| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: "Google Redirect Virus" - Wie wieder entfernen?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
29.09.2011, 20:14
| #16 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  "Google Redirect Virus" - Wie wieder entfernen?Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
29.09.2011, 20:19
| #17 |
 | "Google Redirect Virus" - Wie wieder entfernen? Verstehe ich jetzt nicht so ganz...
__________________Also die zwei Elby-Dinger habe ich gelassen und die anderen drei habe ich löschen lassen. Was soll ich jetzt machen? Gruß Dennis |
|
29.09.2011, 20:20
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Google Redirect Virus" - Wie wieder entfernen? Ja, "die anderen" tauchen aber im letzten Log nicht auf, deswegen hab ich nachgefragt. Vllt hast du das falsche oder das Log unvollstöndig gepostet
__________________
__________________ |
|
29.09.2011, 20:29
| #19 |
| | "Google Redirect Virus" - Wie wieder entfernen? Hm, also beim erneuten Scan tauchen jetzt nur noch die Elby-Dinger auf... Hier der neue und vollständig kopierte Scan: 21:27:21.0578 3024 TDSS rootkit removing tool 2.6.2.0 Sep 26 2011 18:56:43 21:27:21.0776 3024 ============================================================ 21:27:21.0777 3024 Current date / time: 2011/09/29 21:27:21.0776 21:27:21.0777 3024 SystemInfo: 21:27:21.0777 3024 21:27:21.0777 3024 OS Version: 6.0.6002 ServicePack: 2.0 21:27:21.0777 3024 Product type: Workstation 21:27:21.0777 3024 ComputerName: VISTA 21:27:21.0777 3024 UserName: Dennis Minaev 21:27:21.0777 3024 Windows directory: C:\Windows 21:27:21.0777 3024 System windows directory: C:\Windows 21:27:21.0777 3024 Processor architecture: Intel x86 21:27:21.0777 3024 Number of processors: 4 21:27:21.0777 3024 Page size: 0x1000 21:27:21.0777 3024 Boot type: Normal boot 21:27:21.0777 3024 ============================================================ 21:27:23.0202 3024 Initialize success 21:27:37.0129 2164 ============================================================ 21:27:37.0129 2164 Scan started 21:27:37.0129 2164 Mode: Manual; SigCheck; TDLFS; 21:27:37.0129 2164 ============================================================ 21:27:37.0510 2164 61883 (585e64bb6dfbc0a2f1f0b554ded012df) C:\Windows\system32\DRIVERS\61883.sys 21:27:37.0608 2164 61883 - ok 21:27:37.0671 2164 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys 21:27:37.0687 2164 ACPI - ok 21:27:37.0719 2164 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys 21:27:37.0736 2164 adp94xx - ok 21:27:37.0762 2164 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys 21:27:37.0774 2164 adpahci - ok 21:27:37.0788 2164 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys 21:27:37.0798 2164 adpu160m - ok 21:27:37.0819 2164 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys 21:27:37.0829 2164 adpu320 - ok 21:27:37.0883 2164 adxapie - ok 21:27:37.0910 2164 Afc - ok 21:27:37.0959 2164 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys 21:27:37.0976 2164 AFD - ok 21:27:37.0996 2164 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys 21:27:38.0006 2164 agp440 - ok 21:27:38.0037 2164 ahcix86s (0dee2b628d4c6e23285bb91effdabfde) C:\Windows\system32\drivers\ahcix86s.sys 21:27:38.0083 2164 ahcix86s - ok 21:27:38.0143 2164 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys 21:27:38.0154 2164 aic78xx - ok 21:27:38.0216 2164 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys 21:27:38.0226 2164 aliide - ok 21:27:38.0253 2164 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys 21:27:38.0263 2164 amdagp - ok 21:27:38.0295 2164 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys 21:27:38.0305 2164 amdide - ok 21:27:38.0353 2164 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys 21:27:38.0379 2164 AmdK7 - ok 21:27:38.0395 2164 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys 21:27:38.0420 2164 AmdK8 - ok 21:27:38.0490 2164 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys 21:27:38.0502 2164 arc - ok 21:27:38.0523 2164 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys 21:27:38.0534 2164 arcsas - ok 21:27:38.0567 2164 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys 21:27:38.0592 2164 AsyncMac - ok 21:27:38.0679 2164 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys 21:27:38.0690 2164 atapi - ok 21:27:38.0722 2164 Avc (f4b56425a00beb32f5fa6603ff7b0ea2) C:\Windows\system32\DRIVERS\avc.sys 21:27:38.0748 2164 Avc - ok 21:27:38.0774 2164 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys 21:27:38.0783 2164 avgntflt - ok 21:27:38.0823 2164 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys 21:27:38.0832 2164 avipbb - ok 21:27:38.0856 2164 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys 21:27:38.0883 2164 Beep - ok 21:27:38.0921 2164 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys 21:27:38.0947 2164 blbdrive - ok 21:27:38.0983 2164 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys 21:27:38.0997 2164 bowser - ok 21:27:39.0027 2164 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys 21:27:39.0046 2164 BrFiltLo - ok 21:27:39.0064 2164 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys 21:27:39.0084 2164 BrFiltUp - ok 21:27:39.0198 2164 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys 21:27:39.0241 2164 Brserid - ok 21:27:39.0258 2164 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys 21:27:39.0302 2164 BrSerWdm - ok 21:27:39.0321 2164 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys 21:27:39.0364 2164 BrUsbMdm - ok 21:27:39.0374 2164 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys 21:27:39.0419 2164 BrUsbSer - ok 21:27:39.0440 2164 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys 21:27:39.0484 2164 BTHMODEM - ok 21:27:39.0524 2164 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys 21:27:39.0550 2164 cdfs - ok 21:27:39.0579 2164 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys 21:27:39.0599 2164 cdrom - ok 21:27:39.0618 2164 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys 21:27:39.0645 2164 circlass - ok 21:27:39.0676 2164 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys 21:27:39.0692 2164 CLFS - ok 21:27:39.0731 2164 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys 21:27:39.0740 2164 cmdide - ok 21:27:39.0762 2164 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys 21:27:39.0772 2164 Compbatt - ok 21:27:39.0797 2164 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys 21:27:39.0807 2164 crcdisk - ok 21:27:39.0827 2164 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys 21:27:39.0852 2164 Crusoe - ok 21:27:39.0898 2164 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys 21:27:39.0911 2164 DfsC - ok 21:27:39.0977 2164 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys 21:27:39.0988 2164 disk - ok 21:27:40.0055 2164 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys 21:27:40.0074 2164 drmkaud - ok 21:27:40.0111 2164 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys 21:27:40.0140 2164 DXGKrnl - ok 21:27:40.0161 2164 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys 21:27:40.0187 2164 E1G60 - ok 21:27:40.0242 2164 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys 21:27:40.0255 2164 Ecache - ok 21:27:40.0299 2164 ElbyCDIO (37c3a9fef349d13685ec9c2acaaeafce) C:\Windows\system32\Drivers\ElbyCDIO.sys 21:27:40.0303 2164 ElbyCDIO ( UnsignedFile.Multi.Generic ) - warning 21:27:40.0303 2164 ElbyCDIO - detected UnsignedFile.Multi.Generic (1) 21:27:40.0330 2164 ElbyDelay (8d35affbeed58fd66e9fad223de33718) C:\Windows\system32\Drivers\ElbyDelay.sys 21:27:40.0334 2164 ElbyDelay ( UnsignedFile.Multi.Generic ) - warning 21:27:40.0334 2164 ElbyDelay - detected UnsignedFile.Multi.Generic (1) 21:27:40.0355 2164 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys 21:27:40.0373 2164 elxstor - ok 21:27:40.0412 2164 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys 21:27:40.0436 2164 ErrDev - ok 21:27:40.0482 2164 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys 21:27:40.0496 2164 exfat - ok 21:27:40.0526 2164 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys 21:27:40.0547 2164 fastfat - ok 21:27:40.0580 2164 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys 21:27:40.0605 2164 fdc - ok 21:27:40.0646 2164 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys 21:27:40.0656 2164 FileInfo - ok 21:27:40.0671 2164 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys 21:27:40.0697 2164 Filetrace - ok 21:27:40.0717 2164 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys 21:27:40.0742 2164 flpydisk - ok 21:27:40.0772 2164 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys 21:27:40.0785 2164 FltMgr - ok 21:27:40.0844 2164 fssfltr (b74b0578fd1d3f897e95f2a2b69ea051) C:\Windows\system32\DRIVERS\fssfltr.sys 21:27:40.0854 2164 fssfltr - ok 21:27:40.0866 2164 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys 21:27:40.0888 2164 Fs_Rec - ok 21:27:40.0905 2164 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys 21:27:40.0915 2164 gagp30kx - ok 21:27:40.0948 2164 hamachi (14d11f508e649f1499bd32e145ba80cb) C:\Windows\system32\DRIVERS\hamachi.sys 21:27:40.0956 2164 hamachi - ok 21:27:40.0994 2164 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys 21:27:41.0039 2164 HdAudAddService - ok 21:27:41.0098 2164 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys 21:27:41.0129 2164 HDAudBus - ok 21:27:41.0198 2164 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys 21:27:41.0241 2164 HidBth - ok 21:27:41.0266 2164 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys 21:27:41.0310 2164 HidIr - ok 21:27:41.0335 2164 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys 21:27:41.0355 2164 HidUsb - ok 21:27:41.0386 2164 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys 21:27:41.0397 2164 HpCISSs - ok 21:27:41.0425 2164 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys 21:27:41.0444 2164 HTTP - ok 21:27:41.0486 2164 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys 21:27:41.0495 2164 i2omp - ok 21:27:41.0518 2164 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys 21:27:41.0536 2164 i8042prt - ok 21:27:41.0555 2164 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys 21:27:41.0567 2164 iaStorV - ok 21:27:41.0598 2164 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys 21:27:41.0606 2164 iirsp - ok 21:27:41.0682 2164 IntcAzAudAddService (737d0390644def1a20c1ccf92c0e9c0c) C:\Windows\system32\drivers\RTKVHDA.sys 21:27:41.0736 2164 IntcAzAudAddService - ok 21:27:41.0775 2164 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys 21:27:41.0784 2164 intelide - ok 21:27:41.0806 2164 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys 21:27:41.0829 2164 intelppm - ok 21:27:41.0846 2164 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys 21:27:41.0869 2164 IpFilterDriver - ok 21:27:41.0882 2164 IpInIp - ok 21:27:41.0898 2164 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys 21:27:41.0921 2164 IPMIDRV - ok 21:27:41.0938 2164 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys 21:27:41.0964 2164 IPNAT - ok 21:27:41.0984 2164 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys 21:27:42.0006 2164 IRENUM - ok 21:27:42.0038 2164 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys 21:27:42.0047 2164 isapnp - ok 21:27:42.0081 2164 