Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   More for you, wie bekomme ich diese Werbung weg? Virus? 26 Befunde? (https://www.trojaner-board.de/125489-more-for-you-bekomme-diese-werbung-weg-virus-26-befunde.html)

choupette198 10.10.2012 21:49
More for you, wie bekomme ich diese Werbung weg? Virus? 26 Befunde?
 
Hallo,
ich habe folgendes Problem .. und leider nicht wirklich viel Ahnung von PC.
Bei mir kommen seid ein Paar Tage immer wieder Werbung von More For You, die auch nicht weg zu bekommen ist. Habe gelesen das es wahrscheinlich ein Virus ist. Also habe ich jetzt schon mal OTL laufen lassen und auch Malwarebytes.
Seid dem habe ich keine Werbung mehr gesehen, jedoch macht das Malwarebytes Programm 26 Funde! Und blockiert andauernd irgendwelche Seiten!
Könnte evtl jemand bitte nachschauen was mit mein Pc nicht stimmt ?

Vielen lieben Dank :-)

PS: Ich hoffe das klappt mit den 3 Dateien !!

cosinus 11.10.2012 18:07
Malwarebytes erstellt bei jedem Scanvorgang genau ein Log. Hast du in der Vergangenheit schonmal mit Malwarebytes gescannt?
Wenn ja dann stehen auch alle Logs zu jedem Scanvorgang im Reiter Logdateien. Bitte alle posten, die dort sichtbar sind.

Bitte alles nach Möglichkeit hier in CODE-Tags posten.

Wird so gemacht:

[code] hier steht das Log [/code]

Und das ganze sieht dann so aus:

Code:
hier steht das Log

choupette198 11.10.2012 18:25
Hallo,

vielen Dank für die Antwort, aber nein ich habe Gestern das erstemal damit gescannt.
Habe Heute nochmal laufen lassen und schon wieder waren 5 neue infizierte Dateien, aber irgendwas habe ich wohl glaube ich falsch gemacht, weil Gestern wurde alles in Quarantaine verschoben und die 5 von Heute wurden gelöscht!:killpc:
Schicke jetzt nochmal die von Gestern und die von Heute.
Danke schon mal


Code:
Malwarebytes Anti-Malware (Test) 1.65.0.1400
www.malwarebytes.org

Datenbank Version: v2012.10.10.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
alex-sabrina :: ALEX-SABRINA-PC [Administrator]

Schutz: Aktiviert

10.10.2012 21:33:56
mbam-log-2012-10-10 (22-42-07)1.txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|Q:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 391692
Laufzeit: 52 Minute(n), 19 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 13
HKCR\CLSID\{4D1EC4CA-4B92-4324-B8F8-C9A6ED06A8AE} (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKCR\TypeLib\{6F098504-CDB1-420f-A2E6-DDC0B835FEDF} (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKCR\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D} (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKCR\HBLiteAX.Info.1 (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKCR\HBLiteAX.Info (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4D1EC4CA-4B92-4324-B8F8-C9A6ED06A8AE} (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKCR\CLSID\{4E674574-3F0B-491d-8AE3-F90B43A34FD6} (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKCR\HBLiteAX.UserProfiles.1 (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKCR\HBLiteAX.UserProfiles (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4E674574-3F0B-491D-8AE3-F90B43A34FD6} (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> Keine Aktion durchgeführt.
HKCU\Software\hblitesa (Adware.HotBar) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\HBLite (Adware.HotBar) -> Keine Aktion durchgeführt.

Infizierte Registrierungswerte: 1
HKLM\SOFTWARE\Mozilla\Firefox\extensions|HBLite@HBLite.com (Adware.HotBar) -> Daten: C:\Program Files (x86)\HBLite\bin\11.0.363.0\firefox\extensions -> Keine Aktion durchgeführt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 3
C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65 (Adware.Seekmo) -> Keine Aktion durchgeführt.
C:\Users\alex-sabrina\AppData\Roaming\HBLite (Adware.Hotbar) -> Keine Aktion durchgeführt.
C:\ProgramData\HBLiteSA (Adware.Hotbar) -> Keine Aktion durchgeführt.

Infizierte Dateien: 10
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_avira-antivir.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_magix-foto-manager.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_photoscape.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_totally-free-burner.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_video-dvd-maker.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.
C:\ProgramData\HBLiteSA\HBLiteSA.dat (Adware.Hotbar) -> Keine Aktion durchgeführt.
C:\ProgramData\HBLiteSA\HBLiteSAAbout.mht (Adware.Hotbar) -> Keine Aktion durchgeführt.
C:\ProgramData\HBLiteSA\HBLiteSAau.dat (Adware.Hotbar) -> Keine Aktion durchgeführt.
C:\ProgramData\HBLiteSA\HBLiteSAEULA.mht (Adware.Hotbar) -> Keine Aktion durchgeführt.
C:\ProgramData\HBLiteSA\HBLiteSA_kyf.dat (Adware.Hotbar) -> Keine Aktion durchgeführt.

(Ende)


Code:
Malwarebytes Anti-Malware (Test) 1.65.0.1400
www.malwarebytes.org

Datenbank Version: v2012.10.10.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
alex-sabrina :: ALEX-SABRINA-PC [Administrator]

Schutz: Aktiviert

11.10.2012 16:11:37
mbam-log-2012-10-11 (16-11-37).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|Q:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 391209
Laufzeit: 1 Stunde(n), 40 Minute(n), 18 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 5
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_avira-antivir.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_magix-foto-manager.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_photoscape.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_totally-free-burner.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_video-dvd-maker.exe (PUP.OfferBundler.ST) -> Keine Aktion durchgeführt.

(Ende)

cosinus 11.10.2012 18:32
Zitat:
Keine Aktion durchgeführt.
-> No action taken.
Die Funde mit Malwarebytes bitte alle entfernen, sodass sie in der Quarantäne von Malwarebytes aufgehoben werden! Bitte nachholen falls noch nicht getan!

NICHTS voreilig aus der Quarantäne löschen!

choupette198 11.10.2012 19:20
So gemacht, und die von Gestern wurden auch in Quarantaine gesetzt.
Code:
Malwarebytes Anti-Malware (Test) 1.65.0.1400
www.malwarebytes.org

Datenbank Version: v2012.10.10.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
alex-sabrina :: ALEX-SABRINA-PC [Administrator]

Schutz: Aktiviert

11.10.2012 18:46:12
mbam-log-2012-10-11 (18-46-12).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|Q:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 391316
Laufzeit: 1 Stunde(n), 28 Minute(n), 12 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 5
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_avira-antivir.exe (PUP.OfferBundler.ST) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_magix-foto-manager.exe (PUP.OfferBundler.ST) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_photoscape.exe (PUP.OfferBundler.ST) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_totally-free-burner.exe (PUP.OfferBundler.ST) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_video-dvd-maker.exe (PUP.OfferBundler.ST) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
Soll ich jetzt noch was machen? Weil malwarbites blockiert andauernd irgendwelche Sachen, zumindestens kommt immer wieder eine nachricht.

cosinus 12.10.2012 10:05
Code:
C:\Users\alex-sabrina\Downloads\SoftonicDownloader_fuer_avira-antivir.exe
Vermüllte Software von Softonic scheint gerade stark in Mode zu sein! :stirn:

Finger weg von Softonic!! :pfui:

Softonic ist eine Toolbar- und Adwareschleuder! Finger weg! Software lädt man sich mit oberster Priorität direkt vom Hersteller und nicht von solchen Toolbarklitschen wie Softonic! Im Notfall würde natürlich chip.de gehen

adwCleaner - Toolbars und ungewollte Start-/Suchseiten aufspüren

Downloade Dir bitte AdwCleaner auf deinen Desktop.

Falls der adwCleaner schon mal in der runtergeladen wurde, bitte die alte adwcleaner.exe löschen und neu runterladen!!
  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Klicke auf Suche.
  • Nach Ende des Suchlaufs öffnet sich eine Textdatei.
  • Poste mir den Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner[Rx].txt. (x=fortlaufende Nummer)

choupette198 12.10.2012 21:59
Bitte schön :-)

Und schon mal vielen Dank für deine Hilfe!!


Code:
# AdwCleaner v2.004 - Datei am 12/10/2012 um 22:57:54 erstellt
# Aktualisiert am 06/10/2012 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : alex-sabrina - ALEX-SABRINA-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\alex-sabrina\Desktop\adwcleaner.exe
# Option [Suche]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
Datei Gefunden : C:\user.js
Datei Gefunden : C:\Users\ALEX-S~1\AppData\Local\Temp\Uninstall.exe
Ordner Gefunden : C:\ProgramData\Babylon
Ordner Gefunden : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
Ordner Gefunden : C:\ProgramData\Partner
Ordner Gefunden : C:\Users\ALEX-S~1\AppData\Local\Temp\AskSearch
Ordner Gefunden : C:\Users\ALEX-S~1\AppData\Local\Temp\BabylonToolbar
Ordner Gefunden : C:\Users\ALEX-S~1\AppData\Local\Temp\boost_interprocess
Ordner Gefunden : C:\Users\ALEX-S~1\AppData\Local\Temp\Conduit
Ordner Gefunden : C:\Users\ALEX-S~1\AppData\Local\Temp\Iminent
Ordner Gefunden : C:\Users\alex-sabrina\AppData\Local\Babylon
Ordner Gefunden : C:\Users\alex-sabrina\AppData\LocalLow\BabylonToolbar
Ordner Gefunden : C:\Users\alex-sabrina\AppData\LocalLow\Conduit
Ordner Gefunden : C:\Users\alex-sabrina\AppData\LocalLow\Toolbar4
Ordner Gefunden : C:\Users\alex-sabrina\AppData\Roaming\Babylon
Ordner Gefunden : C:\Users\alex-sabrina\AppData\Roaming\Media Finder
Ordner Gefunden : C:\Users\alex-sabrina\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com

***** [Registrierungsdatenbank] *****

Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gefunden : HKCU\Software\Conduit
Schlüssel Gefunden : HKCU\Software\Iminent
Schlüssel Gefunden : HKCU\Software\MediaFinder
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gefunden : HKCU\Software\Softonic
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gefunden : HKLM\Software\Babylon
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\MF
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Toolbar.CT2613550
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Schlüssel Gefunden : HKLM\Software\Conduit
Schlüssel Gefunden : HKLM\Software\Iminent
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{618AAD04-921F-44C2-BE38-C0818AF69861}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{21BA420E-161C-413A-B21E-4E42AE1F4226}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{453DB0C5-F41C-4D97-8DD6-CC72ECD5F699}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{4AFC07D0-59BB-46B8-B097-1A46E88EEF71}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{618AAD04-921F-44C2-BE38-C0818AF69861}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{6511CE4C-4722-40D0-AD3D-4AFA2F50978A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{65A16874-2ED0-460E-A547-5FE2EC3A13A7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{71E02280-5212-45C3-B174-4D5A35DA254F}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{8AD9AD05-36BE-4E40-BA62-5422EB0D02FB}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9BEC9B38-BF39-4899-806E-A1C5DFEB60A2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{AEBF09E2-0C15-43C8-99BF-928C645D98A0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{B86D82BF-D39F-439A-A07C-43EDDC6F6EA6}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D8560AC2-21B5-4C1A-BDD4-BD12BC83B082}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{DA6305B9-0869-4235-8C1D-533A65E639E5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E25DA6D6-C365-46CF-ABAF-DC5893135D7A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E6961C59-CFCE-4CCD-B794-BC78DB98413A}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gefunden : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{4B8C28A7-A9BC-45F8-990D-21499EED643C}
Schlüssel Gefunden : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{4B8C28A7-A9BC-45F8-990D-21499EED643C}
Schlüssel Gefunden : HKU\S-1-5-21-1136406076-454948950-2539129923-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gefunden : HKU\S-1-5-21-1136406076-454948950-2539129923-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Media Finder]

***** [Internet Browser] *****

-\\ Internet Explorer v8.0.7601.17514

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?babsrc=HP_ss&affID=101067&mntrId=ba8fded50000000000004c0f6e43d225
[HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?babsrc=NT_ss&affID=101067&mntrId=ba8fded50000000000004c0f6e43d225

-\\ Mozilla Firefox v15.0.1 (de)

Profilname : default
Datei : C:\Users\alex-sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\1s30bppv.default\prefs.js

Gefunden : user_pref("extensions.BabylonToolbar.admin", false);
Gefunden : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Gefunden : user_pref("extensions.BabylonToolbar.babExt", "");
Gefunden : user_pref("extensions.BabylonToolbar.babTrack", "affID=101067");
Gefunden : user_pref("extensions.BabylonToolbar.bbDpng", 10);
Gefunden : user_pref("extensions.BabylonToolbar.dfltLng", "de");
Gefunden : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Gefunden : user_pref("extensions.BabylonToolbar.hmpg", false);
Gefunden : user_pref("extensions.BabylonToolbar.id", "ba8fded50000000000004c0f6e43d225");
Gefunden : user_pref("extensions.BabylonToolbar.instlDay", "15325");
Gefunden : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Gefunden : user_pref("extensions.BabylonToolbar.lastDP", 10);
Gefunden : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1723:10:12");
Gefunden : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "15.0");
Gefunden : user_pref("extensions.BabylonToolbar.newTab", true);
Gefunden : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_FFUP");
Gefunden : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Gefunden : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Gefunden : user_pref("extensions.BabylonToolbar.propectorlck", 88437936);
Gefunden : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Gefunden : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Gefunden : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Gefunden : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Gefunden : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Gefunden : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Gefunden : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1723:10:12");
Gefunden : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Gefunden : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Gefunden : user_pref("extensions.BabylonToolbar_i.babExt", "");
Gefunden : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=101067");
Gefunden : user_pref("extensions.BabylonToolbar_i.hardId", "ba8fded50000000000004c0f6e43d225");
Gefunden : user_pref("extensions.BabylonToolbar_i.id", "ba8fded50000000000004c0f6e43d225");
Gefunden : user_pref("extensions.BabylonToolbar_i.instlDay", "15325");
Gefunden : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Gefunden : user_pref("extensions.BabylonToolbar_i.newTab", false);
Gefunden : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Gefunden : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Gefunden : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Gefunden : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Gefunden : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Gefunden : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Gefunden : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1723:10:12");
Gefunden : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");

-\\ Opera v [Version kann nicht ermittelt werden]

Datei : C:\Users\alex-sabrina\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Die Datei ist sauber.

