfed36f70b341dba263167) C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
10:26:44.0160 0940 IJPLMSVC ( UnsignedFile.Multi.Generic ) - warning
10:26:44.0160 0940 IJPLMSVC - detected UnsignedFile.Multi.Generic (1)
10:26:44.0222 0940 IKEEXT (a3bc480a2bf8aa8e4dabd2d5dce0afac) C:\Windows\System32\ikeext.dll
10:26:44.0332 0940 IKEEXT - ok
10:26:44.0847 0940 IntcAzAudAddService (2b1b7e0cc16a361fc3e10d5c2e868c72) C:\Windows\system32\drivers\RTKVHDA.sys
10:26:44.0972 0940 IntcAzAudAddService - ok
10:26:45.0331 0940 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
10:26:45.0347 0940 intelide - ok
10:26:45.0503 0940 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
10:26:45.0534 0940 intelppm - ok
10:26:45.0659 0940 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
10:26:45.0690 0940 IPBusEnum - ok
10:26:45.0721 0940 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:26:45.0752 0940 IpFilterDriver - ok
10:26:45.0830 0940 iphlpsvc (6a35d233693edc29a12742049bc5e37f) C:\Windows\System32\iphlpsvc.dll
10:26:45.0846 0940 iphlpsvc - ok
10:26:45.0861 0940 IpInIp - ok
10:26:45.0971 0940 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
10:26:46.0002 0940 IPMIDRV - ok
10:26:46.0033 0940 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
10:26:46.0095 0940 IPNAT - ok
10:26:46.0532 0940 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
10:26:46.0563 0940 iPod Service - ok
10:26:46.0595 0940 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
10:26:46.0626 0940 IRENUM - ok
10:26:46.0657 0940 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
10:26:46.0688 0940 isapnp - ok
10:26:46.0751 0940 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
10:26:46.0766 0940 iScsiPrt - ok
10:26:46.0797 0940 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
10:26:46.0813 0940 iteatapi - ok
10:26:46.0844 0940 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
10:26:46.0860 0940 iteraid - ok
10:26:47.0203 0940 IviRegMgr (213822072085b5bbad9af30ab577d817) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
10:26:47.0234 0940 IviRegMgr - ok
10:26:47.0281 0940 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
10:26:47.0297 0940 kbdclass - ok
10:26:47.0328 0940 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
10:26:47.0359 0940 kbdhid - ok
10:26:47.0453 0940 KeyIso (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
10:26:47.0484 0940 KeyIso - ok
10:26:47.0515 0940 KL1 (186b54479d98e48aee0e9ada4b3c4d31) C:\Windows\system32\DRIVERS\kl1.sys
10:26:47.0531 0940 KL1 - ok
10:26:47.0640 0940 kl2 (bf485bfba13c0ab116701fd9c55324d0) C:\Windows\system32\DRIVERS\kl2.sys
10:26:47.0655 0940 kl2 - ok
10:26:47.0765 0940 KLIF (af04d0ce7939324e9a605b159295706c) C:\Windows\system32\DRIVERS\klif.sys
10:26:47.0780 0940 KLIF - ok
10:26:47.0827 0940 KLIM6 (6295a19003f935ecc6ccbe9e2376427b) C:\Windows\system32\DRIVERS\klim6.sys
10:26:47.0843 0940 KLIM6 - ok
10:26:47.0905 0940 klmouflt (3de1771c135328420315e21dde229bba) C:\Windows\system32\DRIVERS\klmouflt.sys
10:26:47.0921 0940 klmouflt - ok
10:26:48.0155 0940 KMWDFilter (72c55c745d804d62162144ebfd6390b8) C:\Windows\System32\Drivers\KMWDFilter.SYS
10:26:48.0170 0940 KMWDFilter ( UnsignedFile.Multi.Generic ) - warning
10:26:48.0170 0940 KMWDFilter - detected UnsignedFile.Multi.Generic (1)
10:26:48.0217 0940 KMWDSERVICE (2a1a5bbd85f62f0d7ab8276ac0566b37) C:\Program Files\Mouse Driver\KMWDSrv.exe
10:26:48.0233 0940 KMWDSERVICE ( UnsignedFile.Multi.Generic ) - warning
10:26:48.0233 0940 KMWDSERVICE - detected UnsignedFile.Multi.Generic (1)
10:26:48.0685 0940 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
10:26:48.0732 0940 KSecDD - ok
10:26:48.0810 0940 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
10:26:48.0872 0940 KtmRm - ok
10:26:48.0950 0940 LanmanServer (1925e63c91cf1610ae41bfd539062079) C:\Windows\system32\srvsvc.dll
10:26:48.0966 0940 LanmanServer - ok
10:26:49.0231 0940 LanmanWorkstation (2ae2e1628c5d3f1c0a46a67c9fa1df15) C:\Windows\System32\wkssvc.dll
10:26:49.0278 0940 LanmanWorkstation - ok
10:26:49.0512 0940 LightScribeService (2238b91ac1a12cc6cc4c4fed41258b2a) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
10:26:49.0527 0940 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
10:26:49.0527 0940 LightScribeService - detected UnsignedFile.Multi.Generic (1)
10:26:49.0574 0940 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
10:26:49.0605 0940 lltdio - ok
10:26:49.0668 0940 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
10:26:49.0699 0940 lltdsvc - ok
10:26:49.0746 0940 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
10:26:49.0793 0940 lmhosts - ok
10:26:49.0839 0940 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
10:26:49.0871 0940 LSI_FC - ok
10:26:49.0902 0940 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
10:26:49.0917 0940 LSI_SAS - ok
10:26:49.0933 0940 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
10:26:49.0949 0940 LSI_SCSI - ok
10:26:50.0089 0940 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
10:26:50.0120 0940 luafv - ok
10:26:50.0183 0940 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
10:26:50.0198 0940 Mcx2Svc - ok
10:26:50.0261 0940 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
10:26:50.0276 0940 megasas - ok
10:26:50.0339 0940 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
10:26:50.0370 0940 MegaSR - ok
10:26:50.0448 0940 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
10:26:50.0479 0940 MMCSS - ok
10:26:50.0510 0940 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
10:26:50.0541 0940 Modem - ok
10:26:50.0588 0940 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
10:26:50.0619 0940 monitor - ok
10:26:50.0666 0940 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
10:26:50.0682 0940 mouclass - ok
10:26:50.0744 0940 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
10:26:50.0775 0940 mouhid - ok
10:26:50.0838 0940 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
10:26:50.0853 0940 MountMgr - ok
10:26:50.0994 0940 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
10:26:51.0009 0940 MozillaMaintenance - ok
10:26:51.0150 0940 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
10:26:51.0165 0940 mpio - ok
10:26:51.0181 0940 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
10:26:51.0212 0940 mpsdrv - ok
10:26:51.0321 0940 MpsSvc (d1639ba315b0d79dec49a4b0e1fb929b) C:\Windows\system32\mpssvc.dll
10:26:51.0368 0940 MpsSvc - ok
10:26:51.0493 0940 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
10:26:51.0509 0940 Mraid35x - ok
10:26:51.0555 0940 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
10:26:51.0571 0940 MRxDAV - ok
10:26:51.0633 0940 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:26:51.0649 0940 mrxsmb - ok
10:26:51.0711 0940 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:26:51.0727 0940 mrxsmb10 - ok
10:26:51.0789 0940 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:26:51.0805 0940 mrxsmb20 - ok
10:26:51.0867 0940 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
10:26:51.0883 0940 msahci - ok
10:26:51.0899 0940 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
10:26:51.0914 0940 msdsm - ok
10:26:52.0133 0940 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
10:26:52.0195 0940 MSDTC - ok
10:26:52.0289 0940 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
10:26:52.0320 0940 Msfs - ok
10:26:52.0382 0940 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
10:26:52.0398 0940 msisadrv - ok
10:26:52.0523 0940 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
10:26:52.0554 0940 MSiSCSI - ok
10:26:52.0569 0940 msiserver - ok
10:26:52.0616 0940 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
10:26:52.0632 0940 MSKSSRV - ok
10:26:52.0647 0940 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
10:26:52.0679 0940 MSPCLOCK - ok
10:26:52.0694 0940 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
10:26:52.0725 0940 MSPQM - ok
10:26:52.0835 0940 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
10:26:52.0850 0940 MsRPC - ok
10:26:52.0897 0940 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
10:26:52.0913 0940 mssmbios - ok
10:26:52.0928 0940 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
10:26:52.0959 0940 MSTEE - ok
10:26:52.0991 0940 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
10:26:53.0006 0940 Mup - ok
10:26:53.0100 0940 napagent (c43b25863fbd65b6d2a142af3ae320ca) C:\Windows\system32\qagentRT.dll
10:26:53.0131 0940 napagent - ok
10:26:53.0209 0940 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
10:26:53.0225 0940 NativeWifiP - ok
10:26:53.0303 0940 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
10:26:53.0334 0940 NDIS - ok
10:26:53.0381 0940 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
10:26:53.0396 0940 NdisTapi - ok
10:26:53.0443 0940 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
10:26:53.0474 0940 Ndisuio - ok
10:26:53.0537 0940 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
10:26:53.0568 0940 NdisWan - ok
10:26:53.0646 0940 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
10:26:53.0677 0940 NDProxy - ok
10:26:53.0708 0940 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
10:26:53.0739 0940 NetBIOS - ok
10:26:53.0786 0940 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
10:26:53.0817 0940 netbt - ok
10:26:53.0849 0940 Netlogon (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
10:26:53.0864 0940 Netlogon - ok
10:26:53.0928 0940 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
10:26:53.0974 0940 Netman - ok
10:26:54.0006 0940 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
10:26:54.0037 0940 netprofm - ok
10:26:54.0115 0940 netr28 (b05ffe38336193a9b988b00b230c5b80) C:\Windows\system32\DRIVERS\netr28.sys
10:26:54.0130 0940 netr28 - ok
10:26:54.0240 0940 NetTcpPortSharing (0ad5876ef4e9eb77c8f93eb5b2fff386) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:26:54.0255 0940 NetTcpPortSharing - ok
10:26:54.0318 0940 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
10:26:54.0333 0940 nfrd960 - ok
10:26:54.0411 0940 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
10:26:54.0458 0940 NlaSvc - ok
10:26:54.0458 0940 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
10:26:54.0505 0940 Npfs - ok
10:26:54.0583 0940 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
10:26:54.0614 0940 nsi - ok
10:26:54.0661 0940 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
10:26:54.0692 0940 nsiproxy - ok
10:26:54.0848 0940 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
10:26:54.0910 0940 Ntfs - ok
10:26:54.0957 0940 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
10:26:55.0004 0940 ntrigdigi - ok
10:26:55.0035 0940 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
10:26:55.0066 0940 Null - ok
10:26:55.0176 0940 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
10:26:55.0176 0940 nvraid - ok
10:26:55.0222 0940 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
10:26:55.0238 0940 nvstor - ok
10:26:55.0254 0940 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