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys 21:27:42.0092 2164 iScsiPrt - ok 21:27:42.0112 2164 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys 21:27:42.0122 2164 iteatapi - ok 21:27:42.0139 2164 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys 21:27:42.0148 2164 iteraid - ok 21:27:42.0172 2164 JRAID (ab95b2ddb49f6b6cf52625e56c1f1f71) C:\Windows\system32\drivers\jraid.sys 21:27:42.0184 2164 JRAID - ok 21:27:42.0200 2164 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys 21:27:42.0210 2164 kbdclass - ok 21:27:42.0237 2164 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys 21:27:42.0257 2164 kbdhid - ok 21:27:42.0288 2164 KMWDFILTER (566c5fd480fdbce3ba5cf9fbcffaea9a) C:\Windows\system32\DRIVERS\KMWDFILTER.sys 21:27:42.0299 2164 KMWDFILTER - ok 21:27:42.0339 2164 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys 21:27:42.0360 2164 KSecDD - ok 21:27:42.0391 2164 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys 21:27:42.0417 2164 lltdio - ok 21:27:42.0447 2164 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys 21:27:42.0458 2164 LSI_FC - ok 21:27:42.0478 2164 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys 21:27:42.0489 2164 LSI_SAS - ok 21:27:42.0509 2164 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys 21:27:42.0520 2164 LSI_SCSI - ok 21:27:42.0539 2164 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys 21:27:42.0565 2164 luafv - ok 21:27:42.0608 2164 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\Windows\system32\drivers\mbam.sys 21:27:42.0619 2164 MBAMProtector - ok 21:27:42.0645 2164 MBAMSwissArmy - ok 21:27:42.0673 2164 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys 21:27:42.0681 2164 megasas - ok 21:27:42.0733 2164 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys 21:27:42.0783 2164 MegaSR - ok 21:27:42.0816 2164 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys 21:27:42.0838 2164 Modem - ok 21:27:42.0872 2164 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys 21:27:42.0896 2164 monitor - ok 21:27:42.0913 2164 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys 21:27:42.0923 2164 mouclass - ok 21:27:42.0940 2164 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys 21:27:42.0965 2164 mouhid - ok 21:27:42.0987 2164 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys 21:27:42.0998 2164 MountMgr - ok 21:27:43.0036 2164 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys 21:27:43.0048 2164 mpio - ok 21:27:43.0075 2164 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys 21:27:43.0096 2164 mpsdrv - ok 21:27:43.0132 2164 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys 21:27:43.0141 2164 Mraid35x - ok 21:27:43.0182 2164 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys 21:27:43.0197 2164 MRxDAV - ok 21:27:43.0233 2164 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys 21:27:43.0247 2164 mrxsmb - ok 21:27:43.0288 2164 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys 21:27:43.0303 2164 mrxsmb10 - ok 21:27:43.0333 2164 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 21:27:43.0346 2164 mrxsmb20 - ok 21:27:43.0384 2164 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys 21:27:43.0394 2164 msahci - ok 21:27:43.0424 2164 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys 21:27:43.0435 2164 msdsm - ok 21:27:43.0482 2164 MSDV (343291a4dfd7c923c3f71f550830ec1c) C:\Windows\system32\DRIVERS\msdv.sys 21:27:43.0506 2164 MSDV - ok 21:27:43.0528 2164 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys 21:27:43.0550 2164 Msfs - ok 21:27:43.0584 2164 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys 21:27:43.0593 2164 msisadrv - ok 21:27:43.0625 2164 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys 21:27:43.0650 2164 MSKSSRV - ok 21:27:43.0667 2164 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys 21:27:43.0689 2164 MSPCLOCK - ok 21:27:43.0700 2164 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys 21:27:43.0724 2164 MSPQM - ok 21:27:43.0750 2164 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys 21:27:43.0762 2164 MsRPC - ok 21:27:43.0781 2164 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys 21:27:43.0790 2164 mssmbios - ok 21:27:43.0805 2164 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys 21:27:43.0827 2164 MSTEE - ok 21:27:43.0850 2164 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys 21:27:43.0860 2164 Mup - ok 21:27:43.0897 2164 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys 21:27:43.0912 2164 NativeWifiP - ok 21:27:43.0957 2164 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys 21:27:43.0979 2164 NDIS - ok 21:27:44.0017 2164 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys 21:27:44.0037 2164 NdisTapi - ok 21:27:44.0055 2164 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys 21:27:44.0081 2164 Ndisuio - ok 21:27:44.0122 2164 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys 21:27:44.0143 2164 NdisWan - ok 21:27:44.0164 2164 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys 21:27:44.0191 2164 NDProxy - ok 21:27:44.0202 2164 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys 21:27:44.0228 2164 NetBIOS - ok 21:27:44.0257 2164 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys 21:27:44.0279 2164 netbt - ok 21:27:44.0315 2164 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys 21:27:44.0325 2164 nfrd960 - ok 21:27:44.0352 2164 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys 21:27:44.0372 2164 Npfs - ok 21:27:44.0392 2164 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys 21:27:44.0417 2164 nsiproxy - ok 21:27:44.0463 2164 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys 21:27:44.0498 2164 Ntfs - ok 21:27:44.0518 2164 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys 21:27:44.0561 2164 ntrigdigi - ok 21:27:44.0571 2164 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys 21:27:44.0596 2164 Null - ok 21:27:44.0639 2164 NVENETFD (adb84b1e6b837c45443aa25abe9e7012) C:\Windows\system32\DRIVERS\nvmfdx32.sys 21:27:44.0699 2164 NVENETFD - ok 21:27:44.0959 2164 nvlddmkm (712d98d35e68d0006b121f4a3b8ee814) C:\Windows\system32\DRIVERS\nvlddmkm.sys 21:27:45.0254 2164 nvlddmkm - ok 21:27:45.0268 2164 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys 21:27:45.0279 2164 nvraid - ok 21:27:45.0318 2164 nvrd32 (b8d6145d3eb05e9f81bade9b7afc2c80) C:\Windows\system32\drivers\nvrd32.sys 21:27:45.0326 2164 nvrd32 - ok 21:27:45.0345 2164 nvsmu (736054614ab962d4ec01ef4abce115f1) C:\Windows\system32\DRIVERS\nvsmu.sys 21:27:45.0355 2164 nvsmu - ok 21:27:45.0374 2164 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys 21:27:45.0384 2164 nvstor - ok 21:27:45.0405 2164 nvstor32 (9d2bd672c0461185d6ea1ae8bd3ae3f4) C:\Windows\system32\drivers\nvstor32.sys 21:27:45.0413 2164 nvstor32 - ok 21:27:45.0432 2164 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys 21:27:45.0442 2164 nv_agp - ok 21:27:45.0450 2164 NwlnkFlt - ok 21:27:45.0462 2164 NwlnkFwd - ok 21:27:45.0505 2164 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys 21:27:45.0526 2164 ohci1394 - ok 21:27:45.0548 2164 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys 21:27:45.0592 2164 Parport - ok 21:27:45.0624 2164 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys 21:27:45.0635 2164 partmgr - ok 21:27:45.0657 2164 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys 21:27:45.0695 2164 Parvdm - ok 21:27:45.0731 2164 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys 21:27:45.0742 2164 pci - ok 21:27:45.0769 2164 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys 21:27:45.0780 2164 pciide - ok 21:27:45.0811 2164 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys 21:27:45.0822 2164 pcmcia - ok 21:27:45.0865 2164 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys 21:27:45.0921 2164 PEAUTH - ok 21:27:45.0979 2164 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys 21:27:46.0002 2164 PptpMiniport - ok 21:27:46.0020 2164 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys 21:27:46.0043 2164 Processor - ok 21:27:46.0080 2164 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys 21:27:46.0122 2164 PSched - ok 21:27:46.0191 2164 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys 21:27:46.0199 2164 PxHelp20 - ok 21:27:46.0245 2164 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys 21:27:46.0277 2164 ql2300 - ok 21:27:46.0296 2164 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys 21:27:46.0306 2164 ql40xx - ok 21:27:46.0329 2164 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys 21:27:46.0342 2164 QWAVEdrv - ok 21:27:46.0358 2164 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys 21:27:46.0384 2164 RasAcd - ok 21:27:46.0419 2164 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys 21:27:46.0445 2164 Rasl2tp - ok 21:27:46.0487 2164 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys 21:27:46.0507 2164 RasPppoe - ok 21:27:46.0543 2164 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys 21:27:46.0558 2164 RasSstp - ok 21:27:46.0588 2164 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys 21:27:46.0610 2164 rdbss - ok 21:27:46.0620 2164 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys 21:27:46.0646 2164 RDPCDD - ok 21:27:46.0670 2164 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys 21:27:46.0697 2164 rdpdr - ok 21:27:46.0707 2164 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys 21:27:46.0733 2164 RDPENCDD - ok 21:27:46.0782 2164 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys 21:27:46.0803 2164 RDPWD - ok 21:27:46.0858 2164 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys 21:27:46.0885 2164 rspndr - ok 21:27:46.0918 2164 RxFilter (9235d02fabbd1deee6b7adb0a0a23300) C:\Windows\system32\DRIVERS\RxFilter.sys 21:27:46.0927 2164 RxFilter - ok 21:27:46.0954 2164 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys 21:27:46.0965 2164 sbp2port - ok 21:27:47.0012 2164 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 21:27:47.0057 2164 secdrv - ok 21:27:47.0092 2164 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys 21:27:47.0140 2164 Serenum - ok 21:27:47.0223 2164 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys 21:27:47.0267 2164 Serial - ok 21:27:47.0318 2164 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys 21:27:47.0342 2164 sermouse - ok 21:27:47.0393 2164 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys 21:27:47.0414 2164 sffdisk - ok 21:27:47.0454 2164 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys 21:27:47.0479 2164 sffp_mmc - ok 21:27:47.0526 2164 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys 21:27:47.0551 2164 sffp_sd - ok 21:27:47.0595 2164 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys 21:27:47.0639 2164 sfloppy - ok 21:27:47.0688 2164 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys 21:27:47.0698 2164 sisagp - ok 21:27:47.0741 2164 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys 21:27:47.0752 2164 SiSRaid2 - ok 21:27:47.0808 2164 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys 21:27:47.0818 2164 SiSRaid4 - ok 21:27:47.0860 2164 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys 21:27:47.0881 2164 Smb - ok 21:27:47.0910 2164 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys 21:27:47.0920 2164 spldr - ok 21:27:47.0959 2164 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys 21:27:47.0974 2164 srv - ok 21:27:48.0010 2164 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys 21:27:48.0024 2164 srv2 - ok 21:27:48.0036 2164 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys 21:27:48.0050 2164 srvnet - ok 21:27:48.0080 2164 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys 21:27:48.0088 2164 ssmdrv - ok 21:27:48.0142 2164 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys 21:27:48.0152 2164 swenum - ok 21:27:48.0193 2164 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys 21:27:48.0203 2164 Symc8xx - ok 21:27:48.0229 2164 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys 21:27:48.0239 2164 Sym_hi - ok 21:27:48.0263 2164 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys 21:27:48.0273 2164 Sym_u3 - ok 21:27:48.0314 2164 taphss (0c3b2a9c4bd2dd9a6c2e4084314dd719) C:\Windows\system32\DRIVERS\taphss.sys 21:27:48.0322 2164 taphss - ok 21:27:48.0370 2164 Tcpip (2756186e287139310997090797e0182b) C:\Windows\system32\drivers\tcpip.sys 21:27:48.0402 2164 Tcpip - ok 21:27:48.0461 2164 Tcpip6 (2756186e287139310997090797e0182b) C:\Windows\system32\DRIVERS\tcpip.sys 21:27:48.0493 2164 Tcpip6 - ok 21:27:48.0562 2164 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys 21:27:48.0575 2164 tcpipreg - ok 21:27:48.0602 2164 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys 21:27:48.0627 2164 TDPIPE - ok 21:27:48.0668 2164 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys 21:27:48.0693 2164 TDTCP - ok 21:27:48.0724 2164 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys 21:27:48.0744 2164 tdx - ok 21:27:48.0775 2164 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys 21:27:48.0787 2164 TermDD - ok 21:27:48.0828 2164 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys 21:27:48.0853 2164 tssecsrv - ok 21:27:48.0871 2164 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys 21:27:48.0885 2164 tunmp - ok 21:27:48.0914 2164 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys 21:27:48.0928 2164 tunnel - ok 21:27:48.0946 2164 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys 21:27:48.0957 2164 uagp35 - ok 21:27:48.0997 2164 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys 21:27:49.0019 2164 udfs - ok 21:27:49.0051 2164 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys 21:27:49.0061 2164 uliagpkx - ok 21:27:49.0092 2164 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys 21:27:49.0105 2164 uliahci - ok 21:27:49.0135 2164 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys 21:27:49.0145 2164 UlSata - ok 21:27:49.0184 2164 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys 21:27:49.0195 2164 ulsata2 - ok 21:27:49.0208 2164 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys 21:27:49.0234 2164 umbus - ok 21:27:49.0290 2164 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys 21:27:49.0311 2164 usbaudio - ok 21:27:49.0337 2164 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys 21:27:49.0357 2164 usbccgp - ok 21:27:49.0389 2164 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys 21:27:49.0433 2164 usbcir - ok 21:27:49.0486 2164 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys 21:27:49.0506 2164 usbehci - ok 21:27:49.0543 2164 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys 21:27:49.0565 2164 usbhub - ok 21:27:49.0582 2164 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys 21:27:49.0602 2164 usbohci - ok 21:27:49.0629 2164 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys 21:27:49.0655 2164 usbprint - ok 21:27:49.0692 2164 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys 21:27:49.0711 2164 usbscan - ok 21:27:49.0731 2164 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS 21:27:49.0752 2164 USBSTOR - ok 21:27:49.0763 2164 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys 21:27:49.0784 2164 usbuhci - ok 21:27:49.0823 2164 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys 21:27:49.0848 2164 vga - ok 21:27:49.0873 2164 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys 21:27:49.0899 2164 VgaSave - ok 21:27:49.0937 2164 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys 21:27:49.0947 2164 viaagp - ok 21:27:49.0988 2164 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys 21:27:50.0013 2164 ViaC7 - ok 21:27:50.0031 2164 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys 21:27:50.0042 2164 viaide - ok 21:27:50.0068 2164 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys 21:27:50.0078 2164 volmgr - ok 21:27:50.0120 2164 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys 21:27:50.0136 2164 volmgrx - ok 21:27:50.0164 2164 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys 21:27:50.0179 2164 volsnap - ok 21:27:50.0216 2164 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys 21:27:50.0227 2164 vsmraid - ok 21:27:50.0267 2164 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys 21:27:50.0310 2164 WacomPen - ok 21:27:50.0328 2164 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys 21:27:50.0348 2164 Wanarp - ok 21:27:50.0361 2164 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys 21:27:50.0383 2164 Wanarpv6 - ok 21:27:50.0410 2164 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys 21:27:50.0419 2164 Wd - ok 21:27:50.0454 2164 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 21:27:50.0475 2164 Wdf01000 - ok 21:27:50.0640 2164 winusb (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\winusb.sys 21:27:50.0660 2164 winusb - ok 21:27:50.0684 2164 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys 21:27:50.0704 2164 WmiAcpi - ok 21:27:50.0776 2164 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys 21:27:50.0789 2164 WpdUsb - ok 21:27:50.0815 2164 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys 21:27:50.0840 2164 ws2ifsl - ok 21:27:50.0903 2164 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys 21:27:50.0916 2164 WudfPf - ok 21:27:50.0948 2164 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys 21:27:50.0965 2164 WUDFRd - ok 21:27:51.0011 2164 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0 21:27:51.0094 2164 \Device\Harddisk0\DR0 - ok 21:27:51.0561 2164 MBR (0x1B8) (72b8ce41af0de751c946802b3ed844b4) \Device\Harddisk1\DR1 21:27:51.0612 2164 \Device\Harddisk1\DR1 - ok 21:27:51.0640 2164 Boot (0x1200) (23e2b1ae14f050890a65fbb4378e7859) \Device\Harddisk0\DR0\Partition0 21:27:51.0641 2164 \Device\Harddisk0\DR0\Partition0 - ok 21:27:51.0645 2164 Boot (0x1200) (706b89b6868885f300ca8fc5902ef18e) \Device\Harddisk1\DR1\Partition0 21:27:51.0645 2164 \Device\Harddisk1\DR1\Partition0 - ok 21:27:51.0648 2164 ============================================================ 21:27:51.0648 2164 Scan finished 21:27:51.0648 2164 ============================================================ 21:27:51.0661 1188 Detected object count: 2 21:27:51.0661 1188 Actual detected object count: 2 21:28:11.0072 1188 ElbyCDIO ( UnsignedFile.Multi.Generic ) - skipped by user 21:28:11.0072 1188 ElbyCDIO ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:28:11.0075 1188 ElbyDelay ( UnsignedFile.Multi.Generic ) - skipped by user 21:28:11.0075 1188 ElbyDelay ( UnsignedFile.Multi.Generic ) - User select action: Skip Gruß Dennis |
|
29.09.2011, 20:30
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Google Redirect Virus" - Wie wieder entfernen? Alle Logs sollten direkt auf C: liegen - poste bitte das wo die anderen gefixt wurden
__________________ Logfiles bitte immer in CODE-Tags posten |
|
29.09.2011, 20:35
| #21 |
| | "Google Redirect Virus" - Wie wieder entfernen? OK, hier ist er: 20:19:31.0626 15864 TDSS rootkit removing tool 2.6.2.0 Sep 26 2011 18:56:43 20:19:31.0859 15864 ============================================================ 20:19:31.0859 15864 Current date / time: 2011/09/29 20:19:31.0859 20:19:31.0859 15864 SystemInfo: 20:19:31.0859 15864 20:19:31.0859 15864 OS Version: 6.0.6002 ServicePack: 2.0 20:19:31.0859 15864 Product type: Workstation 20:19:31.0859 15864 ComputerName: VISTA 20:19:31.0860 15864 UserName: Dennis Minaev 20:19:31.0860 15864 Windows directory: C:\Windows 20:19:31.0860 15864 System windows directory: C:\Windows 20:19:31.0860 15864 Processor architecture: Intel x86 20:19:31.0860 15864 Number of processors: 4 20:19:31.0860 15864 Page size: 0x1000 20:19:31.0860 15864 Boot type: Normal boot 20:19:31.0860 15864 ============================================================ 20:19:33.0556 15864 Initialize success 20:20:35.0796 14580 ============================================================ 20:20:35.0796 14580 Scan started 20:20:35.0796 14580 Mode: Manual; SigCheck; TDLFS; 20:20:35.0796 14580 ============================================================ 20:20:36.0052 14580 61883 (585e64bb6dfbc0a2f1f0b554ded012df) C:\Windows\system32\DRIVERS\61883.sys 20:20:36.0307 14580 61883 - ok 20:20:36.0347 14580 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys 20:20:36.0365 14580 ACPI - ok 20:20:36.0420 14580 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys 20:20:36.0454 14580 adp94xx - ok 20:20:36.0479 14580 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys 20:20:36.0505 14580 adpahci - ok 20:20:36.0522 14580 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys 20:20:36.0541 14580 adpu160m - ok 20:20:36.0561 14580 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys 20:20:36.0581 14580 adpu320 - ok 20:20:36.0641 14580 adxapie - ok 20:20:36.0669 14580 Afc - ok 20:20:36.0718 14580 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys 20:20:36.0802 14580 AFD - ok 20:20:36.0821 14580 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys 20:20:36.0838 14580 agp440 - ok 20:20:36.0871 14580 ahcix86s (0dee2b628d4c6e23285bb91effdabfde) C:\Windows\system32\drivers\ahcix86s.sys 20:20:51.0945 14580 ahcix86s - ok 20:20:51.0979 14580 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys 20:20:51.0997 14580 aic78xx - ok 20:20:52.0019 14580 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys 20:20:52.0033 14580 aliide - ok 20:20:52.0055 14580 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys 20:20:52.0071 14580 amdagp - ok 20:20:52.0089 14580 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys 20:20:52.0104 14580 amdide - ok 20:20:52.0131 14580 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys 20:20:52.0174 14580 AmdK7 - ok 20:20:52.0189 14580 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys 20:20:52.0232 14580 AmdK8 - ok 20:20:52.0301 14580 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys 20:20:52.0318 14580 arc - ok 20:20:52.0333 14580 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys 20:20:52.0351 14580 arcsas - ok 20:20:52.0386 14580 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys 20:20:52.0421 14580 AsyncMac - ok 20:20:52.0448 14580 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys 20:20:52.0458 14580 atapi - ok 20:20:52.0491 14580 Avc (f4b56425a00beb32f5fa6603ff7b0ea2) C:\Windows\system32\DRIVERS\avc.sys 20:20:52.0533 14580 Avc - ok 20:20:52.0559 14580 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys 20:20:52.0590 14580 avgntflt - ok 20:20:52.0625 14580 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys 20:20:52.0663 14580 avipbb - ok 20:20:52.0683 14580 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys 20:20:52.0752 14580 Beep - ok 20:20:52.0790 14580 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys 20:20:52.0822 14580 blbdrive - ok 20:20:52.0852 14580 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys 20:20:52.0887 14580 bowser - ok 20:20:52.0912 14580 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys 20:20:53.0247 14580 BrFiltLo - ok 20:20:53.0275 14580 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys 20:20:53.0304 14580 BrFiltUp - ok 20:20:53.0325 14580 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys 20:20:53.0472 14580 Brserid - ok 20:20:53.0493 14580 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys 20:20:53.0563 14580 BrSerWdm - ok 20:20:53.0581 14580 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys 20:20:53.0642 14580 BrUsbMdm - ok 20:20:53.0652 14580 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys 20:20:53.0716 14580 BrUsbSer - ok 20:20:53.0734 14580 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys 20:20:53.0803 14580 BTHMODEM - ok 20:20:53.0851 14580 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys 20:20:53.0881 14580 cdfs - ok 20:20:53.0914 14580 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys 20:20:53.0946 14580 cdrom - ok 20:20:53.0970 14580 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys 20:20:54.0008 14580 circlass - ok 20:20:54.0044 14580 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys 20:20:54.0062 14580 CLFS - ok 20:20:54.0108 14580 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys 20:20:54.0122 14580 cmdide - ok 20:20:54.0139 14580 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys 20:20:54.0154 14580 Compbatt - ok 20:20:54.0167 14580 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys 20:20:54.0177 14580 crcdisk - ok 20:20:54.0196 14580 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys 20:20:54.0233 14580 Crusoe - ok 20:20:54.0275 14580 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys 20:20:54.0303 14580 DfsC - ok 20:20:54.0360 14580 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys 20:20:54.0370 14580 disk - ok 20:20:54.0431 14580 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys 20:20:54.0461 14580 drmkaud - ok 20:20:54.0496 14580 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys 20:20:54.0540 14580 DXGKrnl - ok 20:20:54.0572 14580 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys 20:20:54.0617 14580 E1G60 - ok 20:20:54.0669 14580 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys 20:20:54.0680 14580 Ecache - ok 20:20:54.0726 14580 ElbyCDIO (37c3a9fef349d13685ec9c2acaaeafce) C:\Windows\system32\Drivers\ElbyCDIO.sys 20:20:54.0740 14580 ElbyCDIO ( UnsignedFile.Multi.Generic ) - warning 20:20:54.0740 14580 ElbyCDIO - detected UnsignedFile.Multi.Generic (1) 20:20:54.0765 14580 ElbyDelay (8d35affbeed58fd66e9fad223de33718) C:\Windows\system32\Drivers\ElbyDelay.sys 20:20:54.0784 14580 ElbyDelay ( UnsignedFile.Multi.Generic ) - warning 20:20:54.0784 14580 ElbyDelay - detected UnsignedFile.Multi.Generic (1) 20:20:54.0807 14580 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys 20:20:54.0835 14580 elxstor - ok 20:20:54.0880 14580 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys 20:20:54.0918 14580 ErrDev - ok 20:20:54.0968 14580 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys 20:20:55.0026 14580 exfat - ok 20:20:55.0069 14580 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys 20:20:55.0091 14580 fastfat - ok 20:20:55.0107 14580 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys 20:20:55.0144 14580 fdc - ok 20:20:55.0181 14580 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys 20:20:55.0190 14580 FileInfo - ok 20:20:55.0206 14580 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys 20:20:55.0247 14580 Filetrace - ok 20:20:55.0261 14580 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys 20:20:55.0292 14580 flpydisk - ok 20:20:55.0332 14580 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys 20:20:55.0344 14580 FltMgr - ok 20:20:55.0412 14580 fssfltr (b74b0578fd1d3f897e95f2a2b69ea051) C:\Windows\system32\DRIVERS\fssfltr.sys 20:20:55.0429 14580 fssfltr - ok 20:20:55.0454 14580 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys 20:20:55.0480 14580 Fs_Rec - ok 20:20:55.0498 14580 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys 20:20:55.0515 14580 gagp30kx - ok 20:20:55.0549 14580 hamachi (14d11f508e649f1499bd32e145ba80cb) C:\Windows\system32\DRIVERS\hamachi.sys 20:20:55.0585 14580 hamachi - ok 20:20:55.0620 14580 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys 20:20:55.0688 14580 HdAudAddService - ok 20:20:55.0720 14580 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys 20:20:55.0779 14580 HDAudBus - ok 20:20:55.0824 14580 hid1tkis (11b0f2a7822b92fca5f1b74b231783bc) C:\Windows\system32\drivers\hid1tkis.sys 20:20:55.0943 14580 hid1tkis ( UnsignedFile.Multi.Generic ) - warning 20:20:55.0943 14580 hid1tkis - detected UnsignedFile.Multi.Generic (1) 20:20:56.0000 14580 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys 20:20:56.0068 14580 HidBth - ok 20:20:56.0093 14580 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys 20:20:56.0151 14580 HidIr - ok 20:20:56.0187 14580 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys 20:20:56.0267 14580 HidUsb - ok 20:20:56.0288 14580 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys 20:20:56.0305 14580 HpCISSs - ok 20:20:56.0336 14580 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys 20:20:56.0433 14580 HTTP - ok 20:20:56.0463 14580 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys 20:20:56.0483 14580 i2omp - ok 20:20:56.0511 14580 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys 20:20:56.0568 14580 i8042prt - ok 20:20:56.0607 14580 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys 20:20:56.0634 14580 iaStorV - ok 20:20:56.0691 14580 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys 20:20:56.0711 14580 iirsp - ok 20:20:56.0785 14580 IntcAzAudAddService (737d0390644def1a20c1ccf92c0e9c0c) C:\Windows\system32\drivers\RTKVHDA.sys 20:20:57.0226 14580 IntcAzAudAddService - ok 20:20:57.0302 14580 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys 20:20:57.0316 14580 intelide - ok 20:20:57.0349 14580 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys 20:20:57.0388 14580 intelppm - ok 20:20:57.0414 14580 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys 20:20:57.0444 14580 IpFilterDriver - ok 20:20:57.0456 14580 IpInIp - ok 20:20:57.0474 14580 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys 20:20:57.0517 14580 IPMIDRV - ok 20:20:57.0540 14580 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys 20:20:57.0573 14580 IPNAT - ok 20:20:57.0594 14580 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys 20:20:57.0644 14580 IRENUM - ok 20:20:57.0664 14580 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys 20:20:57.0688 14580 isapnp - ok 20:20:57.0724 14580 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys 20:20:57.0743 14580 iScsiPrt - ok 20:20:57.0796 14580 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys 20:20:57.0835 14580 iteatapi - ok 20:20:57.0874 14580 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys 20:20:57.0889 14580 iteraid - ok 20:20:57.0923 14580 JRAID (ab95b2ddb49f6b6cf52625e56c1f1f71) C:\Windows\system32\drivers\jraid.sys 20:20:57.0960 14580 JRAID - ok 20:20:57.0985 14580 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys 20:20:58.0001 14580 kbdclass - ok 20:20:58.0022 14580 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys 20:20:58.0052 14580 kbdhid - ok 20:20:58.0081 14580 KMWDFILTER (566c5fd480fdbce3ba5cf9fbcffaea9a) C:\Windows\system32\DRIVERS\KMWDFILTER.sys 20:20:58.0112 14580 KMWDFILTER - ok 20:20:58.0198 14580 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys 20:20:58.0232 14580 KSecDD - ok 20:20:58.0326 14580 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys 20:20:58.0391 14580 lltdio - ok 20:20:58.0431 14580 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys 20:20:58.0461 14580 LSI_FC - ok 20:20:58.0480 14580 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys 20:20:58.0497 14580 LSI_SAS - ok 20:20:58.0519 14580 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys 20:20:58.0548 14580 LSI_SCSI - ok 20:20:58.0565 14580 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys 20:20:58.0598 14580 luafv - ok 20:20:58.0634 14580 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\Windows\system32\drivers\mbam.sys 20:20:58.0674 14580 MBAMProtector - ok 20:20:58.0696 14580 MBAMSwissArmy - ok 20:20:58.0732 14580 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys 20:20:58.0747 14580 megasas - ok 20:20:58.0801 14580 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys 20:20:58.0850 14580 MegaSR - ok 20:20:58.0875 14580 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys 20:20:58.0917 14580 Modem - ok 20:20:58.0949 14580 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys 20:20:58.0983 14580 monitor - ok 20:20:59.0022 14580 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys 20:20:59.0038 14580 mouclass - ok 20:20:59.0057 14580 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys 20:20:59.0086 14580 mouhid - ok 20:20:59.0097 14580 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys 20:20:59.0109 14580 MountMgr - ok 20:20:59.0145 14580 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys 20:20:59.0165 14580 mpio - ok 20:20:59.0184 14580 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys 20:20:59.0211 14580 mpsdrv - ok 20:20:59.0233 14580 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys 20:20:59.0249 14580 Mraid35x - ok 20:20:59.0283 14580 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys 20:20:59.0328 14580 MRxDAV - ok 20:20:59.0368 14580 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys 20:20:59.0393 14580 mrxsmb - ok 20:20:59.0423 14580 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys 20:20:59.0448 14580 mrxsmb10 - ok 20:20:59.0467 14580 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 20:20:59.0494 14580 mrxsmb20 - ok 20:20:59.0535 14580 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys 20:20:59.0551 14580 msahci - ok 20:20:59.0575 14580 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys 20:20:59.0594 14580 msdsm - ok 20:20:59.0641 14580 MSDV (343291a4dfd7c923c3f71f550830ec1c) C:\Windows\system32\DRIVERS\msdv.sys 20:20:59.0684 14580 MSDV - ok 20:20:59.0704 14580 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys 20:20:59.0740 14580 Msfs - ok 20:20:59.0768 14580 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys 20:20:59.0778 14580 msisadrv - ok 20:20:59.0818 14580 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys 20:20:59.0851 14580 MSKSSRV - ok 20:20:59.0868 14580 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys 20:20:59.0896 14580 MSPCLOCK - ok 20:20:59.0912 14580 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys 20:20:59.0942 14580 MSPQM - ok 20:20:59.0960 14580 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys 20:20:59.0975 14580 MsRPC - ok 20:20:59.0999 14580 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys 20:21:00.0013 14580 mssmbios - ok 20:21:00.0039 14580 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys 20:21:00.0071 14580 MSTEE - ok 20:21:00.0092 14580 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys 20:21:00.0105 14580 Mup - ok 20:21:00.0140 