| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Trojaner Blacole mit McAffee gefundenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
27.07.2012, 21:57
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Trojaner Blacole mit McAffee gefunden Sry ich kann dir jetzt nicht jede einzelne Zeile erklären. Danach wärst du auch nicht in der Lage selbst mit OTL umzugehen, denn das ist ein Spezialtool, dass man nicht mal ebenso ein paar Sätzen erklären kann während man in einer Bereinigung steckt! Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C  nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
28.07.2012, 09:16
| #17 |
 | Trojaner Blacole mit McAffee gefunden Guten morgen. Anbei das nächste Log.
__________________Code:
ATTFilter 09:24:35.0180 4804 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
09:24:37.0182 4804 ============================================================
09:24:37.0182 4804 Current date / time: 2012/07/28 09:24:37.0182
09:24:37.0182 4804 SystemInfo:
09:24:37.0182 4804
09:24:37.0182 4804 OS Version: 6.1.7601 ServicePack: 1.0
09:24:37.0182 4804 Product type: Workstation
09:24:37.0182 4804 ComputerName: MATZE-PC
09:24:37.0182 4804 UserName: Matze
09:24:37.0183 4804 Windows directory: C:\Windows
09:24:37.0183 4804 System windows directory: C:\Windows
09:24:37.0183 4804 Running under WOW64
09:24:37.0183 4804 Processor architecture: Intel x64
09:24:37.0183 4804 Number of processors: 4
09:24:37.0183 4804 Page size: 0x1000
09:24:37.0183 4804 Boot type: Normal boot
09:24:37.0183 4804 ============================================================
09:24:37.0956 4804 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:24:37.0961 4804 ============================================================
09:24:37.0961 4804 \Device\Harddisk0\DR0:
09:24:37.0962 4804 MBR partitions:
09:24:37.0962 4804 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x32000
09:24:37.0962 4804 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A32800, BlocksNum 0x239FB800
09:24:37.0962 4804 ============================================================
09:24:37.0981 4804 C: <-> \Device\Harddisk0\DR0\Partition1
09:24:37.0981 4804 ============================================================
09:24:37.0981 4804 Initialize success
09:24:37.0981 4804 ============================================================
09:29:07.0675 4868 ============================================================
09:29:07.0675 4868 Scan started
09:29:07.0675 4868 Mode: Manual; SigCheck; TDLFS;
09:29:07.0675 4868 ============================================================
09:29:08.0097 4868 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
09:29:08.0253 4868 1394ohci - ok
09:29:08.0284 4868 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
09:29:08.0299 4868 ACPI - ok
09:29:08.0331 4868 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
09:29:08.0424 4868 AcpiPmi - ok
09:29:08.0502 4868 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
09:29:08.0549 4868 adp94xx - ok
09:29:08.0580 4868 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
09:29:08.0596 4868 adpahci - ok
09:29:08.0627 4868 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
09:29:08.0643 4868 adpu320 - ok
09:29:08.0674 4868 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
09:29:08.0783 4868 AeLookupSvc - ok
09:29:08.0861 4868 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
09:29:08.0970 4868 AFD - ok
09:29:09.0017 4868 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
09:29:09.0048 4868 agp440 - ok
09:29:09.0095 4868 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
09:29:09.0204 4868 ALG - ok
09:29:09.0251 4868 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
09:29:09.0282 4868 aliide - ok
09:29:09.0313 4868 AMD External Events Utility (f687d4976eff550fb0be45a5cb19f18f) C:\Windows\system32\atiesrxx.exe
09:29:09.0454 4868 AMD External Events Utility - ok
09:29:09.0469 4868 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
09:29:09.0485 4868 amdide - ok
09:29:09.0532 4868 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
09:29:09.0610 4868 AmdK8 - ok
09:29:10.0078 4868 amdkmdag (74687c33c4ad25a975bbb1ea1e8b3884) C:\Windows\system32\DRIVERS\atikmdag.sys
09:29:10.0390 4868 amdkmdag - ok
09:29:10.0546 4868 amdkmdap (c7f56ed86327a78e7f8a5cc503a98bd6) C:\Windows\system32\DRIVERS\atikmpag.sys
09:29:10.0671 4868 amdkmdap - ok
09:29:10.0717 4868 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
09:29:10.0780 4868 AmdPPM - ok
09:29:10.0842 4868 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
09:29:10.0920 4868 amdsata - ok
09:29:10.0936 4868 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
09:29:10.0951 4868 amdsbs - ok
09:29:10.0967 4868 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
09:29:11.0029 4868 amdxata - ok
09:29:11.0092 4868 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
09:29:11.0279 4868 AppID - ok
09:29:11.0295 4868 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
09:29:11.0388 4868 AppIDSvc - ok
09:29:11.0451 4868 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
09:29:11.0529 4868 Appinfo - ok
09:29:11.0575 4868 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
09:29:11.0607 4868 arc - ok
09:29:11.0638 4868 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
09:29:11.0653 4868 arcsas - ok
09:29:11.0685 4868 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
09:29:11.0794 4868 AsyncMac - ok
09:29:11.0841 4868 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
09:29:11.0856 4868 atapi - ok
09:29:11.0950 4868 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
09:29:12.0059 4868 AudioEndpointBuilder - ok
09:29:12.0059 4868 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
09:29:12.0106 4868 AudioSrv - ok
09:29:12.0168 4868 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
09:29:12.0309 4868 AxInstSV - ok
09:29:12.0371 4868 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
09:29:12.0465 4868 b06bdrv - ok
09:29:12.0511 4868 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
09:29:12.0589 4868 b57nd60a - ok
09:29:12.0886 4868 BCM43XX (2d659b569a76cdb83b815675a80d7096) C:\Windows\system32\DRIVERS\bcmwl664.sys
09:29:12.0979 4868 BCM43XX - ok
09:29:13.0089 4868 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
09:29:13.0167 4868 BDESVC - ok
09:29:13.0213 4868 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
09:29:13.0307 4868 Beep - ok
09:29:13.0416 4868 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
09:29:13.0494 4868 BFE - ok
09:29:13.0572 4868 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
09:29:13.0681 4868 BITS - ok
09:29:13.0759 4868 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
09:29:13.0822 4868 blbdrive - ok
09:29:13.0869 4868 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
09:29:13.0947 4868 bowser - ok
09:29:13.0978 4868 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:29:14.0071 4868 BrFiltLo - ok
09:29:14.0087 4868 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:29:14.0134 4868 BrFiltUp - ok
09:29:14.0196 4868 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
09:29:14.0290 4868 Browser - ok
09:29:14.0337 4868 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
09:29:14.0430 4868 Brserid - ok
09:29:14.0446 4868 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
09:29:14.0508 4868 BrSerWdm - ok
09:29:14.0539 4868 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
09:29:14.0602 4868 BrUsbMdm - ok
09:29:14.0633 4868 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
09:29:14.0695 4868 BrUsbSer - ok
09:29:14.0727 4868 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
09:29:14.0789 4868 BTHMODEM - ok
09:29:14.0836 4868 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
09:29:14.0914 4868 bthserv - ok
09:29:14.0961 4868 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
09:29:15.0039 4868 cdfs - ok
09:29:15.0117 4868 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
09:29:15.0179 4868 cdrom - ok
09:29:15.0226 4868 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
09:29:15.0304 4868 CertPropSvc - ok
09:29:15.0351 4868 cfwids (274ce03459896006f7a5069266e0469e) C:\Windows\system32\drivers\cfwids.sys
09:29:15.0366 4868 cfwids - ok
09:29:15.0413 4868 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
09:29:15.0475 4868 circlass - ok
09:29:15.0522 4868 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
09:29:15.0553 4868 CLFS - ok
09:29:15.0647 4868 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:29:15.0663 4868 clr_optimization_v2.0.50727_32 - ok
09:29:15.0694 4868 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:29:15.0725 4868 clr_optimization_v2.0.50727_64 - ok
09:29:15.0819 4868 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:29:15.0897 4868 clr_optimization_v4.0.30319_32 - ok
09:29:15.0928 4868 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:29:15.0990 4868 clr_optimization_v4.0.30319_64 - ok
09:29:16.0037 4868 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
09:29:16.0084 4868 CmBatt - ok
09:29:16.0131 4868 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
09:29:16.0162 4868 cmdide - ok
09:29:16.0209 4868 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
09:29:16.0255 4868 CNG - ok
09:29:16.0271 4868 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
09:29:16.0287 4868 Compbatt - ok
09:29:16.0349 4868 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
09:29:16.0474 4868 CompositeBus - ok
09:29:16.0489 4868 COMSysApp - ok
09:29:16.0521 4868 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
09:29:16.0536 4868 crcdisk - ok
09:29:16.0583 4868 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
09:29:16.0645 4868 CryptSvc - ok
09:29:16.0801 4868 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
09:29:16.0864 4868 cvhsvc - ok
09:29:16.0942 4868 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
09:29:17.0051 4868 DcomLaunch - ok
09:29:17.0098 4868 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
09:29:17.0223 4868 defragsvc - ok
09:29:17.0316 4868 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
09:29:17.0379 4868 DfsC - ok
09:29:17.0457 4868 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
09:29:17.0535 4868 Dhcp - ok
09:29:17.0566 4868 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
09:29:17.0613 4868 discache - ok
09:29:17.0659 4868 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
09:29:17.0691 4868 Disk - ok
