Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Email von Deutscher Post- Fehlerhafte Lieferanschrift (https://www.trojaner-board.de/125584-email-deutscher-post-fehlerhafte-lieferanschrift.html)

cosinus 18.10.2012 14:28
Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!)


Code:
:OTL
FF - user.js - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
:Files
E:\Postetikett_Deutsche_Post_AG.zip
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]
[resethosts]
Klick dann oben links auf den Button Fix!
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet.

Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt.

Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!

Feenkleid 18.10.2012 15:21
Sooo...

Code:

All processes killed
========== OTL ==========
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
File C:\autoexec.bat not found.
========== FILES ==========
File\Folder E:\Postetikett_Deutsche_Post_AG.zip not found.
========== FILES ==========
< ipconfig /flushdns /c >
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
D:\cmd.bat deleted successfully.
D:\cmd.txt deleted successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: ******
->Temp folder emptied: 66224 bytes
->Temporary Internet Files folder emptied: 33300 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 6778823 bytes
->Flash cache emptied: 456 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 7,00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Error: Unable to interpret <---------> in the current context!
 
OTL by OldTimer - Version 3.2.69.0 log created on 10182012_161505

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Avira sagt jetzt sowas: Hostdatei blockiert...?

Vielen vielen Dank nochmal. Das is ja echt ein riesen Aufwand

cosinus 18.10.2012 15:55
Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.

Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

http://saved.im/mtg4nzy0ywy5/settings_2012-09-04.png

Feenkleid 23.10.2012 07:49
Oh, da hats wohl nich geklappt mit meiner Antwort...
Also hier nochmal die Logfile in zwei Teilen, weil der Text sonst zu lang is:

Code:

