Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Bericht von Malwarebytes Anti-Malware.

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 05.08.2012, 13:50   #16
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Wiederhol den OTL-Fix bitte
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 05.08.2012, 15:30   #17
matzew1989
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



So, nach dem 3. Anlauf hat es dann geklappt..

Code:
ATTFilter
All processes killed
========== OTL ==========
Folder C:\Users\matze\AppData\Roaming\mozilla\Firefox\Profiles\x9uh4a59.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ not found.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin not found.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges not found.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ not found.
File F:\LaunchU3.exe -a not found.
========== FILES ==========
File\Folder C:\Users\matze\AppData\LocalLow\Sun\Java\Deployment\cache not found.
File\Folder C:\Users\matze\AppData\Roaming\OpenCandy not found.
File\Folder C:\Users\matze\Downloads\installer_nero_wma_plug-in_2_0_9_37_Deutsch.exe not found.
File\Folder C:\Users\matze\Downloads\MsgPlusLive-490.exe not found.
File\Folder C:\Users\matze\Downloads\Setup1.9.3_FreeConverter(2).exe not found.
File\Folder C:\Users\matze\Downloads\Setup1.9.3_FreeConverter.exe not found.
File\Folder F:\Setup-MsgPlus-510.exe not found.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: matze
->Temp folder emptied: 739777 bytes
->Temporary Internet Files folder emptied: 1786071 bytes
->FireFox cache emptied: 174488640 bytes
->Flash cache emptied: 2798 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 564032 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 32768 bytes
RecycleBin emptied: 464454838 bytes
 
Total Files Cleaned = 612,00 mb
 
 
[EMPTYFLASH]
 
User: All Users
 
User: Default
 
User: Default User
 
User: matze
->Flash cache emptied: 0 bytes
 
User: Public
 
Total Flash Files Cleaned = 0,00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.43.0 log created on 08052012_161959

Files\Folders moved on Reboot...
C:\Users\matze\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Windows\temp\etilqs_15jTWFxzJlRuSN6 not found!

Registry entries deleted on Reboot...
         
__________________


Alt 05.08.2012, 16:39   #18
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.
Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