*************************

AdwCleaner[R1].txt - [12542 octets] - [12/10/2012 22:57:54]

########## EOF - C:\AdwCleaner[R1].txt - [12603 octets] ##########

cosinus 13.10.2012 15:29
adwCleaner - Toolbars und ungewollte Start-/Suchseiten entfernen
  • Schließe alle offenen Programme und Browser.
  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Klicke auf Löschen.
  • Bestätige jeweils mit Ok.
  • Dein Rechner wird neu gestartet. Nach dem Neustart öffnet sich eine Textdatei.
  • Poste mir den Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner[Sx].txt. (x=fortlaufende Nummer)

choupette198 13.10.2012 15:50
Code:
# AdwCleaner v2.004 - Datei am 13/10/2012 um 16:45:33 erstellt
# Aktualisiert am 06/10/2012 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : alex-sabrina - ALEX-SABRINA-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\alex-sabrina\Desktop\adwcleaner.exe
# Option [Löschen]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
Datei Gelöscht : C:\user.js
Datei Gelöscht : C:\Users\ALEX-S~1\AppData\Local\Temp\Uninstall.exe
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
Ordner Gelöscht : C:\ProgramData\Partner
Ordner Gelöscht : C:\Users\ALEX-S~1\AppData\Local\Temp\AskSearch
Ordner Gelöscht : C:\Users\ALEX-S~1\AppData\Local\Temp\BabylonToolbar
Ordner Gelöscht : C:\Users\ALEX-S~1\AppData\Local\Temp\boost_interprocess
Ordner Gelöscht : C:\Users\ALEX-S~1\AppData\Local\Temp\Conduit
Ordner Gelöscht : C:\Users\ALEX-S~1\AppData\Local\Temp\Iminent
Ordner Gelöscht : C:\Users\alex-sabrina\AppData\Local\Babylon
Ordner Gelöscht : C:\Users\alex-sabrina\AppData\LocalLow\BabylonToolbar
Ordner Gelöscht : C:\Users\alex-sabrina\AppData\LocalLow\Conduit
Ordner Gelöscht : C:\Users\alex-sabrina\AppData\LocalLow\Toolbar4
Ordner Gelöscht : C:\Users\alex-sabrina\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\alex-sabrina\AppData\Roaming\Media Finder
Ordner Gelöscht : C:\Users\alex-sabrina\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com

***** [Registrierungsdatenbank] *****

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\Iminent
Schlüssel Gelöscht : HKCU\Software\MediaFinder
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\MF
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT2613550
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{618AAD04-921F-44C2-BE38-C0818AF69861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{21BA420E-161C-413A-B21E-4E42AE1F4226}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{453DB0C5-F41C-4D97-8DD6-CC72ECD5F699}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4AFC07D0-59BB-46B8-B097-1A46E88EEF71}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{618AAD04-921F-44C2-BE38-C0818AF69861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6511CE4C-4722-40D0-AD3D-4AFA2F50978A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{65A16874-2ED0-460E-A547-5FE2EC3A13A7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{71E02280-5212-45C3-B174-4D5A35DA254F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8AD9AD05-36BE-4E40-BA62-5422EB0D02FB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BEC9B38-BF39-4899-806E-A1C5DFEB60A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{AEBF09E2-0C15-43C8-99BF-928C645D98A0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B86D82BF-D39F-439A-A07C-43EDDC6F6EA6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8560AC2-21B5-4C1A-BDD4-BD12BC83B082}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DA6305B9-0869-4235-8C1D-533A65E639E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E25DA6D6-C365-46CF-ABAF-DC5893135D7A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E6961C59-CFCE-4CCD-B794-BC78DB98413A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gelöscht : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{4B8C28A7-A9BC-45F8-990D-21499EED643C}
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Media Finder]

***** [Internet Browser] *****

-\\ Internet Explorer v8.0.7601.17514

Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?babsrc=HP_ss&affID=101067&mntrId=ba8fded50000000000004c0f6e43d225 --> hxxp://www.google.com
Ersetzt : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?babsrc=NT_ss&affID=101067&mntrId=ba8fded50000000000004c0f6e43d225 --> hxxp://www.google.com

-\\ Mozilla Firefox v15.0.1 (de)

Profilname : default
Datei : C:\Users\alex-sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\1s30bppv.default\prefs.js

C:\Users\alex-sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\1s30bppv.default\user.js ... Gelöscht !

Gelöscht : user_pref("extensions.BabylonToolbar.admin", false);
Gelöscht : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Gelöscht : user_pref("extensions.BabylonToolbar.babExt", "");
Gelöscht : user_pref("extensions.BabylonToolbar.babTrack", "affID=101067");
Gelöscht : user_pref("extensions.BabylonToolbar.bbDpng", 10);
Gelöscht : user_pref("extensions.BabylonToolbar.dfltLng", "de");
Gelöscht : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Gelöscht : user_pref("extensions.BabylonToolbar.hmpg", false);
Gelöscht : user_pref("extensions.BabylonToolbar.id", "ba8fded50000000000004c0f6e43d225");
Gelöscht : user_pref("extensions.BabylonToolbar.instlDay", "15325");
Gelöscht : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Gelöscht : user_pref("extensions.BabylonToolbar.lastDP", 10);
Gelöscht : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1723:10:12");
Gelöscht : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "15.0");
Gelöscht : user_pref("extensions.BabylonToolbar.newTab", true);
Gelöscht : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_FFUP");
Gelöscht : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Gelöscht : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Gelöscht : user_pref("extensions.BabylonToolbar.propectorlck", 88437936);
Gelöscht : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Gelöscht : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Gelöscht : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Gelöscht : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Gelöscht : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Gelöscht : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Gelöscht : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1723:10:12");
Gelöscht : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Gelöscht : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Gelöscht : user_pref("extensions.BabylonToolbar_i.babExt", "");
Gelöscht : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=101067");
Gelöscht : user_pref("extensions.BabylonToolbar_i.hardId", "ba8fded50000000000004c0f6e43d225");
Gelöscht : user_pref("extensions.BabylonToolbar_i.id", "ba8fded50000000000004c0f6e43d225");
Gelöscht : user_pref("extensions.BabylonToolbar_i.instlDay", "15325");
Gelöscht : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Gelöscht : user_pref("extensions.BabylonToolbar_i.newTab", false);
Gelöscht : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Gelöscht : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Gelöscht : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Gelöscht : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Gelöscht : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Gelöscht : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Gelöscht : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1723:10:12");
Gelöscht : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");

-\\ Opera v [Version kann nicht ermittelt werden]

Datei : C:\Users\alex-sabrina\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Die Datei ist sauber.

*************************

AdwCleaner[R1].txt - [12629 octets] - [12/10/2012 22:57:54]
AdwCleaner[S1].txt - [12337 octets] - [13/10/2012 16:45:33]

########## EOF - C:\AdwCleaner[S1].txt - [12398 octets] ##########

cosinus 13.10.2012 17:50
Hätte da mal zwei Fragen bevor es weiter geht (wir sind noch nicht fertig!)

1.) Geht der normale Modus von Windows (wieder) uneingeschränkt?
2.) Vermisst du irgendwas im Startmenü? Sind da leere Ordner unter alle Programme oder ist alles vorhanden?

choupette198 13.10.2012 19:28
Also soweit ich sehe vermisse ich nichts. Es sind auch keine leere Ordner vorhanden. Ich muss ganz ehrlich sagen das wir ihn "fast" nur wg Internet brauchen, und Fotos usw.
Ansonsten geht soweit alles, ausser das immer die Meldung von Malewarbytes kommt das er andaurnd bösartige Webseiten blockiert. Und ganz so schnell ist er auch nicht mehr wie am Anfang.

cosinus 13.10.2012 21:43
Mach bitte ein neues OTL-Log. Bitte alles nach Möglichkeit hier in CODE-Tags posten.

Wird so gemacht:

[code] hier steht das Log [/code]

Und das ganze sieht dann so aus:

Code:
hier steht das Log
CustomScan mit OTL

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop. Falls schon vorhanden, bitte die ältere vorhandene Datei durch die neu heruntergeladene Datei ersetzen, damit du auch wirklich mit einer aktuellen Version von OTL arbeitest.
Code:
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
wininit.exe
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
CREATERESTOREPOINT

choupette198 13.10.2012 22:59
OTL Logfile:
Code:
OTL logfile created on: 13.10.2012 23:42:21 - Run 2
OTL by OldTimer - Version 3.2.69.0    Folder = C:\Users\alex-sabrina\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,86 Gb Total Physical Memory | 2,58 Gb Available Physical Memory | 66,75% Memory free
7,73 Gb Paging File | 6,07 Gb Available in Paging File | 78,63% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 452,48 Gb Total Space | 355,88 Gb Free Space | 78,65% Space Free | Partition Type: NTFS
 
Computer Name: ALEX-SABRINA-PC | User Name: alex-sabrina | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\alex-sabrina\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_287.exe (Adobe Systems, Inc.)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe (McAfee, Inc.)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
PRC - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Programme\Acer\Acer Updater\UpdaterService.exe (Acer Group)
PRC - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)
PRC - C:\Users\alex-sabrina\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\26e0457a9776a0e9f23e3986686d90a5\System.ServiceProcess.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\b68bee05c7e518172982cc92059c3315\System.Xaml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\d239f585ee55f833dbe21e897e1265ac\PresentationFramework.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\b7de318e9fd1ef519ca6c1f3b5dba8e0\PresentationCore.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\09bd2126bba2ab4f29ed52afde1470d7\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\9abe44a0f82070ead5f1256683a4d25a\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\a6e37a05b8d0cedbc5c3ea266ae3fc31\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\a84262e1224189f93e10cd3c403a9527\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System\a6be120e49f895ef6b00e9918402395b\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\c1af4ec9a36f671617a8ecaec00373f4\mscorlib.ni.dll ()
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - (dgdersvc) -- C:\Windows\SysNative\dgdersvc.exe (Devguru Co., Ltd.)
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (McComponentHostService) -- C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe (McAfee, Inc.)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (wlcrasvc) -- C:\Programme\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
SRV - (dgdersvc) -- C:\Windows\SysWOW64\dgdersvc.exe (Devguru Co., Ltd.)
SRV - (ePowerSvc) -- C:\Programme\Acer\Acer ePower Management\ePowerSvc.exe (Acer Incorporated)
SRV - (DsiWMIService) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (NTI IScheduleSvc) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (MWLService) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe (Egis Technology Inc.)
SRV - (Updater Service) -- C:\Programme\Acer\Acer Updater\UpdaterService.exe (Acer Group)
SRV - (osppsvc) -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
SRV - (GREGService) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH)
DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (sscdmdm) -- C:\Windows\SysNative\drivers\sscdmdm.sys (MCCI Corporation)
DRV:64bit: - (sscdbus) -- C:\Windows\SysNative\drivers\sscdbus.sys (MCCI Corporation)
DRV:64bit: - (sscdmdfl) -- C:\Windows\SysNative\drivers\sscdmdfl.sys (MCCI Corporation)
DRV:64bit: - (ssadmdm) -- C:\Windows\SysNative\drivers\ssadmdm.sys (MCCI Corporation)
DRV:64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation)
DRV:64bit: - (ssadmdfl) -- C:\Windows\SysNative\drivers\ssadmdfl.sys (MCCI Corporation)
DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\drivers\avkmgr.sys (Avira GmbH)
DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
DRV:64bit: - (dgderdrv) -- C:\Windows\SysNative\drivers\dgderdrv.sys (Devguru Co., Ltd)
DRV:64bit: - (TFsExDisk) -- C:\Windows\SysNative\drivers\TFsExDisk.sys (Teruten Inc)
DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atipmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (AmUStor) -- C:\Windows\SysNative\drivers\AmUStor.sys (Alcor Micro, Corp.)
DRV:64bit: - (ApfiltrService) -- C:\Windows\SysNative\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV:64bit: - (k57nd60a) -- C:\Windows\SysNative\drivers\k57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV:64bit: - (HECIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (L1E) -- C:\Windows\SysNative\drivers\L1E62x64.sys (Atheros Communications, Inc.)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (mwlPSDVDisk) -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys (Egis Technology Inc.)
DRV:64bit: - (mwlPSDFilter) -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys (Egis Technology Inc.)
DRV:64bit: - (mwlPSDNServ) -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys (Egis Technology Inc.)
DRV:64bit: - (NTIDrvr) -- C:\Windows\SysNative\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
DRV:64bit: - (UBHelper) -- C:\Windows\SysNative\drivers\UBHelper.sys (NewTech Infosystems Corporation)
DRV - (dgderdrv) -- C:\Windows\SysWOW64\drivers\dgderdrv.sys (Devguru Co., Ltd)
DRV - (TFsExDisk) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys (Teruten Inc)
DRV - ({B154377D-700F-42cc-9474-23858FBDF4BD}) -- c:\Program Files (x86)\CyberLink\PowerDVD9\000.fcl (CyberLink Corp.)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_7741&r=27360111h906l04f8z1h5t47n1o189
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_7741&r=27360111h906l04f8z1h5t47n1o189
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_7741&r=27360111h906l04f8z1h5t47n1o189
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_7741&r=27360111h906l04f8z1h5t47n1o189
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
 
 
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_7741&r=27360111h906l04f8z1h5t47n1o189
IE - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - No CLSID value found
IE - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deDE415
IE - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ACAW_deDE415
IE - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170633FE}:21.1.10084.997
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.09.18 14:55:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.09.14 17:42:30 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.09.18 14:55:20 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.09.14 17:42:30 | 000,000,000 | ---D | M]
 
[2011.01.19 15:17:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\alex-sabrina\AppData\Roaming\mozilla\Extensions
[2012.10.10 21:18:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\alex-sabrina\AppData\Roaming\mozilla\Firefox\Profiles\1s30bppv.default\extensions
[2012.05.25 09:40:18 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Users\alex-sabrina\AppData\Roaming\mozilla\Firefox\Profiles\1s30bppv.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.10.09 09:31:35 | 000,000,911 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\mozilla\firefox\profiles\1s30bppv.default\searchplugins\11-suche.xml
[2012.10.09 09:31:35 | 000,002,273 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\mozilla\firefox\profiles\1s30bppv.default\searchplugins\englische-ergebnisse.xml
[2012.10.09 09:31:35 | 000,010,563 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\mozilla\firefox\profiles\1s30bppv.default\searchplugins\gmx-suche.xml
[2012.10.09 09:31:35 | 000,002,432 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\mozilla\firefox\profiles\1s30bppv.default\searchplugins\lastminute.xml
[2012.10.09 09:31:35 | 000,005,545 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\mozilla\firefox\profiles\1s30bppv.default\searchplugins\webde-suche.xml
[2012.05.25 20:57:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2011.03.21 15:39:02 | 000,000,000 | ---D | M] (G Data WebFilter) -- C:\Program Files (x86)\mozilla firefox\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170633FE}
[2012.10.13 18:40:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\updated\extensions
[2012.10.13 18:40:12 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\updated\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2012.10.13 18:40:08 | 000,000,000 | ---D | M] (G Data WebFilter) -- C:\Program Files (x86)\mozilla firefox\updated\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170633FE}
[2012.09.18 14:55:20 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011.10.03 06:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2012.04.21 03:54:08 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.09.18 14:55:10 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012.04.21 03:54:08 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2012.04.21 03:54:08 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.04.21 03:54:08 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.04.21 03:54:08 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Windows\SysWOW64\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1136406076-454948950-2539129923-1000..\Run: [googletalk] C:\Users\alex-sabrina\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
O4 - HKU\S-1-5-21-1136406076-454948950-2539129923-1000..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
O4 - HKU\S-1-5-21-1136406076-454948950-2539129923-1000..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\alex-sabrina\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\alex-sabrina\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\IpsosLSPService64.DLL (Ipsos)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\IpsosLSPService64.DLL (Ipsos)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\IpsosLSPService64.DLL (Ipsos)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\IpsosLSPService64.DLL (Ipsos)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000015 - C:\Windows\SysNative\IpsosLSPService64.DLL (Ipsos)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWow64\IpsosLSPService.DLL (Ipsos)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWow64\IpsosLSPService.DLL (Ipsos)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWow64\IpsosLSPService.DLL (Ipsos)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWow64\IpsosLSPService.DLL (Ipsos)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\SysWow64\IpsosLSPService.DLL (Ipsos)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9C65F36B-6EF5-420B-B477-65E132B62BE5}: DhcpNameServer = 192.168.2.1 192.168.2.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{41baeeef-28f2-11e1-8a3e-206a8a160b1c}\Shell - "" = AutoRun
O33 - MountPoints2\{41baeeef-28f2-11e1-8a3e-206a8a160b1c}\Shell\AutoRun\command - "" = E:\start.exe /auto
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
 