15:37:31.0032 1532  TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
15:37:31.0281 1532  ============================================================
15:37:31.0281 1532  Current date / time: 2012/10/19 15:37:31.0281
15:37:31.0281 1532  SystemInfo:
15:37:31.0281 1532 
15:37:31.0281 1532  OS Version: 6.1.7600 ServicePack: 0.0
15:37:31.0281 1532  Product type: Workstation
15:37:31.0281 1532  ComputerName: ******-PC
15:37:31.0281 1532  UserName: ******
15:37:31.0281 1532  Windows directory: C:\Windows
15:37:31.0281 1532  System windows directory: C:\Windows
15:37:31.0281 1532  Processor architecture: Intel x86
15:37:31.0281 1532  Number of processors: 4
15:37:31.0281 1532  Page size: 0x1000
15:37:31.0281 1532  Boot type: Normal boot
15:37:31.0281 1532  ============================================================
15:37:32.0405 1532  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:37:32.0420 1532  ============================================================
15:37:32.0420 1532  \Device\Harddisk0\DR0:
15:37:32.0420 1532  MBR partitions:
15:37:32.0420 1532  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1E4D000
15:37:32.0420 1532  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E61000, BlocksNum 0x61A8265
15:37:32.0436 1532  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x80092A4, BlocksNum 0x1384C3B
15:37:32.0436 1532  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x938DF1E, BlocksNum 0x1C09F7A3
15:37:32.0436 1532  ============================================================
15:37:32.0467 1532  C: <-> \Device\Harddisk0\DR0\Partition4
15:37:32.0483 1532  D: <-> \Device\Harddisk0\DR0\Partition3
15:37:32.0514 1532  E: <-> \Device\Harddisk0\DR0\Partition2
15:37:32.0514 1532  ============================================================
15:37:32.0514 1532  Initialize success
15:37:32.0514 1532  ============================================================
15:38:49.0767 0804  ============================================================
15:38:49.0767 0804  Scan started
15:38:49.0767 0804  Mode: Manual;
15:38:49.0767 0804  ============================================================
15:38:50.0516 0804  ================ Scan services =============================
15:38:50.0797 0804  [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
15:38:50.0797 0804  1394ohci - ok
15:38:50.0812 0804  [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
15:38:50.0812 0804  ACPI - ok
15:38:50.0812 0804  [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi        C:\Windows\system32\DRIVERS\acpipmi.sys
15:38:50.0812 0804  AcpiPmi - ok
15:38:50.0890 0804  [ AE954C42547605408CDDF03BB13845B8 ] acsock          C:\Windows\system32\DRIVERS\acsock.sys
15:38:50.0906 0804  acsock - ok
15:38:51.0078 0804  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:38:51.0078 0804  AdobeARMservice - ok
15:38:51.0124 0804  [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx        C:\Windows\system32\DRIVERS\adp94xx.sys
15:38:51.0124 0804  adp94xx - ok
15:38:51.0140 0804  [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci        C:\Windows\system32\DRIVERS\adpahci.sys
15:38:51.0140 0804  adpahci - ok
15:38:51.0156 0804  [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320        C:\Windows\system32\DRIVERS\adpu320.sys
15:38:51.0156 0804  adpu320 - ok
15:38:51.0187 0804  [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc    C:\Windows\System32\aelupsvc.dll
15:38:51.0187 0804  AeLookupSvc - ok
15:38:51.0234 0804  [ 0DB7A48388D54D154EBEC120461A0FCD ] AFD            C:\Windows\system32\drivers\afd.sys
15:38:51.0234 0804  AFD - ok
15:38:51.0249 0804  [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
15:38:51.0249 0804  agp440 - ok
15:38:51.0265 0804  [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx        C:\Windows\system32\DRIVERS\djsvs.sys
15:38:51.0265 0804  aic78xx - ok
15:38:51.0296 0804  [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG            C:\Windows\System32\alg.exe
15:38:51.0296 0804  ALG - ok
15:38:51.0296 0804  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
15:38:51.0296 0804  aliide - ok
15:38:51.0312 0804  [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp          C:\Windows\system32\DRIVERS\amdagp.sys
15:38:51.0312 0804  amdagp - ok
15:38:51.0312 0804  [ CD5914170297126B6266860198D1D4F0 ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
15:38:51.0312 0804  amdide - ok
15:38:51.0312 0804  [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8          C:\Windows\system32\DRIVERS\amdk8.sys
15:38:51.0312 0804  AmdK8 - ok
15:38:51.0327 0804  [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:38:51.0327 0804  AmdPPM - ok
15:38:51.0374 0804  [ 19CE906B4CDC11FC4FEF5745F33A63B6 ] amdsata        C:\Windows\system32\drivers\amdsata.sys
15:38:51.0374 0804  amdsata - ok
15:38:51.0374 0804  [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
15:38:51.0374 0804  amdsbs - ok
15:38:51.0390 0804  [ 869E67D66BE326A5A9159FBA8746FA70 ] amdxata        C:\Windows\system32\drivers\amdxata.sys
15:38:51.0390 0804  amdxata - ok
15:38:51.0639 0804  [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
15:38:51.0639 0804  AntiVirSchedulerService - ok
15:38:51.0873 0804  [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
15:38:51.0873 0804  AntiVirService - ok
15:38:51.0904 0804  [ FEB834C02CE1E84B6A38F953CA067706 ] AppID          C:\Windows\system32\drivers\appid.sys
15:38:51.0904 0804  AppID - ok
15:38:51.0920 0804  [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:38:51.0920 0804  AppIDSvc - ok
15:38:51.0920 0804  [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo        C:\Windows\System32\appinfo.dll
15:38:51.0920 0804  Appinfo - ok
15:38:51.0951 0804  [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt        C:\Windows\System32\appmgmts.dll
15:38:51.0951 0804  AppMgmt - ok
15:38:51.0967 0804  [ 2932004F49677BD84DBC72EDB754FFB3 ] arc            C:\Windows\system32\DRIVERS\arc.sys
15:38:51.0967 0804  arc - ok
15:38:51.0967 0804  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
15:38:51.0967 0804  arcsas - ok
15:38:51.0982 0804  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:38:51.0982 0804  AsyncMac - ok
15:38:51.0982 0804  [ 338C86357871C167A96AB976519BF59E ] atapi          C:\Windows\system32\DRIVERS\atapi.sys
15:38:51.0982 0804  atapi - ok
15:38:51.0998 0804  [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:38:52.0014 0804  AudioEndpointBuilder - ok
15:38:52.0014 0804  [ 510C873BFA135AA829F4180352772734 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
15:38:52.0029 0804  Audiosrv - ok
15:38:52.0060 0804  [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
15:38:52.0060 0804  avgntflt - ok
15:38:52.0107 0804  [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
15:38:52.0107 0804  avipbb - ok
15:38:52.0123 0804  [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
15:38:52.0138 0804  avkmgr - ok
15:38:52.0170 0804  [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:38:52.0170 0804  AxInstSV - ok
15:38:52.0185 0804  [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv        C:\Windows\system32\DRIVERS\bxvbdx.sys
15:38:52.0185 0804  b06bdrv - ok
15:38:52.0216 0804  [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
15:38:52.0216 0804  b57nd60x - ok
15:38:52.0326 0804  [ 9E209171C51B1D750F53777253B80E81 ] BCM43XX        C:\Windows\system32\DRIVERS\bcmwl6.sys
15:38:52.0357 0804  BCM43XX - ok
15:38:52.0372 0804  [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:38:52.0372 0804  BDESVC - ok
15:38:52.0372 0804  [ 505506526A9D467307B3C393DEDAF858 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:38:52.0372 0804  Beep - ok
15:38:52.0404 0804  [ 85AC71C045CEB054ED48A7841AAE0C11 ] BFE            C:\Windows\System32\bfe.dll
15:38:52.0404 0804  BFE - ok
15:38:52.0435 0804  [ 53F476476F55A27F580661BDE09C4EC4 ] BITS            C:\Windows\System32\qmgr.dll
15:38:52.0435 0804  BITS - ok
15:38:52.0450 0804  [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:38:52.0450 0804  blbdrive - ok
15:38:52.0482 0804  [ 9A5C671B7FBAE4865149BB11F59B91B2 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:38:52.0482 0804  bowser - ok
15:38:52.0482 0804  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:38:52.0482 0804  BrFiltLo - ok
15:38:52.0482 0804  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:38:52.0482 0804  BrFiltUp - ok
15:38:52.0528 0804  [ A0E691DC6589D4D2CBE373171D1A49E5 ] Browser        C:\Windows\System32\browser.dll
15:38:52.0528 0804  Browser - ok
15:38:52.0544 0804  [ 845B8CE732E67F3B4133164868C666EA ] Brserid        C:\Windows\System32\Drivers\Brserid.sys
15:38:52.0544 0804  Brserid - ok
15:38:52.0560 0804  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:38:52.0560 0804  BrSerWdm - ok
15:38:52.0560 0804  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:38:52.0560 0804  BrUsbMdm - ok
15:38:52.0560 0804  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:38:52.0560 0804  BrUsbSer - ok
15:38:52.0575 0804  [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
15:38:52.0575 0804  BTHMODEM - ok
15:38:52.0591 0804  [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv        C:\Windows\system32\bthserv.dll
15:38:52.0591 0804  bthserv - ok
15:38:52.0606 0804  [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:38:52.0606 0804  cdfs - ok
15:38:52.0606 0804  [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom          C:\Windows\system32\DRIVERS\cdrom.sys
15:38:52.0606 0804  cdrom - ok
15:38:52.0622 0804  [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc    C:\Windows\System32\certprop.dll
15:38:52.0622 0804  CertPropSvc - ok
15:38:52.0638 0804  [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
15:38:52.0653 0804  circlass - ok
15:38:52.0669 0804  [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS            C:\Windows\system32\CLFS.sys
15:38:52.0669 0804  CLFS - ok
15:38:52.0762 0804  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:38:52.0762 0804  clr_optimization_v2.0.50727_32 - ok
15:38:52.0950 0804  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:38:52.0965 0804  clr_optimization_v4.0.30319_32 - ok
15:38:52.0965 0804  [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:38:52.0965 0804  CmBatt - ok
15:38:52.0965 0804  [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
15:38:52.0965 0804  cmdide - ok
15:38:53.0028 0804  [ DB5E008B3744DD60C8498CBBF2A1CFA6 ] CNG            C:\Windows\system32\Drivers\cng.sys
15:38:53.0028 0804  CNG - ok
15:38:53.0059 0804  [ A6023D3823C37043986713F118A89BEE ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
15:38:53.0059 0804  Compbatt - ok
15:38:53.0074 0804  [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
15:38:53.0074 0804  CompositeBus - ok
15:38:53.0074 0804  COMSysApp - ok
15:38:53.0090 0804  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk        C:\Windows\system32\DRIVERS\crcdisk.sys
15:38:53.0090 0804  crcdisk - ok
15:38:53.0121 0804  [ F2FDE6C8DBAAD44CC58D1E07E4AF4EED ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:38:53.0121 0804  CryptSvc - ok
15:38:53.0152 0804  [ 27C9490BDD0AE48911AB8CF1932591ED ] CSC            C:\Windows\system32\drivers\csc.sys
15:38:53.0168 0804  CSC - ok
15:38:53.0199 0804  [ 56FB5F222EA30D3D3FC459879772CB73 ] CscService      C:\Windows\System32\cscsvc.dll
15:38:53.0199 0804  CscService - ok
15:38:53.0230 0804  [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:38:53.0230 0804  DcomLaunch - ok
15:38:53.0262 0804  [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc      C:\Windows\System32\defragsvc.dll
15:38:53.0262 0804  defragsvc - ok
15:38:53.0293 0804  [ 83D1ECEA8FAAE75604C0FA49AC7AD996 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:38:53.0308 0804  DfsC - ok
15:38:53.0324 0804  [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:38:53.0340 0804  Dhcp - ok
15:38:53.0340 0804  [ 1A050B0274BFB3890703D490F330C0DA ] discache        C:\Windows\system32\drivers\discache.sys
15:38:53.0340 0804  discache - ok
15:38:53.0371 0804  [ 565003F326F99802E68CA78F2A68E9FF ] Disk            C:\Windows\system32\DRIVERS\disk.sys
15:38:53.0371 0804  Disk - ok
15:38:53.0402 0804  [ B15BE77A2BACF9C3177D27518AFE26A9 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:38:53.0402 0804  Dnscache - ok
15:38:53.0418 0804  [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc        C:\Windows\System32\dot3svc.dll
15:38:53.0418 0804  dot3svc - ok
15:38:53.0433 0804  [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS            C:\Windows\system32\dps.dll
15:38:53.0433 0804  DPS - ok
15:38:53.0464 0804  [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud        C:\Windows\system32\drivers\drmkaud.sys
15:38:53.0464 0804  drmkaud - ok
15:38:53.0511 0804  [ 1679A4669326CB1A67CC95658D273234 ] DXGKrnl        C:\Windows\System32\drivers\dxgkrnl.sys
15:38:53.0527 0804  DXGKrnl - ok
15:38:53.0542 0804  [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost        C:\Windows\System32\eapsvc.dll
15:38:53.0542 0804  EapHost - ok
15:38:53.0620 0804  [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv          C:\Windows\system32\DRIVERS\evbdx.sys
15:38:53.0683 0804  ebdrv - ok
15:38:53.0714 0804  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] EFS            C:\Windows\System32\lsass.exe
15:38:53.0714 0804  EFS - ok
15:38:53.0792 0804  [ 1697C39978CD69F6FBC15302EDCECE1F ] ehRecvr        C:\Windows\ehome\ehRecvr.exe
15:38:53.0808 0804  ehRecvr - ok
15:38:53.0823 0804  [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched        C:\Windows\ehome\ehsched.exe
15:38:53.0823 0804  ehSched - ok
15:38:53.0854 0804  [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor        C:\Windows\system32\DRIVERS\elxstor.sys
15:38:53.0854 0804  elxstor - ok
15:38:53.0854 0804  [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
15:38:53.0854 0804  ErrDev - ok
15:38:53.0886 0804  [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem    C:\Windows\system32\es.dll
15:38:53.0886 0804  EventSystem - ok
15:38:53.0886 0804  [ 2DC9108D74081149CC8B651D3A26207F ] exfat          C:\Windows\system32\drivers\exfat.sys
15:38:53.0886 0804  exfat - ok
15:38:53.0901 0804  [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat        C:\Windows\system32\drivers\fastfat.sys
15:38:53.0901 0804  fastfat - ok
15:38:53.0932 0804  [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax            C:\Windows\system32\fxssvc.exe
15:38:53.0932 0804  Fax - ok
15:38:53.0932 0804  [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc            C:\Windows\system32\DRIVERS\fdc.sys
15:38:53.0932 0804  fdc - ok
15:38:53.0948 0804  [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost        C:\Windows\system32\fdPHost.dll
15:38:53.0948 0804  fdPHost - ok
15:38:53.0964 0804  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub        C:\Windows\system32\fdrespub.dll
15:38:53.0964 0804  FDResPub - ok
15:38:53.0964 0804  [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:38:53.0964 0804  FileInfo - ok
15:38:53.0964 0804  [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace      C:\Windows\system32\drivers\filetrace.sys
15:38:53.0964 0804  Filetrace - ok
15:38:53.0979 0804  [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
15:38:53.0979 0804  flpydisk - ok
15:38:53.0979 0804  [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:38:53.0979 0804  FltMgr - ok
15:38:54.0026 0804  [ 7FE4995528A7529A761875151EE3D512 ] FontCache      C:\Windows\system32\FntCache.dll
15:38:54.0026 0804  FontCache - ok
15:38:54.0088 0804  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:38:54.0088 0804  FontCache3.0.0.0 - ok
15:38:54.0088 0804  [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends      C:\Windows\system32\drivers\FsDepends.sys
15:38:54.0104 0804  FsDepends - ok
15:38:54.0120 0804  [ 500A9814FD9446A8126858A5A7F7D273 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:38:54.0120 0804  Fs_Rec - ok
15:38:54.0151 0804  [ DAFBD9FE39197495AED6D51F3B85B5D2 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:38:54.0151 0804  fvevol - ok
15:38:54.0182 0804  [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
15:38:54.0182 0804  gagp30kx - ok
15:38:54.0198 0804  [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc          C:\Windows\System32\gpsvc.dll
15:38:54.0213 0804  gpsvc - ok
15:38:54.0229 0804  [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:38:54.0229 0804  hcw85cir - ok
15:38:54.0260 0804  [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:38:54.0260 0804  HdAudAddService - ok
15:38:54.0260 0804  [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:38:54.0260 0804  HDAudBus - ok
15:38:54.0307 0804  [ A88485DC6A7136C10D9A6C7E38FDFE3C ] HECI            C:\Windows\system32\DRIVERS\HECI.sys
15:38:54.0307 0804  HECI - ok
15:38:54.0307 0804  [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt        C:\Windows\system32\DRIVERS\HidBatt.sys
15:38:54.0322 0804  HidBatt - ok
15:38:54.0338 0804  [ 89448F40E6DF260C206A193A4683BA78 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
15:38:54.0338 0804  HidBth - ok
15:38:54.0354 0804  [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr          C:\Windows\system32\DRIVERS\hidir.sys
15:38:54.0354 0804  HidIr - ok
15:38:54.0354 0804  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv        C:\Windows\system32\hidserv.dll
15:38:54.0354 0804  hidserv - ok
15:38:54.0369 0804  [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:38:54.0369 0804  HidUsb - ok
15:38:54.0400 0804  [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:38:54.0400 0804  hkmsvc - ok
15:38:54.0400 0804  [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:38:54.0416 0804  HomeGroupListener - ok
15:38:54.0432 0804  [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:38:54.0432 0804  HomeGroupProvider - ok
15:38:54.0432 0804  [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
15:38:54.0447 0804  HpSAMD - ok
15:38:54.0463 0804  [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:38:54.0478 0804  HTTP - ok
15:38:54.0478 0804  [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:38:54.0494 0804  hwpolicy - ok
15:38:54.0494 0804  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
15:38:54.0494 0804  i8042prt - ok
15:38:54.0525 0804  [ 934AF4D7C5F457B9F0743F4299B77B67 ] iaStorV        C:\Windows\system32\drivers\iaStorV.sys
15:38:54.0541 0804  iaStorV - ok
15:38:54.0603 0804  [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc          C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:38:54.0619 0804  idsvc - ok
15:38:54.0837 0804  [ 24CCEC128BEBB148E50C6093523AD686 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
15:38:55.0056 0804  igfx - ok
15:38:55.0056 0804  [ 4173FF5708F3236CF25195FECD742915 ] iirsp          C:\Windows\system32\DRIVERS\iirsp.sys
15:38:55.0056 0804  iirsp - ok
15:38:55.0102 0804  [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT          C:\Windows\System32\ikeext.dll
15:38:55.0118 0804  IKEEXT - ok
15:38:55.0149 0804  [ E3C36AC5AE87EC970AE8EA2A93D59AE1 ] Impcd          C:\Windows\system32\DRIVERS\Impcd.sys
15:38:55.0149 0804  Impcd - ok
15:38:55.0196 0804  [ 5576AD2F0039D2BCCCA3567FC0BF981C ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
15:38:55.0196 0804  IntcDAud - ok
15:38:55.0212 0804  [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
15:38:55.0212 0804  intelide - ok
15:38:55.0227 0804  [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:38:55.0227 0804  intelppm - ok
15:38:55.0243 0804  [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum      C:\Windows\system32\ipbusenum.dll
15:38:55.0243 0804  IPBusEnum - ok
15:38:55.0243 0804  [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:38:55.0258 0804  IpFilterDriver - ok
15:38:55.0258 0804  [ 477397B432A256A50EE7E4339EB9EA14 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:38:55.0274 0804  iphlpsvc - ok
15:38:55.0274 0804  [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV        C:\Windows\system32\DRIVERS\IPMIDrv.sys
15:38:55.0274 0804  IPMIDRV - ok
15:38:55.0274 0804  [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT          C:\Windows\system32\drivers\ipnat.sys
15:38:55.0274 0804  IPNAT - ok
15:38:55.0290 0804  [ 42996CFF20A3084A56017B7902307E9F ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:38:55.0290 0804  IRENUM - ok
15:38:55.0305 0804  [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
15:38:55.0305 0804  isapnp - ok
15:38:55.0321 0804  [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
15:38:55.0321 0804  iScsiPrt - ok
15:38:55.0336 0804  [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:38:55.0336 0804  kbdclass - ok
15:38:55.0336 0804  [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:38:55.0336 0804  kbdhid - ok
15:38:55.0368 0804  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] KeyIso          C:\Windows\system32\lsass.exe
15:38:55.0368 0804  KeyIso - ok
15:38:55.0399 0804  [ 52FC17C8589F11747D01D3CF592673D0 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:38:55.0399 0804  KSecDD - ok
15:38:55.0430 0804  [ 3E5474B03568CFAB834DA3C38E8C9EFA ] KSecPkg        C:\Windows\system32\Drivers\ksecpkg.sys
15:38:55.0430 0804  KSecPkg - ok
15:38:55.0461 0804  [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm          C:\Windows\system32\msdtckrm.dll
15:38:55.0461 0804  KtmRm - ok
15:38:55.0492 0804  [ 8F6BF790D3168224C16F2AF68A84438C ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:38:55.0492 0804  LanmanServer - ok
15:38:55.0524 0804  [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:38:55.0524 0804  LanmanWorkstation - ok
15:38:55.0539 0804  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:38:55.0539 0804  lltdio - ok
15:38:55.0570 0804  [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc        C:\Windows\System32\lltdsvc.dll
15:38:55.0570 0804  lltdsvc - ok
15:38:55.0570 0804  [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts        C:\Windows\System32\lmhsvc.dll
15:38:55.0570 0804  lmhosts - ok
15:38:55.0680 0804  [ 5460828F8951D310B42B442877603B8D ] LMS            C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
15:38:55.0680 0804  LMS - ok
15:38:55.0680 0804  [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
15:38:55.0680 0804  LSI_FC - ok
15:38:55.0695 0804  [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS        C:\Windows\system32\DRIVERS\lsi_sas.sys
15:38:55.0695 0804  LSI_SAS - ok
15:38:55.0695 0804  [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:38:55.0695 0804  LSI_SAS2 - ok
15:38:55.0695 0804  [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:38:55.0695 0804  LSI_SCSI - ok
15:38:55.0726 0804  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv          C:\Windows\system32\drivers\luafv.sys
15:38:55.0726 0804  luafv - ok
15:38:55.0836 0804  [ 79EC6C0033776F89DD5131241F0170E1 ] massfilter      C:\Windows\system32\drivers\massfilter.sys
15:38:55.0836 0804  massfilter - ok
15:38:55.0867 0804  [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc        C:\Windows\system32\Mcx2Svc.dll
15:38:55.0867 0804  Mcx2Svc - ok
15:38:55.0867 0804  [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas        C:\Windows\system32\DRIVERS\megasas.sys
15:38:55.0867 0804  megasas - ok
15:38:55.0882 0804  [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
15:38:55.0882 0804  MegaSR - ok
15:38:55.0898 0804  [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS          C:\Windows\system32\mmcss.dll
15:38:55.0898 0804  MMCSS - ok
15:38:55.0914 0804  [ F001861E5700EE84E2D4E52C712F4964 ] Modem          C:\Windows\system32\drivers\modem.sys
15:38:55.0914 0804  Modem - ok
15:38:55.0914 0804  [ 79D10964DE86B292320E9DFE02282A23 ] monitor        C:\Windows\system32\DRIVERS\monitor.sys