14580 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys 20:21:00.0163 14580 NativeWifiP - ok 20:21:00.0215 14580 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys 20:21:00.0238 14580 NDIS - ok 20:21:00.0285 14580 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys 20:21:00.0323 14580 NdisTapi - ok 20:21:00.0364 14580 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys 20:21:00.0401 14580 Ndisuio - ok 20:21:00.0439 14580 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys 20:21:00.0474 14580 NdisWan - ok 20:21:00.0490 14580 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys 20:21:00.0515 14580 NDProxy - ok 20:21:00.0534 14580 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys 20:21:00.0568 14580 NetBIOS - ok 20:21:00.0617 14580 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys 20:21:00.0658 14580 netbt - ok 20:21:00.0691 14580 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys 20:21:00.0713 14580 nfrd960 - ok 20:21:00.0736 14580 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys 20:21:00.0783 14580 Npfs - ok 20:21:00.0818 14580 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys 20:21:00.0852 14580 nsiproxy - ok 20:21:00.0948 14580 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys 20:21:01.0456 14580 Ntfs - ok 20:21:01.0477 14580 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys 20:21:01.0525 14580 ntrigdigi - ok 20:21:01.0537 14580 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys 20:21:01.0570 14580 Null - ok 20:21:01.0810 14580 NVENETFD (adb84b1e6b837c45443aa25abe9e7012) C:\Windows\system32\DRIVERS\nvmfdx32.sys 20:21:01.0921 14580 NVENETFD - ok 20:21:02.0195 14580 nvlddmkm (712d98d35e68d0006b121f4a3b8ee814) C:\Windows\system32\DRIVERS\nvlddmkm.sys 20:21:02.0959 14580 nvlddmkm - ok 20:21:03.0071 14580 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys 20:21:03.0083 14580 nvraid - ok 20:21:03.0110 14580 nvrd32 (b8d6145d3eb05e9f81bade9b7afc2c80) C:\Windows\system32\drivers\nvrd32.sys 20:21:03.0127 14580 nvrd32 - ok 20:21:03.0154 14580 nvsmu (736054614ab962d4ec01ef4abce115f1) C:\Windows\system32\DRIVERS\nvsmu.sys 20:21:03.0187 14580 nvsmu - ok 20:21:03.0207 14580 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys 20:21:03.0223 14580 nvstor - ok 20:21:03.0247 14580 nvstor32 (9d2bd672c0461185d6ea1ae8bd3ae3f4) C:\Windows\system32\drivers\nvstor32.sys 20:21:03.0263 14580 nvstor32 - ok 20:21:03.0283 14580 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys 20:21:03.0303 14580 nv_agp - ok 20:21:03.0314 14580 NwlnkFlt - ok 20:21:03.0327 14580 NwlnkFwd - ok 20:21:03.0372 14580 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys 20:21:03.0407 14580 ohci1394 - ok 20:21:03.0451 14580 ovt530 (71cffb1e06aa8978a7b4a346c191f8ba) C:\Windows\system32\Drivers\ov530vid.sys 20:21:03.0467 14580 ovt530 ( UnsignedFile.Multi.Generic ) - warning 20:21:03.0467 14580 ovt530 - detected UnsignedFile.Multi.Generic (1) 20:21:03.0498 14580 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys 20:21:03.0544 14580 Parport - ok 20:21:03.0574 14580 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys 20:21:03.0585 14580 partmgr - ok 20:21:03.0599 14580 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys 20:21:03.0652 14580 Parvdm - ok 20:21:03.0690 14580 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys 20:21:03.0701 14580 pci - ok 20:21:03.0728 14580 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys 20:21:03.0738 14580 pciide - ok 20:21:03.0762 14580 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys 20:21:03.0781 14580 pcmcia - ok 20:21:03.0824 14580 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys 20:21:04.0014 14580 PEAUTH - ok 20:21:04.0087 14580 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys 20:21:04.0125 14580 PptpMiniport - ok 20:21:04.0146 14580 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys 20:21:04.0193 14580 Processor - ok 20:21:04.0239 14580 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys 20:21:04.0264 14580 PSched - ok 20:21:04.0293 14580 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys 20:21:04.0303 14580 PxHelp20 - ok 20:21:04.0345 14580 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys 20:21:04.0433 14580 ql2300 - ok 20:21:04.0471 14580 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys 20:21:04.0488 14580 ql40xx - ok 20:21:04.0521 14580 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys 20:21:04.0567 14580 QWAVEdrv - ok 20:21:04.0583 14580 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys 20:21:04.0612 14580 RasAcd - ok 20:21:04.0670 14580 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys 20:21:04.0715 14580 Rasl2tp - ok 20:21:04.0768 14580 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys 20:21:04.0793 14580 RasPppoe - ok 20:21:04.0827 14580 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys 20:21:04.0855 14580 RasSstp - ok 20:21:04.0887 14580 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys 20:21:04.0920 14580 rdbss - ok 20:21:04.0941 14580 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys 20:21:04.0979 14580 RDPCDD - ok 20:21:05.0081 14580 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys 20:21:05.0164 14580 rdpdr - ok 20:21:05.0296 14580 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys 20:21:05.0334 14580 RDPENCDD - ok 20:21:05.0382 14580 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys 20:21:05.0437 14580 RDPWD - ok 20:21:05.0475 14580 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys 20:21:05.0516 14580 rspndr - ok 20:21:05.0552 14580 RxFilter (9235d02fabbd1deee6b7adb0a0a23300) C:\Windows\system32\DRIVERS\RxFilter.sys 20:21:05.0567 14580 RxFilter - ok 20:21:05.0596 14580 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys 20:21:05.0625 14580 sbp2port - ok 20:21:05.0662 14580 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 20:21:05.0719 14580 secdrv - ok 20:21:05.0795 14580 Sentinel (05f03d7f2999431c53ce254da1301b31) C:\Windows\System32\Drivers\SENTINEL.SYS 20:21:05.0831 14580 Sentinel ( UnsignedFile.Multi.Generic ) - warning 20:21:05.0831 14580 Sentinel - detected UnsignedFile.Multi.Generic (1) 20:21:05.0875 14580 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys 20:21:05.0923 14580 Serenum - ok 20:21:05.0965 14580 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys 20:21:06.0040 14580 Serial - ok 20:21:06.0084 14580 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys 20:21:06.0113 14580 sermouse - ok 20:21:06.0193 14580 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys 20:21:06.0223 14580 sffdisk - ok 20:21:06.0237 14580 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys 20:21:06.0266 14580 sffp_mmc - ok 20:21:06.0301 14580 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys 20:21:06.0340 14580 sffp_sd - ok 20:21:06.0362 14580 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys 20:21:06.0426 14580 sfloppy - ok 20:21:06.0471 14580 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys 20:21:06.0489 14580 sisagp - ok 20:21:06.0516 14580 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys 20:21:06.0532 14580 SiSRaid2 - ok 20:21:06.0558 14580 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys 20:21:06.0592 14580 SiSRaid4 - ok 20:21:06.0627 14580 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys 20:21:06.0665 14580 Smb - ok 20:21:06.0702 14580 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys 20:21:06.0712 14580 spldr - ok 20:21:06.0766 14580 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys 20:21:06.0812 14580 srv - ok 20:21:06.0913 14580 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys 20:21:07.0021 14580 srv2 - ok 20:21:07.0039 14580 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys 20:21:07.0055 14580 srvnet - ok 20:21:07.0088 14580 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys 20:21:07.0100 14580 ssmdrv - ok 20:21:07.0167 14580 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys 20:21:07.0182 14580 swenum - ok 20:21:07.0218 14580 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys 20:21:07.0251 14580 Symc8xx - ok 20:21:07.0271 14580 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys 20:21:07.0286 14580 Sym_hi - ok 20:21:07.0313 14580 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys 20:21:07.0327 14580 Sym_u3 - ok 20:21:07.0372 14580 taphss (0c3b2a9c4bd2dd9a6c2e4084314dd719) C:\Windows\system32\DRIVERS\taphss.sys 20:21:07.0386 14580 taphss - ok 20:21:07.0436 14580 Tcpip (2756186e287139310997090797e0182b) C:\Windows\system32\drivers\tcpip.sys 20:21:07.0502 14580 Tcpip - ok 20:21:07.0547 14580 Tcpip6 (2756186e287139310997090797e0182b) C:\Windows\system32\DRIVERS\tcpip.sys 20:21:07.0609 14580 Tcpip6 - ok 20:21:07.0678 14580 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys 20:21:07.0701 14580 tcpipreg - ok 20:21:07.0727 14580 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys 20:21:07.0770 14580 TDPIPE - ok 20:21:07.0801 14580 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys 20:21:07.0831 14580 TDTCP - ok 20:21:07.0865 14580 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys 20:21:07.0899 14580 tdx - ok 20:21:07.0925 14580 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys 20:21:07.0943 14580 TermDD - ok 20:21:07.0986 14580 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys 20:21:08.0018 14580 tssecsrv - ok 20:21:08.0037 14580 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys 20:21:08.0071 14580 tunmp - ok 20:21:08.0097 14580 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys 20:21:08.0124 14580 tunnel - ok 20:21:08.0146 14580 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys 20:21:08.0161 14580 uagp35 - ok 20:21:08.0205 14580 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys 20:21:08.0232 14580 udfs - ok 20:21:08.0276 14580 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys 20:21:08.0291 14580 uliagpkx - ok 20:21:08.0325 14580 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys 20:21:08.0344 14580 uliahci - ok 20:21:08.0368 14580 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys 20:21:08.0386 14580 UlSata - ok 20:21:08.0418 14580 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys 20:21:08.0438 14580 ulsata2 - ok 20:21:08.0448 14580 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys 20:21:08.0488 14580 umbus - ok 20:21:08.0556 14580 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys 20:21:08.0587 14580 usbaudio - ok 20:21:08.0611 14580 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys 20:21:08.0646 14580 usbccgp - ok 20:21:08.0664 14580 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys 20:21:08.0730 14580 usbcir - ok 20:21:08.0769 14580 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys 20:21:08.0802 14580 usbehci - ok 20:21:08.0843 14580 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys 20:21:08.0891 14580 usbhub - ok 20:21:08.0923 14580 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys 20:21:08.0955 14580 usbohci - ok 20:21:08.0987 14580 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys 20:21:09.0024 14580 usbprint - ok 20:21:09.0058 14580 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys 20:21:09.0087 14580 usbscan - ok 20:21:09.0117 14580 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS 20:21:09.0150 14580 USBSTOR - ok 20:21:09.0172 14580 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys 20:21:09.0213 14580 usbuhci - ok 20:21:09.0264 14580 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys 20:21:09.0305 14580 vga - ok 20:21:09.0323 14580 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys 20:21:09.0361 14580 VgaSave - ok 20:21:09.0395 14580 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys 20:21:09.0411 14580 viaagp - ok 20:21:09.0430 14580 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys 20:21:09.0461 14580 ViaC7 - ok 20:21:09.0481 14580 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys 20:21:09.0496 14580 viaide - ok 20:21:09.0526 14580 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys 20:21:09.0536 14580 volmgr - ok 20:21:09.0577 14580 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys 20:21:09.0594 14580 volmgrx - ok 20:21:09.0631 14580 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys 20:21:09.0645 14580 volsnap - ok 20:21:09.0682 14580 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys 20:21:09.0700 14580 vsmraid - ok 20:21:09.0758 14580 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys 20:21:09.0813 14580 WacomPen - ok 20:21:09.0836 14580 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys 20:21:09.0863 14580 Wanarp - ok 20:21:09.0876 14580 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys 20:21:09.0897 14580 Wanarpv6 - ok 20:21:09.0918 14580 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys 20:21:09.0928 14580 Wd - ok 20:21:09.0961 14580 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 20:21:10.0012 14580 Wdf01000 - ok 20:21:10.0148 14580 winusb (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\winusb.sys 20:21:10.0168 14580 winusb - ok 20:21:10.0182 14580 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys 20:21:10.0219 14580 WmiAcpi - ok 20:21:10.0292 14580 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys 20:21:10.0419 14580 WpdUsb - ok 20:21:10.0448 14580 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys 20:21:10.0493 14580 ws2ifsl - ok 20:21:10.0552 14580 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys 20:21:10.0591 14580 WudfPf - ok 20:21:10.0631 14580 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys 20:21:10.0651 14580 WUDFRd - ok 20:21:10.0694 14580 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0 20:21:10.0786 14580 \Device\Harddisk0\DR0 - ok 20:21:10.0809 14580 MBR (0x1B8) (72b8ce41af0de751c946802b3ed844b4) \Device\Harddisk1\DR1 20:21:10.0862 14580 \Device\Harddisk1\DR1 - ok 20:21:10.0866 14580 Boot (0x1200) (23e2b1ae14f050890a65fbb4378e7859) \Device\Harddisk0\DR0\Partition0 20:21:10.0867 14580 \Device\Harddisk0\DR0\Partition0 - ok 20:21:10.0872 14580 Boot (0x1200) (706b89b6868885f300ca8fc5902ef18e) \Device\Harddisk1\DR1\Partition0 20:21:10.0873 14580 \Device\Harddisk1\DR1\Partition0 - ok 20:21:10.0876 14580 ============================================================ 20:21:10.0876 14580 Scan finished 20:21:10.0876 14580 ============================================================ 20:21:10.0893 15816 Detected object count: 5 20:21:10.0893 15816 Actual detected object count: 5 20:22:41.0901 15816 ElbyCDIO ( UnsignedFile.Multi.Generic ) - skipped by user 20:22:41.0901 15816 ElbyCDIO ( UnsignedFile.Multi.Generic ) - User select action: Skip 20:22:41.0904 15816 ElbyDelay ( UnsignedFile.Multi.Generic ) - skipped by user 20:22:41.0904 15816 ElbyDelay ( UnsignedFile.Multi.Generic ) - User select action: Skip 20:22:41.0906 15816 hid1tkis ( UnsignedFile.Multi.Generic ) - skipped by user 20:22:41.0907 15816 hid1tkis ( UnsignedFile.Multi.Generic ) - User select action: Skip 20:22:41.0909 15816 ovt530 ( UnsignedFile.Multi.Generic ) - skipped by user 20:22:41.0909 15816 ovt530 ( UnsignedFile.Multi.Generic ) - User select action: Skip 20:22:41.0911 15816 Sentinel ( UnsignedFile.Multi.Generic ) - skipped by user 20:22:41.0911 15816 Sentinel ( UnsignedFile.Multi.Generic ) - User select action: Skip 20:22:44.0224 14144 Deinitialize success Gruß Dennis |
|
29.09.2011, 20:49
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Google Redirect Virus" - Wie wieder entfernen? Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
01.10.2011, 13:40
| #23 |
| | "Google Redirect Virus" - Wie wieder entfernen? Hier das Ergebnis: Combofix Logfile: Code:
ATTFilter ComboFix 11-09-30.05 - Dennis Minaev 01.10.2011 14:18:58.1.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.3326.2284 [GMT 2:00]
ausgeführt von:: c:\users\Dennis Minaev\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\290
c:\programdata\290\{334FEC59-F483-4574-BC83-D338BCBB9C0A}.swf
c:\users\Dennis Minaev\AppData\Roaming\Local
c:\users\Dennis Minaev\AppData\Roaming\Local\Temp\DDM\Settings\.ddr
c:\users\Dennis Minaev\AppData\Roaming\Local\Temp\DDM\Settings\0.ddi
c:\users\Dennis Minaev\AppData\Roaming\Local\Temp\DDM\Settings\Inception_Trailer_592.divx.ddr
c:\users\Dennis Minaev\AppData\Roaming\Local\Temp\DDM\Settings\settings.ddi
c:\users\Dennis Minaev\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\.ddp
c:\users\Dennis Minaev\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\Inception_Trailer_592.divx
c:\windows\IsUn0407.exe
c:\windows\IsUn0419.exe
c:\windows\security\Database\tmp.edb
c:\windows\system32\comct332.ocx
c:\windows\unin0407.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2011-09-01 bis 2011-10-01 ))))))))))))))))))))))))))))))
.
.
2011-10-01 12:29 . 2011-10-01 12:29 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{22B95B09-F743-41EB-B8B2-00EAE0B44DA9}\offreg.dll
2011-10-01 12:27 . 2011-10-01 12:30 -------- d-----w- c:\users\Dennis Minaev\AppData\Local\temp
2011-10-01 12:27 . 2011-10-01 12:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-09-30 16:23 . 2011-09-12 23:14 7269712 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{22B95B09-F743-41EB-B8B2-00EAE0B44DA9}\mpengine.dll
2011-09-29 15:49 . 2011-09-29 15:49 -------- d-----w- C:\_OTL
2011-09-24 21:27 . 2011-09-24 21:27 -------- d-----w- c:\program files\ESET
2011-09-23 19:01 . 2011-09-23 19:01 -------- d-----w- c:\users\Dennis Minaev\AppData\Roaming\Malwarebytes
2011-09-23 19:00 . 2011-09-23 19:00 -------- d-----w- c:\programdata\Malwarebytes
2011-09-23 19:00 . 2011-08-31 15:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-09-23 19:00 . 2011-09-23 19:00 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-09-23 18:27 . 2011-09-23 18:27 -------- d-----w- c:\program files\MAGIX
2011-09-23 18:27 . 2011-09-23 18:27 -------- d-----w- c:\program files\Common Files\MAGIX Services
2011-09-20 16:49 . 2011-09-20 16:49 -------- d-----w- c:\program files\CCleaner
2011-09-14 18:09 . 2011-08-10 12:14 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-23 11:04 . 2011-08-10 09:49 916480 ----a-w- c:\windows\system32\wininet.dll
2011-07-23 11:00 . 2011-08-10 09:49 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-07-23 10:59 . 2011-08-10 09:49 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-07-23 10:59 . 2011-08-10 09:49 71680 ----a-w- c:\windows\system32\iesetup.dll
2011-07-23 10:59 . 2011-08-10 09:49 109056 ----a-w- c:\windows\system32\iesysprep.dll
2011-07-23 10:03 . 2011-08-10 09:49 385024 ----a-w- c:\windows\system32\html.iec
2011-07-23 09:27 . 2011-08-10 09:49 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2011-07-23 09:25 . 2011-08-10 09:49 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-07-11 13:25 . 2011-08-24 16:12 2048 ----a-w- c:\windows\system32\tzres.dll
2011-07-06 15:31 . 2011-08-10 09:50 214016 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-09-08 18:03 . 2011-08-15 16:06 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"Steam"="c:\program files\steam\steam.exe" [2011-08-01 1242448]
"QIP2005"="c:\program files\QIP\qip.exe" [2008-12-09 3259392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2008-08-27 6281760]
"VFD_DISPLAY"="c:\windows\sddetect.exe" [2007-04-18 225280]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 56928]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-05 54832]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-11-19 98304]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"Skytel"="Skytel.exe" [2008-08-27 1833504]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-11-04 281768]
"Zune Launcher"="c:\program files\Zune\ZuneLauncher.exe" [2010-11-11 159472]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-12-09 1226608]
"DivX Download Manager"="c:\program files\DivX\DivX Plus Web Player\DDmService.exe" [2010-12-08 63360]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Microsoft-Indexerstellung.lnk - c:\program files\Microsoft Office\Office\FINDFAST.EXE [1997-9-4 111376]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 adxapie;adxapie;c:\users\DENNIS~1\AppData\Local\Temp\adxapie.sys [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [x]
R3 UPnPService;UPnPService;c:\program files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [x]
R3 WMZuneComm;Zune Windows Mobile Connectivity Service;c:\program files\Zune\WMZuneComm.exe [2010-11-11 268528]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S2 AntiVirSchedulerService;Avira AntiVir Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-04-29 136360]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://search.babylon.com/home?AF=18827
uDefault_Search_URL = hxxp://search.qip.ru
uSearchAssistant = hxxp://search.qip.ru/ie
IE: Free YouTube Download - c:\users\Dennis Minaev\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Free YouTube to Mp3 Converter - c:\users\Dennis Minaev\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
FF - ProfilePath - c:\users\Dennis Minaev\AppData\Roaming\Mozilla\Firefox\Profiles\5tpjs8dc.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1561552&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - google.de
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.3&q=
FF - user.js: yahoo.homepage.dontask - true
FF - user.js: browser.sessionstore.resume_from_crash - false
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-26526809.sys
SafeBoot-77176790.sys
SafeBoot-WudfPf
SafeBoot-WudfRd
AddRemove-Adobe Acrobat 5.0 - c:\windows\ISUN0407.EXE
AddRemove-Alone in the Dark - The New Nightmare - c:\windows\IsUn0407.exe
AddRemove-ArcSoft PhotoImpression - c:\windows\IsUn0407.exe
AddRemove-Final Fantasy VII - c:\windows\IsUn0407.exe
AddRemove-PC-Bibliothek - c:\windows\unin0407.exe
AddRemove-YAMAHA SoftSynthesizer S-YXG70 - c:\windows\unin0407.exe
AddRemove-{7B63B2922B174135AFC0E1377DD81EC2} - c:\program files\DivX\DivXCodecUninstall.exe
.
.
.
**************************************************************************
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien:
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.db\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="Applications\\wmplayer.exe"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.doc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="Applications\\AcroRD32.exe"
.
[HKEY_USERS\S-1-5-21-2883731651-2019705986-642209600-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:ce,67,27,c8,bf,1c,e7,6e,41,9b,ec,53,a6,43,df,90,98,ff,b2,80,0f,c7,d9,
27,8f,b6,7c,b7,c2,3a,1a,75,46,13,f4,c6,9d,23,b5,fb,75,89,4d,9e,5d,5e,07,1b,\
"??"=hex:62,74,20,a5,e5,6d,f1,3d,40,2f,67,e0,83,23,9c,55
.