__________________
__________________

Alt 05.08.2012, 17:38   #19
matzew1989
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Code:
ATTFilter
18:11:21.0029 9920	TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
18:11:22.0259 9920	============================================================
18:11:22.0259 9920	Current date / time: 2012/08/05 18:11:22.0259
18:11:22.0259 9920	SystemInfo:
18:11:22.0259 9920	
18:11:22.0259 9920	OS Version: 6.1.7601 ServicePack: 1.0
18:11:22.0259 9920	Product type: Workstation
18:11:22.0259 9920	ComputerName: MATZE-PC
18:11:22.0259 9920	UserName: matze
18:11:22.0259 9920	Windows directory: C:\Windows
18:11:22.0259 9920	System windows directory: C:\Windows
18:11:22.0259 9920	Running under WOW64
18:11:22.0259 9920	Processor architecture: Intel x64
18:11:22.0259 9920	Number of processors: 2
18:11:22.0259 9920	Page size: 0x1000
18:11:22.0259 9920	Boot type: Normal boot
18:11:22.0259 9920	============================================================
18:11:24.0429 9920	Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:11:26.0459 9920	Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:11:26.0709 9920	============================================================
18:11:26.0709 9920	\Device\Harddisk0\DR0:
18:11:26.0729 9920	MBR partitions:
18:11:26.0729 9920	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x23D6FFC1
18:11:26.0729 9920	\Device\Harddisk1\DR1:
18:11:26.0769 9920	MBR partitions:
18:11:26.0769 9920	\Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
18:11:26.0769 9920	============================================================
18:11:26.0809 9920	C: <-> \Device\Harddisk0\DR0\Partition0
18:11:26.0829 9920	D: <-> \Device\Harddisk1\DR1\Partition0
18:11:26.0829 9920	============================================================
18:11:26.0829 9920	Initialize success
18:11:26.0829 9920	============================================================
18:11:57.0709 8940	============================================================
18:11:57.0709 8940	Scan started
18:11:57.0709 8940	Mode: Manual; SigCheck; TDLFS; 
18:11:57.0709 8940	============================================================
18:11:59.0369 8940	1394ohci        (a87d604aea360176311474c87a63bb88) C:\Windows\system32\DRIVERS\1394ohci.sys
18:11:59.0539 8940	1394ohci - ok
18:11:59.0579 8940	Accelerometer   (1cffe9c06e66a57dae1452e449a58240) C:\Windows\system32\DRIVERS\Accelerometer.sys
18:11:59.0599 8940	Accelerometer - ok
18:11:59.0649 8940	ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:11:59.0669 8940	ACPI - ok
18:11:59.0699 8940	AcpiPmi         (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:11:59.0799 8940	AcpiPmi - ok
18:11:59.0959 8940	AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:11:59.0979 8940	AdobeARMservice - ok
18:12:00.0229 8940	AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:12:00.0249 8940	AdobeFlashPlayerUpdateSvc - ok
18:12:00.0359 8940	adp94xx         (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:12:00.0389 8940	adp94xx - ok
18:12:00.0459 8940	adpahci         (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:12:00.0479 8940	adpahci - ok
18:12:00.0529 8940	adpu320         (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:12:00.0549 8940	adpu320 - ok
18:12:00.0579 8940	AeLookupSvc     (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:12:00.0639 8940	AeLookupSvc - ok
18:12:00.0799 8940	AESTFilters     (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
18:12:00.0899 8940	AESTFilters - ok
18:12:00.0979 8940	AFD             (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:12:01.0149 8940	AFD - ok
18:12:01.0199 8940	agp440          (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:12:01.0219 8940	agp440 - ok
18:12:01.0259 8940	ALG             (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:12:01.0359 8940	ALG - ok
18:12:01.0399 8940	aliide          (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:12:01.0419 8940	aliide - ok
18:12:01.0419 8940	amdide          (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:12:01.0429 8940	amdide - ok
18:12:01.0479 8940	AmdK8           (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:12:01.0569 8940	AmdK8 - ok
18:12:01.0569 8940	AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:12:01.0619 8940	AmdPPM - ok
18:12:01.0659 8940	amdsata         (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:12:01.0669 8940	amdsata - ok
18:12:01.0719 8940	amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:12:01.0739 8940	amdsbs - ok
18:12:01.0749 8940	amdxata         (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:12:01.0759 8940	amdxata - ok
18:12:01.0819 8940	androidusb      (4de0d5d747a73797c95a97dcce5018b5) C:\Windows\system32\Drivers\ssadadb.sys
18:12:01.0859 8940	androidusb - ok
18:12:02.0299 8940	AppID           (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:12:02.0379 8940	AppID - ok
18:12:02.0419 8940	AppIDSvc        (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:12:02.0479 8940	AppIDSvc - ok
18:12:02.0519 8940	Appinfo         (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:12:02.0579 8940	Appinfo - ok
18:12:02.0789 8940	Apple Mobile Device (20f6f19fe9e753f2780dc2fa083ad597) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:12:02.0809 8940	Apple Mobile Device - ok
18:12:02.0859 8940	arc             (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:12:02.0879 8940	arc - ok
18:12:02.0889 8940	arcsas          (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:12:02.0909 8940	arcsas - ok
18:12:02.0969 8940	aswFsBlk        (df59b8e8df0bd2e0e303778a3806a17d) C:\Windows\system32\drivers\aswFsBlk.sys
18:12:02.0979 8940	aswFsBlk - ok
18:12:03.0029 8940	aswMonFlt       (f8e6ab4f876feff69250f2e0c29ef004) C:\Windows\system32\drivers\aswMonFlt.sys
18:12:03.0039 8940	aswMonFlt - ok
18:12:03.0119 8940	aswRdr          (aa92bc4bcba40ca3aa3ffd1be24f0c09) C:\Windows\System32\Drivers\aswrdr2.sys
18:12:03.0149 8940	aswRdr - ok
18:12:03.0279 8940	aswSnx          (f06e230e1e8ca9437a6474b7b551cd37) C:\Windows\system32\drivers\aswSnx.sys
18:12:03.0319 8940	aswSnx - ok
18:12:03.0409 8940	aswSP           (3610ca74a69e380424f0452dec5c1317) C:\Windows\system32\drivers\aswSP.sys
18:12:03.0459 8940	aswSP - ok
18:12:03.0489 8940	aswTdi          (87de3e31cb0091d22351349869324065) C:\Windows\system32\drivers\aswTdi.sys
18:12:03.0509 8940	aswTdi - ok
18:12:03.0559 8940	AsyncMac        (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:12:03.0629 8940	AsyncMac - ok
18:12:03.0669 8940	atapi           (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:12:03.0679 8940	atapi - ok
18:12:03.0759 8940	AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:12:03.0829 8940	AudioEndpointBuilder - ok
18:12:03.0839 8940	AudioSrv        (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:12:03.0879 8940	AudioSrv - ok
18:12:03.0989 8940	avast! Antivirus (2f7c0f3e39c45e0127fb78b2f18a41f3) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
18:12:04.0009 8940	avast! Antivirus - ok
18:12:04.0069 8940	AVerAF15        (8b00f71167b0b2662e5fb3f5d5cb99ac) C:\Windows\system32\Drivers\AVerAF15.sys
18:12:04.0109 8940	AVerAF15 - ok
18:12:04.0149 8940	AxInstSV        (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:12:04.0269 8940	AxInstSV - ok
18:12:04.0339 8940	b06bdrv         (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:12:04.0389 8940	b06bdrv - ok
18:12:04.0439 8940	b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:12:04.0479 8940	b57nd60a - ok
18:12:04.0549 8940	BDESVC          (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:12:04.0599 8940	BDESVC - ok
18:12:04.0639 8940	Beep            (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:12:04.0709 8940	Beep - ok
18:12:04.0779 8940	BFE             (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:12:04.0829 8940	BFE - ok
18:12:04.0909 8940	BITS            (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:12:04.0999 8940	BITS - ok
18:12:05.0059 8940	blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:12:05.0089 8940	blbdrive - ok
18:12:05.0259 8940	Bonjour Service (f2060a34c8a75bc24a9222eb4f8c07bd) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
18:12:05.0279 8940	Bonjour Service - ok
18:12:05.0339 8940	bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:12:05.0409 8940	bowser - ok
18:12:05.0449 8940	BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:12:05.0559 8940	BrFiltLo - ok
18:12:05.0579 8940	BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:12:05.0599 8940	BrFiltUp - ok
18:12:05.0649 8940	Browser         (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:12:05.0709 8940	Browser - ok
18:12:05.0749 8940	Brserid         (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:12:05.0829 8940	Brserid - ok
18:12:05.0849 8940	BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:12:05.0899 8940	BrSerWdm - ok
18:12:05.0909 8940	BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:12:05.0949 8940	BrUsbMdm - ok
18:12:05.0959 8940	BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:12:05.0989 8940	BrUsbSer - ok
18:12:06.0319 8940	BthEnum         (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
18:12:06.0379 8940	BthEnum - ok
18:12:06.0419 8940	BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:12:06.0459 8940	BTHMODEM - ok
18:12:06.0509 8940	BthPan          (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
18:12:06.0539 8940	BthPan - ok
18:12:06.0599 8940	BTHPORT         (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
18:12:06.0659 8940	BTHPORT - ok
18:12:06.0709 8940	bthserv         (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:12:06.0759 8940	bthserv - ok
18:12:06.0789 8940	BTHUSB          (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
18:12:06.0819 8940	BTHUSB - ok
18:12:06.0869 8940	cdfs            (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:12:06.0919 8940	cdfs - ok
18:12:06.0969 8940	cdrom           (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
18:12:07.0009 8940	cdrom - ok
18:12:07.0059 8940	CertPropSvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:12:07.0119 8940	CertPropSvc - ok
18:12:07.0179 8940	circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:12:07.0209 8940	circlass - ok
18:12:07.0259 8940	CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:12:07.0279 8940	CLFS - ok
18:12:07.0609 8940	clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:12:07.0639 8940	clr_optimization_v2.0.50727_32 - ok
18:12:07.0709 8940	clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:12:07.0729 8940	clr_optimization_v2.0.50727_64 - ok
18:12:07.0829 8940	clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:12:07.0869 8940	clr_optimization_v4.0.30319_32 - ok
18:12:07.0899 8940	clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:12:07.0919 8940	clr_optimization_v4.0.30319_64 - ok
18:12:07.0959 8940	CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:12:07.0989 8940	CmBatt - ok
18:12:08.0009 8940	cmdide          (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:12:08.0029 8940	cmdide - ok
18:12:08.0089 8940	CNG             (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
18:12:08.0119 8940	CNG - ok
18:12:08.0289 8940	Com4QLBEx       (c7a0e61d5714ac20de52d4f66ec773b8) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:12:08.0319 8940	Com4QLBEx - ok
18:12:08.0359 8940	Compbatt        (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:12:08.0369 8940	Compbatt - ok
18:12:08.0419 8940	CompositeBus    (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:12:08.0479 8940	CompositeBus - ok
18:12:08.0489 8940	COMSysApp - ok
18:12:08.0559 8940	cpuz135         (c08063f052308b6f5882482615387f30) C:\Windows\system32\drivers\cpuz135_x64.sys
18:12:08.0569 8940	cpuz135 - ok
18:12:08.0599 8940	crcdisk         (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:12:08.0619 8940	crcdisk - ok
18:12:08.0669 8940	CryptSvc        (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
18:12:08.0729 8940	CryptSvc - ok
18:12:08.0789 8940	DcomLaunch      (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:12:08.0849 8940	DcomLaunch - ok
18:12:08.0899 8940	defragsvc       (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:12:08.0959 8940	defragsvc - ok
18:12:08.0999 8940	DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:12:09.0059 8940	DfsC - ok
18:12:09.0099 8940	Dhcp            (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:12:09.0169 8940	Dhcp - ok
18:12:09.0189 8940	discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:12:09.0239 8940	discache - ok
18:12:09.0269 8940	Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:12:09.0279 8940	Disk - ok
18:12:09.0319 8940	Dnscache        (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:12:09.0389 8940	Dnscache - ok
18:12:09.0439 8940	dot3svc         (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:12:09.0499 8940	dot3svc - ok
18:12:09.0649 8940	DpHost          (5bc1d876dfd53c31c5fc65d2e9614015) C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
18:12:09.0689 8940	DpHost ( UnsignedFile.Multi.Generic ) - warning
18:12:09.0689 8940	DpHost - detected UnsignedFile.Multi.Generic (1)
18:12:09.0729 8940	DPS             (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:12:09.0789 8940	DPS - ok
18:12:09.0839 8940	drmkaud         (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:12:09.0869 8940	drmkaud - ok
18:12:09.0959 8940	DXGKrnl         (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:12:09.0989 8940	DXGKrnl - ok
18:12:10.0029 8940	EapHost         (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:12:10.0089 8940	EapHost - ok
18:12:10.0259 8940	ebdrv           (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:12:10.0349 8940	ebdrv - ok
18:12:10.0479 8940	EFS             (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:12:10.0569 8940	EFS - ok
18:12:10.0679 8940	ehRecvr         (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:12:10.0759 8940	ehRecvr - ok
18:12:10.0789 8940	ehSched         (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:12:10.0859 8940	ehSched - ok
18:12:10.0959 8940	elxstor         (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:12:10.0989 8940	elxstor - ok
18:12:11.0039 8940	enecir          (de9402e080e9e3c94a9fd3fcf65de369) C:\Windows\system32\DRIVERS\enecir.sys
18:12:11.0099 8940	enecir - ok
18:12:11.0139 8940	ErrDev          (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:12:11.0179 8940	ErrDev - ok
18:12:11.0239 8940	EventSystem     (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:12:11.0299 8940	EventSystem - ok
18:12:11.0359 8940	exfat           (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:12:11.0439 8940	exfat - ok
18:12:11.0599 8940	fastfat         (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:12:11.0669 8940	fastfat - ok
18:12:11.0739 8940	Fax             (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:12:11.0829 8940	Fax - ok
18:12:11.0859 8940	fdc             (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:12:11.0919 8940	fdc - ok
18:12:11.0949 8940	fdPHost         (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:12:12.0019 8940	fdPHost - ok
18:12:12.0039 8940	FDResPub        (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:12:12.0089 8940	FDResPub - ok
18:12:12.0109 8940	FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:12:12.0129 8940	FileInfo - ok
18:12:12.0139 8940	Filetrace       (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:12:12.0199 8940	Filetrace - ok
18:12:12.0229 8940	flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:12:12.0249 8940	flpydisk - ok
18:12:12.0309 8940	FltMgr          (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:12:12.0329 8940	FltMgr - ok
18:12:12.0399 8940	FontCache       (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:12:12.0459 8940	FontCache - ok
18:12:12.0589 8940	FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:12:12.0629 8940	FontCache3.0.0.0 - ok
18:12:12.0689 8940	FsDepends       (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:12:12.0699 8940	FsDepends - ok
18:12:12.0739 8940	Fs_Rec          (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:12:12.0749 8940	Fs_Rec - ok
18:12:12.0789 8940	fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:12:12.0809 8940	fvevol - ok
18:12:12.0849 8940	gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:12:12.0859 8940	gagp30kx - ok
18:12:12.0889 8940	GEARAspiWDM     (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:12:12.0899 8940	GEARAspiWDM - ok
18:12:12.0959 8940	gpsvc           (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:12:13.0029 8940	gpsvc - ok
18:12:13.0179 8940	gupdate         (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:12:13.0209 8940	gupdate - ok
18:12:13.0229 8940	gupdatem        (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:12:13.0239 8940	gupdatem - ok
18:12:13.0279 8940	hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:12:13.0349 8940	hcw85cir - ok
18:12:13.0419 8940	HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:12:13.0479 8940	HdAudAddService - ok
18:12:13.0509 8940	HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:12:13.0549 8940	HDAudBus - ok
18:12:13.0579 8940	HidBatt         (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:12:13.0609 8940	HidBatt - ok
18:12:13.0649 8940	HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:12:13.0679 8940	HidBth - ok
18:12:13.0719 8940	HidIr           (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:12:13.0759 8940	HidIr - ok
18:12:13.0789 8940	hidserv         (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:12:13.0839 8940	hidserv - ok
18:12:13.0889 8940	HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:12:13.0909 8940	HidUsb - ok
18:12:13.0949 8940	hkmsvc          (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:12:13.0999 8940	hkmsvc - ok
18:12:14.0059 8940	HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:12:14.0099 8940	HomeGroupListener - ok
18:12:14.0149 8940	HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:12:14.0199 8940	HomeGroupProvider - ok
18:12:14.0359 8940	HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
18:12:14.0379 8940	HP Support Assistant Service - ok
18:12:14.0459 8940	HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:12:14.0479 8940	HPDrvMntSvc.exe - ok
