| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Bericht von Malwarebytes Anti-Malware.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
05.08.2012, 13:50
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Bericht von Malwarebytes Anti-Malware. Wiederhol den OTL-Fix bitte
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
05.08.2012, 15:30
| #17 |
 | Bericht von Malwarebytes Anti-Malware. So, nach dem 3. Anlauf hat es dann geklappt..
__________________ Code:
ATTFilter All processes killed
========== OTL ==========
Folder C:\Users\matze\AppData\Roaming\mozilla\Firefox\Profiles\x9uh4a59.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ not found.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin not found.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges not found.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ not found.
File F:\LaunchU3.exe -a not found.
========== FILES ==========
File\Folder C:\Users\matze\AppData\LocalLow\Sun\Java\Deployment\cache not found.
File\Folder C:\Users\matze\AppData\Roaming\OpenCandy not found.
File\Folder C:\Users\matze\Downloads\installer_nero_wma_plug-in_2_0_9_37_Deutsch.exe not found.
File\Folder C:\Users\matze\Downloads\MsgPlusLive-490.exe not found.
File\Folder C:\Users\matze\Downloads\Setup1.9.3_FreeConverter(2).exe not found.
File\Folder C:\Users\matze\Downloads\Setup1.9.3_FreeConverter.exe not found.
File\Folder F:\Setup-MsgPlus-510.exe not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: matze
->Temp folder emptied: 739777 bytes
->Temporary Internet Files folder emptied: 1786071 bytes
->FireFox cache emptied: 174488640 bytes
->Flash cache emptied: 2798 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 564032 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 32768 bytes
RecycleBin emptied: 464454838 bytes
Total Files Cleaned = 612,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: matze
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.43.0 log created on 08052012_161959
Files\Folders moved on Reboot...
C:\Users\matze\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Windows\temp\etilqs_15jTWFxzJlRuSN6 not found!
Registry entries deleted on Reboot...
|
|
05.08.2012, 16:39
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bericht von Malwarebytes Anti-Malware. Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html
__________________Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ |
|
05.08.2012, 17:38
| #19 |
| | Bericht von Malwarebytes Anti-Malware.Code:
ATTFilter 18:11:21.0029 9920 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
18:11:22.0259 9920 ============================================================
18:11:22.0259 9920 Current date / time: 2012/08/05 18:11:22.0259
18:11:22.0259 9920 SystemInfo:
18:11:22.0259 9920
18:11:22.0259 9920 OS Version: 6.1.7601 ServicePack: 1.0
18:11:22.0259 9920 Product type: Workstation
18:11:22.0259 9920 ComputerName: MATZE-PC
18:11:22.0259 9920 UserName: matze
18:11:22.0259 9920 Windows directory: C:\Windows
18:11:22.0259 9920 System windows directory: C:\Windows
18:11:22.0259 9920 Running under WOW64
18:11:22.0259 9920 Processor architecture: Intel x64
18:11:22.0259 9920 Number of processors: 2
18:11:22.0259 9920 Page size: 0x1000
18:11:22.0259 9920 Boot type: Normal boot
18:11:22.0259 9920 ============================================================
18:11:24.0429 9920 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:11:26.0459 9920 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:11:26.0709 9920 ============================================================
18:11:26.0709 9920 \Device\Harddisk0\DR0:
18:11:26.0729 9920 MBR partitions:
18:11:26.0729 9920 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x23D6FFC1
18:11:26.0729 9920 \Device\Harddisk1\DR1:
18:11:26.0769 9920 MBR partitions:
18:11:26.0769 9920 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
18:11:26.0769 9920 ============================================================
18:11:26.0809 9920 C: <-> \Device\Harddisk0\DR0\Partition0
18:11:26.0829 9920 D: <-> \Device\Harddisk1\DR1\Partition0
18:11:26.0829 9920 ============================================================
18:11:26.0829 9920 Initialize success
18:11:26.0829 9920 ============================================================
18:11:57.0709 8940 ============================================================
18:11:57.0709 8940 Scan started
18:11:57.0709 8940 Mode: Manual; SigCheck; TDLFS;
18:11:57.0709 8940 ============================================================
18:11:59.0369 8940 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\DRIVERS\1394ohci.sys
18:11:59.0539 8940 1394ohci - ok
18:11:59.0579 8940 Accelerometer (1cffe9c06e66a57dae1452e449a58240) C:\Windows\system32\DRIVERS\Accelerometer.sys
18:11:59.0599 8940 Accelerometer - ok
18:11:59.0649 8940 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:11:59.0669 8940 ACPI - ok
18:11:59.0699 8940 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:11:59.0799 8940 AcpiPmi - ok
18:11:59.0959 8940 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:11:59.0979 8940 AdobeARMservice - ok
18:12:00.0229 8940 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:12:00.0249 8940 AdobeFlashPlayerUpdateSvc - ok
18:12:00.0359 8940 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:12:00.0389 8940 adp94xx - ok
18:12:00.0459 8940 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:12:00.0479 8940 adpahci - ok
18:12:00.0529 8940 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:12:00.0549 8940 adpu320 - ok
18:12:00.0579 8940 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:12:00.0639 8940 AeLookupSvc - ok
18:12:00.0799 8940 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
18:12:00.0899 8940 AESTFilters - ok
18:12:00.0979 8940 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:12:01.0149 8940 AFD - ok
18:12:01.0199 8940 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:12:01.0219 8940 agp440 - ok
18:12:01.0259 8940 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:12:01.0359 8940 ALG - ok
18:12:01.0399 8940 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:12:01.0419 8940 aliide - ok
18:12:01.0419 8940 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:12:01.0429 8940 amdide - ok
18:12:01.0479 8940 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:12:01.0569 8940 AmdK8 - ok
18:12:01.0569 8940 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:12:01.0619 8940 AmdPPM - ok
18:12:01.0659 8940 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:12:01.0669 8940 amdsata - ok
18:12:01.0719 8940 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:12:01.0739 8940 amdsbs - ok
18:12:01.0749 8940 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:12:01.0759 8940 amdxata - ok
18:12:01.0819 8940 androidusb (4de0d5d747a73797c95a97dcce5018b5) C:\Windows\system32\Drivers\ssadadb.sys
18:12:01.0859 8940 androidusb - ok
18:12:02.0299 8940 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:12:02.0379 8940 AppID - ok
18:12:02.0419 8940 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:12:02.0479 8940 AppIDSvc - ok
18:12:02.0519 8940 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:12:02.0579 8940 Appinfo - ok
18:12:02.0789 8940 Apple Mobile Device (20f6f19fe9e753f2780dc2fa083ad597) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:12:02.0809 8940 Apple Mobile Device - ok
18:12:02.0859 8940 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:12:02.0879 8940 arc - ok
18:12:02.0889 8940 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:12:02.0909 8940 arcsas - ok
18:12:02.0969 8940 aswFsBlk (df59b8e8df0bd2e0e303778a3806a17d) C:\Windows\system32\drivers\aswFsBlk.sys
18:12:02.0979 8940 aswFsBlk - ok
18:12:03.0029 8940 aswMonFlt (f8e6ab4f876feff69250f2e0c29ef004) C:\Windows\system32\drivers\aswMonFlt.sys
18:12:03.0039 8940 aswMonFlt - ok
18:12:03.0119 8940 aswRdr (aa92bc4bcba40ca3aa3ffd1be24f0c09) C:\Windows\System32\Drivers\aswrdr2.sys
18:12:03.0149 8940 aswRdr - ok
18:12:03.0279 8940 aswSnx (f06e230e1e8ca9437a6474b7b551cd37) C:\Windows\system32\drivers\aswSnx.sys
18:12:03.0319 8940 aswSnx - ok
18:12:03.0409 8940 aswSP (3610ca74a69e380424f0452dec5c1317) C:\Windows\system32\drivers\aswSP.sys
18:12:03.0459 8940 aswSP - ok
18:12:03.0489 8940 aswTdi (87de3e31cb0091d22351349869324065) C:\Windows\system32\drivers\aswTdi.sys
18:12:03.0509 8940 aswTdi - ok
18:12:03.0559 8940 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:12:03.0629 8940 AsyncMac - ok
18:12:03.0669 8940 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:12:03.0679 8940 atapi - ok
18:12:03.0759 8940 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:12:03.0829 8940 AudioEndpointBuilder - ok
18:12:03.0839 8940 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:12:03.0879 8940 AudioSrv - ok
18:12:03.0989 8940 avast! Antivirus (2f7c0f3e39c45e0127fb78b2f18a41f3) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
18:12:04.0009 8940 avast! Antivirus - ok
18:12:04.0069 8940 AVerAF15 (8b00f71167b0b2662e5fb3f5d5cb99ac) C:\Windows\system32\Drivers\AVerAF15.sys