10:26:55.0269 0940 nv_agp - ok
10:26:55.0285 0940 NwlnkFlt - ok
10:26:55.0300 0940 NwlnkFwd - ok
10:26:55.0612 0940 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:26:55.0644 0940 odserv - ok
10:26:55.0690 0940 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
10:26:55.0753 0940 ohci1394 - ok
10:26:55.0815 0940 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:26:55.0831 0940 ose - ok
10:26:55.0924 0940 p2pimsvc (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
10:26:55.0956 0940 p2pimsvc - ok
10:26:55.0971 0940 p2psvc (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
10:26:56.0002 0940 p2psvc - ok
10:26:56.0065 0940 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
10:26:56.0127 0940 Parport - ok
10:26:56.0174 0940 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
10:26:56.0174 0940 partmgr - ok
10:26:56.0268 0940 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
10:26:56.0314 0940 Parvdm - ok
10:26:56.0361 0940 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
10:26:56.0377 0940 PcaSvc - ok
10:26:56.0455 0940 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
10:26:56.0470 0940 pccsmcfd - ok
10:26:56.0517 0940 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
10:26:56.0533 0940 pci - ok
10:26:56.0533 0940 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
10:26:56.0548 0940 pciide - ok
10:26:56.0580 0940 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
10:26:56.0595 0940 pcmcia - ok
10:26:56.0704 0940 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
10:26:56.0798 0940 PEAUTH - ok
10:26:56.0970 0940 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
10:26:57.0079 0940 pla - ok
10:26:57.0266 0940 PlugPlay (78f975cb6d18265be6f492edb2d7bc7b) C:\Windows\system32\umpnpmgr.dll
10:26:57.0313 0940 PlugPlay - ok
10:26:57.0406 0940 PNRPAutoReg (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
10:26:57.0484 0940 PNRPAutoReg - ok
10:26:57.0516 0940 PNRPsvc (5de1a3972fd3112c75eb17bdcf454169) C:\Windows\system32\p2psvc.dll
10:26:57.0547 0940 PNRPsvc - ok
10:26:57.0609 0940 PolicyAgent (47b8f37aa18b74d8c2e1bc1a7a2c8f8a) C:\Windows\System32\ipsecsvc.dll
10:26:57.0672 0940 PolicyAgent - ok
10:26:57.0781 0940 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
10:26:57.0828 0940 PptpMiniport - ok
10:26:57.0890 0940 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
10:26:57.0921 0940 Processor - ok
10:26:58.0030 0940 ProfSvc (b627e4fc8585e8843c5905d4d3587a90) C:\Windows\system32\profsvc.dll
10:26:58.0062 0940 ProfSvc - ok
10:26:58.0155 0940 ProtectedStorage (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
10:26:58.0171 0940 ProtectedStorage - ok
10:26:58.0233 0940 ProtexisLicensing (f115af58abe5605d7d709cbfbd83f418) C:\Windows\system32\PSIService.exe
10:26:58.0249 0940 ProtexisLicensing - ok
10:26:58.0327 0940 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
10:26:58.0358 0940 PSched - ok
10:26:58.0405 0940 PxHelp20 (d970470f8f39470bdae94d313a1ccdce) C:\Windows\system32\Drivers\PxHelp20.sys
10:26:58.0420 0940 PxHelp20 - ok
10:26:58.0514 0940 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
10:26:58.0576 0940 ql2300 - ok
10:26:58.0670 0940 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
10:26:58.0686 0940 ql40xx - ok
10:26:58.0795 0940 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
10:26:58.0810 0940 QWAVE - ok
10:26:58.0842 0940 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
10:26:58.0857 0940 QWAVEdrv - ok
10:26:58.0888 0940 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
10:26:58.0920 0940 RasAcd - ok
10:26:59.0013 0940 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
10:26:59.0044 0940 RasAuto - ok
10:26:59.0122 0940 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:26:59.0154 0940 Rasl2tp - ok
10:26:59.0247 0940 RasMan (6e7c284fc5c4ec07ad164d93810385a6) C:\Windows\System32\rasmans.dll
10:26:59.0278 0940 RasMan - ok
10:26:59.0310 0940 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
10:26:59.0341 0940 RasPppoe - ok
10:26:59.0528 0940 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
10:26:59.0559 0940 RasSstp - ok
10:26:59.0622 0940 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
10:26:59.0684 0940 rdbss - ok
10:26:59.0778 0940 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:26:59.0809 0940 RDPCDD - ok
10:26:59.0965 0940 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
10:26:59.0996 0940 rdpdr - ok
10:27:00.0027 0940 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
10:27:00.0074 0940 RDPENCDD - ok
10:27:00.0105 0940 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
10:27:00.0152 0940 RDPWD - ok
10:27:00.0183 0940 regi (001b4278407f4303efc902a2b16f2453) C:\Windows\system32\drivers\regi.sys
10:27:00.0199 0940 regi - ok
10:27:00.0355 0940 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
10:27:00.0386 0940 RemoteAccess - ok
10:27:00.0448 0940 RemoteRegistry (cc4e32400f3c7253400cf8f3f3a0b676) C:\Windows\system32\regsvc.dll
10:27:00.0495 0940 RemoteRegistry - ok
10:27:00.0620 0940 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
10:27:00.0651 0940 ROOTMODEM - ok
10:27:00.0698 0940 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
10:27:00.0714 0940 RpcLocator - ok
10:27:00.0838 0940 RpcSs (301ae00e12408650baddc04dbc832830) C:\Windows\system32\rpcss.dll
10:27:00.0870 0940 RpcSs - ok
10:27:00.0916 0940 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
10:27:00.0948 0940 rspndr - ok
10:27:01.0042 0940 RTL8169 (b8b159fa669c6386a458fcd468ebb1e6) C:\Windows\system32\DRIVERS\Rtlh86.sys
10:27:01.0058 0940 RTL8169 - ok
10:27:01.0120 0940 RTSTOR (4f31cfdebd0a5bc27d45e7ebfefaaf6f) C:\Windows\system32\drivers\RTSTOR.SYS
10:27:01.0136 0940 RTSTOR - ok
10:27:01.0183 0940 SamSs (a911ecac81f94adeafbe8e3f7873edb0) C:\Windows\system32\lsass.exe
10:27:01.0198 0940 SamSs - ok
10:27:01.0323 0940 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
10:27:01.0339 0940 sbp2port - ok
10:27:01.0339 0940 SBRE - ok
10:27:01.0401 0940 SCardSvr (11387e32642269c7e62e8b52c060b3c6) C:\Windows\System32\SCardSvr.dll
10:27:01.0432 0940 SCardSvr - ok
10:27:01.0510 0940 Schedule (7b587b8a6d4a99f79d2902d0385f29bd) C:\Windows\system32\schedsvc.dll
10:27:01.0557 0940 Schedule - ok
10:27:01.0604 0940 SCPolicySvc (87c2d0377b23e2d8a41093c2f5fb1a5b) C:\Windows\System32\certprop.dll
10:27:01.0635 0940 SCPolicySvc - ok
10:27:01.0729 0940 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
10:27:01.0760 0940 SDRSVC - ok
10:27:01.0807 0940 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
10:27:01.0853 0940 secdrv - ok
10:27:01.0947 0940 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
10:27:01.0978 0940 seclogon - ok
10:27:02.0041 0940 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
10:27:02.0072 0940 SENS - ok
10:27:02.0134 0940 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\DRIVERS\serenum.sys
10:27:02.0181 0940 Serenum - ok
10:27:02.0228 0940 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
10:27:02.0275 0940 Serial - ok
10:27:02.0306 0940 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
10:27:02.0337 0940 sermouse - ok
10:27:02.0571 0940 ServiceLayer (f31e9531af225ca25350d5e87e999b31) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
10:27:02.0602 0940 ServiceLayer - ok
10:27:02.0649 0940 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
10:27:02.0696 0940 SessionEnv - ok
10:27:02.0758 0940 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
10:27:02.0789 0940 sffdisk - ok
10:27:02.0805 0940 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
10:27:02.0836 0940 sffp_mmc - ok
10:27:02.0899 0940 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
10:27:02.0930 0940 sffp_sd - ok
10:27:02.0945 0940 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
10:27:02.0992 0940 sfloppy - ok
10:27:03.0148 0940 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
10:27:03.0195 0940 SharedAccess - ok
10:27:03.0257 0940 ShellHWDetection (1e3fdb80e40a3ce645f229dfbdfb7694) C:\Windows\System32\shsvcs.dll
10:27:03.0273 0940 ShellHWDetection - ok
10:27:03.0382 0940 Si3531 (4346d5bbdde7756d8614a3f193d60984) C:\Windows\system32\DRIVERS\Si3531.sys
10:27:03.0398 0940 Si3531 - ok
10:27:03.0445 0940 SiFilter (e853c341bbf4ac0007a8db0858dbb09d) C:\Windows\system32\DRIVERS\SiWinAcc.sys
10:27:03.0460 0940 SiFilter - ok
10:27:03.0491 0940 SiRemFil (d80e6f142eb4963e82a8537dd745f51b) C:\Windows\system32\DRIVERS\SiRemFil.sys
10:27:03.0491 0940 SiRemFil - ok
10:27:03.0554 0940 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
10:27:03.0569 0940 sisagp - ok
10:27:03.0601 0940 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
10:27:03.0616 0940 SiSRaid2 - ok
10:27:03.0663 0940 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
10:27:03.0679 0940 SiSRaid4 - ok
10:27:04.0209 0940 slsvc (0ba91e1358ad25236863039bb2609a2e) C:\Windows\system32\SLsvc.exe
10:27:04.0334 0940 slsvc - ok
10:27:04.0505 0940 SLUINotify (7c6dc44ca0bfa6291629ab764200d1d4) C:\Windows\system32\SLUINotify.dll
10:27:04.0552 0940 SLUINotify - ok
10:27:04.0646 0940 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
10:27:04.0677 0940 Smb - ok
10:27:04.0911 0940 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
10:27:04.0927 0940 SNMPTRAP - ok
10:27:04.0973 0940 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
10:27:04.0973 0940 spldr - ok
10:27:05.0083 0940 Spooler (3665f79026a3f91fbca63f2c65a09b19) C:\Windows\System32\spoolsv.exe
10:27:05.0098 0940 Spooler - ok
10:27:05.0207 0940 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
10:27:05.0379 0940 srv - ok
10:27:05.0426 0940 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
10:27:05.0441 0940 srv2 - ok
10:27:05.0753 0940 srvcPVR (71db619f4068d7c70d447d73617cdfac) C:\Program Files\Sceneo\AbsolutTV\Services\PVR\PVRService.exe
10:27:05.0987 0940 srvcPVR ( UnsignedFile.Multi.Generic ) - warning
10:27:05.0987 0940 srvcPVR - detected UnsignedFile.Multi.Generic (1)
10:27:06.0393 0940 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
10:27:06.0424 0940 srvnet - ok
10:27:06.0455 0940 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\Windows\system32\DRIVERS\sscdbus.sys
10:27:06.0487 0940 sscdbus - ok
10:27:06.0533 0940 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\Windows\system32\DRIVERS\sscdmdfl.sys
10:27:06.0549 0940 sscdmdfl - ok
10:27:06.0580 0940 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\Windows\system32\DRIVERS\sscdmdm.sys
10:27:06.0596 0940 sscdmdm - ok
10:27:06.0658 0940 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
10:27:06.0705 0940 SSDPSRV - ok
10:27:06.0783 0940 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
10:27:06.0783 0940 ssmdrv - ok
10:27:06.0845 0940 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
10:27:06.0861 0940 SstpSvc - ok
10:27:06.0970 0940 StarOpen (306521935042fc0a6988d528643619b3) C:\Windows\system32\drivers\StarOpen.sys
10:27:06.0970 0940 StarOpen ( UnsignedFile.Multi.Generic ) - warning