15:38:55.0914 0804  monitor - ok
15:38:55.0914 0804  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:38:55.0914 0804  mouclass - ok
15:38:55.0914 0804  [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:38:55.0929 0804  mouhid - ok
15:38:55.0929 0804  [ 921C18727C5920D6C0300736646931C2 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:38:55.0929 0804  mountmgr - ok
15:38:56.0070 0804  [ F906EAAC941FA2FA67A21DF2732EA379 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:38:56.0070 0804  MozillaMaintenance - ok
15:38:56.0070 0804  [ 2AF5997438C55FB79D33D015C30E1974 ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
15:38:56.0070 0804  mpio - ok
15:38:56.0085 0804  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:38:56.0085 0804  mpsdrv - ok
15:38:56.0101 0804  [ 5CD996CECF45CBC3E8D109C86B82D69E ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:38:56.0116 0804  MpsSvc - ok
15:38:56.0116 0804  [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:38:56.0116 0804  MRxDAV - ok
15:38:56.0163 0804  [ CA7570E42522E24324A12161DB14EC02 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:38:56.0163 0804  mrxsmb - ok
15:38:56.0210 0804  [ F965C3AB2B2AE5C378F4562486E35051 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:38:56.0210 0804  mrxsmb10 - ok
15:38:56.0226 0804  [ 25C38264A3C72594DD21D355D70D7A5D ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:38:56.0226 0804  mrxsmb20 - ok
15:38:56.0241 0804  [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
15:38:56.0241 0804  msahci - ok
15:38:56.0241 0804  [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm          C:\Windows\system32\DRIVERS\msdsm.sys
15:38:56.0257 0804  msdsm - ok
15:38:56.0257 0804  [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC          C:\Windows\System32\msdtc.exe
15:38:56.0272 0804  MSDTC - ok
15:38:56.0272 0804  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:38:56.0272 0804  Msfs - ok
15:38:56.0288 0804  [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf      C:\Windows\System32\drivers\mshidkmdf.sys
15:38:56.0288 0804  mshidkmdf - ok
15:38:56.0288 0804  [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
15:38:56.0288 0804  msisadrv - ok
15:38:56.0319 0804  [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI        C:\Windows\system32\iscsiexe.dll
15:38:56.0319 0804  MSiSCSI - ok
15:38:56.0319 0804  msiserver - ok
15:38:56.0335 0804  [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV        C:\Windows\system32\drivers\MSKSSRV.sys
15:38:56.0335 0804  MSKSSRV - ok
15:38:56.0350 0804  [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:38:56.0350 0804  MSPCLOCK - ok
15:38:56.0350 0804  [ F456E973590D663B1073E9C463B40932 ] MSPQM          C:\Windows\system32\drivers\MSPQM.sys
15:38:56.0350 0804  MSPQM - ok
15:38:56.0350 0804  [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC          C:\Windows\system32\drivers\MsRPC.sys
15:38:56.0366 0804  MsRPC - ok
15:38:56.0366 0804  [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
15:38:56.0366 0804  mssmbios - ok
15:38:56.0366 0804  [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE          C:\Windows\system32\drivers\MSTEE.sys
15:38:56.0366 0804  MSTEE - ok
15:38:56.0382 0804  [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
15:38:56.0382 0804  MTConfig - ok
15:38:56.0382 0804  [ 159FAD02F64E6381758C990F753BCC80 ] Mup            C:\Windows\system32\Drivers\mup.sys
15:38:56.0382 0804  Mup - ok
15:38:56.0397 0804  [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent        C:\Windows\system32\qagentRT.dll
15:38:56.0413 0804  napagent - ok
15:38:56.0444 0804  [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP    C:\Windows\system32\DRIVERS\nwifi.sys
15:38:56.0444 0804  NativeWifiP - ok
15:38:56.0460 0804  [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:38:56.0460 0804  NDIS - ok
15:38:56.0475 0804  [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap        C:\Windows\system32\DRIVERS\ndiscap.sys
15:38:56.0475 0804  NdisCap - ok
15:38:56.0475 0804  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:38:56.0475 0804  NdisTapi - ok
15:38:56.0475 0804  [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio        C:\Windows\system32\DRIVERS\ndisuio.sys
15:38:56.0491 0804  Ndisuio - ok
15:38:56.0491 0804  [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan        C:\Windows\system32\DRIVERS\ndiswan.sys
15:38:56.0491 0804  NdisWan - ok
15:38:56.0491 0804  [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy        C:\Windows\system32\drivers\NDProxy.sys
15:38:56.0491 0804  NDProxy - ok
15:38:56.0506 0804  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS        C:\Windows\system32\DRIVERS\netbios.sys
15:38:56.0506 0804  NetBIOS - ok
15:38:56.0506 0804  [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT          C:\Windows\system32\DRIVERS\netbt.sys
15:38:56.0506 0804  NetBT - ok
15:38:56.0522 0804  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] Netlogon        C:\Windows\system32\lsass.exe
15:38:56.0538 0804  Netlogon - ok
15:38:56.0584 0804  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman          C:\Windows\System32\netman.dll
15:38:56.0584 0804  Netman - ok
15:38:56.0584 0804  [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm        C:\Windows\System32\netprofm.dll
15:38:56.0600 0804  netprofm - ok
15:38:56.0616 0804  [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:38:56.0616 0804  NetTcpPortSharing - ok
15:38:56.0631 0804  [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960        C:\Windows\system32\DRIVERS\nfrd960.sys
15:38:56.0647 0804  nfrd960 - ok
15:38:56.0662 0804  [ 2226496E34BD40734946A054B1CD657F ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:38:56.0662 0804  NlaSvc - ok
15:38:56.0662 0804  [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:38:56.0662 0804  Npfs - ok
15:38:56.0678 0804  [ BA387E955E890C8A88306D9B8D06BF17 ] nsi            C:\Windows\system32\nsisvc.dll
15:38:56.0678 0804  nsi - ok
15:38:56.0678 0804  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:38:56.0694 0804  nsiproxy - ok
15:38:56.0740 0804  [ 5126C5402C730C2A953275D8497A4715 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:38:56.0756 0804  Ntfs - ok
15:38:56.0803 0804  [ F9756A98D69098DCA8945D62858A812C ] Null            C:\Windows\system32\drivers\Null.sys
15:38:56.0803 0804  Null - ok
15:38:56.0818 0804  [ F1B0BED906F97E16F6D0C3629D2F21C6 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:38:56.0834 0804  nvraid - ok
15:38:56.0834 0804  [ 4520B63899E867F354EE012D34E11536 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:38:56.0850 0804  nvstor - ok
15:38:56.0928 0804  [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
15:38:56.0928 0804  nv_agp - ok
15:38:56.0928 0804  [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
15:38:56.0943 0804  ohci1394 - ok
15:38:56.0959 0804  [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:38:56.0959 0804  p2pimsvc - ok
15:38:56.0990 0804  [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:38:56.0990 0804  p2psvc - ok
15:38:57.0006 0804  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport        C:\Windows\system32\DRIVERS\parport.sys
15:38:57.0006 0804  Parport - ok
15:38:57.0037 0804  [ 66D3415C159741ADE7038A277EFFF99F ] partmgr        C:\Windows\system32\drivers\partmgr.sys
15:38:57.0037 0804  partmgr - ok
15:38:57.0052 0804  [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
15:38:57.0052 0804  Parvdm - ok
15:38:57.0052 0804  [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:38:57.0052 0804  PcaSvc - ok
15:38:57.0068 0804  [ C858CB77C577780ECC456A892E7E7D0F ] pci            C:\Windows\system32\DRIVERS\pci.sys
15:38:57.0068 0804  pci - ok
15:38:57.0068 0804  [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
15:38:57.0068 0804  pciide - ok
15:38:57.0084 0804  [ F396431B31693E71E8A80687EF523506 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
15:38:57.0084 0804  pcmcia - ok
15:38:57.0099 0804  [ 250F6B43D2B613172035C6747AEEB19F ] pcw            C:\Windows\system32\drivers\pcw.sys
15:38:57.0099 0804  pcw - ok
15:38:57.0115 0804  [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:38:57.0115 0804  PEAUTH - ok
15:38:57.0162 0804  [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc    C:\Windows\system32\peerdistsvc.dll
15:38:57.0177 0804  PeerDistSvc - ok
15:38:57.0224 0804  [ 9C1BFF7910C89A1D12E57343475840CB ] pla            C:\Windows\system32\pla.dll
15:38:57.0255 0804  pla - ok
15:38:57.0302 0804  [ 71DEF5EC79774C798342D0EA16E41780 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:38:57.0302 0804  PlugPlay - ok
15:38:57.0318 0804  [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg    C:\Windows\system32\pnrpauto.dll
15:38:57.0333 0804  PNRPAutoReg - ok
15:38:57.0333 0804  [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc        C:\Windows\system32\pnrpsvc.dll
15:38:57.0333 0804  PNRPsvc - ok
15:38:57.0364 0804  [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent    C:\Windows\System32\ipsecsvc.dll
15:38:57.0364 0804  PolicyAgent - ok
15:38:57.0396 0804  [ DBFF83F709A91049621C1D35DD45C92C ] Power          C:\Windows\system32\umpo.dll
15:38:57.0396 0804  Power - ok
15:38:57.0411 0804  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:38:57.0427 0804  PptpMiniport - ok
15:38:57.0427 0804  [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor      C:\Windows\system32\DRIVERS\processr.sys
15:38:57.0427 0804  Processor - ok
15:38:57.0458 0804  [ AEA3BDBDBA667AA6F678CB38907E4F5E ] ProfSvc        C:\Windows\system32\profsvc.dll
15:38:57.0458 0804  ProfSvc - ok
15:38:57.0474 0804  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:38:57.0474 0804  ProtectedStorage - ok
15:38:57.0505 0804  [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:38:57.0505 0804  Psched - ok
15:38:57.0536 0804  [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
15:38:57.0567 0804  ql2300 - ok
15:38:57.0567 0804  [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
15:38:57.0567 0804  ql40xx - ok
15:38:57.0598 0804  [ 31AC809E7707EB580B2BDB760390765A ] QWAVE          C:\Windows\system32\qwave.dll
15:38:57.0598 0804  QWAVE - ok
15:38:57.0598 0804  [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:38:57.0598 0804  QWAVEdrv - ok
15:38:57.0614 0804  [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:38:57.0614 0804  RasAcd - ok
15:38:57.0614 0804  [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn    C:\Windows\system32\DRIVERS\AgileVpn.sys
15:38:57.0630 0804  RasAgileVpn - ok
15:38:57.0630 0804  [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto        C:\Windows\System32\rasauto.dll
15:38:57.0645 0804  RasAuto - ok
15:38:57.0645 0804  [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp        C:\Windows\system32\DRIVERS\rasl2tp.sys
15:38:57.0645 0804  Rasl2tp - ok
15:38:57.0676 0804  [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan          C:\Windows\System32\rasmans.dll
15:38:57.0692 0804  RasMan - ok
15:38:57.0692 0804  [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:38:57.0692 0804  RasPppoe - ok
15:38:57.0692 0804  [ 44101F495A83EA6401D886E7FD70096B ] RasSstp        C:\Windows\system32\DRIVERS\rassstp.sys
15:38:57.0692 0804  RasSstp - ok
15:38:57.0708 0804  [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss          C:\Windows\system32\DRIVERS\rdbss.sys
15:38:57.0708 0804  rdbss - ok
15:38:57.0708 0804  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:38:57.0708 0804  rdpbus - ok
15:38:57.0723 0804  [ 1E016846895B15A99F9A176A05029075 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:38:57.0723 0804  RDPCDD - ok
15:38:57.0739 0804  [ C5FF95883FFEF704D50C40D21CFB3AB5 ] RDPDR          C:\Windows\system32\drivers\rdpdr.sys
15:38:57.0739 0804  RDPDR - ok
15:38:57.0754 0804  [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:38:57.0754 0804  RDPENCDD - ok
15:38:57.0754 0804  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:38:57.0754 0804  RDPREFMP - ok
15:38:57.0786 0804  [ C5B8D47A4688DE9D335204EA757C2240 ] RDPWD          C:\Windows\system32\drivers\RDPWD.sys
15:38:57.0801 0804  RDPWD - ok
15:38:57.0817 0804  [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:38:57.0817 0804  rdyboost - ok
15:38:57.0832 0804  [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:38:57.0848 0804  RemoteAccess - ok
15:38:57.0864 0804  [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:38:57.0864 0804  RemoteRegistry - ok
15:38:57.0864 0804  [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:38:57.0864 0804  RpcEptMapper - ok
15:38:57.0895 0804  [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator      C:\Windows\system32\locator.exe
15:38:57.0895 0804  RpcLocator - ok
15:38:57.0910 0804  [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs          C:\Windows\system32\rpcss.dll
15:38:57.0910 0804  RpcSs - ok
15:38:57.0926 0804  [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:38:57.0926 0804  rspndr - ok
15:38:57.0973 0804  [ 7DFD48E24479B68B258D8770121155A0 ] RTL8167        C:\Windows\system32\DRIVERS\Rt86win7.sys
15:38:57.0973 0804  RTL8167 - ok
15:38:58.0004 0804  [ 5423D8437051E89DD34749F242C98648 ] s3cap          C:\Windows\system32\DRIVERS\vms3cap.sys
15:38:58.0004 0804  s3cap - ok
15:38:58.0035 0804  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] SamSs          C:\Windows\system32\lsass.exe
15:38:58.0035 0804  SamSs - ok
15:38:58.0051 0804  [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
15:38:58.0051 0804  sbp2port - ok
15:38:58.0066 0804  [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:38:58.0066 0804  SCardSvr - ok
15:38:58.0066 0804  [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:38:58.0066 0804  scfilter - ok
15:38:58.0113 0804  [ DF1E5C82E4D09CF8105CC644980C4803 ] Schedule        C:\Windows\system32\schedsvc.dll
15:38:58.0113 0804  Schedule - ok
15:38:58.0144 0804  [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc    C:\Windows\System32\certprop.dll
15:38:58.0144 0804  SCPolicySvc - ok
15:38:58.0160 0804  [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:38:58.0160 0804  SDRSVC - ok
15:38:58.0176 0804  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:38:58.0176 0804  secdrv - ok
15:38:58.0191 0804  [ A59B3A4442C52060CC7A85293AA3546F ] seclogon        C:\Windows\system32\seclogon.dll
15:38:58.0191 0804  seclogon - ok
15:38:58.0207 0804  [ DCB7FCDCC97F87360F75D77425B81737 ] SENS            C:\Windows\System32\sens.dll
15:38:58.0207 0804  SENS - ok
15:38:58.0222 0804  [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:38:58.0222 0804  SensrSvc - ok
15:38:58.0238 0804  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum        C:\Windows\system32\DRIVERS\serenum.sys
15:38:58.0238 0804  Serenum - ok
15:38:58.0238 0804  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:38:58.0238 0804  Serial - ok
15:38:58.0238 0804  [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
15:38:58.0238 0804  sermouse - ok
15:38:58.0269 0804  [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv      C:\Windows\system32\sessenv.dll
15:38:58.0269 0804  SessionEnv - ok
15:38:58.0269 0804  [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk        C:\Windows\system32\DRIVERS\sffdisk.sys
15:38:58.0269 0804  sffdisk - ok
15:38:58.0269 0804  [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
15:38:58.0285 0804  sffp_mmc - ok
15:38:58.0285 0804  [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd        C:\Windows\system32\DRIVERS\sffp_sd.sys
15:38:58.0285 0804  sffp_sd - ok
15:38:58.0285 0804  [ DB96666CC8312EBC45032F30B007A547 ] sfloppy        C:\Windows\system32\DRIVERS\sfloppy.sys
15:38:58.0285 0804  sfloppy - ok
15:38:58.0332 0804  [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:38:58.0332 0804  SharedAccess - ok
15:38:58.0347 0804  [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:38:58.0363 0804  ShellHWDetection - ok
15:38:58.0363 0804  [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp          C:\Windows\system32\DRIVERS\sisagp.sys
15:38:58.0363 0804  sisagp - ok
15:38:58.0378 0804  [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:38:58.0378 0804  SiSRaid2 - ok
15:38:58.0394 0804  [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
15:38:58.0394 0804  SiSRaid4 - ok
15:38:58.0394 0804  [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb            C:\Windows\system32\DRIVERS\smb.sys
15:38:58.0394 0804  Smb - ok
15:38:58.0410 0804  [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:38:58.0410 0804  SNMPTRAP - ok
15:38:58.0425 0804  [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr          C:\Windows\system32\drivers\spldr.sys
15:38:58.0425 0804  spldr - ok
15:38:58.0456 0804  [ E17323B0AA9FB3FF9945731D736EDA2F ] Spooler        C:\Windows\System32\spoolsv.exe
15:38:58.0456 0804  Spooler - ok
15:38:58.0550 0804  [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc          C:\Windows\system32\sppsvc.exe
15:38:58.0581 0804  sppsvc - ok
15:38:58.0597 0804  [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify    C:\Windows\system32\sppuinotify.dll
15:38:58.0597 0804  sppuinotify - ok
15:38:58.0644 0804  [ C4A027B8C0BD3FC0699F41FA5E9E0C87 ] srv            C:\Windows\system32\DRIVERS\srv.sys
15:38:58.0644 0804  srv - ok
15:38:58.0659 0804  [ 414BB592CAD8A79649D01F9D94318FB3 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:38:58.0659 0804  srv2 - ok
15:38:58.0706 0804  [ FF207D67700AA18242AAF985D3E7D8F4 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:38:58.0706 0804  srvnet - ok
15:38:58.0722 0804  [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV        C:\Windows\System32\ssdpsrv.dll
15:38:58.0737 0804  SSDPSRV - ok
15:38:58.0831 0804  [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
15:38:58.0831 0804  ssmdrv - ok
15:38:58.0846 0804  [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc        C:\Windows\system32\sstpsvc.dll
15:38:58.0862 0804  SstpSvc - ok
15:38:58.0862 0804  [ DB32D325C192B801DF274BFD12A7E72B ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
15:38:58.0862 0804  stexstor - ok
15:38:58.0893 0804  [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc          C:\Windows\System32\wiaservc.dll
15:38:58.0893 0804  StiSvc - ok
15:38:58.0924 0804  [ 957E346CA948668F2496A6CCF6FF82CC ] storflt        C:\Windows\system32\DRIVERS\vmstorfl.sys
15:38:58.0924 0804  storflt - ok
15:38:58.0940 0804  [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc        C:\Windows\system32\storsvc.dll
15:38:58.0940 0804  StorSvc - ok
15:38:58.0956 0804  [ D5751969DC3E4B88BF482AC8EC9FE019 ] storvsc        C:\Windows\system32\DRIVERS\storvsc.sys
15:38:58.0956 0804  storvsc - ok
15:38:58.0956 0804  [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
15:38:58.0956 0804  swenum - ok
15:38:58.0987 0804  [ A28BD92DF340E57B024BA433165D34D7 ] swprv          C:\Windows\System32\swprv.dll
15:38:59.0002 0804  swprv - ok
15:38:59.0034 0804  [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain        C:\Windows\system32\sysmain.dll
15:38:59.0049 0804  SysMain - ok
15:38:59.0096 0804  [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:38:59.0096 0804  TabletInputService - ok
15:38:59.0112 0804  [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv        C:\Windows\System32\tapisrv.dll
15:38:59.0112 0804  TapiSrv - ok
15:38:59.0112 0804  [ B799D9FDB26111737F58288D8DC172D9 ] TBS            C:\Windows\System32\tbssvc.dll
15:38:59.0112 0804  TBS - ok
15:38:59.0174 0804  [ 55E9965552741F3850CB22CBBA9671ED ] Tcpip          C:\Windows\system32\drivers\tcpip.sys
15:38:59.0205 0804  Tcpip - ok
15:38:59.0252 0804  [ 55E9965552741F3850CB22CBBA9671ED ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:38:59.0252 0804  TCPIP6 - ok
15:38:59.0268 0804  [ E64444523ADD154F86567C469BC0B17F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:38:59.0268 0804  tcpipreg - ok
15:38:59.0283 0804  [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:38:59.0283 0804  TDPIPE - ok
15:38:59.0314 0804  [ 7156308896D34EA75A582F9A09E50C17 ] TDTCP          C:\Windows\system32\drivers\tdtcp.sys
15:38:59.0314 0804  TDTCP - ok
15:38:59.0314 0804  [ CB39E896A2A83702D1737BFD402B3542 ] tdx            C:\Windows\system32\DRIVERS\tdx.sys
15:38:59.0314 0804  tdx - ok
15:38:59.0314 0804  [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
15:38:59.0314 0804  TermDD - ok
15:38:59.0346 0804  [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService    C:\Windows\System32\termsrv.dll
15:38:59.0361 0804  TermService - ok
15:38:59.0361 0804  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes          C:\Windows\system32\themeservice.dll
15:38:59.0377 0804  Themes - ok
15:38:59.0377 0804  [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER    C:\Windows\system32\mmcss.dll
15:38:59.0392 0804  THREADORDER - ok
15:38:59.0392 0804  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks          C:\Windows\System32\trkwks.dll
15:38:59.0408 0804  TrkWks - ok
15:38:59.0439 0804  [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:38:59.0439 0804  TrustedInstaller - ok
15:38:59.0439 0804  [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:38:59.0455 0804  tssecsrv - ok
15:38:59.0470 0804  [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:38:59.0470 0804  tunnel - ok
15:38:59.0470 0804  [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
15:38:59.0470 0804  uagp35 - ok
15:38:59.0470 0804  [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:38:59.0486 0804  udfs - ok
15:38:59.0642 0804  [ 2E071263A409931F8AFF3A6A656E920C ] UI Assistant Service C:\Program Files\1&1 Surf-Stick\AssistantServices.exe
15:38:59.0642 0804  UI Assistant Service - ok
15:38:59.0673 0804  [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect      C:\Windows\system32\UI0Detect.exe
15:38:59.0673 0804  UI0Detect - ok
15:38:59.0689 0804  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
15:38:59.0689 0804  uliagpkx - ok
15:38:59.0704 0804  [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus          C:\Windows\system32\DRIVERS\umbus.sys
15:38:59.0704 0804  umbus - ok
15:38:59.0720 0804  [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
15:38:59.0720 0804  UmPass - ok
15:38:59.0736 0804  [ 8ECACA5454844F66386F7BE4AE0D7CD1 ] UmRdpService    C:\Windows\System32\umrdp.dll
15:38:59.0751 0804  UmRdpService - ok
15:38:59.0845 0804  [ 9E89C2D6945389270DE067CE51FF7425 ] UNS            C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
15:38:59.0876 0804  UNS - ok
15:38:59.0923 0804  [ 833FBB672460EFCE8011D262175FAD33 ] upnphost        C:\Windows\System32\upnphost.dll
15:38:59.0923 0804  upnphost - ok
15:38:59.0954 0804  [ C31AE588E403042632DC796CF09E30B0 ] usbccgp        C:\Windows\system32\DRIVERS\usbccgp.sys
15:38:59.0954 0804  usbccgp - ok
15:38:59.0985 0804  [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
15:38:59.0985 0804  usbcir - ok
15:39:00.0001 0804  [ E4C436D914768CE965D5E659BA7EEBD8 ] usbehci        C:\Windows\system32\drivers\usbehci.sys
15:39:00.0001 0804  usbehci - ok
15:39:00.0016 0804  [ BDCD7156EC37448F08633FD899823620 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:39:00.0016 0804  usbhub - ok
15:39:00.0032 0804  [ EB2D819A639015253C871CDA09D91D58 ] usbohci        C:\Windows\system32\drivers\usbohci.sys
15:39:00.0032 0804  usbohci - ok
15:39:00.0079 0804  [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:39:00.0079 0804  usbprint - ok
15:39:00.0094 0804  [ 1C4287739A93594E57E2A9E6A3ED7353 ] USBSTOR        C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:39:00.0094 0804  USBSTOR - ok
15:39:00.0110 0804  [ 22480BF4E5A09192E5E30BA4DDE79FA4 ] usbuhci        C:\Windows\system32\drivers\usbuhci.sys