18:12:04.0109 8940 AVerAF15 - ok
18:12:04.0149 8940 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:12:04.0269 8940 AxInstSV - ok
18:12:04.0339 8940 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:12:04.0389 8940 b06bdrv - ok
18:12:04.0439 8940 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:12:04.0479 8940 b57nd60a - ok
18:12:04.0549 8940 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:12:04.0599 8940 BDESVC - ok
18:12:04.0639 8940 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:12:04.0709 8940 Beep - ok
18:12:04.0779 8940 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:12:04.0829 8940 BFE - ok
18:12:04.0909 8940 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:12:04.0999 8940 BITS - ok
18:12:05.0059 8940 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:12:05.0089 8940 blbdrive - ok
18:12:05.0259 8940 Bonjour Service (f2060a34c8a75bc24a9222eb4f8c07bd) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
18:12:05.0279 8940 Bonjour Service - ok
18:12:05.0339 8940 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:12:05.0409 8940 bowser - ok
18:12:05.0449 8940 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:12:05.0559 8940 BrFiltLo - ok
18:12:05.0579 8940 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:12:05.0599 8940 BrFiltUp - ok
18:12:05.0649 8940 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:12:05.0709 8940 Browser - ok
18:12:05.0749 8940 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:12:05.0829 8940 Brserid - ok
18:12:05.0849 8940 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:12:05.0899 8940 BrSerWdm - ok
18:12:05.0909 8940 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:12:05.0949 8940 BrUsbMdm - ok
18:12:05.0959 8940 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:12:05.0989 8940 BrUsbSer - ok
18:12:06.0319 8940 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
18:12:06.0379 8940 BthEnum - ok
18:12:06.0419 8940 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:12:06.0459 8940 BTHMODEM - ok
18:12:06.0509 8940 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
18:12:06.0539 8940 BthPan - ok
18:12:06.0599 8940 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
18:12:06.0659 8940 BTHPORT - ok
18:12:06.0709 8940 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:12:06.0759 8940 bthserv - ok
18:12:06.0789 8940 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
18:12:06.0819 8940 BTHUSB - ok
18:12:06.0869 8940 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:12:06.0919 8940 cdfs - ok
18:12:06.0969 8940 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
18:12:07.0009 8940 cdrom - ok
18:12:07.0059 8940 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:12:07.0119 8940 CertPropSvc - ok
18:12:07.0179 8940 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:12:07.0209 8940 circlass - ok
18:12:07.0259 8940 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:12:07.0279 8940 CLFS - ok
18:12:07.0609 8940 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:12:07.0639 8940 clr_optimization_v2.0.50727_32 - ok
18:12:07.0709 8940 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:12:07.0729 8940 clr_optimization_v2.0.50727_64 - ok
18:12:07.0829 8940 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:12:07.0869 8940 clr_optimization_v4.0.30319_32 - ok
18:12:07.0899 8940 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:12:07.0919 8940 clr_optimization_v4.0.30319_64 - ok
18:12:07.0959 8940 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:12:07.0989 8940 CmBatt - ok
18:12:08.0009 8940 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:12:08.0029 8940 cmdide - ok
18:12:08.0089 8940 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
18:12:08.0119 8940 CNG - ok
18:12:08.0289 8940 Com4QLBEx (c7a0e61d5714ac20de52d4f66ec773b8) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:12:08.0319 8940 Com4QLBEx - ok
18:12:08.0359 8940 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:12:08.0369 8940 Compbatt - ok
18:12:08.0419 8940 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:12:08.0479 8940 CompositeBus - ok
18:12:08.0489 8940 COMSysApp - ok
18:12:08.0559 8940 cpuz135 (c08063f052308b6f5882482615387f30) C:\Windows\system32\drivers\cpuz135_x64.sys
18:12:08.0569 8940 cpuz135 - ok
18:12:08.0599 8940 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:12:08.0619 8940 crcdisk - ok
18:12:08.0669 8940 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
18:12:08.0729 8940 CryptSvc - ok
18:12:08.0789 8940 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:12:08.0849 8940 DcomLaunch - ok
18:12:08.0899 8940 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:12:08.0959 8940 defragsvc - ok
18:12:08.0999 8940 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:12:09.0059 8940 DfsC - ok
18:12:09.0099 8940 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:12:09.0169 8940 Dhcp - ok
18:12:09.0189 8940 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:12:09.0239 8940 discache - ok
18:12:09.0269 8940 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:12:09.0279 8940 Disk - ok
18:12:09.0319 8940 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:12:09.0389 8940 Dnscache - ok
18:12:09.0439 8940 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:12:09.0499 8940 dot3svc - ok
18:12:09.0649 8940 DpHost (5bc1d876dfd53c31c5fc65d2e9614015) C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
18:12:09.0689 8940 DpHost ( UnsignedFile.Multi.Generic ) - warning
18:12:09.0689 8940 DpHost - detected UnsignedFile.Multi.Generic (1)
18:12:09.0729 8940 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:12:09.0789 8940 DPS - ok
18:12:09.0839 8940 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:12:09.0869 8940 drmkaud - ok
18:12:09.0959 8940 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:12:09.0989 8940 DXGKrnl - ok
18:12:10.0029 8940 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:12:10.0089 8940 EapHost - ok
18:12:10.0259 8940 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:12:10.0349 8940 ebdrv - ok
18:12:10.0479 8940 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:12:10.0569 8940 EFS - ok
18:12:10.0679 8940 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:12:10.0759 8940 ehRecvr - ok
18:12:10.0789 8940 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:12:10.0859 8940 ehSched - ok
18:12:10.0959 8940 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:12:10.0989 8940 elxstor - ok
18:12:11.0039 8940 enecir (de9402e080e9e3c94a9fd3fcf65de369) C:\Windows\system32\DRIVERS\enecir.sys
18:12:11.0099 8940 enecir - ok
18:12:11.0139 8940 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:12:11.0179 8940 ErrDev - ok
18:12:11.0239 8940 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:12:11.0299 8940 EventSystem - ok
18:12:11.0359 8940 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:12:11.0439 8940 exfat - ok
18:12:11.0599 8940 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:12:11.0669 8940 fastfat - ok
18:12:11.0739 8940 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:12:11.0829 8940 Fax - ok
18:12:11.0859 8940 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:12:11.0919 8940 fdc - ok
18:12:11.0949 8940 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:12:12.0019 8940 fdPHost - ok
18:12:12.0039 8940 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:12:12.0089 8940 FDResPub - ok
18:12:12.0109 8940 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:12:12.0129 8940 FileInfo - ok
18:12:12.0139 8940 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:12:12.0199 8940 Filetrace - ok
18:12:12.0229 8940 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:12:12.0249 8940 flpydisk - ok
18:12:12.0309 8940 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:12:12.0329 8940 FltMgr - ok
18:12:12.0399 8940 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:12:12.0459 8940 FontCache - ok
18:12:12.0589 8940 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:12:12.0629 8940 FontCache3.0.0.0 - ok
18:12:12.0689 8940 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:12:12.0699 8940 FsDepends - ok
18:12:12.0739 8940 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:12:12.0749 8940 Fs_Rec - ok
18:12:12.0789 8940 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:12:12.0809 8940 fvevol - ok
18:12:12.0849 8940 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:12:12.0859 8940 gagp30kx - ok
18:12:12.0889 8940 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:12:12.0899 8940 GEARAspiWDM - ok
18:12:12.0959 8940 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:12:13.0029 8940 gpsvc - ok
18:12:13.0179 8940 gupdate (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:12:13.0209 8940 gupdate - ok
18:12:13.0229 8940 gupdatem (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:12:13.0239 8940 gupdatem - ok
18:12:13.0279 8940 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:12:13.0349 8940 hcw85cir - ok