10:27:06.0970 0940 StarOpen - detected UnsignedFile.Multi.Generic (1)
10:27:07.0126 0940 stisvc (7dd08a597bc56051f320da0baf69e389) C:\Windows\System32\wiaservc.dll
10:27:07.0173 0940 stisvc - ok
10:27:07.0204 0940 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
10:27:07.0220 0940 swenum - ok
10:27:07.0454 0940 swprv (b36c7cdb86f7f7a8e884479219766950) C:\Windows\System32\swprv.dll
10:27:07.0485 0940 swprv - ok
10:27:07.0516 0940 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
10:27:07.0516 0940 Symc8xx - ok
10:27:07.0625 0940 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
10:27:07.0641 0940 Sym_hi - ok
10:27:07.0641 0940 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
10:27:07.0657 0940 Sym_u3 - ok
10:27:07.0719 0940 SynTP (4c6de67ebb6c487f7690a373fcfde279) C:\Windows\system32\DRIVERS\SynTP.sys
10:27:07.0735 0940 SynTP - ok
10:27:07.0875 0940 SysMain (8710a92d0024b03b5fb9540df1f71f1d) C:\Windows\system32\sysmain.dll
10:27:07.0922 0940 SysMain - ok
10:27:08.0047 0940 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
10:27:08.0062 0940 TabletInputService - ok
10:27:08.0125 0940 taphss (0c3b2a9c4bd2dd9a6c2e4084314dd719) C:\Windows\system32\DRIVERS\taphss.sys
10:27:08.0140 0940 taphss - ok
10:27:08.0312 0940 TapiSrv (680916bb09ee0f3a6aca7c274b0d633f) C:\Windows\System32\tapisrv.dll
10:27:08.0421 0940 TapiSrv - ok
10:27:08.0452 0940 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
10:27:08.0515 0940 TBS - ok
10:27:08.0655 0940 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys
10:27:08.0717 0940 Tcpip - ok
10:27:08.0749 0940 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys
10:27:08.0811 0940 Tcpip6 - ok
10:27:08.0858 0940 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
10:27:08.0905 0940 tcpipreg - ok
10:27:08.0936 0940 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
10:27:08.0967 0940 TDPIPE - ok
10:27:08.0998 0940 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
10:27:09.0029 0940 TDTCP - ok
10:27:09.0061 0940 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
10:27:09.0092 0940 tdx - ok
10:27:09.0123 0940 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
10:27:09.0139 0940 TermDD - ok
10:27:09.0263 0940 TermService (d605031e225aaccbceb5b76a4f1603a6) C:\Windows\System32\termsrv.dll
10:27:09.0310 0940 TermService - ok
10:27:09.0419 0940 Themes (1e3fdb80e40a3ce645f229dfbdfb7694) C:\Windows\system32\shsvcs.dll
10:27:09.0435 0940 Themes - ok
10:27:09.0482 0940 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
10:27:09.0529 0940 THREADORDER - ok
10:27:09.0591 0940 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
10:27:09.0622 0940 TrkWks - ok
10:27:09.0763 0940 TrustedInstaller (16613a1bad034d4ecf957af18b7c2ff5) C:\Windows\servicing\TrustedInstaller.exe
10:27:09.0794 0940 TrustedInstaller - ok
10:27:09.0841 0940 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:27:09.0856 0940 tssecsrv - ok
10:27:09.0934 0940 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
10:27:09.0950 0940 tunmp - ok
10:27:10.0153 0940 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
10:27:10.0168 0940 tunnel - ok
10:27:10.0262 0940 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
10:27:10.0277 0940 uagp35 - ok
10:27:10.0449 0940 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
10:27:10.0496 0940 udfs - ok
10:27:10.0667 0940 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
10:27:10.0699 0940 UI0Detect - ok
10:27:10.0839 0940 UleadBurningHelper (be788a747457e6916586c410ec0111e7) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
10:27:10.0839 0940 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - warning
10:27:10.0839 0940 UleadBurningHelper - detected UnsignedFile.Multi.Generic (1)
10:27:10.0901 0940 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
10:27:10.0917 0940 uliagpkx - ok
10:27:10.0995 0940 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
10:27:11.0011 0940 uliahci - ok
10:27:11.0073 0940 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
10:27:11.0089 0940 UlSata - ok
10:27:11.0167 0940 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
10:27:11.0182 0940 ulsata2 - ok
10:27:11.0198 0940 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
10:27:11.0229 0940 umbus - ok
10:27:11.0338 0940 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
10:27:11.0369 0940 upnphost - ok
10:27:11.0463 0940 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
10:27:11.0479 0940 USBAAPL - ok
10:27:11.0557 0940 usbaudio (292a25bb75a568ae2c67169ba2c6365a) C:\Windows\system32\drivers\usbaudio.sys
10:27:11.0588 0940 usbaudio - ok
10:27:11.0650 0940 usbbus (9419faac6552a51542dbba02971c841c) C:\Windows\system32\DRIVERS\lgusbbus.sys
10:27:11.0650 0940 usbbus - ok
10:27:11.0728 0940 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
10:27:11.0759 0940 usbccgp - ok
10:27:11.0806 0940 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
10:27:11.0869 0940 usbcir - ok
10:27:12.0025 0940 UsbDiag (c0a466fa4ffec464320e159bc1bbdc0c) C:\Windows\system32\DRIVERS\lgusbdiag.sys
10:27:12.0040 0940 UsbDiag - ok
10:27:12.0166 0940 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
10:27:12.0197 0940 usbehci - ok
10:27:12.0275 0940 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
10:27:12.0306 0940 usbhub - ok
10:27:12.0416 0940 USBModem (f74a54774a9b0afeb3c40adec68aa600) C:\Windows\system32\DRIVERS\lgusbmodem.sys
10:27:12.0431 0940 USBModem - ok
10:27:12.0494 0940 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
10:27:12.0556 0940 usbohci - ok
10:27:12.0665 0940 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
10:27:12.0696 0940 usbprint - ok
10:27:12.0774 0940 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
10:27:12.0790 0940 usbscan - ok
10:27:12.0852 0940 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:27:12.0884 0940 USBSTOR - ok
10:27:12.0946 0940 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
10:27:13.0008 0940 usbuhci - ok
10:27:13.0118 0940 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
10:27:13.0164 0940 usbvideo - ok
10:27:13.0164 0940 uxddrv - ok
10:27:13.0211 0940 UxSms (032a0acc3909ae7215d524e29d536797) C:\Windows\System32\uxsms.dll
10:27:13.0242 0940 UxSms - ok
10:27:13.0242 0940 VComm - ok
10:27:13.0258 0940 VcommMgr - ok
10:27:13.0336 0940 vds (b13bc395b9d6116628f5af47e0802ac4) C:\Windows\System32\vds.exe
10:27:13.0383 0940 vds - ok
10:27:13.0461 0940 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
10:27:13.0492 0940 vga - ok
10:27:13.0554 0940 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
10:27:13.0586 0940 VgaSave - ok
10:27:13.0632 0940 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
10:27:13.0648 0940 viaagp - ok
10:27:13.0710 0940 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
10:27:13.0742 0940 ViaC7 - ok
10:27:13.0788 0940 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
10:27:13.0804 0940 viaide - ok
10:27:13.0835 0940 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
10:27:13.0851 0940 volmgr - ok
10:27:13.0898 0940 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
10:27:13.0913 0940 volmgrx - ok
10:27:13.0976 0940 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
10:27:13.0991 0940 volsnap - ok
10:27:14.0054 0940 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
10:27:14.0069 0940 vsmraid - ok
10:27:14.0241 0940 VSS (d5fb73d19c46ade183f968e13f186b23) C:\Windows\system32\vssvc.exe
10:27:14.0319 0940 VSS - ok
10:27:14.0412 0940 W32Time (1cf9206966a8458cda9a8b20df8ab7d3) C:\Windows\system32\w32time.dll
10:27:14.0444 0940 W32Time - ok
10:27:14.0662 0940 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
10:27:14.0709 0940 WacomPen - ok
10:27:14.0771 0940 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
10:27:14.0802 0940 Wanarp - ok
10:27:14.0818 0940 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
10:27:14.0849 0940 Wanarpv6 - ok
10:27:15.0068 0940 wcncsvc (f3a5c2e1a6533192b070d06ecf6be796) C:\Windows\System32\wcncsvc.dll
10:27:15.0099 0940 wcncsvc - ok
10:27:15.0146 0940 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
10:27:15.0177 0940 WcsPlugInService - ok
10:27:15.0224 0940 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
10:27:15.0239 0940 Wd - ok
10:27:15.0302 0940 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
10:27:15.0348 0940 Wdf01000 - ok
10:27:15.0380 0940 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
10:27:15.0426 0940 WdiServiceHost - ok
10:27:15.0426 0940 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
10:27:15.0458 0940 WdiSystemHost - ok
10:27:15.0520 0940 WebClient (cf9a5f41789b642db967021de06a2713) C:\Windows\System32\webclnt.dll
10:27:15.0536 0940 WebClient - ok
10:27:15.0582 0940 Wecsvc (905214925a88311fce52f66153de7610) C:\Windows\system32\wecsvc.dll
10:27:15.0614 0940 Wecsvc - ok
10:27:15.0801 0940 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
10:27:15.0832 0940 wercplsupport - ok
10:27:15.0910 0940 WerSvc (4081288554294f144e5a7d4ee20e3ce6) C:\Windows\System32\WerSvc.dll
10:27:15.0957 0940 WerSvc - ok
10:27:16.0160 0940 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
10:27:16.0191 0940 WinDefend - ok
10:27:16.0206 0940 WinHttpAutoProxySvc - ok
10:27:16.0300 0940 Winmgmt (00b79a7c984678f24cf052e5beb3a2f5) C:\Windows\system32\wbem\WMIsvc.dll
10:27:16.0331 0940 Winmgmt - ok
10:27:16.0440 0940 WinRM (20fc93fdc916843cfdfcaa7a1b0db16f) C:\Windows\system32\WsmSvc.dll
10:27:16.0487 0940 WinRM - ok
10:27:16.0581 0940 WisLMSvc (f0fe933e27f1e2a83ff322a0693a4724) C:\Program Files\Launch Manager\WisLMSvc.exe
10:27:16.0581 0940 WisLMSvc ( UnsignedFile.Multi.Generic ) - warning
10:27:16.0581 0940 WisLMSvc - detected UnsignedFile.Multi.Generic (1)
10:27:16.0674 0940 Wlansvc (275f4346e569df56cfb95243bd6f6ff0) C:\Windows\System32\wlansvc.dll
10:27:16.0721 0940 Wlansvc - ok
10:27:16.0784 0940 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
10:27:16.0799 0940 WmiAcpi - ok
10:27:16.0986 0940 wmiApSrv (aba4cf9f856d9a3a25f4ddd7690a6e9d) C:\Windows\system32\wbem\WmiApSrv.exe
10:27:17.0018 0940 wmiApSrv - ok
10:27:17.0298 0940 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
10:27:17.0361 0940 WMPNetworkSvc - ok
10:27:17.0408 0940 WPCSvc (5d94cd167751294962ba238d82dd1bb8) C:\Windows\System32\wpcsvc.dll
10:27:17.0423 0940 WPCSvc - ok
10:27:17.0501 0940 WPDBusEnum (396d406292b0cd26e3504ffe82784702) C:\Windows\system32\wpdbusenum.dll
10:27:17.0532 0940 WPDBusEnum - ok
10:27:17.0720 0940 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
10:27:17.0751 0940 WpdUsb - ok
10:27:17.0798 0940 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
10:27:17.0829 0940 ws2ifsl - ok
10:27:17.0922 0940 wscsvc (683dd16b590372f2c9661d277f35e49c) C:\Windows\System32\wscsvc.dll
10:27:17.0938 0940 wscsvc - ok
10:27:17.0954 0940 WSearch - ok
10:27:18.0234 0940 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
10:27:18.0312 0940 wuauserv - ok
10:27:18.0952 0940 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
10:27:18.0983 0940 WudfPf - ok