09:29:17.0753 4868 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
09:29:17.0831 4868 Dnscache - ok
09:29:17.0893 4868 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
09:29:18.0018 4868 dot3svc - ok
09:29:18.0049 4868 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
09:29:18.0096 4868 DPS - ok
09:29:18.0127 4868 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
09:29:18.0143 4868 drmkaud - ok
09:29:18.0252 4868 DsiWMIService (1fca854cedfc2ccd0c22e46ea4ea18f1) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
09:29:18.0283 4868 DsiWMIService - ok
09:29:18.0361 4868 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
09:29:18.0393 4868 dtsoftbus01 - ok
09:29:18.0486 4868 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
09:29:18.0580 4868 DXGKrnl - ok
09:29:18.0611 4868 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
09:29:18.0673 4868 EapHost - ok
09:29:18.0892 4868 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
09:29:18.0985 4868 ebdrv - ok
09:29:19.0110 4868 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
09:29:19.0188 4868 EFS - ok
09:29:19.0297 4868 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
09:29:19.0438 4868 ehRecvr - ok
09:29:19.0469 4868 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
09:29:19.0563 4868 ehSched - ok
09:29:19.0656 4868 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
09:29:19.0687 4868 elxstor - ok
09:29:19.0812 4868 ePowerSvc (3ea2c4f68a782839d97b3c83595575b6) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
09:29:19.0875 4868 ePowerSvc - ok
09:29:19.0999 4868 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
09:29:20.0046 4868 ErrDev - ok
09:29:20.0140 4868 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
09:29:20.0233 4868 EventSystem - ok
09:29:20.0265 4868 ewusbnet (251af86e0a4ddf3a6b181ed5103b06b1) C:\Windows\system32\DRIVERS\ewusbnet.sys
09:29:20.0389 4868 ewusbnet - ok
09:29:20.0421 4868 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
09:29:20.0499 4868 exfat - ok
09:29:20.0545 4868 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
09:29:20.0639 4868 fastfat - ok
09:29:20.0733 4868 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
09:29:20.0842 4868 Fax - ok
09:29:20.0857 4868 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
09:29:20.0889 4868 fdc - ok
09:29:20.0935 4868 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
09:29:21.0013 4868 fdPHost - ok
09:29:21.0029 4868 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
09:29:21.0091 4868 FDResPub - ok
09:29:21.0154 4868 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
09:29:21.0185 4868 FileInfo - ok
09:29:21.0201 4868 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
09:29:21.0263 4868 Filetrace - ok
09:29:21.0403 4868 FLEXnet Licensing Service (bb0667b0171b632b97ea759515476f07) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
09:29:21.0435 4868 FLEXnet Licensing Service - ok
09:29:21.0466 4868 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
09:29:21.0513 4868 flpydisk - ok
09:29:21.0559 4868 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
09:29:21.0575 4868 FltMgr - ok
09:29:21.0669 4868 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
09:29:21.0762 4868 FontCache - ok
09:29:21.0840 4868 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:29:21.0918 4868 FontCache3.0.0.0 - ok
09:29:21.0965 4868 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
09:29:21.0996 4868 FsDepends - ok
09:29:22.0027 4868 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
09:29:22.0105 4868 Fs_Rec - ok
09:29:22.0152 4868 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
09:29:22.0183 4868 fvevol - ok
09:29:22.0215 4868 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
09:29:22.0230 4868 gagp30kx - ok
09:29:22.0308 4868 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
09:29:22.0402 4868 gpsvc - ok
09:29:22.0480 4868 GREGService (0191dee9b9eb7902af2cf4f67301095d) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
09:29:22.0511 4868 GREGService - ok
09:29:22.0620 4868 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:29:22.0651 4868 gupdate - ok
09:29:22.0698 4868 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:29:22.0714 4868 gupdatem - ok
09:29:22.0761 4868 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
09:29:22.0776 4868 gusvc - ok
09:29:22.0792 4868 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
09:29:22.0885 4868 hcw85cir - ok
09:29:22.0948 4868 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
09:29:23.0057 4868 HdAudAddService - ok
09:29:23.0104 4868 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
09:29:23.0166 4868 HDAudBus - ok
09:29:23.0229 4868 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
09:29:23.0307 4868 HECIx64 - ok
09:29:23.0322 4868 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
09:29:23.0353 4868 HidBatt - ok
09:29:23.0385 4868 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
09:29:23.0416 4868 HidBth - ok
09:29:23.0463 4868 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
09:29:23.0509 4868 HidIr - ok
09:29:23.0556 4868 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
09:29:23.0650 4868 hidserv - ok
09:29:23.0712 4868 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
09:29:23.0790 4868 HidUsb - ok
09:29:23.0837 4868 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
09:29:23.0915 4868 hkmsvc - ok
09:29:23.0962 4868 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
09:29:24.0087 4868 HomeGroupListener - ok
09:29:24.0133 4868 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
09:29:24.0196 4868 HomeGroupProvider - ok
09:29:24.0258 4868 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
09:29:24.0336 4868 HpSAMD - ok
09:29:24.0414 4868 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
09:29:24.0523 4868 HTTP - ok
09:29:24.0586 4868 hwdatacard (4b5c07db91a0099272faae732e1152bd) C:\Windows\system32\DRIVERS\ewusbmdm.sys
09:29:24.0664 4868 hwdatacard - ok
09:29:24.0695 4868 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
09:29:24.0757 4868 hwpolicy - ok
09:29:24.0789 4868 hwusbfake (9c13a2691ac410cc7469f298684dca5d) C:\Windows\system32\DRIVERS\ewusbfake.sys
09:29:24.0913 4868 hwusbfake - ok
09:29:24.0960 4868 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
09:29:24.0991 4868 i8042prt - ok
09:29:25.0054 4868 iaStor (1384872112e8e7fd5786eceb8bddf4c9) C:\Windows\system32\DRIVERS\iaStor.sys
09:29:25.0085 4868 iaStor - ok
09:29:25.0147 4868 IAStorDataMgrSvc (6b24d1c3096de796d15571079ea5e98c) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
09:29:25.0225 4868 IAStorDataMgrSvc - ok
09:29:25.0303 4868 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
09:29:25.0350 4868 iaStorV - ok
09:29:25.0475 4868 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:29:25.0506 4868 idsvc - ok
09:29:25.0553 4868 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
09:29:25.0584 4868 iirsp - ok
09:29:25.0678 4868 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
09:29:25.0740 4868 IKEEXT - ok
09:29:25.0912 4868 IntcAzAudAddService (235362d403d9d677514649d88db31914) C:\Windows\system32\drivers\RTKVHD64.sys
09:29:25.0974 4868 IntcAzAudAddService - ok
09:29:26.0115 4868 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
09:29:26.0130 4868 intelide - ok
09:29:26.0177 4868 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
09:29:26.0224 4868 intelppm - ok
09:29:26.0271 4868 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
09:29:26.0349 4868 IPBusEnum - ok
09:29:26.0395 4868 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:29:26.0505 4868 IpFilterDriver - ok
09:29:26.0567 4868 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
09:29:26.0645 4868 iphlpsvc - ok
09:29:26.0676 4868 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
09:29:26.0754 4868 IPMIDRV - ok
09:29:26.0785 4868 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
09:29:26.0863 4868 IPNAT - ok
09:29:26.0895 4868 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
09:29:26.0988 4868 IRENUM - ok
09:29:27.0019 4868 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
09:29:27.0051 4868 isapnp - ok
09:29:27.0082 4868 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
09:29:27.0160 4868 iScsiPrt - ok
09:29:27.0207 4868 k57nd60a (37e053a2cf8f0082b689ed74106e0cec) C:\Windows\system32\DRIVERS\k57nd60a.sys
09:29:27.0300 4868 k57nd60a - ok
09:29:27.0363 4868 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
09:29:27.0394 4868 kbdclass - ok
09:29:27.0425 4868 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
09:29:27.0487 4868 kbdhid - ok
09:29:27.0519 4868 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:29:27.0534 4868 KeyIso - ok
09:29:27.0565 4868 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
09:29:27.0628 4868 KSecDD - ok
09:29:27.0643 4868 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
09:29:27.0706 4868 KSecPkg - ok
09:29:27.0737 4868 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
09:29:27.0799 4868 ksthunk - ok
09:29:27.0862 4868 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
09:29:27.0940 4868 KtmRm - ok
09:29:28.0033 4868 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
09:29:28.0127 4868 LanmanServer - ok
09:29:28.0158 4868 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
09:29:28.0252 4868 LanmanWorkstation - ok
09:29:28.0299 4868 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
09:29:28.0408 4868 lltdio - ok
09:29:28.0470 4868 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
09:29:28.0548 4868 lltdsvc - ok
09:29:28.0579 4868 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
09:29:28.0657 4868 lmhosts - ok
09:29:28.0767 4868 LMS (dbc1136a62bd4decc3632df650284c2e) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
09:29:28.0798 4868 LMS - ok
09:29:28.0829 4868 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
09:29:28.0845 4868 LSI_FC - ok
09:29:28.0876 4868 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
09:29:28.0891 4868 LSI_SAS - ok
09:29:28.0907 4868 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:29:28.0923 4868 LSI_SAS2 - ok
09:29:28.0954 4868 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:29:28.0969 4868 LSI_SCSI - ok
09:29:28.0985 4868 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
09:29:29.0063 4868 luafv - ok
09:29:29.0172 4868 McAfee SiteAdvisor Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:29:29.0203 4868 McAfee SiteAdvisor Service - ok