MsConfig:64bit - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk -  - File not found
MsConfig:64bit - StartUpReg: Acer ePower Management - hkey= - key= - C:\Programme\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
MsConfig:64bit - StartUpReg: Adobe ARM - hkey= - key= - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig:64bit - StartUpReg: AmIcoSinglun64 - hkey= - key= - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.)
MsConfig:64bit - StartUpReg: Apoint - hkey= - key= - C:\Programme\Apoint2K\Apoint.exe (Alps Electric Co., Ltd.)
MsConfig:64bit - StartUpReg: BackupManagerTray - hkey= - key= - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
MsConfig:64bit - StartUpReg: CheckPoint Cleanup - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: EgisTecPMMUpdate - hkey= - key= - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
MsConfig:64bit - StartUpReg: EgisUpdate - hkey= - key= - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
MsConfig:64bit - StartUpReg: HBLiteSA - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: IMBooster - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: Iminent.Notifier - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: Ipsos-WatchDog - hkey= - key= - C:\Program Files (x86)\IpsosLSPService\Ipsos-WatchDog.exe ()
MsConfig:64bit - StartUpReg: ISW - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: KiesHelper - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: KiesPDLR - hkey= - key= - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
MsConfig:64bit - StartUpReg: KiesTrayAgent - hkey= - key= - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
MsConfig:64bit - StartUpReg: LManager - hkey= - key= - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
MsConfig:64bit - StartUpReg: msnmsgr - hkey= - key= - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
MsConfig:64bit - StartUpReg: mwlDaemon - hkey= - key= - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe (Egis Technology Inc.)
MsConfig:64bit - StartUpReg: RtHDVCpl - hkey= - key= - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
MsConfig:64bit - StartUpReg: StartCCC - hkey= - key= - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
MsConfig:64bit - StartUpReg: SuiteTray - hkey= - key= - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.)
MsConfig:64bit - StartUpReg: SunJavaUpdateSched - hkey= - key= - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
MsConfig:64bit - State: "startup" - Reg Error: Key error.
 
SafeBootMin:64bit: AppMgmt - Service
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: MCODS - Reg Error: Value error.
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: vmms - Service
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: MCODS - Reg Error: Value error.
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
SafeBootNet:64bit: AppMgmt - Service
SafeBootNet:64bit: Base - Driver Group
SafeBootNet:64bit: Boot Bus Extender - Driver Group
SafeBootNet:64bit: Boot file system - Driver Group
SafeBootNet:64bit: File system - Driver Group
SafeBootNet:64bit: Filter - Driver Group
SafeBootNet:64bit: HelpSvc - Service
SafeBootNet:64bit: MCODS - Reg Error: Value error.
SafeBootNet:64bit: Messenger - Service
SafeBootNet:64bit: NDIS Wrapper - Driver Group
SafeBootNet:64bit: NetBIOSGroup - Driver Group
SafeBootNet:64bit: NetDDEGroup - Driver Group
SafeBootNet:64bit: Network - Driver Group
SafeBootNet:64bit: NetworkProvider - Driver Group
SafeBootNet:64bit: PCI Configuration - Driver Group
SafeBootNet:64bit: PNP Filter - Driver Group
SafeBootNet:64bit: PNP_TDI - Driver Group
SafeBootNet:64bit: Primary disk - Driver Group
SafeBootNet:64bit: rdsessmgr - Service
SafeBootNet:64bit: sacsvr - Service
SafeBootNet:64bit: SCSI Class - Driver Group
SafeBootNet:64bit: Streams Drivers - Driver Group
SafeBootNet:64bit: System Bus Extender - Driver Group
SafeBootNet:64bit: TDI - Driver Group
SafeBootNet:64bit: vmms - Service
SafeBootNet:64bit: vsmon - Service
SafeBootNet:64bit: WudfUsbccidDriver - Driver
SafeBootNet:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: MCODS - Reg Error: Value error.
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: vsmon - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
 
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
 
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
 
========== Files/Folders - Created Within 30 Days ==========
 
[2012.10.13 23:39:36 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\alex-sabrina\Desktop\OTL.exe
[2012.10.12 22:55:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2012.10.11 16:13:48 | 000,000,000 | ---D | C] -- C:\Users\alex-sabrina\Desktop\Virus
[2012.10.10 22:41:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2012.10.10 22:41:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-Zip
[2012.10.10 16:24:09 | 000,000,000 | ---D | C] -- C:\Users\alex-sabrina\AppData\Roaming\Malwarebytes
[2012.10.10 16:23:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.10.10 16:23:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.10.10 16:23:57 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012.10.10 16:23:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012.10.09 09:36:34 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee Security Scan
[2012.10.09 09:36:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee Security Scan
[2012.10.08 11:17:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft
[2012.10.08 11:15:21 | 020,664,552 | ---- | C] (DVDVideoSoft Ltd.                                          ) -- C:\Users\alex-sabrina\Desktop\FreeYouTubeToMP3Converter.exe
[4 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[2 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2012.10.13 23:42:00 | 000,001,122 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.10.13 23:39:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\alex-sabrina\Desktop\OTL.exe
[2012.10.13 23:35:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.10.13 21:42:00 | 000,001,118 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.10.13 21:37:06 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.10.13 17:05:09 | 000,017,600 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.10.13 17:05:09 | 000,017,600 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.10.13 16:55:50 | 3111,514,112 | -HS- | M] () -- C:\hiberfil.sys
[2012.10.12 22:57:21 | 000,538,327 | ---- | M] () -- C:\Users\alex-sabrina\Desktop\adwcleaner.exe
[2012.10.12 22:55:18 | 000,002,098 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2012.10.12 22:55:17 | 000,002,098 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
[2012.10.11 11:06:28 | 000,001,024 | RH-- | M] () -- C:\Users\Public\Documents\NTILiveUpdate.dll
[2012.10.11 11:00:14 | 000,000,040 | -HS- | M] () -- C:\ProgramData\.zreglib
[2012.10.08 11:17:16 | 000,001,402 | ---- | M] () -- C:\Users\alex-sabrina\Desktop\Free YouTube to MP3 Converter.lnk
[2012.10.08 11:15:24 | 020,664,552 | ---- | M] (DVDVideoSoft Ltd.                                          ) -- C:\Users\alex-sabrina\Desktop\FreeYouTubeToMP3Converter.exe
[2012.10.05 12:15:06 | 000,359,286 | ---- | M] () -- C:\Users\alex-sabrina\Documents\Ärzte Italien 001.jpg
[2012.09.30 21:55:41 | 001,500,294 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012.09.30 21:55:41 | 000,654,852 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2012.09.30 21:55:41 | 000,616,694 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012.09.30 21:55:41 | 000,130,434 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2012.09.30 21:55:41 | 000,106,816 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012.09.17 13:14:35 | 000,000,116 | ---- | M] () -- C:\Windows\NeroDigital.ini
[4 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[2 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2012.10.12 22:57:12 | 000,538,327 | ---- | C] () -- C:\Users\alex-sabrina\Desktop\adwcleaner.exe
[2012.10.09 09:36:31 | 000,002,098 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
[2012.10.09 09:36:31 | 000,002,098 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2012.10.05 12:15:06 | 000,359,286 | ---- | C] () -- C:\Users\alex-sabrina\Documents\Ärzte Italien 001.jpg
[2012.08.21 16:38:04 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib
[2012.04.07 17:46:17 | 000,000,587 | ---- | C] () -- C:\Windows\wiso.ini
[2011.12.27 21:18:57 | 000,000,116 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011.12.16 17:48:39 | 000,000,196 | ---- | C] () -- C:\Windows\ulead32.ini
[2011.12.16 17:35:24 | 000,000,008 | RHS- | C] () -- C:\ProgramData\E671429E18.sys
[2011.12.16 17:35:23 | 000,002,828 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2011.09.16 12:54:48 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2011.08.15 16:51:06 | 000,001,552 | ---- | C] () -- C:\Windows\SysWow64\IpsosLSPServiceOff.ini
[2011.08.15 16:51:05 | 000,002,664 | ---- | C] () -- C:\Windows\SysWow64\IpsosLSPService.ini
[2011.06.02 11:57:48 | 000,178,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011.05.13 10:35:36 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
[2011.03.21 15:04:45 | 000,010,240 | ---- | C] () -- C:\Users\alex-sabrina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.15 17:44:28 | 001,527,116 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011.01.29 18:00:22 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2011.01.29 18:00:22 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2011.01.29 18:00:22 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2011.01.29 18:00:22 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2011.01.19 15:16:54 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.05.07 01:57:54 | 000,131,472 | ---- | C] () -- C:\ProgramData\FullRemove.exe
 
========== ZeroAccess Check ==========
 
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2012.04.07 17:50:13 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Buhl Data Service
[2011.06.17 10:56:34 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\CheckPoint
[2011.12.17 23:51:14 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\DAEMON Tools Lite
[2012.08.21 16:24:41 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\DeepBurner
[2012.10.08 11:17:23 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\DVDVideoSoft
[2012.05.25 09:40:17 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.02.07 10:45:31 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Lexware
[2011.05.13 10:37:43 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\MAGIX
[2011.02.03 12:27:04 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Opera
[2011.05.13 13:50:34 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\PhotoScape
[2011.01.22 22:00:51 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\PlayFirst
[2011.11.28 22:39:16 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\RavensburgerTipToi
[2011.11.07 18:17:07 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Samsung
[2012.10.08 21:17:50 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\SoftGrid Client
[2011.11.07 16:32:35 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Temp
[2011.02.15 17:45:11 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\TP
[2011.06.02 11:59:00 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Video DVD Maker FREE
[2011.01.20 18:17:14 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Windows Live Writer
 
========== Purity Check ==========
 
 
 
========== Custom Scans ==========
 
< %ALLUSERSPROFILE%\Application Data\*. >
 
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
 
< %APPDATA%\*. >
[2011.02.16 11:42:33 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Adobe
[2011.01.18 19:24:50 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\ATI
[2011.11.07 11:35:13 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Avira
[2012.04.07 17:50:13 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Buhl Data Service
[2011.06.17 10:56:34 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\CheckPoint
[2011.06.02 12:12:59 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\CyberLink
[2011.12.17 23:51:14 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\DAEMON Tools Lite
[2012.08.21 16:24:41 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\DeepBurner
[2012.10.08 11:17:23 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\DVDVideoSoft
[2012.05.25 09:40:17 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.04.28 20:44:31 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Google
[2011.01.18 19:23:35 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Identities
[2011.02.07 10:45:31 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Lexware
[2011.01.18 19:24:07 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Macromedia
[2011.05.13 10:37:43 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\MAGIX
[2012.10.10 16:24:09 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Malwarebytes
[2010.05.07 02:13:07 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Media Center Programs
[2011.06.02 12:16:09 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Media Player Classic
[2011.12.16 17:49:46 | 000,000,000 | --SD | M] -- C:\Users\alex-sabrina\AppData\Roaming\Microsoft
[2012.01.24 00:02:05 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Mozilla
[2012.01.03 13:31:02 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\NCH Software
[2011.02.03 12:27:04 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Opera
[2011.05.13 13:50:34 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\PhotoScape
[2011.01.22 22:00:51 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\PlayFirst
[2011.11.28 22:39:16 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\RavensburgerTipToi
[2011.11.07 18:17:07 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Samsung
[2012.10.08 21:17:50 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\SoftGrid Client
[2011.11.07 16:32:35 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Temp
[2011.02.15 17:45:11 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\TP
[2011.06.02 11:59:00 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Video DVD Maker FREE
[2011.01.20 18:17:14 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\Windows Live Writer
[2011.12.15 22:11:27 | 000,000,000 | ---D | M] -- C:\Users\alex-sabrina\AppData\Roaming\WinRAR
 
< %APPDATA%\*.exe /s >
[2007.01.01 23:22:02 | 003,739,648 | ---- | M] (Google) -- C:\Users\alex-sabrina\AppData\Roaming\Google\Google Talk\googletalk.exe
[2011.04.28 20:44:32 | 000,079,367 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Google\Google Talk\uninstall.exe
[2011.01.31 03:01:42 | 087,340,080 | ---- | M] (Samsung Electronics Co., Ltd.                                ) -- C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Templates\SamsungKiesSetup.exe
[2011.11.07 12:47:30 | 000,929,168 | ---- | M] (Samsung) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Kies.exe
[2011.11.07 12:47:34 | 000,278,928 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesDriverInstaller.exe
[2011.10.31 04:24:38 | 000,292,864 | ---- | M] (Samsung) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesLogger.exe
[2011.11.07 12:47:32 | 003,508,624 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesTrayAgent.exe
[2011.10.31 04:23:28 | 000,140,800 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\ConnectionManager.exe
[2011.10.31 04:23:28 | 000,283,648 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceDataService.exe
[2011.10.31 04:23:28 | 000,690,688 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceManager.exe
[2011.10.31 04:23:28 | 000,110,080 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\ErrorReport.exe
[2011.11.07 12:47:38 | 000,067,472 | ---- | M] (Samsung) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\Kies_Tutorial.exe
[2011.10.31 04:23:12 | 000,106,408 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentInstaller.exe
[2011.10.31 04:23:12 | 000,101,288 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentUpdate.exe
[2011.11.07 12:47:42 | 000,131,984 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2011.11.07 12:47:44 | 000,021,392 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\KiesPDLR.exe
[2011.11.07 12:47:46 | 003,571,576 | ---- | M] (Freeware) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\MediaModules\MyFreeCodecPack.exe
[2011.09.16 12:55:06 | 000,221,184 | ---- | M] (ENJsoft corp.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\TransModules\SelfMV.exe
[2011.09.16 12:55:08 | 000,061,440 | ---- | M] (ENJsoft corp.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\TransModules\SelfMV2.exe
[2011.11.07 12:47:48 | 000,391,568 | ---- | M] (ml) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Updater\Kies.Update.exe
[2011.10.31 04:22:30 | 024,114,392 | ---- | M] (SAMSUNG Electronics Co., Ltd.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\USB Driver\SAMSUNG_USB_Driver_for_Mobile_Phones.exe
[2012.08.07 07:25:02 | 000,960,440 | ---- | M] (Samsung) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Kies.exe
[2012.08.07 07:25:04 | 000,278,968 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesDriverInstaller.exe
[2012.07.30 07:17:50 | 000,320,512 | ---- | M] (Samsung) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesLogger.exe
[2012.08.07 07:25:02 | 003,524,536 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesTrayAgent.exe
[2012.08.07 07:11:30 | 000,182,784 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\ConnectionManager.exe
[2012.08.07 07:17:30 | 000,322,048 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceDataService.exe
[2012.08.07 07:12:24 | 000,717,312 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceManager.exe
[2012.07.30 07:17:12 | 000,110,592 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\ErrorReport.exe
[2012.08.07 07:25:06 | 000,067,512 | ---- | M] (Samsung) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\Kies_Tutorial.exe
[2012.07.30 07:17:10 | 000,057,344 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\RegisterCOM.exe
[2012.08.03 08:42:04 | 000,106,960 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentInstaller.exe
[2012.08.03 08:42:04 | 000,101,328 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentUpdate.exe
[2012.08.07 07:25:10 | 000,183,736 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2012.08.07 07:25:12 | 000,021,432 | ---- | M] () -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\KiesPDLR.exe
[2012.08.07 07:25:12 | 003,742,648 | ---- | M] (Freeware) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\MediaModules\MyFreeCodecPack.exe
[2012.07.30 07:16:46 | 000,262,144 | ---- | M] (ENJsoft corp.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\TransModules\SelfMV.exe
[2012.07.30 07:16:46 | 000,090,112 | ---- | M] (ENJsoft corp.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\TransModules\SelfMV2.exe
[2012.08.07 07:25:14 | 000,593,848 | ---- | M] (ml) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Updater\Kies.Update.exe
[2012.07.30 07:16:14 | 024,164,152 | ---- | M] (SAMSUNG Electronics Co., Ltd.) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\USB Driver\SAMSUNG_USB_Driver_for_Mobile_Phones.exe
[2011.11.07 12:47:48 | 000,391,568 | ---- | M] (ml) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Temp\Kies.Update.exe
[2012.08.07 07:25:14 | 000,593,848 | ---- | M] (ml) -- C:\Users\alex-sabrina\AppData\Roaming\Samsung\Kies\UpdateTemp\Updater\Kies.Update.exe
 