Feenkleid 23.10.2012 07:50
zweiter Teil:

Code:

96282B7FAE7048E50AF83A ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
15:39:00.0172 0804  usbvideo - ok
15:39:00.0188 0804  [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms          C:\Windows\System32\uxsms.dll
15:39:00.0188 0804  UxSms - ok
15:39:00.0204 0804  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] VaultSvc        C:\Windows\system32\lsass.exe
15:39:00.0204 0804  VaultSvc - ok
15:39:00.0204 0804  [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
15:39:00.0204 0804  vdrvroot - ok
15:39:00.0235 0804  [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds            C:\Windows\System32\vds.exe
15:39:00.0235 0804  vds - ok
15:39:00.0250 0804  [ 17C408214EA61696CEC9C66E388B14F3 ] vga            C:\Windows\system32\DRIVERS\vgapnp.sys
15:39:00.0250 0804  vga - ok
15:39:00.0250 0804  [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave        C:\Windows\System32\drivers\vga.sys
15:39:00.0250 0804  VgaSave - ok
15:39:00.0266 0804  [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp          C:\Windows\system32\DRIVERS\vhdmp.sys
15:39:00.0266 0804  vhdmp - ok
15:39:00.0266 0804  [ C829317A37B4BEA8F39735D4B076E923 ] viaagp          C:\Windows\system32\DRIVERS\viaagp.sys
15:39:00.0266 0804  viaagp - ok
15:39:00.0282 0804  [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7          C:\Windows\system32\DRIVERS\viac7.sys
15:39:00.0282 0804  ViaC7 - ok
15:39:00.0282 0804  [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
15:39:00.0282 0804  viaide - ok
15:39:00.0313 0804  [ 379B349F65F453D2A6E75EA6B7448E49 ] vmbus          C:\Windows\system32\DRIVERS\vmbus.sys
15:39:00.0313 0804  vmbus - ok
15:39:00.0313 0804  [ EC2BBAB4B84D0738C6C83D2234DC36FE ] VMBusHID        C:\Windows\system32\DRIVERS\VMBusHID.sys
15:39:00.0313 0804  VMBusHID - ok
15:39:00.0313 0804  [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
15:39:00.0313 0804  volmgr - ok
15:39:00.0328 0804  [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx        C:\Windows\system32\drivers\volmgrx.sys
15:39:00.0328 0804  volmgrx - ok
15:39:00.0344 0804  [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap        C:\Windows\system32\DRIVERS\volsnap.sys
15:39:00.0344 0804  volsnap - ok
15:39:00.0438 0804  [ 67E65C5108818AD08CC45835D494A4FB ] vpnagent        C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
15:39:00.0438 0804  vpnagent - ok
15:39:00.0453 0804  [ 0D8DF4058901616A4E716AB67D472581 ] vpnva          C:\Windows\system32\DRIVERS\vpnva.sys
15:39:00.0453 0804  vpnva - ok
15:39:00.0469 0804  [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid        C:\Windows\system32\DRIVERS\vsmraid.sys
15:39:00.0469 0804  vsmraid - ok
15:39:00.0500 0804  [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS            C:\Windows\system32\vssvc.exe
15:39:00.0531 0804  VSS - ok
15:39:00.0531 0804  [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
15:39:00.0531 0804  vwifibus - ok
15:39:00.0547 0804  [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:39:00.0547 0804  vwififlt - ok
15:39:00.0562 0804  [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp        C:\Windows\system32\DRIVERS\vwifimp.sys
15:39:00.0562 0804  vwifimp - ok
15:39:00.0578 0804  [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time        C:\Windows\system32\w32time.dll
15:39:00.0578 0804  W32Time - ok
15:39:00.0594 0804  [ DE3721E89C653AA281428C8A69745D90 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
15:39:00.0594 0804  WacomPen - ok
15:39:00.0609 0804  [ 692A712062146E96D28BA0B7D75DE31B ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:39:00.0609 0804  WANARP - ok
15:39:00.0625 0804  [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:39:00.0625 0804  Wanarpv6 - ok
15:39:00.0672 0804  [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc    C:\Windows\system32\Wat\WatAdminSvc.exe
15:39:00.0703 0804  WatAdminSvc - ok
15:39:00.0734 0804  [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine        C:\Windows\system32\wbengine.exe
15:39:00.0765 0804  wbengine - ok
15:39:00.0765 0804  [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:39:00.0781 0804  WbioSrvc - ok
15:39:00.0843 0804  [ 6D9B75275C3E3A5F51AEF81AFFADB2B6 ] wcncsvc        C:\Windows\System32\wcncsvc.dll
15:39:00.0843 0804  wcncsvc - ok
15:39:00.0874 0804  [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:39:00.0874 0804  WcsPlugInService - ok
15:39:00.0890 0804  [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd              C:\Windows\system32\DRIVERS\wd.sys
15:39:00.0890 0804  Wd - ok
15:39:00.0890 0804  [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:39:00.0906 0804  Wdf01000 - ok
15:39:00.0952 0804  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:39:00.0952 0804  WdiServiceHost - ok
15:39:00.0968 0804  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost  C:\Windows\system32\wdi.dll
15:39:00.0968 0804  WdiSystemHost - ok
15:39:00.0999 0804  [ BB5EC38F8D4600119B4720BC5D4211F1 ] WebClient      C:\Windows\System32\webclnt.dll
15:39:00.0999 0804  WebClient - ok
15:39:01.0015 0804  [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:39:01.0030 0804  Wecsvc - ok
15:39:01.0030 0804  [ AC804569BB2364FB6017370258A4091B ] wercplsupport  C:\Windows\System32\wercplsupport.dll
15:39:01.0046 0804  wercplsupport - ok
15:39:01.0046 0804  [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:39:01.0062 0804  WerSvc - ok
15:39:01.0062 0804  [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:39:01.0062 0804  WfpLwf - ok
15:39:01.0077 0804  [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:39:01.0077 0804  WIMMount - ok
15:39:01.0124 0804  [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend      C:\Program Files\Windows Defender\mpsvc.dll
15:39:01.0140 0804  WinDefend - ok
15:39:01.0140 0804  WinHttpAutoProxySvc - ok
15:39:01.0218 0804  [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt        C:\Windows\system32\wbem\WMIsvc.dll
15:39:01.0218 0804  Winmgmt - ok
15:39:01.0264 0804  [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM          C:\Windows\system32\WsmSvc.dll
15:39:01.0296 0804  WinRM - ok
15:39:01.0358 0804  [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:39:01.0358 0804  WinUsb - ok
15:39:01.0405 0804  [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc        C:\Windows\System32\wlansvc.dll
15:39:01.0420 0804  Wlansvc - ok
15:39:01.0498 0804  [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc        C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:39:01.0530 0804  wlidsvc - ok
15:39:01.0639 0804  [ E1E0B1EFAB0A1BA7DF4778D9AE517F7C ] WMCoreService  C:\Program Files\Dell\Dell WWAN\WMCore\mini_WMCore.exe
15:39:01.0639 0804  WMCoreService - ok
15:39:01.0639 0804  [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi        C:\Windows\system32\DRIVERS\wmiacpi.sys
15:39:01.0639 0804  WmiAcpi - ok
15:39:01.0654 0804  [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:39:01.0654 0804  wmiApSrv - ok
15:39:01.0701 0804  [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc  C:\Program Files\Windows Media Player\wmpnetwk.exe
15:39:01.0717 0804  WMPNetworkSvc - ok
15:39:01.0748 0804  [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:39:01.0748 0804  WPCSvc - ok
15:39:01.0748 0804  [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:39:01.0748 0804  WPDBusEnum - ok
15:39:01.0764 0804  [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl        C:\Windows\system32\drivers\ws2ifsl.sys
15:39:01.0764 0804  ws2ifsl - ok
15:39:01.0795 0804  [ A661A76333057B383A06E65F0073222F ] wscsvc          C:\Windows\System32\wscsvc.dll
15:39:01.0810 0804  wscsvc - ok
15:39:01.0810 0804  WSearch - ok
15:39:01.0888 0804  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
15:39:01.0920 0804  wuauserv - ok
15:39:01.0935 0804  [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:39:01.0935 0804  WudfPf - ok
15:39:01.0966 0804  [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:39:01.0966 0804  WUDFRd - ok
15:39:01.0998 0804  [ DDEE3682FE97037C45F4D7AB467CB8B6 ] wudfsvc        C:\Windows\System32\WUDFSvc.dll
15:39:01.0998 0804  wudfsvc - ok
15:39:02.0013 0804  [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc        C:\Windows\System32\wwansvc.dll
15:39:02.0013 0804  WwanSvc - ok
15:39:02.0060 0804  [ F6520E06C15DEA5AB7BB016309FE4BB3 ] ZTEusbmdm6k    C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
15:39:02.0060 0804  ZTEusbmdm6k - ok
15:39:02.0107 0804  [ F6520E06C15DEA5AB7BB016309FE4BB3 ] ZTEusbnmea      C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
15:39:02.0107 0804  ZTEusbnmea - ok
15:39:02.0138 0804  [ F6520E06C15DEA5AB7BB016309FE4BB3 ] ZTEusbser6k    C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
15:39:02.0138 0804  ZTEusbser6k - ok
15:39:02.0169 0804  ================ Scan global ===============================
15:39:02.0200 0804  [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
15:39:02.0232 0804  [ 43B34CADB516800794BDF486E493ED32 ] C:\Windows\system32\winsrv.dll
15:39:02.0232 0804  [ 43B34CADB516800794BDF486E493ED32 ] C:\Windows\system32\winsrv.dll
15:39:02.0278 0804  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
15:39:02.0294 0804  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
15:39:02.0294 0804  [Global] - ok
15:39:02.0294 0804  ================ Scan MBR ==================================
15:39:02.0310 0804  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:39:02.0544 0804  \Device\Harddisk0\DR0 - ok
15:39:02.0544 0804  ================ Scan VBR ==================================
15:39:02.0544 0804  [ 2F6E3E834D5309DB2697B37EB40ED9C7 ] \Device\Harddisk0\DR0\Partition1
15:39:02.0544 0804  \Device\Harddisk0\DR0\Partition1 - ok
15:39:02.0559 0804  [ 58D2D41F42F48C15AF815E50A3802302 ] \Device\Harddisk0\DR0\Partition2
15:39:02.0559 0804  \Device\Harddisk0\DR0\Partition2 - ok
15:39:02.0575 0804  [ 07B11840BE9CEE55CE4FCAF38A344E5A ] \Device\Harddisk0\DR0\Partition3
15:39:02.0575 0804  \Device\Harddisk0\DR0\Partition3 - ok
15:39:02.0590 0804  [ C57C7C09130677F4BCA4168206657BFE ] \Device\Harddisk0\DR0\Partition4
15:39:02.0590 0804  \Device\Harddisk0\DR0\Partition4 - ok
15:39:02.0590 0804  ============================================================
15:39:02.0590 0804  Scan finished
15:39:02.0590 0804  ============================================================
15:39:02.0606 3468  Detected object count: 0
15:39:02.0606 3468  Actual detected object count: 0
15:40:37.0130 0904  ============================================================
15:40:37.0130 0904  Scan started
15:40:37.0130 0904  Mode: Manual; SigCheck; TDLFS;
15:40:37.0130 0904  ============================================================
15:40:37.0754 0904  ================ Scan system memory ========================
15:40:37.0754 0904  System memory - ok
15:40:37.0770 0904  ================ Scan services =============================
15:40:38.0066 0904  [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
15:40:38.0144 0904  1394ohci - ok
15:40:38.0144 0904  [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
15:40:38.0160 0904  ACPI - ok
15:40:38.0175 0904  [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi        C:\Windows\system32\DRIVERS\acpipmi.sys
15:40:38.0191 0904  AcpiPmi - ok
15:40:38.0238 0904  [ AE954C42547605408CDDF03BB13845B8 ] acsock          C:\Windows\system32\DRIVERS\acsock.sys
15:40:38.0253 0904  acsock - ok
15:40:38.0378 0904  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:40:38.0394 0904  AdobeARMservice - ok
15:40:38.0425 0904  [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx        C:\Windows\system32\DRIVERS\adp94xx.sys
15:40:38.0441 0904  adp94xx - ok
15:40:38.0441 0904  [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci        C:\Windows\system32\DRIVERS\adpahci.sys
15:40:38.0456 0904  adpahci - ok
15:40:38.0472 0904  [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320        C:\Windows\system32\DRIVERS\adpu320.sys
15:40:38.0487 0904  adpu320 - ok
15:40:38.0503 0904  [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc    C:\Windows\System32\aelupsvc.dll
15:40:38.0534 0904  AeLookupSvc - ok
15:40:38.0581 0904  [ 0DB7A48388D54D154EBEC120461A0FCD ] AFD            C:\Windows\system32\drivers\afd.sys
15:40:38.0612 0904  AFD - ok
15:40:38.0643 0904  [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
15:40:38.0643 0904  agp440 - ok
15:40:38.0659 0904  [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx        C:\Windows\system32\DRIVERS\djsvs.sys
15:40:38.0675 0904  aic78xx - ok
15:40:38.0675 0904  [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG            C:\Windows\System32\alg.exe
15:40:38.0721 0904  ALG - ok
15:40:38.0721 0904  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
15:40:38.0737 0904  aliide - ok
15:40:38.0753 0904  [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp          C:\Windows\system32\DRIVERS\amdagp.sys
15:40:38.0753 0904  amdagp - ok
15:40:38.0768 0904  [ CD5914170297126B6266860198D1D4F0 ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
15:40:38.0768 0904  amdide - ok
15:40:38.0784 0904  [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8          C:\Windows\system32\DRIVERS\amdk8.sys
15:40:38.0799 0904  AmdK8 - ok
15:40:38.0815 0904  [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:40:38.0831 0904  AmdPPM - ok
15:40:38.0862 0904  [ 19CE906B4CDC11FC4FEF5745F33A63B6 ] amdsata        C:\Windows\system32\drivers\amdsata.sys
15:40:38.0877 0904  amdsata - ok
15:40:38.0877 0904  [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
15:40:38.0893 0904  amdsbs - ok
15:40:38.0909 0904  [ 869E67D66BE326A5A9159FBA8746FA70 ] amdxata        C:\Windows\system32\drivers\amdxata.sys
15:40:38.0924 0904  amdxata - ok
15:40:39.0080 0904  [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
15:40:39.0096 0904  AntiVirSchedulerService - ok
15:40:39.0127 0904  [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
15:40:39.0143 0904  AntiVirService - ok
15:40:39.0158 0904  [ FEB834C02CE1E84B6A38F953CA067706 ] AppID          C:\Windows\system32\drivers\appid.sys
15:40:39.0189 0904  AppID - ok
15:40:39.0205 0904  [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:40:39.0252 0904  AppIDSvc - ok
15:40:39.0267 0904  [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo        C:\Windows\System32\appinfo.dll
15:40:39.0283 0904  Appinfo - ok
15:40:39.0314 0904  [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt        C:\Windows\System32\appmgmts.dll
15:40:39.0345 0904  AppMgmt - ok
15:40:39.0345 0904  [ 2932004F49677BD84DBC72EDB754FFB3 ] arc            C:\Windows\system32\DRIVERS\arc.sys
15:40:39.0361 0904  arc - ok
15:40:39.0361 0904  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
15:40:39.0377 0904  arcsas - ok
15:40:39.0377 0904  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:40:39.0408 0904  AsyncMac - ok
15:40:39.0423 0904  [ 338C86357871C167A96AB976519BF59E ] atapi          C:\Windows\system32\DRIVERS\atapi.sys
15:40:39.0423 0904  atapi - ok
15:40:39.0439 0904  [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:40:39.0501 0904  AudioEndpointBuilder - ok
15:40:39.0517 0904  [ 510C873BFA135AA829F4180352772734 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
15:40:39.0548 0904  Audiosrv - ok
15:40:39.0579 0904  [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
15:40:39.0579 0904  avgntflt - ok
15:40:39.0595 0904  [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
15:40:39.0611 0904  avipbb - ok
15:40:39.0626 0904  [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
15:40:39.0642 0904  avkmgr - ok
15:40:39.0657 0904  [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:40:39.0689 0904  AxInstSV - ok
15:40:39.0720 0904  [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv        C:\Windows\system32\DRIVERS\bxvbdx.sys
15:40:39.0735 0904  b06bdrv - ok
15:40:39.0767 0904  [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
15:40:39.0813 0904  b57nd60x - ok
15:40:39.0891 0904  [ 9E209171C51B1D750F53777253B80E81 ] BCM43XX        C:\Windows\system32\DRIVERS\bcmwl6.sys
15:40:39.0969 0904  BCM43XX - ok
15:40:40.0016 0904  [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:40:40.0032 0904  BDESVC - ok
15:40:40.0032 0904  [ 505506526A9D467307B3C393DEDAF858 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:40:40.0079 0904  Beep - ok
15:40:40.0094 0904  [ 85AC71C045CEB054ED48A7841AAE0C11 ] BFE            C:\Windows\System32\bfe.dll
15:40:40.0157 0904  BFE - ok
15:40:40.0188 0904  [ 53F476476F55A27F580661BDE09C4EC4 ] BITS            C:\Windows\System32\qmgr.dll
15:40:40.0235 0904  BITS - ok
15:40:40.0235 0904  [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:40:40.0250 0904  blbdrive - ok
15:40:40.0281 0904  [ 9A5C671B7FBAE4865149BB11F59B91B2 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:40:40.0297 0904  bowser - ok
15:40:40.0297 0904  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:40:40.0344 0904  BrFiltLo - ok
15:40:40.0344 0904  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:40:40.0359 0904  BrFiltUp - ok
15:40:40.0391 0904  [ A0E691DC6589D4D2CBE373171D1A49E5 ] Browser        C:\Windows\System32\browser.dll
15:40:40.0422 0904  Browser - ok
15:40:40.0453 0904  [ 845B8CE732E67F3B4133164868C666EA ] Brserid        C:\Windows\System32\Drivers\Brserid.sys
15:40:40.0484 0904  Brserid - ok
15:40:40.0484 0904  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:40:40.0531 0904  BrSerWdm - ok
15:40:40.0531 0904  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:40:40.0547 0904  BrUsbMdm - ok
15:40:40.0562 0904  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:40:40.0578 0904  BrUsbSer - ok
15:40:40.0578 0904  [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
15:40:40.0593 0904  BTHMODEM - ok
15:40:40.0609 0904  [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv        C:\Windows\system32\bthserv.dll
15:40:40.0640 0904  bthserv - ok
15:40:40.0656 0904  [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:40:40.0703 0904  cdfs - ok
15:40:40.0703 0904  [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom          C:\Windows\system32\DRIVERS\cdrom.sys
15:40:40.0734 0904  cdrom - ok
15:40:40.0749 0904  [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc    C:\Windows\System32\certprop.dll
15:40:40.0781 0904  CertPropSvc - ok
15:40:40.0781 0904  [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
15:40:40.0796 0904  circlass - ok
15:40:40.0812 0904  [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS            C:\Windows\system32\CLFS.sys
15:40:40.0827 0904  CLFS - ok
15:40:40.0937 0904  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:40:40.0952 0904  clr_optimization_v2.0.50727_32 - ok
15:40:41.0061 0904  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:40:41.0077 0904  clr_optimization_v4.0.30319_32 - ok
15:40:41.0093 0904  [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:40:41.0108 0904  CmBatt - ok
15:40:41.0108 0904  [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
15:40:41.0124 0904  cmdide - ok
15:40:41.0155 0904  [ DB5E008B3744DD60C8498CBBF2A1CFA6 ] CNG            C:\Windows\system32\Drivers\cng.sys
15:40:41.0171 0904  CNG - ok
15:40:41.0186 0904  [ A6023D3823C37043986713F118A89BEE ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
15:40:41.0202 0904  Compbatt - ok
15:40:41.0202 0904  [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
15:40:41.0217 0904  CompositeBus - ok
15:40:41.0217 0904  COMSysApp - ok
15:40:41.0217 0904  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk        C:\Windows\system32\DRIVERS\crcdisk.sys
15:40:41.0233 0904  crcdisk - ok
15:40:41.0264 0904  [ F2FDE6C8DBAAD44CC58D1E07E4AF4EED ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:40:41.0311 0904  CryptSvc - ok
15:40:41.0358 0904  [ 27C9490BDD0AE48911AB8CF1932591ED ] CSC            C:\Windows\system32\drivers\csc.sys
15:40:41.0358 0904  CSC - ok
15:40:41.0373 0904  [ 56FB5F222EA30D3D3FC459879772CB73 ] CscService      C:\Windows\System32\cscsvc.dll
15:40:41.0389 0904  CscService - ok
15:40:41.0420 0904  [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:40:41.0451 0904  DcomLaunch - ok
15:40:41.0467 0904  [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc      C:\Windows\System32\defragsvc.dll
15:40:41.0514 0904  defragsvc - ok
15:40:41.0545 0904  [ 83D1ECEA8FAAE75604C0FA49AC7AD996 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:40:41.0576 0904  DfsC - ok
15:40:41.0607 0904  [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:40:41.0639 0904  Dhcp - ok
15:40:41.0654 0904  [ 1A050B0274BFB3890703D490F330C0DA ] discache        C:\Windows\system32\drivers\discache.sys
15:40:41.0685 0904  discache - ok
15:40:41.0685 0904  [ 565003F326F99802E68CA78F2A68E9FF ] Disk            C:\Windows\system32\DRIVERS\disk.sys
15:40:41.0701 0904  Disk - ok
15:40:41.0732 0904  [ B15BE77A2BACF9C3177D27518AFE26A9 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:40:41.0779 0904  Dnscache - ok
15:40:41.0810 0904  [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc        C:\Windows\System32\dot3svc.dll
15:40:41.0857 0904  dot3svc - ok
15:40:41.0888 0904  [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS            C:\Windows\system32\dps.dll
15:40:41.0935 0904  DPS - ok
15:40:41.0951 0904  [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud        C:\Windows\system32\drivers\drmkaud.sys
15:40:41.0982 0904  drmkaud - ok
15:40:42.0013 0904  [ 1679A4669326CB1A67CC95658D273234 ] DXGKrnl        C:\Windows\System32\drivers\dxgkrnl.sys
15:40:42.0044 0904  DXGKrnl - ok
15:40:42.0060 0904  [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost        C:\Windows\System32\eapsvc.dll
15:40:42.0107 0904  EapHost - ok
15:40:42.0169 0904  [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv          C:\Windows\system32\DRIVERS\evbdx.sys
15:40:42.0231 0904  ebdrv - ok
15:40:42.0263 0904  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] EFS            C:\Windows\System32\lsass.exe
15:40:42.0325 0904  EFS - ok
15:40:42.0403 0904  [ 1697C39978CD69F6FBC15302EDCECE1F ] ehRecvr        C:\Windows\ehome\ehRecvr.exe
15:40:42.0450 0904  ehRecvr - ok
15:40:42.0465 0904  [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched        C:\Windows\ehome\ehsched.exe
15:40:42.0497 0904  ehSched - ok