09:29:29.0219 4868 McMPFSvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:29:29.0235 4868 McMPFSvc - ok
09:29:29.0250 4868 mcmscsvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:29:29.0266 4868 mcmscsvc - ok
09:29:29.0266 4868 McNaiAnn (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:29:29.0281 4868 McNaiAnn - ok
09:29:29.0313 4868 McNASvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:29:29.0328 4868 McNASvc - ok
09:29:29.0406 4868 McODS (dd2321925274f2902929d76ce2b0eb45) C:\Program Files\mcafee\VirusScan\mcods.exe
09:29:29.0437 4868 McODS - ok
09:29:29.0453 4868 McOobeSv (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:29:29.0469 4868 McOobeSv - ok
09:29:29.0469 4868 McProxy (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:29:29.0484 4868 McProxy - ok
09:29:29.0547 4868 McShield (e998e3b12101288d716558466cbf6ae1) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
09:29:29.0640 4868 McShield - ok
09:29:29.0687 4868 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
09:29:29.0765 4868 Mcx2Svc - ok
09:29:29.0812 4868 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
09:29:29.0827 4868 megasas - ok
09:29:29.0843 4868 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
09:29:29.0874 4868 MegaSR - ok
09:29:29.0921 4868 mfeapfk (01884cb7655c8908b43ff5e364fe6fd2) C:\Windows\system32\drivers\mfeapfk.sys
09:29:29.0952 4868 mfeapfk - ok
09:29:30.0015 4868 mfeavfk (dab9a9cdfb04e4d68924492aa043019d) C:\Windows\system32\drivers\mfeavfk.sys
09:29:30.0093 4868 mfeavfk - ok
09:29:30.0155 4868 mfeavfk01 - ok
09:29:30.0202 4868 mfefire (b26782c3d6045b4464017d7926877560) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
09:29:30.0264 4868 mfefire - ok
09:29:30.0311 4868 mfefirek (ce9a3680675c0907ade16404ca967b49) C:\Windows\system32\drivers\mfefirek.sys
09:29:30.0373 4868 mfefirek - ok
09:29:30.0436 4868 mfehidk (60cf67458dd29cd17e77f2327b1a9a54) C:\Windows\system32\drivers\mfehidk.sys
09:29:30.0529 4868 mfehidk - ok
09:29:30.0576 4868 mfenlfk (a8129cfb919347f8533c934b365e9202) C:\Windows\system32\DRIVERS\mfenlfk.sys
09:29:30.0607 4868 mfenlfk - ok
09:29:30.0639 4868 mferkdet (5041fa2bd2b3a2693b015771bfbf6dca) C:\Windows\system32\drivers\mferkdet.sys
09:29:30.0717 4868 mferkdet - ok
09:29:30.0779 4868 mfevtp (723a5eb6cef7f408c3d0f15a82a6bff8) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
09:29:30.0810 4868 mfevtp - ok
09:29:30.0857 4868 mfewfpk (919c56db14a0e1e2ab6da5d2821dc26e) C:\Windows\system32\drivers\mfewfpk.sys
09:29:30.0888 4868 mfewfpk - ok
09:29:30.0904 4868 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
09:29:30.0982 4868 MMCSS - ok
09:29:31.0013 4868 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
09:29:31.0107 4868 Modem - ok
09:29:31.0138 4868 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
09:29:31.0169 4868 monitor - ok
09:29:31.0231 4868 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
09:29:31.0278 4868 mouclass - ok
09:29:31.0294 4868 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
09:29:31.0341 4868 mouhid - ok
09:29:31.0387 4868 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
09:29:31.0419 4868 mountmgr - ok
09:29:31.0528 4868 MozillaMaintenance (6380ff81dd4d78b23398752d2f46ea43) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:29:31.0575 4868 MozillaMaintenance - ok
09:29:31.0590 4868 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
09:29:31.0668 4868 mpio - ok
09:29:31.0715 4868 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
09:29:31.0777 4868 mpsdrv - ok
09:29:31.0855 4868 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
09:29:31.0933 4868 MpsSvc - ok
09:29:31.0980 4868 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
09:29:32.0074 4868 MRxDAV - ok
09:29:32.0105 4868 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
09:29:32.0183 4868 mrxsmb - ok
09:29:32.0245 4868 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:29:32.0339 4868 mrxsmb10 - ok
09:29:32.0370 4868 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:29:32.0448 4868 mrxsmb20 - ok
09:29:32.0511 4868 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
09:29:32.0542 4868 msahci - ok
09:29:32.0573 4868 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
09:29:32.0604 4868 msdsm - ok
09:29:32.0635 4868 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
09:29:32.0682 4868 MSDTC - ok
09:29:32.0729 4868 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
09:29:32.0776 4868 Msfs - ok
09:29:32.0807 4868 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
09:29:32.0885 4868 mshidkmdf - ok
09:29:32.0916 4868 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
09:29:32.0932 4868 msisadrv - ok
09:29:32.0979 4868 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
09:29:33.0057 4868 MSiSCSI - ok
09:29:33.0072 4868 msiserver - ok
09:29:33.0150 4868 MSK80Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:29:33.0181 4868 MSK80Service - ok
09:29:33.0213 4868 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
09:29:33.0291 4868 MSKSSRV - ok
09:29:33.0322 4868 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
09:29:33.0369 4868 MSPCLOCK - ok
09:29:33.0384 4868 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
09:29:33.0462 4868 MSPQM - ok
09:29:33.0525 4868 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
09:29:33.0556 4868 MsRPC - ok
09:29:33.0603 4868 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
09:29:33.0634 4868 mssmbios - ok
09:29:33.0665 4868 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
09:29:33.0743 4868 MSTEE - ok
09:29:33.0774 4868 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
09:29:33.0805 4868 MTConfig - ok
09:29:33.0837 4868 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
09:29:33.0868 4868 Mup - ok
09:29:33.0899 4868 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
09:29:33.0961 4868 mwlPSDFilter - ok
09:29:33.0977 4868 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
09:29:33.0977 4868 mwlPSDNServ - ok
09:29:33.0993 4868 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
09:29:34.0008 4868 mwlPSDVDisk - ok
09:29:34.0086 4868 MWLService (3e5e20817259f7328c8f3be5421f35b9) C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
09:29:34.0117 4868 MWLService - ok
09:29:34.0180 4868 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
09:29:34.0258 4868 napagent - ok
09:29:34.0320 4868 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
09:29:34.0414 4868 NativeWifiP - ok
09:29:34.0523 4868 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
09:29:34.0617 4868 NDIS - ok
09:29:34.0663 4868 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
09:29:34.0726 4868 NdisCap - ok
09:29:34.0757 4868 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
09:29:34.0819 4868 NdisTapi - ok
09:29:34.0866 4868 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
09:29:35.0022 4868 Ndisuio - ok
09:29:35.0053 4868 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
09:29:35.0147 4868 NdisWan - ok
09:29:35.0178 4868 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
09:29:35.0319 4868 NDProxy - ok
09:29:35.0350 4868 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
09:29:35.0412 4868 NetBIOS - ok
09:29:35.0459 4868 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
09:29:35.0599 4868 NetBT - ok
09:29:35.0646 4868 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:29:35.0677 4868 Netlogon - ok
09:29:35.0724 4868 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
09:29:35.0849 4868 Netman - ok
09:29:35.0880 4868 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
09:29:35.0943 4868 netprofm - ok
09:29:36.0036 4868 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:29:36.0067 4868 NetTcpPortSharing - ok
09:29:36.0099 4868 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
09:29:36.0130 4868 nfrd960 - ok
09:29:36.0192 4868 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
09:29:36.0255 4868 NlaSvc - ok
09:29:36.0489 4868 NOBU (5839a8027d6d324a7cd494051a96628c) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
09:29:36.0567 4868 NOBU - ok
09:29:36.0676 4868 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
09:29:36.0769 4868 Npfs - ok
09:29:36.0785 4868 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
09:29:36.0863 4868 nsi - ok
09:29:36.0879 4868 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
09:29:36.0941 4868 nsiproxy - ok
09:29:37.0066 4868 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
09:29:37.0159 4868 Ntfs - ok
09:29:37.0253 4868 NTI IScheduleSvc (9a308fcdcca98a15b6f62d36a272160e) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
09:29:37.0284 4868 NTI IScheduleSvc - ok
09:29:37.0409 4868 NTIDrvr (ee3ba1024594d5d09e314f206b94069e) C:\Windows\system32\drivers\NTIDrvr.sys
09:29:37.0440 4868 NTIDrvr - ok
09:29:37.0471 4868 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
09:29:37.0534 4868 Null - ok
09:29:37.0581 4868 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
09:29:37.0659 4868 nvraid - ok
09:29:37.0690 4868 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
09:29:37.0705 4868 nvstor - ok
09:29:37.0752 4868 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
09:29:37.0783 4868 nv_agp - ok
09:29:37.0815 4868 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
09:29:37.0830 4868 ohci1394 - ok
09:29:37.0908 4868 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:29:37.0939 4868 ose - ok
09:29:38.0251 4868 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:29:38.0361 4868 osppsvc - ok
09:29:38.0485 4868 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
09:29:38.0563 4868 p2pimsvc - ok
09:29:38.0595 4868 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
09:29:38.0657 4868 p2psvc - ok
09:29:38.0719 4868 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
09:29:38.0766 4868 Parport - ok
09:29:38.0813 4868 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
09:29:38.0875 4868 partmgr - ok
09:29:38.0907 4868 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
09:29:38.0938 4868 PcaSvc - ok
09:29:38.0985 4868 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
09:29:39.0000 4868 pci - ok
09:29:39.0016 4868 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
09:29:39.0031 4868 pciide - ok
09:29:39.0047 4868 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
09:29:39.0078 4868 pcmcia - ok
09:29:39.0094 4868 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
09:29:39.0109 4868 pcw - ok
09:29:39.0141 4868 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