10:27:19.0701 0940 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:27:19.0716 0940 WUDFRd - ok
10:27:19.0779 0940 wudfsvc (2c0206ff8d2c75ac027d1096fa2fafda) C:\Windows\System32\WUDFSvc.dll
10:27:19.0794 0940 wudfsvc - ok
10:27:19.0982 0940 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} (74ec37b9eaf9fca015b933a526825c7a) C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
10:27:19.0997 0940 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
10:27:20.0044 0940 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
10:27:20.0528 0940 \Device\Harddisk0\DR0 - ok
10:27:20.0574 0940 Boot (0x1200) (5ac9ef36ff0143229eef44e02cb85d83) \Device\Harddisk0\DR0\Partition0
10:27:20.0574 0940 \Device\Harddisk0\DR0\Partition0 - ok
10:27:20.0606 0940 Boot (0x1200) (7d0413ec3773fac71aadcb647a732deb) \Device\Harddisk0\DR0\Partition1
10:27:20.0606 0940 \Device\Harddisk0\DR0\Partition1 - ok
10:27:20.0668 0940 Boot (0x1200) (153fc75f8be899ca8e5b02b078f8baf3) \Device\Harddisk0\DR0\Partition2
10:27:20.0840 0940 \Device\Harddisk0\DR0\Partition2 - ok
10:27:20.0855 0940 ============================================================
10:27:20.0855 0940 Scan finished
10:27:20.0855 0940 ============================================================
10:27:20.0871 5860 Detected object count: 16
10:27:20.0871 5860 Actual detected object count: 16
10:27:25.0098 5860 cbVSCService ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0098 5860 cbVSCService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0098 5860 cpuz132 ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0098 5860 cpuz132 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0098 5860 Droppix Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0098 5860 Droppix Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0098 5860 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0098 5860 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0114 5860 Hotkey ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0114 5860 Hotkey ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0114 5860 hshld ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0114 5860 hshld ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0114 5860 HssSrv ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0114 5860 HssSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0114 5860 HssTrayService ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0114 5860 HssTrayService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0114 5860 IJPLMSVC ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0114 5860 IJPLMSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0130 5860 KMWDFilter ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0130 5860 KMWDFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0130 5860 KMWDSERVICE ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0130 5860 KMWDSERVICE ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0130 5860 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0130 5860 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0130 5860 srvcPVR ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0130 5860 srvcPVR ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0145 5860 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0145 5860 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0145 5860 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0145 5860 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:27:25.0145 5860 WisLMSvc ( UnsignedFile.Multi.Generic ) - skipped by user
10:27:25.0145 5860 WisLMSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
25.06.2012, 11:17
| #18 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr Dann bitte jetzt CF ausführen:
__________________ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ |
|
25.06.2012, 13:56
| #19 |
| | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr Hallo! Hier der Log von ComboFix: Combofix Logfile: Code:
ATTFilter ComboFix 12-06-25.02 - brune 25.06.2012 14:37:27.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.49.1031.18.3062.1923 [GMT 2:00]
ausgeführt von:: c:\users\brune\Desktop\ComboFix.exe
AV: Kaspersky Anti-Virus *Disabled/Updated* {2EAA32A5-1EE1-1B22-95DA-337730C6E984}
SP: Kaspersky Anti-Virus *Disabled/Updated* {95CBD341-38DB-14AC-AF6A-08054B41A339}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\program files\Hotspot Shield\HssIE\HsSIe.dll
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\ANTIGEN.dll
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\ANTIGEN.tmp
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\CLSV.sys
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\DBOLE.dll
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\DBOLE.tmp
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\ddv.dll
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\eb.dll
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\energy.sys
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\exec.drv
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\exec.tmp
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\fan.exe
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\pal.drv
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\PE.exe
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\PE.sys
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\ppal.dll
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\runddl.exe
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\runddl.tmp
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\tempdoc.dll
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\tempdoc.drv
c:\users\brune\AppData\Roaming\Microsoft\Windows\Recent\tempdoc.sys
c:\users\brune\Documents\~WRL0152.tmp
c:\users\brune\Documents\~WRL3798.tmp
c:\users\brune\Documents\~WRL3811.tmp
c:\windows\5CF45D1BBDCD0645.log
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-05-25 bis 2012-06-25 ))))))))))))))))))))))))))))))
.
.
2012-06-25 12:48 . 2012-06-25 12:48 -------- d-----w- c:\users\brune\AppData\Local\temp
2012-06-25 12:48 . 2012-06-25 12:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-25 08:27 . 2010-04-14 17:46 80896 ----a-w- c:\windows\system32\MSNP.ax
2012-06-25 08:27 . 2010-04-14 17:47 293376 ----a-w- c:\windows\system32\psisdecd.dll
2012-06-25 08:27 . 2010-04-14 17:47 217088 ----a-w- c:\windows\system32\psisrndr.ax
2012-06-24 15:35 . 2008-10-22 03:57 241152 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2012-06-24 15:21 . 2012-05-31 03:41 6762896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{75A94E44-EEE1-4DE2-9934-8BA1B694A4CF}\mpengine.dll
2012-06-24 15:15 . 2012-06-24 15:15 -------- d-----w- C:\_OTL
2012-06-15 17:14 . 2012-06-15 17:14 -------- d-----w- c:\program files\ESET
2012-06-12 12:41 . 2008-03-17 13:45 1414440 ----a-w- c:\windows\system32\ShellManager310E2D762.dll
2012-06-12 12:34 . 2012-06-12 12:34 -------- d-----w- c:\users\brune\AppData\Roaming\Nero
2012-06-12 11:30 . 2012-06-12 11:30 -------- d-----w- c:\users\brune\AppData\Roaming\JAM Software
2012-06-12 11:30 . 2012-06-12 11:30 -------- d-----w- c:\program files\JAM Software
2012-06-12 11:03 . 2012-06-12 11:03 -------- d-----w- c:\users\brune\AppData\Local\Macromedia
2012-06-12 10:57 . 2012-06-24 15:32 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-06-12 09:08 . 2010-02-18 14:11 190464 ----a-w- c:\windows\system32\iphlpsvc.dll
2012-06-12 09:08 . 2010-02-18 11:52 25088 ----a-w- c:\windows\system32\drivers\tunnel.sys
2012-06-12 09:08 . 2011-07-06 14:56 213504 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2012-06-12 08:38 . 2012-06-12 08:56 97961 ----a-w- c:\windows\system32\drivers\klick.dat
2012-06-12 08:38 . 2012-06-12 08:56 115369 ----a-w- c:\windows\system32\drivers\klin.dat
2012-06-12 08:37 . 2011-04-24 21:13 147856 ----a-w- c:\program files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2\components\kavlinkfilter.dll
2012-06-12 08:34 . 2012-06-25 12:16 -------- d-----w- c:\programdata\Kaspersky Lab
2012-06-12 08:34 . 2012-06-12 08:34 -------- d-----w- c:\program files\Kaspersky Lab
2012-06-12 08:20 . 2012-06-12 08:20 -------- d-----w- c:\programdata\GFI Software
2012-06-08 09:25 . 2012-04-04 13:56 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-08 09:25 . 2012-06-08 09:26 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-06-06 14:34 . 2012-06-06 14:34 -------- d-----w- c:\program files\Dropbox
2012-06-06 14:12 . 2012-06-12 08:25 -------- d-----w- c:\programdata\AVAST Software
2012-06-06 14:12 . 2012-06-06 14:12 -------- d-----w- c:\program files\AVAST Software
2012-06-06 13:59 . 2012-06-12 08:20 -------- d-----w- c:\program files\Ad-Aware Antivirus
2012-06-06 13:57 . 2012-06-06 13:57 -------- d-----w- c:\users\brune\AppData\Local\adawarebp
2012-06-06 13:43 . 2012-06-06 13:43 -------- d-----w- c:\users\brune\AppData\Roaming\AVG2012
2012-06-06 13:40 . 2012-06-06 13:40 -------- d--h--w- c:\programdata\Common Files
2012-06-06 13:38 . 2012-06-06 14:50 -------- d-----w- c:\programdata\AVG2012
2012-06-06 13:38 . 2012-06-06 14:46 -------- d-----w- C:\$AVG
2012-06-06 13:35 . 2012-06-06 14:47 -------- d-----w- c:\programdata\MFAData
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-24 15:32 . 2011-09-08 13:36 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-04-10 14:02 . 2010-08-04 16:18 472808 ----a-w- c:\windows\system32\deployJava1.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
2012-05-03 12:27 . 2011-10-06 12:40 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 94208 ----a-w- c:\users\brune\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 94208 ----a-w- c:\users\brune\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 94208 ----a-w- c:\users\brune\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-08-11 68856]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-10-03 178712]
"RtHDVCpl"="RtHDVCpl.exe" [2008-04-01 6025216]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-08-31 102400]
"LaunchAp"="c:\program files\Launch Manager\LaunchAp.exe" [2007-09-01 32768]
"HotkeyApp"="c:\program files\Launch Manager\HotkeyApp.exe" [2007-09-06 188416]
"LMgrOSD"="c:\program files\Launch Manager\OSD.exe" [2006-12-26 180224]
"Wbutton"="c:\program files\Launch Manager\Wbutton.exe" [2007-09-07 86016]
"toolbar_eula_launcher"="c:\program files\GoogleEULA\EULALauncher.exe" [2007-02-09 16896]
"KMCONFIG"="c:\program files\Mouse Driver\StartAutorun.exe" [2008-05-29 212992]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-02-26 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-02-26 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-02-26 150552]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"RemoteControl10"="c:\program files\CyberLink\PowerDVD10\PDVD10Serv.exe" [2010-02-02 87336]
"BDRegion"="c:\program files\Cyberlink\Shared files\brs.exe" [2010-06-28 75048]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" [2011-04-24 202296]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Picasa Media Detector"="c:\program files\Picasa2\PicasaMediaDetector.exe" [2008-02-26 443968]
.