15:40:42.0512 0904  [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor        C:\Windows\system32\DRIVERS\elxstor.sys
15:40:42.0528 0904  elxstor - ok
15:40:42.0528 0904  [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
15:40:42.0559 0904  ErrDev - ok
15:40:42.0606 0904  [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem    C:\Windows\system32\es.dll
15:40:42.0653 0904  EventSystem - ok
15:40:42.0653 0904  [ 2DC9108D74081149CC8B651D3A26207F ] exfat          C:\Windows\system32\drivers\exfat.sys
15:40:42.0715 0904  exfat - ok
15:40:42.0715 0904  [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat        C:\Windows\system32\drivers\fastfat.sys
15:40:42.0746 0904  fastfat - ok
15:40:42.0762 0904  [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax            C:\Windows\system32\fxssvc.exe
15:40:42.0793 0904  Fax - ok
15:40:42.0793 0904  [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc            C:\Windows\system32\DRIVERS\fdc.sys
15:40:42.0840 0904  fdc - ok
15:40:42.0840 0904  [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost        C:\Windows\system32\fdPHost.dll
15:40:42.0887 0904  fdPHost - ok
15:40:42.0887 0904  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub        C:\Windows\system32\fdrespub.dll
15:40:42.0918 0904  FDResPub - ok
15:40:42.0918 0904  [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:40:42.0933 0904  FileInfo - ok
15:40:42.0933 0904  [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace      C:\Windows\system32\drivers\filetrace.sys
15:40:42.0965 0904  Filetrace - ok
15:40:42.0965 0904  [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
15:40:42.0996 0904  flpydisk - ok
15:40:42.0996 0904  [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:40:43.0011 0904  FltMgr - ok
15:40:43.0043 0904  [ 7FE4995528A7529A761875151EE3D512 ] FontCache      C:\Windows\system32\FntCache.dll
15:40:43.0089 0904  FontCache - ok
15:40:43.0152 0904  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:40:43.0152 0904  FontCache3.0.0.0 - ok
15:40:43.0152 0904  [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends      C:\Windows\system32\drivers\FsDepends.sys
15:40:43.0167 0904  FsDepends - ok
15:40:43.0199 0904  [ 500A9814FD9446A8126858A5A7F7D273 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:40:43.0199 0904  Fs_Rec - ok
15:40:43.0230 0904  [ DAFBD9FE39197495AED6D51F3B85B5D2 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:40:43.0245 0904  fvevol - ok
15:40:43.0261 0904  [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
15:40:43.0277 0904  gagp30kx - ok
15:40:43.0370 0904  [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc          C:\Windows\System32\gpsvc.dll
15:40:43.0386 0904  gpsvc - ok
15:40:43.0511 0904  [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:40:43.0557 0904  hcw85cir - ok
15:40:43.0573 0904  [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:40:43.0604 0904  HdAudAddService - ok
15:40:43.0604 0904  [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:40:43.0651 0904  HDAudBus - ok
15:40:43.0682 0904  [ A88485DC6A7136C10D9A6C7E38FDFE3C ] HECI            C:\Windows\system32\DRIVERS\HECI.sys
15:40:43.0698 0904  HECI - ok
15:40:43.0713 0904  [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt        C:\Windows\system32\DRIVERS\HidBatt.sys
15:40:43.0729 0904  HidBatt - ok
15:40:43.0745 0904  [ 89448F40E6DF260C206A193A4683BA78 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
15:40:43.0760 0904  HidBth - ok
15:40:43.0776 0904  [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr          C:\Windows\system32\DRIVERS\hidir.sys
15:40:43.0791 0904  HidIr - ok
15:40:43.0807 0904  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv        C:\Windows\system32\hidserv.dll
15:40:43.0854 0904  hidserv - ok
15:40:43.0854 0904  [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:40:43.0869 0904  HidUsb - ok
15:40:43.0901 0904  [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:40:43.0932 0904  hkmsvc - ok
15:40:43.0947 0904  [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:40:43.0994 0904  HomeGroupListener - ok
15:40:44.0010 0904  [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:40:44.0041 0904  HomeGroupProvider - ok
15:40:44.0041 0904  [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
15:40:44.0057 0904  HpSAMD - ok
15:40:44.0072 0904  [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:40:44.0119 0904  HTTP - ok
15:40:44.0119 0904  [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:40:44.0135 0904  hwpolicy - ok
15:40:44.0135 0904  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
15:40:44.0150 0904  i8042prt - ok
15:40:44.0150 0904  [ 934AF4D7C5F457B9F0743F4299B77B67 ] iaStorV        C:\Windows\system32\drivers\iaStorV.sys
15:40:44.0181 0904  iaStorV - ok
15:40:44.0244 0904  [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc          C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:40:44.0259 0904  idsvc - ok
15:40:44.0462 0904  [ 24CCEC128BEBB148E50C6093523AD686 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
15:40:44.0618 0904  igfx - ok
15:40:44.0634 0904  [ 4173FF5708F3236CF25195FECD742915 ] iirsp          C:\Windows\system32\DRIVERS\iirsp.sys
15:40:44.0634 0904  iirsp - ok
15:40:44.0681 0904  [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT          C:\Windows\System32\ikeext.dll
15:40:44.0712 0904  IKEEXT - ok
15:40:44.0743 0904  [ E3C36AC5AE87EC970AE8EA2A93D59AE1 ] Impcd          C:\Windows\system32\DRIVERS\Impcd.sys
15:40:44.0759 0904  Impcd - ok
15:40:44.0774 0904  [ 5576AD2F0039D2BCCCA3567FC0BF981C ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
15:40:44.0805 0904  IntcDAud - ok
15:40:44.0805 0904  [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
15:40:44.0821 0904  intelide - ok
15:40:44.0837 0904  [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:40:44.0852 0904  intelppm - ok
15:40:44.0868 0904  [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum      C:\Windows\system32\ipbusenum.dll
15:40:44.0915 0904  IPBusEnum - ok
15:40:44.0915 0904  [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:40:44.0946 0904  IpFilterDriver - ok
15:40:44.0977 0904  [ 477397B432A256A50EE7E4339EB9EA14 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:40:45.0008 0904  iphlpsvc - ok
15:40:45.0008 0904  [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV        C:\Windows\system32\DRIVERS\IPMIDrv.sys
15:40:45.0039 0904  IPMIDRV - ok
15:40:45.0039 0904  [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT          C:\Windows\system32\drivers\ipnat.sys
15:40:45.0086 0904  IPNAT - ok
15:40:45.0117 0904  [ 42996CFF20A3084A56017B7902307E9F ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:40:45.0133 0904  IRENUM - ok
15:40:45.0133 0904  [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
15:40:45.0149 0904  isapnp - ok
15:40:45.0164 0904  [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
15:40:45.0180 0904  iScsiPrt - ok
15:40:45.0180 0904  [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:40:45.0195 0904  kbdclass - ok
15:40:45.0195 0904  [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:40:45.0211 0904  kbdhid - ok
15:40:45.0227 0904  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] KeyIso          C:\Windows\system32\lsass.exe
15:40:45.0242 0904  KeyIso - ok
15:40:45.0289 0904  [ 52FC17C8589F11747D01D3CF592673D0 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:40:45.0289 0904  KSecDD - ok
15:40:45.0305 0904  [ 3E5474B03568CFAB834DA3C38E8C9EFA ] KSecPkg        C:\Windows\system32\Drivers\ksecpkg.sys
15:40:45.0320 0904  KSecPkg - ok
15:40:45.0351 0904  [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm          C:\Windows\system32\msdtckrm.dll
15:40:45.0414 0904  KtmRm - ok
15:40:45.0539 0904  [ 8F6BF790D3168224C16F2AF68A84438C ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:40:45.0585 0904  LanmanServer - ok
15:40:45.0617 0904  [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:40:45.0648 0904  LanmanWorkstation - ok
15:40:45.0648 0904  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:40:45.0679 0904  lltdio - ok
15:40:45.0710 0904  [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc        C:\Windows\System32\lltdsvc.dll
15:40:45.0773 0904  lltdsvc - ok
15:40:45.0773 0904  [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts        C:\Windows\System32\lmhsvc.dll
15:40:45.0819 0904  lmhosts - ok
15:40:45.0882 0904  [ 5460828F8951D310B42B442877603B8D ] LMS            C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
15:40:45.0897 0904  LMS - ok
15:40:45.0897 0904  [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
15:40:45.0913 0904  LSI_FC - ok
15:40:45.0913 0904  [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS        C:\Windows\system32\DRIVERS\lsi_sas.sys
15:40:45.0929 0904  LSI_SAS - ok
15:40:45.0929 0904  [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:40:45.0944 0904  LSI_SAS2 - ok
15:40:45.0960 0904  [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:40:45.0960 0904  LSI_SCSI - ok
15:40:45.0975 0904  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv          C:\Windows\system32\drivers\luafv.sys
15:40:46.0007 0904  luafv - ok
15:40:46.0038 0904  [ 79EC6C0033776F89DD5131241F0170E1 ] massfilter      C:\Windows\system32\drivers\massfilter.sys
15:40:46.0085 0904  massfilter - ok
15:40:46.0116 0904  [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc        C:\Windows\system32\Mcx2Svc.dll
15:40:46.0131 0904  Mcx2Svc - ok
15:40:46.0131 0904  [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas        C:\Windows\system32\DRIVERS\megasas.sys
15:40:46.0147 0904  megasas - ok
15:40:46.0163 0904  [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
15:40:46.0178 0904  MegaSR - ok
15:40:46.0194 0904  [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS          C:\Windows\system32\mmcss.dll
15:40:46.0209 0904  MMCSS - ok
15:40:46.0225 0904  [ F001861E5700EE84E2D4E52C712F4964 ] Modem          C:\Windows\system32\drivers\modem.sys
15:40:46.0272 0904  Modem - ok
15:40:46.0272 0904  [ 79D10964DE86B292320E9DFE02282A23 ] monitor        C:\Windows\system32\DRIVERS\monitor.sys
15:40:46.0287 0904  monitor - ok
15:40:46.0287 0904  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:40:46.0303 0904  mouclass - ok
15:40:46.0319 0904  [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:40:46.0350 0904  mouhid - ok
15:40:46.0350 0904  [ 921C18727C5920D6C0300736646931C2 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:40:46.0365 0904  mountmgr - ok
15:40:46.0412 0904  [ F906EAAC941FA2FA67A21DF2732EA379 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:40:46.0428 0904  MozillaMaintenance - ok
15:40:46.0443 0904  [ 2AF5997438C55FB79D33D015C30E1974 ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
15:40:46.0459 0904  mpio - ok
15:40:46.0475 0904  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:40:46.0506 0904  mpsdrv - ok
15:40:46.0521 0904  [ 5CD996CECF45CBC3E8D109C86B82D69E ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:40:46.0584 0904  MpsSvc - ok
15:40:46.0584 0904  [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:40:46.0615 0904  MRxDAV - ok
15:40:46.0646 0904  [ CA7570E42522E24324A12161DB14EC02 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:40:46.0677 0904  mrxsmb - ok
15:40:46.0709 0904  [ F965C3AB2B2AE5C378F4562486E35051 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:40:46.0740 0904  mrxsmb10 - ok
15:40:46.0755 0904  [ 25C38264A3C72594DD21D355D70D7A5D ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:40:46.0787 0904  mrxsmb20 - ok
15:40:46.0787 0904  [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
15:40:46.0802 0904  msahci - ok
15:40:46.0818 0904  [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm          C:\Windows\system32\DRIVERS\msdsm.sys
15:40:46.0818 0904  msdsm - ok
15:40:46.0849 0904  [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC          C:\Windows\System32\msdtc.exe
15:40:46.0880 0904  MSDTC - ok
15:40:46.0896 0904  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:40:46.0911 0904  Msfs - ok
15:40:46.0927 0904  [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf      C:\Windows\System32\drivers\mshidkmdf.sys
15:40:46.0958 0904  mshidkmdf - ok
15:40:46.0974 0904  [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
15:40:46.0989 0904  msisadrv - ok
15:40:47.0005 0904  [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI        C:\Windows\system32\iscsiexe.dll
15:40:47.0052 0904  MSiSCSI - ok
15:40:47.0052 0904  msiserver - ok
15:40:47.0067 0904  [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV        C:\Windows\system32\drivers\MSKSSRV.sys
15:40:47.0099 0904  MSKSSRV - ok
15:40:47.0099 0904  [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:40:47.0130 0904  MSPCLOCK - ok
15:40:47.0145 0904  [ F456E973590D663B1073E9C463B40932 ] MSPQM          C:\Windows\system32\drivers\MSPQM.sys
15:40:47.0177 0904  MSPQM - ok
15:40:47.0177 0904  [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC          C:\Windows\system32\drivers\MsRPC.sys
15:40:47.0192 0904  MsRPC - ok
15:40:47.0208 0904  [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
15:40:47.0208 0904  mssmbios - ok
15:40:47.0223 0904  [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE          C:\Windows\system32\drivers\MSTEE.sys
15:40:47.0255 0904  MSTEE - ok
15:40:47.0255 0904  [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
15:40:47.0270 0904  MTConfig - ok
15:40:47.0286 0904  [ 159FAD02F64E6381758C990F753BCC80 ] Mup            C:\Windows\system32\Drivers\mup.sys
15:40:47.0286 0904  Mup - ok
15:40:47.0317 0904  [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent        C:\Windows\system32\qagentRT.dll
15:40:47.0364 0904  napagent - ok
15:40:47.0395 0904  [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP    C:\Windows\system32\DRIVERS\nwifi.sys
15:40:47.0426 0904  NativeWifiP - ok
15:40:47.0442 0904  [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:40:47.0457 0904  NDIS - ok
15:40:47.0457 0904  [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap        C:\Windows\system32\DRIVERS\ndiscap.sys
15:40:47.0504 0904  NdisCap - ok
15:40:47.0504 0904  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:40:47.0535 0904  NdisTapi - ok
15:40:47.0535 0904  [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio        C:\Windows\system32\DRIVERS\ndisuio.sys
15:40:47.0582 0904  Ndisuio - ok
15:40:47.0582 0904  [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan        C:\Windows\system32\DRIVERS\ndiswan.sys
15:40:47.0645 0904  NdisWan - ok
15:40:47.0660 0904  [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy        C:\Windows\system32\drivers\NDProxy.sys
15:40:47.0676 0904  NDProxy - ok
15:40:47.0691 0904  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS        C:\Windows\system32\DRIVERS\netbios.sys
15:40:47.0738 0904  NetBIOS - ok
15:40:47.0738 0904  [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT          C:\Windows\system32\DRIVERS\netbt.sys
15:40:47.0769 0904  NetBT - ok
15:40:47.0801 0904  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] Netlogon        C:\Windows\system32\lsass.exe
15:40:47.0816 0904  Netlogon - ok
15:40:47.0847 0904  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman          C:\Windows\System32\netman.dll
15:40:47.0863 0904  Netman - ok
15:40:47.0879 0904  [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm        C:\Windows\System32\netprofm.dll
15:40:47.0910 0904  netprofm - ok
15:40:47.0925 0904  [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:40:47.0941 0904  NetTcpPortSharing - ok
15:40:47.0957 0904  [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960        C:\Windows\system32\DRIVERS\nfrd960.sys
15:40:47.0957 0904  nfrd960 - ok
15:40:47.0972 0904  [ 2226496E34BD40734946A054B1CD657F ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:40:48.0019 0904  NlaSvc - ok
15:40:48.0019 0904  [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:40:48.0050 0904  Npfs - ok
15:40:48.0081 0904  [ BA387E955E890C8A88306D9B8D06BF17 ] nsi            C:\Windows\system32\nsisvc.dll
15:40:48.0097 0904  nsi - ok
15:40:48.0113 0904  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:40:48.0144 0904  nsiproxy - ok
15:40:48.0206 0904  [ 5126C5402C730C2A953275D8497A4715 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:40:48.0237 0904  Ntfs - ok
15:40:48.0269 0904  [ F9756A98D69098DCA8945D62858A812C ] Null            C:\Windows\system32\drivers\Null.sys
15:40:48.0284 0904  Null - ok
15:40:48.0315 0904  [ F1B0BED906F97E16F6D0C3629D2F21C6 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:40:48.0331 0904  nvraid - ok
15:40:48.0347 0904  [ 4520B63899E867F354EE012D34E11536 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:40:48.0362 0904  nvstor - ok
15:40:48.0362 0904  [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
15:40:48.0378 0904  nv_agp - ok
15:40:48.0378 0904  [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
15:40:48.0409 0904  ohci1394 - ok
15:40:48.0425 0904  [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:40:48.0471 0904  p2pimsvc - ok
15:40:48.0487 0904  [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:40:48.0503 0904  p2psvc - ok
15:40:48.0503 0904  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport        C:\Windows\system32\DRIVERS\parport.sys
15:40:48.0534 0904  Parport - ok
15:40:48.0596 0904  [ 66D3415C159741ADE7038A277EFFF99F ] partmgr        C:\Windows\system32\drivers\partmgr.sys
15:40:48.0612 0904  partmgr - ok
15:40:48.0612 0904  [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
15:40:48.0643 0904  Parvdm - ok
15:40:48.0643 0904  [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:40:48.0659 0904  PcaSvc - ok
15:40:48.0659 0904  [ C858CB77C577780ECC456A892E7E7D0F ] pci            C:\Windows\system32\DRIVERS\pci.sys
15:40:48.0674 0904  pci - ok
15:40:48.0690 0904  [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
15:40:48.0690 0904  pciide - ok
15:40:48.0721 0904  [ F396431B31693E71E8A80687EF523506 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
15:40:48.0737 0904  pcmcia - ok
15:40:48.0737 0904  [ 250F6B43D2B613172035C6747AEEB19F ] pcw            C:\Windows\system32\drivers\pcw.sys
15:40:48.0752 0904  pcw - ok
15:40:48.0768 0904  [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:40:48.0815 0904  PEAUTH - ok
15:40:48.0877 0904  [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc    C:\Windows\system32\peerdistsvc.dll
15:40:48.0908 0904  PeerDistSvc - ok
15:40:48.0955 0904  [ 9C1BFF7910C89A1D12E57343475840CB ] pla            C:\Windows\system32\pla.dll
15:40:49.0002 0904  pla - ok
15:40:49.0033 0904  [ 71DEF5EC79774C798342D0EA16E41780 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:40:49.0095 0904  PlugPlay - ok
15:40:49.0111 0904  [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg    C:\Windows\system32\pnrpauto.dll
15:40:49.0142 0904  PNRPAutoReg - ok
15:40:49.0142 0904  [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc        C:\Windows\system32\pnrpsvc.dll
15:40:49.0158 0904  PNRPsvc - ok
15:40:49.0189 0904  [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent    C:\Windows\System32\ipsecsvc.dll
15:40:49.0236 0904  PolicyAgent - ok
15:40:49.0267 0904  [ DBFF83F709A91049621C1D35DD45C92C ] Power          C:\Windows\system32\umpo.dll
15:40:49.0298 0904  Power - ok
15:40:49.0314 0904  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:40:49.0345 0904  PptpMiniport - ok
15:40:49.0361 0904  [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor      C:\Windows\system32\DRIVERS\processr.sys
15:40:49.0361 0904  Processor - ok
15:40:49.0392 0904  [ AEA3BDBDBA667AA6F678CB38907E4F5E ] ProfSvc        C:\Windows\system32\profsvc.dll
15:40:49.0454 0904  ProfSvc - ok
15:40:49.0470 0904  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:40:49.0470 0904  ProtectedStorage - ok
15:40:49.0501 0904  [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:40:49.0517 0904  Psched - ok
15:40:49.0548 0904  [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
15:40:49.0579 0904  ql2300 - ok
15:40:49.0595 0904  [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
15:40:49.0610 0904  ql40xx - ok
15:40:49.0626 0904  [ 31AC809E7707EB580B2BDB760390765A ] QWAVE          C:\Windows\system32\qwave.dll
15:40:49.0657 0904  QWAVE - ok
15:40:49.0673 0904  [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:40:49.0688 0904  QWAVEdrv - ok
15:40:49.0688 0904  [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:40:49.0735 0904  RasAcd - ok
15:40:49.0766 0904  [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn    C:\Windows\system32\DRIVERS\AgileVpn.sys
15:40:49.0797 0904  RasAgileVpn - ok
15:40:49.0813 0904  [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto        C:\Windows\System32\rasauto.dll
15:40:49.0860 0904  RasAuto - ok
15:40:49.0860 0904  [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp        C:\Windows\system32\DRIVERS\rasl2tp.sys
15:40:49.0891 0904  Rasl2tp - ok
15:40:49.0907 0904  [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan          C:\Windows\System32\rasmans.dll
15:40:49.0953 0904  RasMan - ok
15:40:49.0953 0904  [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:40:50.0000 0904  RasPppoe - ok
15:40:50.0016 0904  [ 44101F495A83EA6401D886E7FD70096B ] RasSstp        C:\Windows\system32\DRIVERS\rassstp.sys
15:40:50.0047 0904  RasSstp - ok
15:40:50.0047 0904  [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss          C:\Windows\system32\DRIVERS\rdbss.sys
15:40:50.0078 0904  rdbss - ok
15:40:50.0094 0904  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:40:50.0109 0904  rdpbus - ok
15:40:50.0109 0904  [ 1E016846895B15A99F9A176A05029075 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:40:50.0156 0904  RDPCDD - ok
15:40:50.0172 0904  [ C5FF95883FFEF704D50C40D21CFB3AB5 ] RDPDR          C:\Windows\system32\drivers\rdpdr.sys
15:40:50.0203 0904  RDPDR - ok
15:40:50.0219 0904  [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:40:50.0234 0904  RDPENCDD - ok
15:40:50.0250 0904  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:40:50.0281 0904  RDPREFMP - ok
15:40:50.0312 0904  [ C5B8D47A4688DE9D335204EA757C2240 ] RDPWD          C:\Windows\system32\drivers\RDPWD.sys
15:40:50.0359 0904  RDPWD - ok
15:40:50.0375 0904  [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:40:50.0375 0904  rdyboost - ok