09:29:39.0234 4868 PEAUTH - ok
09:29:39.0312 4868 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
09:29:39.0359 4868 PerfHost - ok
09:29:39.0484 4868 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
09:29:39.0577 4868 pla - ok
09:29:39.0655 4868 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
09:29:39.0749 4868 PlugPlay - ok
09:29:39.0765 4868 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
09:29:39.0811 4868 PNRPAutoReg - ok
09:29:39.0858 4868 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
09:29:39.0874 4868 PNRPsvc - ok
09:29:39.0936 4868 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
09:29:39.0999 4868 PolicyAgent - ok
09:29:40.0030 4868 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
09:29:40.0061 4868 Power - ok
09:29:40.0155 4868 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
09:29:40.0233 4868 PptpMiniport - ok
09:29:40.0279 4868 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
09:29:40.0311 4868 Processor - ok
09:29:40.0357 4868 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
09:29:40.0451 4868 ProfSvc - ok
09:29:40.0482 4868 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:29:40.0513 4868 ProtectedStorage - ok
09:29:40.0576 4868 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
09:29:40.0701 4868 Psched - ok
09:29:40.0825 4868 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
09:29:40.0903 4868 ql2300 - ok
09:29:41.0028 4868 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
09:29:41.0059 4868 ql40xx - ok
09:29:41.0091 4868 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
09:29:41.0122 4868 QWAVE - ok
09:29:41.0137 4868 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
09:29:41.0184 4868 QWAVEdrv - ok
09:29:41.0200 4868 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
09:29:41.0247 4868 RasAcd - ok
09:29:41.0278 4868 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
09:29:41.0371 4868 RasAgileVpn - ok
09:29:41.0403 4868 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
09:29:41.0449 4868 RasAuto - ok
09:29:41.0481 4868 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
09:29:41.0605 4868 Rasl2tp - ok
09:29:41.0683 4868 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
09:29:41.0777 4868 RasMan - ok
09:29:41.0839 4868 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
09:29:41.0933 4868 RasPppoe - ok
09:29:41.0964 4868 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
09:29:42.0027 4868 RasSstp - ok
09:29:42.0073 4868 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
09:29:42.0183 4868 rdbss - ok
09:29:42.0214 4868 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
09:29:42.0229 4868 rdpbus - ok
09:29:42.0261 4868 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
09:29:42.0323 4868 RDPCDD - ok
09:29:42.0354 4868 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
09:29:42.0401 4868 RDPENCDD - ok
09:29:42.0401 4868 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
09:29:42.0448 4868 RDPREFMP - ok
09:29:42.0495 4868 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
09:29:42.0635 4868 RDPWD - ok
09:29:42.0682 4868 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
09:29:42.0697 4868 rdyboost - ok
09:29:42.0744 4868 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
09:29:42.0807 4868 RemoteAccess - ok
09:29:42.0838 4868 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
09:29:42.0900 4868 RemoteRegistry - ok
09:29:42.0931 4868 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
09:29:43.0009 4868 RpcEptMapper - ok
09:29:43.0025 4868 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
09:29:43.0041 4868 RpcLocator - ok
09:29:43.0103 4868 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
09:29:43.0181 4868 RpcSs - ok
09:29:43.0212 4868 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
09:29:43.0259 4868 rspndr - ok
09:29:43.0321 4868 RSUSBSTOR (763ae0c6d9df4c24b7e2c26036a8188a) C:\Windows\system32\Drivers\RtsUStor.sys
09:29:43.0399 4868 RSUSBSTOR - ok
09:29:43.0462 4868 RTHDMIAzAudService (d6d381b76056c668679723938f06f16c) C:\Windows\system32\drivers\RtHDMIVX.sys
09:29:43.0493 4868 RTHDMIAzAudService - ok
09:29:43.0540 4868 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:29:43.0555 4868 SamSs - ok
09:29:43.0587 4868 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
09:29:43.0618 4868 sbp2port - ok
09:29:43.0665 4868 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
09:29:43.0727 4868 SCardSvr - ok
09:29:43.0758 4868 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
09:29:43.0821 4868 scfilter - ok
09:29:43.0914 4868 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
09:29:43.0977 4868 Schedule - ok
09:29:44.0023 4868 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
09:29:44.0070 4868 SCPolicySvc - ok
09:29:44.0117 4868 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
09:29:44.0195 4868 SDRSVC - ok
09:29:44.0257 4868 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
09:29:44.0320 4868 secdrv - ok
09:29:44.0367 4868 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
09:29:44.0445 4868 seclogon - ok
09:29:44.0476 4868 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
09:29:44.0554 4868 SENS - ok
09:29:44.0569 4868 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
09:29:44.0601 4868 SensrSvc - ok
09:29:44.0616 4868 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
09:29:44.0663 4868 Serenum - ok
09:29:44.0710 4868 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
09:29:44.0741 4868 Serial - ok
09:29:44.0788 4868 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
09:29:44.0835 4868 sermouse - ok
09:29:44.0897 4868 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
09:29:45.0006 4868 SessionEnv - ok
09:29:45.0022 4868 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
09:29:45.0084 4868 sffdisk - ok
09:29:45.0100 4868 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
09:29:45.0147 4868 sffp_mmc - ok
09:29:45.0162 4868 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
09:29:45.0240 4868 sffp_sd - ok
09:29:45.0271 4868 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
09:29:45.0318 4868 sfloppy - ok
09:29:45.0427 4868 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
09:29:45.0521 4868 Sftfs - ok
09:29:45.0630 4868 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
09:29:45.0677 4868 sftlist - ok
09:29:45.0708 4868 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
09:29:45.0771 4868 Sftplay - ok
09:29:45.0786 4868 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
09:29:45.0802 4868 Sftredir - ok
09:29:45.0833 4868 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
09:29:45.0895 4868 Sftvol - ok
09:29:45.0927 4868 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
09:29:45.0942 4868 sftvsa - ok
09:29:45.0989 4868 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
09:29:46.0083 4868 SharedAccess - ok
09:29:46.0145 4868 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
09:29:46.0223 4868 ShellHWDetection - ok
09:29:46.0285 4868 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:29:46.0317 4868 SiSRaid2 - ok
09:29:46.0332 4868 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
09:29:46.0363 4868 SiSRaid4 - ok
09:29:46.0379 4868 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
09:29:46.0441 4868 Smb - ok
09:29:46.0488 4868 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
09:29:46.0535 4868 SNMPTRAP - ok
09:29:46.0551 4868 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
09:29:46.0566 4868 spldr - ok
09:29:46.0644 4868 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
09:29:46.0707 4868 Spooler - ok
09:29:46.0956 4868 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
09:29:47.0050 4868 sppsvc - ok
09:29:47.0175 4868 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
09:29:47.0237 4868 sppuinotify - ok
09:29:47.0315 4868 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
09:29:47.0455 4868 srv - ok
09:29:47.0518 4868 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
09:29:47.0565 4868 srv2 - ok
09:29:47.0596 4868 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
09:29:47.0643 4868 srvnet - ok
09:29:47.0674 4868 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
09:29:47.0736 4868 SSDPSRV - ok
09:29:47.0767 4868 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
09:29:47.0830 4868 SstpSvc - ok
09:29:47.0877 4868 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
09:29:47.0908 4868 stexstor - ok
09:29:47.0970 4868 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
09:29:48.0079 4868 stisvc - ok
09:29:48.0126 4868 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
09:29:48.0157 4868 swenum - ok
09:29:48.0204 4868 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
09:29:48.0298 4868 swprv - ok
09:29:48.0360 4868 SynTP (064a2530a4a7c7cec1be6a1945645be4) C:\Windows\system32\DRIVERS\SynTP.sys
09:29:48.0391 4868 SynTP - ok
09:29:48.0532 4868 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
09:29:48.0594 4868 SysMain - ok
09:29:48.0703 4868 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
09:29:48.0781 4868 TabletInputService - ok
09:29:48.0844 4868 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
09:29:48.0953 4868 TapiSrv - ok
09:29:48.0969 4868 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
09:29:49.0047 4868 TBS - ok
09:29:49.0218 4868 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
09:29:49.0327 4868 Tcpip - ok
09:29:49.0546 4868 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
09:29:49.0639 4868 TCPIP6 - ok
09:29:49.0749 4868 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
09:29:49.0842 4868 tcpipreg - ok
09:29:49.0873 4868 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
09:29:49.0951 4868 TDPIPE - ok
09:29:49.0983 4868 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
09:29:50.0061 4868 TDTCP - ok
09:29:50.0107 4868 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
09:29:50.0217 4868 tdx - ok
09:29:50.0279 4868 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
09:29:50.0357 4868 TermDD - ok
09:29:50.0404 4868 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
09:29:50.0513 4868 TermService - ok
09:29:50.0544 4868 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
09:29:50.0591 4868 Themes - ok
09:29:50.0607 4868 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
09:29:50.0653 4868 THREADORDER - ok
09:29:50.0669 4868 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