< %SYSTEMDRIVE%\*.exe >
 
< MD5 for: AGP440.SYS  >
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys
 
< MD5 for: ATAPI.SYS  >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
 
< MD5 for: CNGAUDIT.DLL  >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
 
< MD5 for: IASTOR.SYS  >
[2010.03.04 05:33:26 | 000,435,736 | ---- | M] (Intel Corporation) MD5=26541A068572F650A2FA490726FE81BE -- C:\oem\Preload\Autorun\DRV\AHCI\F6\f6flpy-x86\iaStor.sys
[2010.03.04 05:51:40 | 000,540,696 | ---- | M] (Intel Corporation) MD5=ABBF174CB394F5C437410A788B7E404A -- C:\oem\Preload\Autorun\DRV\AHCI\F6\f6flpy-x64\iaStor.sys
[2010.03.04 04:51:40 | 000,540,696 | ---- | M] (Intel Corporation) MD5=ABBF174CB394F5C437410A788B7E404A -- C:\Windows\SysNative\drivers\iaStor.sys
[2010.03.04 04:51:40 | 000,540,696 | ---- | M] (Intel Corporation) MD5=ABBF174CB394F5C437410A788B7E404A -- C:\Windows\SysNative\DriverStore\FileRepository\iaahci.inf_amd64_neutral_78ebae21a80aa2b4\iaStor.sys
 
< MD5 for: IASTORV.SYS  >
[2010.11.20 15:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.20 15:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011.03.11 08:19:16 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys
[2011.03.11 08:23:00 | 000,410,496 | ---- | M] (Intel Corporation) MD5=B75E45C564E944A2657167D197AB29DA -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_0b141c81a16e25e6\iaStorV.sys
[2011.03.11 08:25:49 | 000,410,496 | ---- | M] (Intel Corporation) MD5=BFDC9D75698800CFE4D1698BF2750EA2 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_0bccc8c8ba6985c1\iaStorV.sys
[2009.07.14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys
 
< MD5 for: NETLOGON.DLL  >
[2009.07.14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2010.11.20 15:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010.11.20 15:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010.11.20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
[2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
 
< MD5 for: NVSTOR.SYS  >
[2009.07.14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
[2011.03.11 08:23:06 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=6C1D5F70E7A6A3FD1C90D840EDC048B9 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_95dd8d30d8a4cfbe\nvstor.sys
[2011.03.11 08:25:53 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=AE274836BA56518E279087363A781214 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_96963977f1a02f99\nvstor.sys
[2011.03.11 08:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010.11.20 15:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.20 15:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys
 
< MD5 for: SCECLI.DLL  >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
 
< MD5 for: USER32.DLL  >
[2010.11.20 14:08:57 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\SysWOW64\user32.dll
[2010.11.20 14:08:57 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
[2009.07.14 03:41:56 | 001,008,640 | ---- | M] (Microsoft Corporation) MD5=72D7B3EA16946E8F0CF7458150031CC6 -- C:\Windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_292d5de8870d85d9\user32.dll
[2009.07.14 03:11:24 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=E8B0FFC209E504CB7E79FC24E6C085F0 -- C:\Windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_3382083abb6e47d4\user32.dll
[2010.11.20 15:27:27 | 001,008,128 | ---- | M] (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\SysNative\user32.dll
[2010.11.20 15:27:27 | 001,008,128 | ---- | M] (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll
 
< MD5 for: USERINIT.EXE  >
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
 
< MD5 for: WININIT.EXE  >
[2009.07.14 03:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- C:\Windows\SysNative\wininit.exe
[2009.07.14 03:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- C:\Windows\winsxs\amd64_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_8ce7aa761e01ad49\wininit.exe
[2009.07.14 03:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\SysWOW64\wininit.exe
[2009.07.14 03:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe
 
< MD5 for: WINLOGON.EXE  >
[2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2012.09.07 17:04:42 | 000,218,696 | ---- | M] () MD5=4E0D8C9F83B7FD82393F7D8CCC27E7AE -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2010.05.07 01:46:32 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2010.05.07 01:46:32 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
 
< MD5 for: WS2IFSL.SYS  >
[2009.07.14 02:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=6BCC1D7D2FD2453957C5479A32364E52 -- C:\Windows\SysNative\drivers\ws2ifsl.sys
[2009.07.14 02:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=6BCC1D7D2FD2453957C5479A32364E52 -- C:\Windows\winsxs\amd64_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.1.7600.16385_none_ab7b927be17eace8\ws2ifsl.sys
 
< %systemroot%\system32\drivers\*.sys /lockedfiles >
 
< %systemroot%\System32\config\*.sav >
 
< %systemroot%\*. /mp /s >
 
< %systemroot%\system32\*.dll /lockedfiles >
[2009.07.14 03:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2009.07.14 03:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll
[4 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
 
<          >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,640 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011.01.18 20:55:11 | 000,001,118 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2011.01.18 20:55:11 | 000,001,122 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.08.08 22:05:18 | 000,000,884 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 138 bytes -> C:\ProgramData\Temp:5D7E5A8F
@Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:93DE1838
@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:ABE89FFE
@Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:0B9176C0
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:E1F04E8D

< End of report >
--- --- ---
[/code]

cosinus 14.10.2012 16:26
Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!)

Code:
:OTL
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-1136406076-454948950-2539129923-1000\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
@Alternate Data Stream - 138 bytes -> C:\ProgramData\Temp:5D7E5A8F
@Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:93DE1838
@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:ABE89FFE
@Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:0B9176C0
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:E1F04E8D
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]
[resethosts]
Klick dann oben links auf den Button Fix!
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet.

Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt.

Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!

choupette198 14.10.2012 19:01
Code:
All processes killed
========== OTL ==========
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1136406076-454948950-2539129923-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\S-1-5-21-1136406076-454948950-2539129923-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107}\ not found.
ADS C:\ProgramData\Temp:5D7E5A8F deleted successfully.
ADS C:\ProgramData\Temp:93DE1838 deleted successfully.
ADS C:\ProgramData\Temp:ABE89FFE deleted successfully.
ADS C:\ProgramData\Temp:0B9176C0 deleted successfully.
ADS C:\ProgramData\Temp:E1F04E8D deleted successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: alex-sabrina
->Temp folder emptied: 688629873 bytes
->Temporary Internet Files folder emptied: 30222091 bytes
->Java cache emptied: 1112858 bytes
->FireFox cache emptied: 1091809622 bytes
->Opera cache emptied: 10286569 bytes
->Flash cache emptied: 112322 bytes
 
User: All Users
 
User: AppData
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 504666611 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 56001 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 2.219,00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.69.0 log created on 10142012_185411

Files\Folders moved on Reboot...
C:\Users\alex-sabrina\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\dsiwmis.log scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

cosinus 14.10.2012 20:22
Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.

Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

http://saved.im/mtg4nzy0ywy5/settings_2012-09-04.png

choupette198 14.10.2012 20:49
Ich hoffe das ist richtig so.