18:12:13.0419 8940 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:12:13.0479 8940 HdAudAddService - ok
18:12:13.0509 8940 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:12:13.0549 8940 HDAudBus - ok
18:12:13.0579 8940 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:12:13.0609 8940 HidBatt - ok
18:12:13.0649 8940 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:12:13.0679 8940 HidBth - ok
18:12:13.0719 8940 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:12:13.0759 8940 HidIr - ok
18:12:13.0789 8940 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:12:13.0839 8940 hidserv - ok
18:12:13.0889 8940 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:12:13.0909 8940 HidUsb - ok
18:12:13.0949 8940 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:12:13.0999 8940 hkmsvc - ok
18:12:14.0059 8940 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:12:14.0099 8940 HomeGroupListener - ok
18:12:14.0149 8940 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:12:14.0199 8940 HomeGroupProvider - ok
18:12:14.0359 8940 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
18:12:14.0379 8940 HP Support Assistant Service - ok
18:12:14.0459 8940 HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:12:14.0479 8940 HPDrvMntSvc.exe - ok
18:12:14.0499 8940 hpdskflt (05712fddbd45a5864eb326faabc6a4e3) C:\Windows\system32\DRIVERS\hpdskflt.sys
18:12:14.0509 8940 hpdskflt - ok
18:12:14.0569 8940 HpqKbFiltr (9af482d058be59cc28bce52e7c4b747c) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
18:12:14.0619 8940 HpqKbFiltr - ok
18:12:14.0709 8940 hpqwmiex (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
18:12:14.0739 8940 hpqwmiex - ok
18:12:14.0769 8940 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:12:14.0789 8940 HpSAMD - ok
18:12:14.0819 8940 hpsrv (aa036cc5f5221d9b915f4d4dce74ba9a) C:\Windows\system32\Hpservice.exe
18:12:14.0829 8940 hpsrv - ok
18:12:14.0909 8940 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:12:14.0969 8940 HTTP - ok
18:12:14.0999 8940 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:12:15.0019 8940 hwpolicy - ok
18:12:15.0059 8940 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:12:15.0079 8940 i8042prt - ok
18:12:15.0139 8940 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:12:15.0159 8940 iaStorV - ok
18:12:15.0339 8940 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:12:15.0369 8940 IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:12:15.0369 8940 IDriverT - detected UnsignedFile.Multi.Generic (1)
18:12:15.0519 8940 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:12:15.0549 8940 idsvc - ok
18:12:15.0629 8940 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:12:15.0649 8940 iirsp - ok
18:12:15.0709 8940 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:12:15.0789 8940 IKEEXT - ok
18:12:15.0829 8940 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:12:15.0839 8940 intelide - ok
18:12:15.0889 8940 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:12:15.0929 8940 intelppm - ok
18:12:15.0959 8940 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:12:16.0029 8940 IPBusEnum - ok
18:12:16.0059 8940 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:12:16.0119 8940 IpFilterDriver - ok
18:12:16.0169 8940 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:12:16.0219 8940 iphlpsvc - ok
18:12:16.0249 8940 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:12:16.0279 8940 IPMIDRV - ok
18:12:16.0319 8940 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:12:16.0369 8940 IPNAT - ok
18:12:16.0479 8940 iPod Service (a9e53e1a9c4274eebc00d36ae5ed40de) C:\Program Files\iPod\bin\iPodService.exe
18:12:16.0499 8940 iPod Service - ok
18:12:16.0549 8940 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:12:16.0659 8940 IRENUM - ok
18:12:16.0699 8940 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:12:16.0719 8940 isapnp - ok
18:12:16.0789 8940 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:12:16.0809 8940 iScsiPrt - ok
18:12:16.0859 8940 JMCR (54df9eafb54a98e1a2ac3db69c16cf05) C:\Windows\system32\DRIVERS\jmcr.sys
18:12:16.0899 8940 JMCR - ok
18:12:16.0929 8940 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:12:16.0949 8940 kbdclass - ok
18:12:16.0979 8940 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:12:17.0009 8940 kbdhid - ok
18:12:17.0049 8940 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:12:17.0069 8940 KeyIso - ok
18:12:17.0109 8940 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
18:12:17.0139 8940 KSecDD - ok
18:12:17.0179 8940 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
18:12:17.0199 8940 KSecPkg - ok
18:12:17.0259 8940 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:12:17.0309 8940 ksthunk - ok
18:12:17.0359 8940 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:12:17.0409 8940 KtmRm - ok
18:12:17.0459 8940 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
18:12:17.0509 8940 LanmanServer - ok
18:12:17.0539 8940 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:12:17.0599 8940 LanmanWorkstation - ok
18:12:17.0649 8940 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:12:17.0699 8940 lltdio - ok
18:12:17.0749 8940 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:12:17.0809 8940 lltdsvc - ok
18:12:17.0829 8940 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:12:17.0869 8940 lmhosts - ok
18:12:17.0889 8940 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:12:17.0899 8940 LSI_FC - ok
18:12:17.0919 8940 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:12:17.0949 8940 LSI_SAS - ok
18:12:17.0989 8940 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:12:17.0999 8940 LSI_SAS2 - ok
18:12:18.0009 8940 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:12:18.0029 8940 LSI_SCSI - ok
18:12:18.0049 8940 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:12:18.0089 8940 luafv - ok
18:12:18.0129 8940 MBAMProtector (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
18:12:18.0139 8940 MBAMProtector - ok
18:12:18.0309 8940 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:12:18.0339 8940 MBAMService - ok
18:12:18.0369 8940 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:12:18.0409 8940 Mcx2Svc - ok
18:12:18.0439 8940 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:12:18.0459 8940 megasas - ok
18:12:18.0509 8940 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:12:18.0529 8940 MegaSR - ok
18:12:18.0569 8940 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:12:18.0659 8940 MMCSS - ok
18:12:18.0669 8940 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:12:18.0729 8940 Modem - ok
18:12:18.0759 8940 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:12:18.0789 8940 monitor - ok
18:12:18.0839 8940 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:12:18.0849 8940 mouclass - ok
18:12:18.0899 8940 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:12:18.0929 8940 mouhid - ok
18:12:18.0959 8940 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:12:18.0979 8940 mountmgr - ok
18:12:19.0119 8940 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:12:19.0149 8940 MozillaMaintenance - ok
18:12:19.0179 8940 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:12:19.0199 8940 mpio - ok
18:12:19.0229 8940 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:12:19.0269 8940 mpsdrv - ok
18:12:19.0339 8940 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:12:19.0399 8940 MpsSvc - ok
18:12:19.0439 8940 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:12:19.0469 8940 MRxDAV - ok
18:12:19.0509 8940 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:12:19.0569 8940 mrxsmb - ok
18:12:19.0609 8940 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:12:19.0649 8940 mrxsmb10 - ok
18:12:19.0669 8940 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:12:19.0689 8940 mrxsmb20 - ok
18:12:19.0729 8940 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:12:19.0739 8940 msahci - ok
18:12:19.0769 8940 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:12:19.0789 8940 msdsm - ok
18:12:19.0809 8940 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:12:19.0849 8940 MSDTC - ok
18:12:19.0889 8940 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:12:19.0929 8940 Msfs - ok
18:12:19.0959 8940 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:12:20.0019 8940 mshidkmdf - ok
18:12:20.0049 8940 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:12:20.0069 8940 msisadrv - ok
18:12:20.0099 8940 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:12:20.0159 8940 MSiSCSI - ok
18:12:20.0159 8940 msiserver - ok
18:12:20.0199 8940 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:12:20.0259 8940 MSKSSRV - ok
18:12:20.0279 8940 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:12:20.0329 8940 MSPCLOCK - ok
18:12:20.0349 8940 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:12:20.0399 8940 MSPQM - ok
18:12:20.0449 8940 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:12:20.0479 8940 MsRPC - ok
18:12:20.0529 8940 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:12:20.0539 8940 mssmbios - ok
