| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Incredibar Toolbar gefangen und blutiger Anfänger ... !Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
26.09.2012, 16:04
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Incredibar Toolbar gefangen und blutiger Anfänger ... ! Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
26.09.2012, 16:24
| #17 |
 | Incredibar Toolbar gefangen und blutiger Anfänger ... ! ok ...
__________________Code:
ATTFilter 17:20:05.0254 5488 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
17:20:05.0322 5488 ============================================================
17:20:05.0322 5488 Current date / time: 2012/09/26 17:20:05.0322
17:20:05.0322 5488 SystemInfo:
17:20:05.0322 5488
17:20:05.0323 5488 OS Version: 6.1.7601 ServicePack: 1.0
17:20:05.0323 5488 Product type: Workstation
17:20:05.0323 5488 ComputerName: ROBERT
17:20:05.0323 5488 UserName: User
17:20:05.0323 5488 Windows directory: C:\Windows
17:20:05.0323 5488 System windows directory: C:\Windows
17:20:05.0323 5488 Processor architecture: Intel x86
17:20:05.0323 5488 Number of processors: 4
17:20:05.0323 5488 Page size: 0x1000
17:20:05.0323 5488 Boot type: Normal boot
17:20:05.0323 5488 ============================================================
17:20:06.0220 5488 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:20:06.0224 5488 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:20:12.0466 5488 Drive \Device\Harddisk2\DR2 - Size: 0x1E3000000 (7.55 Gb), SectorSize: 0x200, Cylinders: 0x3D9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:20:12.0468 5488 ============================================================
17:20:12.0468 5488 \Device\Harddisk0\DR0:
17:20:12.0468 5488 MBR partitions:
17:20:12.0468 5488 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:20:12.0468 5488 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1866D800
17:20:12.0468 5488 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x186A0000, BlocksNum 0x21CE5800
17:20:12.0468 5488 \Device\Harddisk1\DR1:
17:20:12.0480 5488 MBR partitions:
17:20:12.0480 5488 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x747059C1
17:20:12.0480 5488 \Device\Harddisk2\DR2:
17:20:12.0481 5488 MBR partitions:
17:20:12.0481 5488 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0xF17FE0
17:20:12.0481 5488 ============================================================
17:20:12.0501 5488 C: <-> \Device\Harddisk0\DR0\Partition2
17:20:12.0536 5488 D: <-> \Device\Harddisk0\DR0\Partition3
17:20:12.0546 5488 F: <-> \Device\Harddisk1\DR1\Partition1
17:20:12.0547 5488 ============================================================
17:20:12.0547 5488 Initialize success
17:20:12.0547 5488 ============================================================
17:22:12.0005 5560 ============================================================
17:22:12.0005 5560 Scan started
17:22:12.0005 5560 Mode: Manual; SigCheck; TDLFS;
17:22:12.0005 5560 ============================================================
17:22:12.0267 5560 ================ Scan system memory ========================
17:22:12.0267 5560 System memory - ok
17:22:12.0268 5560 ================ Scan services =============================
17:22:12.0387 5560 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:22:12.0519 5560 1394ohci - ok
17:22:12.0561 5560 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:22:12.0580 5560 ACPI - ok
17:22:12.0597 5560 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:22:12.0654 5560 AcpiPmi - ok
17:22:12.0775 5560 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
17:22:12.0789 5560 AdobeARMservice - ok
17:22:12.0855 5560 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:22:12.0869 5560 AdobeFlashPlayerUpdateSvc - ok
17:22:12.0900 5560 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:22:12.0923 5560 adp94xx - ok
17:22:12.0939 5560 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:22:12.0951 5560 adpahci - ok
17:22:12.0959 5560 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:22:12.0969 5560 adpu320 - ok
17:22:12.0995 5560 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:22:13.0042 5560 AeLookupSvc - ok
17:22:13.0085 5560 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
17:22:13.0119 5560 AFD - ok
17:22:13.0150 5560 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
17:22:13.0164 5560 agp440 - ok
17:22:13.0182 5560 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
17:22:13.0196 5560 aic78xx - ok
17:22:13.0220 5560 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
17:22:13.0263 5560 ALG - ok
17:22:13.0276 5560 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
17:22:13.0295 5560 aliide - ok
17:22:13.0304 5560 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
17:22:13.0318 5560 amdagp - ok
17:22:13.0329 5560 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
17:22:13.0342 5560 amdide - ok
17:22:13.0362 5560 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:22:13.0394 5560 AmdK8 - ok
17:22:13.0414 5560 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:22:13.0437 5560 AmdPPM - ok
17:22:13.0469 5560 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:22:13.0498 5560 amdsata - ok
17:22:13.0520 5560 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:22:13.0533 5560 amdsbs - ok
17:22:13.0542 5560 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:22:13.0552 5560 amdxata - ok
17:22:13.0624 5560 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
17:22:13.0659 5560 AntiVirSchedulerService - ok
17:22:13.0697 5560 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
17:22:13.0709 5560 AntiVirService - ok
17:22:13.0750 5560 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
17:22:13.0841 5560 AppID - ok
17:22:13.0864 5560 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:22:13.0929 5560 AppIDSvc - ok
17:22:13.0955 5560 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
17:22:13.0991 5560 Appinfo - ok
17:22:14.0000 5560 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
17:22:14.0012 5560 arc - ok
17:22:14.0024 5560 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:22:14.0034 5560 arcsas - ok
17:22:14.0054 5560 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:22:14.0139 5560 AsyncMac - ok
17:22:14.0167 5560 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
17:22:14.0179 5560 atapi - ok
17:22:14.0216 5560 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:22:14.0285 5560 AudioEndpointBuilder - ok
17:22:14.0292 5560 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
17:22:14.0315 5560 Audiosrv - ok
17:22:14.0378 5560 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
17:22:14.0407 5560 avgntflt - ok
17:22:14.0451 5560 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
17:22:14.0465 5560 avipbb - ok
17:22:14.0490 5560 [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
17:22:14.0502 5560 avkmgr - ok
17:22:14.0533 5560 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:22:14.0604 5560 AxInstSV - ok
17:22:14.0627 5560 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
17:22:14.0668 5560 b06bdrv - ok
17:22:14.0706 5560 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
17:22:14.0722 5560 b57nd60x - ok
17:22:14.0747 5560 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
17:22:14.0785 5560 BDESVC - ok
17:22:14.0799 5560 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
17:22:14.0837 5560 Beep - ok
17:22:14.0883 5560 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
17:22:14.0936 5560 BFE - ok
17:22:14.0978 5560 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
17:22:15.0032 5560 BITS - ok
17:22:15.0050 5560 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:22:15.0066 5560 blbdrive - ok
17:22:15.0092 5560 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:22:15.0118 5560 bowser - ok
17:22:15.0128 5560 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:22:15.0195 5560 BrFiltLo - ok
17:22:15.0204 5560 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:22:15.0241 5560 BrFiltUp - ok
17:22:15.0271 5560 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
17:22:15.0292 5560 Browser - ok
17:22:15.0315 5560 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:22:15.0357 5560 Brserid - ok
17:22:15.0366 5560 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:22:15.0375 5560 BrSerWdm - ok
17:22:15.0388 5560 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:22:15.0403 5560 BrUsbMdm - ok
17:22:15.0405 5560 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:22:15.0428 5560 BrUsbSer - ok
17:22:15.0438 5560 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:22:15.0463 5560 BTHMODEM - ok
17:22:15.0502 5560 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
17:22:15.0552 5560 bthserv - ok
17:22:15.0577 5560 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:22:15.0617 5560 cdfs - ok
17:22:15.0654 5560 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:22:15.0682 5560 cdrom - ok
17:22:15.0718 5560 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
17:22:15.0764 5560 CertPropSvc - ok
17:22:15.0780 5560 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:22:15.0795 5560 circlass - ok
17:22:15.0818 5560 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
17:22:15.0835 5560 CLFS - ok
17:22:15.0891 5560 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:22:15.0919 5560 clr_optimization_v2.0.50727_32 - ok
17:22:15.0998 5560 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:22:16.0022 5560 clr_optimization_v4.0.30319_32 - ok
17:22:16.0033 5560 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:22:16.0046 5560 CmBatt - ok
17:22:16.0052 5560 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:22:16.0065 5560 cmdide - ok
17:22:16.0104 5560 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
17:22:16.0139 5560 CNG - ok
17:22:16.0149 5560 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:22:16.0157 5560 Compbatt - ok
17:22:16.0179 5560 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:22:16.0199 5560 CompositeBus - ok
17:22:16.0202 5560 COMSysApp - ok
17:22:16.0216 5560 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:22:16.0224 5560 crcdisk - ok
17:22:16.0262 5560 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:22:16.0301 5560 CryptSvc - ok
17:22:16.0344 5560 [ 91C1736E77CFF029302728B431D0EEDB ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
17:22:16.0367 5560 dc3d - ok
17:22:16.0415 5560 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