[HKEY_USERS\S-1-5-21-2883731651-2019705986-642209600-1000\Software\SecuROM\License information*]
@Allowed: (Read) (RestrictedCode)
"datasecu"=hex:78,98,72,f8,9b,ea,9f,a7,ee,dc,08,c7,48,8c,b7,24,4b,cf,32,5d,46,
03,d0,05,15,1b,50,0a,37,73,a8,ed,33,26,4b,9f,8c,d9,0e,2c,89,99,16,c3,93,ed,\
"rkeysecu"=hex:cb,bd,f2,61,5a,4e,c6,95,f2,29,8b,82,ba,6b,3d,44
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\DISPLAY\Default_Monitor\5&37ded5a2&0&12345678&02&00\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\DISPLAY\Default_Monitor\5&37ded5a2&0&12345678&02&00\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\DISPLAY\PHLC019\5&37ded5a2&0&UID257\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\DISPLAY\PHLC019\5&37ded5a2&0&UID257\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'Explorer.exe'(2056)
c:\program files\Hercules\WebCam Station\PhotoImpression\share\pihook.dll
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\program files\Canon\CAL\CALMAIN.exe
c:\windows\system32\WUDFHost.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\conime.exe
c:\windows\RtHDVCpl.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\ehome\ehmsas.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2011-10-01 14:38:03 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2011-10-01 12:37
.
Vor Suchlauf: 20 Verzeichnis(se), 363.957.198.848 Bytes frei
Nach Suchlauf: 25 Verzeichnis(se), 363.839.160.320 Bytes frei
.
- - End Of File - - D9294A95757847678A7ACC0144C753D6
Gruß Dennis |
|
01.10.2011, 21:35
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Google Redirect Virus" - Wie wieder entfernen? Ok. Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.10.2011, 13:13
| #25 |
| | "Google Redirect Virus" - Wie wieder entfernen? OSAM: OSAM Logfile: Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 13:46:58 on 03.10.2011 OS: Windows Vista Home Premium Edition Service Pack 2 (Build 6002), 32-bit Default Browser: Mozilla Corporation Firefox 7.0.1 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [Control Panel Objects] -----( %SystemRoot%\system32 )----- "DivXControlPanelApplet.cpl" - "DivX, Inc." - C:\Windows\system32\DivXControlPanelApplet.cpl "FINDFAST.CPL" - "Microsoft Corporation" - C:\Windows\system32\FINDFAST.CPL "MLCFG32.CPL" - "Microsoft Corporation" - C:\Windows\system32\MLCFG32.CPL "nvcpl.cpl" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.cpl "ODBCCP32.CPL" - "Microsoft Corporation" - C:\Windows\system32\ODBCCP32.CPL "QuickTime.cpl" - "Apple Computer, Inc." - C:\Windows\system32\QuickTime.cpl "sxgbcpl.cpl" - "YAMAHA CORPORATION" - C:\Windows\system32\sxgbcpl.cpl [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "adxapie" (adxapie) - ? - C:\Users\DENNIS~1\AppData\Local\Temp\adxapie.sys (File not found) "avgntflt" (avgntflt) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avgntflt.sys "avipbb" (avipbb) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avipbb.sys "catchme" (catchme) - ? - C:\ComboFix\catchme.sys (File not found) "ElbyCDIO Driver" (ElbyCDIO) - "Elaborate Bytes AG" - C:\Windows\System32\Drivers\ElbyCDIO.sys "ElbyDelay" (ElbyDelay) - "Elaborate Bytes" - C:\Windows\System32\Drivers\ElbyDelay.sys "FssFltr" (fssfltr) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\fssfltr.sys "Hamachi Network Interface" (hamachi) - "LogMeIn, Inc." - C:\Windows\System32\DRIVERS\hamachi.sys "IP in IP Tunnel Driver" (IpInIp) - ? - C:\Windows\System32\DRIVERS\ipinip.sys (File not found) "IPX Traffic Filter Driver" (NwlnkFlt) - ? - C:\Windows\System32\DRIVERS\nwlnkflt.sys (File not found) "IPX Traffic Forwarder Driver" (NwlnkFwd) - ? - C:\Windows\System32\DRIVERS\nwlnkfwd.sys (File not found) "MBAMProtector" (MBAMProtector) - "Malwarebytes Corporation" - C:\Windows\system32\drivers\mbam.sys "MBAMSwissArmy" (MBAMSwissArmy) - ? - C:\Windows\system32\drivers\mbamswissarmy.sys (File not found) "PPdus ASPI Shell" (Afc) - ? - C:\Windows\System32\drivers\Afc.sys (File not found) "PxHelp20" (PxHelp20) - "Sonic Solutions" - C:\Windows\System32\Drivers\PxHelp20.sys "ssmdrv" (ssmdrv) - "Avira GmbH" - C:\Windows\System32\DRIVERS\ssmdrv.sys "ugddypow" (ugddypow) - ? - C:\Users\DENNIS~1\AppData\Local\Temp\ugddypow.sys (Hidden registry entry, rootkit activity | File not found) [Explorer] -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {7D4D6379-F301-4311-BEBA-E26EB0561882} "NeroDigitalColumnHandler Class" - "Nero AG" - C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {A70C977A-BF00-412C-90B7-034C51DA2439} "DesktopContext Class" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.dll {BB7DF450-F119-11CD-8465-00AA00425D90} "Microsoft Access Custom Icon Handler" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office\soa800.dll {993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll {59850401-6664-101B-B21C-00AA004BA90B} "Microsoft Office Sammelmappen-Teiler" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office\UNBIND.DLL {C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} "NVIDIA CPL Context Menu Extension" - "NVIDIA Corporation" - C:\Windows\system32\nvshext.dll {FFB699E0-306A-11d3-8BD1-00104B6F7516} "NVIDIA CPL Extension" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.dll {0006F045-0000-0000-C000-000000000046} "Outlook File Icon Extension" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office\olkfstub.dll {45AC2688-0253-4ED8-97DE-B5370FA7D48A} "Shell Extension for Malware scanning" - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\shlext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} "WinRAR" - ? - C:\Program Files\WinRAR\rarext.dll [Internet Explorer] -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) -----( HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks )----- {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} "qipbar" - ? - (File not found | COM-object registry key not found) {95289393-33EA-4F8D-B952-483415B9C955} "{95289393-33EA-4F8D-B952-483415B9C955}" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} "Java Plug-in 1.6.0_26" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_26" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\npjpi160_26.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} "{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}" - ? - (File not found | COM-object registry key not found) / hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- "ICQ7.2" - "ICQ, LLC." - C:\Program Files\ICQ7.2\ICQ.exe -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} "Adobe PDF Reader" - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll {593DDEC6-7468-4cdd-90E1-42DADAA222E9} "DivX HiQ" - "DivX, LLC" - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll {326E768D-4182-46FD-9C16-1449A49795F4} "DivX Plus Web Player HTML5 <video>" - "DivX, LLC" - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2ssv.dll {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} "Search Helper" - "Microsoft Corporation" - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [Logon] -----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\Users\Dennis Minaev\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini "Microsoft-Indexerstellung.lnk" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office\FINDFAST.EXE (Shortcut exists | File exists) -----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )----- "QIP2005" - "The Author of QIP" - C:\Program Files\QIP\qip.exe "Steam" - "Valve Corporation" - "c:\program files\steam\steam.exe" -silent -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "Adobe Reader Speed Launcher" - "Adobe Systems Incorporated" - "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "avgnt" - "Avira GmbH" - "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min "DivX Download Manager" - "DivX, LLC" - "C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe" start "DivXUpdate" - ? - "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW "LanguageShortcut" - ? - "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" "Malwarebytes' Anti-Malware" - "Malwarebytes Corporation" - "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray "Malwarebytes' Anti-Malware (reboot)" - "Malwarebytes Corporation" - "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript "NeroFilterCheck" - "Ahead Software Gmbh" - C:\Windows\system32\NeroCheck.exe "QuickTime Task" - "Apple Computer, Inc." - "C:\Program Files\QuickTime\qttask.exe" -atboottime "RemoteControl" - "Cyberlink Corp." - "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" "SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files\Common Files\Java\Java Update\jusched.exe" "VFD_DISPLAY" - ? - C:\Windows\sddetect.exe "Zune Launcher" - "Microsoft Corporation" - "C:\Program Files\Zune\ZuneLauncher.exe" [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100" (WPFFontCache_v0400) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe "Avira AntiVir Guard" (AntiVirService) - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\avguard.exe "Avira AntiVir Planer" (AntiVirSchedulerService) - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\sched.exe "Canon Camera Access Library 8" (CCALib8) - "Canon Inc." - C:\Program Files\Canon\CAL\CALMAIN.exe "Cyberlink RichVideo Service(CRVS)" (RichVideo) - ? - C:\Program Files\CyberLink\Shared Files\RichVideo.exe "InstallDriver Table Manager" (IDriverT) - "Macrovision Corporation" - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe "MBAMService" (MBAMService) - "Malwarebytes Corporation" - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe "Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe "NVIDIA Display Driver Service" (nvsvc) - "NVIDIA Corporation" - C:\Windows\system32\nvvsvc.exe "SeaPort" (SeaPort) - "Microsoft Corporation" - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe "Steam Client Service" (Steam Client Service) - "Valve Corporation" - C:\Program Files\Common Files\Steam\SteamService.exe "stllssvr" (stllssvr) - "MicroVision Development, Inc." - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe "UPnPService" (UPnPService) - ? - C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe (File not found) "Windows Live Family Safety-Dienst" (fsssvc) - "Microsoft Corporation" - C:\Program Files\Windows Live\Family Safety\fsssvc.exe "Zune Network Sharing Service" (ZuneNetworkSvc) - "Microsoft Corporation" - C:\Program Files\Zune\ZuneNss.exe "Zune Windows Mobile Connectivity Service" (WMZuneComm) - "Microsoft Corporation" - C:\Program Files\Zune\WMZuneComm.exe "Zune Wireless Configuration Service" (ZuneWlanCfgSvc) - "Microsoft Corporation" - C:\Program Files\Zune\ZuneWlanCfgSvc.exe ===[ Logfile end ]=========================================[ Logfile end ]=== If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru aswMBR: aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software Run date: 2011-10-03 13:49:06 ----------------------------- 13:49:06.959 OS Version: Windows 6.0.6002 Service Pack 2 13:49:06.959 Number of processors: 4 586 0x1707 13:49:06.959 ComputerName: VISTA UserName: 13:49:09.003 Initialize success 13:50:54.857 AVAST engine defs: 11100202 13:51:42.047 The log file has been saved successfully to "C:\Users\Dennis Minaev\Desktop\aswMBR.txt" 13:53:24.829 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 13:53:24.829 Disk 0 Vendor: ST3500620AS SD25 Size: 476940MB BusType: 3 13:53:24.829 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-2 13:53:24.844 Disk 1 Vendor: WDC_WD5000AACS-00G8B0 05.04C05 Size: 476940MB BusType: 3 13:53:26.872 Disk 0 MBR read successfully 13:53:26.872 Disk 0 MBR scan 13:53:26.888 Disk 0 Windows VISTA default MBR code 13:53:26.904 Disk 0 scanning sectors +976752000 13:53:26.982 Disk 0 scanning C:\Windows\system32\drivers 13:53:37.870 Service scanning 13:53:39.274 Modules scanning 13:54:12.502 Disk 0 trace - called modules: 13:54:12.518 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys 13:54:12.846 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86d16190] 13:54:12.846 3 CLASSPNP.SYS[807b88b3] -> nt!IofCallDriver -> [0x8641a240] 13:54:12.861 5 acpi.sys[806956bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x8641ab98] 13:54:13.626 AVAST engine scan C:\Windows 13:54:18.774 AVAST engine scan C:\Windows\system32 13:56:51.108 AVAST engine scan C:\Windows\system32\drivers 13:57:03.369 AVAST engine scan C:\Users\Dennis Minaev 14:05:59.682 AVAST engine scan C:\ProgramData 14:08:31.813 Scan finished successfully 14:09:02.451 Disk 0 MBR has been saved successfully to "C:\Users\Dennis Minaev\Desktop\MBR.dat" 14:09:02.451 The log file has been saved successfully to "C:\Users\Dennis Minaev\Desktop\aswMBR.txt" Bei GMER habe ich auch einen Scan gemacht, aber irgendwie bekomme ich da kein log, auch wenn ich auf den Copy-Button gehe... Gruß Dennis |
|
04.10.2011, 15:55
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Google Redirect Virus" - Wie wieder entfernen? Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!! Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt: ESET Online Scanner
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.10.2011, 16:52
| #27 |
| | "Google Redirect Virus" - Wie wieder entfernen? OK, dann mal hier die drei Logs: Malwarebytes' Anti-Malware 1.51.2.1300 www.malwarebytes.org Datenbank Version: 7867 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.19120 04.10.2011 19:48:10 mbam-log-2011-10-04 (19-48-10).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|) Durchsuchte Objekte: 507120 Laufzeit: 1 Stunde(n), 38 Minute(n), 45 Sekunde(n) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 0 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 0 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: (Keine bösartigen Objekte gefunden) SUPERAntiSpyware Scan Log hxxp://www.superantispyware.com Generated 10/06/2011 at 08:54 PM Application Version : 5.0.1128 Core Rules Database Version : 7763 Trace Rules Database Version: 5575 Scan type : Complete Scan Total Scan Time : 03:38:27 Operating System Information Windows Vista Home Premium 32-bit, Service Pack 2 (Build 6.00.6002) UAC On - Limited User (Administrator User) Memory items scanned : 609 Memory threats detected : 0 Registry items scanned : 38646 Registry threats detected : 0 File items scanned : 293029 File threats detected : 361 Adware.Tracking Cookie C:\Users\Dennis Minaev\AppData\Roaming\Microsoft\Windows\Cookies\SZPM6BTS.txt [ /adfarm1.adition.com ] C:\Users\Dennis Minaev\AppData\Roaming\Microsoft\Windows\Cookies\HTJ71MJV.txt [ /doubleclick.net ] C:\Users\Dennis Minaev\AppData\Roaming\Microsoft\Windows\Cookies\33IN0J7N.txt [ /atdmt.com ] C:\Users\Dennis Minaev\AppData\Roaming\Microsoft\Windows\Cookies\JIDLSUUY.txt [ /ad2.adfarm1.adition.com ] C:\Users\Dennis Minaev\AppData\Roaming\Microsoft\Windows\Cookies\5VCELZ1F.txt [ /atdmt.combing.com ] C:\USERS\DENNIS MINAEV\Cookies\HTJ71MJV.txt [ Cookie:dennis minaev@doubleclick.net/ ] C:\USERS\DENNIS MINAEV\Cookies\33IN0J7N.txt [ Cookie:dennis minaev@atdmt.com/ ] C:\USERS\DENNIS MINAEV\Cookies\JIDLSUUY.txt [ Cookie:dennis minaev@ad2.adfarm1.adition.com/ ] imagesrv.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\3T5GA6GD ] media.mtvnservices.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\3T5GA6GD ] secure-us.imrworldwide.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\3T5GA6GD ] tags.trackinganalytics.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] tags.trackinganalytics.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .doubleclick.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .insightexpressai.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .insightexpressai.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .insightexpressai.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .insightexpressai.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .insightexpressai.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .insightexpressai.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .insightexpressai.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .imrworldwide.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .imrworldwide.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ads2.net2day.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adtech.