09:29:50.0716 4868 TrkWks - ok
09:29:50.0794 4868 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
09:29:50.0919 4868 TrustedInstaller - ok
09:29:50.0965 4868 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
09:29:51.0075 4868 tssecsrv - ok
09:29:51.0137 4868 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
09:29:51.0277 4868 TsUsbFlt - ok
09:29:51.0355 4868 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
09:29:51.0465 4868 tunnel - ok
09:29:51.0511 4868 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
09:29:51.0543 4868 uagp35 - ok
09:29:51.0558 4868 UBHelper (a17d5e1a6df4eab0a480f2c490de4c9d) C:\Windows\system32\drivers\UBHelper.sys
09:29:51.0621 4868 UBHelper - ok
09:29:51.0667 4868 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
09:29:51.0792 4868 udfs - ok
09:29:51.0839 4868 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
09:29:51.0886 4868 UI0Detect - ok
09:29:51.0933 4868 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
09:29:51.0964 4868 uliagpkx - ok
09:29:52.0026 4868 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
09:29:52.0104 4868 umbus - ok
09:29:52.0135 4868 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
09:29:52.0167 4868 UmPass - ok
09:29:52.0385 4868 UNS (7466809e6da561d60c2f1ce8ede3c73f) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
09:29:52.0447 4868 UNS - ok
09:29:52.0510 4868 Updater Service (f9ec9acd504d823d9b9ca98a4f8d3ca2) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
09:29:52.0541 4868 Updater Service - ok
09:29:52.0666 4868 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
09:29:52.0744 4868 upnphost - ok
09:29:52.0822 4868 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
09:29:52.0962 4868 usbccgp - ok
09:29:52.0993 4868 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
09:29:53.0071 4868 usbcir - ok
09:29:53.0134 4868 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
09:29:53.0243 4868 usbehci - ok
09:29:53.0290 4868 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
09:29:53.0368 4868 usbhub - ok
09:29:53.0415 4868 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
09:29:53.0461 4868 usbohci - ok
09:29:53.0508 4868 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
09:29:53.0555 4868 usbprint - ok
09:29:53.0586 4868 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:29:53.0695 4868 USBSTOR - ok
09:29:53.0742 4868 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
09:29:53.0836 4868 usbuhci - ok
09:29:53.0914 4868 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
09:29:54.0007 4868 usbvideo - ok
09:29:54.0054 4868 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
09:29:54.0132 4868 UxSms - ok
09:29:54.0179 4868 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:29:54.0210 4868 VaultSvc - ok
09:29:54.0226 4868 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
09:29:54.0241 4868 vdrvroot - ok
09:29:54.0319 4868 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
09:29:54.0413 4868 vds - ok
09:29:54.0460 4868 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
09:29:54.0475 4868 vga - ok
09:29:54.0491 4868 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
09:29:54.0538 4868 VgaSave - ok
09:29:54.0585 4868 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
09:29:54.0663 4868 vhdmp - ok
09:29:54.0678 4868 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
09:29:54.0694 4868 viaide - ok
09:29:54.0787 4868 VMCService (1b0d441d8ab264d39c2b09130cc28045) C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
09:29:54.0803 4868 VMCService ( UnsignedFile.Multi.Generic ) - warning
09:29:54.0803 4868 VMCService - detected UnsignedFile.Multi.Generic (1)
09:29:54.0819 4868 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
09:29:54.0850 4868 volmgr - ok
09:29:54.0897 4868 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
09:29:54.0975 4868 volmgrx - ok
09:29:55.0021 4868 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
09:29:55.0053 4868 volsnap - ok
09:29:55.0099 4868 vpcbus (abd9b4a7e2d0ae51a3b8df1af3152d61) C:\Windows\system32\DRIVERS\vpchbus.sys
09:29:55.0224 4868 vpcbus - ok
09:29:55.0271 4868 vpcnfltr (8acda395841538ce9713a67fe8b2a3eb) C:\Windows\system32\DRIVERS\vpcnfltr.sys
09:29:55.0349 4868 vpcnfltr - ok
09:29:55.0380 4868 vpcusb (31924e31bc315773e6d149b157db46d5) C:\Windows\system32\DRIVERS\vpcusb.sys
09:29:55.0427 4868 vpcusb - ok
09:29:55.0489 4868 vpcvmm (c5b651e52540e6f46da66574c74b4898) C:\Windows\system32\drivers\vpcvmm.sys
09:29:55.0521 4868 vpcvmm - ok
09:29:55.0552 4868 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
09:29:55.0583 4868 vsmraid - ok
09:29:55.0708 4868 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
09:29:55.0786 4868 VSS - ok
09:29:55.0911 4868 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
09:29:55.0973 4868 vwifibus - ok
09:29:56.0004 4868 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
09:29:56.0067 4868 vwififlt - ok
09:29:56.0113 4868 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
09:29:56.0176 4868 W32Time - ok
09:29:56.0191 4868 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
09:29:56.0223 4868 WacomPen - ok
09:29:56.0301 4868 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
09:29:56.0410 4868 WANARP - ok
09:29:56.0410 4868 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
09:29:56.0457 4868 Wanarpv6 - ok
09:29:56.0581 4868 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
09:29:56.0628 4868 WatAdminSvc - ok
09:29:56.0753 4868 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
09:29:56.0909 4868 wbengine - ok
09:29:57.0034 4868 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
09:29:57.0112 4868 WbioSrvc - ok
09:29:57.0159 4868 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
09:29:57.0252 4868 wcncsvc - ok
09:29:57.0252 4868 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
09:29:57.0330 4868 WcsPlugInService - ok
09:29:57.0377 4868 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
09:29:57.0393 4868 Wd - ok
09:29:57.0439 4868 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
09:29:57.0486 4868 Wdf01000 - ok
09:29:57.0502 4868 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
09:29:57.0595 4868 WdiServiceHost - ok
09:29:57.0611 4868 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
09:29:57.0642 4868 WdiSystemHost - ok
09:29:57.0689 4868 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
09:29:57.0783 4868 WebClient - ok
09:29:57.0829 4868 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
09:29:57.0907 4868 Wecsvc - ok
09:29:57.0939 4868 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
09:29:58.0001 4868 wercplsupport - ok
09:29:58.0032 4868 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
09:29:58.0095 4868 WerSvc - ok
09:29:58.0173 4868 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
09:29:58.0235 4868 WfpLwf - ok
09:29:58.0251 4868 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
09:29:58.0266 4868 WIMMount - ok
09:29:58.0297 4868 WinDefend - ok
09:29:58.0297 4868 WinHttpAutoProxySvc - ok
09:29:58.0375 4868 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
09:29:58.0469 4868 Winmgmt - ok
09:29:58.0625 4868 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
09:29:58.0734 4868 WinRM - ok
09:29:58.0890 4868 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
09:29:59.0031 4868 WinUsb - ok
09:29:59.0109 4868 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
09:29:59.0171 4868 Wlansvc - ok
09:29:59.0202 4868 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
09:29:59.0233 4868 WmiAcpi - ok
09:29:59.0311 4868 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
09:29:59.0358 4868 wmiApSrv - ok
09:29:59.0436 4868 WMPNetworkSvc - ok
09:29:59.0467 4868 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
09:29:59.0499 4868 WPCSvc - ok
09:29:59.0545 4868 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
09:29:59.0577 4868 WPDBusEnum - ok
09:29:59.0608 4868 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
09:29:59.0655 4868 ws2ifsl - ok
09:29:59.0670 4868 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
09:29:59.0701 4868 wscsvc - ok
09:29:59.0701 4868 WSearch - ok
09:29:59.0873 4868 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
09:29:59.0935 4868 wuauserv - ok
09:30:00.0076 4868 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
09:30:00.0201 4868 WudfPf - ok
09:30:00.0232 4868 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
09:30:00.0310 4868 WUDFRd - ok
09:30:00.0357 4868 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
09:30:00.0450 4868 wudfsvc - ok
09:30:00.0481 4868 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
09:30:00.0575 4868 WwanSvc - ok
09:30:00.0637 4868 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
09:30:00.0949 4868 \Device\Harddisk0\DR0 - ok
09:30:00.0965 4868 Boot (0x1200) (77a00d77beb3930fafff766894cfdd90) \Device\Harddisk0\DR0\Partition0
09:30:00.0965 4868 \Device\Harddisk0\DR0\Partition0 - ok
09:30:00.0996 4868 Boot (0x1200) (2473b83679be919f57e7784f8ae4b578) \Device\Harddisk0\DR0\Partition1
09:30:00.0996 4868 \Device\Harddisk0\DR0\Partition1 - ok
09:30:00.0996 4868 ============================================================
09:30:00.0996 4868 Scan finished
09:30:00.0996 4868 ============================================================
09:30:01.0012 4728 Detected object count: 1
09:30:01.0012 4728 Actual detected object count: 1
09:30:30.0979 4728 VMCService ( UnsignedFile.Multi.Generic ) - skipped by user
09:30:30.0979 4728 VMCService ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
28.07.2012, 22:45
| #18 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Blacole mit McAffee gefunden Dann bitte jetzt CF ausführen:
__________________ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ |
|
30.07.2012, 17:12
| #19 |
| | Trojaner Blacole mit McAffee gefunden Hallo. Entsprechend deiner Vorgaben habe ich das Programm ausgeführt. Hier das Log: Code:
ATTFilter ComboFix 12-07-29.02 - Matze 30.07.2012 0:07.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.3959.2620 [GMT 2:00]
ausgeführt von:: c:\users\Matze\Desktop\ComboFix.exe
AV: McAfee Anti-Virus und Anti-Spyware *Disabled/Outdated* {86355677-4064-3EA7-ABB3-1B136EB04637}
FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
SP: McAfee Anti-Virus und Anti-Spyware *Disabled/Outdated* {3D54B793-665E-3129-9103-206115370C8A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Im Speicher befindliches AV aktiv.