17:22:16.0466 5560 DcomLaunch - ok
17:22:16.0487 5560 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
17:22:16.0554 5560 defragsvc - ok
17:22:16.0585 5560 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:22:16.0652 5560 DfsC - ok
17:22:16.0689 5560 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
17:22:16.0751 5560 Dhcp - ok
17:22:16.0762 5560 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
17:22:16.0793 5560 discache - ok
17:22:16.0811 5560 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:22:16.0820 5560 Disk - ok
17:22:16.0840 5560 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:22:16.0859 5560 Dnscache - ok
17:22:16.0884 5560 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
17:22:16.0912 5560 dot3svc - ok
17:22:16.0944 5560 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
17:22:17.0003 5560 DPS - ok
17:22:17.0026 5560 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:22:17.0039 5560 drmkaud - ok
17:22:17.0081 5560 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:22:17.0116 5560 DXGKrnl - ok
17:22:17.0136 5560 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
17:22:17.0167 5560 EapHost - ok
17:22:17.0219 5560 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
17:22:17.0275 5560 ebdrv - ok
17:22:17.0308 5560 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
17:22:17.0350 5560 EFS - ok
17:22:17.0403 5560 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:22:17.0447 5560 ehRecvr - ok
17:22:17.0474 5560 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
17:22:17.0515 5560 ehSched - ok
17:22:17.0547 5560 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:22:17.0588 5560 elxstor - ok
17:22:17.0621 5560 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:22:17.0639 5560 ErrDev - ok
17:22:17.0667 5560 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
17:22:17.0706 5560 EventSystem - ok
17:22:17.0721 5560 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
17:22:17.0747 5560 exfat - ok
17:22:17.0760 5560 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:22:17.0783 5560 fastfat - ok
17:22:17.0829 5560 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
17:22:17.0879 5560 Fax - ok
17:22:17.0890 5560 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:22:17.0911 5560 fdc - ok
17:22:17.0924 5560 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
17:22:17.0962 5560 fdPHost - ok
17:22:17.0966 5560 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
17:22:17.0994 5560 FDResPub - ok
17:22:18.0012 5560 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:22:18.0021 5560 FileInfo - ok
17:22:18.0033 5560 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:22:18.0064 5560 Filetrace - ok
17:22:18.0087 5560 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:22:18.0101 5560 flpydisk - ok
17:22:18.0116 5560 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:22:18.0127 5560 FltMgr - ok
17:22:18.0164 5560 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
17:22:18.0188 5560 FontCache - ok
17:22:18.0229 5560 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:22:18.0236 5560 FontCache3.0.0.0 - ok
17:22:18.0247 5560 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:22:18.0255 5560 FsDepends - ok
17:22:18.0292 5560 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:22:18.0307 5560 Fs_Rec - ok
17:22:18.0349 5560 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:22:18.0389 5560 fvevol - ok
17:22:18.0406 5560 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:22:18.0417 5560 gagp30kx - ok
17:22:18.0455 5560 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
17:22:18.0509 5560 gpsvc - ok
17:22:18.0590 5560 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:22:18.0615 5560 gupdate - ok
17:22:18.0629 5560 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:22:18.0641 5560 gupdatem - ok
17:22:18.0651 5560 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:22:18.0680 5560 hcw85cir - ok
17:22:18.0727 5560 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:22:18.0778 5560 HdAudAddService - ok
17:22:18.0795 5560 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:22:18.0820 5560 HDAudBus - ok
17:22:18.0834 5560 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:22:18.0855 5560 HidBatt - ok
17:22:18.0871 5560 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:22:18.0891 5560 HidBth - ok
17:22:18.0906 5560 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:22:18.0929 5560 HidIr - ok
17:22:18.0951 5560 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
17:22:18.0991 5560 hidserv - ok
17:22:19.0051 5560 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
17:22:19.0078 5560 HidUsb - ok
17:22:19.0103 5560 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:22:19.0139 5560 hkmsvc - ok
17:22:19.0168 5560 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:22:19.0248 5560 HomeGroupListener - ok
17:22:19.0288 5560 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:22:19.0321 5560 HomeGroupProvider - ok
17:22:19.0338 5560 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:22:19.0352 5560 HpSAMD - ok
17:22:19.0403 5560 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:22:19.0437 5560 HTTP - ok
17:22:19.0474 5560 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:22:19.0500 5560 hwpolicy - ok
17:22:19.0536 5560 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:22:19.0555 5560 i8042prt - ok
17:22:19.0574 5560 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:22:19.0594 5560 iaStorV - ok
17:22:19.0637 5560 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:22:19.0667 5560 idsvc - ok
17:22:19.0703 5560 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:22:19.0712 5560 iirsp - ok
17:22:19.0734 5560 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
17:22:19.0794 5560 IKEEXT - ok
17:22:19.0819 5560 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
17:22:19.0827 5560 intelide - ok
17:22:19.0854 5560 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:22:19.0911 5560 intelppm - ok
17:22:20.0032 5560 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:22:20.0102 5560 IPBusEnum - ok
17:22:20.0113 5560 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:22:20.0194 5560 IpFilterDriver - ok
17:22:20.0293 5560 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:22:20.0334 5560 iphlpsvc - ok
17:22:20.0392 5560 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:22:20.0472 5560 IPMIDRV - ok
17:22:20.0510 5560 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:22:20.0541 5560 IPNAT - ok
17:22:20.0567 5560 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:22:20.0592 5560 IRENUM - ok
17:22:20.0600 5560 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:22:20.0610 5560 isapnp - ok
17:22:20.0633 5560 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:22:20.0645 5560 iScsiPrt - ok
17:22:20.0671 5560 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:22:20.0680 5560 kbdclass - ok
17:22:20.0727 5560 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:22:20.0743 5560 kbdhid - ok
17:22:20.0752 5560 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
17:22:20.0761 5560 KeyIso - ok
17:22:20.0796 5560 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:22:20.0806 5560 KSecDD - ok
17:22:20.0845 5560 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:22:20.0876 5560 KSecPkg - ok
17:22:20.0893 5560 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
17:22:20.0933 5560 KtmRm - ok
17:22:20.0967 5560 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
17:22:21.0016 5560 LanmanServer - ok
17:22:21.0028 5560 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:22:21.0060 5560 LanmanWorkstation - ok
17:22:21.0095 5560 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:22:21.0123 5560 lltdio - ok
17:22:21.0154 5560 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:22:21.0184 5560 lltdsvc - ok
17:22:21.0188 5560 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
17:22:21.0211 5560 lmhosts - ok
17:22:21.0232 5560 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:22:21.0242 5560 LSI_FC - ok
17:22:21.0258 5560 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:22:21.0268 5560 LSI_SAS - ok
17:22:21.0283 5560 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:22:21.0292 5560 LSI_SAS2 - ok
17:22:21.0304 5560 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:22:21.0314 5560 LSI_SCSI - ok
17:22:21.0328 5560 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
17:22:21.0358 5560 luafv - ok
17:22:21.0412 5560 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:22:21.0421 5560 MBAMProtector - ok
17:22:21.0470 5560 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:22:21.0483 5560 MBAMScheduler - ok
17:22:21.0531 5560 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
17:22:21.0547 5560 MBAMService - ok
17:22:21.0591 5560 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:22:21.0601 5560 Mcx2Svc - ok
17:22:21.0613 5560 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:22:21.0621 5560 megasas - ok
17:22:21.0637 5560 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:22:21.0649 5560 MegaSR - ok
17:22:21.0677 5560 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
17:22:21.0731 5560 MMCSS - ok
17:22:21.0746 5560 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
17:22:21.0778 5560 Modem - ok
17:22:21.0813 5560 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:22:21.0855 5560 monitor - ok
17:22:21.0884 5560 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys
17:22:21.0898 5560 mouclass - ok
17:22:21.0910 5560 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:22:21.0933 5560 mouhid - ok
17:22:21.0960 5560 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:22:21.0974 5560 mountmgr - ok
17:22:22.0033 5560 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:22:22.0062 5560 MozillaMaintenance - ok
17:22:22.0081 5560 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
17:22:22.0096 5560 mpio - ok
17:22:22.0105 5560 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:22:22.0142 5560 mpsdrv - ok
17:22:22.0176 5560 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:22:22.0213 5560 MpsSvc - ok
17:22:22.0244 5560 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:22:22.0262 5560 MRxDAV - ok
17:22:22.0295 5560 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:22:22.0329 5560 mrxsmb - ok
17:22:22.0368 5560 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:22:22.0406 5560 mrxsmb10 - ok