18:12:20.0599 8940 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:12:20.0649 8940 MSTEE - ok
18:12:20.0679 8940 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:12:20.0699 8940 MTConfig - ok
18:12:20.0739 8940 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:12:20.0749 8940 Mup - ok
18:12:20.0809 8940 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:12:20.0919 8940 napagent - ok
18:12:20.0989 8940 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:12:21.0029 8940 NativeWifiP - ok
18:12:21.0199 8940 NBService (2637f26312ecceeb6f110e95f1ece243) C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
18:12:21.0239 8940 NBService ( UnsignedFile.Multi.Generic ) - warning
18:12:21.0239 8940 NBService - detected UnsignedFile.Multi.Generic (1)
18:12:21.0319 8940 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:12:21.0349 8940 NDIS - ok
18:12:21.0389 8940 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:12:21.0449 8940 NdisCap - ok
18:12:21.0489 8940 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:12:21.0539 8940 NdisTapi - ok
18:12:21.0589 8940 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:12:21.0639 8940 Ndisuio - ok
18:12:21.0679 8940 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:12:21.0729 8940 NdisWan - ok
18:12:21.0759 8940 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:12:21.0809 8940 NDProxy - ok
18:12:21.0859 8940 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:12:21.0909 8940 NetBIOS - ok
18:12:21.0939 8940 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:12:21.0969 8940 NetBT - ok
18:12:22.0009 8940 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:12:22.0019 8940 Netlogon - ok
18:12:22.0089 8940 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:12:22.0139 8940 Netman - ok
18:12:22.0179 8940 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:12:22.0249 8940 netprofm - ok
18:12:22.0349 8940 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:12:22.0389 8940 NetTcpPortSharing - ok
18:12:22.0749 8940 NETw5s64 (39ede676d17f37af4573c2b33ec28aca) C:\Windows\system32\DRIVERS\NETw5s64.sys
18:12:23.0019 8940 NETw5s64 - ok
18:12:23.0639 8940 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
18:12:23.0839 8940 netw5v64 - ok
18:12:23.0989 8940 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:12:23.0999 8940 nfrd960 - ok
18:12:24.0069 8940 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:12:24.0119 8940 NlaSvc - ok
18:12:24.0139 8940 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:12:24.0179 8940 Npfs - ok
18:12:24.0189 8940 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:12:24.0249 8940 nsi - ok
18:12:24.0269 8940 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:12:24.0329 8940 nsiproxy - ok
18:12:24.0419 8940 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:12:24.0469 8940 Ntfs - ok
18:12:24.0589 8940 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:12:24.0649 8940 Null - ok
18:12:25.0209 8940 nvlddmkm (bbe872a814b00798c2d568d46c42a71b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:12:25.0649 8940 nvlddmkm - ok
18:12:25.0879 8940 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:12:25.0899 8940 nvraid - ok
18:12:25.0919 8940 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:12:25.0939 8940 nvstor - ok
18:12:25.0999 8940 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:12:26.0009 8940 nv_agp - ok
18:12:26.0219 8940 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:12:26.0239 8940 odserv - ok
18:12:26.0269 8940 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:12:26.0299 8940 ohci1394 - ok
18:12:26.0399 8940 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:12:26.0409 8940 ose - ok
18:12:26.0459 8940 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:12:26.0509 8940 p2pimsvc - ok
18:12:26.0549 8940 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:12:26.0569 8940 p2psvc - ok
18:12:26.0599 8940 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:12:26.0619 8940 Parport - ok
18:12:26.0649 8940 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
18:12:26.0669 8940 partmgr - ok
18:12:26.0699 8940 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:12:26.0739 8940 PcaSvc - ok
18:12:26.0779 8940 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:12:26.0799 8940 pci - ok
18:12:26.0829 8940 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:12:26.0839 8940 pciide - ok
18:12:26.0879 8940 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:12:26.0899 8940 pcmcia - ok
18:12:26.0929 8940 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:12:26.0939 8940 pcw - ok
18:12:26.0989 8940 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:12:27.0059 8940 PEAUTH - ok
18:12:27.0139 8940 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:12:27.0169 8940 PerfHost - ok
18:12:27.0299 8940 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:12:27.0369 8940 pla - ok
18:12:27.0419 8940 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:12:27.0459 8940 PlugPlay - ok
18:12:27.0489 8940 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:12:27.0529 8940 PNRPAutoReg - ok
18:12:27.0559 8940 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:12:27.0579 8940 PNRPsvc - ok
18:12:27.0629 8940 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:12:27.0689 8940 PolicyAgent - ok
18:12:27.0729 8940 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:12:27.0789 8940 Power - ok
18:12:27.0859 8940 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:12:27.0939 8940 PptpMiniport - ok
18:12:27.0959 8940 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:12:27.0989 8940 Processor - ok
18:12:28.0029 8940 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
18:12:28.0069 8940 ProfSvc - ok
18:12:28.0119 8940 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:12:28.0129 8940 ProtectedStorage - ok
18:12:28.0179 8940 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:12:28.0219 8940 Psched - ok
18:12:28.0309 8940 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:12:28.0359 8940 ql2300 - ok
18:12:28.0499 8940 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:12:28.0519 8940 ql40xx - ok
18:12:28.0559 8940 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:12:28.0599 8940 QWAVE - ok
18:12:28.0609 8940 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:12:28.0629 8940 QWAVEdrv - ok
18:12:28.0649 8940 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:12:28.0709 8940 RasAcd - ok
18:12:28.0769 8940 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:12:28.0819 8940 RasAgileVpn - ok
18:12:28.0849 8940 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:12:28.0909 8940 RasAuto - ok
18:12:28.0939 8940 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:12:28.0999 8940 Rasl2tp - ok
18:12:29.0039 8940 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:12:29.0109 8940 RasMan - ok
18:12:29.0149 8940 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:12:29.0209 8940 RasPppoe - ok
18:12:29.0249 8940 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:12:29.0319 8940 RasSstp - ok
18:12:29.0349 8940 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:12:29.0409 8940 rdbss - ok
18:12:29.0439 8940 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:12:29.0469 8940 rdpbus - ok
18:12:29.0499 8940 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:12:29.0539 8940 RDPCDD - ok
18:12:29.0589 8940 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:12:29.0659 8940 RDPENCDD - ok
18:12:29.0679 8940 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:12:29.0729 8940 RDPREFMP - ok
18:12:29.0779 8940 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
18:12:29.0819 8940 RDPWD - ok
18:12:29.0869 8940 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:12:29.0889 8940 rdyboost - ok
18:12:29.0909 8940 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:12:29.0969 8940 RemoteAccess - ok
18:12:30.0209 8940 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:12:30.0279 8940 RemoteRegistry - ok
18:12:30.0319 8940 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
18:12:30.0359 8940 RFCOMM - ok
18:12:30.0399 8940 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:12:30.0459 8940 RpcEptMapper - ok
18:12:30.0489 8940 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:12:30.0529 8940 RpcLocator - ok
18:12:30.0589 8940 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:12:30.0639 8940 RpcSs - ok
18:12:30.0699 8940 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:12:30.0759 8940 rspndr - ok
18:12:30.0809 8940 RTL8167 (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys
18:12:30.0829 8940 RTL8167 - ok
18:12:30.0859 8940 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:12:30.0879 8940 SamSs - ok
18:12:31.0389 8940 SamsungAllShare (3abfdcb688385f9b3001e85345a94843) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
18:12:31.0639 8940 SamsungAllShare - ok
18:12:31.0779 8940 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:12:31.0799 8940 sbp2port - ok