15:40:50.0421 0904  [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:40:50.0453 0904  RemoteAccess - ok
15:40:50.0484 0904  [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:40:50.0531 0904  RemoteRegistry - ok
15:40:50.0562 0904  [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:40:50.0609 0904  RpcEptMapper - ok
15:40:50.0624 0904  [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator      C:\Windows\system32\locator.exe
15:40:50.0655 0904  RpcLocator - ok
15:40:50.0671 0904  [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs          C:\Windows\system32\rpcss.dll
15:40:50.0702 0904  RpcSs - ok
15:40:50.0718 0904  [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:40:50.0749 0904  rspndr - ok
15:40:50.0796 0904  [ 7DFD48E24479B68B258D8770121155A0 ] RTL8167        C:\Windows\system32\DRIVERS\Rt86win7.sys
15:40:50.0811 0904  RTL8167 - ok
15:40:50.0827 0904  [ 5423D8437051E89DD34749F242C98648 ] s3cap          C:\Windows\system32\DRIVERS\vms3cap.sys
15:40:50.0843 0904  s3cap - ok
15:40:50.0858 0904  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] SamSs          C:\Windows\system32\lsass.exe
15:40:50.0874 0904  SamSs - ok
15:40:50.0874 0904  [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
15:40:50.0889 0904  sbp2port - ok
15:40:50.0921 0904  [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:40:50.0936 0904  SCardSvr - ok
15:40:50.0952 0904  [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:40:50.0983 0904  scfilter - ok
15:40:51.0030 0904  [ DF1E5C82E4D09CF8105CC644980C4803 ] Schedule        C:\Windows\system32\schedsvc.dll
15:40:51.0092 0904  Schedule - ok
15:40:51.0108 0904  [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc    C:\Windows\System32\certprop.dll
15:40:51.0139 0904  SCPolicySvc - ok
15:40:51.0155 0904  [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:40:51.0170 0904  SDRSVC - ok
15:40:51.0170 0904  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:40:51.0217 0904  secdrv - ok
15:40:51.0217 0904  [ A59B3A4442C52060CC7A85293AA3546F ] seclogon        C:\Windows\system32\seclogon.dll
15:40:51.0248 0904  seclogon - ok
15:40:51.0264 0904  [ DCB7FCDCC97F87360F75D77425B81737 ] SENS            C:\Windows\System32\sens.dll
15:40:51.0311 0904  SENS - ok
15:40:51.0326 0904  [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:40:51.0357 0904  SensrSvc - ok
15:40:51.0357 0904  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum        C:\Windows\system32\DRIVERS\serenum.sys
15:40:51.0389 0904  Serenum - ok
15:40:51.0389 0904  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:40:51.0420 0904  Serial - ok
15:40:51.0420 0904  [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
15:40:51.0451 0904  sermouse - ok
15:40:51.0467 0904  [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv      C:\Windows\system32\sessenv.dll
15:40:51.0498 0904  SessionEnv - ok
15:40:51.0498 0904  [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk        C:\Windows\system32\DRIVERS\sffdisk.sys
15:40:51.0529 0904  sffdisk - ok
15:40:51.0545 0904  [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
15:40:51.0560 0904  sffp_mmc - ok
15:40:51.0560 0904  [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd        C:\Windows\system32\DRIVERS\sffp_sd.sys
15:40:51.0591 0904  sffp_sd - ok
15:40:51.0591 0904  [ DB96666CC8312EBC45032F30B007A547 ] sfloppy        C:\Windows\system32\DRIVERS\sfloppy.sys
15:40:51.0607 0904  sfloppy - ok
15:40:51.0638 0904  [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:40:51.0669 0904  SharedAccess - ok
15:40:51.0685 0904  [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:40:51.0716 0904  ShellHWDetection - ok
15:40:51.0716 0904  [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp          C:\Windows\system32\DRIVERS\sisagp.sys
15:40:51.0732 0904  sisagp - ok
15:40:51.0732 0904  [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:40:51.0747 0904  SiSRaid2 - ok
15:40:51.0747 0904  [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
15:40:51.0763 0904  SiSRaid4 - ok
15:40:51.0779 0904  [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb            C:\Windows\system32\DRIVERS\smb.sys
15:40:51.0810 0904  Smb - ok
15:40:51.0825 0904  [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:40:51.0857 0904  SNMPTRAP - ok
15:40:51.0857 0904  [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr          C:\Windows\system32\drivers\spldr.sys
15:40:51.0857 0904  spldr - ok
15:40:51.0903 0904  [ E17323B0AA9FB3FF9945731D736EDA2F ] Spooler        C:\Windows\System32\spoolsv.exe
15:40:51.0935 0904  Spooler - ok
15:40:52.0013 0904  [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc          C:\Windows\system32\sppsvc.exe
15:40:52.0075 0904  sppsvc - ok
15:40:52.0091 0904  [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify    C:\Windows\system32\sppuinotify.dll
15:40:52.0137 0904  sppuinotify - ok
15:40:52.0184 0904  [ C4A027B8C0BD3FC0699F41FA5E9E0C87 ] srv            C:\Windows\system32\DRIVERS\srv.sys
15:40:52.0215 0904  srv - ok
15:40:52.0247 0904  [ 414BB592CAD8A79649D01F9D94318FB3 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:40:52.0262 0904  srv2 - ok
15:40:52.0309 0904  [ FF207D67700AA18242AAF985D3E7D8F4 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:40:52.0340 0904  srvnet - ok
15:40:52.0356 0904  [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV        C:\Windows\System32\ssdpsrv.dll
15:40:52.0371 0904  SSDPSRV - ok
15:40:52.0403 0904  [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
15:40:52.0418 0904  ssmdrv - ok
15:40:52.0418 0904  [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc        C:\Windows\system32\sstpsvc.dll
15:40:52.0465 0904  SstpSvc - ok
15:40:52.0465 0904  [ DB32D325C192B801DF274BFD12A7E72B ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
15:40:52.0481 0904  stexstor - ok
15:40:52.0496 0904  [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc          C:\Windows\System32\wiaservc.dll
15:40:52.0543 0904  StiSvc - ok
15:40:52.0574 0904  [ 957E346CA948668F2496A6CCF6FF82CC ] storflt        C:\Windows\system32\DRIVERS\vmstorfl.sys
15:40:52.0590 0904  storflt - ok
15:40:52.0605 0904  [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc        C:\Windows\system32\storsvc.dll
15:40:52.0621 0904  StorSvc - ok
15:40:52.0637 0904  [ D5751969DC3E4B88BF482AC8EC9FE019 ] storvsc        C:\Windows\system32\DRIVERS\storvsc.sys
15:40:52.0637 0904  storvsc - ok
15:40:52.0652 0904  [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
15:40:52.0652 0904  swenum - ok
15:40:52.0668 0904  [ A28BD92DF340E57B024BA433165D34D7 ] swprv          C:\Windows\System32\swprv.dll
15:40:52.0699 0904  swprv - ok
15:40:52.0730 0904  [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain        C:\Windows\system32\sysmain.dll
15:40:52.0777 0904  SysMain - ok
15:40:52.0808 0904  [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:40:52.0839 0904  TabletInputService - ok
15:40:52.0855 0904  [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv        C:\Windows\System32\tapisrv.dll
15:40:52.0886 0904  TapiSrv - ok
15:40:52.0902 0904  [ B799D9FDB26111737F58288D8DC172D9 ] TBS            C:\Windows\System32\tbssvc.dll
15:40:52.0933 0904  TBS - ok
15:40:52.0995 0904  [ 55E9965552741F3850CB22CBBA9671ED ] Tcpip          C:\Windows\system32\drivers\tcpip.sys
15:40:53.0027 0904  Tcpip - ok
15:40:53.0058 0904  [ 55E9965552741F3850CB22CBBA9671ED ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:40:53.0089 0904  TCPIP6 - ok
15:40:53.0105 0904  [ E64444523ADD154F86567C469BC0B17F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:40:53.0151 0904  tcpipreg - ok
15:40:53.0151 0904  [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:40:53.0198 0904  TDPIPE - ok
15:40:53.0229 0904  [ 7156308896D34EA75A582F9A09E50C17 ] TDTCP          C:\Windows\system32\drivers\tdtcp.sys
15:40:53.0245 0904  TDTCP - ok
15:40:53.0261 0904  [ CB39E896A2A83702D1737BFD402B3542 ] tdx            C:\Windows\system32\DRIVERS\tdx.sys
15:40:53.0292 0904  tdx - ok
15:40:53.0307 0904  [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
15:40:53.0323 0904  TermDD - ok
15:40:53.0339 0904  [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService    C:\Windows\System32\termsrv.dll
15:40:53.0385 0904  TermService - ok
15:40:53.0401 0904  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes          C:\Windows\system32\themeservice.dll
15:40:53.0432 0904  Themes - ok
15:40:53.0448 0904  [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER    C:\Windows\system32\mmcss.dll
15:40:53.0479 0904  THREADORDER - ok
15:40:53.0495 0904  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks          C:\Windows\System32\trkwks.dll
15:40:53.0526 0904  TrkWks - ok
15:40:53.0573 0904  [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:40:53.0573 0904  TrustedInstaller - ok
15:40:53.0588 0904  [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:40:53.0651 0904  tssecsrv - ok
15:40:53.0666 0904  [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:40:53.0697 0904  tunnel - ok
15:40:53.0697 0904  [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
15:40:53.0713 0904  uagp35 - ok
15:40:53.0838 0904  [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:40:53.0900 0904  udfs - ok
15:40:54.0025 0904  [ 2E071263A409931F8AFF3A6A656E920C ] UI Assistant Service C:\Program Files\1&1 Surf-Stick\AssistantServices.exe
15:40:54.0041 0904  UI Assistant Service - ok
15:40:54.0072 0904  [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect      C:\Windows\system32\UI0Detect.exe
15:40:54.0087 0904  UI0Detect - ok
15:40:54.0087 0904  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
15:40:54.0103 0904  uliagpkx - ok
15:40:54.0119 0904  [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus          C:\Windows\system32\DRIVERS\umbus.sys
15:40:54.0119 0904  umbus - ok
15:40:54.0119 0904  [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
15:40:54.0134 0904  UmPass - ok
15:40:54.0165 0904  [ 8ECACA5454844F66386F7BE4AE0D7CD1 ] UmRdpService    C:\Windows\System32\umrdp.dll
15:40:54.0197 0904  UmRdpService - ok
15:40:54.0290 0904  [ 9E89C2D6945389270DE067CE51FF7425 ] UNS            C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
15:40:54.0337 0904  UNS - ok
15:40:54.0368 0904  [ 833FBB672460EFCE8011D262175FAD33 ] upnphost        C:\Windows\System32\upnphost.dll
15:40:54.0415 0904  upnphost - ok
15:40:54.0462 0904  [ C31AE588E403042632DC796CF09E30B0 ] usbccgp        C:\Windows\system32\DRIVERS\usbccgp.sys
15:40:54.0493 0904  usbccgp - ok
15:40:54.0493 0904  [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
15:40:54.0509 0904  usbcir - ok
15:40:54.0524 0904  [ E4C436D914768CE965D5E659BA7EEBD8 ] usbehci        C:\Windows\system32\drivers\usbehci.sys
15:40:54.0555 0904  usbehci - ok
15:40:54.0571 0904  [ BDCD7156EC37448F08633FD899823620 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:40:54.0587 0904  usbhub - ok
15:40:54.0618 0904  [ EB2D819A639015253C871CDA09D91D58 ] usbohci        C:\Windows\system32\drivers\usbohci.sys
15:40:54.0633 0904  usbohci - ok
15:40:54.0665 0904  [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:40:54.0680 0904  usbprint - ok
15:40:54.0711 0904  [ 1C4287739A93594E57E2A9E6A3ED7353 ] USBSTOR        C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:40:54.0758 0904  USBSTOR - ok
15:40:54.0774 0904  [ 22480BF4E5A09192E5E30BA4DDE79FA4 ] usbuhci        C:\Windows\system32\drivers\usbuhci.sys
15:40:54.0805 0904  usbuhci - ok
15:40:54.0836 0904  [ B5F6A992D996282B7FAE7048E50AF83A ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
15:40:54.0852 0904  usbvideo - ok
15:40:54.0867 0904  [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms          C:\Windows\System32\uxsms.dll
15:40:54.0883 0904  UxSms - ok
15:40:54.0914 0904  [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] VaultSvc        C:\Windows\system32\lsass.exe
15:40:54.0914 0904  VaultSvc - ok
15:40:54.0945 0904  [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
15:40:54.0945 0904  vdrvroot - ok
15:40:54.0961 0904  [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds            C:\Windows\System32\vds.exe
15:40:54.0992 0904  vds - ok
15:40:54.0992 0904  [ 17C408214EA61696CEC9C66E388B14F3 ] vga            C:\Windows\system32\DRIVERS\vgapnp.sys
15:40:55.0008 0904  vga - ok
15:40:55.0008 0904  [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave        C:\Windows\System32\drivers\vga.sys
15:40:55.0055 0904  VgaSave - ok
15:40:55.0055 0904  [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp          C:\Windows\system32\DRIVERS\vhdmp.sys
15:40:55.0070 0904  vhdmp - ok
15:40:55.0086 0904  [ C829317A37B4BEA8F39735D4B076E923 ] viaagp          C:\Windows\system32\DRIVERS\viaagp.sys
15:40:55.0086 0904  viaagp - ok
15:40:55.0101 0904  [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7          C:\Windows\system32\DRIVERS\viac7.sys
15:40:55.0117 0904  ViaC7 - ok
15:40:55.0117 0904  [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
15:40:55.0133 0904  viaide - ok
15:40:55.0179 0904  [ 379B349F65F453D2A6E75EA6B7448E49 ] vmbus          C:\Windows\system32\DRIVERS\vmbus.sys
15:40:55.0195 0904  vmbus - ok
15:40:55.0195 0904  [ EC2BBAB4B84D0738C6C83D2234DC36FE ] VMBusHID        C:\Windows\system32\DRIVERS\VMBusHID.sys
15:40:55.0211 0904  VMBusHID - ok
15:40:55.0211 0904  [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
15:40:55.0226 0904  volmgr - ok
15:40:55.0226 0904  [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx        C:\Windows\system32\drivers\volmgrx.sys
15:40:55.0257 0904  volmgrx - ok
15:40:55.0273 0904  [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap        C:\Windows\system32\DRIVERS\volsnap.sys
15:40:55.0273 0904  volsnap - ok
15:40:55.0304 0904  [ 67E65C5108818AD08CC45835D494A4FB ] vpnagent        C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
15:40:55.0320 0904  vpnagent - ok
15:40:55.0351 0904  [ 0D8DF4058901616A4E716AB67D472581 ] vpnva          C:\Windows\system32\DRIVERS\vpnva.sys
15:40:55.0351 0904  vpnva - ok
15:40:55.0367 0904  [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid        C:\Windows\system32\DRIVERS\vsmraid.sys
15:40:55.0367 0904  vsmraid - ok
15:40:55.0413 0904  [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS            C:\Windows\system32\vssvc.exe
15:40:55.0445 0904  VSS - ok
15:40:55.0445 0904  [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
15:40:55.0460 0904  vwifibus - ok
15:40:55.0476 0904  [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:40:55.0491 0904  vwififlt - ok
15:40:55.0491 0904  [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp        C:\Windows\system32\DRIVERS\vwifimp.sys
15:40:55.0523 0904  vwifimp - ok
15:40:55.0523 0904  [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time        C:\Windows\system32\w32time.dll
15:40:55.0554 0904  W32Time - ok
15:40:55.0569 0904  [ DE3721E89C653AA281428C8A69745D90 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
15:40:55.0585 0904  WacomPen - ok
15:40:55.0585 0904  [ 692A712062146E96D28BA0B7D75DE31B ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:40:55.0616 0904  WANARP - ok
15:40:55.0616 0904  [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:40:55.0647 0904  Wanarpv6 - ok
15:40:55.0694 0904  [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc    C:\Windows\system32\Wat\WatAdminSvc.exe
15:40:55.0725 0904  WatAdminSvc - ok
15:40:55.0772 0904  [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine        C:\Windows\system32\wbengine.exe
15:40:55.0819 0904  wbengine - ok
15:40:55.0819 0904  [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:40:55.0835 0904  WbioSrvc - ok
15:40:55.0866 0904  [ 6D9B75275C3E3A5F51AEF81AFFADB2B6 ] wcncsvc        C:\Windows\System32\wcncsvc.dll
15:40:55.0897 0904  wcncsvc - ok
15:40:55.0913 0904  [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:40:55.0944 0904  WcsPlugInService - ok
15:40:55.0959 0904  [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd              C:\Windows\system32\DRIVERS\wd.sys
15:40:55.0959 0904  Wd - ok
15:40:55.0975 0904  [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:40:56.0006 0904  Wdf01000 - ok
15:40:56.0022 0904  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:40:56.0037 0904  WdiServiceHost - ok
15:40:56.0053 0904  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost  C:\Windows\system32\wdi.dll
15:40:56.0069 0904  WdiSystemHost - ok
15:40:56.0100 0904  [ BB5EC38F8D4600119B4720BC5D4211F1 ] WebClient      C:\Windows\System32\webclnt.dll
15:40:56.0131 0904  WebClient - ok
15:40:56.0147 0904  [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:40:56.0178 0904  Wecsvc - ok
15:40:56.0193 0904  [ AC804569BB2364FB6017370258A4091B ] wercplsupport  C:\Windows\System32\wercplsupport.dll
15:40:56.0225 0904  wercplsupport - ok
15:40:56.0225 0904  [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:40:56.0256 0904  WerSvc - ok
15:40:56.0256 0904  [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:40:56.0287 0904  WfpLwf - ok
15:40:56.0303 0904  [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:40:56.0318 0904  WIMMount - ok
15:40:56.0365 0904  [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend      C:\Program Files\Windows Defender\mpsvc.dll
15:40:56.0381 0904  WinDefend - ok
15:40:56.0396 0904  WinHttpAutoProxySvc - ok
15:40:56.0490 0904  [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt        C:\Windows\system32\wbem\WMIsvc.dll
15:40:56.0505 0904  Winmgmt - ok
15:40:56.0552 0904  [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM          C:\Windows\system32\WsmSvc.dll
15:40:56.0583 0904  WinRM - ok
15:40:56.0630 0904  [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:40:56.0646 0904  WinUsb - ok
15:40:56.0677 0904  [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc        C:\Windows\System32\wlansvc.dll
15:40:56.0708 0904  Wlansvc - ok
15:40:56.0771 0904  [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc        C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:40:56.0802 0904  wlidsvc - ok
15:40:56.0895 0904  [ E1E0B1EFAB0A1BA7DF4778D9AE517F7C ] WMCoreService  C:\Program Files\Dell\Dell WWAN\WMCore\mini_WMCore.exe
15:40:56.0927 0904  WMCoreService ( UnsignedFile.Multi.Generic ) - warning
15:40:56.0927 0904  WMCoreService - detected UnsignedFile.Multi.Generic (1)
15:40:56.0927 0904  [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi        C:\Windows\system32\DRIVERS\wmiacpi.sys
15:40:56.0942 0904  WmiAcpi - ok
15:40:56.0958 0904  [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:40:56.0989 0904  wmiApSrv - ok
15:40:57.0020 0904  [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc  C:\Program Files\Windows Media Player\wmpnetwk.exe
15:40:57.0067 0904  WMPNetworkSvc - ok
15:40:57.0083 0904  [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:40:57.0114 0904  WPCSvc - ok
15:40:57.0129 0904  [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:40:57.0129 0904  WPDBusEnum - ok
15:40:57.0145 0904  [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl        C:\Windows\system32\drivers\ws2ifsl.sys
15:40:57.0192 0904  ws2ifsl - ok
15:40:57.0207 0904  [ A661A76333057B383A06E65F0073222F ] wscsvc          C:\Windows\System32\wscsvc.dll
15:40:57.0239 0904  wscsvc - ok
15:40:57.0254 0904  WSearch - ok
15:40:57.0317 0904  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
15:40:57.0348 0904  wuauserv - ok
15:40:57.0363 0904  [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:40:57.0395 0904  WudfPf - ok
15:40:57.0395 0904  [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:40:57.0457 0904  WUDFRd - ok
15:40:57.0473 0904  [ DDEE3682FE97037C45F4D7AB467CB8B6 ] wudfsvc        C:\Windows\System32\WUDFSvc.dll
15:40:57.0504 0904  wudfsvc - ok
15:40:57.0504 0904  [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc        C:\Windows\System32\wwansvc.dll
15:40:57.0535 0904  WwanSvc - ok
15:40:57.0551 0904  [ F6520E06C15DEA5AB7BB016309FE4BB3 ] ZTEusbmdm6k    C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
15:40:57.0582 0904  ZTEusbmdm6k - ok
15:40:57.0613 0904  [ F6520E06C15DEA5AB7BB016309FE4BB3 ] ZTEusbnmea      C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
15:40:57.0613 0904  ZTEusbnmea - ok
15:40:57.0629 0904  [ F6520E06C15DEA5AB7BB016309FE4BB3 ] ZTEusbser6k    C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
15:40:57.0644 0904  ZTEusbser6k - ok
15:40:57.0660 0904  ================ Scan global ===============================
15:40:57.0675 0904  [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
15:40:57.0722 0904  [ 43B34CADB516800794BDF486E493ED32 ] C:\Windows\system32\winsrv.dll
15:40:57.0722 0904  [ 43B34CADB516800794BDF486E493ED32 ] C:\Windows\system32\winsrv.dll
15:40:57.0753 0904  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
15:40:57.0785 0904  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
15:40:57.0785 0904  [Global] - ok
15:40:57.0785 0904  ================ Scan MBR ==================================
15:40:57.0800 0904  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:40:58.0143 0904  \Device\Harddisk0\DR0 - ok
15:40:58.0143 0904  ================ Scan VBR ==================================
15:40:58.0143 0904  [ 2F6E3E834D5309DB2697B37EB40ED9C7 ] \Device\Harddisk0\DR0\Partition1
15:40:58.0143 0904  \Device\Harddisk0\DR0\Partition1 - ok
15:40:58.0159 0904  [ 58D2D41F42F48C15AF815E50A3802302 ] \Device\Harddisk0\DR0\Partition2
15:40:58.0159 0904  \Device\Harddisk0\DR0\Partition2 - ok
15:40:58.0175 0904  [ 07B11840BE9CEE55CE4FCAF38A344E5A ] \Device\Harddisk0\DR0\Partition3
15:40:58.0175 0904  \Device\Harddisk0\DR0\Partition3 - ok
15:40:58.0190 0904  [ C57C7C09130677F4BCA4168206657BFE ] \Device\Harddisk0\DR0\Partition4
15:40:58.0190 0904  \Device\Harddisk0\DR0\Partition4 - ok
15:40:58.0190 0904  ============================================================
15:40:58.0190 0904  Scan finished
15:40:58.0190 0904  ============================================================
15:40:58.0206 4032  Detected object count: 1
15:40:58.0206 4032  Actual detected object count: 1
15:41:04.0399 4032  WMCoreService ( UnsignedFile.Multi.Generic ) - skipped by user
15:41:04.0399 4032  WMCoreService ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:43:38.0672 1676  Deinitialize success
Tausend Dank :-)