17:22:22.0425 5560 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:22:22.0438 5560 mrxsmb20 - ok
17:22:22.0445 5560 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
17:22:22.0458 5560 msahci - ok
17:22:22.0490 5560 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:22:22.0505 5560 msdsm - ok
17:22:22.0523 5560 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
17:22:22.0544 5560 MSDTC - ok
17:22:22.0580 5560 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:22:22.0609 5560 Msfs - ok
17:22:22.0616 5560 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:22:22.0635 5560 mshidkmdf - ok
17:22:22.0661 5560 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:22:22.0669 5560 msisadrv - ok
17:22:22.0696 5560 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:22:22.0720 5560 MSiSCSI - ok
17:22:22.0724 5560 msiserver - ok
17:22:22.0741 5560 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:22:22.0770 5560 MSKSSRV - ok
17:22:22.0784 5560 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:22:22.0809 5560 MSPCLOCK - ok
17:22:22.0822 5560 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:22:22.0855 5560 MSPQM - ok
17:22:22.0870 5560 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:22:22.0881 5560 MsRPC - ok
17:22:22.0892 5560 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:22:22.0900 5560 mssmbios - ok
17:22:22.0911 5560 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:22:22.0930 5560 MSTEE - ok
17:22:22.0934 5560 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:22:22.0942 5560 MTConfig - ok
17:22:22.0977 5560 [ CBE71C122434805CB73FFB6619F60598 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
17:22:23.0000 5560 MTsensor - ok
17:22:23.0016 5560 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
17:22:23.0030 5560 Mup - ok
17:22:23.0063 5560 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
17:22:23.0106 5560 napagent - ok
17:22:23.0144 5560 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:22:23.0164 5560 NativeWifiP - ok
17:22:23.0204 5560 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:22:23.0232 5560 NDIS - ok
17:22:23.0256 5560 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:22:23.0291 5560 NdisCap - ok
17:22:23.0309 5560 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:22:23.0346 5560 NdisTapi - ok
17:22:23.0377 5560 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:22:23.0402 5560 Ndisuio - ok
17:22:23.0440 5560 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:22:23.0468 5560 NdisWan - ok
17:22:23.0480 5560 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:22:23.0504 5560 NDProxy - ok
17:22:23.0600 5560 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
17:22:23.0645 5560 Nero BackItUp Scheduler 4.0 - ok
17:22:23.0660 5560 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:22:23.0692 5560 NetBIOS - ok
17:22:23.0723 5560 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:22:23.0789 5560 NetBT - ok
17:22:23.0807 5560 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
17:22:23.0818 5560 Netlogon - ok
17:22:23.0852 5560 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
17:22:23.0904 5560 Netman - ok
17:22:23.0924 5560 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
17:22:23.0947 5560 netprofm - ok
17:22:23.0964 5560 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:22:23.0972 5560 NetTcpPortSharing - ok
17:22:23.0997 5560 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:22:24.0006 5560 nfrd960 - ok
17:22:24.0039 5560 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:22:24.0069 5560 NlaSvc - ok
17:22:24.0079 5560 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:22:24.0109 5560 Npfs - ok
17:22:24.0127 5560 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
17:22:24.0146 5560 nsi - ok
17:22:24.0155 5560 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:22:24.0186 5560 nsiproxy - ok
17:22:24.0229 5560 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:22:24.0255 5560 Ntfs - ok
17:22:24.0270 5560 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
17:22:24.0289 5560 Null - ok
17:22:24.0317 5560 [ B5E37E31C053BC9950455A257526514B ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x32.sys
17:22:24.0330 5560 NVENETFD - ok
17:22:24.0505 5560 [ E572EBF0A86A76E7CFCAAB00648F0F83 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:22:24.0673 5560 nvlddmkm - ok
17:22:24.0701 5560 [ 5BF9C11586F4764446407F509F1BECA8 ] NVNET C:\Windows\system32\DRIVERS\nvmf6232.sys
17:22:24.0713 5560 NVNET - ok
17:22:24.0729 5560 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:22:24.0740 5560 nvraid - ok
17:22:24.0761 5560 [ F13618F0CB1E95232F4C2401592A59E9 ] nvsmu C:\Windows\system32\DRIVERS\nvsmu.sys
17:22:24.0797 5560 nvsmu - ok
17:22:24.0829 5560 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:22:24.0863 5560 nvstor - ok
17:22:24.0885 5560 [ A511F04A121F52CFA538407A77BB7E92 ] nvsvc C:\Windows\system32\nvvsvc.exe
17:22:24.0901 5560 nvsvc - ok
17:22:24.0915 5560 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:22:24.0930 5560 nv_agp - ok
17:22:24.0944 5560 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:22:24.0968 5560 ohci1394 - ok
17:22:24.0993 5560 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:22:25.0036 5560 p2pimsvc - ok
17:22:25.0052 5560 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
17:22:25.0076 5560 p2psvc - ok
17:22:25.0098 5560 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:22:25.0132 5560 Parport - ok
17:22:25.0159 5560 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:22:25.0173 5560 partmgr - ok
17:22:25.0185 5560 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
17:22:25.0205 5560 Parvdm - ok
17:22:25.0220 5560 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:22:25.0239 5560 PcaSvc - ok
17:22:25.0248 5560 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
17:22:25.0262 5560 pci - ok
17:22:25.0270 5560 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
17:22:25.0278 5560 pciide - ok
17:22:25.0293 5560 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:22:25.0304 5560 pcmcia - ok
17:22:25.0317 5560 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
17:22:25.0326 5560 pcw - ok
17:22:25.0345 5560 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:22:25.0371 5560 PEAUTH - ok
17:22:25.0438 5560 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
17:22:25.0507 5560 pla - ok
17:22:25.0574 5560 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:22:25.0635 5560 PlugPlay - ok
17:22:25.0667 5560 [ 379F7A0EC9FBE07629FD3F244D3E3E44 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:22:25.0691 5560 Pml Driver HPZ12 - ok
17:22:25.0713 5560 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:22:25.0734 5560 PNRPAutoReg - ok
17:22:25.0754 5560 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:22:25.0770 5560 PNRPsvc - ok
17:22:25.0806 5560 [ 60A044879C4FA76314494F5FDDC43B93 ] Point32 C:\Windows\system32\DRIVERS\point32.sys
17:22:25.0817 5560 Point32 - ok
17:22:25.0832 5560 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:22:25.0875 5560 PolicyAgent - ok
17:22:25.0903 5560 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
17:22:25.0922 5560 Power - ok
17:22:25.0947 5560 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:22:25.0977 5560 PptpMiniport - ok
17:22:25.0989 5560 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:22:25.0998 5560 Processor - ok
17:22:26.0029 5560 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
17:22:26.0071 5560 ProfSvc - ok
17:22:26.0085 5560 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:22:26.0112 5560 ProtectedStorage - ok
17:22:26.0136 5560 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:22:26.0163 5560 Psched - ok
17:22:26.0195 5560 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:22:26.0224 5560 ql2300 - ok
17:22:26.0241 5560 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:22:26.0251 5560 ql40xx - ok
17:22:26.0277 5560 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
17:22:26.0299 5560 QWAVE - ok
17:22:26.0312 5560 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:22:26.0322 5560 QWAVEdrv - ok
17:22:26.0374 5560 [ E545DE0D80BFD0D03788DB1D6D028DE3 ] R5BaseSmc C:\Windows\system32\DRIVERS\smccard.sys
17:22:26.0409 5560 R5BaseSmc - ok
17:22:26.0426 5560 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:22:26.0475 5560 RasAcd - ok
17:22:26.0494 5560 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:22:26.0511 5560 RasAgileVpn - ok
17:22:26.0523 5560 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
17:22:26.0543 5560 RasAuto - ok
17:22:26.0549 5560 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:22:26.0616 5560 Rasl2tp - ok
17:22:26.0650 5560 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
17:22:26.0684 5560 RasMan - ok
17:22:26.0693 5560 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:22:26.0718 5560 RasPppoe - ok
17:22:26.0741 5560 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:22:26.0794 5560 RasSstp - ok
17:22:26.0830 5560 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:22:26.0860 5560 rdbss - ok
17:22:26.0874 5560 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:22:26.0886 5560 rdpbus - ok
17:22:26.0924 5560 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:22:26.0981 5560 RDPCDD - ok
17:22:27.0004 5560 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:22:27.0037 5560 RDPENCDD - ok
17:22:27.0055 5560 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:22:27.0082 5560 RDPREFMP - ok
17:22:27.0112 5560 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:22:27.0153 5560 RDPWD - ok
17:22:27.0199 5560 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:22:27.0234 5560 rdyboost - ok
17:22:27.0260 5560 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
17:22:27.0307 5560 RemoteAccess - ok
17:22:27.0323 5560 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:22:27.0359 5560 RemoteRegistry - ok
17:22:27.0375 5560 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:22:27.0405 5560 RpcEptMapper - ok
17:22:27.0422 5560 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
17:22:27.0431 5560 RpcLocator - ok
17:22:27.0448 5560 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
17:22:27.0469 5560 RpcSs - ok
17:22:27.0482 5560 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:22:27.0502 5560 rspndr - ok
17:22:27.0550 5560 [ F2D71913A0299A1ED4CC0B75C44529D9 ] SAllBDA C:\Windows\system32\Drivers\TeViiS2.sys