Code:
21:40:08.0007 5668  TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
21:40:08.0211 5668  ============================================================
21:40:08.0211 5668  Current date / time: 2012/10/14 21:40:08.0211
21:40:08.0211 5668  SystemInfo:
21:40:08.0211 5668 
21:40:08.0211 5668  OS Version: 6.1.7601 ServicePack: 1.0
21:40:08.0211 5668  Product type: Workstation
21:40:08.0211 5668  ComputerName: ALEX-SABRINA-PC
21:40:08.0212 5668  UserName: alex-sabrina
21:40:08.0212 5668  Windows directory: C:\Windows
21:40:08.0212 5668  System windows directory: C:\Windows
21:40:08.0212 5668  Running under WOW64
21:40:08.0212 5668  Processor architecture: Intel x64
21:40:08.0212 5668  Number of processors: 4
21:40:08.0212 5668  Page size: 0x1000
21:40:08.0212 5668  Boot type: Normal boot
21:40:08.0212 5668  ============================================================
21:40:08.0665 5668  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:40:08.0669 5668  ============================================================
21:40:08.0669 5668  \Device\Harddisk0\DR0:
21:40:08.0669 5668  MBR partitions:
21:40:08.0669 5668  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A5E800, BlocksNum 0x32000
21:40:08.0669 5668  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A90800, BlocksNum 0x388F5030
21:40:08.0669 5668  ============================================================
21:40:08.0693 5668  C: <-> \Device\Harddisk0\DR0\Partition2
21:40:08.0693 5668  ============================================================
21:40:08.0693 5668  Initialize success
21:40:08.0693 5668  ============================================================
21:43:15.0461 5180  ============================================================
21:43:15.0461 5180  Scan started
21:43:15.0461 5180  Mode: Manual; SigCheck; TDLFS;
21:43:15.0461 5180  ============================================================
21:43:16.0231 5180  ================ Scan system memory ========================
21:43:16.0231 5180  System memory - ok
21:43:16.0231 5180  ================ Scan services =============================
21:43:16.0411 5180  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
21:43:16.0521 5180  1394ohci - ok
21:43:16.0571 5180  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:43:16.0581 5180  ACPI - ok
21:43:16.0641 5180  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi        C:\Windows\system32\drivers\acpipmi.sys
21:43:16.0711 5180  AcpiPmi - ok
21:43:16.0801 5180  [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:43:16.0821 5180  AdobeARMservice - ok
21:43:16.0981 5180  [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:43:17.0001 5180  AdobeFlashPlayerUpdateSvc - ok
21:43:17.0071 5180  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx        C:\Windows\system32\DRIVERS\adp94xx.sys
21:43:17.0101 5180  adp94xx - ok
21:43:17.0121 5180  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci        C:\Windows\system32\DRIVERS\adpahci.sys
21:43:17.0141 5180  adpahci - ok
21:43:17.0191 5180  [ E109549C90F62FB570B9540C4B148E54 ] adpu320        C:\Windows\system32\DRIVERS\adpu320.sys
21:43:17.0221 5180  adpu320 - ok
21:43:17.0281 5180  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc    C:\Windows\System32\aelupsvc.dll
21:43:17.0461 5180  AeLookupSvc - ok
21:43:17.0541 5180  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD            C:\Windows\system32\drivers\afd.sys
21:43:17.0621 5180  AFD - ok
21:43:17.0671 5180  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:43:17.0701 5180  agp440 - ok
21:43:17.0731 5180  [ 3290D6946B5E30E70414990574883DDB ] ALG            C:\Windows\System32\alg.exe
21:43:17.0801 5180  ALG - ok
21:43:17.0831 5180  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:43:17.0841 5180  aliide - ok
21:43:17.0891 5180  [ 3D90CF67DB75823A8480E56BBCD2E028 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:43:17.0931 5180  AMD External Events Utility - ok
21:43:17.0991 5180  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
21:43:18.0021 5180  amdide - ok
21:43:18.0041 5180  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8          C:\Windows\system32\DRIVERS\amdk8.sys
21:43:18.0081 5180  AmdK8 - ok
21:43:18.0271 5180  [ 52679612D742BF74CA1BA6AB86DDF431 ] amdkmdag        C:\Windows\system32\DRIVERS\atipmdag.sys
21:43:18.0451 5180  amdkmdag - ok
21:43:18.0491 5180  [ 414E0788920A8C856032BE2CBF29F984 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
21:43:18.0511 5180  amdkmdap - ok
21:43:18.0541 5180  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
21:43:18.0591 5180  AmdPPM - ok
21:43:18.0631 5180  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata        C:\Windows\system32\drivers\amdsata.sys
21:43:18.0641 5180  amdsata - ok
21:43:18.0691 5180  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
21:43:18.0711 5180  amdsbs - ok
21:43:18.0751 5180  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata        C:\Windows\system32\drivers\amdxata.sys
21:43:18.0761 5180  amdxata - ok
21:43:18.0801 5180  [ 391887990CDAA83DE5C56C3FDE966DA1 ] AmUStor        C:\Windows\system32\drivers\AmUStor.SYS
21:43:18.0861 5180  AmUStor - ok
21:43:18.0951 5180  [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
21:43:18.0971 5180  AntiVirSchedulerService - ok
21:43:19.0011 5180  [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
21:43:19.0031 5180  AntiVirService - ok
21:43:19.0091 5180  [ FAB590E0FC28CB474B965F8267458E14 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
21:43:19.0121 5180  ApfiltrService - ok
21:43:19.0161 5180  [ 89A69C3F2F319B43379399547526D952 ] AppID          C:\Windows\system32\drivers\appid.sys
21:43:19.0341 5180  AppID - ok
21:43:19.0361 5180  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:43:19.0431 5180  AppIDSvc - ok
21:43:19.0491 5180  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo        C:\Windows\System32\appinfo.dll
21:43:19.0551 5180  Appinfo - ok
21:43:19.0591 5180  [ C484F8CEB1717C540242531DB7845C4E ] arc            C:\Windows\system32\DRIVERS\arc.sys
21:43:19.0601 5180  arc - ok
21:43:19.0611 5180  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
21:43:19.0631 5180  arcsas - ok
21:43:19.0641 5180  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:43:19.0701 5180  AsyncMac - ok
21:43:19.0751 5180  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi          C:\Windows\system32\drivers\atapi.sys
21:43:19.0761 5180  atapi - ok
21:43:19.0831 5180  [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
21:43:19.0841 5180  AtiHdmiService - ok
21:43:19.0891 5180  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:43:19.0961 5180  AudioEndpointBuilder - ok
21:43:19.0971 5180  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:43:20.0011 5180  AudioSrv - ok
21:43:20.0031 5180  [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
21:43:20.0041 5180  avgntflt - ok
21:43:20.0081 5180  [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
21:43:20.0091 5180  avipbb - ok
21:43:20.0131 5180  [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
21:43:20.0141 5180  avkmgr - ok
21:43:20.0181 5180  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:43:20.0291 5180  AxInstSV - ok
21:43:20.0321 5180  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv        C:\Windows\system32\DRIVERS\bxvbda.sys
21:43:20.0351 5180  b06bdrv - ok
21:43:20.0401 5180  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
21:43:20.0441 5180  b57nd60a - ok
21:43:20.0571 5180  [ FDE8C8DC07E75347E4C6B455A0964217 ] BCM43XX        C:\Windows\system32\DRIVERS\bcmwl664.sys
21:43:20.0691 5180  BCM43XX - ok
21:43:20.0761 5180  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
21:43:20.0841 5180  BDESVC - ok
21:43:20.0891 5180  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:43:20.0951 5180  Beep - ok
21:43:21.0011 5180  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE            C:\Windows\System32\bfe.dll
21:43:21.0071 5180  BFE - ok
21:43:21.0121 5180  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
21:43:21.0191 5180  BITS - ok
21:43:21.0221 5180  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
21:43:21.0251 5180  blbdrive - ok
21:43:21.0301 5180  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:43:21.0361 5180  bowser - ok
21:43:21.0391 5180  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:43:21.0481 5180  BrFiltLo - ok
21:43:21.0491 5180  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:43:21.0511 5180  BrFiltUp - ok
21:43:21.0551 5180  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser        C:\Windows\System32\browser.dll
21:43:21.0591 5180  Browser - ok
21:43:21.0601 5180  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid        C:\Windows\System32\Drivers\Brserid.sys
21:43:21.0681 5180  Brserid - ok
21:43:21.0681 5180  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
21:43:21.0731 5180  BrSerWdm - ok
21:43:21.0751 5180  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
21:43:21.0781 5180  BrUsbMdm - ok
21:43:21.0791 5180  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
21:43:21.0811 5180  BrUsbSer - ok
21:43:21.0821 5180  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
21:43:21.0841 5180  BTHMODEM - ok
21:43:21.0891 5180  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv        C:\Windows\system32\bthserv.dll
21:43:21.0961 5180  bthserv - ok
21:43:22.0011 5180  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:43:22.0091 5180  cdfs - ok
21:43:22.0151 5180  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom          C:\Windows\system32\DRIVERS\cdrom.sys
21:43:22.0191 5180  cdrom - ok
21:43:22.0251 5180  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc    C:\Windows\System32\certprop.dll
21:43:22.0331 5180  CertPropSvc - ok
21:43:22.0361 5180  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
21:43:22.0391 5180  circlass - ok
21:43:22.0421 5180  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
21:43:22.0451 5180  CLFS - ok
21:43:22.0521 5180  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:43:22.0541 5180  clr_optimization_v2.0.50727_32 - ok
21:43:22.0591 5180  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:43:22.0601 5180  clr_optimization_v2.0.50727_64 - ok
21:43:22.0691 5180  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:43:22.0731 5180  clr_optimization_v4.0.30319_32 - ok
21:43:22.0771 5180  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:43:22.0781 5180  clr_optimization_v4.0.30319_64 - ok
21:43:22.0811 5180  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:43:22.0841 5180  CmBatt - ok
21:43:22.0881 5180  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:43:22.0901 5180  cmdide - ok
21:43:22.0951 5180  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG            C:\Windows\system32\Drivers\cng.sys
21:43:22.0981 5180  CNG - ok
21:43:23.0021 5180  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:43:23.0031 5180  Compbatt - ok
21:43:23.0081 5180  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
21:43:23.0131 5180  CompositeBus - ok
21:43:23.0151 5180  COMSysApp - ok
21:43:23.0171 5180  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk        C:\Windows\system32\DRIVERS\crcdisk.sys
21:43:23.0191 5180  crcdisk - ok
21:43:23.0241 5180  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:43:23.0291 5180  CryptSvc - ok
21:43:23.0391 5180  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:43:23.0431 5180  cvhsvc - ok
21:43:23.0481 5180  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:43:23.0551 5180  DcomLaunch - ok
21:43:23.0571 5180  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc      C:\Windows\System32\defragsvc.dll
21:43:23.0641 5180  defragsvc - ok
21:43:23.0671 5180  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:43:23.0761 5180  DfsC - ok
21:43:23.0791 5180  [ DEF365F0F6E017888C4B869D3BA4B8E0 ] dgderdrv        C:\Windows\system32\drivers\dgderdrv.sys
21:43:23.0811 5180  dgderdrv - ok
21:43:23.0861 5180  [ BC3C53000ADCD440F1B23E46DAC302EF ] dgdersvc        C:\Windows\system32\dgdersvc.exe
21:43:23.0871 5180  dgdersvc - ok
21:43:23.0921 5180  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:43:23.0971 5180  Dhcp - ok
21:43:24.0001 5180  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
21:43:24.0061 5180  discache - ok
21:43:24.0091 5180  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
21:43:24.0111 5180  Disk - ok
21:43:24.0141 5180  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:43:24.0201 5180  Dnscache - ok
21:43:24.0241 5180  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc        C:\Windows\System32\dot3svc.dll
21:43:24.0301 5180  dot3svc - ok
21:43:24.0341 5180  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS            C:\Windows\system32\dps.dll
21:43:24.0401 5180  DPS - ok
21:43:24.0451 5180  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud        C:\Windows\system32\drivers\drmkaud.sys
21:43:24.0491 5180  drmkaud - ok
21:43:24.0551 5180  [ E2B2853A0210D6EDAB2261870BD80C1A ] DsiWMIService  C:\Program Files (x86)\Launch Manager\dsiwmis.exe
21:43:24.0581 5180  DsiWMIService - ok
21:43:24.0641 5180  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl        C:\Windows\System32\drivers\dxgkrnl.sys
21:43:24.0691 5180  DXGKrnl - ok
21:43:24.0721 5180  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost        C:\Windows\System32\eapsvc.dll
21:43:24.0771 5180  EapHost - ok
21:43:24.0851 5180  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv          C:\Windows\system32\DRIVERS\evbda.sys
21:43:24.0991 5180  ebdrv - ok
21:43:25.0041 5180  [ C118A82CD78818C29AB228366EBF81C3 ] EFS            C:\Windows\System32\lsass.exe
21:43:25.0071 5180  EFS - ok
21:43:25.0151 5180  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr        C:\Windows\ehome\ehRecvr.exe
21:43:25.0241 5180  ehRecvr - ok
21:43:25.0281 5180  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched        C:\Windows\ehome\ehsched.exe
21:43:25.0341 5180  ehSched - ok
21:43:25.0391 5180  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor        C:\Windows\system32\DRIVERS\elxstor.sys
21:43:25.0431 5180  elxstor - ok
21:43:25.0551 5180  [ 09DDC2D4724A4FF844F738B60E63D872 ] ePowerSvc      C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
21:43:25.0581 5180  ePowerSvc - ok
21:43:25.0591 5180  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:43:25.0611 5180  ErrDev - ok
21:43:25.0661 5180  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem    C:\Windows\system32\es.dll
21:43:25.0721 5180  EventSystem - ok
21:43:25.0751 5180  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat          C:\Windows\system32\drivers\exfat.sys
21:43:25.0791 5180  exfat - ok
21:43:25.0811 5180  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat        C:\Windows\system32\drivers\fastfat.sys
21:43:25.0871 5180  fastfat - ok
21:43:25.0931 5180  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax            C:\Windows\system32\fxssvc.exe
21:43:26.0021 5180  Fax - ok
21:43:26.0051 5180  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc            C:\Windows\system32\DRIVERS\fdc.sys
21:43:26.0071 5180  fdc - ok
21:43:26.0111 5180  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost        C:\Windows\system32\fdPHost.dll
21:43:26.0211 5180  fdPHost - ok
21:43:26.0231 5180  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:43:26.0271 5180  FDResPub - ok
21:43:26.0281 5180  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:43:26.0291 5180  FileInfo - ok
21:43:26.0321 5180  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace      C:\Windows\system32\drivers\filetrace.sys
21:43:26.0361 5180  Filetrace - ok
21:43:26.0381 5180  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:43:26.0391 5180  flpydisk - ok
21:43:26.0421 5180  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:43:26.0441 5180  FltMgr - ok
21:43:26.0471 5180  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache      C:\Windows\system32\FntCache.dll
21:43:26.0541 5180  FontCache - ok
21:43:26.0631 5180  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:43:26.0651 5180  FontCache3.0.0.0 - ok
21:43:26.0691 5180  [ D43703496149971890703B4B1B723EAC ] FsDepends      C:\Windows\system32\drivers\FsDepends.sys
21:43:26.0711 5180  FsDepends - ok
21:43:26.0771 5180  [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr        C:\Windows\system32\DRIVERS\fssfltr.sys
21:43:26.0781 5180  fssfltr - ok
21:43:26.0891 5180  [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
21:43:26.0931 5180  fsssvc - ok
21:43:26.0981 5180  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:43:26.0991 5180  Fs_Rec - ok
21:43:27.0041 5180  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:43:27.0061 5180  fvevol - ok
21:43:27.0101 5180  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
21:43:27.0111 5180  gagp30kx - ok
21:43:27.0181 5180  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc          C:\Windows\System32\gpsvc.dll
21:43:27.0261 5180  gpsvc - ok
21:43:27.0331 5180  [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService    C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
21:43:27.0341 5180  GREGService - ok
21:43:27.0421 5180  [ F02A533F517EB38333CB12A9E8963773 ] gupdate        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:43:27.0441 5180  gupdate - ok
21:43:27.0481 5180  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:43:27.0501 5180  gupdatem - ok
21:43:27.0521 5180  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
21:43:27.0591 5180  hcw85cir - ok
21:43:27.0641 5180  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:43:27.0691 5180  HdAudAddService - ok
21:43:27.0731 5180  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
21:43:27.0761 5180  HDAudBus - ok
21:43:27.0801 5180  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64        C:\Windows\system32\DRIVERS\HECIx64.sys
21:43:27.0821 5180  HECIx64 - ok
21:43:27.0841 5180  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt        C:\Windows\system32\DRIVERS\HidBatt.sys
21:43:27.0881 5180  HidBatt - ok
21:43:27.0881 5180  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
21:43:27.0931 5180  HidBth - ok
21:43:27.0941 5180  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr          C:\Windows\system32\DRIVERS\hidir.sys
21:43:27.0981 5180  HidIr - ok
21:43:28.0011 5180  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv        C:\Windows\system32\hidserv.dll
21:43:28.0091 5180  hidserv - ok
21:43:28.0151 5180  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:43:28.0181 5180  HidUsb - ok
21:43:28.0221 5180  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:43:28.0301 5180  hkmsvc - ok
21:43:28.0361 5180  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:43:28.0451 5180  HomeGroupListener - ok
21:43:28.0481 5180  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:43:28.0511 5180  HomeGroupProvider - ok
21:43:28.0551 5180  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:43:28.0571 5180  HpSAMD - ok
21:43:28.0601 5180  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:43:28.0671 5180  HTTP - ok
21:43:28.0701 5180  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:43:28.0711 5180  hwpolicy - ok
21:43:28.0751 5180  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
21:43:28.0781 5180  i8042prt - ok
21:43:28.0811 5180  [ ABBF174CB394F5C437410A788B7E404A ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
21:43:28.0851 5180  iaStor - ok
21:43:28.0891 5180  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV        C:\Windows\system32\drivers\iaStorV.sys