.
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\FullRemove.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-06-28 bis 2012-07-29 ))))))))))))))))))))))))))))))
.
.
2012-07-27 16:35 . 2012-07-27 16:35 -------- d-----w- C:\_OTL
2012-07-19 18:32 . 2012-06-12 03:08 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-07-19 18:29 . 2012-06-02 11:57 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-07-19 18:29 . 2012-06-02 08:16 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-07-19 18:27 . 2012-06-09 05:43 14172672 ----a-w- c:\windows\system32\shell32.dll
2012-07-19 18:26 . 2012-06-02 05:50 458704 ----a-w- c:\windows\system32\drivers\cng.sys
2012-07-19 18:26 . 2012-06-02 05:45 340992 ----a-w- c:\windows\system32\schannel.dll
2012-07-19 18:26 . 2012-06-02 05:44 307200 ----a-w- c:\windows\system32\ncrypt.dll
2012-07-19 18:25 . 2012-06-02 05:48 151920 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-07-19 18:25 . 2012-06-02 04:39 219136 ----a-w- c:\windows\SysWow64\ncrypt.dll
2012-07-19 18:25 . 2012-06-02 04:40 225280 ----a-w- c:\windows\SysWow64\schannel.dll
2012-07-19 18:25 . 2012-06-02 05:48 95600 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-07-19 18:25 . 2012-06-02 04:40 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2012-07-19 18:25 . 2012-06-02 04:34 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2012-07-19 18:25 . 2012-06-06 06:06 2004480 ----a-w- c:\windows\system32\msxml6.dll
2012-07-19 18:25 . 2012-06-06 06:06 1881600 ----a-w- c:\windows\system32\msxml3.dll
2012-07-19 18:25 . 2012-06-06 05:05 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll
2012-07-19 18:24 . 2012-06-06 05:05 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2012-07-19 18:24 . 2010-06-26 03:55 2048 ----a-w- c:\windows\system32\msxml3r.dll
2012-07-19 18:24 . 2010-06-26 03:24 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
2012-07-17 18:44 . 2012-07-17 19:55 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2012-07-17 18:44 . 2012-07-17 18:52 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
2012-07-16 20:30 . 2012-07-16 20:30 -------- d-----w- c:\users\Matze\AppData\Roaming\Malwarebytes
2012-07-16 20:29 . 2012-07-16 20:29 -------- d-----w- c:\programdata\Malwarebytes
2012-07-16 20:29 . 2012-07-03 11:46 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-16 20:29 . 2012-07-16 20:29 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-07-09 20:43 . 2012-07-09 20:42 476936 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-07-09 20:42 . 2012-07-09 20:42 -------- d-----w- c:\program files (x86)\Java
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-19 18:29 . 2010-11-19 22:27 59701280 ----a-w- c:\windows\system32\MRT.exe
2012-07-18 04:27 . 2012-03-30 10:07 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-07-18 04:27 . 2011-06-04 07:07 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-07-09 20:42 . 2012-02-13 20:28 472840 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-06-02 22:19 . 2012-06-26 18:15 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-26 18:15 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:19 . 2012-06-26 18:15 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-26 18:15 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-26 18:15 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:15 . 2012-06-26 18:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:15 . 2012-06-26 18:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-26 18:15 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:15 . 2012-06-26 18:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-05-04 11:06 . 2012-06-18 20:26 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-04 11:00 . 2012-06-26 18:19 366592 ----a-w- c:\windows\system32\qdvd.dll
2012-05-04 10:03 . 2012-06-18 20:26 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-05-04 10:03 . 2012-06-18 20:26 3913072 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-05-04 09:59 . 2012-06-26 18:19 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2012-05-01 05:40 . 2012-06-18 20:26 209920 ----a-w- c:\windows\system32\profsvc.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:40 120176 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-07-13 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-04-13 284696]
"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-05-27 337264]
"EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" [2010-03-11 201584]
"EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe" [2010-03-11 407920]
"Norton Online Backup"="c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2010-06-01 1155928]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-06-28 265984]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-05-27 98304]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-06-22 968272]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"MobileConnect"="c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe" [2009-09-11 2403840]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-27 136176]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [2009-06-29 132608]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-27 136176]
R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [2009-06-29 116096]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-02-22 100912]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-11 113120]
R3 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-05-27 305520]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-06-17 246376]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [2011-04-22 1255736]
R4 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2011-01-27 249936]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-02-22 289664]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-03-16 283200]
S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2012-02-22 75936]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-05-27 203264]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-06-22 321104]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-06-11 868896]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2011-01-27 249936]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-03-20 210584]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe [2012-03-20 162192]
S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-06-28 255744]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2010-01-28 243232]
S2 VMCService;Vodafone Mobile Connect Service;c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2009-09-11 9216]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-05-27 6856192]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-05-27 264192]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-02-22 65264]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2010-05-15 384040]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-02-22 487296]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*Deregistered* - mfeavfk01
.
Inhalt des "geplante Tasks" Ordners
.
2012-07-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-27 18:55]
.
2012-07-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-03-27 18:55]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:42 137584 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"mwlDaemon"="c:\program files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe" [2010-05-27 349552]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-06-22 10920552]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-06-11 861216]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_5742g&r=273611108135l04h4z125v47122550
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\Matze\AppData\Roaming\Mozilla\Firefox\Profiles\ajofvare.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine -
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\windows\SysWOW64\rundll32.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-07-30 00:54:46 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-07-29 22:54
.
Vor Suchlauf: 10 Verzeichnis(se), 226.267.795.456 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 225.712.861.184 Bytes frei
.