17:22:27.0584 5560 SAllBDA - ok
17:22:27.0600 5560 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
17:22:27.0627 5560 SamSs - ok
17:22:27.0649 5560 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:22:27.0681 5560 sbp2port - ok
17:22:27.0705 5560 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:22:27.0748 5560 SCardSvr - ok
17:22:27.0762 5560 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:22:27.0789 5560 scfilter - ok
17:22:27.0824 5560 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
17:22:27.0860 5560 Schedule - ok
17:22:27.0872 5560 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:22:27.0890 5560 SCPolicySvc - ok
17:22:27.0919 5560 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:22:27.0960 5560 SDRSVC - ok
17:22:27.0978 5560 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:22:28.0026 5560 secdrv - ok
17:22:28.0036 5560 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
17:22:28.0067 5560 seclogon - ok
17:22:28.0092 5560 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
17:22:28.0122 5560 SENS - ok
17:22:28.0144 5560 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:22:28.0180 5560 SensrSvc - ok
17:22:28.0198 5560 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:22:28.0237 5560 Serenum - ok
17:22:28.0267 5560 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:22:28.0303 5560 Serial - ok
17:22:28.0320 5560 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:22:28.0342 5560 sermouse - ok
17:22:28.0431 5560 [ 668043F192AB9659761A349A4703600D ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
17:22:28.0473 5560 ServiceLayer - ok
17:22:28.0512 5560 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
17:22:28.0544 5560 SessionEnv - ok
17:22:28.0577 5560 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:22:28.0614 5560 sffdisk - ok
17:22:28.0632 5560 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:22:28.0647 5560 sffp_mmc - ok
17:22:28.0657 5560 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:22:28.0672 5560 sffp_sd - ok
17:22:28.0679 5560 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:22:28.0688 5560 sfloppy - ok
17:22:28.0707 5560 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:22:28.0744 5560 SharedAccess - ok
17:22:28.0765 5560 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:22:28.0802 5560 ShellHWDetection - ok
17:22:28.0815 5560 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
17:22:28.0824 5560 sisagp - ok
17:22:28.0840 5560 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:22:28.0849 5560 SiSRaid2 - ok
17:22:28.0857 5560 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:22:28.0866 5560 SiSRaid4 - ok
17:22:28.0907 5560 [ 469C5507BD83EA0DDCAC55A73D67E043 ] SKYNETU2C C:\Windows\system32\DRIVERS\SkyNetU2C.SYS
17:22:28.0918 5560 SKYNETU2C - ok
17:22:28.0932 5560 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:22:28.0951 5560 Smb - ok
17:22:28.0986 5560 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:22:28.0995 5560 SNMPTRAP - ok
17:22:28.0999 5560 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
17:22:29.0007 5560 spldr - ok
17:22:29.0037 5560 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
17:22:29.0072 5560 Spooler - ok
17:22:29.0163 5560 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
17:22:29.0235 5560 sppsvc - ok
17:22:29.0266 5560 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:22:29.0290 5560 sppuinotify - ok
17:22:29.0328 5560 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:22:29.0353 5560 srv - ok
17:22:29.0389 5560 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:22:29.0406 5560 srv2 - ok
17:22:29.0416 5560 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:22:29.0426 5560 srvnet - ok
17:22:29.0450 5560 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:22:29.0484 5560 SSDPSRV - ok
17:22:29.0525 5560 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
17:22:29.0547 5560 ssmdrv - ok
17:22:29.0564 5560 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:22:29.0598 5560 SstpSvc - ok
17:22:29.0633 5560 [ F9506327BB18C51ED720CB9E83BBAB66 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:22:29.0657 5560 Stereo Service - ok
17:22:29.0681 5560 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:22:29.0694 5560 stexstor - ok
17:22:29.0742 5560 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
17:22:29.0785 5560 StiSvc - ok
17:22:29.0812 5560 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
17:22:29.0825 5560 swenum - ok
17:22:29.0840 5560 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
17:22:29.0864 5560 swprv - ok
17:22:29.0908 5560 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
17:22:29.0952 5560 SysMain - ok
17:22:29.0963 5560 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:22:29.0986 5560 TabletInputService - ok
17:22:30.0024 5560 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
17:22:30.0067 5560 TapiSrv - ok
17:22:30.0083 5560 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
17:22:30.0118 5560 TBS - ok
17:22:30.0172 5560 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:22:30.0212 5560 Tcpip - ok
17:22:30.0235 5560 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:22:30.0257 5560 TCPIP6 - ok
17:22:30.0286 5560 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:22:30.0335 5560 tcpipreg - ok
17:22:30.0351 5560 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:22:30.0378 5560 TDPIPE - ok
17:22:30.0394 5560 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:22:30.0414 5560 TDTCP - ok
17:22:30.0441 5560 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:22:30.0463 5560 tdx - ok
17:22:30.0494 5560 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:22:30.0506 5560 TermDD - ok
17:22:30.0544 5560 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
17:22:30.0586 5560 TermService - ok
17:22:30.0616 5560 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
17:22:30.0657 5560 Themes - ok
17:22:30.0662 5560 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
17:22:30.0691 5560 THREADORDER - ok
17:22:30.0743 5560 [ 413DA3024DA08AED29E0ECD8C7DEED44 ] token C:\Windows\system32\DRIVERS\eps2kt1.sys
17:22:30.0776 5560 token - ok
17:22:30.0805 5560 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
17:22:30.0856 5560 TrkWks - ok
17:22:30.0903 5560 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:22:30.0966 5560 TrustedInstaller - ok
17:22:30.0989 5560 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:22:31.0031 5560 tssecsrv - ok
17:22:31.0058 5560 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:22:31.0104 5560 TsUsbFlt - ok
17:22:31.0155 5560 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:22:31.0209 5560 tunnel - ok
17:22:31.0229 5560 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:22:31.0244 5560 uagp35 - ok
17:22:31.0261 5560 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:22:31.0301 5560 udfs - ok
17:22:31.0325 5560 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:22:31.0353 5560 UI0Detect - ok
17:22:31.0366 5560 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:22:31.0379 5560 uliagpkx - ok
17:22:31.0399 5560 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
17:22:31.0408 5560 umbus - ok
17:22:31.0423 5560 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:22:31.0442 5560 UmPass - ok
17:22:31.0461 5560 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
17:22:31.0487 5560 upnphost - ok
17:22:31.0533 5560 [ 61DD578A25A925C4B108F759FE9AE744 ] USB28xxBGA C:\Windows\system32\DRIVERS\emBDA.sys
17:22:31.0564 5560 USB28xxBGA - ok
17:22:31.0578 5560 [ 06C235EC056B886B4759C916B3A628C5 ] USB28xxOEM C:\Windows\system32\DRIVERS\emOEM.sys
17:22:31.0588 5560 USB28xxOEM - ok
17:22:31.0623 5560 [ 5C2BDC152BBAB34F36473DEAF7713F22 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
17:22:31.0636 5560 USBAAPL ( UnsignedFile.Multi.Generic ) - warning
17:22:31.0636 5560 USBAAPL - detected UnsignedFile.Multi.Generic (1)
17:22:31.0669 5560 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
17:22:31.0715 5560 usbccgp - ok
17:22:31.0751 5560 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:22:31.0795 5560 usbcir - ok
17:22:31.0806 5560 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:22:31.0819 5560 usbehci - ok
17:22:31.0841 5560 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:22:31.0871 5560 usbhub - ok
17:22:31.0883 5560 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:22:31.0901 5560 usbohci - ok
17:22:31.0920 5560 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:22:31.0934 5560 usbprint - ok
17:22:31.0967 5560 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:22:32.0005 5560 usbscan - ok
17:22:32.0021 5560 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:22:32.0046 5560 USBSTOR - ok
17:22:32.0054 5560 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:22:32.0067 5560 usbuhci - ok
17:22:32.0091 5560 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
17:22:32.0109 5560 UxSms - ok
17:22:32.0120 5560 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
17:22:32.0129 5560 VaultSvc - ok
17:22:32.0147 5560 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:22:32.0155 5560 vdrvroot - ok
17:22:32.0188 5560 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
17:22:32.0248 5560 vds - ok
17:22:32.0265 5560 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:22:32.0275 5560 vga - ok
17:22:32.0278 5560 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
17:22:32.0297 5560 VgaSave - ok
17:22:32.0327 5560 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:22:32.0337 5560 vhdmp - ok
17:22:32.0363 5560 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
17:22:32.0372 5560 viaagp - ok
17:22:32.0384 5560 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
17:22:32.0393 5560 ViaC7 - ok
17:22:32.0438 5560 [ 4906E025DD6B322C4BBD6B9E35C9993A ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
17:22:32.0498 5560 VIAHdAudAddService - ok
17:22:32.0503 5560 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
17:22:32.0516 5560 viaide - ok
17:22:32.0529 5560 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:22:32.0539 5560 volmgr - ok
17:22:32.0564 5560 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:22:32.0579 5560 volmgrx - ok
17:22:32.0591 5560 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:22:32.0603 5560 volsnap - ok
17:22:32.0621 5560 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:22:32.0631 5560 vsmraid - ok