cosinus 23.10.2012 19:40
Bitte nun Logs mit GMER und OSAM erstellen und posten.
GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen.
Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst.

Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM!

Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
  • Starte die aswMBR.exe - (aswMBR.exe Anleitung)
    Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten".
  • Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen )
    Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
  • Klicke auf Scan.
  • Warte bitte bis Scan finished successfully im DOS-Fenster steht.
  • Drücke auf Save Log und speichere diese auf dem Desktop.
Poste mir die aswMBR.txt in deiner nächsten Antwort.

Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung

Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).



Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.

Feenkleid 24.10.2012 18:53
So, hoffe ich hab alles richtig gemacht:

[code]
GMER Logfile:
Code:
GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2012-10-24 19:18:08
Windows 6.1.7600  Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 WDC_WD3200BEKT-75PVMT0 rev.01.01A01
Running: 90x4v5bn.exe; Driver: C:\Users\******\AppData\Local\Temp\fwdiypow.sys


---- System - GMER 1.0.15 ----

SSDT            90490476                                  ZwCreateSection
SSDT            90490480                                  ZwRequestWaitReplyPort
SSDT            9049047B                                  ZwSetContextThread
SSDT            90490485                                  ZwSetSecurityObject
SSDT            9049048A                                  ZwSystemDebugControl
SSDT            90490417                                  ZwTerminateProcess

---- Kernel code sections - GMER 1.0.15 ----

.text          ntkrnlpa.exe!ZwRollbackTransaction + 13E9  82C51839 1 Byte  [06]
.text          ntkrnlpa.exe!KiDispatchInterrupt + 5A2    82C763F2 19 Bytes  [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text          ntkrnlpa.exe!RtlSidHashLookup + 340        82C7DCD0 4 Bytes  [76, 04, 49, 90] {JBE 0x6; DEC ECX; NOP }
.text          ntkrnlpa.exe!RtlSidHashLookup + 69C        82C7E02C 4 Bytes  JMP CBCC60B3
.text          ntkrnlpa.exe!RtlSidHashLookup + 6E0        82C7E070 4 Bytes  [7B, 04, 49, 90] {JNP 0x6; DEC ECX; NOP }
.text          ntkrnlpa.exe!RtlSidHashLookup + 75C        82C7E0EC 4 Bytes  [85, 04, 49, 90] {TEST [ECX+ECX*2], EAX; NOP }
.text          ntkrnlpa.exe!RtlSidHashLookup + 7B0        82C7E140 4 Bytes  [8A, 04, 49, 90] {MOV AL, [ECX+ECX*2]; NOP }
.text          ...                                       
.text          autochk.exe                                001E11D1 5 Bytes  [7F, FF, 7F, FF, 7F]
.text          autochk.exe                                001E11DC 4 Bytes  [F0, E6, 29, 01]
.text          autochk.exe                                001E1200 11 Bytes  [2F, B8, 32, 2A, 00, 00, 00, ...]
.text          autochk.exe                                001E120C 19 Bytes  [FF, FF, FF, 7F, FF, FF, FF, ...]
.text          autochk.exe                                001E1220 1 Byte  [00]
.text          ...                                       

---- Devices - GMER 1.0.15 ----

AttachedDevice  \Driver\volmgr \Device\HarddiskVolume1    fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume1    rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume2    fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume2    rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume3    fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume3    rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume4    fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume4    rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume5    fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume5    rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume6    fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume6    rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)

Device          \Driver\ACPI_HAL \Device\0000005c          halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----
--- --- ---


Code:

OSAM Logfile:

       
Code:

       
Report of OSAM: Autorun Manager v5.0.11926.0
hxxp://www.online-solutions.ru/en/
Saved at 19:24:10 on 24.10.2012

OS: Windows 7  (Build 7600), 32-bit
Default Browser: Mozilla Corporation Firefox 15.0.1

Scanner Settings
[x] Rootkits detection (hidden registry)
[x] Rootkits detection (hidden files)
[x] Retrieve files information
[x] Check Microsoft signatures

Filters
[ ] Trusted entries
[ ] Empty entries
[x] Hidden registry entries (rootkit activity)
[x] Exclusively opened files
[x] Not found files
[x] Files without detailed information
[x] Existing files
[ ] Non-startable services
[ ] Non-startable drivers
[x] Active entries
[x] Disabled entries


[Control Panel Objects]
-----( %SystemRoot%\system32 )-----
"FlashPlayerCPLApp.cpl" - "Adobe Systems Incorporated" - C:\Windows\system32\FlashPlayerCPLApp.cpl

[Drivers]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"acsock" (acsock) - "Cisco Systems, Inc." - C:\Windows\System32\DRIVERS\acsock.sys
"avgntflt" (avgntflt) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avgntflt.sys
"avipbb" (avipbb) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avipbb.sys
"avkmgr" (avkmgr) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avkmgr.sys
"fwdiypow" (fwdiypow) - ? - C:\Users\******\AppData\Local\Temp\fwdiypow.sys  (Hidden registry entry, rootkit activity | File not found)
"ssmdrv" (ssmdrv) - "Avira GmbH" - C:\Windows\System32\DRIVERS\ssmdrv.sys

[Explorer]
-----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )-----
{F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll
-----( HKLM\Software\Classes\Protocols\Handler )-----
{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} "Album Download IE Asynchronous Pluggable Protocol Interface" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )-----
{23170F69-40C1-278A-1000-000100020000} "7-Zip Shell Extension" - "Igor Pavlov" - D:\7-Zip\7-zip.dll
{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} "OpenOffice.org Column Handler" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll
{087B3AE3-E237-4467-B8DB-5A38AB959AC9} "OpenOffice.org Infotip Handler" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll
{AE424E85-F6DF-4910-A6A9-438797986431} "OpenOffice.org Property Handler" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\propertyhdl.dll
{63542C48-9552-494A-84F7-73AA6A7C99C1} "OpenOffice.org Property Sheet Handler" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll
{3B092F0C-7696-40E3-A80F-68D74DA84210} "OpenOffice.org Thumbnail Viewer" - ? - C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll
{45AC2688-0253-4ED8-97DE-B5370FA7D48A} "Shell Extension for Malware scanning" - "Avira Operations GmbH & Co. KG" - C:\Program Files\Avira\AntiVir Desktop\shlext.dll
{E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? -   (File not found | COM-object registry key not found)
{2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} "Windows Live Photo Gallery Autoplay Drop Target" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe
{00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} "Windows Live Photo Gallery Editor Drop Target" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe
{00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} "Windows Live Photo Gallery Editor Shim" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
{00F30F90-3E96-453B-AFCD-D71989ECC2C7} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
{00F33137-EE26-412F-8D71-F84E4C2C6625} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
{00F374B7-B390-4884-B372-2FC349F2172B} "Windows Live Photo Gallery Viewer Drop Target" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe
{00F346CB-35A4-465B-8B8F-65A29DBAB1F6} "Windows Live Photo Gallery Viewer Shim" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
{06A2568A-CED6-4187-BB20-400B8C02BE5A} "{06A2568A-CED6-4187-BB20-400B8C02BE5A}" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad )-----
{E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? -   (File not found | COM-object registry key not found)