c:\users\brune\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
wkcalrem.LNK - c:\program files\Microsoft Works\WkCalRem.exe [2007-6-20 46432]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux3"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Users^brune^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
path=c:\users\brune\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
backup=c:\windows\pss\Dropbox.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
2011-11-02 06:51 59240 ----a-w- c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2012-02-20 20:28 59240 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
2011-01-05 08:18 133432 ------w- c:\program files\ICQ7.2\ICQ.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2012-03-27 03:09 421736 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2009-07-26 15:44 3883840 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
2012-01-10 17:36 1083264 ----a-w- c:\program files\Nokia\Nokia Suite\NokiaSuite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 16:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"swg"=c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Persistence"=c:\windows\system32\igfxpers.exe
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_05\bin\jusched.exe"
"CanonMyPrinter"=c:\program files\Canon\MyPrinter\BJMyPrt.exe /logon
"CanonSolutionMenu"=c:\program files\Canon\SolutionMenu\CNSLMAIN.exe /logon
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
"WinampAgent"="c:\program files\Winamp\winampa.exe"
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-24 250056]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-08-20 11:24 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Inhalt des "geplante Tasks" Ordners
.
2012-06-25 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-12 15:32]
.
2012-06-15 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-05-15 16:33]
.
2012-06-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-17 23:43]
.
2012-06-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-17 23:43]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.aldi.com/
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-25/4
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\brune\AppData\Roaming\Mozilla\Firefox\Profiles\bpvv6k5v.default\
FF - prefs.js: browser.search.selectedEngine - Google (Language: DE)
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 200000
FF - user.js: content.notify.interval - 100000
FF - user.js: content.switch.threshold - 650000
FF - user.js: nglayout.initialpaint.delay - 300
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-AnyDVD - c:\program files\SlySoft\AnyDVD\AnyDVDtray.exe
AddRemove-Der Dativ ist dem Genitiv sein Tod - h:\programme\USM\Der Dativ ist dem Genitiv sein Tod\Uninstall.exe
AddRemove-2kv4.8.442 - c:\windows\Radeon Omega Drivers v4.8.442
AddRemove-Uninstall_is1 - c:\program files\Common Files\DVDVideoSoft\unins000.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2012-06-25 14:48
Windows 6.0.6001 Service Pack 1 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Zeit der Fertigstellung: 2012-06-25 14:51:06
ComboFix-quarantined-files.txt 2012-06-25 12:50
.
Vor Suchlauf: 3.731.316.736 Bytes frei
Nach Suchlauf: 6.415.089.664 Bytes frei
.
- - End Of File - - A9B50A73E1DD13901EDBA6466693571B
Eine Frage noch: Ich habe während des Durchlaufs der letzten Programme (ESET, OTL, Kaspersky Killer, ComboFix) meine portable Festplatte NICHT angeschlossen. Soll ich dies noch nachholen? Ich hatte nämlich die Befürchtung, dass ich im schlimmsten Fall dann alles auf einmal verliere - ich denke, das ist nachvollziehbar. Lieben Gruß, Nicole |
|
25.06.2012, 14:50
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr Ja das kannst du gerne nachholen - später Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
25.06.2012, 20:11
| #21 |
| | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr Guten Abend! Hier alle Logs (wobei letzteres erst mal abgestürzt ist und ich deswegen bei AV Scan beim zweiten Versuch "none" ausgewählt habe. Außerdem trat öfter ein Fenster "Windows - kein Datenträger" mit einer Reihe Zahlen auf, das ich jedes Mal geschlossen habe; ich hoffe, das war ok?) GMER Logfile: Code:
ATTFilter GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2012-06-25 17:59:40
Windows 6.0.6001 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 WDC_WD25 rev.01.0
Running: ozf987p6.exe; Driver: C:\Users\brune\AppData\Local\Temp\uwlyypoc.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwAdjustPrivilegesToken [0x90A8728A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwAlpcConnectPort [0x90AA1342]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwAlpcCreatePort [0x90AA1678]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwAlpcSendWaitReceivePort [0x90AA19EE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwClose [0x90A87D04]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwConnectPort [0x90AA102A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateEvent [0x90A88276]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateMutant [0x90A88164]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreatePort [0x90AA14E8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateSection [0x90A87046]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateSemaphore [0x90A8838E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateThread [0x90A878BA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateWaitablePort [0x90AA15B0]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwDebugActiveProcess [0x90A8874E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwDeviceIoControlFile [0x90A87D46]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwDuplicateObject [0x90A89750]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwLoadDriver [0x90A88840]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwMapViewOfSection [0x90A88DAC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwNotifyChangeKey [0x90A9F840]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenEvent [0x90A88308]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenMutant [0x90A881F0]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenProcess [0x90A874C4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenSection [0x90A88B90]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenSemaphore [0x90A88420]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenThread [0x90A873B8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwQueryDirectoryObject [0x90A8855C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwQueryObject [0x90A9FA38]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwQuerySection [0x90A890D2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwQueueApcThread [0x90A889E0]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwReplaceKey [0x90A9C334]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwReplyPort [0x90AA17DC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwReplyWaitReceivePort [0x90AA172A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwRequestWaitReplyPort [0x90AA1848]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwRestoreKey [0x90A9C53E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwResumeThread [0x90A895F2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSaveKey [0x90A9BE5A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSaveKeyEx [0x90A9BFF4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSaveMergedKeys [0x90A9C194]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSecureConnectPort [0x90AA11B2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSetContextThread [0x90A87BA4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSetInformationToken [0x90A885FA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSetSystemInformation [0x90A89222]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSuspendProcess [0x90A89316]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSuspendThread [0x90A89450]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSystemDebugControl [0x90A88670]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwTerminateProcess [0x90A87664]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwTerminateThread [0x90A875BA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwUnmapViewOfSection [0x90A88F8A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwWriteVirtualMemory [0x90A87750]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateThreadEx [0x90A87A2A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateUserProcess [0x90A884A6]
---- Kernel code sections - GMER 1.0.15 ----
.text ntkrnlpa.exe!KeSetTimerEx + 34C 82CC1970 4 Bytes [8A, 72, A8, 90] {MOV DH, [EDX-0x58]; NOP }
.text ntkrnlpa.exe!KeSetTimerEx + 370 82CC1994 8 Bytes [42, 13, AA, 90, 78, 16, AA, ...] {INC EDX; ADC EBP, [EDX-0x55e98770]; NOP }
.text ntkrnlpa.exe!KeSetTimerEx + 3B4 82CC19D8 4 Bytes [EE, 19, AA, 90]
.text ntkrnlpa.exe!KeSetTimerEx + 3DC 82CC1A00 4 Bytes [04, 7D, A8, 90] {ADD AL, 0x7d; TEST AL, 0x90}
.text ntkrnlpa.exe!KeSetTimerEx + 3F4 82CC1A18 4 Bytes [2A, 10, AA, 90] {SUB DL, [EAX]; STOSB ; NOP }
.text ...