18:12:31.0839 8940 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:12:31.0899 8940 SCardSvr - ok
18:12:31.0929 8940 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:12:31.0979 8940 scfilter - ok
18:12:32.0059 8940 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:12:32.0129 8940 Schedule - ok
18:12:32.0159 8940 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:12:32.0199 8940 SCPolicySvc - ok
18:12:32.0239 8940 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
18:12:32.0269 8940 sdbus - ok
18:12:32.0309 8940 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:12:32.0379 8940 SDRSVC - ok
18:12:32.0429 8940 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:12:32.0499 8940 secdrv - ok
18:12:32.0529 8940 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:12:32.0579 8940 seclogon - ok
18:12:32.0599 8940 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:12:32.0639 8940 SENS - ok
18:12:32.0649 8940 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:12:32.0679 8940 SensrSvc - ok
18:12:32.0689 8940 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:12:32.0709 8940 Serenum - ok
18:12:32.0769 8940 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:12:32.0799 8940 Serial - ok
18:12:32.0839 8940 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:12:32.0869 8940 sermouse - ok
18:12:32.0919 8940 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:12:32.0969 8940 SessionEnv - ok
18:12:32.0999 8940 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:12:33.0039 8940 sffdisk - ok
18:12:33.0059 8940 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:12:33.0089 8940 sffp_mmc - ok
18:12:33.0099 8940 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:12:33.0119 8940 sffp_sd - ok
18:12:33.0149 8940 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:12:33.0169 8940 sfloppy - ok
18:12:33.0239 8940 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:12:33.0299 8940 SharedAccess - ok
18:12:33.0359 8940 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:12:33.0439 8940 ShellHWDetection - ok
18:12:33.0589 8940 SimpleSlideShowServer (0dea44002ff7b353b78c272d6696f510) C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
18:12:33.0609 8940 SimpleSlideShowServer - ok
18:12:33.0669 8940 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:12:33.0679 8940 SiSRaid2 - ok
18:12:33.0699 8940 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:12:33.0719 8940 SiSRaid4 - ok
18:12:33.0759 8940 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:12:33.0819 8940 Smb - ok
18:12:33.0859 8940 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:12:33.0889 8940 SNMPTRAP - ok
18:12:33.0919 8940 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:12:33.0929 8940 spldr - ok
18:12:33.0979 8940 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:12:34.0029 8940 Spooler - ok
18:12:34.0209 8940 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:12:34.0289 8940 sppsvc - ok
18:12:34.0399 8940 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:12:34.0459 8940 sppuinotify - ok
18:12:34.0539 8940 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:12:34.0589 8940 srv - ok
18:12:34.0629 8940 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:12:34.0669 8940 srv2 - ok
18:12:34.0689 8940 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:12:34.0729 8940 srvnet - ok
18:12:34.0779 8940 ssadbus (8f8324ed1de63ffc7b1a02cd2d963c72) C:\Windows\system32\DRIVERS\ssadbus.sys
18:12:34.0819 8940 ssadbus - ok
18:12:34.0869 8940 ssadmdfl (58221efcb74167b73667f0024c661ce0) C:\Windows\system32\DRIVERS\ssadmdfl.sys
18:12:34.0889 8940 ssadmdfl - ok
18:12:34.0909 8940 ssadmdm (4da7c71bfac5ad71255b7e4cab980163) C:\Windows\system32\DRIVERS\ssadmdm.sys
18:12:34.0949 8940 ssadmdm - ok
18:12:34.0999 8940 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:12:35.0059 8940 SSDPSRV - ok
18:12:35.0079 8940 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:12:35.0119 8940 SstpSvc - ok
18:12:35.0259 8940 STacSV (810199dcc3bdc38304d7d649992ea7bc) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
18:12:35.0299 8940 STacSV - ok
18:12:35.0329 8940 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:12:35.0349 8940 stexstor - ok
18:12:35.0419 8940 STHDA (ed1722f43ce61409ef68340402d6267d) C:\Windows\system32\DRIVERS\stwrt64.sys
18:12:35.0439 8940 STHDA - ok
18:12:35.0499 8940 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
18:12:35.0539 8940 StillCam - ok
18:12:35.0599 8940 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:12:35.0649 8940 stisvc - ok
18:12:35.0679 8940 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:12:35.0689 8940 swenum - ok
18:12:35.0739 8940 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:12:35.0799 8940 swprv - ok
18:12:35.0909 8940 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:12:35.0969 8940 SysMain - ok
18:12:36.0099 8940 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:12:36.0129 8940 TabletInputService - ok
18:12:36.0169 8940 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:12:36.0229 8940 TapiSrv - ok
18:12:36.0269 8940 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:12:36.0329 8940 TBS - ok
18:12:36.0479 8940 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
18:12:36.0529 8940 Tcpip - ok
18:12:36.0759 8940 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
18:12:36.0809 8940 TCPIP6 - ok
18:12:36.0939 8940 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:12:36.0989 8940 tcpipreg - ok
18:12:37.0029 8940 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:12:37.0059 8940 TDPIPE - ok
18:12:37.0099 8940 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:12:37.0119 8940 TDTCP - ok
18:12:37.0169 8940 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:12:37.0209 8940 tdx - ok
18:12:37.0249 8940 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:12:37.0269 8940 TermDD - ok
18:12:37.0309 8940 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:12:37.0369 8940 TermService - ok
18:12:37.0399 8940 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:12:37.0429 8940 Themes - ok
18:12:37.0459 8940 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:12:37.0509 8940 THREADORDER - ok
18:12:37.0529 8940 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:12:37.0599 8940 TrkWks - ok
18:12:37.0669 8940 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:12:37.0709 8940 TrustedInstaller - ok
18:12:37.0749 8940 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:12:37.0789 8940 tssecsrv - ok
18:12:37.0839 8940 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:12:37.0899 8940 TsUsbFlt - ok
18:12:37.0949 8940 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:12:37.0989 8940 tunnel - ok
18:12:38.0029 8940 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:12:38.0039 8940 uagp35 - ok
18:12:38.0089 8940 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:12:38.0149 8940 udfs - ok
18:12:38.0179 8940 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:12:38.0189 8940 UI0Detect - ok
18:12:38.0239 8940 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:12:38.0259 8940 uliagpkx - ok
18:12:38.0309 8940 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
18:12:38.0339 8940 umbus - ok
18:12:38.0379 8940 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:12:38.0399 8940 UmPass - ok
18:12:38.0449 8940 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:12:38.0499 8940 upnphost - ok
18:12:38.0539 8940 USBAAPL64 (54d4b48d443e7228bf64cf7cdc3118ac) C:\Windows\system32\Drivers\usbaapl64.sys
18:12:38.0579 8940 USBAAPL64 - ok
18:12:38.0619 8940 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
18:12:38.0639 8940 usbaudio - ok
18:12:38.0689 8940 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:12:38.0749 8940 usbccgp - ok
18:12:38.0779 8940 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:12:38.0799 8940 usbcir - ok
18:12:38.0819 8940 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:12:38.0859 8940 usbehci - ok
18:12:38.0929 8940 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:12:38.0969 8940 usbhub - ok
18:12:38.0999 8940 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:12:39.0039 8940 usbohci - ok
18:12:39.0099 8940 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:12:39.0139 8940 usbprint - ok
18:12:39.0189 8940 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:12:39.0249 8940 USBSTOR - ok
18:12:39.0279 8940 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
18:12:39.0299 8940 usbuhci - ok
18:12:39.0349 8940 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
18:12:39.0379 8940 usbvideo - ok
18:12:39.0409 8940 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:12:39.0469 8940 UxSms - ok
18:12:39.0499 8940 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:12:39.0509 8940 VaultSvc - ok
18:12:39.0559 8940 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:12:39.0569 8940 vdrvroot - ok
18:12:39.0629 8940 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:12:39.0689 8940 vds - ok