18:12:14.0499 8940	hpdskflt        (05712fddbd45a5864eb326faabc6a4e3) C:\Windows\system32\DRIVERS\hpdskflt.sys
18:12:14.0509 8940	hpdskflt - ok
18:12:14.0569 8940	HpqKbFiltr      (9af482d058be59cc28bce52e7c4b747c) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
18:12:14.0619 8940	HpqKbFiltr - ok
18:12:14.0709 8940	hpqwmiex        (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
18:12:14.0739 8940	hpqwmiex - ok
18:12:14.0769 8940	HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:12:14.0789 8940	HpSAMD - ok
18:12:14.0819 8940	hpsrv           (aa036cc5f5221d9b915f4d4dce74ba9a) C:\Windows\system32\Hpservice.exe
18:12:14.0829 8940	hpsrv - ok
18:12:14.0909 8940	HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:12:14.0969 8940	HTTP - ok
18:12:14.0999 8940	hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:12:15.0019 8940	hwpolicy - ok
18:12:15.0059 8940	i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:12:15.0079 8940	i8042prt - ok
18:12:15.0139 8940	iaStorV         (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:12:15.0159 8940	iaStorV - ok
18:12:15.0339 8940	IDriverT        (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:12:15.0369 8940	IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:12:15.0369 8940	IDriverT - detected UnsignedFile.Multi.Generic (1)
18:12:15.0519 8940	idsvc           (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:12:15.0549 8940	idsvc - ok
18:12:15.0629 8940	iirsp           (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:12:15.0649 8940	iirsp - ok
18:12:15.0709 8940	IKEEXT          (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:12:15.0789 8940	IKEEXT - ok
18:12:15.0829 8940	intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:12:15.0839 8940	intelide - ok
18:12:15.0889 8940	intelppm        (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:12:15.0929 8940	intelppm - ok
18:12:15.0959 8940	IPBusEnum       (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:12:16.0029 8940	IPBusEnum - ok
18:12:16.0059 8940	IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:12:16.0119 8940	IpFilterDriver - ok
18:12:16.0169 8940	iphlpsvc        (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:12:16.0219 8940	iphlpsvc - ok
18:12:16.0249 8940	IPMIDRV         (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:12:16.0279 8940	IPMIDRV - ok
18:12:16.0319 8940	IPNAT           (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:12:16.0369 8940	IPNAT - ok
18:12:16.0479 8940	iPod Service    (a9e53e1a9c4274eebc00d36ae5ed40de) C:\Program Files\iPod\bin\iPodService.exe
18:12:16.0499 8940	iPod Service - ok
18:12:16.0549 8940	IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:12:16.0659 8940	IRENUM - ok
18:12:16.0699 8940	isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:12:16.0719 8940	isapnp - ok
18:12:16.0789 8940	iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:12:16.0809 8940	iScsiPrt - ok
18:12:16.0859 8940	JMCR            (54df9eafb54a98e1a2ac3db69c16cf05) C:\Windows\system32\DRIVERS\jmcr.sys
18:12:16.0899 8940	JMCR - ok
18:12:16.0929 8940	kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:12:16.0949 8940	kbdclass - ok
18:12:16.0979 8940	kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:12:17.0009 8940	kbdhid - ok
18:12:17.0049 8940	KeyIso          (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:12:17.0069 8940	KeyIso - ok
18:12:17.0109 8940	KSecDD          (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
18:12:17.0139 8940	KSecDD - ok
18:12:17.0179 8940	KSecPkg         (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
18:12:17.0199 8940	KSecPkg - ok
18:12:17.0259 8940	ksthunk         (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:12:17.0309 8940	ksthunk - ok
18:12:17.0359 8940	KtmRm           (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:12:17.0409 8940	KtmRm - ok
18:12:17.0459 8940	LanmanServer    (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
18:12:17.0509 8940	LanmanServer - ok
18:12:17.0539 8940	LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:12:17.0599 8940	LanmanWorkstation - ok
18:12:17.0649 8940	lltdio          (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:12:17.0699 8940	lltdio - ok
18:12:17.0749 8940	lltdsvc         (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:12:17.0809 8940	lltdsvc - ok
18:12:17.0829 8940	lmhosts         (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:12:17.0869 8940	lmhosts - ok
18:12:17.0889 8940	LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:12:17.0899 8940	LSI_FC - ok
18:12:17.0919 8940	LSI_SAS         (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:12:17.0949 8940	LSI_SAS - ok
18:12:17.0989 8940	LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:12:17.0999 8940	LSI_SAS2 - ok
18:12:18.0009 8940	LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:12:18.0029 8940	LSI_SCSI - ok
18:12:18.0049 8940	luafv           (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:12:18.0089 8940	luafv - ok
18:12:18.0129 8940	MBAMProtector   (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
18:12:18.0139 8940	MBAMProtector - ok
18:12:18.0309 8940	MBAMService     (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:12:18.0339 8940	MBAMService - ok
18:12:18.0369 8940	Mcx2Svc         (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:12:18.0409 8940	Mcx2Svc - ok
18:12:18.0439 8940	megasas         (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:12:18.0459 8940	megasas - ok
18:12:18.0509 8940	MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:12:18.0529 8940	MegaSR - ok
18:12:18.0569 8940	MMCSS           (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:12:18.0659 8940	MMCSS - ok
18:12:18.0669 8940	Modem           (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:12:18.0729 8940	Modem - ok
18:12:18.0759 8940	monitor         (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:12:18.0789 8940	monitor - ok
18:12:18.0839 8940	mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:12:18.0849 8940	mouclass - ok
18:12:18.0899 8940	mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:12:18.0929 8940	mouhid - ok
18:12:18.0959 8940	mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:12:18.0979 8940	mountmgr - ok
18:12:19.0119 8940	MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:12:19.0149 8940	MozillaMaintenance - ok
18:12:19.0179 8940	mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:12:19.0199 8940	mpio - ok
18:12:19.0229 8940	mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:12:19.0269 8940	mpsdrv - ok
18:12:19.0339 8940	MpsSvc          (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:12:19.0399 8940	MpsSvc - ok
18:12:19.0439 8940	MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:12:19.0469 8940	MRxDAV - ok
18:12:19.0509 8940	mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:12:19.0569 8940	mrxsmb - ok
18:12:19.0609 8940	mrxsmb10        (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:12:19.0649 8940	mrxsmb10 - ok
18:12:19.0669 8940	mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:12:19.0689 8940	mrxsmb20 - ok
18:12:19.0729 8940	msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:12:19.0739 8940	msahci - ok
18:12:19.0769 8940	msdsm           (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:12:19.0789 8940	msdsm - ok
18:12:19.0809 8940	MSDTC           (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:12:19.0849 8940	MSDTC - ok
18:12:19.0889 8940	Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:12:19.0929 8940	Msfs - ok
18:12:19.0959 8940	mshidkmdf       (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:12:20.0019 8940	mshidkmdf - ok
18:12:20.0049 8940	msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:12:20.0069 8940	msisadrv - ok
18:12:20.0099 8940	MSiSCSI         (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:12:20.0159 8940	MSiSCSI - ok
18:12:20.0159 8940	msiserver - ok
18:12:20.0199 8940	MSKSSRV         (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:12:20.0259 8940	MSKSSRV - ok
18:12:20.0279 8940	MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:12:20.0329 8940	MSPCLOCK - ok
18:12:20.0349 8940	MSPQM           (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:12:20.0399 8940	MSPQM - ok
18:12:20.0449 8940	MsRPC           (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:12:20.0479 8940	MsRPC - ok
18:12:20.0529 8940	mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:12:20.0539 8940	mssmbios - ok
18:12:20.0599 8940	MSTEE           (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:12:20.0649 8940	MSTEE - ok
18:12:20.0679 8940	MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:12:20.0699 8940	MTConfig - ok
18:12:20.0739 8940	Mup             (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:12:20.0749 8940	Mup - ok
18:12:20.0809 8940	napagent        (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:12:20.0919 8940	napagent - ok
18:12:20.0989 8940	NativeWifiP     (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:12:21.0029 8940	NativeWifiP - ok
18:12:21.0199 8940	NBService       (2637f26312ecceeb6f110e95f1ece243) C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
18:12:21.0239 8940	NBService ( UnsignedFile.Multi.Generic ) - warning
18:12:21.0239 8940	NBService - detected UnsignedFile.Multi.Generic (1)
18:12:21.0319 8940	NDIS            (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:12:21.0349 8940	NDIS - ok
18:12:21.0389 8940	NdisCap         (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:12:21.0449 8940	NdisCap - ok
18:12:21.0489 8940	NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:12:21.0539 8940	NdisTapi - ok
18:12:21.0589 8940	Ndisuio         (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:12:21.0639 8940	Ndisuio - ok
18:12:21.0679 8940	NdisWan         (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:12:21.0729 8940	NdisWan - ok
18:12:21.0759 8940	NDProxy         (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:12:21.0809 8940	NDProxy - ok
18:12:21.0859 8940	NetBIOS         (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:12:21.0909 8940	NetBIOS - ok
18:12:21.0939 8940	NetBT           (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:12:21.0969 8940	NetBT - ok
18:12:22.0009 8940	Netlogon        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:12:22.0019 8940	Netlogon - ok
18:12:22.0089 8940	Netman          (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:12:22.0139 8940	Netman - ok
18:12:22.0179 8940	netprofm        (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:12:22.0249 8940	netprofm - ok
18:12:22.0349 8940	NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:12:22.0389 8940	NetTcpPortSharing - ok
18:12:22.0749 8940	NETw5s64        (39ede676d17f37af4573c2b33ec28aca) C:\Windows\system32\DRIVERS\NETw5s64.sys
18:12:23.0019 8940	NETw5s64 - ok
18:12:23.0639 8940	netw5v64        (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
18:12:23.0839 8940	netw5v64 - ok
18:12:23.0989 8940	nfrd960         (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:12:23.0999 8940	nfrd960 - ok
18:12:24.0069 8940	NlaSvc          (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:12:24.0119 8940	NlaSvc - ok
18:12:24.0139 8940	Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:12:24.0179 8940	Npfs - ok
18:12:24.0189 8940	nsi             (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:12:24.0249 8940	nsi - ok
18:12:24.0269 8940	nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:12:24.0329 8940	nsiproxy - ok
18:12:24.0419 8940	Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:12:24.0469 8940	Ntfs - ok
18:12:24.0589 8940	Null            (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:12:24.0649 8940	Null - ok
18:12:25.0209 8940	nvlddmkm        (bbe872a814b00798c2d568d46c42a71b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:12:25.0649 8940	nvlddmkm - ok
18:12:25.0879 8940	nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:12:25.0899 8940	nvraid - ok
18:12:25.0919 8940	nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:12:25.0939 8940	nvstor - ok
18:12:25.0999 8940	nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:12:26.0009 8940	nv_agp - ok
18:12:26.0219 8940	odserv          (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:12:26.0239 8940	odserv - ok
18:12:26.0269 8940	ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:12:26.0299 8940	ohci1394 - ok
18:12:26.0399 8940	ose             (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:12:26.0409 8940	ose - ok
18:12:26.0459 8940	p2pimsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:12:26.0509 8940	p2pimsvc - ok
18:12:26.0549 8940	p2psvc          (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:12:26.0569 8940	p2psvc - ok
18:12:26.0599 8940	Parport         (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:12:26.0619 8940	Parport - ok
18:12:26.0649 8940	partmgr         (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
18:12:26.0669 8940	partmgr - ok
18:12:26.0699 8940	PcaSvc          (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:12:26.0739 8940	PcaSvc - ok
18:12:26.0779 8940	pci             (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:12:26.0799 8940	pci - ok
18:12:26.0829 8940	pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:12:26.0839 8940	pciide - ok
18:12:26.0879 8940	pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:12:26.0899 8940	pcmcia - ok
18:12:26.0929 8940	pcw             (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:12:26.0939 8940	pcw - ok
18:12:26.0989 8940	PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:12:27.0059 8940	PEAUTH - ok
18:12:27.0139 8940	PerfHost        (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:12:27.0169 8940	PerfHost - ok
18:12:27.0299 8940	pla             (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:12:27.0369 8940	pla - ok
18:12:27.0419 8940	PlugPlay        (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:12:27.0459 8940	PlugPlay - ok
18:12:27.0489 8940	PNRPAutoReg     (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:12:27.0529 8940	PNRPAutoReg - ok
18:12:27.0559 8940	PNRPsvc         (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:12:27.0579 8940	PNRPsvc - ok
18:12:27.0629 8940	PolicyAgent     (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:12:27.0689 8940	PolicyAgent - ok
18:12:27.0729 8940	Power           (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:12:27.0789 8940	Power - ok
18:12:27.0859 8940	PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:12:27.0939 8940	PptpMiniport - ok
18:12:27.0959 8940	Processor       (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:12:27.0989 8940	Processor - ok
18:12:28.0029 8940	ProfSvc         (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
18:12:28.0069 8940	ProfSvc - ok
18:12:28.0119 8940	ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:12:28.0129 8940	ProtectedStorage - ok
18:12:28.0179 8940	Psched          (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:12:28.0219 8940	Psched - ok
18:12:28.0309 8940	ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:12:28.0359 8940	ql2300 - ok
18:12:28.0499 8940	ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:12:28.0519 8940	ql40xx - ok
18:12:28.0559 8940	QWAVE           (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:12:28.0599 8940	QWAVE - ok
18:12:28.0609 8940	QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:12:28.0629 8940	QWAVEdrv - ok
18:12:28.0649 8940	RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:12:28.0709 8940	RasAcd - ok
18:12:28.0769 8940	RasAgileVpn     (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:12:28.0819 8940	RasAgileVpn - ok
18:12:28.0849 8940	RasAuto         (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:12:28.0909 8940	RasAuto - ok
18:12:28.0939 8940	Rasl2tp         (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:12:28.0999 8940	Rasl2tp - ok
18:12:29.0039 8940	RasMan          (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:12:29.0109 8940	RasMan - ok
18:12:29.0149 8940	RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:12:29.0209 8940	RasPppoe - ok
18:12:29.0249 8940	RasSstp         (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:12:29.0319 8940	RasSstp - ok
18:12:29.0349 8940	rdbss           (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:12:29.0409 8940	rdbss - ok
18:12:29.0439 8940	rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:12:29.0469 8940	rdpbus - ok
18:12:29.0499 8940	RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:12:29.0539 8940	RDPCDD - ok
18:12:29.0589 8940	RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:12:29.0659 8940	RDPENCDD - ok
18:12:29.0679 8940	RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:12:29.0729 8940	RDPREFMP - ok
18:12:29.0779 8940	RDPWD           (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
18:12:29.0819 8940	RDPWD - ok
18:12:29.0869 8940	rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:12:29.0889 8940	rdyboost - ok
18:12:29.0909 8940	RemoteAccess    (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:12:29.0969 8940	RemoteAccess - ok
18:12:30.0209 8940	RemoteRegistry  (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:12:30.0279 8940	RemoteRegistry - ok
18:12:30.0319 8940	RFCOMM          (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
18:12:30.0359 8940	RFCOMM - ok
18:12:30.0399 8940	RpcEptMapper    (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:12:30.0459 8940	RpcEptMapper - ok
18:12:30.0489 8940	RpcLocator      (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:12:30.0529 8940	RpcLocator - ok
18:12:30.0589 8940	RpcSs           (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:12:30.0639 8940	RpcSs - ok
18:12:30.0699 8940	rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:12:30.0759 8940	rspndr - ok
18:12:30.0809 8940	RTL8167         (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys
18:12:30.0829 8940	RTL8167 - ok
18:12:30.0859 8940	SamSs           (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:12:30.0879 8940	SamSs - ok
18:12:31.0389 8940	SamsungAllShare (3abfdcb688385f9b3001e85345a94843) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
18:12:31.0639 8940	SamsungAllShare - ok
18:12:31.0779 8940	sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:12:31.0799 8940	sbp2port - ok
18:12:31.0839 8940	SCardSvr        (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:12:31.0899 8940	SCardSvr - ok