.text C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl section is writeable [0xB7A2F000, 0x2892, 0xE8000020]
.vmp2 C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl entry point in ".vmp2" section [0xB7A52050]
---- User IAT/EAT - GMER 1.0.15 ----
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [74118864] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [74159855] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [7411B984] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [7410FB47] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [74117A29] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [7410EA65] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM] [7414B12D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream] [7411BC4A] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [74110756] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [741106BD] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [741071B3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM] [7419D9E0] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile] [74137329] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [7410E109] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [7410697E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [741069A9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [74112475] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs SiWinAcc.sys (Windows Accelerator Driver/Silicon Image, Inc.)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (WDF Dynamic/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (WDF Dynamic/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Tcp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
AttachedDevice \Driver\tdx \Device\Udp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
AttachedDevice \Driver\tdx \Device\RawIp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Dateisystem-Filter-Manager/Microsoft Corporation)
---- Registry - GMER 1.0.15 ----
Reg HKLM\SOFTWARE\Classes\CLSID\{B6A930A0-A4F5-43A5-9B4E-6189A6C2B9E8}@y!s!\24!r!s!`!\30!y!\24!\24!t!\30!c!y!s!d! 19583823
---- EOF - GMER 1.0.15 ----
OSAM Logfile: Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 18:07:02 on 25.06.2012 OS: Windows Vista Home Premium Edition Service Pack 1 (Build 6001), 32-bit Default Browser: Mozilla Corporation Firefox 12.0 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [Common] -----( %SystemRoot%\Tasks )----- "GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe "Google Software Updater.job" - "Google" - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [Control Panel Objects] -----( %SystemRoot%\system32 )----- "Ddbaccpl.cpl" - "DataDesign AG" - C:\Windows\system32\Ddbaccpl.cpl "ddBACCTM.cpl" - "DataDesign AG" - C:\Windows\system32\ddBACCTM.cpl "FlashPlayerCPLApp.cpl" - "Adobe Systems Incorporated" - C:\Windows\system32\FlashPlayerCPLApp.cpl -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )----- "Nero BurnRights" - "Nero AG" - C:\Program Files\Nero\Nero8\Nero Toolkit\NeroBurnRights.cpl "QuickTime" - "Apple Inc." - C:\Program Files\QuickTime\QTSystem\QuickTime.cpl [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "adfs" (adfs) - "Adobe Systems, Inc." - C:\Windows\system32\drivers\adfs.sys "Bluetooth Audio Service" (BlueletAudio) - ? - C:\Windows\System32\DRIVERS\blueletaudio.sys (File not found) "Bluetooth HID Enumerator" (BTHidEnum) - ? - C:\Windows\System32\Drivers\vbtenum.sys (File not found) "Bluetooth HID Manager Service" (BTHidMgr) - ? - C:\Windows\System32\Drivers\BTHidMgr.sys (File not found) "Bluetooth PAN Network Adapter" (BT) - ? - C:\Windows\System32\DRIVERS\btnetdrv.sys (File not found) "Bluetooth SCO Audio Service" (BlueletSCOAudio) - ? - C:\Windows\System32\DRIVERS\BlueletSCOAudio.sys (File not found) "Bluetooth USB For Bluetooth Service" (Btcsrusb) - ? - C:\Windows\System32\Drivers\btcusb.sys (File not found) "Bluetooth VComm Manager Service" (VcommMgr) - ? - C:\Windows\System32\Drivers\VcommMgr.sys (File not found) "catchme" (catchme) - ? - C:\Users\brune\AppData\Local\Temp\catchme.sys (File not found) "cpuz132" (cpuz132) - "Windows (R) Codename Longhorn DDK provider" - C:\Windows\system32\drivers\cpuz132_x32.sys "Dynamically loaded UxdDrv" (uxddrv) - ? - F:\uxddrv86.sys (File not found) "Hotkey" (Hotkey) - ? - C:\Windows\system32\drivers\Hotkey.sys (File found, but it contains no detailed information) "Hotspot Shield Helper Miniport" (HssDrv) - "AnchorFree Inc." - C:\Windows\System32\DRIVERS\HssDrv.sys "HWiNFO32 Kernel Driver" (HWiNFO32) - ? - G:\Hwinfo32\HWiNFO32.SYS (File not found) "IP in IP Tunnel Driver" (IpInIp) - ? - C:\Windows\System32\DRIVERS\ipinip.sys (File not found) "IPX Traffic Filter Driver" (NwlnkFlt) - ? - C:\Windows\System32\DRIVERS\nwlnkflt.sys (File not found) "IPX Traffic Forwarder Driver" (NwlnkFwd) - ? - C:\Windows\System32\DRIVERS\nwlnkfwd.sys (File not found) "KMWDFilter" (KMWDFilter) - "Windows (R) Codename Longhorn DDK provider" - C:\Windows\System32\Drivers\KMWDFilter.SYS "PPdus ASPI Shell" (Afc) - "Arcsoft, Inc." - C:\Windows\System32\drivers\Afc.sys "PxHelp20" (PxHelp20) - "Sonic Solutions" - C:\Windows\System32\Drivers\PxHelp20.sys "regi" (regi) - "InterVideo" - C:\Windows\System32\drivers\regi.sys "SBRE" (SBRE) - ? - C:\Windows\system32\drivers\SBREdrv.sys (File not found) "ssmdrv" (ssmdrv) - "Avira GmbH" - C:\Windows\System32\DRIVERS\ssmdrv.sys "StarOpen" (StarOpen) - ? - C:\Windows\system32\drivers\StarOpen.sys (File found, but it contains no detailed information) "uwlyypoc" (uwlyypoc) - ? - C:\Users\brune\AppData\Local\Temp\uwlyypoc.sys (Hidden registry entry, rootkit activity | File not found) "Virtual Serial port driver" (VComm) - ? - C:\Windows\System32\DRIVERS\VComm.sys (File not found) [Explorer] -----( HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} "DropboxExt" - ? - (File not found | COM-object registry key not found) {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} "DropboxExt" - ? - (File not found | COM-object registry key not found) {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} "DropboxExt" - ? - (File not found | COM-object registry key not found) {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} "DropboxExt" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components )----- {10880D85-AAD9-4558-ABDC-2AB1552D831F} "LightScribe Control Panel" - "Hewlett-Packard Company" - "C:\Program Files\Common Files\LightScribe\LSRunOnce.exe" -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {7D4D6379-F301-4311-BEBA-E26EB0561882} "NeroDigitalColumnHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" - ? - C:\Program Files\OpenOffice.org 2.4\program\shlxthdl.dll -----( HKLM\Software\Classes\Protocols\Filter )----- {807563E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL -----( HKLM\Software\Classes\Protocols\Handler )----- {314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL {828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL {0A9007C0-4076-11D3-8789-0000F8105754} "Microsoft Infotech Storage Protocol for IE 4.0" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll {828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {911051fa-c21c-4246-b470-070cd8df6dc4} ".cab or .zip files" - ? - (File not found | COM-object registry key not found) {23170F69-40C1-278A-1000-000100020000} "7-Zip Shell Extension" - "Igor Pavlov" - C:\Program Files\7-Zip\7-zip.dll {1b24a030-9b20-49bc-97ac-1be4426f9e59} "ActiveDirectory Folder" - ? - (File not found | COM-object registry key not found) {34449847-FD14-4fc8-A75A-7432F5181EFB} "ActiveDirectory Folder" - ? - (File not found | COM-object registry key not found) {0F8604A5-4ECE-4DE1-BA7D-CF10F8AA4F48} "Contacts folder" - ? - (File not found | COM-object registry key not found) {94586423-855F-4EB2-9F6A-D9DA5658DBE3} "Context menu" - ? - C:\PROGRA~1\FREEM4~1\m4a_menu.dll (File found, but it contains no detailed information) {2C2577C2-63A7-40e3-9B7F-586602617ECB} "Explorer Query Band" - ? - (File not found | COM-object registry key not found) {FAC3CBF6-8697-43d0-BAB9-DCD1FCE19D75} "IE User Assist" - ? - (File not found | COM-object registry key not found) {B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} "iTunes" - "Apple Inc." - C:\Program Files\iTunes\iTunesMiniPlayer.dll {00020d75-0000-0000-c000-000000000046} "lnkfile" - ? - (File not found | COM-object registry key not found) {42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\msohevi.dll {993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll {5858A72C-C2B4-4dd7-B2BF-B76DB1BD9F6C} "Microsoft Office OneNote Namespace Extension for Windows Desktop Search" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~4\Office12\ONFILTER.DLL {C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll {B327765E-D724-4347-8B16-78AE18552FC3} "NeroDigitalIconHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll {7F1CF152-04F8-453A-B34C-E609530A9DC8} "NeroDigitalPropSheetHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} "OpenOffice.org Column Handler" - ? - C:\Program Files\OpenOffice.org 2.4\program\shlxthdl.dll {087B3AE3-E237-4467-B8DB-5A38AB959AC9} "OpenOffice.org Infotip Handler" - ? - C:\Program Files\OpenOffice.org 2.4\program\shlxthdl.dll {63542C48-9552-494A-84F7-73AA6A7C99C1} "OpenOffice.org Property Sheet Handler" - ? - C:\Program Files\OpenOffice.org 2.4\program\shlxthdl.dll {3B092F0C-7696-40E3-A80F-68D74DA84210} "OpenOffice.org Thumbnail Viewer" - ? - C:\Program Files\OpenOffice.org 2.4\program\shlxthdl.dll {C8494E42-ACDD-4739-B0FB-217361E4894F} "Sam Account Folder" - ? - (File not found | COM-object registry key not found) {E29F9716-5C08-4FCD-955A-119FDB5A522D} "Sam Account Folder" - ? - (File not found | COM-object registry key not found) {45AC2688-0253-4ED8-97DE-B5370FA7D48A} "Shell Extension for Malware scanning" - ? - (File not found | COM-object registry key not found) {da67b8ad-e81b-4c70-9b91b417b5e33527} "Windows Search Shell Service" - ? - (File not found | COM-object registry key not found) [Internet Explorer] -----( HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- "eBay - Der weltweite Online-Marktplatz" - ? - hxxp://rover.ebay.com/rover/1/707-37276-17534-15/4 (HTTP value) -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- <binary data> "&Google" - "Google Germany GmbH" - c:\program files\google\googletoolbar2.dll ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} "Java Plug-in 1.6.0_04" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_04-windows-i586.cab {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} "Java Plug-in 1.6.0_05" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab {8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_31" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} "Java Plug-in 1.6.0_31" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_31" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\npjpi160_31.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab {166B1BCA-3F9C-11CF-8075-444553540000} "Shockwave ActiveX Control" - "Adobe Systems, Inc." - C:\Windows\system32\macromed\Director\SwDir.dll / hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} "{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}" - ? - (File not found | COM-object registry key not found) / hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- {4248FE82-7FCB-46AC-B270-339F08212110} "&Virtuelle Tastatur" - "Kaspersky Lab ZAO" - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll {48E73304-E1D6-4330-914C-F5F514E3486C} "An OneNote senden" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll "eBay - Der weltweite Online-Marktplatz" - ? - hxxp://rover.ebay.com/rover/1/707-37276-17534-25/4 (HTTP value) "ICQ7.2" - "ICQ, LLC." - C:\Program Files\ICQ7.2\ICQ.exe {CCF151D8-D089-449F-A5A4-D9909053F20F} "Li&nks untersuchen" - "Kaspersky Lab ZAO" - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll {FF059E31-CC5A-4E2E-BF3B-96E929D65503} "Research" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )----- <binary data> "&Google" - "Google Germany GmbH" - c:\program files\google\googletoolbar2.