18:12:39.0739 8940 vfs101a (24899eff90e725d9c3ac10be870b4d1d) C:\Windows\system32\drivers\vfs101a.sys
18:12:39.0749 8940 vfs101a - ok
18:12:39.0849 8940 vfsFPService (6c8e81e1a555dc163d89e26ceb30fad2) c:\Windows\system32\vfsFPService.exe
18:12:39.0889 8940 vfsFPService - ok
18:12:39.0939 8940 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:12:39.0959 8940 vga - ok
18:12:39.0979 8940 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:12:40.0039 8940 VgaSave - ok
18:12:40.0069 8940 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:12:40.0089 8940 vhdmp - ok
18:12:40.0119 8940 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:12:40.0129 8940 viaide - ok
18:12:40.0169 8940 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:12:40.0179 8940 volmgr - ok
18:12:40.0239 8940 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:12:40.0259 8940 volmgrx - ok
18:12:40.0289 8940 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:12:40.0309 8940 volsnap - ok
18:12:40.0369 8940 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:12:40.0389 8940 vsmraid - ok
18:12:40.0489 8940 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:12:40.0579 8940 VSS - ok
18:12:40.0709 8940 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:12:40.0739 8940 vwifibus - ok
18:12:40.0779 8940 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:12:40.0799 8940 vwififlt - ok
18:12:40.0839 8940 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:12:40.0859 8940 vwifimp - ok
18:12:40.0909 8940 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:12:40.0969 8940 W32Time - ok
18:12:40.0999 8940 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:12:41.0029 8940 WacomPen - ok
18:12:41.0079 8940 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:12:41.0129 8940 WANARP - ok
18:12:41.0129 8940 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:12:41.0169 8940 Wanarpv6 - ok
18:12:41.0259 8940 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:12:41.0319 8940 wbengine - ok
18:12:41.0449 8940 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:12:41.0489 8940 WbioSrvc - ok
18:12:41.0529 8940 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:12:41.0559 8940 wcncsvc - ok
18:12:41.0579 8940 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:12:41.0619 8940 WcsPlugInService - ok
18:12:41.0729 8940 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:12:41.0769 8940 Wd - ok
18:12:42.0009 8940 WDBackup (6a1aef46ac445ef4013e494bac9d66c2) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
18:12:42.0039 8940 WDBackup - ok
18:12:42.0109 8940 WDDriveService (46da6f2c6b084069ec9c4a1c79bfe8c7) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
18:12:42.0129 8940 WDDriveService - ok
18:12:42.0299 8940 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:12:42.0329 8940 Wdf01000 - ok
18:12:42.0359 8940 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:12:42.0469 8940 WdiServiceHost - ok
18:12:42.0479 8940 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:12:42.0499 8940 WdiSystemHost - ok
18:12:42.0689 8940 WDRulesService (b1c9682b3ac27567bdba4dedafb6fa79) C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe
18:12:42.0729 8940 WDRulesService - ok
18:12:42.0779 8940 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:12:42.0819 8940 WebClient - ok
18:12:42.0859 8940 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:12:42.0919 8940 Wecsvc - ok
18:12:42.0949 8940 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:12:42.0989 8940 wercplsupport - ok
18:12:43.0039 8940 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:12:43.0099 8940 WerSvc - ok
18:12:43.0169 8940 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:12:43.0209 8940 WfpLwf - ok
18:12:43.0229 8940 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:12:43.0249 8940 WIMMount - ok
18:12:43.0319 8940 WinDefend - ok
18:12:43.0339 8940 WinHttpAutoProxySvc - ok
18:12:43.0399 8940 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:12:43.0439 8940 Winmgmt - ok
18:12:43.0569 8940 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:12:43.0639 8940 WinRM - ok
18:12:43.0829 8940 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:12:43.0869 8940 WinUsb - ok
18:12:43.0939 8940 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:12:43.0989 8940 Wlansvc - ok
18:12:44.0199 8940 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:12:44.0249 8940 wlidsvc - ok
18:12:44.0399 8940 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:12:44.0439 8940 WmiAcpi - ok
18:12:44.0509 8940 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:12:44.0549 8940 wmiApSrv - ok
18:12:44.0639 8940 WMPNetworkSvc - ok
18:12:44.0679 8940 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:12:44.0719 8940 WPCSvc - ok
18:12:44.0769 8940 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:12:44.0799 8940 WPDBusEnum - ok
18:12:44.0829 8940 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:12:44.0879 8940 ws2ifsl - ok
18:12:44.0899 8940 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
18:12:44.0939 8940 wscsvc - ok
18:12:44.0939 8940 WSearch - ok
18:12:45.0059 8940 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
18:12:45.0129 8940 wuauserv - ok
18:12:45.0279 8940 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:12:45.0329 8940 WudfPf - ok
18:12:45.0359 8940 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:12:45.0419 8940 WUDFRd - ok
18:12:45.0439 8940 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:12:45.0479 8940 wudfsvc - ok
18:12:45.0519 8940 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:12:45.0549 8940 WwanSvc - ok
18:12:45.0589 8940 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:12:46.0669 8940 \Device\Harddisk0\DR0 - ok
18:12:47.0049 8940 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
18:12:47.0859 8940 \Device\Harddisk1\DR1 - ok
18:12:47.0919 8940 Boot (0x1200) (1f1cd00a237064e7bd50cc59f9666628) \Device\Harddisk0\DR0\Partition0
18:12:47.0919 8940 \Device\Harddisk0\DR0\Partition0 - ok
18:12:47.0969 8940 Boot (0x1200) (8be860a18ddbdef22bfa3003ff6522f1) \Device\Harddisk1\DR1\Partition0
18:12:47.0969 8940 \Device\Harddisk1\DR1\Partition0 - ok
18:12:47.0969 8940 ============================================================
18:12:47.0969 8940 Scan finished
18:12:47.0969 8940 ============================================================
18:12:47.0989 5472 Detected object count: 3
18:12:47.0989 5472 Actual detected object count: 3
18:13:54.0360 5472 C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe - copied to quarantine
18:13:54.0370 5472 HKLM\SYSTEM\ControlSet001\services\DpHost - will be deleted on reboot
18:13:54.0400 5472 HKLM\SYSTEM\ControlSet002\services\DpHost - will be deleted on reboot
18:13:54.0640 5472 C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe - will be deleted on reboot
18:13:54.0640 5472 DpHost ( UnsignedFile.Multi.Generic ) - User select action: Delete
18:13:54.0740 5472 C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe - copied to quarantine
18:13:54.0740 5472 HKLM\SYSTEM\ControlSet001\services\IDriverT - will be deleted on reboot
18:13:54.0760 5472 HKLM\SYSTEM\ControlSet002\services\IDriverT - will be deleted on reboot
18:13:54.0760 5472 C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe - will be deleted on reboot
18:13:54.0760 5472 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Delete
18:13:54.0860 5472 C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe - copied to quarantine
18:13:54.0860 5472 HKLM\SYSTEM\ControlSet001\services\NBService - will be deleted on reboot
18:13:54.0870 5472 HKLM\SYSTEM\ControlSet002\services\NBService - will be deleted on reboot
18:13:54.0880 5472 C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe - will be deleted on reboot
18:13:54.0880 5472 NBService ( UnsignedFile.Multi.Generic ) - User select action: Delete
18:15:52.0625 7404 Deinitialize success
|
|
05.08.2012, 18:19
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bericht von Malwarebytes Anti-Malware. Na klasse, du hast meine Anleitung nicht umgesetzt sondern gleich alles löschen lassen! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.08.2012, 18:37
| #21 |
| | Bericht von Malwarebytes Anti-Malware. Ja habs gesehen bin nach der Anleitung gegangen weil da über dem Bild stand "lasse deine Funde entfernen" Hab das in deinem Beitrag erst gesehen als es zu spät war Naja jetzt geht halt der Fingerprinter nich mehr.. selber schuld^^ |
|
05.08.2012, 19:01
| #22 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bericht von Malwarebytes Anti-Malware. Da wurde auch was von Nero7 gelöscht Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.08.2012, 10:17
| #23 |
| | Bericht von Malwarebytes Anti-Malware. ComboFix Logdatei: Code:
ATTFilter ComboFix 12-08-05.02 - matze 06.08.2012 9:35.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.4093.2266 [GMT 2:00]
ausgeführt von:: c:\users\matze\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\logs
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-07-06 bis 2012-08-06 ))))))))))))))))))))))))))))))
.
.