18:12:31.0929 8940	scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:12:31.0979 8940	scfilter - ok
18:12:32.0059 8940	Schedule        (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:12:32.0129 8940	Schedule - ok
18:12:32.0159 8940	SCPolicySvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:12:32.0199 8940	SCPolicySvc - ok
18:12:32.0239 8940	sdbus           (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
18:12:32.0269 8940	sdbus - ok
18:12:32.0309 8940	SDRSVC          (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:12:32.0379 8940	SDRSVC - ok
18:12:32.0429 8940	secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:12:32.0499 8940	secdrv - ok
18:12:32.0529 8940	seclogon        (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:12:32.0579 8940	seclogon - ok
18:12:32.0599 8940	SENS            (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:12:32.0639 8940	SENS - ok
18:12:32.0649 8940	SensrSvc        (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:12:32.0679 8940	SensrSvc - ok
18:12:32.0689 8940	Serenum         (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:12:32.0709 8940	Serenum - ok
18:12:32.0769 8940	Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:12:32.0799 8940	Serial - ok
18:12:32.0839 8940	sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:12:32.0869 8940	sermouse - ok
18:12:32.0919 8940	SessionEnv      (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:12:32.0969 8940	SessionEnv - ok
18:12:32.0999 8940	sffdisk         (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:12:33.0039 8940	sffdisk - ok
18:12:33.0059 8940	sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:12:33.0089 8940	sffp_mmc - ok
18:12:33.0099 8940	sffp_sd         (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:12:33.0119 8940	sffp_sd - ok
18:12:33.0149 8940	sfloppy         (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:12:33.0169 8940	sfloppy - ok
18:12:33.0239 8940	SharedAccess    (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:12:33.0299 8940	SharedAccess - ok
18:12:33.0359 8940	ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:12:33.0439 8940	ShellHWDetection - ok
18:12:33.0589 8940	SimpleSlideShowServer (0dea44002ff7b353b78c272d6696f510) C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
18:12:33.0609 8940	SimpleSlideShowServer - ok
18:12:33.0669 8940	SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:12:33.0679 8940	SiSRaid2 - ok
18:12:33.0699 8940	SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:12:33.0719 8940	SiSRaid4 - ok
18:12:33.0759 8940	Smb             (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:12:33.0819 8940	Smb - ok
18:12:33.0859 8940	SNMPTRAP        (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:12:33.0889 8940	SNMPTRAP - ok
18:12:33.0919 8940	spldr           (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:12:33.0929 8940	spldr - ok
18:12:33.0979 8940	Spooler         (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:12:34.0029 8940	Spooler - ok
18:12:34.0209 8940	sppsvc          (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:12:34.0289 8940	sppsvc - ok
18:12:34.0399 8940	sppuinotify     (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:12:34.0459 8940	sppuinotify - ok
18:12:34.0539 8940	srv             (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:12:34.0589 8940	srv - ok
18:12:34.0629 8940	srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:12:34.0669 8940	srv2 - ok
18:12:34.0689 8940	srvnet          (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:12:34.0729 8940	srvnet - ok
18:12:34.0779 8940	ssadbus         (8f8324ed1de63ffc7b1a02cd2d963c72) C:\Windows\system32\DRIVERS\ssadbus.sys
18:12:34.0819 8940	ssadbus - ok
18:12:34.0869 8940	ssadmdfl        (58221efcb74167b73667f0024c661ce0) C:\Windows\system32\DRIVERS\ssadmdfl.sys
18:12:34.0889 8940	ssadmdfl - ok
18:12:34.0909 8940	ssadmdm         (4da7c71bfac5ad71255b7e4cab980163) C:\Windows\system32\DRIVERS\ssadmdm.sys
18:12:34.0949 8940	ssadmdm - ok
18:12:34.0999 8940	SSDPSRV         (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:12:35.0059 8940	SSDPSRV - ok
18:12:35.0079 8940	SstpSvc         (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:12:35.0119 8940	SstpSvc - ok
18:12:35.0259 8940	STacSV          (810199dcc3bdc38304d7d649992ea7bc) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
18:12:35.0299 8940	STacSV - ok
18:12:35.0329 8940	stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:12:35.0349 8940	stexstor - ok
18:12:35.0419 8940	STHDA           (ed1722f43ce61409ef68340402d6267d) C:\Windows\system32\DRIVERS\stwrt64.sys
18:12:35.0439 8940	STHDA - ok
18:12:35.0499 8940	StillCam        (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
18:12:35.0539 8940	StillCam - ok
18:12:35.0599 8940	stisvc          (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:12:35.0649 8940	stisvc - ok
18:12:35.0679 8940	swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:12:35.0689 8940	swenum - ok
18:12:35.0739 8940	swprv           (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:12:35.0799 8940	swprv - ok
18:12:35.0909 8940	SysMain         (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:12:35.0969 8940	SysMain - ok
18:12:36.0099 8940	TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:12:36.0129 8940	TabletInputService - ok
18:12:36.0169 8940	TapiSrv         (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:12:36.0229 8940	TapiSrv - ok
18:12:36.0269 8940	TBS             (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:12:36.0329 8940	TBS - ok
18:12:36.0479 8940	Tcpip           (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
18:12:36.0529 8940	Tcpip - ok
18:12:36.0759 8940	TCPIP6          (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
18:12:36.0809 8940	TCPIP6 - ok
18:12:36.0939 8940	tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:12:36.0989 8940	tcpipreg - ok
18:12:37.0029 8940	TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:12:37.0059 8940	TDPIPE - ok
18:12:37.0099 8940	TDTCP           (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:12:37.0119 8940	TDTCP - ok
18:12:37.0169 8940	tdx             (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:12:37.0209 8940	tdx - ok
18:12:37.0249 8940	TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:12:37.0269 8940	TermDD - ok
18:12:37.0309 8940	TermService     (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:12:37.0369 8940	TermService - ok
18:12:37.0399 8940	Themes          (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:12:37.0429 8940	Themes - ok
18:12:37.0459 8940	THREADORDER     (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:12:37.0509 8940	THREADORDER - ok
18:12:37.0529 8940	TrkWks          (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:12:37.0599 8940	TrkWks - ok
18:12:37.0669 8940	TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:12:37.0709 8940	TrustedInstaller - ok
18:12:37.0749 8940	tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:12:37.0789 8940	tssecsrv - ok
18:12:37.0839 8940	TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:12:37.0899 8940	TsUsbFlt - ok
18:12:37.0949 8940	tunnel          (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:12:37.0989 8940	tunnel - ok
18:12:38.0029 8940	uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:12:38.0039 8940	uagp35 - ok
18:12:38.0089 8940	udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:12:38.0149 8940	udfs - ok
18:12:38.0179 8940	UI0Detect       (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:12:38.0189 8940	UI0Detect - ok
18:12:38.0239 8940	uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:12:38.0259 8940	uliagpkx - ok
18:12:38.0309 8940	umbus           (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
18:12:38.0339 8940	umbus - ok
18:12:38.0379 8940	UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:12:38.0399 8940	UmPass - ok
18:12:38.0449 8940	upnphost        (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:12:38.0499 8940	upnphost - ok
18:12:38.0539 8940	USBAAPL64       (54d4b48d443e7228bf64cf7cdc3118ac) C:\Windows\system32\Drivers\usbaapl64.sys
18:12:38.0579 8940	USBAAPL64 - ok
18:12:38.0619 8940	usbaudio        (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
18:12:38.0639 8940	usbaudio - ok
18:12:38.0689 8940	usbccgp         (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:12:38.0749 8940	usbccgp - ok
18:12:38.0779 8940	usbcir          (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:12:38.0799 8940	usbcir - ok
18:12:38.0819 8940	usbehci         (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:12:38.0859 8940	usbehci - ok
18:12:38.0929 8940	usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:12:38.0969 8940	usbhub - ok
18:12:38.0999 8940	usbohci         (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:12:39.0039 8940	usbohci - ok
18:12:39.0099 8940	usbprint        (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:12:39.0139 8940	usbprint - ok
18:12:39.0189 8940	USBSTOR         (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:12:39.0249 8940	USBSTOR - ok
18:12:39.0279 8940	usbuhci         (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
18:12:39.0299 8940	usbuhci - ok
18:12:39.0349 8940	usbvideo        (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
18:12:39.0379 8940	usbvideo - ok
18:12:39.0409 8940	UxSms           (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:12:39.0469 8940	UxSms - ok
18:12:39.0499 8940	VaultSvc        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:12:39.0509 8940	VaultSvc - ok
18:12:39.0559 8940	vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:12:39.0569 8940	vdrvroot - ok
18:12:39.0629 8940	vds             (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:12:39.0689 8940	vds - ok
18:12:39.0739 8940	vfs101a         (24899eff90e725d9c3ac10be870b4d1d) C:\Windows\system32\drivers\vfs101a.sys
18:12:39.0749 8940	vfs101a - ok
18:12:39.0849 8940	vfsFPService    (6c8e81e1a555dc163d89e26ceb30fad2) c:\Windows\system32\vfsFPService.exe
18:12:39.0889 8940	vfsFPService - ok
18:12:39.0939 8940	vga             (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:12:39.0959 8940	vga - ok
18:12:39.0979 8940	VgaSave         (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:12:40.0039 8940	VgaSave - ok
18:12:40.0069 8940	vhdmp           (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:12:40.0089 8940	vhdmp - ok
18:12:40.0119 8940	viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:12:40.0129 8940	viaide - ok
18:12:40.0169 8940	volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:12:40.0179 8940	volmgr - ok
18:12:40.0239 8940	volmgrx         (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:12:40.0259 8940	volmgrx - ok
18:12:40.0289 8940	volsnap         (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:12:40.0309 8940	volsnap - ok
18:12:40.0369 8940	vsmraid         (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:12:40.0389 8940	vsmraid - ok
18:12:40.0489 8940	VSS             (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:12:40.0579 8940	VSS - ok
18:12:40.0709 8940	vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:12:40.0739 8940	vwifibus - ok
18:12:40.0779 8940	vwififlt        (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:12:40.0799 8940	vwififlt - ok
18:12:40.0839 8940	vwifimp         (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:12:40.0859 8940	vwifimp - ok
18:12:40.0909 8940	W32Time         (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:12:40.0969 8940	W32Time - ok
18:12:40.0999 8940	WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:12:41.0029 8940	WacomPen - ok
18:12:41.0079 8940	WANARP          (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:12:41.0129 8940	WANARP - ok
18:12:41.0129 8940	Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:12:41.0169 8940	Wanarpv6 - ok
18:12:41.0259 8940	wbengine        (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:12:41.0319 8940	wbengine - ok
18:12:41.0449 8940	WbioSrvc        (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:12:41.0489 8940	WbioSrvc - ok
18:12:41.0529 8940	wcncsvc         (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:12:41.0559 8940	wcncsvc - ok
18:12:41.0579 8940	WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:12:41.0619 8940	WcsPlugInService - ok
18:12:41.0729 8940	Wd              (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:12:41.0769 8940	Wd - ok
18:12:42.0009 8940	WDBackup        (6a1aef46ac445ef4013e494bac9d66c2) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
18:12:42.0039 8940	WDBackup - ok
18:12:42.0109 8940	WDDriveService  (46da6f2c6b084069ec9c4a1c79bfe8c7) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
18:12:42.0129 8940	WDDriveService - ok
18:12:42.0299 8940	Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:12:42.0329 8940	Wdf01000 - ok
18:12:42.0359 8940	WdiServiceHost  (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:12:42.0469 8940	WdiServiceHost - ok
18:12:42.0479 8940	WdiSystemHost   (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:12:42.0499 8940	WdiSystemHost - ok
18:12:42.0689 8940	WDRulesService  (b1c9682b3ac27567bdba4dedafb6fa79) C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe
18:12:42.0729 8940	WDRulesService - ok
18:12:42.0779 8940	WebClient       (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:12:42.0819 8940	WebClient - ok
18:12:42.0859 8940	Wecsvc          (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:12:42.0919 8940	Wecsvc - ok
18:12:42.0949 8940	wercplsupport   (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:12:42.0989 8940	wercplsupport - ok
18:12:43.0039 8940	WerSvc          (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:12:43.0099 8940	WerSvc - ok
18:12:43.0169 8940	WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:12:43.0209 8940	WfpLwf - ok
18:12:43.0229 8940	WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:12:43.0249 8940	WIMMount - ok
18:12:43.0319 8940	WinDefend - ok
18:12:43.0339 8940	WinHttpAutoProxySvc - ok
18:12:43.0399 8940	Winmgmt         (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:12:43.0439 8940	Winmgmt - ok
18:12:43.0569 8940	WinRM           (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:12:43.0639 8940	WinRM - ok
18:12:43.0829 8940	WinUsb          (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:12:43.0869 8940	WinUsb - ok
18:12:43.0939 8940	Wlansvc         (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:12:43.0989 8940	Wlansvc - ok
18:12:44.0199 8940	wlidsvc         (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:12:44.0249 8940	wlidsvc - ok
18:12:44.0399 8940	WmiAcpi         (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:12:44.0439 8940	WmiAcpi - ok
18:12:44.0509 8940	wmiApSrv        (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:12:44.0549 8940	wmiApSrv - ok
18:12:44.0639 8940	WMPNetworkSvc - ok
18:12:44.0679 8940	WPCSvc          (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:12:44.0719 8940	WPCSvc - ok
18:12:44.0769 8940	WPDBusEnum      (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:12:44.0799 8940	WPDBusEnum - ok
18:12:44.0829 8940	ws2ifsl         (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:12:44.0879 8940	ws2ifsl - ok
18:12:44.0899 8940	wscsvc          (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
18:12:44.0939 8940	wscsvc - ok
18:12:44.0939 8940	WSearch - ok
18:12:45.0059 8940	wuauserv        (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
18:12:45.0129 8940	wuauserv - ok
18:12:45.0279 8940	WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:12:45.0329 8940	WudfPf - ok
18:12:45.0359 8940	WUDFRd          (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:12:45.0419 8940	WUDFRd - ok
18:12:45.0439 8940	wudfsvc         (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:12:45.0479 8940	wudfsvc - ok
18:12:45.0519 8940	WwanSvc         (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:12:45.0549 8940	WwanSvc - ok
18:12:45.0589 8940	MBR (0x1B8)     (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:12:46.0669 8940	\Device\Harddisk0\DR0 - ok
18:12:47.0049 8940	MBR (0x1B8)     (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
18:12:47.0859 8940	\Device\Harddisk1\DR1 - ok
18:12:47.0919 8940	Boot (0x1200)   (1f1cd00a237064e7bd50cc59f9666628) \Device\Harddisk0\DR0\Partition0
18:12:47.0919 8940	\Device\Harddisk0\DR0\Partition0 - ok
18:12:47.0969 8940	Boot (0x1200)   (8be860a18ddbdef22bfa3003ff6522f1) \Device\Harddisk1\DR1\Partition0
18:12:47.0969 8940	\Device\Harddisk1\DR1\Partition0 - ok
18:12:47.0969 8940	============================================================
18:12:47.0969 8940	Scan finished
18:12:47.0969 8940	============================================================
18:12:47.0989 5472	Detected object count: 3
18:12:47.0989 5472	Actual detected object count: 3
18:13:54.0360 5472	C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe - copied to quarantine
18:13:54.0370 5472	HKLM\SYSTEM\ControlSet001\services\DpHost - will be deleted on reboot
18:13:54.0400 5472	HKLM\SYSTEM\ControlSet002\services\DpHost - will be deleted on reboot
18:13:54.0640 5472	C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe - will be deleted on reboot
18:13:54.0640 5472	DpHost ( UnsignedFile.Multi.Generic ) - User select action: Delete 
18:13:54.0740 5472	C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe - copied to quarantine
18:13:54.0740 5472	HKLM\SYSTEM\ControlSet001\services\IDriverT - will be deleted on reboot
18:13:54.0760 5472	HKLM\SYSTEM\ControlSet002\services\IDriverT - will be deleted on reboot
18:13:54.0760 5472	C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe - will be deleted on reboot
18:13:54.0760 5472	IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Delete 
18:13:54.0860 5472	C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe - copied to quarantine
18:13:54.0860 5472	HKLM\SYSTEM\ControlSet001\services\NBService - will be deleted on reboot
18:13:54.0870 5472	HKLM\SYSTEM\ControlSet002\services\NBService - will be deleted on reboot
18:13:54.0880 5472	C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe - will be deleted on reboot
18:13:54.0880 5472	NBService ( UnsignedFile.Multi.Generic ) - User select action: Delete 
18:15:52.0625 7404	Deinitialize success
         