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {E33CF602-D945-461A-83F0-819F76A199F8} "FilterBHO Class" - "Kaspersky Lab ZAO" - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll {AA58ED58-01DD-4d91-8333-CF10577473F7} "Google Toolbar Helper" - "Google Germany GmbH" - c:\program files\google\googletoolbar2.dll {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} "Google Toolbar Notifier BHO" - "Google Inc." - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} "IEVkbdBHO Class" - "Kaspersky Lab ZAO" - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2ssv.dll {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "Java(tm) Plug-In SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\ssv.dll {9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live Anmelde-Hilfsprogramm" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [Logon] -----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\Users\brune\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini "wkcalrem.LNK" - "Microsoft® Corporation" - C:\Program Files\Microsoft Works\WkCalRem.exe (Shortcut exists | File exists) -----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )----- "swg" - "Google Inc." - "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "AdobeCS4ServiceManager" - "Adobe Systems Incorporated" - "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin "AVP" - "Kaspersky Lab ZAO" - "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" "BDRegion" - "cyberlink" - C:\Program Files\Cyberlink\Shared files\brs.exe "HotkeyApp" - "Wistron" - "C:\Program Files\Launch Manager\HotkeyApp.exe" "IAAnotif" - "Intel Corporation" - "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" "KMCONFIG" - "UASSOFT.COM" - C:\Program Files\Mouse Driver\StartAutorun.exe KMConfig.exe "LaunchAp" - ? - "C:\Program Files\Launch Manager\LaunchAp.exe" "LMgrOSD" - "Wistron Corp." - "C:\Program Files\Launch Manager\OSD.exe" "RemoteControl10" - "CyberLink Corp." - "C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe" "SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files\Common Files\Java\Java Update\jusched.exe" "toolbar_eula_launcher" - " " - C:\Program Files\GoogleEULA\EULALauncher.exe "Wbutton" - "Wistron" - "C:\Program Files\Launch Manager\Wbutton.exe" [Network Providers] -----( HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order )----- "Adobe Drive CS4 Network" - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll [Print Monitors] -----( HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors )----- "Send To Microsoft OneNote Monitor" - "Microsoft Corporation" - C:\Windows\system32\msonpmon.dll [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100" (WPFFontCache_v0400) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe "Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe "Akamai NetSession Interface" (Akamai) - ? - c:\program files\common files\akamai\rswin_3745.dll (File not found) "Apple Mobile Device" (Apple Mobile Device) - "Apple Inc." - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe "Cobian Backup 10 Volume Shadow Copy service" (cbVSCService) - "CobianSoft, Luis Cobian" - C:\Program Files\Cobian Backup 10\cbVSCService.exe "Dienst "Bonjour"" (Bonjour Service) - "Apple Inc." - C:\Program Files\Bonjour\mDNSResponder.exe "Droppix Service" (Droppix Service) - "Droppix" - C:\Program Files\Common Files\Droppix\DxService.exe "Firebird Server - MAGIX Instance" (FirebirdServerMAGIXInstance) - "MAGIX®" - C:\Program Files\ALDI Foto Service Nord\Common\Database\bin\fbserver.exe "FLEXnet Licensing Service" (FLEXnet Licensing Service) - "Acresso Software Inc." - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe "Google Software Updater" (gusvc) - "Google" - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe "Google Update Service (gupdate)" (gupdate) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "Hotspot Shield Monitoring Service" (HssWd) - ? - C:\Program Files\Hotspot Shield\bin\hsswd.exe (File found, but it contains no detailed information) "Hotspot Shield Routing Service" (HssSrv) - ? - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe "Hotspot Shield Service" (hshld) - ? - C:\Program Files\Hotspot Shield\bin\openvpnas.exe (File found, but it contains no detailed information) "Hotspot Shield Tray Service" (HssTrayService) - ? - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE (File found, but it contains no detailed information) "Intel(R) Matrix Storage Event Monitor" (IAANTMON) - "Intel Corporation" - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe "iPod-Dienst" (iPod Service) - "Apple Inc." - C:\Program Files\iPod\bin\iPodService.exe "IviRegMgr" (IviRegMgr) - "InterVideo" - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe "Kaspersky Anti-Virus Service" (AVP) - "Kaspersky Lab ZAO" - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe "Keyboard And Mouse Communication Service" (KMWDSERVICE) - "UASSOFT.COM" - C:\Program Files\Mouse Driver\KMWDSrv.exe "LightScribeService Direct Disc Labeling Service" (LightScribeService) - "Hewlett-Packard Company" - C:\Program Files\Common Files\LightScribe\LSSrvc.exe "Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe "Microsoft Office Diagnostics Service" (odserv) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE "Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe "Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE "PIXMA Extended Survey Program" (IJPLMSVC) - ? - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE "ProtexisLicensing" (ProtexisLicensing) - ? - C:\Windows\system32\PSIService.exe "Sceneo PVR Service" (srvcPVR) - "Buhl Data Service GmbH" - C:\Program Files\Sceneo\AbsolutTV\Services\PVR\PVRService.exe "ServiceLayer" (ServiceLayer) - "Nokia" - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe "Ulead Burning Helper" (UleadBurningHelper) - "Ulead Systems, Inc." - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe "WisLMSvc" (WisLMSvc) - "Wistron Corp." - C:\Program Files\Launch Manager\WisLMSvc.exe [Winlogon] -----( HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify )----- "klogon" - "Kaspersky Lab ZAO" - C:\Windows\system32\klogon.dll [Winsock Providers] -----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )----- "mdnsNSP" - "Apple Inc." - C:\Program Files\Bonjour\mdnsNSP.dll ===[ Logfile end ]=========================================[ Logfile end ]=== Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-25 19:12:17
-----------------------------
19:12:17.214 OS Version: Windows 6.0.6001 Service Pack 1
19:12:17.214 Number of processors: 2 586 0xF0D
19:12:17.229 ComputerName: BRUNE-LAPTOP UserName: brune
19:12:18.399 Initialize success
19:12:28.087 AVAST engine defs: 12062500
19:12:34.686 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
19:12:34.701 Disk 0 Vendor: WDC_WD25 01.0 Size: 238475MB BusType: 3
19:12:34.904 Disk 0 MBR read successfully
19:12:34.904 Disk 0 MBR scan
19:12:34.920 Disk 0 Windows VISTA default MBR code
19:12:34.920 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 118580 MB offset 63
19:12:34.951 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 93895 MB offset 242853888
19:12:34.967 Disk 0 Partition - 00 0F Extended LBA 25995 MB offset 435152655
19:12:35.138 Disk 0 Partition 3 00 0B FAT32 MSWIN4.1 25995 MB offset 435152718
19:12:35.294 Disk 0 scanning sectors +488392065
19:12:35.996 Disk 0 scanning C:\Windows\system32\drivers
19:14:01.181 Service scanning
21:00:41.056 Service HWiNFO32 G:\Hwinfo32\HWiNFO32.SYS **LOCKED** 87
21:00:45.034 Service KL1 C:\Windows\system32\DRIVERS\kl1.sys **LOCKED** 5
21:00:45.081 Service kl2 C:\Windows\system32\DRIVERS\kl2.sys **LOCKED** 5
21:00:45.299 Service KLIM6 C:\Windows\system32\DRIVERS\klim6.sys **LOCKED** 5
21:00:45.377 Service klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys **LOCKED** 5
21:01:05.502 Modules scanning
21:05:00.094 Disk 0 trace - called modules:
21:05:00.235 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll kl1.sys
21:05:00.250 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8781a118]
21:05:00.250 3 CLASSPNP.SYS[8bfa0745] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x86913028]
21:05:00.266 Scan finished successfully
21:05:14.587 Disk 0 MBR has been saved successfully to "C:\Users\brune\Desktop\MBR.dat"
21:05:14.602 The log file has been saved successfully to "C:\Users\brune\Desktop\aswMBR.txt"
|
|
26.06.2012, 08:29
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.07.2012, 17:23
| #23 |
| | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr Hallo, ich mal wieder SUPERAntiSpyware ließ sich leider nicht herunterladen, von daher nur der log von Malewarebytes: Code:
ATTFilter Malwarebytes Anti-Malware 1.61.0.1400 www.malwarebytes.org Datenbank Version: v2012.06.26.02 Windows Vista Service Pack 1 x86 NTFS Internet Explorer 8.0.6001.19088 brune :: BRUNE-LAPTOP [Administrator] 27.06.2012 18:48:24 mbam-log-2012-06-27 (18-48-24).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 459369 Laufzeit: 2 Stunde(n), 51 Minute(n), 39 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Lieben Gruß, Nicole |
|
04.07.2012, 15:03
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr
__________________ Logfiles bitte immer in CODE-Tags posten |
|
11.07.2012, 21:35
| #25 |
| | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr Nee, bei mir tut sich nichts, wenn ich auf den Link klicke. Reicht der Malwarebytes-Suchlauf nicht? Oder gibt's noch ein anderes Programm zur Absicherung? Lieben Gruß! |
|
12.07.2012, 10:22
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.07.2012, 15:52
| #27 |
| | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr sooo, hier der log: Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 07/18/2012 at 03:45 PM
Application Version : 5.5.1006
Core Rules Database Version : 8917
Trace Rules Database Version: 6729
Scan type : Complete Scan
Total Scan Time : 01:45:28
Operating System Information
Windows Vista Home Premium 32-bit, Service Pack 1 (Build 6.00.6001)
UAC On - Limited User (Administrator User)
Memory items scanned : 613
Memory threats detected : 0
Registry items scanned : 42428
Registry threats detected : 0
File items scanned : 82046
File threats detected : 525
Adware.Tracking Cookie
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad.360yield[2].txt [ /ad.360yield ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad.yieldmanager[1].txt [ /ad.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad.yieldmanager[2].txt [ /ad.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad.yieldmanager[3].txt [ /ad.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad.yieldmanager[4].txt [ /ad.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad.yieldmanager[6].txt [ /ad.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad.yieldmanager[7].txt [ /ad.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad.zanox[1].txt [ /ad.zanox ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad.zanox[3].txt [ /ad.zanox ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad1.adfarm.adtelligence[2].txt [ /ad1.adfarm.adtelligence ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad2.adfarm1.adition[1].txt [ /ad2.adfarm1.adition ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad2.adfarm1.adition[3].txt [ /ad2.adfarm1.adition ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ad4.adfarm1.adition[2].txt [ /ad4.adfarm1.adition ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@adfarm1.adition[2].txt [ /adfarm1.adition ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@adfarm1.adition[3].txt [ /adfarm1.adition ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@adfarm1.adition[4].txt [ /adfarm1.adition ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@adredirect.zattoo[2].txt [ /adredirect.zattoo ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ads.creative-serving[2].txt [ /ads.creative-serving ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@ads.pointroll[2].txt [ /ads.pointroll ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@adserver.adtechus[1].txt [ /adserver.adtechus ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@adtech[1].txt [ /adtech ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@adtech[2].txt [ /adtech ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@advertising[1].txt [ /advertising ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@advertising[2].txt [ /advertising ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@adviva[1].txt [ /adviva ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@adx.chip[2].txt [ /adx.chip ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@apmebf[1].txt [ /apmebf ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@apmebf[2].txt [ /apmebf ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@apmebf[3].txt [ /apmebf ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@apmebf[4].txt [ /apmebf ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@apmebf[5].txt [ /apmebf ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt.combing[1].txt [ /atdmt.combing ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt.combing[2].txt [ /atdmt.combing ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt.combing[3].txt [ /atdmt.combing ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt.combing[4].txt [ /atdmt.combing ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt.combing[5].txt [ /atdmt.combing ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt.combing[6].txt [ /atdmt.combing ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt.combing[7].txt [ /atdmt.combing ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt.combing[8].txt [ /atdmt.combing ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt[10].txt [ /atdmt ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt[1].txt [ /atdmt ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt[2].txt [ /atdmt ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt[3].txt [ /atdmt ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt[4].txt [ /atdmt ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt[5].txt [ /atdmt ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt[6].txt [ /atdmt ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt[7].txt [ /atdmt ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt[8].txt [ /atdmt ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@atdmt[9].txt [ /atdmt ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@bluestreak[2].txt [ /bluestreak ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@bs.serving-sys[1].txt [ /bs.serving-sys ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@bs.serving-sys[2].txt [ /bs.serving-sys ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@bs.serving-sys[3].txt [ /bs.serving-sys ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@bs.serving-sys[4].txt [ /bs.serving-sys ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@content.yieldmanager[11].txt [ /content.