2012-08-06 07:48 . 2012-08-06 07:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-05 16:13 . 2012-08-05 16:13 -------- d-----w- C:\TDSSKiller_Quarantine
2012-08-04 18:31 . 2012-08-04 18:31 -------- d-----w- C:\_OTL
2012-08-03 13:53 . 2012-08-03 13:53 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{DD728AAB-5DAE-4F93-B398-625042FA5DC2}\offreg.dll
2012-08-03 12:57 . 2012-06-29 10:04 9133488 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{DD728AAB-5DAE-4F93-B398-625042FA5DC2}\mpengine.dll
2012-07-31 13:50 . 2012-07-31 13:50 -------- d-----w- c:\program files (x86)\ESET
2012-07-29 16:05 . 2012-07-29 16:05 -------- d-----w- c:\users\matze\AppData\Roaming\Malwarebytes
2012-07-29 16:05 . 2012-07-29 16:05 -------- d-----w- c:\programdata\Malwarebytes
2012-07-29 16:05 . 2012-07-29 16:05 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-07-29 16:05 . 2012-07-03 11:46 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-29 09:32 . 2012-07-29 09:32 -------- d-----w- c:\users\matze\AppData\Roaming\TuneUp Software
2012-07-29 09:32 . 2012-07-29 09:33 -------- d-----w- c:\programdata\TuneUp Software
2012-07-29 09:32 . 2012-07-29 09:32 -------- d-sh--w- c:\programdata\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2012-07-29 09:32 . 2012-07-29 09:32 -------- d--h--w- c:\programdata\Common Files
2012-07-29 09:31 . 2012-07-29 10:32 -------- d-----w- c:\users\matze\AppData\Roaming\MyPhoneExplorer
2012-07-29 09:30 . 2012-07-29 09:31 -------- d-----w- c:\program files (x86)\MyPhoneExplorer
2012-07-22 18:05 . 2012-07-22 18:05 770384 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr100.dll
2012-07-22 18:05 . 2012-07-22 18:05 421200 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp100.dll
2012-07-11 11:02 . 2012-06-12 03:08 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-07-11 09:31 . 2012-06-06 06:05 1499136 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2012-07-11 09:31 . 2012-06-06 05:05 1019904 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll
2012-07-11 09:31 . 2012-06-06 06:05 466944 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2012-07-11 09:31 . 2012-06-06 06:05 258048 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2012-07-11 09:31 . 2012-06-06 05:03 805376 ----a-w- c:\windows\SysWow64\cdosys.dll
2012-07-11 09:31 . 2012-06-06 06:05 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2012-07-11 09:31 . 2012-06-06 05:05 352256 ----a-w- c:\program files (x86)\Common Files\System\ado\msadomd.dll
2012-07-11 09:31 . 2012-06-06 06:05 61440 ----a-w- c:\program files\Common Files\System\ado\msador15.dll
2012-07-11 09:31 . 2012-06-06 05:05 57344 ----a-w- c:\program files (x86)\Common Files\System\ado\msador15.dll
2012-07-11 09:31 . 2012-06-06 05:05 212992 ----a-w- c:\program files (x86)\Common Files\System\msadc\msadco.dll
2012-07-11 09:31 . 2012-06-06 05:05 143360 ----a-w- c:\program files (x86)\Common Files\System\ado\msjro.dll
2012-07-11 09:31 . 2012-06-06 06:02 1133568 ----a-w- c:\windows\system32\cdosys.dll
2012-07-11 09:31 . 2012-06-06 05:05 372736 ----a-w- c:\program files (x86)\Common Files\System\ado\msadox.dll
2012-07-10 14:01 . 2012-07-10 14:02 -------- d-----w- c:\program files (x86)\Google
2012-07-10 14:01 . 2012-07-10 14:01 -------- d-----w- c:\users\matze\AppData\Local\Google
2012-07-08 21:54 . 2012-07-08 21:54 -------- d-----w- c:\users\matze\AppData\Roaming\DivX
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-03 18:13 . 2012-06-13 22:14 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-03 18:13 . 2011-06-30 07:47 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-07-11 10:58 . 2011-02-12 10:07 59701280 ----a-w- c:\windows\system32\MRT.exe
2012-07-03 16:21 . 2012-02-26 18:38 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-07-03 16:21 . 2011-06-29 18:43 958400 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-07-03 16:21 . 2011-02-06 14:46 355856 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-07-03 16:21 . 2011-02-06 14:46 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-07-03 16:21 . 2011-02-06 14:46 71064 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-07-03 16:21 . 2011-02-06 14:46 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-07-03 16:21 . 2011-02-06 14:45 41224 ----a-w- c:\windows\avastSS.scr
2012-07-03 16:21 . 2011-02-06 14:45 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2012-07-03 16:21 . 2011-02-06 14:46 285328 ----a-w- c:\windows\system32\aswBoot.exe
2012-06-25 14:04 . 2012-06-25 14:04 1394248 ----a-w- c:\windows\SysWow64\msxml4.dll
2012-06-02 22:19 . 2012-06-19 13:03 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-19 13:03 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:19 . 2012-06-19 13:03 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-19 13:03 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-19 13:03 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:15 . 2012-06-19 13:03 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:15 . 2012-06-19 13:03 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-19 13:02 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:15 . 2012-06-19 13:02 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-05-31 10:25 . 2011-02-06 12:28 279656 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{C9EE92B7-EDD5-4ad9-8029-2EC6818E653A}]
2011-09-01 16:00 3075520 ----a-w- c:\program files (x86)\AusweisApp\siqeCardClient.ols
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPADVISOR"="c:\program files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [2010-06-29 1689144]
"KiesHelper"="c:\program files (x86)\Samsung\Kies\KiesHelper.exe" [2012-02-22 943504]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2012-02-22 3508624]
"KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-02-29 21416]
"HP Photosmart 5510d series (NET)"="c:\program files\HP\HP Photosmart 5510d series\Bin\ScanToPCActivationApp.exe" [2011-08-16 2676584]
"Sidebar"="c:\program files (x86)\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"ICQ"="c:\program files (x86)\ICQ7M\ICQ.exe" [2012-06-06 127040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"QlbCtrl.exe"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-11-24 323640]
"DpAgent"="c:\program files (x86)\DigitalPersona\Bin\dpagent.exe" [2009-12-01 842816]
"AllShareAgent"="c:\program files (x86)\Samsung\AllShare\AllShareAgent.exe" [2011-05-24 250768]
"WinampAgent"="c:\program files (x86)\Winamp\winampa.exe" [2011-07-11 74752]
"Nikon Message Center 2"="c:\program files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe" [2010-05-25 619008]
"Nikon Transfer Monitor"="c:\program files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe" [2009-09-15 479232]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2012-07-03 4273976]
"PlusService"="c:\program files (x86)\Yuna Software\Messenger Plus!\PlusService.exe" [2011-10-24 801792]
"PDFPrint"="c:\program files (x86)\PDF24\pdf24.exe" [2011-11-03 220744]
"WD Quick View"="c:\program files (x86)\Western Digital\WD Quick View\WDDMStatus.exe" [2012-04-30 5235608]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920]
.
c:\users\matze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Tintenwarnungen überwachen - HP Photosmart 5510d series (Netzwerk).lnk - c:\windows\system32\RunDll32.exe [2009-7-14 45568]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
SanDisk Media Manager.lnk - [N/A]
Squeezebox Server-Taskleisten-Tool.lnk - c:\program files (x86)\Squeezebox\SqueezeTray.exe [2011-8-5 2162775]
WISO Mein Steuer-Sparbuch heute.lnk - c:\program files (x86)\WISO\Steuersoftware 2012\mshaktuell.exe [2012-1-4 1370736]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"HP Software Update"=c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update-Dienst (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-09-09 86072]
R2 SimpleSlideShowServer;SimpleSlideShowServer;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe [2011-05-24 22464]
R2 WDBackup;WD Backup;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2012-04-24 1150368]
R2 WDRulesService;WD Rules;c:\program files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe [2012-04-11 1177496]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-03 250056]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2011-12-08 36328]
R3 Com4QLBEx;Com4QLBEx;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-01-12 227896]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-29 113120]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series - Adaptertreiber für Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-12-08 157672]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-12-08 16872]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-12-08 177640]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2011-02-18 51712]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [2009-03-01 89600]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-07-03 71064]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [2011-09-21 21992]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2009-07-08 30520]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944]
S2 SamsungAllShare;Samsung AllShare PC Service;c:\program files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe [2011-05-24 7237024]
S2 vfsFPService;Validity Fingerprint Service;c:\windows\system32\vfsFPService.exe [2008-09-16 719152]
S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2012-04-11 247704]
S3 AVerAF15;AVerMedia BDA Digital Tuner;c:\windows\system32\Drivers\AVerAF15.sys [2008-01-16 369024]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2011-02-06 36864]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2008-10-22 128352]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-07-03 24904]
S3 NETw5s64;Intel(R) Wireless WiFi Link Adaptertreiber für Windows 7 64-Bit;c:\windows\system32\DRIVERS\NETw5s64.sys [2010-01-13 7675392]
S3 RTL8167;Realtek 8167 NT-Treiber;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
S3 vfs101a;vfs101a;c:\windows\system32\drivers\vfs101a.sys [2008-09-16 49968]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2012-08-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-13 18:13]
.