Gruß Matze

Alt 05.08.2012, 18:19   #20
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Na klasse, du hast meine Anleitung nicht umgesetzt sondern gleich alles löschen lassen!

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 05.08.2012, 18:37   #21
matzew1989
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Ja habs gesehen bin nach der Anleitung gegangen weil da über dem Bild stand "lasse deine Funde entfernen"
Hab das in deinem Beitrag erst gesehen als es zu spät war

Naja jetzt geht halt der Fingerprinter nich mehr.. selber schuld^^

Alt 05.08.2012, 19:01   #22
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Da wurde auch was von Nero7 gelöscht

Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix
  • Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.
  • Starte combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
    Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.
  • Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.
Wichtiger Hinweis:
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 06.08.2012, 10:17   #23
matzew1989
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



ComboFix Logdatei:

Code:
ATTFilter
ComboFix 12-08-05.02 - matze 06.08.2012   9:35.1.2 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.4093.2266 [GMT 2:00]
ausgeführt von:: c:\users\matze\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\logs
c:\windows\SysWow64\muzapp.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2012-07-06 bis 2012-08-06  ))))))))))))))))))))))))))))))
.
.
2012-08-06 07:48 . 2012-08-06 07:48	--------	d-----w-	c:\users\Default\AppData\Local\temp
2012-08-05 16:13 . 2012-08-05 16:13	--------	d-----w-	C:\TDSSKiller_Quarantine
2012-08-04 18:31 . 2012-08-04 18:31	--------	d-----w-	C:\_OTL
2012-08-03 13:53 . 2012-08-03 13:53	69000	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{DD728AAB-5DAE-4F93-B398-625042FA5DC2}\offreg.dll
2012-08-03 12:57 . 2012-06-29 10:04	9133488	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{DD728AAB-5DAE-4F93-B398-625042FA5DC2}\mpengine.dll
2012-07-31 13:50 . 2012-07-31 13:50	--------	d-----w-	c:\program files (x86)\ESET
2012-07-29 16:05 . 2012-07-29 16:05	--------	d-----w-	c:\users\matze\AppData\Roaming\Malwarebytes
2012-07-29 16:05 . 2012-07-29 16:05	--------	d-----w-	c:\programdata\Malwarebytes
2012-07-29 16:05 . 2012-07-29 16:05	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
2012-07-29 16:05 . 2012-07-03 11:46	24904	----a-w-	c:\windows\system32\drivers\mbam.sys
2012-07-29 09:32 . 2012-07-29 09:32	--------	d-----w-	c:\users\matze\AppData\Roaming\TuneUp Software
2012-07-29 09:32 . 2012-07-29 09:33	--------	d-----w-	c:\programdata\TuneUp Software
2012-07-29 09:32 . 2012-07-29 09:32	--------	d-sh--w-	c:\programdata\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2012-07-29 09:32 . 2012-07-29 09:32	--------	d--h--w-	c:\programdata\Common Files
2012-07-29 09:31 . 2012-07-29 10:32	--------	d-----w-	c:\users\matze\AppData\Roaming\MyPhoneExplorer
2012-07-29 09:30 . 2012-07-29 09:31	--------	d-----w-	c:\program files (x86)\MyPhoneExplorer
2012-07-22 18:05 . 2012-07-22 18:05	770384	----a-w-	c:\program files (x86)\Mozilla Firefox\msvcr100.dll
2012-07-22 18:05 . 2012-07-22 18:05	421200	----a-w-	c:\program files (x86)\Mozilla Firefox\msvcp100.dll
2012-07-11 11:02 . 2012-06-12 03:08	3148800	----a-w-	c:\windows\system32\win32k.sys
2012-07-11 09:31 . 2012-06-06 06:05	1499136	----a-w-	c:\program files\Common Files\System\ado\msado15.dll
2012-07-11 09:31 . 2012-06-06 05:05	1019904	----a-w-	c:\program files (x86)\Common Files\System\ado\msado15.dll
2012-07-11 09:31 . 2012-06-06 06:05	466944	----a-w-	c:\program files\Common Files\System\ado\msadomd.dll
2012-07-11 09:31 . 2012-06-06 06:05	258048	----a-w-	c:\program files\Common Files\System\msadc\msadco.dll
2012-07-11 09:31 . 2012-06-06 05:03	805376	----a-w-	c:\windows\SysWow64\cdosys.dll
2012-07-11 09:31 . 2012-06-06 06:05	495616	----a-w-	c:\program files\Common Files\System\ado\msadox.dll
2012-07-11 09:31 . 2012-06-06 05:05	352256	----a-w-	c:\program files (x86)\Common Files\System\ado\msadomd.dll
2012-07-11 09:31 . 2012-06-06 06:05	61440	----a-w-	c:\program files\Common Files\System\ado\msador15.dll
2012-07-11 09:31 . 2012-06-06 05:05	57344	----a-w-	c:\program files (x86)\Common Files\System\ado\msador15.dll
2012-07-11 09:31 . 2012-06-06 05:05	212992	----a-w-	c:\program files (x86)\Common Files\System\msadc\msadco.dll
2012-07-11 09:31 . 2012-06-06 05:05	143360	----a-w-	c:\program files (x86)\Common Files\System\ado\msjro.dll
2012-07-11 09:31 . 2012-06-06 06:02	1133568	----a-w-	c:\windows\system32\cdosys.dll
2012-07-11 09:31 . 2012-06-06 05:05	372736	----a-w-	c:\program files (x86)\Common Files\System\ado\msadox.dll
2012-07-10 14:01 . 2012-07-10 14:02	--------	d-----w-	c:\program files (x86)\Google
2012-07-10 14:01 . 2012-07-10 14:01	--------	d-----w-	c:\users\matze\AppData\Local\Google
2012-07-08 21:54 . 2012-07-08 21:54	--------	d-----w-	c:\users\matze\AppData\Roaming\DivX
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-03 18:13 . 2012-06-13 22:14	426184	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-03 18:13 . 2011-06-30 07:47	70344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-07-11 10:58 . 2011-02-12 10:07	59701280	----a-w-	c:\windows\system32\MRT.exe
2012-07-03 16:21 . 2012-02-26 18:38	54072	----a-w-	c:\windows\system32\drivers\aswRdr2.sys
2012-07-03 16:21 . 2011-06-29 18:43	958400	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2012-07-03 16:21 . 2011-02-06 14:46	355856	----a-w-	c:\windows\system32\drivers\aswSP.sys
2012-07-03 16:21 . 2011-02-06 14:46	59728	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2012-07-03 16:21 . 2011-02-06 14:46	71064	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2012-07-03 16:21 . 2011-02-06 14:46	25232	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2012-07-03 16:21 . 2011-02-06 14:45	41224	----a-w-	c:\windows\avastSS.scr
2012-07-03 16:21 . 2011-02-06 14:45	227648	----a-w-	c:\windows\SysWow64\aswBoot.exe
2012-07-03 16:21 . 2011-02-06 14:46	285328	----a-w-	c:\windows\system32\aswBoot.exe
2012-06-25 14:04 . 2012-06-25 14:04	1394248	----a-w-	c:\windows\SysWow64\msxml4.dll
2012-06-02 22:19 . 2012-06-19 13:03	38424	----a-w-	c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-19 13:03	2428952	----a-w-	c:\windows\system32\wuaueng.dll
2012-06-02 22:19 . 2012-06-19 13:03	57880	----a-w-	c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-19 13:03	44056	----a-w-	c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-19 13:03	701976	----a-w-	c:\windows\system32\wuapi.dll
2012-06-02 22:15 . 2012-06-19 13:03	2622464	----a-w-	c:\windows\system32\wucltux.dll
2012-06-02 22:15 . 2012-06-19 13:03	99840	----a-w-	c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-19 13:02	186752	----a-w-	c:\windows\system32\wuwebv.dll
2012-06-02 13:15 . 2012-06-19 13:02	36864	----a-w-	c:\windows\system32\wuapp.exe
2012-05-31 10:25 . 2011-02-06 12:28	279656	------w-	c:\windows\system32\MpSigStub.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{C9EE92B7-EDD5-4ad9-8029-2EC6818E653A}]
2011-09-01 16:00	3075520	----a-w-	c:\program files (x86)\AusweisApp\siqeCardClient.ols
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPADVISOR"="c:\program files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [2010-06-29 1689144]
"KiesHelper"="c:\program files (x86)\Samsung\Kies\KiesHelper.exe" [2012-02-22 943504]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2012-02-22 3508624]
"KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-02-29 21416]
"HP Photosmart 5510d series (NET)"="c:\program files\HP\HP Photosmart 5510d series\Bin\ScanToPCActivationApp.exe" [2011-08-16 2676584]
"Sidebar"="c:\program files (x86)\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"ICQ"="c:\program files (x86)\ICQ7M\ICQ.exe" [2012-06-06 127040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"QlbCtrl.exe"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-11-24 323640]
"DpAgent"="c:\program files (x86)\DigitalPersona\Bin\dpagent.exe" [2009-12-01 842816]
"AllShareAgent"="c:\program files (x86)\Samsung\AllShare\AllShareAgent.exe" [2011-05-24 250768]
"WinampAgent"="c:\program files (x86)\Winamp\winampa.exe" [2011-07-11 74752]
"Nikon Message Center 2"="c:\program files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe" [2010-05-25 619008]
"Nikon Transfer Monitor"="c:\program files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe" [2009-09-15 479232]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2012-07-03 4273976]
"PlusService"="c:\program files (x86)\Yuna Software\Messenger Plus!\PlusService.exe" [2011-10-24 801792]
"PDFPrint"="c:\program files (x86)\PDF24\pdf24.exe" [2011-11-03 220744]
"WD Quick View"="c:\program files (x86)\Western Digital\WD Quick View\WDDMStatus.exe" [2012-04-30 5235608]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920]
.
c:\users\matze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Tintenwarnungen überwachen - HP Photosmart 5510d series (Netzwerk).lnk - c:\windows\system32\RunDll32.exe [2009-7-14 45568]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
SanDisk Media Manager.lnk -  [N/A]
Squeezebox Server-Taskleisten-Tool.lnk - c:\program files (x86)\Squeezebox\SqueezeTray.exe [2011-8-5 2162775]
WISO Mein Steuer-Sparbuch heute.lnk - c:\program files (x86)\WISO\Steuersoftware 2012\mshaktuell.exe [2012-1-4 1370736]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages	REG_MULTI_SZ   	kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"HP Software Update"=c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update-Dienst (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-09-09 86072]
R2 SimpleSlideShowServer;SimpleSlideShowServer;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe [2011-05-24 22464]
R2 WDBackup;WD Backup;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2012-04-24 1150368]
R2 WDRulesService;WD Rules;c:\program files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe [2012-04-11 1177496]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-03 250056]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2011-12-08 36328]
R3 Com4QLBEx;Com4QLBEx;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-01-12 227896]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-29 113120]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series - Adaptertreiber für Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-12-08 157672]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-12-08 16872]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-12-08 177640]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2011-02-18 51712]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [2009-03-01 89600]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-07-03 71064]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [2011-09-21 21992]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2009-07-08 30520]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944]
S2 SamsungAllShare;Samsung AllShare PC Service;c:\program files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe [2011-05-24 7237024]
S2 vfsFPService;Validity Fingerprint Service;c:\windows\system32\vfsFPService.exe [2008-09-16 719152]
S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2012-04-11 247704]
S3 AVerAF15;AVerMedia BDA Digital Tuner;c:\windows\system32\Drivers\AVerAF15.sys [2008-01-16 369024]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2011-02-06 36864]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2008-10-22 128352]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-07-03 24904]
S3 NETw5s64;Intel(R) Wireless WiFi Link Adaptertreiber für Windows 7 64-Bit;c:\windows\system32\DRIVERS\NETw5s64.sys [2010-01-13 7675392]
S3 RTL8167;Realtek 8167 NT-Treiber;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
S3 vfs101a;vfs101a;c:\windows\system32\drivers\vfs101a.sys [2008-09-16 49968]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2012-08-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-13 18:13]
.
2012-08-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 14:01]
.
2012-08-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 14:01]
.
2012-08-06 c:\windows\Tasks\HP Photo Creations Communicator.job
- c:\programdata\HP Photo Creations\MessageCheck.exe [2011-12-03 21:08]
.
2012-07-24 c:\windows\Tasks\HPCeeScheduleForMATZE-PC$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2009-10-07 03:22]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-07-03 16:21	133400	----a-w-	c:\program files\Alwil Software\Avast5\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2009-07-21 450048]
"HPToneControl"="c:\program files\Hewlett-Packard\HPToneControl\HPTonectl.exe" [2009-08-19 107832]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2010-11-03 1580368]
"combofix"="c:\combofix\CF17409.3XE" [2010-11-20 345088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://fck.de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Free YouTube to MP3 Converter - c:\users\matze\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files (x86)\ICQ7M\ICQ.exe
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\matze\AppData\Roaming\Mozilla\Firefox\Profiles\x9uh4a59.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/ig
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-13222027.sys
AddRemove-AVerMedia A309 (MiniCard, DVB-T) - c:\program files (x86)\AVerMedia\AVerMedia A309 (MiniCard
AddRemove-{6F44AF95-3CDE-4513-AD3F-6D45F17BF324} - c:\program files (x86)\InstallShield Installation Information\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}\setup.exe
AddRemove-Club Cooee Start - c:\windows\system32\javaws.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_270_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_270_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\program files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
c:\program files (x86)\Hp\HP Software Update\HPWUCli.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-08-06  10:12:00 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2012-08-06 08:11
.
Vor Suchlauf: 12 Verzeichnis(se), 210.459.090.944 Bytes frei
Nach Suchlauf: 19 Verzeichnis(se), 209.972.404.224 Bytes frei
.
- - End Of File - - 32D75B684C58E0657652B6F381B5DFF4
         
Grüße Matze

Alt 06.08.2012, 12:15   #24
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Bitte nun Logs mit GMER und OSAM erstellen und posten.
GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen.
Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst.

Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM!

Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
  • Starte die aswMBR.exe - (aswMBR.exe Anleitung)
    Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten".
  • Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen )
    Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
  • Klicke auf Scan.
  • Warte bitte bis Scan finished successfully im DOS-Fenster steht.
  • Drücke auf Save Log und speichere diese auf dem Desktop.
Poste mir die aswMBR.txt in deiner nächsten Antwort.

Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung

Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).



Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 06.08.2012, 14:56   #25
matzew1989
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



GMER bericht:
Code:
ATTFilter
GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2012-08-06 14:49:54
Windows 6.1.7601 Service Pack 1 
Running: j1n89nwj.exe


---- Registry - GMER 1.0.15 ----

Reg  HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\002186b373ba                      
Reg  HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\002186b373ba@001a756817a0         0xA2 0xBA 0xC7 0xB7 ...
Reg  HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\002186b373ba@3c5a37be330d         0x21 0x18 0x85 0x0E ...
Reg  HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\002186b373ba (not active ControlSet)  
Reg  HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\002186b373ba@001a756817a0             0xA2 0xBA 0xC7 0xB7 ...
Reg  HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\002186b373ba@3c5a37be330d             0x21 0x18 0x85 0x0E ...