17:22:32.0675 5560 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
17:22:32.0729 5560 VSS - ok
17:22:32.0743 5560 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
17:22:32.0764 5560 vwifibus - ok
17:22:32.0790 5560 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
17:22:32.0820 5560 W32Time - ok
17:22:32.0831 5560 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:22:32.0851 5560 WacomPen - ok
17:22:32.0887 5560 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:22:32.0945 5560 WANARP - ok
17:22:32.0949 5560 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:22:32.0970 5560 Wanarpv6 - ok
17:22:32.0995 5560 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
17:22:33.0036 5560 wbengine - ok
17:22:33.0047 5560 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:22:33.0060 5560 WbioSrvc - ok
17:22:33.0098 5560 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:22:33.0136 5560 wcncsvc - ok
17:22:33.0144 5560 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:22:33.0178 5560 WcsPlugInService - ok
17:22:33.0186 5560 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:22:33.0194 5560 Wd - ok
17:22:33.0207 5560 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:22:33.0222 5560 Wdf01000 - ok
17:22:33.0232 5560 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:22:33.0268 5560 WdiServiceHost - ok
17:22:33.0271 5560 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:22:33.0282 5560 WdiSystemHost - ok
17:22:33.0311 5560 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
17:22:33.0325 5560 WebClient - ok
17:22:33.0330 5560 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:22:33.0351 5560 Wecsvc - ok
17:22:33.0359 5560 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:22:33.0387 5560 wercplsupport - ok
17:22:33.0415 5560 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
17:22:33.0466 5560 WerSvc - ok
17:22:33.0482 5560 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:22:33.0501 5560 WfpLwf - ok
17:22:33.0513 5560 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:22:33.0521 5560 WIMMount - ok
17:22:33.0583 5560 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
17:22:33.0624 5560 WinDefend - ok
17:22:33.0630 5560 WinHttpAutoProxySvc - ok
17:22:33.0664 5560 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:22:33.0696 5560 Winmgmt - ok
17:22:33.0740 5560 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
17:22:33.0780 5560 WinRM - ok
17:22:33.0828 5560 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:22:33.0867 5560 WinUsb - ok
17:22:33.0914 5560 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:22:33.0959 5560 Wlansvc - ok
17:22:33.0972 5560 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:22:33.0980 5560 WmiAcpi - ok
17:22:33.0992 5560 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:22:34.0010 5560 wmiApSrv - ok
17:22:34.0065 5560 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
17:22:34.0124 5560 WMPNetworkSvc - ok
17:22:34.0132 5560 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:22:34.0152 5560 WPCSvc - ok
17:22:34.0186 5560 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:22:34.0226 5560 WPDBusEnum - ok
17:22:34.0246 5560 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:22:34.0297 5560 ws2ifsl - ok
17:22:34.0308 5560 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
17:22:34.0330 5560 wscsvc - ok
17:22:34.0334 5560 WSearch - ok
17:22:34.0401 5560 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
17:22:34.0448 5560 wuauserv - ok
17:22:34.0482 5560 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:22:34.0500 5560 WudfPf - ok
17:22:34.0553 5560 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:22:34.0571 5560 WUDFRd - ok
17:22:34.0597 5560 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:22:34.0616 5560 wudfsvc - ok
17:22:34.0633 5560 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
17:22:34.0653 5560 WwanSvc - ok
17:22:34.0670 5560 ================ Scan global ===============================
17:22:34.0700 5560 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
17:22:34.0732 5560 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
17:22:34.0747 5560 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
17:22:34.0773 5560 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
17:22:34.0795 5560 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
17:22:34.0799 5560 [Global] - ok
17:22:34.0799 5560 ================ Scan MBR ==================================
17:22:34.0809 5560 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:22:35.0006 5560 \Device\Harddisk0\DR0 - ok
17:22:35.0015 5560 [ 739B36F7A373FC81121D831231B6D311 ] \Device\Harddisk1\DR1
17:22:35.0328 5560 \Device\Harddisk1\DR1 - ok
17:22:35.0336 5560 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
17:22:37.0386 5560 \Device\Harddisk2\DR2 - ok
17:22:37.0387 5560 ================ Scan VBR ==================================
17:22:37.0393 5560 [ 883D9EBA01D2986318F0DA50B7DABF8B ] \Device\Harddisk0\DR0\Partition1
17:22:37.0396 5560 \Device\Harddisk0\DR0\Partition1 - ok
17:22:37.0428 5560 [ 2727E6D1D4D0A65A80183A347E1994C1 ] \Device\Harddisk0\DR0\Partition2
17:22:37.0429 5560 \Device\Harddisk0\DR0\Partition2 - ok
17:22:37.0447 5560 [ 0E05C9F3C296DEC988147888300F618F ] \Device\Harddisk0\DR0\Partition3
17:22:37.0450 5560 \Device\Harddisk0\DR0\Partition3 - ok
17:22:37.0457 5560 [ EA1D506E4D38B6775E64ED778B3B66C5 ] \Device\Harddisk1\DR1\Partition1
17:22:37.0461 5560 \Device\Harddisk1\DR1\Partition1 - ok
17:22:37.0469 5560 [ 554C56B1F91F62EF60328AC1882203A5 ] \Device\Harddisk2\DR2\Partition1
17:22:37.0471 5560 \Device\Harddisk2\DR2\Partition1 - ok
17:22:37.0473 5560 ============================================================
17:22:37.0473 5560 Scan finished
17:22:37.0473 5560 ============================================================
17:22:37.0500 5732 Detected object count: 1
17:22:37.0500 5732 Actual detected object count: 1
17:22:56.0158 5732 USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
17:22:56.0158 5732 USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
27.09.2012, 10:49
| #18 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Incredibar Toolbar gefangen und blutiger Anfänger ... ! Dann bitte jetzt CF ausführen:
__________________ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ |
|
27.09.2012, 15:27
| #19 |
| | Incredibar Toolbar gefangen und blutiger Anfänger ... ! bitteschön ... [code] Combofix Logfile: Code:
ATTFilter ComboFix 12-09-27.01 - User 27.09.2012 16:01:30.1.4 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.3327.2120 [GMT 2:00]
ausgeführt von:: c:\users\User\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\roboot.exe
F:\Autorun.inf
F:\install.exe
F:\Setup.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-08-27 bis 2012-09-27 ))))))))))))))))))))))))))))))
.
.
2012-09-27 14:07 . 2012-09-27 14:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-26 11:40 . 2012-09-26 11:40 -------- d-----w- C:\_OTL
2012-09-26 11:35 . 2012-08-21 20:12 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-09-23 10:15 . 2012-09-23 10:15 -------- d-----w- c:\program files\ESET
2012-09-22 15:53 . 2012-09-22 15:53 -------- d-----w- c:\users\User\AppData\Roaming\Malwarebytes
2012-09-22 15:53 . 2012-09-22 15:53 -------- d-----w- c:\programdata\Malwarebytes
2012-09-22 15:53 . 2012-09-22 15:53 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-09-22 15:53 . 2012-09-07 15:04 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-21 14:18 . 2012-09-21 15:50 -------- d-----w- c:\program files\7-Zip
2012-09-13 06:33 . 2012-08-22 17:16 1292144 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-13 06:33 . 2012-08-22 17:16 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-13 06:33 . 2012-07-04 19:45 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-13 06:33 . 2012-08-22 17:16 240496 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-13 06:33 . 2012-08-22 17:16 187760 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-13 06:33 . 2012-08-02 16:57 490496 ----a-w- c:\windows\system32\d3d10level9.dll
2012-09-10 16:59 . 2012-09-10 16:59 73696 ----a-w- c:\program files\Mozilla Firefox\breakpadinjector.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-21 13:09 . 2012-04-03 05:45 696240 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-09-21 13:09 . 2011-05-25 04:44 73136 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-28 18:24 . 2012-07-01 18:46 477168 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-08-28 18:24 . 2010-07-02 07:21 473072 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-18 17:47 . 2012-08-15 06:51 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-07-04 21:14 . 2012-08-15 06:51 41984 ----a-w- c:\windows\system32\browcli.dll
2012-07-04 21:14 . 2012-08-15 06:51 102912 ----a-w- c:\windows\system32\browser.dll
2012-09-10 16:59 . 2011-05-02 13:59 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaSuite.exe"="c:\program files\Nokia\Nokia Suite\NokiaSuite.exe" [2011-11-01 1053056]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [2009-07-14 354304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2009-08-28 1486848]
"BrStsWnd"="c:\program files\Brownie\BrstsWnd.exe" [2009-08-19 3618104]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2010-07-21 1778064]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2010-07-21 1797008]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"TeViiRC"="c:\windows\TeViiRC.exe" [2010-10-28 328024]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-08-08 348664]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.2.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-1-21 65588]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R2 gupdate;Google Update-Dienst (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 SKYNETU2C;TechniSat DVB-PC TV Star USB HD;c:\windows\system32\DRIVERS\SkyNetU2C.SYS [x]
R3 token;USB Token Service;c:\windows\system32\DRIVERS\eps2kt1.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 R5BaseSmc;USB Token Holder Service;c:\windows\system32\DRIVERS\smccard.sys [x]
S3 SAllBDA;TeVii DVB-S/S2 Receiver;c:\windows\system32\Drivers\TeViiS2.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Inhalt des "geplante Tasks" Ordners
.
2012-09-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 13:09]
.
2012-09-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-05-05 22:22]
.