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@content.yieldmanager[1].txt [ /content.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@content.yieldmanager[2].txt [ /content.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@content.yieldmanager[3].txt [ /content.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@content.yieldmanager[4].txt [ /content.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@content.yieldmanager[5].txt [ /content.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@content.yieldmanager[6].txt [ /content.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@content.yieldmanager[7].txt [ /content.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@content.yieldmanager[8].txt [ /content.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@content.yieldmanager[9].txt [ /content.yieldmanager ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@doubleclick[1].txt [ /doubleclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@doubleclick[2].txt [ /doubleclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@doubleclick[3].txt [ /doubleclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@doubleclick[4].txt [ /doubleclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@doubleclick[5].txt [ /doubleclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@doubleclick[6].txt [ /doubleclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@doubleclick[7].txt [ /doubleclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@dyntracker[2].txt [ /dyntracker ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@eyewonder[2].txt [ /eyewonder ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@fastclick[1].txt [ /fastclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@fastclick[2].txt [ /fastclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@fastclick[4].txt [ /fastclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@im.banner.t-online[1].txt [ /im.banner.t-online ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@imrworldwide[2].txt [ /imrworldwide ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@invitemedia[1].txt [ /invitemedia ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@maxis.112.2o7[1].txt [ /maxis.112.2o7 ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@maxis.112.2o7[2].txt [ /maxis.112.2o7 ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@maxis.112.2o7[3].txt [ /maxis.112.2o7 ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@mediaplex[1].txt [ /mediaplex ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@mediaplex[2].txt [ /mediaplex ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@mediaplex[3].txt [ /mediaplex ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@mediaplex[4].txt [ /mediaplex ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@mediaplex[5].txt [ /mediaplex ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@mediaplex[6].txt [ /mediaplex ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@msnportal.112.2o7[1].txt [ /msnportal.112.2o7 ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@pointroll[1].txt [ /pointroll ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@questionmarket[1].txt [ /questionmarket ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@revsci[1].txt [ /revsci ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@revsci[2].txt [ /revsci ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@serving-sys[1].txt [ /serving-sys ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@serving-sys[2].txt [ /serving-sys ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@serving-sys[3].txt [ /serving-sys ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@serving-sys[4].txt [ /serving-sys ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@serving-sys[6].txt [ /serving-sys ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@serving-sys[7].txt [ /serving-sys ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@sevenoneintermedia.112.2o7[1].txt [ /sevenoneintermedia.112.2o7 ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@smartadserver[1].txt [ /smartadserver ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@smartadserver[2].txt [ /smartadserver ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@smartadserver[3].txt [ /smartadserver ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@specificclick[2].txt [ /specificclick ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@statcounter[1].txt [ /statcounter ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@statse.webtrendslive[2].txt [ /statse.webtrendslive ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@tagscanner.softonic[2].txt [ /tagscanner.softonic ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@tracking.quisma[1].txt [ /tracking.quisma ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@tracking.quisma[2].txt [ /tracking.quisma ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@tradedoubler[2].txt [ /tradedoubler ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@tradedoubler[3].txt [ /tradedoubler ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@tradedoubler[4].txt [ /tradedoubler ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@tradedoubler[5].txt [ /tradedoubler ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@tradedoubler[6].txt [ /tradedoubler ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@traffictrack[1].txt [ /traffictrack ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@tribalfusion[2].txt [ /tribalfusion ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@unitymedia[2].txt [ /unitymedia ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@webmasterplan[2].txt [ /webmasterplan ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@weborama[1].txt [ /weborama ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@www.windowsmedia[2].txt [ /www.windowsmedia ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@www.zanox-affiliate[1].txt [ /www.zanox-affiliate ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@www4.smartadserver[2].txt [ /www4.smartadserver ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@xiti[1].txt [ /xiti ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@zanox-affiliate[1].txt [ /zanox-affiliate ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@zanox[1].txt [ /zanox ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@zanox[2].txt [ /zanox ]
C:\Users\brune\AppData\Roaming\Microsoft\Windows\Cookies\brune@zanox[4].txt [ /zanox ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@adxpose[2].txt [ Cookie:brune@adxpose.com/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@fastclick[2].txt [ Cookie:brune@fastclick.net/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@doubleclick[1].txt [ Cookie:brune@doubleclick.net/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@specificclick[1].txt [ Cookie:brune@specificclick.net/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@statse.webtrendslive[1].txt [ Cookie:brune@statse.webtrendslive.com/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@clickfuse[2].txt [ Cookie:brune@clickfuse.com/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@im.banner.t-online[2].txt [ Cookie:brune@im.banner.t-online.de/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@www.burstnet[1].txt [ Cookie:brune@www.burstnet.com/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@revsci[1].txt [ Cookie:brune@revsci.net/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@invitemedia[1].txt [ Cookie:brune@invitemedia.com/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@adviva[1].txt [ Cookie:brune@adviva.net/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@ad.yieldmanager[1].txt [ Cookie:brune@ad.yieldmanager.com/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@adfarm1.adition[2].txt [ Cookie:brune@adfarm1.adition.com/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@stat.aldi[3].txt [ Cookie:brune@stat.aldi.com/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@smartadserver[1].txt [ Cookie:brune@smartadserver.com/ ]
C:\USERS\BRUNE\AppData\Roaming\Microsoft\Windows\Cookies\Low\brune@ww251.smartadserver[2].txt [ Cookie:brune@ww251.smartadserver.com/ ]
C:\USERS\BRUNE\Cookies\brune@xiti[1].txt [ Cookie:brune@xiti.com/ ]
C:\USERS\BRUNE\Cookies\brune@doubleclick[6].txt [ Cookie:brune@doubleclick.net/ ]
C:\USERS\BRUNE\Cookies\brune@maxis.112.2o7[3].txt [ Cookie:brune@maxis.112.2o7.net/ ]
C:\USERS\BRUNE\Cookies\brune@ad2.adfarm1.adition[3].txt [ Cookie:brune@ad2.adfarm1.adition.com/ ]
C:\USERS\BRUNE\Cookies\brune@unitymedia[2].txt [ Cookie:brune@unitymedia.de/ ]
C:\USERS\BRUNE\Cookies\brune@im.banner.t-online[1].txt [ Cookie:brune@im.banner.t-online.de/ ]
C:\USERS\BRUNE\Cookies\brune@mediaplex[5].txt [ Cookie:brune@mediaplex.com/ ]
C:\USERS\BRUNE\Cookies\brune@revsci[2].txt [ Cookie:brune@revsci.net/ ]
C:\USERS\BRUNE\Cookies\brune@atdmt.combing[7].txt [ Cookie:brune@atdmt.combing.com/ ]
C:\USERS\BRUNE\Cookies\brune@tracking.quisma[2].txt [ Cookie:brune@tracking.quisma.com/ ]
C:\USERS\BRUNE\Cookies\brune@adfarm1.adition[4].txt [ Cookie:brune@adfarm1.adition.com/ ]
C:\USERS\BRUNE\Cookies\brune@apmebf[5].txt [ Cookie:brune@apmebf.com/ ]
imagesrv.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LLAGA9KB ]
.kaspersky.122.2o7.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.estat.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adserver.adtechus.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.guj.122.2o7.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
partners.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
www.burstnet.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.ar.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tacoda.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.saymedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.pro-market.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.pro-market.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.pro-market.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.pro-market.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.yieldmanager.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
dm3adserver.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
tracking.mlsat02.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
widget.rezeptefinden.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
eas4.emediate.eu [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
eas4.emediate.eu [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
server.adform.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ads.falkemedia.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
tracking.klicktel.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
tracking.klicktel.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.atrack.allposters.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.cunda.122.2o7.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.a.revenuemax.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.burstnet.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjmyooazsdq.stats.esomniture.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.ipcmedia.122.2o7.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.c1.atdmt.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
tomtailor.dyntracker.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad1.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ww251.smartadserver.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
server.adform.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tracking.mindshare.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.lfstmedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.trackalyzer.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
t5.trackalyzer.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.tracker.vinsight.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\BRUNE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BPVV6K5V.DEFAULT\COOKIES.SQLITE ]
Trojan.Agent/Gen-Bancos
C:\PROGRAM FILES\SCENEO\ABSOLUTTV\BDSUPDATE.DLL
Kann ich den einfach löschen bzw. den ganzen Rest gleich mit?Lieben Gruß, Nicole |
|
18.07.2012, 20:32
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehrCode:
ATTFilter UAC On - Limited User (Administrator User)
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.07.2012, 10:09
| #29 |
| | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr Nein, allerdings tut sich nichts, wenn ich dies versuche - was ich gerade ungefähr 100 mal getan habe. Um zu meiner Frage zurückzukommen: Kann ich die Funde löschen oder nicht? Lieben Gruß, Nicole |
|
19.07.2012, 19:00
| #30 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehrZitat:
Schließe SUPERAntiSpyware komplett, dann die Verknüpfung von SUPERAntiSpyware auf dem Desktop rechtsklicken und dann auf "als Administrator ausführen" klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Win:32 Rootkit-Gen gelöscht - Kaspersky findet nichts mehr |
| .dll, andere, antivir, avast, compu, computer, dateien, formatiere, formatieren, gefunde, gelöscht, kaspersky, komplett, lange, malwarebytes, möglichkeit, nichts, poste, posten, schei, thema, vollständige, vorgeschichte, win, win:32 rootkit-gen, wirklich |
Linear-Darstellung