---- EOF - GMER 1.0.15 ----
         
OSAM Bericht:

Code:
ATTFilter
Report of OSAM: Autorun Manager v5.0.11926.0
hxxp://www.online-solutions.ru/en/
Saved at 15:23:07 on 06.08.2012

OS: Windows 7 Home Premium Edition Service Pack 1 (Build 7601), 64-bit
Default Browser: Mozilla Corporation Firefox 14.0.1

Scanner Settings
[x] Rootkits detection (hidden registry)
[x] Rootkits detection (hidden files)
[x] Retrieve files information
[x] Check Microsoft signatures

Filters
[ ] Trusted entries
[ ] Empty entries
[x] Hidden registry entries (rootkit activity)
[x] Exclusively opened files
[x] Not found files
[x] Files without detailed information
[x] Existing files
[ ] Non-startable services
[ ] Non-startable drivers
[x] Active entries
[x] Disabled entries


[Common]
-----( %SystemRoot%\Tasks )-----
"HP Photo Creations Communicator.job" - ? - C:\ProgramData\HP Photo Creations\MessageCheck.exe  (File found, but it contains no detailed information)
"HPCeeScheduleForMATZE-PC$.job" - "Hewlett-Packard" - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
"HPCeeScheduleFormatze.job" - "Hewlett-Packard" - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
"GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

[Control Panel Objects]
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )-----
"HP 3D DriveGuard" - ? - C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\hpaccelerometercp.CPL  (File not found)
"QuickTime" - "Apple Inc." - C:\Program Files (x86)\QuickTime\QTSystem\QuickTime.cpl

[Drivers]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"aswFsBlk" (aswFsBlk) - "AVAST Software" - C:\Windows\system32\drivers\aswFsBlk.sys
"aswMonFlt" (aswMonFlt) - "AVAST Software" - C:\Windows\system32\drivers\aswMonFlt.sys
"aswRdr" (aswRdr) - "AVAST Software" - C:\Windows\System32\Drivers\aswrdr2.sys
"aswSnx" (aswSnx) - "AVAST Software" - C:\Windows\system32\drivers\aswSnx.sys
"aswSP" (aswSP) - "AVAST Software" - C:\Windows\system32\drivers\aswSP.sys
"avast! Network Shield Support" (aswTdi) - "AVAST Software" - C:\Windows\system32\drivers\aswTdi.sys
"catchme" (catchme) - ? - C:\ComboFix\catchme.sys  (File not found)
"cpuz135" (cpuz135) - "CPUID" - C:\Windows\system32\drivers\cpuz135_x64.sys
"MBAMProtector" (MBAMProtector) - "Malwarebytes Corporation" - C:\Windows\system32\drivers\mbam.sys

[Explorer]
-----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )-----
{F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
{B2F55D43-C7A4-4B7C-90D7-7A860DFA9F2A} "PXCInfoShlExt Class" - "Tracker Software Products Ltd." - C:\Program Files\Tracker Software\Shell Extensions\Win32\XCShInfo.dll
-----( HKLM\Software\Classes\Protocols\Filter )-----
{807563E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
-----( HKLM\Software\Classes\Protocols\Handler )-----
{314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll
{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
{828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
{828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )-----
{472083B0-C522-11CF-8763-00608CC02F24} "avast" - "AVAST Software" - C:\Program Files\Alwil Software\Avast5\ashShell.dll
{42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\msohevi.dll
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
{5858A72C-C2B4-4dd7-B2BF-B76DB1BD9F6C} "Microsoft Office OneNote Namespace Extension for Windows Desktop Search" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\ONFILTER.DLL
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
{CF822AB4-6DB5-4FDA-BC28-E61DF36D2583} "PDF-XChange PDF Preview Provider" - "Tracker Software Products Ltd." - C:\Program Files\Tracker Software\Shell Extensions\Win32\XCShInfo.dll
{67EB453C-1BE1-48EC-AAF3-23B10277FCC1} "PDF-XChange PDF Property Handler" - "Tracker Software Products Ltd." - C:\Program Files\Tracker Software\Shell Extensions\Win32\XCShInfo.dll
{EBD0B8F4-A9A0-41B7-9695-030CD264D9C8} "PDF-XChange PDF Thumbnail Provider" - "Tracker Software Products Ltd." - C:\Program Files\Tracker Software\Shell Extensions\Win32\XCShInfo.dll
{B2F55D43-C7A4-4B7C-90D7-7A860DFA9F2A} "PXCInfoShlExt Class" - "Tracker Software Products Ltd." - C:\Program Files\Tracker Software\Shell Extensions\Win32\XCShInfo.dll

[Internet Explorer]
-----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )-----
ITBar7Height "ITBar7Height" - ? -   (File not found | COM-object registry key not found)
<binary data> "ITBar7Layout" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )-----
{8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_24" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} "Java Plug-in 1.6.0_24" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_24" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\npjpi160_24.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )-----
{48E73304-E1D6-4330-914C-F5F514E3486C} "An OneNote senden" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
"ICQ7M" - "ICQ, LLC." - C:\Program Files (x86)\ICQ7M\ICQ.exe
{FF059E31-CC5A-4E2E-BF3B-96E929D65503} "Research" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )-----
<binary data> "avast! WebRep" - "AVAST Software" - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )-----
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} "avast! WebRep" - "AVAST Software" - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
{395610AE-C624-4f58-B89E-23733EA00F9A} "DigitalPersona Personal Extension" - "DigitalPersona, Inc." - C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll
{C9EE92B7-EDD5-4ad9-8029-2EC6818E653A} "eCard Client Initiator" - "OpenLimit SignCubes AG" - C:\Program Files (x86)\AusweisApp\siqeCardClient.ols
{DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
{9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live ID-Anmelde-Hilfsprogramm" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

[Known DLLs]
-----( HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDLLs )-----
"advapi32" - "Microsoft Corporation" - C:\Windows\system32\advapi32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"clbcatq" - "Microsoft Corporation" - C:\Windows\system32\clbcatq.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"COMDLG32" - "Microsoft Corporation" - C:\Windows\system32\COMDLG32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"DifxApi" - "Microsoft Corporation" - C:\Windows\system32\difxapi.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"gdi32" - "Microsoft Corporation" - C:\Windows\system32\gdi32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"IERTUTIL" - "Microsoft Corporation" - C:\Windows\system32\IERTUTIL.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"IMAGEHLP" - "Microsoft Corporation" - C:\Windows\system32\IMAGEHLP.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"IMM32" - "Microsoft Corporation" - C:\Windows\system32\IMM32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"kernel32" - "Microsoft Corporation" - C:\Windows\system32\kernel32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"LPK" - "Microsoft Corporation" - C:\Windows\system32\LPK.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"MSCTF" - "Microsoft Corporation" - C:\Windows\system32\MSCTF.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"MSVCRT" - "Microsoft Corporation" - C:\Windows\system32\MSVCRT.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"NORMALIZ" - "Microsoft Corporation" - C:\Windows\system32\NORMALIZ.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"NSI" - "Microsoft Corporation" - C:\Windows\system32\NSI.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"ole32" - "Microsoft Corporation" - C:\Windows\system32\ole32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"OLEAUT32" - "Microsoft Corporation" - C:\Windows\system32\OLEAUT32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"PSAPI" - "Microsoft Corporation" - C:\Windows\system32\PSAPI.DLL  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"rpcrt4" - "Microsoft Corporation" - C:\Windows\system32\rpcrt4.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"sechost" - "Microsoft Corporation" - C:\Windows\system32\sechost.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"Setupapi" - "Microsoft Corporation" - C:\Windows\system32\Setupapi.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"SHELL32" - "Microsoft Corporation" - C:\Windows\system32\SHELL32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"SHLWAPI" - "Microsoft Corporation" - C:\Windows\system32\SHLWAPI.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"URLMON" - "Microsoft Corporation" - C:\Windows\system32\URLMON.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"user32" - "Microsoft Corporation" - C:\Windows\system32\user32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"USP10" - "Microsoft Corporation" - C:\Windows\system32\USP10.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"WININET" - "Microsoft Corporation" - C:\Windows\system32\WININET.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"WLDAP32" - "Microsoft Corporation" - C:\Windows\system32\WLDAP32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"WS2_32" - "Microsoft Corporation" - C:\Windows\system32\WS2_32.dll  (Hidden registry entry, rootkit activity | File signed by Microsoft)

[LSA Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Control\Lsa )-----
"Security Packages" - "Microsoft Corp." - C:\Windows\system32\livessp.dll

[Logon]
-----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\Users\matze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
"Tintenwarnungen überwachen - HP Photosmart 5510d series (Netzwerk).lnk" - "Hewlett-Packard Co." - C:\Program Files\HP\HP Photosmart 5510d series\bin\HPStatusBL.dll  (Shortcut exists | File exists)
-----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
"SanDisk Media Manager.lnk" - "SanDisk Corporation" - C:\Program Files (x86)\SanDisk\SanDisk Media Manager\SanDiskMediaManager-Launcher.EXE  (Shortcut exists | File exists)
"Squeezebox Server-Taskleisten-Tool.lnk" - "Logitech Inc." - C:\Program Files (x86)\Squeezebox\SqueezeTray.exe  (Shortcut exists | File exists)
"WISO Mein Steuer-Sparbuch heute.lnk" - "Buhl Tax Service, Hannover" - C:\Program Files (x86)\WISO\Steuersoftware 2012\mshaktuell.exe  (Shortcut exists | File exists)
-----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )-----
"HP Photosmart 5510d series (NET)" - "Hewlett-Packard Co." - "C:\Program Files\HP\HP Photosmart 5510d series\Bin\ScanToPCActivationApp.exe" -deviceID "CN1A51B18S05RW:NW" -scfn "HP Photosmart 5510d series (NET)" -AutoStart 1
"HPADVISOR" - "Hewlett-Packard" - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW
"ICQ" - "ICQ, LLC." - "C:\Program Files (x86)\ICQ7M\ICQ.exe" silent loginmode=4
"KiesHelper" - "Samsung" - C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
"KiesPDLR" - ? - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
"KiesTrayAgent" - "Samsung Electronics Co., Ltd." - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
"msnmsgr" - "Microsoft Corporation" - "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
-----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )-----
"StartupPrograms" - ? - rdpclip  (File not found)
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )-----
"AllShareAgent" - "Samsung" - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
"avast" - "AVAST Software" - "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
"DpAgent" - "DigitalPersona, Inc." - C:\Program Files (x86)\DigitalPersona\Bin\dpagent.exe
"Malwarebytes' Anti-Malware" - "Malwarebytes Corporation" - "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
"Nikon Message Center 2" - "Nikon Corporation" - C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
"Nikon Transfer Monitor" - "Nikon Corporation" - C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe
"PDFPrint" - "Geek Software GmbH" - C:\Program Files (x86)\PDF24\pdf24.exe
"PlusService" - "Yuna Software" - C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
"QlbCtrl.exe" - " Hewlett-Packard Development Company, L.P." - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
"WD Quick View" - "Western Digital Technologies, Inc." - C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
"WinampAgent" - "Nullsoft, Inc." - "C:\Program Files (x86)\Winamp\winampa.exe"

[Print Monitors]
-----( HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors )-----
"HP Discovery Port Monitor (HP Photosmart 5510d series)" - "Hewlett-Packard Co." - C:\Windows\system32\HPDiscoPMb411.dll

[Services]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103" (WinDefend) - ? - C:\Program Files (x86)\Windows Defender\mpsvc.dll  (File not found)
"@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe"  (File not found)
"Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
"Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
"Apple Mobile Device" (Apple Mobile Device) - "Apple Inc." - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
"avast! Antivirus" (avast! Antivirus) - "AVAST Software" - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
"Com4QLBEx" (Com4QLBEx) - "Hewlett-Packard Development Company, L.P." - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
"Dienst "Bonjour"" (Bonjour Service) - "Apple Inc." - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
"Google Update-Dienst (gupdate)" (gupdate) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"HP Quick Synchronization Service" (HPDrvMntSvc.exe) - "Hewlett-Packard Company" - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
"HP Software Framework Service" (hpqwmiex) - "Hewlett-Packard Company" - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
"HP Support Assistant Service" (HP Support Assistant Service) - "Hewlett-Packard Company" - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
"iPod-Dienst" (iPod Service) - "Apple Inc." - C:\Program Files\iPod\bin\iPodService.exe
"MBAMService" (MBAMService) - "Malwarebytes Corporation" - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
"Microsoft .NET Framework NGEN v4.0.30319_X64" (clr_optimization_v4.0.30319_64) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"Microsoft Office Diagnostics Service" (odserv) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
"Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
"Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
"Samsung AllShare PC Service" (SamsungAllShare) - ? - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe  (File found, but it contains no detailed information)
"SimpleSlideShowServer" (SimpleSlideShowServer) - "Samsung Electronics" - C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
"Validity Fingerprint Service" (vfsFPService) - "Validity Sensors, Inc." - c:\Windows\system32\vfsFPService.exe
"WD Backup" (WDBackup) - "Western Digital " - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
"WD Drive Manager" (WDDriveService) - "Western Digital" - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
"WD Rules" (WDRulesService) - "Western Digital " - C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe
"Windows Live ID Sign-in Assistant" (wlidsvc) - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

[Winsock Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )-----
"mdnsNSP" - "Apple Inc." - C:\Program Files (x86)\Bonjour\mdnsNSP.dll
"WindowsLive Local NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
"WindowsLive NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

===[ Logfile end ]=========================================[ Logfile end ]===

If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru
         
aswMBR Bericht:

Code:
ATTFilter
 aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-08-06 15:26:35
-----------------------------
15:26:35.539    OS Version: Windows x64 6.1.7601 Service Pack 1
15:26:35.539    Number of processors: 2 586 0x1706
15:26:35.539    ComputerName: MATZE-PC  UserName: matze
15:26:36.413    Initialize success
15:26:39.876    AVAST engine defs: 12080600
15:26:55.975    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
15:26:55.975    Disk 0 Vendor: TOSHIBA_MK3252GSX LV011C Size: 305245MB BusType: 11
15:26:55.975    Disk 1  \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-2
15:26:55.991    Disk 1 Vendor: TOSHIBA_MK3252GSX LV011C Size: 305245MB BusType: 11
15:26:56.022    Disk 0 MBR read successfully
15:26:56.038    Disk 0 MBR scan
15:26:56.038    Disk 0 Windows 7 default MBR code
15:26:56.038    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS       293599 MB offset 63
15:26:56.085    Disk 0 scanning C:\Windows\system32\drivers
15:27:10.359    Service scanning
15:27:45.162    Modules scanning
15:27:45.162    Disk 0 trace - called modules:
15:27:45.209    ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ACPI.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys 
15:27:45.724    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c4e790]
15:27:45.724    3 CLASSPNP.SYS[fffff880019b643f] -> nt!IofCallDriver -> [0xfffffa8004c4d480]
15:27:45.739    5 hpdskflt.sys[fffff8800195d289] -> nt!IofCallDriver -> [0xfffffa8004aca520]
15:27:45.755    7 ACPI.sys[fffff88000f107a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004ac6680]
15:27:46.566    AVAST engine scan C:\Windows
15:27:50.513    AVAST engine scan C:\Windows\system32
15:30:43.143    AVAST engine scan C:\Windows\system32\drivers
15:30:54.874    AVAST engine scan C:\Users\matze
15:48:20.014    AVAST engine scan C:\ProgramData
15:50:14.658    Disk 0 MBR has been saved successfully to "C:\Users\matze\Desktop\MBR.dat"
15:50:14.674    The log file has been saved successfully to "C:\Users\matze\Desktop\aswMBR.txt"
         