2012-09-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-05-05 22:22]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\kdie60r2.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true);user_pref(extensions.BabylonToolbar_i.babTrack, affID=109958&tt=3012_6
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://www.google.com/search?babsrc=TB_ggl&q=
FF - user.js: extensions.BabylonToolbar.id - ec0f7e7900000000000090e6bae17256
FF - user.js: extensions.BabylonToolbar.instlDay - 15548
FF - user.js: extensions.BabylonToolbar.vrsn - 1.5.29.1
FF - user.js: extensions.BabylonToolbar.vrsni - 1.5.29.1
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.29.116:55
FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar.tlbrId - base
FF - user.js: extensions.BabylonToolbar.instlRef - sst
FF - user.js: extensions.BabylonToolbar.dfltLng - en
FF - user.js: extensions.BabylonToolbar.excTlbr - false
FF - user.js: extensions.BabylonToolbar.admin - false
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=6R8FQJiBhA&loc=IB_TB&i=26&search=
FF - user.js: extensions.incredibar_i.id - ec0f7e7900000000000090e6bae17256
FF - user.js: extensions.incredibar_i.instlDay - 15604
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1416:18
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - 6R8FQJiBhA
FF - user.js: extensions.incredibar_i.upn2n - 92825094908365014
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10671
FF - user.js: extensions.incredibar_i.ppd - 7777720
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-MyTeVii - c:\mytevii\Uninstall.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-09-27 16:08:35
ComboFix-quarantined-files.txt 2012-09-27 14:08
.
Vor Suchlauf: 8 Verzeichnis(se), 83.348.381.696 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 83.018.895.360 Bytes frei
.
- - End Of File - - BC15A8427F9809F9ED97757BCEA0B83A
|
|
27.09.2012, 16:35
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Incredibar Toolbar gefangen und blutiger Anfänger ... ! Combofix - Scripten 1. Starte das Notepad (Start / Ausführen / notepad[Enter]) 2. Jetzt füge mit copy/paste den ganzen Inhalt der untenstehenden Codebox in das Notepad Fenster ein. Code:
ATTFilter Firefox::
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\kdie60r2.default\
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true);user_pref(extensions.BabylonToolbar_i.babTrack, affID=109958&tt=3012_6
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - http://www.google.com/search?babsrc=TB_ggl&q=
FF - user.js: extensions.BabylonToolbar.id - ec0f7e7900000000000090e6bae17256
FF - user.js: extensions.BabylonToolbar.instlDay - 15548
FF - user.js: extensions.BabylonToolbar.vrsn - 1.5.29.1
FF - user.js: extensions.BabylonToolbar.vrsni - 1.5.29.1
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.29.116:55
FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar.tlbrId - base
FF - user.js: extensions.BabylonToolbar.instlRef - sst
FF - user.js: extensions.BabylonToolbar.dfltLng - en
FF - user.js: extensions.BabylonToolbar.excTlbr - false
FF - user.js: extensions.BabylonToolbar.admin - false
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - http://mystart.Incredibar.com/?a=6R8FQJiBhA&loc=IB_TB&i=26&search=
FF - user.js: extensions.incredibar_i.id - ec0f7e7900000000000090e6bae17256
FF - user.js: extensions.incredibar_i.instlDay - 15604
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1416:18
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - 6R8FQJiBhA
FF - user.js: extensions.incredibar_i.upn2n - 92825094908365014
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10671
FF - user.js: extensions.incredibar_i.ppd - 7777720
4. Deaktivere den Guard Deines Antivirenprogramms und eine eventuell vorhandene Software Firewall. (Auch Guards von Ad-, Spyware Programmen und den Tea Timer (wenn vorhanden) !) 5. Dann ziehe die CFScript.txt auf die cofi.exe, so wie es im unteren Bild zu sehen ist. Damit wird Combofix neu gestartet.  6. Nach dem Neustart (es wird gefragt ob Du neustarten willst), poste bitte die folgenden Log Dateien: Combofix.txt Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
27.09.2012, 17:22
| #21 | |
| | Incredibar Toolbar gefangen und blutiger Anfänger ... ! Ist etwas peinlich, ab er ich weiß nicht wie das geht oder was ich machen muss: Zitat:
Muss ich auf Start gehen ? und dann ? oder muss ich combofix starten ? |
|
27.09.2012, 20:21
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Incredibar Toolbar gefangen und blutiger Anfänger ... ! Notepad ist der Texteditor!! Was in meiner CODE-Box im Beitrag steht musst du da reinkopieren und das als Textdatei CFScript.txt auf dem Desktop abspeichern
__________________ Logfiles bitte immer in CODE-Tags posten |
|
28.09.2012, 07:05
| #23 |
| | Incredibar Toolbar gefangen und blutiger Anfänger ... ! Combofix Logfile: Code:
ATTFilter ComboFix 12-09-27.03 - User 28.09.2012 7:59.2.4 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.3327.2420 [GMT 2:00]
ausgeführt von:: c:\users\User\Downloads\ComboFix.exe
Benutzte Befehlsschalter :: c:\users\User\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-08-28 bis 2012-09-28 ))))))))))))))))))))))))))))))
.
.
2012-09-28 06:03 . 2012-09-28 06:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-26 11:40 . 2012-09-26 11:40 -------- d-----w- C:\_OTL
2012-09-26 11:35 . 2012-08-21 20:12 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-09-23 10:15 . 2012-09-23 10:15 -------- d-----w- c:\program files\ESET
2012-09-22 15:53 . 2012-09-22 15:53 -------- d-----w- c:\users\User\AppData\Roaming\Malwarebytes
2012-09-22 15:53 . 2012-09-22 15:53 -------- d-----w- c:\programdata\Malwarebytes
2012-09-22 15:53 . 2012-09-22 15:53 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-09-22 15:53 . 2012-09-07 15:04 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-21 14:18 . 2012-09-21 15:50 -------- d-----w- c:\program files\7-Zip
2012-09-13 06:33 . 2012-08-22 17:16 1292144 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-13 06:33 . 2012-08-22 17:16 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-13 06:33 . 2012-07-04 19:45 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-13 06:33 . 2012-08-22 17:16 240496 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-13 06:33 . 2012-08-22 17:16 187760 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-13 06:33 . 2012-08-02 16:57 490496 ----a-w- c:\windows\system32\d3d10level9.dll
2012-09-10 16:59 . 2012-09-10 16:59 73696 ----a-w- c:\program files\Mozilla Firefox\breakpadinjector.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-21 13:09 . 2012-04-03 05:45 696240 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-09-21 13:09 . 2011-05-25 04:44 73136 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-28 18:24 . 2012-07-01 18:46 477168 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-08-28 18:24 . 2010-07-02 07:21 473072 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-18 17:47 . 2012-08-15 06:51 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-07-04 21:14 . 2012-08-15 06:51 41984 ----a-w- c:\windows\system32\browcli.dll
2012-07-04 21:14 . 2012-08-15 06:51 102912 ----a-w- c:\windows\system32\browser.dll
2012-09-10 16:59 . 2011-05-02 13:59 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaSuite.exe"="c:\program files\Nokia\Nokia Suite\NokiaSuite.exe" [2011-11-01 1053056]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [2009-07-14 354304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2009-08-28 1486848]
"BrStsWnd"="c:\program files\Brownie\BrstsWnd.exe" [2009-08-19 3618104]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2010-07-21 1778064]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2010-07-21 1797008]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"TeViiRC"="c:\windows\TeViiRC.exe" [2010-10-28 328024]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-08-08 348664]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.2.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-1-21 65588]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R2 gupdate;Google Update-Dienst (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 SKYNETU2C;TechniSat DVB-PC TV Star USB HD;c:\windows\system32\DRIVERS\SkyNetU2C.SYS [x]
R3 token;USB Token Service;c:\windows\system32\DRIVERS\eps2kt1.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 R5BaseSmc;USB Token Holder Service;c:\windows\system32\DRIVERS\smccard.sys [x]
S3 SAllBDA;TeVii DVB-S/S2 Receiver;c:\windows\system32\Drivers\TeViiS2.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Inhalt des "geplante Tasks" Ordners
.
2012-09-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 13:09]
.
2012-09-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-05-05 22:22]
.
2012-09-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-05-05 22:22]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\kdie60r2.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-09-28 08:04:11
ComboFix-quarantined-files.txt 2012-09-28 06:04
ComboFix2.txt 2012-09-27 14:08
.
Vor Suchlauf: 10 Verzeichnis(se), 83.203.399.680 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 83.155.587.072 Bytes frei
.