21:43:28.0911 5180  iaStorV - ok
21:43:28.0961 5180  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc          C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:43:28.0981 5180  idsvc - ok
21:43:29.0141 5180  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
21:43:29.0331 5180  igfx - ok
21:43:29.0351 5180  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp          C:\Windows\system32\DRIVERS\iirsp.sys
21:43:29.0361 5180  iirsp - ok
21:43:29.0401 5180  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
21:43:29.0461 5180  IKEEXT - ok
21:43:29.0551 5180  [ 53019327813FF5AB2964B33B2C61307C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:43:29.0681 5180  IntcAzAudAddService - ok
21:43:29.0701 5180  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
21:43:29.0711 5180  intelide - ok
21:43:29.0741 5180  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:43:29.0761 5180  intelppm - ok
21:43:29.0791 5180  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum      C:\Windows\system32\ipbusenum.dll
21:43:29.0861 5180  IPBusEnum - ok
21:43:29.0901 5180  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:43:29.0981 5180  IpFilterDriver - ok
21:43:30.0031 5180  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:43:30.0131 5180  iphlpsvc - ok
21:43:30.0161 5180  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV        C:\Windows\system32\drivers\IPMIDrv.sys
21:43:30.0211 5180  IPMIDRV - ok
21:43:30.0251 5180  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT          C:\Windows\system32\drivers\ipnat.sys
21:43:30.0311 5180  IPNAT - ok
21:43:30.0351 5180  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:43:30.0411 5180  IRENUM - ok
21:43:30.0441 5180  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:43:30.0451 5180  isapnp - ok
21:43:30.0501 5180  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
21:43:30.0531 5180  iScsiPrt - ok
21:43:30.0601 5180  [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
21:43:30.0621 5180  k57nd60a - ok
21:43:30.0671 5180  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:43:30.0691 5180  kbdclass - ok
21:43:30.0731 5180  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:43:30.0771 5180  kbdhid - ok
21:43:30.0791 5180  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
21:43:30.0811 5180  KeyIso - ok
21:43:30.0861 5180  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:43:30.0891 5180  KSecDD - ok
21:43:30.0961 5180  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg        C:\Windows\system32\Drivers\ksecpkg.sys
21:43:30.0991 5180  KSecPkg - ok
21:43:31.0011 5180  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk        C:\Windows\system32\drivers\ksthunk.sys
21:43:31.0091 5180  ksthunk - ok
21:43:31.0121 5180  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm          C:\Windows\system32\msdtckrm.dll
21:43:31.0201 5180  KtmRm - ok
21:43:31.0231 5180  [ 2AC603C3188C704CFCE353659AA7AD71 ] L1E            C:\Windows\system32\DRIVERS\L1E62x64.sys
21:43:31.0241 5180  L1E - ok
21:43:31.0301 5180  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:43:31.0381 5180  LanmanServer - ok
21:43:31.0411 5180  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:43:31.0461 5180  LanmanWorkstation - ok
21:43:31.0481 5180  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:43:31.0541 5180  lltdio - ok
21:43:31.0591 5180  [ C1185803384AB3FEED115F79F109427F ] lltdsvc        C:\Windows\System32\lltdsvc.dll
21:43:31.0661 5180  lltdsvc - ok
21:43:31.0691 5180  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts        C:\Windows\System32\lmhsvc.dll
21:43:31.0731 5180  lmhosts - ok
21:43:31.0801 5180  [ 23DE5B62B0445A6F874BE633C95B483E ] LMS            C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:43:31.0821 5180  LMS - ok
21:43:31.0861 5180  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
21:43:31.0871 5180  LSI_FC - ok
21:43:31.0881 5180  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS        C:\Windows\system32\DRIVERS\lsi_sas.sys
21:43:31.0901 5180  LSI_SAS - ok
21:43:31.0901 5180  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:43:31.0921 5180  LSI_SAS2 - ok
21:43:31.0921 5180  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:43:31.0941 5180  LSI_SCSI - ok
21:43:31.0961 5180  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv          C:\Windows\system32\drivers\luafv.sys
21:43:32.0021 5180  luafv - ok
21:43:32.0081 5180  [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector  C:\Windows\system32\drivers\mbam.sys
21:43:32.0101 5180  MBAMProtector - ok
21:43:32.0161 5180  [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:43:32.0181 5180  MBAMScheduler - ok
21:43:32.0201 5180  [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:43:32.0221 5180  MBAMService - ok
21:43:32.0301 5180  [ 22A7776C5D8EB5930EDF9C8DD0884259 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe
21:43:32.0331 5180  McComponentHostService - ok
21:43:32.0351 5180  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc        C:\Windows\system32\Mcx2Svc.dll
21:43:32.0371 5180  Mcx2Svc - ok
21:43:32.0401 5180  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas        C:\Windows\system32\DRIVERS\megasas.sys
21:43:32.0411 5180  megasas - ok
21:43:32.0421 5180  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
21:43:32.0441 5180  MegaSR - ok
21:43:32.0461 5180  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS          C:\Windows\system32\mmcss.dll
21:43:32.0521 5180  MMCSS - ok
21:43:32.0541 5180  [ 800BA92F7010378B09F9ED9270F07137 ] Modem          C:\Windows\system32\drivers\modem.sys
21:43:32.0631 5180  Modem - ok
21:43:32.0651 5180  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor        C:\Windows\system32\DRIVERS\monitor.sys
21:43:32.0691 5180  monitor - ok
21:43:32.0731 5180  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:43:32.0751 5180  mouclass - ok
21:43:32.0781 5180  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:43:32.0821 5180  mouhid - ok
21:43:32.0851 5180  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:43:32.0871 5180  mountmgr - ok
21:43:32.0961 5180  [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:43:32.0981 5180  MozillaMaintenance - ok
21:43:33.0011 5180  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:43:33.0051 5180  mpio - ok
21:43:33.0081 5180  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:43:33.0161 5180  mpsdrv - ok
21:43:33.0211 5180  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:43:33.0301 5180  MpsSvc - ok
21:43:33.0331 5180  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:43:33.0351 5180  MRxDAV - ok
21:43:33.0381 5180  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:43:33.0451 5180  mrxsmb - ok
21:43:33.0471 5180  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:43:33.0511 5180  mrxsmb10 - ok
21:43:33.0531 5180  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:43:33.0551 5180  mrxsmb20 - ok
21:43:33.0591 5180  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:43:33.0611 5180  msahci - ok
21:43:33.0631 5180  [ DB801A638D011B9633829EB6F663C900 ] msdsm          C:\Windows\system32\drivers\msdsm.sys
21:43:33.0651 5180  msdsm - ok
21:43:33.0671 5180  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC          C:\Windows\System32\msdtc.exe
21:43:33.0691 5180  MSDTC - ok
21:43:33.0721 5180  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:43:33.0771 5180  Msfs - ok
21:43:33.0811 5180  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf      C:\Windows\System32\drivers\mshidkmdf.sys
21:43:33.0851 5180  mshidkmdf - ok
21:43:33.0891 5180  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:43:33.0911 5180  msisadrv - ok
21:43:33.0951 5180  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI        C:\Windows\system32\iscsiexe.dll
21:43:34.0011 5180  MSiSCSI - ok
21:43:34.0011 5180  msiserver - ok
21:43:34.0051 5180  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV        C:\Windows\system32\drivers\MSKSSRV.sys
21:43:34.0091 5180  MSKSSRV - ok
21:43:34.0111 5180  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:43:34.0151 5180  MSPCLOCK - ok
21:43:34.0161 5180  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM          C:\Windows\system32\drivers\MSPQM.sys
21:43:34.0201 5180  MSPQM - ok
21:43:34.0241 5180  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC          C:\Windows\system32\drivers\MsRPC.sys
21:43:34.0261 5180  MsRPC - ok
21:43:34.0301 5180  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
21:43:34.0311 5180  mssmbios - ok
21:43:34.0341 5180  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE          C:\Windows\system32\drivers\MSTEE.sys
21:43:34.0401 5180  MSTEE - ok
21:43:34.0401 5180  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
21:43:34.0421 5180  MTConfig - ok
21:43:34.0441 5180  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup            C:\Windows\system32\Drivers\mup.sys
21:43:34.0451 5180  Mup - ok
21:43:34.0471 5180  [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter    C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
21:43:34.0481 5180  mwlPSDFilter - ok
21:43:34.0511 5180  [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ    C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
21:43:34.0521 5180  mwlPSDNServ - ok
21:43:34.0541 5180  [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk    C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
21:43:34.0551 5180  mwlPSDVDisk - ok
21:43:34.0611 5180  [ 22A4905C958BEB68D78385B633C1351B ] MWLService      C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
21:43:34.0631 5180  MWLService - ok
21:43:34.0671 5180  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
21:43:34.0761 5180  napagent - ok
21:43:34.0801 5180  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP    C:\Windows\system32\DRIVERS\nwifi.sys
21:43:34.0821 5180  NativeWifiP - ok
21:43:34.0881 5180  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:43:34.0931 5180  NDIS - ok
21:43:34.0951 5180  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap        C:\Windows\system32\DRIVERS\ndiscap.sys
21:43:35.0011 5180  NdisCap - ok
21:43:35.0031 5180  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:43:35.0081 5180  NdisTapi - ok
21:43:35.0141 5180  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio        C:\Windows\system32\DRIVERS\ndisuio.sys
21:43:35.0201 5180  Ndisuio - ok
21:43:35.0241 5180  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan        C:\Windows\system32\DRIVERS\ndiswan.sys
21:43:35.0321 5180  NdisWan - ok
21:43:35.0351 5180  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy        C:\Windows\system32\drivers\NDProxy.sys
21:43:35.0411 5180  NDProxy - ok
21:43:35.0461 5180  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS        C:\Windows\system32\DRIVERS\netbios.sys
21:43:35.0521 5180  NetBIOS - ok
21:43:35.0571 5180  [ 09594D1089C523423B32A4229263F068 ] NetBT          C:\Windows\system32\DRIVERS\netbt.sys
21:43:35.0631 5180  NetBT - ok
21:43:35.0651 5180  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
21:43:35.0661 5180  Netlogon - ok
21:43:35.0701 5180  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
21:43:35.0761 5180  Netman - ok
21:43:35.0771 5180  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
21:43:35.0831 5180  netprofm - ok
21:43:35.0851 5180  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:43:35.0861 5180  NetTcpPortSharing - ok
21:43:35.0901 5180  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960        C:\Windows\system32\DRIVERS\nfrd960.sys
21:43:35.0911 5180  nfrd960 - ok
21:43:35.0961 5180  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:43:36.0041 5180  NlaSvc - ok
21:43:36.0061 5180  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:43:36.0101 5180  Npfs - ok
21:43:36.0131 5180  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi            C:\Windows\system32\nsisvc.dll
21:43:36.0201 5180  nsi - ok
21:43:36.0211 5180  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:43:36.0271 5180  nsiproxy - ok
21:43:36.0341 5180  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:43:36.0401 5180  Ntfs - ok
21:43:36.0471 5180  [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
21:43:36.0501 5180  NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - warning
21:43:36.0501 5180  NTI IScheduleSvc - detected UnsignedFile.Multi.Generic (1)
21:43:36.0571 5180  [ 15221DD637D9D0FFC60848EBBF1DF538 ] NTIBackupSvc    C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
21:43:36.0581 5180  NTIBackupSvc - ok
21:43:36.0611 5180  [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr        C:\Windows\system32\drivers\NTIDrvr.sys
21:43:36.0631 5180  NTIDrvr - ok
21:43:36.0661 5180  [ B5071E15D4C3F5EF5018AFF7E85A85E5 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
21:43:36.0741 5180  NTISchedulerSvc - ok
21:43:36.0781 5180  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
21:43:36.0841 5180  Null - ok
21:43:36.0881 5180  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:43:36.0891 5180  nvraid - ok
21:43:36.0921 5180  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:43:36.0941 5180  nvstor - ok
21:43:36.0991 5180  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:43:37.0021 5180  nv_agp - ok
21:43:37.0041 5180  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
21:43:37.0071 5180  ohci1394 - ok
21:43:37.0121 5180  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose            C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:43:37.0141 5180  ose - ok
21:43:37.0311 5180  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc        C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:43:37.0391 5180  osppsvc - ok
21:43:37.0431 5180  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:43:37.0481 5180  p2pimsvc - ok
21:43:37.0501 5180  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:43:37.0521 5180  p2psvc - ok
21:43:37.0551 5180  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport        C:\Windows\system32\DRIVERS\parport.sys
21:43:37.0571 5180  Parport - ok
21:43:37.0591 5180  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr        C:\Windows\system32\drivers\partmgr.sys
21:43:37.0601 5180  partmgr - ok
21:43:37.0621 5180  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:43:37.0661 5180  PcaSvc - ok
21:43:37.0671 5180  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci            C:\Windows\system32\drivers\pci.sys
21:43:37.0691 5180  pci - ok
21:43:37.0721 5180  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
21:43:37.0731 5180  pciide - ok
21:43:37.0751 5180  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
21:43:37.0771 5180  pcmcia - ok
21:43:37.0781 5180  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw            C:\Windows\system32\drivers\pcw.sys
21:43:37.0791 5180  pcw - ok
21:43:37.0821 5180  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:43:37.0891 5180  PEAUTH - ok
21:43:37.0991 5180  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:43:38.0031 5180  PerfHost - ok
21:43:38.0111 5180  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla            C:\Windows\system32\pla.dll
21:43:38.0221 5180  pla - ok
21:43:38.0271 5180  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:43:38.0321 5180  PlugPlay - ok
21:43:38.0331 5180  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg    C:\Windows\system32\pnrpauto.dll
21:43:38.0371 5180  PNRPAutoReg - ok
21:43:38.0391 5180  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc        C:\Windows\system32\pnrpsvc.dll
21:43:38.0411 5180  PNRPsvc - ok
21:43:38.0451 5180  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent    C:\Windows\System32\ipsecsvc.dll
21:43:38.0511 5180  PolicyAgent - ok
21:43:38.0541 5180  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power          C:\Windows\system32\umpo.dll
21:43:38.0591 5180  Power - ok
21:43:38.0631 5180  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:43:38.0691 5180  PptpMiniport - ok
21:43:38.0711 5180  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor      C:\Windows\system32\DRIVERS\processr.sys
21:43:38.0741 5180  Processor - ok
21:43:38.0771 5180  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc        C:\Windows\system32\profsvc.dll
21:43:38.0841 5180  ProfSvc - ok
21:43:38.0861 5180  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:43:38.0881 5180  ProtectedStorage - ok
21:43:38.0931 5180  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:43:39.0001 5180  Psched - ok
21:43:39.0061 5180  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
21:43:39.0131 5180  ql2300 - ok
21:43:39.0141 5180  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
21:43:39.0161 5180  ql40xx - ok
21:43:39.0181 5180  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE          C:\Windows\system32\qwave.dll
21:43:39.0221 5180  QWAVE - ok
21:43:39.0231 5180  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:43:39.0291 5180  QWAVEdrv - ok
21:43:39.0321 5180  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:43:39.0401 5180  RasAcd - ok
21:43:39.0441 5180  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn    C:\Windows\system32\DRIVERS\AgileVpn.sys
21:43:39.0511 5180  RasAgileVpn - ok
21:43:39.0531 5180  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto        C:\Windows\System32\rasauto.dll
21:43:39.0591 5180  RasAuto - ok
21:43:39.0641 5180  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp        C:\Windows\system32\DRIVERS\rasl2tp.sys
21:43:39.0691 5180  Rasl2tp - ok
21:43:39.0731 5180  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
21:43:39.0821 5180  RasMan - ok
21:43:39.0851 5180  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:43:39.0891 5180  RasPppoe - ok
21:43:39.0911 5180  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp        C:\Windows\system32\DRIVERS\rassstp.sys
21:43:39.0951 5180  RasSstp - ok
21:43:39.0991 5180  [ 77F665941019A1594D887A74F301FA2F ] rdbss          C:\Windows\system32\DRIVERS\rdbss.sys
21:43:40.0041 5180  rdbss - ok
21:43:40.0061 5180  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
21:43:40.0091 5180  rdpbus - ok
21:43:40.0111 5180  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:43:40.0151 5180  RDPCDD - ok
21:43:40.0191 5180  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:43:40.0231 5180  RDPENCDD - ok
21:43:40.0241 5180  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
21:43:40.0281 5180  RDPREFMP - ok
21:43:40.0321 5180  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD          C:\Windows\system32\drivers\RDPWD.sys
21:43:40.0401 5180  RDPWD - ok
21:43:40.0431 5180  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:43:40.0461 5180  rdyboost - ok
21:43:40.0491 5180  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:43:40.0591 5180  RemoteAccess - ok
21:43:40.0621 5180  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:43:40.0671 5180  RemoteRegistry - ok
21:43:40.0691 5180  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:43:40.0751 5180  RpcEptMapper - ok
21:43:40.0791 5180  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
21:43:40.0841 5180  RpcLocator - ok
21:43:40.0891 5180  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs          C:\Windows\system32\rpcss.dll
21:43:40.0951 5180  RpcSs - ok
21:43:41.0001 5180  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:43:41.0081 5180  rspndr - ok
21:43:41.0101 5180  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs          C:\Windows\system32\lsass.exe
21:43:41.0121 5180  SamSs - ok