Gruß Matze

Alt 06.08.2012, 20:37   #26
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 08.08.2012, 11:05   #27
matzew1989
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Malewarebytes:

Code:
ATTFilter
 Malwarebytes Anti-Malware  (Test) 1.62.0.1300
www.malwarebytes.org

Datenbank Version: v2012.08.07.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
matze :: MATZE-PC [Administrator]

Schutz: Deaktiviert

07.08.2012 10:51:56
mbam-log-2012-08-07 (10-51-56).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|F:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 405648
Laufzeit: 1 Stunde(n), 30 Minute(n), 34 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
         
SUPERAntiSpyware:

Code:
ATTFilter
SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 08/08/2012 at 10:52 AM

Application Version : 5.5.1012

Core Rules Database Version : 9021
Trace Rules Database Version: 6833

Scan type       : Complete Scan
Total Scan Time : 22:16:35

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Administrator

Memory items scanned      : 697
Memory threats detected   : 0
Registry items scanned    : 68361
Registry threats detected : 0
File items scanned        : 194928
File threats detected     : 687

Adware.Tracking Cookie
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@ad.adition[2].txt [ /ad.adition ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@ad.extr1[1].txt [ /ad.extr1 ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@ad1.adfarm.adtelligence[2].txt [ /ad1.adfarm.adtelligence ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@ads.medienhaus[1].txt [ /ads.medienhaus ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@adserver.zonemedia[1].txt [ /adserver.zonemedia ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@atdmt.combing[2].txt [ /atdmt.combing ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@atwola[1].txt [ /atwola ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@guj.122.2o7[1].txt [ /guj.122.2o7 ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@imrworldwide[2].txt [ /imrworldwide ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@microsoftwllivemkt.112.2o7[1].txt [ /microsoftwllivemkt.112.2o7 ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@sevenoneintermedia.112.2o7[1].txt [ /sevenoneintermedia.112.2o7 ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@track.effiliation[1].txt [ /track.effiliation ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@track.effiliation[3].txt [ /track.effiliation ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@traffictrack[2].txt [ /traffictrack ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@xm.xtendmedia[1].txt [ /xm.xtendmedia ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@zbox.zanox[2].txt [ /zbox.zanox ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\4KAGU0J2.txt [ /smartadserver.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\1X9SR39I.txt [ /serving-sys.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\6NUQDXLB.txt [ /ad2.adfarm1.adition.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\ZG8LINK4.txt [ /doubleclick.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\1VWC7FG3.txt [ /atdmt.combing.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\SBQLQ0CU.txt [ /adtech.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\6PFG4BUF.txt [ /atdmt.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\IRK8A321.txt [ /questionmarket.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\TNBHKX18.txt [ /apmebf.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\JIESW2H9.txt [ /specificclick.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\PY20A4HX.txt [ /server.adform.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\BPH8G1W7.txt [ /lucidmedia.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\9RNG0T2X.txt [ /ad.adserver01.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\V359NL2C.txt [ /ad.360yield.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\KCXWSLUW.txt [ /ad.dyntracker.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\INMLUD6D.txt [ /mediaplex.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\COHAMK4O.txt [ /socialsex.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\H1M8CBS7.txt [ /ad1.adfarm1.adition.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\0B7OYQU3.txt [ /content.yieldmanager.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\PVZISSM3.txt [ /zanox-affiliate.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\8XT9M7JO.txt [ /www.usenext.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\YTARF8J4.txt [ /www.traffective-tracking.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\M4FCFJ0X.txt [ /unister-adservices.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\9PKHQ28Q.txt [ /tracking.mlsat02.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\F68TNOCO.txt [ /adserv.kwick.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\XQFAAAK7.txt [ /eas.apm.emediate.eu ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\OV9Q1BN5.txt [ /tracking.quisma.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\GAJ7M3RM.txt [ /adform.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\KF074KA9.txt [ /media6degrees.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\O8LZZBL2.txt [ /lanes.solution.weborama.fr ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\GO8ZDIB7.txt [ /webmasterplan.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\T9KCN2VN.txt [ /adbrite.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\WYD88QPY.txt [ /invitemedia.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\TBC40GOS.txt [ /weborama.fr ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\9GBIZLUE.txt [ /www.socialsex.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\HAAHHJV0.txt [ /tracking.mindshare.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\BLP084GB.txt [ /ru4.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\1YKTW5ZJ.txt [ /track.adform.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\ZSGEFYY1.txt [ /zedo.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\AYKH7OFV.txt [ /adserver.fck.onvert.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\0C26O03I.txt [ /bs.serving-sys.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\XV3EXW7P.txt [ /dyntracker.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\M3JJ88Y5.txt [ /ad4.adfarm1.adition.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\IXRSBQMH.txt [ /server.adformdsp.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\5WI7Y4EK.txt [ /ads.creative-serving.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\UI422NLE.txt [ /msnportal.112.2o7.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\SUMW36NK.txt [ /ad3.adfarm1.adition.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\9JAZNJ04.txt [ /c.atdmt.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\I3XBL014.txt [ /ad.adc-serv.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\4TVT6X5N.txt [ /ad.adnet.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\1WSXT09U.txt [ /tradedoubler.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\07BWF2RP.txt [ /www.zanox-affiliate.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\RO9MIYLY.txt [ /eyewonder.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\NIJ268UD.txt [ /ad.ad-srv.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\I60713ZV.txt [ /revsci.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\8B7RQQDO.txt [ /www.active-tracking.de ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\R638WS1Y.txt [ /adviva.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\BQFUIT6O.txt [ /ad.yieldmanager.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\7CNXJD22.txt [ /fastclick.net ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\N2P3SYL4.txt [ /adfarm1.adition.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\IJUYYR82.txt [ /casalemedia.com ]
	C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\WX1660L1.txt [ /adformdsp.net ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\J1HY30OD.txt [ Cookie:matze@smartadserver.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZIQWVX2Z.txt [ Cookie:matze@serving-sys.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\CBPJRI73.txt [ Cookie:matze@ad2.adfarm1.adition.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@verticaltechmedia[1].txt [ Cookie:matze@verticaltechmedia.de/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\8MCAEKC1.txt [ Cookie:matze@doubleclick.net/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\KOOR2XQP.txt [ Cookie:matze@adtech.de/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ESCBSI6Y.txt [ Cookie:matze@atdmt.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@questionmarket[2].txt [ Cookie:matze@questionmarket.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\XLNFS4WM.txt [ Cookie:matze@traffictrack.de/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@apmebf[1].txt [ Cookie:matze@apmebf.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@specificclick[2].txt [ Cookie:matze@specificclick.net/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\83YRYZO9.txt [ Cookie:matze@deutschepostag.112.2o7.net/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@studivz.adfarm1.adition[1].txt [ Cookie:matze@studivz.adfarm1.adition.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@ad.dyntracker[1].txt [ Cookie:matze@ad.dyntracker.de/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\L0255M1G.txt [ Cookie:matze@mediaplex.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\FYG5J3LV.txt [ Cookie:matze@zanox.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\P4RHHOI1.txt [ Cookie:matze@pornturbo.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@im.banner.t-online[1].txt [ Cookie:matze@im.banner.t-online.de/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@zanox-affiliate[1].txt [ Cookie:matze@zanox-affiliate.de/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@www.googleadservices[3].txt [ Cookie:matze@www.googleadservices.com/pagead/conversion/1071740498/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@tracking.quisma[1].txt [ Cookie:matze@tracking.quisma.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\JX9SFSO5.txt [ Cookie:matze@webmasterplan.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@interclick[2].txt [ Cookie:matze@interclick.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ADUV75Q6.txt [ Cookie:matze@statcounter.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@invitemedia[2].txt [ Cookie:matze@invitemedia.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@hitbox[2].txt [ Cookie:matze@hitbox.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\KPYWOLUH.txt [ Cookie:matze@ero-advertising.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\YGLB0K04.txt [ Cookie:matze@socialsex.biz/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@counters.gigya[1].txt [ Cookie:matze@counters.gigya.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@imrworldwide[2].txt [ Cookie:matze@imrworldwide.com/cgi-bin ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@2o7[2].txt [ Cookie:matze@2o7.net/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\WHAETG6N.txt [ Cookie:matze@track.adform.net/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\GBYHN9YP.txt [ Cookie:matze@media.gan-online.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@bs.serving-sys[2].txt [ Cookie:matze@bs.serving-sys.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\9780EMJW.txt [ Cookie:matze@eas4.emediate.eu/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\2AT3RLDX.txt [ Cookie:matze@ad4.adfarm1.adition.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\TI1IGGLR.txt [ Cookie:matze@stat.dealtime.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\EZ0I7Z81.txt [ Cookie:matze@ad3.adfarm1.adition.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ARSDWU9U.txt [ Cookie:matze@c.atdmt.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\D4QFYZ5D.txt [ Cookie:matze@ad.adnet.de/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@ehg-techtarget.hitbox[2].txt [ Cookie:matze@ehg-techtarget.hitbox.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@content.yieldmanager[1].txt [ Cookie:matze@content.yieldmanager.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\DNG5AB6F.txt [ Cookie:matze@revsci.net/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@adx.chip[1].txt [ Cookie:matze@adx.chip.de/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@www.active-tracking[1].txt [ Cookie:matze@www.active-tracking.de/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\8GOU66IR.txt [ Cookie:matze@banners.victor.com/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@track.effiliation[3].txt [ Cookie:matze@track.effiliation.com/servlet/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@fastclick[1].txt [ Cookie:matze@fastclick.net/ ]
	C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\UGW1TJ2I.txt [ Cookie:matze@ad.zanox.com/ ]
	C:\USERS\MATZE\Cookies\4KAGU0J2.txt [ Cookie:matze@smartadserver.com/ ]
	C:\USERS\MATZE\Cookies\1X9SR39I.txt [ Cookie:matze@serving-sys.com/ ]
	C:\USERS\MATZE\Cookies\6NUQDXLB.txt [ Cookie:matze@ad2.adfarm1.adition.com/ ]
	C:\USERS\MATZE\Cookies\ZG8LINK4.txt [ Cookie:matze@doubleclick.net/ ]
	C:\USERS\MATZE\Cookies\1VWC7FG3.txt [ Cookie:matze@atdmt.combing.com/ ]
	C:\USERS\MATZE\Cookies\SBQLQ0CU.txt [ Cookie:matze@adtech.de/ ]
	C:\USERS\MATZE\Cookies\6PFG4BUF.txt [ Cookie:matze@atdmt.com/ ]
	C:\USERS\MATZE\Cookies\matze@traffictrack[2].txt [ Cookie:matze@traffictrack.de/ ]
	C:\USERS\MATZE\Cookies\IRK8A321.txt [ Cookie:matze@questionmarket.com/ ]
	C:\USERS\MATZE\Cookies\TNBHKX18.txt [ Cookie:matze@apmebf.com/ ]
	C:\USERS\MATZE\Cookies\JIESW2H9.txt [ Cookie:matze@specificclick.net/ ]
	C:\USERS\MATZE\Cookies\KCXWSLUW.txt [ Cookie:matze@ad.dyntracker.de/ ]
	C:\USERS\MATZE\Cookies\INMLUD6D.txt [ Cookie:matze@mediaplex.com/ ]
	C:\USERS\MATZE\Cookies\COHAMK4O.txt [ Cookie:matze@socialsex.com/ ]
	C:\USERS\MATZE\Cookies\matze@microsoftwllivemkt.112.2o7[1].txt [ Cookie:matze@microsoftwllivemkt.112.2o7.net/ ]
	C:\USERS\MATZE\Cookies\H1M8CBS7.txt [ Cookie:matze@ad1.adfarm1.adition.com/ ]
	C:\USERS\MATZE\Cookies\matze@xm.xtendmedia[1].txt [ Cookie:matze@xm.xtendmedia.com/ ]
	C:\USERS\MATZE\Cookies\PVZISSM3.txt [ Cookie:matze@zanox-affiliate.de/ ]
	C:\USERS\MATZE\Cookies\8XT9M7JO.txt [ Cookie:matze@www.usenext.de/ ]
	C:\USERS\MATZE\Cookies\YTARF8J4.txt [ Cookie:matze@www.traffective-tracking.net/ ]
	C:\USERS\MATZE\Cookies\M4FCFJ0X.txt [ Cookie:matze@unister-adservices.com/ ]
	C:\USERS\MATZE\Cookies\matze@ad.adition[2].txt [ Cookie:matze@ad.adition.net/ ]
	C:\USERS\MATZE\Cookies\XQFAAAK7.txt [ Cookie:matze@eas.apm.emediate.eu/ ]
	C:\USERS\MATZE\Cookies\OV9Q1BN5.txt [ Cookie:matze@tracking.quisma.com/ ]
	C:\USERS\MATZE\Cookies\matze@atwola[1].txt [ Cookie:matze@atwola.com/ ]
	C:\USERS\MATZE\Cookies\KF074KA9.txt [ Cookie:matze@media6degrees.com/ ]
	C:\USERS\MATZE\Cookies\O8LZZBL2.txt [ Cookie:matze@lanes.solution.weborama.fr/ ]
	C:\USERS\MATZE\Cookies\GO8ZDIB7.txt [ Cookie:matze@webmasterplan.com/ ]
	C:\USERS\MATZE\Cookies\matze@guj.122.2o7[1].txt [ Cookie:matze@guj.122.2o7.net/ ]
	C:\USERS\MATZE\Cookies\WYD88QPY.txt [ Cookie:matze@invitemedia.com/ ]
	C:\USERS\MATZE\Cookies\9GBIZLUE.txt [ Cookie:matze@www.socialsex.com/ ]
	C:\USERS\MATZE\Cookies\HAAHHJV0.txt [ Cookie:matze@tracking.mindshare.de/ ]
	C:\USERS\MATZE\Cookies\matze@imrworldwide[2].txt [ Cookie:matze@imrworldwide.com/cgi-bin ]
	C:\USERS\MATZE\Cookies\1YKTW5ZJ.txt [ Cookie:matze@track.adform.net/ ]
	C:\USERS\MATZE\Cookies\0C26O03I.txt [ Cookie:matze@bs.serving-sys.com/ ]
	C:\USERS\MATZE\Cookies\XV3EXW7P.txt [ Cookie:matze@dyntracker.com/ ]
	C:\USERS\MATZE\Cookies\matze@zbox.zanox[2].txt [ Cookie:matze@zbox.zanox.com/ ]
	C:\USERS\MATZE\Cookies\M3JJ88Y5.txt [ Cookie:matze@ad4.adfarm1.adition.com/ ]
	C:\USERS\MATZE\Cookies\IXRSBQMH.txt [ Cookie:matze@server.adformdsp.net/ ]
	C:\USERS\MATZE\Cookies\SUMW36NK.txt [ Cookie:matze@ad3.adfarm1.adition.com/ ]
	C:\USERS\MATZE\Cookies\9JAZNJ04.txt [ Cookie:matze@c.atdmt.com/ ]
	C:\USERS\MATZE\Cookies\4TVT6X5N.txt [ Cookie:matze@ad.adnet.de/ ]
	C:\USERS\MATZE\Cookies\I60713ZV.txt [ Cookie:matze@revsci.net/ ]
	C:\USERS\MATZE\Cookies\8B7RQQDO.txt [ Cookie:matze@www.active-tracking.de/ ]
	C:\USERS\MATZE\Cookies\matze@track.effiliation[3].txt [ Cookie:matze@track.effiliation.com/servlet/ ]
	C:\USERS\MATZE\Cookies\7CNXJD22.txt [ Cookie:matze@fastclick.net/ ]
	C:\USERS\MATZE\Cookies\IJUYYR82.txt [ Cookie:matze@casalemedia.com/ ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\73SQLS84 ]
	C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@STATSE.WEBTRENDSLIVE[1].TXT [ /STATSE.WEBTRENDSLIVE ]
	C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@STATS.MANTICORETECHNOLOGY[2].TXT [ /STATS.MANTICORETECHNOLOGY ]
	C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@TRACK.EFFILIATION[1].TXT [ /TRACK.EFFILIATION ]
	C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@AD.ADSERVER01[1].TXT [ /AD.ADSERVER01 ]
	C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@BANNER.TESTBERICHTE[1].TXT [ /BANNER.TESTBERICHTE ]
	C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@WWW.ZANOX-AFFILIATE[2].TXT [ /WWW.ZANOX-AFFILIATE ]
	C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@XITI[1].TXT [ /XITI ]
	.imrworldwide.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.imrworldwide.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.xiti.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.apmebf.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.eyewonder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.apmebf.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.a.revenuemax.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revenuemax.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.doubleclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.amazon-adsystem.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.amazon-adsystem.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.apmebf.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.daimlerag.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.loyaltypartner.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adserver.fck.onvert.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.specificclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tvtv.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.doubleclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	in.getclicky.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.olympiaverlag.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.doubleclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tracking.sim-technik.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.histats.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.histats.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	server.adformdsp.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.divx.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.komtrack.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.komtrack.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.microsoftwllivemkt.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.gesext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.sex.gesext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.sex.gesext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.gesext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.gesext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adv.arubamediamarketing.it [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.shinystat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.vodafoneit.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.vodafoneit.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.vodafoneit.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.vodafoneit.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.weboramaitdata.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.weboramaitdata.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.weboramaitdata.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.weboramaitdata.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.lucidmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.nikonjp.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.e-2dj6wfliwlazgeo.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	banner.testberichte.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.guj.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.h.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.h.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.h.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.h.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.e-2dj6wnkowkdpcfo.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	wt.socialsex.biz [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.bike-discount.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.bike-discount.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.bike-discount.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.bike-discount.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.autoscout24.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.socialsex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tracking.mobile.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tracking.tchibo.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.bs.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adserv.kwick.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adserv.kwick.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.zieltrack.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	zbox.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.overture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tracking.dc-storm.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	naturaltracking.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	naturaltracking.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	naturaltracking.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.parship.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.zanox-affiliate.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.yieldmanager.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.skydeutschland.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.rambler.ru [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.yadro.ru [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.adserver01.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tns-counter.ru [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.mmotraffic.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.mmotraffic.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.dyntracker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	7.rotator.wigetmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	7.rotator.wigetmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	rts.pgmediaserve.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	rts.pgmediaserve.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	rts.pgmediaserve.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.lucidmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adserver.anschlusstor.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.beiersdorf.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ad2.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ad2.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	accounts.youtube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	uk.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.socialsex.biz [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.socialsex.biz [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adscendmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.trafficjmp.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.trafficjmp.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adscendmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.flagcounter.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tracking.oe24.at [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	server.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.dealtime.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	stat.dealtime.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.lusthaus2.bannerdealer.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.lusthaus2.bannerdealer.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.socialsex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.socialsex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.burstnet.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.bs.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.collective-media.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.collective-media.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.questionmarket.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.questionmarket.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adx.chip.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adx.chip.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.at.atwola.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tribalfusion.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.c.gigcount.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	server.adformdsp.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adformdsp.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.stats.paypal.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	statse.webtrendslive.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adserver.gb4.motorpresse.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.urbia.wwe-media.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adserver.fck.onvert.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.mediamarkt.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracking.mindshare.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.unitymedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.unitymedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.usenext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.traffictrack.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.traffictrack.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adviva.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	fl01.ct2.comclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	fl01.ct2.comclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.dyntracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.trackalyzer.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tracker.vinsight.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adx.chip.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	t2.trackalyzer.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad1.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.dyntracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adserver.fck.onvert.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.zanox-affiliate.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.zanox-affiliate.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.dyntracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tomtailor.dyntracker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.doubleclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.clickfuse.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad4.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.clickfuse.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.clickfuse.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad2.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.quartermedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.quartermedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.apmebf.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	partners.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.fastclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ad3.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	ww251.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]