- - End Of File - - D004A84D8C00898A48DFF8A42962402D
[/code] Geändert von rwt69 (28.09.2012 um 07:24 Uhr) |
|
28.09.2012, 13:05
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Incredibar Toolbar gefangen und blutiger Anfänger ... ! Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
30.09.2012, 16:36
| #25 |
| | Incredibar Toolbar gefangen und blutiger Anfänger ... ! Hat ein bisschen gedauert, GMER ist immer abgestürzt. Hier der OSAM-Report: OSAM Logfile: Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 16:03:15 on 30.09.2012 OS: Windows 7 Home Premium Edition Service Pack 1 (Build 7601), 32-bit Default Browser: Mozilla Corporation Firefox 15.0.1 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [Common] -----( %SystemRoot%\Tasks )----- "GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [Control Panel Objects] -----( %SystemRoot%\system32 )----- "FlashPlayerCPLApp.cpl" - "Adobe Systems Incorporated" - C:\Windows\system32\FlashPlayerCPLApp.cpl "nvcpl.cpl" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.cpl -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )----- "Nero BurnRights" - "Nero AG" - C:\Program Files\Nero\Nero 9\Nero BurnRights\NeroBurnRights_cpl.cpl "QuickTime" - "Apple Inc." - C:\Program Files\QuickTime\QTSystem\QuickTime.cpl [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "Apple Mobile USB Driver" (USBAAPL) - "Apple, Inc." - C:\Windows\System32\Drivers\usbaapl.sys "avgntflt" (avgntflt) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avgntflt.sys "avipbb" (avipbb) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avipbb.sys "avkmgr" (avkmgr) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avkmgr.sys "catchme" (catchme) - ? - C:\Users\User\AppData\Local\Temp\catchme.sys (File not found) "Cinergy EM28xx Capture" (USB28xxBGA) - "eMPIA Technology, Inc." - C:\Windows\System32\DRIVERS\emBDA.sys "Cinergy EM28xx OEM Filter" (USB28xxOEM) - "eMPIA Technology, Inc." - C:\Windows\System32\DRIVERS\emOEM.sys "MBAMProtector" (MBAMProtector) - "Malwarebytes Corporation" - C:\Windows\system32\drivers\mbam.sys "ssmdrv" (ssmdrv) - "Avira GmbH" - C:\Windows\System32\DRIVERS\ssmdrv.sys [Explorer] -----( HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {BDEADF00-C265-11d0-BCED-00A0C90AB50F} "Webordner" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {C9E60ED7-FEAE-477b-B6A6-7D62103A0C6B} "NeroDigitalColumnHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\SMC\NeroDigitalExt.dll {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll -----( HKLM\Software\Classes\Protocols\Handler )----- {03C514A3-1EFB-4856-9F99-10D7BE1653C0} "Windows Live Mail HTML Asynchronous Pluggable Protocol Handler" - "Microsoft Corporation" - C:\Program Files\Windows Live\Mail\mailcomm.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {653DCCC2-13DB-45B2-A389-427885776CFE} "Activities Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliPoint\ipcplact.dll {124597D8-850A-41AE-849C-017A4FA99CA2} "Buttons Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliPoint\ipcplbtn.dll {0563DB41-F538-4B37-A92D-4659049B7766} "CLSID_WLMCMimeFilter" - "Microsoft Corporation" - C:\Program Files\Windows Live\Mail\mailcomm.dll {A70C977A-BF00-412C-90B7-034C51DA2439} "DesktopContext Class" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.dll {3BEABCC1-BF31-42df-88D9-A2955D6B8528} "IntelliPoint Sensitivity Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliPoint\ipcplsens.dll {ED6E87C6-8A83-43aa-8208-8DBC8247F4D2} "IntelliType Pro Key Settings Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliType Pro\itcplkey.dll {111D8120-25EB-4E1C-A4DF-C9EE5FCA35CB} "IntelliType Pro Scrolling Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliType Pro\itcplwhl.dll {1825D0FA-5B0C-4e20-A929-3EFD15B6DF71} "IntelliType Pro Touchpad Control Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliType Pro\itcpltp.dll {A2569D1F-4E06-43EC-9825-0088B471BE47} "IntelliType Pro Wireless Control Panel Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliType Pro\itcplwir.dll {97FA8AA2-EE77-4FF2-9449-424D8924EF21} "IntelliType Pro Zooming Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliType Pro\itcplzm.dll {97F68CE3-7146-45FF-BE24-D9A7DD7CB8A2} "NeroCoverEdLiveIcons Class" - "Nero AG" - C:\Program Files\Nero\Nero 9\Nero CoverDesigner\CoverEdExtension.dll {C9E60ED7-FEAE-477b-B6A6-7D62103A0C6B} "NeroDigitalColumnHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\SMC\NeroDigitalExt.dll {1CA6BBC9-E9FA-4021-822B-075DF1837B63} "NeroDigitalIconHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\SMC\NeroDigitalExt.dll {4FBFFA8D-F390-471a-AE46-FEB93623AD63} "NeroDigitalInfoHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\SMC\NeroDigitalExt.dll {846083A4-BFC6-4447-985C-6578B466A7D7} "NeroDigitalPropSheetHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\SMC\NeroDigitalExt.dll {EDCC595A-F0EE-4d81-B554-D5D01C7AFB87} "NeroDigitalThumbnailHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\SMC\NeroDigitalExt.dll {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} "NVIDIA CPL Context Menu Extension" - "NVIDIA Corporation" - C:\Windows\system32\nvshext.dll {FFB699E0-306A-11d3-8BD1-00104B6F7516} "NVIDIA CPL Extension" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.dll {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} "OpenOffice.org Column Handler" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll {087B3AE3-E237-4467-B8DB-5A38AB959AC9} "OpenOffice.org Infotip Handler" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll {63542C48-9552-494A-84F7-73AA6A7C99C1} "OpenOffice.org Property Sheet Handler" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll {3B092F0C-7696-40E3-A80F-68D74DA84210} "OpenOffice.org Thumbnail Viewer" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll {0006F045-0000-0000-C000-000000000046} "Outlook-Dateisymbolerweiterung" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~2\Office\OLKFSTUB.DLL {45AC2688-0253-4ED8-97DE-B5370FA7D48A} "Shell Extension for Malware scanning" - "Avira Operations GmbH & Co. KG" - C:\Program Files\Avira\AntiVir Desktop\shlext.dll {1184D0ED-DBCE-4170-8DBB-4D0C3905DA85} "Touch Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliPoint\ipcpltouch.dll {AF90F543-6A3A-4C1B-8B16-ECEC073E69BE} "Wheel Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliPoint\ipcplwhl.dll {20082881-FC36-4E47-9A7A-644C95FF749F} "Wireless Property Page" - "Microsoft Corporation" - C:\Program Files\Microsoft IntelliPoint\ipcplwir.dll [Internet Explorer] -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_35" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} "Java Plug-in 1.6.0_35" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_35" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\npjpi160_35.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll {F0181C6E-9218-4792-9F3C-E8DF52B2F1AC} "GretechBHO Class" - "Gretech Corporation" - C:\Program Files\GRETECH\GomPicker\GomPickerBHO.dll {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2ssv.dll {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "Java(tm) Plug-In SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\ssv.dll {9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live Anmelde-Hilfsprogramm" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [Logon] -----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini "OpenOffice.org 3.2.lnk" - ? - C:\Program Files\OpenOffice.org 3\program\quickstart.exe (Shortcut exists | File found, but it contains no detailed information | File exists) -----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini "Microsoft Office.lnk" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office\OSA9.EXE (Shortcut exists | File exists) -----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )----- "NokiaSuite.exe" - "Nokia" - C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "APSDaemon" - "Apple Inc." - "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" "avgnt" - "Avira Operations GmbH & Co. KG" - "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min "BrStsWnd" - "brother" - C:\Program Files\Brownie\BrstsWnd.exe Autorun "HDAudDeck" - "VIA" - C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r "IntelliPoint" - "Microsoft Corporation" - "C:\Program Files\Microsoft IntelliPoint\ipoint.exe" "itype" - "Microsoft Corporation" - "C:\Program Files\Microsoft IntelliType Pro\itype.exe" "QuickTime Task" - "Apple Inc." - "C:\Program Files\QuickTime\QTTask.exe" -atboottime "SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe "Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe "Avira Echtzeit Scanner" (AntiVirService) - "Avira Operations GmbH & Co. KG" - C:\Program Files\Avira\AntiVir Desktop\avguard.exe "Avira Planer" (AntiVirSchedulerService) - "Avira Operations GmbH & Co. KG" - C:\Program Files\Avira\AntiVir Desktop\sched.exe "Google Update-Dienst (gupdate)" (gupdate) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "MBAMScheduler" (MBAMScheduler) - "Malwarebytes Corporation" - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe "MBAMService" (MBAMService) - "Malwarebytes Corporation" - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe "Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe "Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe "Nero BackItUp Scheduler 4.0" (Nero BackItUp Scheduler 4.0) - "Nero AG" - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe "NVIDIA Display Driver Service" (nvsvc) - "NVIDIA Corporation" - C:\Windows\system32\nvvsvc.exe "NVIDIA Stereoscopic 3D Driver Service" (Stereo Service) - "NVIDIA Corporation" - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe "ServiceLayer" (ServiceLayer) - "Nokia" - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe ===[ Logfile end ]=========================================[ Logfile end ]=== Hier das von aswmbr: Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-09-30 16:12:35
-----------------------------
16:12:35.554 OS Version: Windows 6.1.7601 Service Pack 1
16:12:35.554 Number of processors: 4 586 0x403
16:12:35.555 ComputerName: ROBERT UserName: User
16:12:57.203 Initialize success
16:15:25.500 AVAST engine defs: 12093000
16:15:42.708 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-3
16:15:42.716 Disk 0 Vendor: SAMSUNG_HD502HJ 1AJ100E4 Size: 476940MB BusType: 3
16:15:42.729 Disk 0 MBR read successfully
16:15:42.736 Disk 0 MBR scan
16:15:42.743 Disk 0 Windows 7 default MBR code
16:15:42.751 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
16:15:42.764 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 199899 MB offset 206848
16:15:42.783 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 276939 MB offset 409600000
16:15:42.791 Disk 0 scanning sectors +976771072
16:15:42.857 Disk 0 scanning C:\Windows\system32\drivers
16:15:50.227 Service scanning
16:16:06.061 Modules scanning
16:16:14.754 Disk 0 trace - called modules:
16:16:14.796 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
16:16:14.804 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x863bc440]
16:16:14.813 3 CLASSPNP.SYS[8bd8159e] -> nt!IofCallDriver -> [0x85587638]
16:16:14.821 5 ACPI.sys[833ad3d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-3[0x85eac030]
16:16:15.228 AVAST engine scan C:\Windows
16:16:17.221 AVAST engine scan C:\Windows\system32
16:18:18.555 AVAST engine scan C:\Windows\system32\drivers
16:18:27.930 AVAST engine scan C:\Users\User
16:41:01.067 AVAST engine scan C:\ProgramData
16:42:06.301 Scan finished successfully
17:34:09.848 Disk 0 MBR has been saved successfully to "C:\Users\User\Desktop\MBR.dat"
17:34:09.852 The log file has been saved successfully to "C:\Users\User\Desktop\aswMBR.txt"
|
|
01.10.2012, 12:55
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Incredibar Toolbar gefangen und blutiger Anfänger ... ! Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
02.10.2012, 22:15
| #27 |
| | Incredibar Toolbar gefangen und blutiger Anfänger ... !Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.65.0.1400 www.malwarebytes.org Datenbank Version: v2012.10.02.07 Windows 7 Service Pack 1 x86 NTFS Internet Explorer 9.0.8112.16421 User :: ROBERT [Administrator] Schutz: Aktiviert 02.10.2012 18:42:11 mbam-log-2012-10-02 (18-42-11).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|F:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 423598 Laufzeit: 1 Stunde(n), 10 Minute(n), 37 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 10/03/2012 at 00:34 AM