21:43:41.0151 5180  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:43:41.0161 5180  sbp2port - ok
21:43:41.0201 5180  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:43:41.0241 5180  SCardSvr - ok
21:43:41.0281 5180  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:43:41.0321 5180  scfilter - ok
21:43:41.0381 5180  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
21:43:41.0491 5180  Schedule - ok
21:43:41.0531 5180  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc    C:\Windows\System32\certprop.dll
21:43:41.0571 5180  SCPolicySvc - ok
21:43:41.0611 5180  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:43:41.0661 5180  SDRSVC - ok
21:43:41.0681 5180  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:43:41.0781 5180  secdrv - ok
21:43:41.0821 5180  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
21:43:41.0911 5180  seclogon - ok
21:43:41.0951 5180  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
21:43:42.0011 5180  SENS - ok
21:43:42.0031 5180  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:43:42.0081 5180  SensrSvc - ok
21:43:42.0111 5180  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum        C:\Windows\system32\DRIVERS\serenum.sys
21:43:42.0131 5180  Serenum - ok
21:43:42.0151 5180  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
21:43:42.0191 5180  Serial - ok
21:43:42.0261 5180  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
21:43:42.0281 5180  sermouse - ok
21:43:42.0321 5180  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:43:42.0381 5180  SessionEnv - ok
21:43:42.0411 5180  [ A554811BCD09279536440C964AE35BBF ] sffdisk        C:\Windows\system32\drivers\sffdisk.sys
21:43:42.0431 5180  sffdisk - ok
21:43:42.0451 5180  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:43:42.0461 5180  sffp_mmc - ok
21:43:42.0481 5180  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd        C:\Windows\system32\drivers\sffp_sd.sys
21:43:42.0521 5180  sffp_sd - ok
21:43:42.0541 5180  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy        C:\Windows\system32\DRIVERS\sfloppy.sys
21:43:42.0581 5180  sfloppy - ok
21:43:42.0641 5180  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs          C:\Windows\system32\DRIVERS\Sftfslh.sys
21:43:42.0661 5180  Sftfs - ok
21:43:42.0731 5180  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist        C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:43:42.0771 5180  sftlist - ok
21:43:42.0781 5180  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay        C:\Windows\system32\DRIVERS\Sftplaylh.sys
21:43:42.0801 5180  Sftplay - ok
21:43:42.0811 5180  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
21:43:42.0821 5180  Sftredir - ok
21:43:42.0831 5180  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
21:43:42.0841 5180  Sftvol - ok
21:43:42.0861 5180  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:43:42.0871 5180  sftvsa - ok
21:43:42.0911 5180  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:43:42.0971 5180  SharedAccess - ok
21:43:43.0021 5180  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:43:43.0091 5180  ShellHWDetection - ok
21:43:43.0121 5180  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:43:43.0141 5180  SiSRaid2 - ok
21:43:43.0151 5180  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
21:43:43.0171 5180  SiSRaid4 - ok
21:43:43.0181 5180  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb            C:\Windows\system32\DRIVERS\smb.sys
21:43:43.0221 5180  Smb - ok
21:43:43.0271 5180  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:43:43.0281 5180  SNMPTRAP - ok
21:43:43.0311 5180  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr          C:\Windows\system32\drivers\spldr.sys
21:43:43.0321 5180  spldr - ok
21:43:43.0361 5180  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler        C:\Windows\System32\spoolsv.exe
21:43:43.0411 5180  Spooler - ok
21:43:43.0521 5180  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
21:43:43.0671 5180  sppsvc - ok
21:43:43.0691 5180  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify    C:\Windows\system32\sppuinotify.dll
21:43:43.0751 5180  sppuinotify - ok
21:43:43.0781 5180  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv            C:\Windows\system32\DRIVERS\srv.sys
21:43:43.0821 5180  srv - ok
21:43:43.0851 5180  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:43:43.0871 5180  srv2 - ok
21:43:43.0891 5180  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:43:43.0921 5180  srvnet - ok
21:43:43.0961 5180  [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus        C:\Windows\system32\DRIVERS\ssadbus.sys
21:43:44.0011 5180  ssadbus - ok
21:43:44.0041 5180  [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl        C:\Windows\system32\DRIVERS\ssadmdfl.sys
21:43:44.0131 5180  ssadmdfl - ok
21:43:44.0151 5180  [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm        C:\Windows\system32\DRIVERS\ssadmdm.sys
21:43:44.0171 5180  ssadmdm - ok
21:43:44.0231 5180  [ ED161B91FDF7EAA39469D72D463D5F4E ] sscdbus        C:\Windows\system32\DRIVERS\sscdbus.sys
21:43:44.0251 5180  sscdbus - ok
21:43:44.0271 5180  [ 4CB09E77593DBD8D7AF33B37375CA715 ] sscdmdfl        C:\Windows\system32\DRIVERS\sscdmdfl.sys
21:43:44.0281 5180  sscdmdfl - ok
21:43:44.0301 5180  [ C7B4CF53497A6E5363F3439427663882 ] sscdmdm        C:\Windows\system32\DRIVERS\sscdmdm.sys
21:43:44.0321 5180  sscdmdm - ok
21:43:44.0361 5180  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV        C:\Windows\System32\ssdpsrv.dll
21:43:44.0431 5180  SSDPSRV - ok
21:43:44.0441 5180  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc        C:\Windows\system32\sstpsvc.dll
21:43:44.0481 5180  SstpSvc - ok
21:43:44.0511 5180  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
21:43:44.0521 5180  stexstor - ok
21:43:44.0561 5180  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
21:43:44.0581 5180  stisvc - ok
21:43:44.0611 5180  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
21:43:44.0631 5180  swenum - ok
21:43:44.0661 5180  [ E08E46FDD841B7184194011CA1955A0B ] swprv          C:\Windows\System32\swprv.dll
21:43:44.0721 5180  swprv - ok
21:43:44.0811 5180  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain        C:\Windows\system32\sysmain.dll
21:43:44.0901 5180  SysMain - ok
21:43:44.0931 5180  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:43:44.0961 5180  TabletInputService - ok
21:43:44.0991 5180  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv        C:\Windows\System32\tapisrv.dll
21:43:45.0041 5180  TapiSrv - ok
21:43:45.0061 5180  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS            C:\Windows\System32\tbssvc.dll
21:43:45.0161 5180  TBS - ok
21:43:45.0231 5180  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip          C:\Windows\system32\drivers\tcpip.sys
21:43:45.0311 5180  Tcpip - ok
21:43:45.0361 5180  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:43:45.0401 5180  TCPIP6 - ok
21:43:45.0471 5180  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:43:45.0601 5180  tcpipreg - ok
21:43:45.0661 5180  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:43:45.0701 5180  TDPIPE - ok
21:43:45.0741 5180  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP          C:\Windows\system32\drivers\tdtcp.sys
21:43:45.0791 5180  TDTCP - ok
21:43:45.0851 5180  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx            C:\Windows\system32\DRIVERS\tdx.sys
21:43:45.0911 5180  tdx - ok
21:43:45.0981 5180  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
21:43:46.0011 5180  TermDD - ok
21:43:46.0051 5180  [ 2E648163254233755035B46DD7B89123 ] TermService    C:\Windows\System32\termsrv.dll
21:43:46.0121 5180  TermService - ok
21:43:46.0161 5180  [ CE4B6956E4E12492715A53076E58761F ] TFsExDisk      C:\Windows\System32\Drivers\TFsExDisk.sys
21:43:46.0181 5180  TFsExDisk - ok
21:43:46.0211 5180  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
21:43:46.0241 5180  Themes - ok
21:43:46.0271 5180  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER    C:\Windows\system32\mmcss.dll
21:43:46.0321 5180  THREADORDER - ok
21:43:46.0331 5180  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
21:43:46.0391 5180  TrkWks - ok
21:43:46.0451 5180  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:43:46.0521 5180  TrustedInstaller - ok
21:43:46.0551 5180  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:43:46.0591 5180  tssecsrv - ok
21:43:46.0641 5180  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:43:46.0691 5180  TsUsbFlt - ok
21:43:46.0751 5180  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:43:46.0801 5180  tunnel - ok
21:43:46.0831 5180  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
21:43:46.0841 5180  uagp35 - ok
21:43:46.0891 5180  [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
21:43:46.0901 5180  UBHelper - ok
21:43:46.0941 5180  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:43:47.0021 5180  udfs - ok
21:43:47.0061 5180  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect      C:\Windows\system32\UI0Detect.exe
21:43:47.0081 5180  UI0Detect - ok
21:43:47.0111 5180  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:43:47.0121 5180  uliagpkx - ok
21:43:47.0181 5180  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus          C:\Windows\system32\drivers\umbus.sys
21:43:47.0221 5180  umbus - ok
21:43:47.0241 5180  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
21:43:47.0281 5180  UmPass - ok
21:43:47.0411 5180  [ CC3775100ABA633984F73DFAE1F55CAE ] UNS            C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
21:43:47.0481 5180  UNS - ok
21:43:47.0561 5180  [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
21:43:47.0581 5180  Updater Service - ok
21:43:47.0611 5180  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
21:43:47.0661 5180  upnphost - ok
21:43:47.0711 5180  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp        C:\Windows\system32\DRIVERS\usbccgp.sys
21:43:47.0741 5180  usbccgp - ok
21:43:47.0771 5180  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:43:47.0791 5180  usbcir - ok
21:43:47.0801 5180  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci        C:\Windows\system32\drivers\usbehci.sys
21:43:47.0841 5180  usbehci - ok
21:43:47.0871 5180  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:43:47.0901 5180  usbhub - ok
21:43:47.0931 5180  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci        C:\Windows\system32\drivers\usbohci.sys
21:43:47.0951 5180  usbohci - ok
21:43:47.0971 5180  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:43:48.0011 5180  usbprint - ok
21:43:48.0041 5180  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan        C:\Windows\system32\DRIVERS\usbscan.sys
21:43:48.0081 5180  usbscan - ok
21:43:48.0101 5180  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR        C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:43:48.0151 5180  USBSTOR - ok
21:43:48.0201 5180  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci        C:\Windows\system32\drivers\usbuhci.sys
21:43:48.0241 5180  usbuhci - ok
21:43:48.0281 5180  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
21:43:48.0341 5180  usbvideo - ok
21:43:48.0371 5180  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms          C:\Windows\System32\uxsms.dll
21:43:48.0421 5180  UxSms - ok
21:43:48.0441 5180  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
21:43:48.0451 5180  VaultSvc - ok
21:43:48.0481 5180  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:43:48.0501 5180  vdrvroot - ok
21:43:48.0531 5180  [ 8D6B481601D01A456E75C3210F1830BE ] vds            C:\Windows\System32\vds.exe
21:43:48.0611 5180  vds - ok
21:43:48.0641 5180  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga            C:\Windows\system32\DRIVERS\vgapnp.sys
21:43:48.0661 5180  vga - ok
21:43:48.0701 5180  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave        C:\Windows\System32\drivers\vga.sys
21:43:48.0771 5180  VgaSave - ok
21:43:48.0801 5180  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp          C:\Windows\system32\drivers\vhdmp.sys
21:43:48.0811 5180  vhdmp - ok
21:43:48.0851 5180  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:43:48.0861 5180  viaide - ok
21:43:48.0871 5180  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:43:48.0891 5180  volmgr - ok
21:43:48.0921 5180  [ A255814907C89BE58B79EF2F189B843B ] volmgrx        C:\Windows\system32\drivers\volmgrx.sys
21:43:48.0941 5180  volmgrx - ok
21:43:48.0981 5180  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap        C:\Windows\system32\drivers\volsnap.sys
21:43:49.0011 5180  volsnap - ok
21:43:49.0051 5180  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid        C:\Windows\system32\DRIVERS\vsmraid.sys
21:43:49.0071 5180  vsmraid - ok
21:43:49.0131 5180  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS            C:\Windows\system32\vssvc.exe
21:43:49.0231 5180  VSS - ok
21:43:49.0261 5180  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
21:43:49.0291 5180  vwifibus - ok
21:43:49.0311 5180  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
21:43:49.0321 5180  vwififlt - ok
21:43:49.0361 5180  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp        C:\Windows\system32\DRIVERS\vwifimp.sys
21:43:49.0371 5180  vwifimp - ok
21:43:49.0401 5180  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time        C:\Windows\system32\w32time.dll
21:43:49.0451 5180  W32Time - ok
21:43:49.0481 5180  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
21:43:49.0501 5180  WacomPen - ok
21:43:49.0541 5180  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
21:43:49.0621 5180  WANARP - ok
21:43:49.0631 5180  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:43:49.0671 5180  Wanarpv6 - ok
21:43:49.0741 5180  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc    C:\Windows\system32\Wat\WatAdminSvc.exe
21:43:49.0821 5180  WatAdminSvc - ok
21:43:49.0891 5180  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
21:43:49.0981 5180  wbengine - ok
21:43:50.0011 5180  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:43:50.0031 5180  WbioSrvc - ok
21:43:50.0081 5180  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc        C:\Windows\System32\wcncsvc.dll
21:43:50.0121 5180  wcncsvc - ok
21:43:50.0151 5180  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:43:50.0201 5180  WcsPlugInService - ok
21:43:50.0221 5180  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
21:43:50.0241 5180  Wd - ok
21:43:50.0261 5180  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:43:50.0291 5180  Wdf01000 - ok
21:43:50.0301 5180  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:43:50.0421 5180  WdiServiceHost - ok
21:43:50.0431 5180  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost  C:\Windows\system32\wdi.dll
21:43:50.0451 5180  WdiSystemHost - ok
21:43:50.0481 5180  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient      C:\Windows\System32\webclnt.dll
21:43:50.0521 5180  WebClient - ok
21:43:50.0571 5180  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:43:50.0671 5180  Wecsvc - ok
21:43:50.0691 5180  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport  C:\Windows\System32\wercplsupport.dll
21:43:50.0741 5180  wercplsupport - ok
21:43:50.0761 5180  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:43:50.0801 5180  WerSvc - ok
21:43:50.0841 5180  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
21:43:50.0911 5180  WfpLwf - ok
21:43:50.0921 5180  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:43:50.0931 5180  WIMMount - ok
21:43:50.0961 5180  WinDefend - ok
21:43:50.0971 5180  WinHttpAutoProxySvc - ok
21:43:51.0031 5180  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt        C:\Windows\system32\wbem\WMIsvc.dll
21:43:51.0091 5180  Winmgmt - ok
21:43:51.0171 5180  [ BCB1310604AA415C4508708975B3931E ] WinRM          C:\Windows\system32\WsmSvc.dll
21:43:51.0301 5180  WinRM - ok
21:43:51.0361 5180  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
21:43:51.0401 5180  WinUsb - ok
21:43:51.0451 5180  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc        C:\Windows\System32\wlansvc.dll
21:43:51.0501 5180  Wlansvc - ok
21:43:51.0561 5180  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:43:51.0581 5180  wlcrasvc - ok
21:43:51.0681 5180  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc        C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:43:51.0781 5180  wlidsvc - ok
21:43:51.0841 5180  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi        C:\Windows\system32\drivers\wmiacpi.sys
21:43:51.0881 5180  WmiAcpi - ok
21:43:51.0921 5180  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:43:51.0961 5180  wmiApSrv - ok
21:43:51.0991 5180  WMPNetworkSvc - ok
21:43:52.0011 5180  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:43:52.0061 5180  WPCSvc - ok
21:43:52.0091 5180  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:43:52.0111 5180  WPDBusEnum - ok
21:43:52.0141 5180  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl        C:\Windows\system32\drivers\ws2ifsl.sys
21:43:52.0191 5180  ws2ifsl - ok
21:43:52.0211 5180  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
21:43:52.0241 5180  wscsvc - ok
21:43:52.0241 5180  WSearch - ok
21:43:52.0331 5180  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:43:52.0451 5180  wuauserv - ok
21:43:52.0491 5180  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:43:52.0551 5180  WudfPf - ok
21:43:52.0581 5180  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:43:52.0621 5180  WUDFRd - ok
21:43:52.0651 5180  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc        C:\Windows\System32\WUDFSvc.dll
21:43:52.0691 5180  wudfsvc - ok
21:43:52.0721 5180  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc        C:\Windows\System32\wwansvc.dll
21:43:52.0761 5180  WwanSvc - ok
21:43:52.0821 5180  [ 74983ADDCA2D9618512C088D856D6615 ] {B154377D-700F-42cc-9474-23858FBDF4BD} c:\Program Files (x86)\CyberLink\PowerDVD9\000.fcl
21:43:52.0841 5180  {B154377D-700F-42cc-9474-23858FBDF4BD} - ok
21:43:52.0851 5180  ================ Scan global ===============================
21:43:52.0891 5180  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:43:52.0931 5180  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
21:43:52.0941 5180  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
21:43:52.0971 5180  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:43:53.0001 5180  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:43:53.0001 5180  [Global] - ok
21:43:53.0001 5180  ================ Scan MBR ==================================
21:43:53.0011 5180  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
21:43:53.0451 5180  \Device\Harddisk0\DR0 - ok
21:43:53.0451 5180  ================ Scan VBR ==================================
21:43:53.0451 5180  [ E0D1592022DB3BAEE3D084B60C994096 ] \Device\Harddisk0\DR0\Partition1
21:43:53.0451 5180  \Device\Harddisk0\DR0\Partition1 - ok
21:43:53.0481 5180  [ 262A92B55AA1EF18A773040C6A7E3A79 ] \Device\Harddisk0\DR0\Partition2
21:43:53.0481 5180  \Device\Harddisk0\DR0\Partition2 - ok
21:43:53.0481 5180  ============================================================
21:43:53.0481 5180  Scan finished
21:43:53.0481 5180  ============================================================
21:43:53.0501 5172  Detected object count: 1
21:43:53.0501 5172  Actual detected object count: 1
21:45:07.0683 5172  NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:45:07.0683 5172  NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip

cosinus 15.10.2012 10:57
Ist unauffällig. Rechner soweit wieder ok?

Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SASW und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!

choupette198 15.10.2012 17:59
Code:
SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 10/15/2012 at 06:48 PM

Application Version : 5.6.1010

Core Rules Database Version : 9404
Trace Rules Database Version: 7216

Scan type      : Complete Scan
Total Scan Time : 01:33:47

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Administrator

Memory items scanned      : 632
Memory threats detected  : 0
Registry items scanned    : 71850
Registry threats detected : 0
File items scanned        : 145720
File threats detected    : 510

Adware.Tracking Cookie
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\UR6QF2QE.txt [ /atdmt.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\UO08GF8X.txt [ /adform.net ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\AK6HZN7C.txt [ /apmebf.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\G0AFY7M5.txt [ /doubleclick.net ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\Q36321GC.txt [ /imrworldwide.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\77146A9R.txt [ /mediaplex.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\WJ4QZNU5.txt [ /dyntracker.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\R1I4O6TS.txt [ /fastclick.net ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\9TV0A2HW.txt [ /adfarm1.adition.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\QID7N29K.txt [ /track.adform.net ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\DJE9R41S.txt [ /ads.creative-serving.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\T0MY8YCG.txt [ /zanox-affiliate.de ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\T4K7J5PL.txt [ /tracking.quisma.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\W4VDUPI0.txt [ /zanox.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\RQ3B1KPD.txt [ /zanox.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\1IV0G1HS.txt [ /ad.zanox.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\D848N9RG.txt [ /serving-sys.com ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\VU0XA8LN.txt [ /www.zanox-affiliate.de ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\2XJYDZIS.txt [ /microsoftwllivemkt.112.2o7.net ]
        C:\Users\alex-sabrina\AppData\Roaming\Microsoft\Windows\Cookies\YUN538Z1.txt [ /ad.dyntracker.de ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\79CX1OZ1.txt [ Cookie:alex-sabrina@clkads.com/adServe/banners/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\1I2MASY8.txt [ Cookie:alex-sabrina@clkads.com/adServe/banners ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\alex-sabrina@apmebf[2].txt [ Cookie:alex-sabrina@apmebf.com/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\P4J0EAM2.txt [ Cookie:alex-sabrina@imrworldwide.com/cgi-bin ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\GS0LQSK9.txt [ Cookie:alex-sabrina@mediaplex.com/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\33UK5IE4.txt [ Cookie:alex-sabrina@www.etracker.de/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\019W4W2U.txt [ Cookie:alex-sabrina@invitemedia.com/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\MXK4D2I3.txt [ Cookie:alex-sabrina@advertising.com/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\YX2G1QWP.txt [ Cookie:alex-sabrina@adtech.de/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\2KAW6AK3.txt [ Cookie:alex-sabrina@tradedoubler.com/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\1UCPWC5S.txt [ Cookie:alex-sabrina@zanox-affiliate.de/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\XTUQZFZO.txt [ Cookie:alex-sabrina@traffictrack.de/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\JE3BYB4Z.txt [ Cookie:alex-sabrina@tracking.quisma.com/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\XJSJGDZS.txt [ Cookie:alex-sabrina@zanox.com/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\4LJ93LLM.txt [ Cookie:alex-sabrina@ad4.adfarm1.adition.com/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\alex-sabrina@clkads[4].txt [ Cookie:alex-sabrina@clkads.com/adServe/static/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\alex-sabrina@microsoftwllivemkt.112.2o7[1].txt [ Cookie:alex-sabrina@microsoftwllivemkt.112.2o7.net/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\B7LT1P7R.txt [ Cookie:alex-sabrina@www.zanox-affiliate.de/ ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\alex-sabrina@clkads[3].txt [ Cookie:alex-sabrina@clkads.com/adServe/banners ]
        C:\USERS\ALEX-SABRINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\JR5AUWEV.txt [ Cookie:alex-sabrina@webmasterplan.com/ ]
        C:\USERS\ALEX-SABRINA\Cookies\UO08GF8X.txt [ Cookie:alex-sabrina@adform.net/ ]
        C:\USERS\ALEX-SABRINA\Cookies\AK6HZN7C.txt [ Cookie:alex-sabrina@apmebf.com/ ]
        C:\USERS\ALEX-SABRINA\Cookies\Q36321GC.txt [ Cookie:alex-sabrina@imrworldwide.com/cgi-bin ]
        C:\USERS\ALEX-SABRINA\Cookies\77146A9R.txt [ Cookie:alex-sabrina@mediaplex.com/ ]
        C:\USERS\ALEX-SABRINA\Cookies\WJ4QZNU5.txt [ Cookie:alex-sabrina@dyntracker.com/ ]
        C:\USERS\ALEX-SABRINA\Cookies\R1I4O6TS.txt [ Cookie:alex-sabrina@fastclick.net/ ]
        C:\USERS\ALEX-SABRINA\Cookies\QID7N29K.txt [ Cookie:alex-sabrina@track.adform.net/ ]
        C:\USERS\ALEX-SABRINA\Cookies\T0MY8YCG.txt [ Cookie:alex-sabrina@zanox-affiliate.de/ ]
        C:\USERS\ALEX-SABRINA\Cookies\T4K7J5PL.txt [ Cookie:alex-sabrina@tracking.quisma.com/ ]
        C:\USERS\ALEX-SABRINA\Cookies\W4VDUPI0.txt [ Cookie:alex-sabrina@zanox.com/ ]
        C:\USERS\ALEX-SABRINA\Cookies\VU0XA8LN.txt [ Cookie:alex-sabrina@www.zanox-affiliate.de/ ]
        C:\USERS\ALEX-SABRINA\Cookies\2XJYDZIS.txt [ Cookie:alex-sabrina@microsoftwllivemkt.112.2o7.net/ ]
        C:\USERS\ALEX-SABRINA\Cookies\79CX1OZ1.txt [ Cookie:alex-sabrina@clkads.com/adServe/banners/ ]
        C:\USERS\ALEX-SABRINA\Cookies\1I2MASY8.txt [ Cookie:alex-sabrina@clkads.com/adServe/banners ]
        C:\USERS\ALEX-SABRINA\Cookies\YUN538Z1.txt [ Cookie:alex-sabrina@ad.dyntracker.de/ ]
        .atdmt.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ru4.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .apmebf.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .xiti.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .fastclick.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .deutschepostag.112.2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adbrite.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .liveperson.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .doubleclick.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .estat.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .a.revenuemax.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .amazon-adsystem.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .amazon-adsystem.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .dealtime.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ad.adnet.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .nextag.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .lfstmedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        track.zalando.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .traffictrack.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .h.atdmt.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .h.atdmt.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .h.atdmt.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .h.atdmt.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .nextag.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        adserv.chirurgie-portal.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .muenzdiscount.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .muenzdiscount.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .komtrack.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .komtrack.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        tracking.dc-storm.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .burstnet.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        adserver.gb5.motorpresse.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .112.2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjkyqhcjiao.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        wstat.wibiya.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .at.atwola.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        adx.chip.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        adx.chip.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.active-tracking.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.active-tracking.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.active-tracking.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        targeting.revenuemax.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .zanox-affiliate.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        live.counterstation.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .cmpmedica.112.2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .sexad.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        openx.sexsearch.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.socialsex.biz [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.socialsex.biz [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        wt.socialsex.biz [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .parispornmovies.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .parispornmovies.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        panzertraffic.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adxpansion.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        avatraffic.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .yadro.ru [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .fuck-videos.tv [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .fuck-videos.tv [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        fuck-videos.tv [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        fuck-videos.tv [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .syndication.traffichaus.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .syndication.traffichaus.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        xxxtubemonster.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .xxxtubemonster.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .xxxtubemonster.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        xxxtubemonster.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .hot-sex-tube.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .hot-sex-tube.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.hot-sex-tube.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .dextersporn.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .dextersporn.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .questionpro.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .questionpro.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .surveys.questionpro.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .surveys.questionpro.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .fastclick.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .liveperson.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjliaoc5olp.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .urbia.wwe-media.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .urbia.wwe-media.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .urbia.wwe-media.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .apmebf.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.traffective-tracking.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.traffective-tracking.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tracking.mindshare.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wdmyegcjoep.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .opodo.122.2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .unister-adservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .secmedia.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .secmedia.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjmiaiazoep.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        partners.webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        partners.webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjlyeidjoep.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .burstnet.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wakywkcjsap.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjmiundpgbq.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        zbox.zanox.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        server.adformdsp.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adformdsp.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adform.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wcmysgajmfp.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.sexhoundlinks.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.sexhoundlinks.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .sexhoundlinks.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .sexhoundlinks.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.sexhoundlinks.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .xxxpower.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .xxxpower.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ads20.wwe-media.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ads20.wwe-media.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ads20.wwe-media.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .urbia.wwe-media.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tribalfusion.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wgl4ogazego.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wgliald5ofo.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ad.mlnadvertising.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ads.mueller-mediaworks.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .bs.serving-sys.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .bs.serving-sys.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .conrad.122.2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adbrite.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .casalemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .casalemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .casalemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .casalemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wdmyqmajsgo.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .247realmedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        tracking.fahrrad.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .cunda.122.2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.adserver01.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        stat.dealtime.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        server.adform.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wfl4cncpgep.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        stats.kkh-allianz.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ru4.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .lfstmedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .lfstmedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .doubleclick.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.dyntracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .lfstmedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .quartermedia.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .clickply.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        adserver.directcorp.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        adserver.directcorp.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        adserver.directcorp.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .guj.122.2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6aelieldjgap.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .liveperson.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        statse.webtrendslive.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tracker.vinsight.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .bshg.122.2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        server.adform.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .yieldmanager.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.dyntracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .lfstmedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .lucidmedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        tomtailor.dyntracker.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6aelywidzifo.stats.esomniture.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.zanox-affiliate.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .zanox-affiliate.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        partners.webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www4.smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www4.smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ad.adnet.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .stats.paypal.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .paypal.112.2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .clickfuse.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.dyntracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .zanox.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .traffictrack.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adform.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adviva.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        media.gan-online.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .clickfuse.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        nl.sitestat.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        nl.sitestat.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .ad.adnet.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.zanox-affiliate.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .questionmarket.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .questionmarket.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .accounts.google.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .accounts.google.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .accounts.google.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad1.adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .doubleclick.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.adserver01.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad3.adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .loyaltypartner.122.2o7.net [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad2.adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        gsadserver.de [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        eas4.emediate.eu [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        eas4.emediate.eu [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ww251.smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        ad4.adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\ALEX-SABRINA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1S30BPPV.DEFAULT\COOKIES.SQLITE ]

Adware.Casino Games (Golden Palace Casino)
        C:\CASINO\CASINOCLUB\CASINO.EXE

PotentiallyUnwanted.SoftonicDownloader
        C:\USERS\ALEX-SABRINA\DOWNLOADS\SOFTONICDOWNLOADER_FUER_MP3-2-WAV-CONVERTER.EXE
Code:
Malwarebytes Anti-Malware (Test) 1.65.0.1400
www.malwarebytes.org

Datenbank Version: v2012.10.15.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
alex-sabrina :: ALEX-SABRINA-PC [Administrator]

Schutz: Aktiviert

15.10.2012 13:14:19
mbam-log-2012-10-15 (13-14-19).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|Q:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 339717
Laufzeit: 1 Stunde(n), 14 Minute(n), 37 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

Was mache ich dann mit den Sachen die in Quarantaine sind?

cosinus 15.10.2012 18:55
Zitat:
Was mache ich dann mit den Sachen die in Quarantaine sind?
Was habt ihr alle immer nur mit der Quarantäne? :wtf:
Überleg doch mal was eine Quarantäne ist. Ob da die schädliche Datei drinbleibt oder nicht, das hat keine Auswirkungen. Schädlinge in der Quarantäne können nichts mehr anrichten, sie sind dort isoliert. Du solltest grundsätzlich mit der Quarantäne arbeiten, denn falls der Virenscanner durch einen Fehlalarm was wichtiges löscht, kannst Du notfalls noch über die Quarantäne an die Datei ran.


Sieht ok aus, da wurden nur Cookies und Adware-Reste gefunden, die können alle weg.
Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie )


Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat.

Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/
Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird.

Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da.

Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?

choupette198 15.10.2012 21:11
ok ok mit der Quarantaine !! :pfeiff:

Ansonsten ist jetzt soweit alles Ok.

Vielen Dank noch mal !!

cosinus 16.10.2012 15:50
Dann wären wir durch! :abklatsch:

Die Programme, die hier zum Einsatz kamen, können alle wieder runter. Mit Hilfe von OTL kannst du auch viele Tools entfernen:

Starte bitte OTL und klicke auf Bereinigung.
Dies wird die meisten Tools entfernen, die wir zur Bereinigung benötigt haben. Sollte etwas bestehen bleiben, bitte mit Rechtsklick --> Löschen entfernen.


Malwarebytes zu behalten ist zu empfehlen. Kannst ja 1x im Monat damit einen Vollscan machen, aber immer vorher ans Update denken.


Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden.
Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern.


Microsoftupdate

Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren.

Windows Vista/7: Anleitung Windows-Update


PDF-Reader aktualisieren
Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast)

Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader.

Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers:
Prüfen => Adobe - Flash Player
Downloadlinks => Adobe Flash Player Distribution | Adobe

Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind.


Java-Update
Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.


Alle Zeitangaben in WEZ +1. Es ist jetzt 00:07 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131