- - End Of File - - D59E8D725A404821924C1596D875D7C9
|
|
30.07.2012, 20:16
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Blacole mit McAffee gefunden Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
31.07.2012, 18:56
| #21 |
| | Trojaner Blacole mit McAffee gefunden So.Hab alle Programme ausgeführt. Bei GMER wurden keine Probleme gefunden. Jetzt die beiden log`s. OSAM OSAM Logfile: Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 22:47:10 on 30.07.2012 OS: Windows 7 Home Premium Edition Service Pack 1 (Build 7601), 64-bit Default Browser: Mozilla Corporation Firefox 14.0.1 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [Common] -----( %SystemRoot%\Tasks )----- "GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "catchme" (catchme) - ? - C:\ComboFix\catchme.sys (File not found) "McAfee Inc." (mfeavfk01) - ? - C:\Windows\system32\drivers\mfeavfk01.sys (File not found) "NTIDrvr" (NTIDrvr) - "NTI Corporation" - C:\Windows\system32\drivers\NTIDrvr.sys "Sftfs" (Sftfs) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftfslh.sys "Sftplay" (Sftplay) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftplaylh.sys "Sftredir" (Sftredir) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftredirlh.sys "Sftvol" (Sftvol) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftvollh.sys "UBHelper" (UBHelper) - "NTI Corporation" - C:\Windows\system32\drivers\UBHelper.sys [Explorer] -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll -----( HKLM\Software\Classes\Protocols\Filter )----- {3EF5086B-5478-4598-A054-786C45D75692} "McInternetProtocolRoot Class" - "McAfee, Inc." - c:\progra~2\mcafee\msc\mcsniepl.dll -----( HKLM\Software\Classes\Protocols\Handler )----- {828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL {5513F07E-936B-4E52-9B00-067394E91CC5} "McAfee SACore Protocol Handler" - "McAfee, Inc." - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll {5513F07E-936B-4E52-9B00-067394E91CC5} "McAfee SACore Protocol Handler" - "McAfee, Inc." - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll {828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL {03C514A3-1EFB-4856-9F99-10D7BE1653C0} "Windows Live Mail HTML Asynchronous Pluggable Protocol Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {5E2121EE-0300-11D4-8D3B-444553540000} "Catalyst Context Menu extension" - ? - (File not found | COM-object registry key not found) {0563DB41-F538-4B37-A92D-4659049B7766} "CLSID_WLMCMimeFilter" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} "DragDropProtect Class" - "Egis Technology Inc." - C:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll {2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} "Windows Live Photo Gallery Autoplay Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} "Windows Live Photo Gallery Editor Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} "Windows Live Photo Gallery Editor Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F30F90-3E96-453B-AFCD-D71989ECC2C7} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F33137-EE26-412F-8D71-F84E4C2C6625} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F374B7-B390-4884-B372-2FC349F2172B} "Windows Live Photo Gallery Viewer Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} "Windows Live Photo Gallery Viewer Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} "WinRAR" - "Alexander Roshal" - C:\Program Files (x86)\WinRAR\rarext.dll {B41DB860-64E4-11D2-9906-E49FADC173CA} "WinRAR shell extension" - ? - (File not found | COM-object registry key not found) {06A2568A-CED6-4187-BB20-400B8C02BE5A} "{06A2568A-CED6-4187-BB20-400B8C02BE5A}" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe [Internet Explorer] -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- <binary data> "Google Toolbar" - "Google Inc." - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) -----( HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks )----- {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} "McAfee SiteAdvisor Toolbar" - "McAfee, Inc." - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_33" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} "Java Plug-in 1.6.0_33" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_33" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\npjpi160_33.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- {5F7B1267-94A9-47F5-98DB-E99415F33AEC} "In Blog veröffentlichen" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )----- <binary data> "Google Toolbar" - "Google Inc." - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} "McAfee SiteAdvisor Toolbar" - "McAfee, Inc." - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} "Google Dictionary Compression sdch" - "Google Inc." - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll {AA58ED58-01DD-4d91-8333-CF10577473F7} "Google Toolbar Helper" - "Google Inc." - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} "Google Toolbar Notifier BHO" - "Google Inc." - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5825.1100\swg.dll {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "Java(tm) Plug-In SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\ssv.dll {27B4851A-3207-45A2-B947-BE8AFE6163AB} "McAfee Phishing Filter" - ? - c:\progra~1\mcafee\msk\mskapbho.dll {B164E929-A1B6-4A06-B104-2CD0E90A88FF} "McAfee SiteAdvisor BHO" - "McAfee, Inc." - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll {7DB2D5A0-7241-4E79-B68D-6309F01C5231} "scriptproxy" - "McAfee, Inc." - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120626201145.dll {9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live Anmelde-Hilfsprogramm" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [Logon] -----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\Users\Matze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )----- "swg" - "Google Inc." - "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "Adobe Reader Speed Launcher" - "Adobe Systems Incorporated" - "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" "BackupManagerTray" - "NewTech Infosystems, Inc." - "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k "EgisTecPMMUpdate" - "Egis Technology Inc." - "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" "EgisUpdate" - "Egis Technology Inc." - "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d "IAStorIcon" - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe "LManager" - "Dritek System Inc." - C:\Program Files (x86)\Launch Manager\LManager.exe "MobileConnect" - "Vodafone" - %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent "Norton Online Backup" - "Symantec Corporation" - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe "StartCCC" - "Advanced Micro Devices, Inc." - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun "SuiteTray" - "Egis Technology Inc." - "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" "SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [Print Monitors] -----( HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors )----- "PDFCreator" - ? - C:\Windows\system32\pdfcmnnt.dll (File found, but it contains no detailed information) [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103" (WinDefend) - ? - C:\Program Files (x86)\Windows Defender\mpsvc.dll (File not found) "@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe" (File not found) "Acer ePower Service" (ePowerSvc) - "Acer Incorporated" - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe "Application Virtualization Client" (sftlist) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe "Application Virtualization Service Agent" (sftvsa) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe "Client Virtualization Handler" (cvhsvc) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE "Dritek WMI Service" (DsiWMIService) - "Dritek System Inc." - C:\Program Files (x86)\Launch Manager\dsiwmis.exe "FLEXnet Licensing Service" (FLEXnet Licensing Service) - "Acresso Software Inc." - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe "Google Software Updater" (gusvc) - "Google" - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe "Google Update Service (gupdate)" (gupdate) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "GREGService" (GREGService) - "Acer Incorporated" - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe "Intel(R) Management & Security Application User Notification Service" (UNS) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe "Intel(R) Management and Security Application Local Management Service" (LMS) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe "Intel(R) Rapid Storage Technology" (IAStorDataMgrSvc) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe "McAfee Anti-Spam Service" (MSK80Service) - "McAfee, Inc." - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe "McAfee Firewall Core Service" (mfefire) - "McAfee, Inc." - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe "McAfee McShield" (McShield) - "McAfee, Inc." - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe "McAfee Personal Firewall Service" (McMPFSvc) - "McAfee, Inc." - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe "McAfee Validation Trust Protection Service" (mfevtp) - "McAfee, Inc." - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe "Microsoft .NET Framework NGEN v4.0.30319_X64" (clr_optimization_v4.0.30319_64) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe "Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe "Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe "MyWinLocker Service" (MWLService) - "Egis Technology Inc." - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe "Norton Online Backup" (NOBU) - "Symantec Corporation" - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe "NTI IScheduleSvc" (NTI IScheduleSvc) - "NewTech Infosystems, Inc." - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe "Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE "Office Software Protection Platform" (osppsvc) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE "Updater Service" (Updater Service) - "Acer Group" - C:\Program Files\Acer\Acer Updater\UpdaterService.exe "Vodafone Mobile Connect Service" (VMCService) - "Vodafone" - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe ===[ Logfile end ]=========================================[ Logfile end ]=== If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru[/code] asw.MBR.exe Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-07-31 19:23:27
-----------------------------
19:23:27.551 OS Version: Windows x64 6.1.7601 Service Pack 1
19:23:27.551 Number of processors: 4 586 0x2505
19:23:27.551 ComputerName: MATZE-PC UserName: Matze
19:23:28.534 Initialize success
19:26:04.062 AVAST engine defs: 12073101
19:26:18.383 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:26:18.383 Disk 0 Vendor: Hitachi_ PB3O Size: 305245MB BusType: 3
19:26:18.414 Disk 0 MBR read successfully
19:26:18.414 Disk 0 MBR scan
19:26:18.414 Disk 0 Windows 7 default MBR code
19:26:18.430 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13312 MB offset 2048
19:26:18.445 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 27265024
19:26:18.461 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 291831 MB offset 27469824
19:26:18.476 Disk 0 scanning C:\Windows\system32\drivers
19:26:34.888 Service scanning
19:27:10.487 Modules scanning
19:27:10.487 Disk 0 trace - called modules:
19:27:10.518 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
19:27:10.518 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800701d060]
19:27:10.518 3 CLASSPNP.SYS[fffff88001bb543f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004fe6050]
19:27:11.080 AVAST engine scan C:\Windows
19:27:18.193 AVAST engine scan C:\Windows\system32
19:32:58.695 AVAST engine scan C:\Windows\system32\drivers
19:33:28.085 AVAST engine scan C:\Users\Matze
19:38:46.919 AVAST engine scan C:\ProgramData
19:40:14.497 Scan finished successfully
19:48:26.990 Disk 0 MBR has been saved successfully to "C:\Users\Matze\Desktop\MBR.dat"
19:48:27.021 The log file has been saved successfully to "C:\Users\Matze\Desktop\aswMBR.txt"
|
|
01.08.2012, 18:50
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Blacole mit McAffee gefunden Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.08.2012, 19:05
| #23 |
| | Trojaner Blacole mit McAffee gefunden Hallo. Hier die beiden Logs. Malewarebytes: Code:
ATTFilter Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Datenbank Version: v2012.08.01.07 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Matze :: MATZE-PC [Administrator] 01.08.2012 22:29:09 mbam-log-2012-08-01 (22-29-09).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|Q:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 409581 Laufzeit: 1 Stunde(n), 56 Minute(n), 21 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 08/03/2012 at 00:45 AM
Application Version : 5.5.1012
Core Rules Database Version : 9000
Trace Rules Database Version: 6812
Scan type : Complete Scan
Total Scan Time : 02:08:28
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User
Memory items scanned : 625
Memory threats detected : 0
Registry items scanned : 65654
Registry threats detected : 0
File items scanned : 222832
File threats detected : 534
Adware.Tracking Cookie
C:\Users\Matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@2o7[1].txt [ /2o7 ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@ad2.adfarm1.adition[1].txt [ Cookie:matze@ad2.adfarm1.adition.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@doubleclick[1].txt [ Cookie:matze@doubleclick.net/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@www.etracker[1].txt [ Cookie:matze@www.etracker.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@traffictrack[1].txt [ Cookie:matze@traffictrack.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@apmebf[2].txt [ Cookie:matze@apmebf.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@mediaplex[2].txt [ Cookie:matze@mediaplex.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@zanox[2].txt [ Cookie:matze@zanox.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@ad1.adfarm1.adition[1].txt [ Cookie:matze@ad1.adfarm1.adition.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@zanox-affiliate[1].txt [ Cookie:matze@zanox-affiliate.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@webmasterplan[1].txt [ Cookie:matze@webmasterplan.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@adserver2.clipkit[2].txt [ Cookie:matze@adserver2.clipkit.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@ad.adnet[1].txt [ Cookie:matze@ad.adnet.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@adx.chip[2].txt [ Cookie:matze@adx.chip.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@ad.zanox[1].txt [ Cookie:matze@ad.zanox.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@track.effiliation[3].txt [ Cookie:matze@track.effiliation.com/servlet/ ]
C:\USERS\MATZE\Cookies\matze@2o7[1].txt [ Cookie:matze@2o7.net/ ]
delivery.ibanner.de [ C:\USERS\MATZE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\ARDD5SZN ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@AD.YIELDMANAGER[2].TXT [ /AD.YIELDMANAGER ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@TRACK.EFFILIATION[1].TXT [ /TRACK.EFFILIATION ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@ADFARM1.ADITION[1].TXT [ /ADFARM1.ADITION ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@AD.ADSERVER01[2].TXT [ /AD.ADSERVER01 ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@TRADEDOUBLER[2].TXT [ /TRADEDOUBLER ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@WWW.ZANOX-AFFILIATE[2].TXT [ /WWW.ZANOX-AFFILIATE ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@AD.CHIP[1].TXT [ /AD.CHIP ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.vodafonegroup.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.guj.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.de.at.atwola.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.paypal.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.cunda.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.deutschepostag.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.youporn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.traffichaus.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.a.revenuemax.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ads.zeusclicks.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ads2.zeusclicks.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
wstat.wibiya.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.mobile.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.komtrack.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.komtrack.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ad-emea.doubleclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjkowjc5oap.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hardsextube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