Application Version : 5.5.1022
Core Rules Database Version : 9329
Trace Rules Database Version: 7141
Scan type : Complete Scan
Total Scan Time : 00:53:43
Operating System Information
Windows 7 Home Premium 32-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User
Memory items scanned : 808
Memory threats detected : 0
Registry items scanned : 34819
Registry threats detected : 0
File items scanned : 62233
File threats detected : 533
Adware.Tracking Cookie
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\user@discount24[1].txt [ /discount24 ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\user@www.adultshop[1].txt [ /www.adultshop ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\02K342ZB.txt [ /imrworldwide.com ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\6QZMUT9H.txt [ /fastclick.net ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\ROGF60ZY.txt [ /ad.zanox.com ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\XH8UFWEO.txt [ /apmebf.com ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\Y78448ZC.txt [ /atdmt.com ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\GQGUE2BL.txt [ /adform.net ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\959EB0Y8.txt [ /tradedoubler.com ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\C3FI6DZG.txt [ /doubleclick.net ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\8DE1U265.txt [ /mediaplex.com ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\LXPWIOYD.txt [ /track.adform.net ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\KKH23ZOI.txt [ /adfarm1.adition.com ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\5YMJGTDY.txt [ /zanox.com ]
C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\QT0QLM5X.txt [ /ad1.adfarm1.adition.com ]
C:\USERS\USER\Cookies\6QZMUT9H.txt [ Cookie:user@fastclick.net/ ]
C:\USERS\USER\Cookies\ROGF60ZY.txt [ Cookie:user@ad.zanox.com/ ]
C:\USERS\USER\Cookies\XH8UFWEO.txt [ Cookie:user@apmebf.com/ ]
C:\USERS\USER\Cookies\Y78448ZC.txt [ Cookie:user@atdmt.com/ ]
C:\USERS\USER\Cookies\GQGUE2BL.txt [ Cookie:user@adform.net/ ]
C:\USERS\USER\Cookies\959EB0Y8.txt [ Cookie:user@tradedoubler.com/ ]
C:\USERS\USER\Cookies\LXPWIOYD.txt [ Cookie:user@track.adform.net/ ]
C:\USERS\USER\Cookies\KKH23ZOI.txt [ Cookie:user@adfarm1.adition.com/ ]
C:\USERS\USER\Cookies\user@discount24[1].txt [ Cookie:user@discount24.de/ ]
C:\USERS\USER\Cookies\QT0QLM5X.txt [ Cookie:user@ad1.adfarm1.adition.com/ ]
aka-cdn-ns.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\XHRRPDTA ]
imagesrv.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\XHRRPDTA ]
mediathek-audio.br.de [ C:\USERS\USER\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\XHRRPDTA ]
s0.2mdn.net [ C:\USERS\USER\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\XHRRPDTA ]
C:\USERS\USER\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\USER@IM.BANNER.T-ONLINE[1].TXT [ /IM.BANNER.T-ONLINE ]
.imrworldwide.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.track.effiliation.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.112.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.a.revenuemax.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.googleads.g.doubleclick.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.view.atdmt.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ad-emea.doubleclick.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.112.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.stats.ebay.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.aka-cdn-ns.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
partners.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
partners.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
img-cdn.mediaplex.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tto2.traffictrack.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.dealtime.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ww251.smartadserver.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revenuemax.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.mm.chitika.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.e-2dj6afkyomcjgep.stats.esomniture.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjmygoajoaq.stats.esomniture.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.nissaneurope.112.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tyredating.122.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adserver.planetoutdoor.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.unister-adservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
clicks.pangora.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
clicks.pangora.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
wbr-ads-01.odmedia.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
wbr-ads-01.odmedia.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.sim-technik.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adserver.mainz05.onvert.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.s.clickability.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.s.clickability.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wmkougczwgp.stats.esomniture.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracking.3gnet.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
track.zalando.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.klicktel.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.klicktel.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
fr.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
fr.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ar.atwola.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.premiumtv.122.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.atwola.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.conrad.122.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.mediasports.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.mediasports.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.e-2dj6walysmajmgq.stats.esomniture.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.e-2dj6aemiajazmdp.stats.esomniture.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.e-2dj6aekoeldjgco.stats.esomniture.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.estat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
teufel-media.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
api.zanox.ws [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
api.zanox.ws [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
targeting.revenuemax.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
partners.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
eas4.emediate.eu [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
traffic.brand-wall.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.guj.122.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.prisacom.112.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wgkoomcpsbp.stats.esomniture.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
media.antenne-bayern.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adxpose.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revenuemax.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
stat.novasol.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.track.trafficmaxx.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.trafficmaxx.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
aimfar.solution.weborama.fr [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.weborama.fr [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.weborama.fr [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.weboramapublishertrackinguk2.solution.weborama.fr [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.weboramapublishertrackinguk2.solution.weborama.fr [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ad-emea.doubleclick.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.deutschepostag.112.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wclyqkdjkbp.stats.esomniture.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.paypal.112.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
count.asnetworks.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revenuemax.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tags.toolbarsmedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tags.toolbarsmedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ads20.wwe-media.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ads20.wwe-media.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ads20.wwe-media.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ads20.wwe-media.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ads20.wwe-media.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adserver.adtechus.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tags.toolbarsmedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.usenext.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
stat.dealtime.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
server.adformdsp.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adformdsp.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.bizrate.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.fls.doubleclick.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.thelabelfinder.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.thelabelfinder.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracking.mindshare.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.yieldmanager.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adserver-landshut.teamcommerce.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjkoaicpkap.stats.esomniture.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracker.vinsight.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
s1.trafficmaxx.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adserver.anschlusstor.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adserver.bfv.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ww251.smartadserver.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
eas5.emediate.eu [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
eas5.emediate.eu [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
server.adform.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.liveperson.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.liveperson.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
server.iad.liveperson.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad1.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
adserver.mundo-service.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.olympiaverlag.122.2o7.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
tomtailor.dyntracker.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KDIE60R2.DEFAULT\COOKIES.SQLITE ]
Trojan.Dropper/Gen
F:\DATEIEN\MIXED\REST\T-ONLINE\BSW3\DRELREST.EXE
C:\USERS\USER\DOCUMENTS\MIXED\REST\T-ONLINE\BSW3\DRELREST.EXE
Trojan.Agent/Gen-MSFake
C:\USERS\USER\APPDATA\ROAMING\DESKTOPICONFORAMAZON\ICONFORAMAZON.EXE
|
|
03.10.2012, 18:11
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Incredibar Toolbar gefangen und blutiger Anfänger ... !Code:
ATTFilter UAC On - Limited User
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.10.2012, 19:03
| #29 |
| | Incredibar Toolbar gefangen und blutiger Anfänger ... ! Ich glaube ich habe vergessen im Reiter "Scann-Kontrolle" die richtigen Häkchen zu setzen. Soll ich es nochmal machen ? |
|
03.10.2012, 20:02
| #30 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Incredibar Toolbar gefangen und blutiger Anfänger ... ! Nein - starte SUPERAntiSpyware doch einfach wie in der Anleitung im großen Punkt zwei beschrieben! Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Incredibar Toolbar gefangen und blutiger Anfänger ... ! |
| anfänger, anlage, antivirus, avira, continue, einfach, ergebnisse, fedex, festplatte, firefox, free, fremde, gen, gmer, incredibar toolbar, infos, install.exe, krieg, laptop, platte, plug-in, programme, seite, software, speicher, starten, startseite, super, system, usb, verlieren, wlan |
Linear-Darstellung