Trojan.Agent/Gen-Multi
	C:\PROGRAM FILES (X86)\SOLID EDGE V20\CUSTOM\AUTOCONSTRAIN\AUTOCNST.DLL
         
Gruß Matze

Alt 08.08.2012, 20:33   #28
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Sieht ok aus, da wurden nur Cookies gefunden. Und ein Fehlalarm war dabei
Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie )


Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat.

Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/
Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird.

Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da.

Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 09.08.2012, 09:11   #29
matzew1989
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Okay, danke schonmal für die Hilfe!

Ich denke ich werde diesen Cookie Culler installieren das sollte das Problem ja eingrenzen wenn ich nur bestimmte Cookies erlaube und der rest bei jedem Schließen gelöscht wird oder?

Eine Frage hätte ich noch, und zwar hab ich ja letztens bei dem Test mit Malewarebytes aus versehen eine Datei von DigitalPersona dem Fingerprinter gelöscht
Code:
ATTFilter
18:13:54.0640 5472	C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe - will be deleted on reboot
         
Da dieser nun nicht mehr funktioniert wollte ich ihn deinstallieren und neu aufspielen. Doch beim deinstallationsvorgang kommt folgende Fehlermeldung:

Code:
ATTFilter
Es liegt ein dieses Windows Installer-Paket betreffendes Problem vor. Ein für den Abschluss der Installation erforderliches Programm konnte nicht ausgeführt werden. Wenden Sie sich an das Supportpersonal oder den Hersteller des Pakets. Aktion:UnregDpHostW.38A1246F_A554_4A85_8F52_C3EE726E2B84.
Pfad:C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe.
Befehl:/UnregServer
         
Weißt du evtl. wie ich das Programm deinstsallieren bzw. wieder funktionsfähig machen kann?

Grüße Matze

Wollte den Cookie Culler gerade installieren der funktioniert jedoch nicht unter FF Version 14.0.1.

Alt 10.08.2012, 09:45   #30
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Bericht von Malwarebytes Anti-Malware. - Standard

Bericht von Malwarebytes Anti-Malware.



Einfach mal nach Cookie Culler googeln und schon hättest du die aktuelle Version gefunden! => http://filepony.de/download-cookie_culler/

DigitalPersona kann ich dir nicht weiterhelfen, evtl. kannst du es noch mit dem RevoUninstaller deinstallieren. Wenn nicht hab ich aus der Ferne keine Idee.


Ansonsten wären wir durch!

Die Programme, die hier zum Einsatz kamen, können alle wieder runter. Mit Hilfe von OTL kannst du auch viele Tools entfernen:

Starte bitte OTL und klicke auf Bereinigung.
Dies wird die meisten Tools entfernen, die wir zur Bereinigung benötigt haben. Sollte etwas bestehen bleiben, bitte mit Rechtsklick --> Löschen entfernen.


Malwarebytes zu behalten ist zu empfehlen. Kannst ja 1x im Monat damit einen Vollscan machen, aber immer vorher ans Update denken.


Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden.
Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern.


Microsoftupdate

Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren.

Windows Vista/7: Anleitung Windows-Update


PDF-Reader aktualisieren
Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast)

Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader.

Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers:
Prüfen => http://www.adobe.com/software/flash/about/
Downloadlinks => http://www.adobe.com/products/flashp...ribution3.html

Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind.


Java-Update
Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.
__________________
Logfiles bitte immer in CODE-Tags posten

Antwort

Themen zu Bericht von Malwarebytes Anti-Malware.
administrator, anti-malware, autostart, beachten, bericht, bösartige, dateien, downloads, durchgeführt, erfolgreich, explorer, frage, gelöscht, gen, infizierte, infizierte dateien, loader, malwarebytes, minute, quarantäne, registrierung, schonmal, service, speicher, test, version




Ähnliche Themen: Bericht von Malwarebytes Anti-Malware.


  1. Frage zu Malwarebytes Anti-Malware
    Antiviren-, Firewall- und andere Schutzprogramme - 22.07.2015 (43)
  2. Verständnis Frage; Malwarebytes Anti-Malware vs. Malwarebytes Anti-Rootkit
    Antiviren-, Firewall- und andere Schutzprogramme - 21.12.2014 (3)
  3. Malwarebytes Anti-Malware
    Diskussionsforum - 21.05.2014 (7)
  4. Win7, firefox startet nicht, Malware laut Malwarebytes Anti-Malware, Security.Hijack
    Log-Analyse und Auswertung - 30.03.2014 (9)
  5. Trojaner und Malware auf meinem Laptop! Malwarebytes Anti-Malware hat 733 aufgespuert
    Plagegeister aller Art und deren Bekämpfung - 12.12.2013 (19)
  6. Malwarebytes Anti-Malware mal wieder ....1
    Plagegeister aller Art und deren Bekämpfung - 10.10.2013 (2)
  7. Malwarebytes Anti-Malware findet Malware.NSPack
    Plagegeister aller Art und deren Bekämpfung - 29.05.2013 (13)
  8. Malware Yontoo // Malwarebytes-Anti-Malware-Programm keine identifizierte Datei gefunden
    Plagegeister aller Art und deren Bekämpfung - 23.03.2013 (14)
  9. Malwarebytes Anti Malware LOG! (19.3.2012)
    Log-Analyse und Auswertung - 20.03.2012 (1)
  10. Malwarebytes Anti-Malware Ergebniss
    Log-Analyse und Auswertung - 21.08.2011 (1)
  11. Malwarebytes Anti Malware LOG!
    Log-Analyse und Auswertung - 22.03.2011 (3)
  12. Anti-malware Bericht ok, Spyware Doctor meldet noch Infektion
    Log-Analyse und Auswertung - 08.12.2010 (18)
  13. Malwarebytes' Anti-Malware Report
    Antiviren-, Firewall- und andere Schutzprogramme - 22.04.2010 (1)
  14. Malwarebytes Scan-Bericht nach Problem mit Malware Defense
    Log-Analyse und Auswertung - 20.01.2010 (1)
  15. Malwarebytes Anti-Malware
    Antiviren-, Firewall- und andere Schutzprogramme - 11.10.2009 (10)
  16. Anleitung: Malwarebytes Anti-Malware (MBAM)
    Anleitungen, FAQs & Links - 29.03.2008 (0)

Zum Thema Bericht von Malwarebytes Anti-Malware. - Wiederhol den OTL-Fix bitte - Bericht von Malwarebytes Anti-Malware....
Archiv
Du betrachtest: Bericht von Malwarebytes Anti-Malware. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.