stat.onestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
stat.onestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.dealtime.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornerbros.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.freeporn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.track.gridlockparadise.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ads.crakmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.wissende.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
adserver2.exgfnetwork.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.rambler.ru [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.openstat.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.spylog.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjliandpoko.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.dirtyxxxtube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.dirtyxxxtube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tns-counter.ru [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
count.rbc.ru [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.siemens.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
fr.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
fr.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad1.emediate.dk [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad1.emediate.dk [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexkiste.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.sexkiste.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.secmedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.wlw.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjkoeoczwko.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.nuon.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.mynortonaccount.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.mynortonaccount.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.mynortonaccount.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
account.norton.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.account.norton.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
account.norton.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
account.norton.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
delivery.atkmedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
clicks.pangora.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.yieldmanager.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.enoratraffic.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
stats.sevengames.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
adserv.kwick.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
adserv.kwick.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.conrad.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornoadler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wfl4ukczcep.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tracking.hermesworld.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.urbia.wwe-media.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
xxxclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.dc-storm.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.dc-storm.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.microsoftwindows.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hightraffic.hugoboss.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
eas4.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.adition.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.adition.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
dc.tremormedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.lfstmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6whlyopajmko.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.adserver.bz [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6aekooidjibo.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjl4ugc5cdp.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.heizungsfinder.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.heizungsfinder.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.heizungsfinder.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.heizungsfinder.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
trackingpixel.bigpoint.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adserver.adtechus.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.youporn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ikea.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.discounto.arcor.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.discounto.arcor.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
stats.finepix.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjliwodzmgp.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.servestats.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wfmiapcpcfq.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wfkisiczedo.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6whmiggdjkeo.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.tchibo.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjlospd5wfq.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.stats.ebay.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
adserver2.clipkit.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
secure.img-cdn.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.generaltracking.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.generaltracking.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.generaltracking.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.generaltracking.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.generaltracking.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
adserver.yopi.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hotelreservationservice.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjloskc5shq.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.xxxylive.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.xxxkinky.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.xxxkinky.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sunporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sunporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.youporn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
delivery.trafficbroker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.adserv3.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.gostats.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tto2.traffictrack.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
counter.live4members.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultadworld.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hardsextube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hardsextube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hardsextube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hardsextube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hardsextube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
adserver.hardsextube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.xxxblackbook.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.xxxblackbook.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.youporn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.youporn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.layermedia-adserver.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.loyaltypartner.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.banners.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.trackingindahouse.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.porn.to [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.porn.to [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.porn.to [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexoverdose.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexoverdose.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hot-sex-tube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hot-sex-tube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.girlsteachsex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.getclicky.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.static.getclicky.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
in.getclicky.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
tracking.sim-technik.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
hellporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hellporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.hellporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.porntube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.porntube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexad.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
zbox.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
stat.dealtime.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.xxxymovies.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.xxxymovies.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornyeah.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornyeah.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.pornyeah.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornyeahlive.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
eas4.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexytube.me [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexytube.me [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.sexytube.me [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.cyberporn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.cyberporn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.xyztraffic.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.xyztraffic.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ads.ventivmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
stats.sexpillguru.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.777xporn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornbanana.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornbanana.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornper.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornper.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.pornper.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.h2porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.h2porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.h2porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
h2porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.h2porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.h2porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornofilmpjes.nl [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornofilmpjes.nl [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad1.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.toplist.cz [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornoxo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornoxo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.pornoxo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wmk4umdpkko.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ads.trafficjunky.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornhub.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.de.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
traffic.brokerbabe.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
traffic.brokerbabe.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
go.trafficshop.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornhub.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.pornhub.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.pornhub.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.porntubevidz.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.porntubevidz.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.mmstat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
partners.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
server.adformdsp.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adformdsp.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
stat.vattenfall.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.alphaporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.alphaporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultadworld.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultadworld.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.sexfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.alphaporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.alphaporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.alphaporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.alphaporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.alphaporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.alphaporno.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultadworld.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultadworld.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultadworld.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adultadworld.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
www.ac-porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.ac-porn.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ads.crakmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.gonzoxxxmovies.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.gonzoxxxmovies.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.gonzoxxxmovies.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.syndication.traffichaus.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.syndication.traffichaus.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.syndication.traffichaus.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ox-d.secure-clicks.org [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adxpansion.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.exoclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.exoclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.exoclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ww251.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.tracker.vinsight.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AJOFVARE.DEFAULT\COOKIES.SQLITE ]
Trojan.Agent/Gen-Yoddos
C:\PROGRAM FILES (X86)\WINRAR\DEFAULT.SFX
|
|
03.08.2012, 20:54
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Blacole mit McAffee gefunden Sieht ok aus, da wurden nur Cookies gefunden. Und ein Fehlalarm bei WinRAR war dabei. Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat. Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/ Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.08.2012, 12:39
| #25 |
| | Trojaner Blacole mit McAffee gefunden Mein System ist wieder i.o. und es keine weiteren Funde. Den trojaner Alarm bei Winrar brauch ich also nicht beheben. Richtig? Ich nutze ansonsten nur Firefox. Werd mir mal die Einstellungen anschauen. Ansonsten vielen Dank für deine Hilfe. Wenn ich mal wieder ein Problem habe werd ich mich wieder melden. Danke. |
|
04.08.2012, 17:48
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Blacole mit McAffee gefunden Dann wären wir durch!  Die Programme, die hier zum Einsatz kamen, können alle wieder runter. Mit Hilfe von OTL kannst du auch viele Tools entfernen: Starte bitte OTL und klicke auf Bereinigung. Dies wird die meisten Tools entfernen, die wir zur Bereinigung benötigt haben. Sollte etwas bestehen bleiben, bitte mit Rechtsklick --> Löschen entfernen. Malwarebytes zu behalten ist zu empfehlen. Kannst ja 1x im Monat damit einen Vollscan machen, aber immer vorher ans Update denken. Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden. Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern. Microsoftupdate Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren. Windows Vista/7: Anleitung Windows-Update PDF-Reader aktualisieren Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast) Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader. Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers: Prüfen => Adobe - Flash Player Downloadlinks => http://www.adobe.com/products/flashp...ribution3.html Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind. Java-Update Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Trojaner Blacole mit McAffee gefunden |
| administrator, aufrufe, autostart, blacole, datei, dateien, downloader, escan, folge, frage, gelöscht, heuristiks/extra, heuristiks/shuriken, internet, logfile, löschen, malware, microsoft, namen, neustart, pdfforge toolbar, problem, probleme, programm, scan, sicherheit, trojaner, trojaner blacole, update, viren, windows |
Linear-Darstellung