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .ad.adnet.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ads4.net2day.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] tracking.gameforge.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ads4.net2day.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .revsci.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tradedoubler.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tracking.quisma.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .a.revenuemax.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] tracking.mlsat02.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .invitemedia.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .overture.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .mediaplex.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .atdmt.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tracking.quisma.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .sevenoneintermedia.112.2o7.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] tracking.sim-technik.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] eas.apm.emediate.eu [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] track.adform.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .im.banner.t-online.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tradedoubler.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .xiti.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] www.etracker.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .loyaltypartner.122.2o7.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] www.googleadservices.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .questionmarket.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .specificclick.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] adx.chip.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adxpose.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .dealtime.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] stat.dealtime.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] tracker.d-sire.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adtech.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adtech.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .apmebf.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .content.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adbrite.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .interclick.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .interclick.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] clicks.pangora.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] clicks.pangora.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] clicks.pangora.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] clicks.pangora.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] clicks.pangora.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] adserver.adreactor.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .ads.quartermedia.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .ads.quartermedia.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .ads.quartermedia.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .apmebf.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .bs.serving-sys.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .veohnetwork.122.2o7.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .deutschepostag.112.2o7.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] www.etracker.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .im.banner.t-online.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] www.etracker.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .questionmarket.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .traffichaus.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .paypal.112.2o7.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tracking.mindshare.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .im.banner.t-online.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] www.googleadservices.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .statcounter.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adviva.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .de.partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .zedo.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] rts.pgmediaserve.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] rts.pgmediaserve.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] rts.pgmediaserve.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .de.partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .de.partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .de.partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .de.partypoker.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .zedo.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .aim4media.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .aim4media.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .collective-media.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .kontera.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adinterax.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .overture.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .overture.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] track.adform.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adform.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .mediaplex.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] accounts.google.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] www.googleadservices.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .atdmt.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .h.atdmt.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .h.atdmt.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .atdmt.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .atdmt.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .h.atdmt.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .h.atdmt.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .azjmp.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .azjmp.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .azjmp.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .trafficmp.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .trafficmp.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .trafficmp.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adbrite.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .invitemedia.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .invitemedia.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .yadro.ru [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .yadro.ru [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .exoclick.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .exoclick.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .bs.serving-sys.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .revsci.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .revsci.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .revsci.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adinterax.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad4.adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ads2.net2day.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .findwallpaper.info [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .findwallpaper.info [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .findwallpaper.info [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .media.funpic.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .media.funpic.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .media.funpic.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adbrite.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adbrite.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adbrite.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adbrite.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adbrite.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tribalfusion.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .invitemedia.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .content.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .im.banner.t-online.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad1.adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .server.cpmstar.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .server.cpmstar.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ads2.net2day.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ads2.net2day.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.zanox.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ads4.net2day.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tracking.quisma.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ads2.net2day.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] eas.apm.emediate.eu [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.adition.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.adition.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ads3.net2day.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .mediaplex.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] www.multimediaxis.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] www.multimediaxis.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .multimediaxis.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .multimediaxis.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .multimediaxis.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.yieldmanager.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .ad.adnet.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .ad.adnet.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .2o7.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .clickfuse.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .clickfuse.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .clickfuse.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .clickfuse.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .clickfuse.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .ads.quartermedia.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tracking.quisma.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] adserver2.clipkit.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .mediamarkt.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .fastclick.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .revsci.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .revsci.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .revsci.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .revsci.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adtech.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tradedoubler.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .clickfuse.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .media6degrees.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tradedoubler.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] studivz.adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] studivz.adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad.zanox.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .zanox.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .media6degrees.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .media6degrees.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .media6degrees.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tracking.quisma.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tracking.quisma.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] tracking.quisma.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] tracking.quisma.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .unitymedia.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .unitymedia.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .unitymedia.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tracking.quisma.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .tradedoubler.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .traffictrack.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad3.adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .server.cpmstar.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .server.cpmstar.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .server.cpmstar.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] media-mgmt.armorgames.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .serving-sys.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .zanox-affiliate.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .webmasterplan.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] www.zanox-affiliate.de [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ww251.smartadserver.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .smartadserver.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .doubleclick.net [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .questionmarket.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .xiti.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] ad2.adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] .adfarm1.adition.com [ C:\USERS\DENNIS MINAEV\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5TPJS8DC.DEFAULT\COOKIES.SQLITE ] Trojan.Agent/Gen-FakeAV C:\PROGRAM FILES\WINRAR\DEFAULT.SFX ESETSmartInstaller@High as downloader log: all ok # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6528 # api_version=3.0.2 # EOSSerial=e753b80c8134234293d95fe224027244 # end=stopped # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2011-09-24 09:30:06 # local_time=2011-09-24 11:30:06 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1033 # osver=6.0.6002 NT Service Pack 2 # compatibility_mode=1797 16775165 100 94 98813 53436594 101285 0 # compatibility_mode=5892 16776573 100 100 4469 154432466 0 0 # compatibility_mode=8192 67108863 100 0 109 109 0 0 # scanned=119 # found=0 # cleaned=0 # scan_time=68 ESETSmartInstaller@High as downloader log: all ok esets_scanner_update returned -1 esets_gle=53251 # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6528 # api_version=3.0.2 # EOSSerial=e753b80c8134234293d95fe224027244 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2011-09-25 12:09:51 # local_time=2011-09-25 02:09:51 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1033 # osver=6.0.6002 NT Service Pack 2 # compatibility_mode=1797 16775165 100 94 143705 53481486 146177 0 # compatibility_mode=5892 16776573 100 100 1062 154477358 0 0 # compatibility_mode=8192 67108863 100 0 45001 45001 0 0 # scanned=347759 # found=3 # cleaned=0 # scan_time=7961 C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe a variant of Win32/1AntiVirus application (unable to clean) 00000000000000000000000000000000 I C:\Users\Dennis Minaev\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\2de1bacb-335aac92 Java/Agent.DO trojan (unable to clean) 00000000000000000000000000000000 I C:\Windows\System32\mmcico32.dll a variant of Win32/Spy.Agent.NTN trojan (unable to clean) 00000000000000000000000000000000 I Die vom SUPERAntiSpyware gefundenen infizierten Dateien habe ich löschen lassen. Gruß Dennis |
|
07.10.2011, 16:57
| #28 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Google Redirect Virus" - Wie wieder entfernen?Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.10.2011, 17:29
| #29 |
| | "Google Redirect Virus" - Wie wieder entfernen? Hochgeladen. Gruß Dennis |
|
07.10.2011, 21:34
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Google Redirect Virus" - Wie wieder entfernen? Sry, aber die Datei C:\Windows\System32\mmcico32.dll hast du nicht hochgeladen. Irgendeinen html Mist  Bitte nachholen
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu "Google Redirect Virus" - Wie wieder entfernen? |
| antivir, brauche, entfernen, firefox, google, google redirect, google redirect virus, klicke, laden, leute, neu, nicht mehr, problem, regeln, telekom, verbindung, virus, was soll ich machen, weitergeleitet, öffnet |
Linear-Darstellung