[Internet Explorer]
-----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )-----
{CC679CB8-DC4B-458B-B817-D447B3B6AC31} "Cisco AnyConnect Secure Mobility Client Web Control" - "Cisco Systems, Inc." - C:\Windows\system32\vpnweb.ocx / vpnweb.cab
{8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_32" - "Sun Microsystems, Inc." - E:\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab
{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} "Java Plug-in 1.6.0_32" - "Sun Microsystems, Inc." - E:\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_32" - "Sun Microsystems, Inc." - E:\bin\npjpi160_32.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab
{7530BFB8-7293-4D34-9923-61A11451AFC5} "OnlineScanner Control" - "ESET" - C:\PROGRA~1\ESET\ESETON~1\ONLINE~1.OCX / hxxp://download.eset.com/special/eos/OnlineScanner.cab
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )-----
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
{DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - E:\bin\jp2ssv.dll
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "Java(tm) Plug-In SSV Helper" - "Sun Microsystems, Inc." - E:\bin\ssv.dll
{9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live ID Sign-in Helper" - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

[LSA Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Control\Lsa )-----
"Security Packages" - "Microsoft Corp." - C:\Windows\system32\livessp.dll

[Logon]
-----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
"Desktopnotes.lnk" - ? - E:\Users\******\Documents\desknote\desktopnotes.exe  (Shortcut exists | File found, but it contains no detailed information | File exists)
-----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )-----
"WirelessManager" - "Ericsson AB" - C:\Program Files\Dell\Dell Mobile Broadband Manager\WirelessManager.exe
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )-----
"Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"avgnt" - "Avira Operations GmbH & Co. KG" - "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
"Cisco AnyConnect Secure Mobility Agent for Windows" - "Cisco Systems, Inc." - "C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
"UIExec" - ? - "C:\Program Files\1&1 Surf-Stick\UIExec.exe"  (File found, but it contains no detailed information)

[Services]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
"Avira Echtzeit Scanner" (AntiVirService) - "Avira Operations GmbH & Co. KG" - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
"Avira Planer" (AntiVirSchedulerService) - "Avira Operations GmbH & Co. KG" - C:\Program Files\Avira\AntiVir Desktop\sched.exe
"Cisco AnyConnect Secure Mobility Agent" (vpnagent) - "Cisco Systems, Inc." - C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
"Intel(R) Management & Security Application User Notification Service" (UNS) - "Intel Corporation" - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
"Intel(R) Management and Security Application Local Management Service" (LMS) - "Intel Corporation" - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
"Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"Mobile Broadband Core Service" (WMCoreService) - ? - C:\Program Files\Dell\Dell WWAN\WMCore\mini_WMCore.exe  (File found, but it contains no detailed information)
"Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
"UI Assistant Service" (UI Assistant Service) - ? - C:\Program Files\1&1 Surf-Stick\AssistantServices.exe  (File found, but it contains no detailed information)
"Windows Live ID Sign-in Assistant" (wlidsvc) - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

[Winsock Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )-----
"WindowsLive Local NSP" - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
"WindowsLive NSP" - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

===[ Logfile end ]=========================================[ Logfile end ]===

--- --- ---

If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru
Code:
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-24 19:25:28
-----------------------------
19:25:28.417    OS Version: Windows 6.1.7600
19:25:28.417    Number of processors: 4 586 0x2505
19:25:28.417    ComputerName: ******-PC  UserName: ******
19:25:29.637    Initialize success
19:28:47.807    AVAST engine defs: 12102400
19:33:34.328    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
19:33:34.328    Disk 0 Vendor: WDC_WD3200BEKT-75PVMT0 01.01A01 Size: 305245MB BusType: 11
19:33:34.488    Disk 0 MBR read successfully
19:33:34.498    Disk 0 MBR scan
19:33:34.518    Disk 0 Windows 7 default MBR code
19:33:34.578    Disk 0 Partition 1 00    DE Dell Utility NTFS          39 MB offset 63
19:33:34.668    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS        15514 MB offset 81920
19:33:34.748    Disk 0 Partition 3 00    07    HPFS/NTFS NTFS        50000 MB offset 31854592
19:33:34.748    Disk 0 Partition - 00    0F Extended LBA            239688 MB offset 134255205
19:33:34.878    Disk 0 Partition 4 00    07    HPFS/NTFS NTFS        9993 MB offset 134255268
19:33:34.888    Disk 0 Partition - 00    05    Extended            229694 MB offset 154722015
19:33:35.028    Disk 0 Partition 5 00    07    HPFS/NTFS NTFS      229694 MB offset 154722078
19:33:35.038    Disk 0 scanning sectors +625137345
19:33:35.508    Disk 0 scanning C:\Windows\system32\drivers
19:35:07.440    Service scanning
19:35:24.520    Modules scanning
19:37:28.570    Disk 0 trace - called modules:
19:37:28.660    ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS PCIIDEX.SYS msahci.sys
19:37:28.660    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86183030]
19:37:28.670    3 CLASSPNP.SYS[8ae0459e] -> nt!IofCallDriver -> [0x86004c10]
19:37:28.670    5 ACPI.sys[8aab33b2] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x85f96908]
19:37:29.440    AVAST engine scan C:\Windows
19:38:14.000    AVAST engine scan C:\Windows\system32
19:42:27.720    AVAST engine scan C:\Windows\system32\drivers
19:42:41.460    AVAST engine scan C:\Users\******
19:49:28.233    Disk 0 MBR has been saved successfully to "C:\Users\******\Desktop\MBR.dat"
19:49:28.243    The log file has been saved successfully to "C:\Users\******\Desktop\aswMBR.txt"
:dankeschoen:

cosinus 24.10.2012 20:13
Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Scans mit Malwarebytes und SASW und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!

Feenkleid 24.10.2012 22:02
Oooooookay... Also hier die Logfiles...
Is es ok, wenn ich wegen der von SUPERAntiSpyware verzweifle?

Code:
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Datenbank Version: v2012.10.24.06

Windows 7 x86 NTFS
Internet Explorer 9.0.8112.16421
****** :: ******-PC [Administrator]

24.10.2012 21:31:08
mbam-log-2012-10-24 (21-31-08).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 310411
Laufzeit: 24 Minute(n), 40 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
Code:
SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 10/24/2012 at 10:58 PM

Application Version : 5.6.1012

Core Rules Database Version : 9466
Trace Rules Database Version: 7278

Scan type      : Complete Scan
Total Scan Time : 00:51:47

Operating System Information
Windows 7 Professional 32-bit (Build 6.01.7600)
UAC On - Administrator

Memory items scanned      : 675
Memory threats detected  : 0
Registry items scanned    : 36786
Registry threats detected : 0
File items scanned        : 121411
File threats detected    : 457

Adware.Tracking Cookie
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\HD2GLPWK.txt [ /serving-sys.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\4AI6875P.txt [ /tradedoubler.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\6DTNLI97.txt [ /mediaplex.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\J1WFB3LB.txt [ /adform.net ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\QH127WPR.txt [ /track.adform.net ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\92FRIHUA.txt [ /c.atdmt.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\BC2413EF.txt [ /doubleclick.net ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\PCB7CR7L.txt [ /atdmt.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\JTZP5QS3.txt [ /www.zanox-affiliate.de ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\9ZFHADRN.txt [ /dyntracker.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\UU8A1A2B.txt [ /ad.zanox.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\IEQ0ASHQ.txt [ /imrworldwide.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\LEDHWQL3.txt [ /eas.apm.emediate.eu ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\YVYLA44Q.txt [ /adfarm1.adition.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\0VRWNAO8.txt [ /smartadserver.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\DZG1UIF5.txt [ /ad.dyntracker.de ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\L534QPHP.txt [ /ad2.adfarm1.adition.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\F9CSV0HF.txt [ /zanox.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\YQWQVLXM.txt [ /zanox-affiliate.de ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\74UJSA6E.txt [ /fastclick.net ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\OJ57ND2D.txt [ /ad1.adfarm1.adition.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\27HNMMGL.txt [ /apmebf.com ]
        C:\Users\******\AppData\Roaming\Microsoft\Windows\Cookies\1IPO9ZD5.txt [ /tracking.quisma.com ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\T6KV5VI2.txt [ Cookie:******@serving-sys.com/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\KAHAAV72.txt [ Cookie:******@revsci.net/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\MGXY9XK3.txt [ Cookie:******@www.googleadservices.com/pagead/conversion/982147603/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\U5CQOQTU.txt [ Cookie:******@ad3.adfarm1.adition.com/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\YEK57YOL.txt [ Cookie:******@mediaplex.com/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\0YRIAOO5.txt [ Cookie:******@tracking.mlsat02.de/tmobile/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\9AOVJYP5.txt [ Cookie:******@xiti.com/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\TGMJL9Z4.txt [ Cookie:******@atdmt.com/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\NTECBRZS.txt [ Cookie:******@adx2.chip.de/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\S0P77ZMF.txt [ Cookie:******@ad.zanox.com/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\05LGEFE1.txt [ Cookie:******@adviva.net/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\38KCKPE1.txt [ Cookie:******@specificclick.net/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\JM2JXQ31.txt [ Cookie:******@adfarm1.adition.com/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\QMWB2W2T.txt [ Cookie:******@im.banner.t-online.de/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\LC89F0NK.txt [ Cookie:******@ad2.adfarm1.adition.com/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\50RNZJOJ.txt [ Cookie:******@zanox-affiliate.de/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\GHGTED7G.txt [ Cookie:******@apmebf.com/ ]
        C:\USERS\******\AppData\Roaming\Microsoft\Windows\Cookies\Low\IFKGYT8P.txt [ Cookie:******@tracking.quisma.com/ ]
        C:\USERS\******\Cookies\HD2GLPWK.txt [ Cookie:******@serving-sys.com/ ]
        C:\USERS\******\Cookies\4AI6875P.txt [ Cookie:******@tradedoubler.com/ ]
        C:\USERS\******\Cookies\6DTNLI97.txt [ Cookie:******@mediaplex.com/ ]
        C:\USERS\******\Cookies\J1WFB3LB.txt [ Cookie:******@adform.net/ ]
        C:\USERS\******\Cookies\PCB7CR7L.txt [ Cookie:******@atdmt.com/ ]
        C:\USERS\******\Cookies\JTZP5QS3.txt [ Cookie:******@www.zanox-affiliate.de/ ]
        C:\USERS\******\Cookies\9ZFHADRN.txt [ Cookie:******@dyntracker.com/ ]
        C:\USERS\******\Cookies\UU8A1A2B.txt [ Cookie:******@ad.zanox.com/ ]
        C:\USERS\******\Cookies\IEQ0ASHQ.txt [ Cookie:******@imrworldwide.com/cgi-bin ]
        C:\USERS\******\Cookies\LEDHWQL3.txt [ Cookie:******@eas.apm.emediate.eu/ ]
        C:\USERS\******\Cookies\YVYLA44Q.txt [ Cookie:******@adfarm1.adition.com/ ]
        C:\USERS\******\Cookies\0VRWNAO8.txt [ Cookie:******@smartadserver.com/ ]
        C:\USERS\******\Cookies\L534QPHP.txt [ Cookie:******@ad2.adfarm1.adition.com/ ]
        C:\USERS\******\Cookies\YQWQVLXM.txt [ Cookie:******@zanox-affiliate.de/ ]
        C:\USERS\******\Cookies\74UJSA6E.txt [ Cookie:******@fastclick.net/ ]
        C:\USERS\******\Cookies\OJ57ND2D.txt [ Cookie:******@ad1.adfarm1.adition.com/ ]
        C:\USERS\******\Cookies\27HNMMGL.txt [ Cookie:******@apmebf.com/ ]
        C:\USERS\******\Cookies\1IPO9ZD5.txt [ Cookie:******@tracking.quisma.com/ ]
        imagesrv.adition.com [ C:\USERS\******\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\FA2GE4MF ]
        .atdmt.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .amazon-adsystem.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .amazon-adsystem.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        tracking.sim-technik.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .apmebf.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .zedo.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .gostats.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adbrite.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .a.revenuemax.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .overture.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .overture.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .xiti.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adxvalue.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adxvalue.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adxvalue.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ad.adnet.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        7.rotator.wigetmedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .liveperson.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        wstat.wibiya.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .mediaforge.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .dealtime.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ru4.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ru4.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .gostats.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .at.atwola.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        tracker.bmtsystem.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adserv.chirurgie-portal.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ads2.iweb.cortica.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adxpose.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .realmedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adbrite.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adbrite.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .112.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .cpvadverts.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .cpvadverts.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .microsoftinternetexplorer.112.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .kontera.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .clickbank.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adbrite.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .clickbank.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .pornofilmpjes.nl [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .pornofilmpjes.nl [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .maximumfindings.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .maximumfindings.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .youporn.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .youporn.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .youporn.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .youporn.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.youporn.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .sexad.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .youporn.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .youporn.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.youporn.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adnetwork.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .cewecolor.112.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .technoratimedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .technoratimedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .opodo.122.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .c.gigcount.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .doubleclick.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .doubleclick.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .unister-adservices.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        servestats.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        count.video.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        count.video.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adserver.mitfahrzentrale.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ad.adnet.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        in.getclicky.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.zanox-affiliate.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .bizrate.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .quartermedia.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .flagcounter.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .flagcounter.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.xxxlutz.at [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.xxxlutz.at [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .xxxlutz.at [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .xxxlutz.at [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .xxxlmoebelhaeuser.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .xxxlmoebelhaeuser.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.xxxlmoebelhaeuser.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.xxxlmoebelhaeuser.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        statse.webtrendslive.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adx.chip.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjlycjcpgdp.stats.esomniture.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adserver.adreactor.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        fr.sitestat.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        fr.sitestat.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        fr.sitestat.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        fr.sitestat.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .traffictrack.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ikea.122.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .lfstmedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .burstnet.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        eas4.emediate.eu [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .lfstmedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .lfstmedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ad-emea.doubleclick.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wnl4cgdjeco.stats.esomniture.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        targeting.revenuemax.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .unrulymedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .revenuemax.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .zanox.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .zanox-affiliate.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .flagcounter.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wfmiwhdjolo.stats.esomniture.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adserving.avazudsp.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adserving.avazudsp.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.adserver01.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .cunda.122.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        counters.gigya.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .fastclick.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adform.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .apmebf.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .eaeacom.112.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .paypal.112.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        7.rotator.wigetmedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        banner.testberichte.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        count.asnetworks.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        stat.dealtime.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        server.adformdsp.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adformdsp.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ru4.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ru4.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ru4.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ru4.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ru4.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .collective-media.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .collective-media.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .2mdn.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.zanox-affiliate.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .bs.serving-sys.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        zbox.zanox.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .overture.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .kabelbw.112.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ad.adnet.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adx2.chip.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .stats.paypal.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        partners.webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .zedo.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .googleads.g.doubleclick.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        tracking.affiliates.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .yieldmanager.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .lucidmedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .insightexpressai.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .insightexpressai.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .insightexpressai.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .insightexpressai.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adviva.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        eas4.emediate.eu [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .zedo.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .questionmarket.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .questionmarket.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        track.zalando.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        edates.traffective-tracking.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        edates.traffective-tracking.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        edates.traffective-tracking.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        edates.traffective-tracking.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        7.rotator.wigetmedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .zedo.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .zedo.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.googleadservices.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        media.gan-online.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tribalfusion.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.dyntracker.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adform.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad4.adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .guj.122.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .myhammer.122.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .deutschepostag.112.2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        server.adform.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adbrite.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .casalemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .casalemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .casalemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .casalemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .casalemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .casalemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        forexyard.advertserve.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.discounto.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .discounto.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.discounto.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        www.discounto.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .discounto.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .discounto.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .discounto.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        server.adform.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad1.adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.adserver01.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .traffictrack.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adserver.doccheck.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adserver.doccheck.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ww251.smartadserver.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .bs.serving-sys.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .zanox-affiliate.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adform.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adx.chip.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adx.chip.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .tracker.vinsight.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adx.chip.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adx.chip.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        adx.chip.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad2.adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad3.adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .doubleclick.net [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .zanox.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\******\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZZS5YBLL.DEFAULT\COOKIES.SQLITE ]
Sollte ich da Remove Threats oder Abbrechen klicken?

cosinus 25.10.2012 08:14
Sieht ok aus, da wurden nur Cookies gefunden, die können alle weg.
Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie )


Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat.

Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/
Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird.

Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da.

Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?

Feenkleid 25.10.2012 15:42
Hey,

also sonst gibts momentan keine Probleme...
Wars das etwas?

:dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen:
:dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen: :dankeschoen:

cosinus 25.10.2012 15:46
Dann wären wir durch! :abklatsch:

Die Programme, die hier zum Einsatz kamen, können alle wieder runter. Malwarebytes zu behalten ist zu empfehlen. Kannst ja 1x im Monat damit einen Vollscan machen, aber immer vorher ans Update denken.

Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden.
Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern.


Microsoftupdate

Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren.

Windows Vista/7: Anleitung Windows-Update


PDF-Reader aktualisieren
Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast)

Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader.

Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers:
Prüfen => Adobe - Flash Player
Downloadlinks => Adobe Flash Player Distribution | Adobe

Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind.


Java-Update
Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.

Feenkleid 29.10.2012 07:50
Nochmal vielen lieben Dank, auch für diese Tipps jetzt noch.
Das hat mir wirklich sehr geholfen :-)


Alle Zeitangaben in WEZ +1. Es ist jetzt 20:10 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131