2012-08-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 14:01]
.
2012-08-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 14:01]
.
2012-08-06 c:\windows\Tasks\HP Photo Creations Communicator.job
- c:\programdata\HP Photo Creations\MessageCheck.exe [2011-12-03 21:08]
.
2012-07-24 c:\windows\Tasks\HPCeeScheduleForMATZE-PC$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2009-10-07 03:22]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-07-03 16:21 133400 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2009-07-21 450048]
"HPToneControl"="c:\program files\Hewlett-Packard\HPToneControl\HPTonectl.exe" [2009-08-19 107832]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2010-11-03 1580368]
"combofix"="c:\combofix\CF17409.3XE" [2010-11-20 345088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://fck.de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Free YouTube to MP3 Converter - c:\users\matze\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files (x86)\ICQ7M\ICQ.exe
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\matze\AppData\Roaming\Mozilla\Firefox\Profiles\x9uh4a59.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/ig
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-13222027.sys
AddRemove-AVerMedia A309 (MiniCard, DVB-T) - c:\program files (x86)\AVerMedia\AVerMedia A309 (MiniCard
AddRemove-{6F44AF95-3CDE-4513-AD3F-6D45F17BF324} - c:\program files (x86)\InstallShield Installation Information\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}\setup.exe
AddRemove-Club Cooee Start - c:\windows\system32\javaws.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_270_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_270_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\program files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
c:\program files (x86)\Hp\HP Software Update\HPWUCli.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-08-06 10:12:00 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-08-06 08:11
.
Vor Suchlauf: 12 Verzeichnis(se), 210.459.090.944 Bytes frei
Nach Suchlauf: 19 Verzeichnis(se), 209.972.404.224 Bytes frei
.
- - End Of File - - 32D75B684C58E0657652B6F381B5DFF4
|
|
06.08.2012, 12:15
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bericht von Malwarebytes Anti-Malware. Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.08.2012, 14:56
| #25 |
| | Bericht von Malwarebytes Anti-Malware. GMER bericht: Code:
ATTFilter GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2012-08-06 14:49:54
Windows 6.1.7601 Service Pack 1
Running: j1n89nwj.exe
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\002186b373ba
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\002186b373ba@001a756817a0 0xA2 0xBA 0xC7 0xB7 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\002186b373ba@3c5a37be330d 0x21 0x18 0x85 0x0E ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\002186b373ba (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\002186b373ba@001a756817a0 0xA2 0xBA 0xC7 0xB7 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\002186b373ba@3c5a37be330d 0x21 0x18 0x85 0x0E ...
---- EOF - GMER 1.0.15 ----
Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 15:23:07 on 06.08.2012 OS: Windows 7 Home Premium Edition Service Pack 1 (Build 7601), 64-bit Default Browser: Mozilla Corporation Firefox 14.0.1 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [Common] -----( %SystemRoot%\Tasks )----- "HP Photo Creations Communicator.job" - ? - C:\ProgramData\HP Photo Creations\MessageCheck.exe (File found, but it contains no detailed information) "HPCeeScheduleForMATZE-PC$.job" - "Hewlett-Packard" - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe "HPCeeScheduleFormatze.job" - "Hewlett-Packard" - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe "GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [Control Panel Objects] -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )----- "HP 3D DriveGuard" - ? - C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\hpaccelerometercp.CPL (File not found) "QuickTime" - "Apple Inc." - C:\Program Files (x86)\QuickTime\QTSystem\QuickTime.cpl [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "aswFsBlk" (aswFsBlk) - "AVAST Software" - C:\Windows\system32\drivers\aswFsBlk.sys "aswMonFlt" (aswMonFlt) - "AVAST Software" - C:\Windows\system32\drivers\aswMonFlt.sys "aswRdr" (aswRdr) - "AVAST Software" - C:\Windows\System32\Drivers\aswrdr2.sys "aswSnx" (aswSnx) - "AVAST Software" - C:\Windows\system32\drivers\aswSnx.sys "aswSP" (aswSP) - "AVAST Software" - C:\Windows\system32\drivers\aswSP.sys "avast! Network Shield Support" (aswTdi) - "AVAST Software" - C:\Windows\system32\drivers\aswTdi.sys "catchme" (catchme) - ? - C:\ComboFix\catchme.sys (File not found) "cpuz135" (cpuz135) - "CPUID" - C:\Windows\system32\drivers\cpuz135_x64.sys "MBAMProtector" (MBAMProtector) - "Malwarebytes Corporation" - C:\Windows\system32\drivers\mbam.sys [Explorer] -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll {B2F55D43-C7A4-4B7C-90D7-7A860DFA9F2A} "PXCInfoShlExt Class" - "Tracker Software Products Ltd." - C:\Program Files\Tracker Software\Shell Extensions\Win32\XCShInfo.dll -----( HKLM\Software\Classes\Protocols\Filter )----- {807563E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL -----( HKLM\Software\Classes\Protocols\Handler )----- {314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL {828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll {828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {472083B0-C522-11CF-8763-00608CC02F24} "avast" - "AVAST Software" - C:\Program Files\Alwil Software\Avast5\ashShell.dll {42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\msohevi.dll {993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\msoshext.dll {5858A72C-C2B4-4dd7-B2BF-B76DB1BD9F6C} "Microsoft Office OneNote Namespace Extension for Windows Desktop Search" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\ONFILTER.DLL {C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\msoshext.dll {CF822AB4-6DB5-4FDA-BC28-E61DF36D2583} "PDF-XChange PDF Preview Provider" - "Tracker Software Products Ltd." - C:\Program Files\Tracker Software\Shell Extensions\Win32\XCShInfo.dll {67EB453C-1BE1-48EC-AAF3-23B10277FCC1} "PDF-XChange PDF Property Handler" - "Tracker Software Products Ltd." - C:\Program Files\Tracker Software\Shell Extensions\Win32\XCShInfo.dll {EBD0B8F4-A9A0-41B7-9695-030CD264D9C8} "PDF-XChange PDF Thumbnail Provider" - "Tracker Software Products Ltd." - C:\Program Files\Tracker Software\Shell Extensions\Win32\XCShInfo.dll {B2F55D43-C7A4-4B7C-90D7-7A860DFA9F2A} "PXCInfoShlExt Class" - "Tracker Software Products Ltd." - C:\Program Files\Tracker Software\Shell Extensions\Win32\XCShInfo.dll [Internet Explorer] -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_24" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} "Java Plug-in 1.6.0_24" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_24" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\npjpi160_24.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- {48E73304-E1D6-4330-914C-F5F514E3486C} "An OneNote senden" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll "ICQ7M" - "ICQ, LLC." - C:\Program Files (x86)\ICQ7M\ICQ.exe {FF059E31-CC5A-4E2E-BF3B-96E929D65503} "Research" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )----- <binary data> "avast! WebRep" - "AVAST Software" - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} "avast! WebRep" - "AVAST Software" - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll {395610AE-C624-4f58-B89E-23733EA00F9A} "DigitalPersona Personal Extension" - "DigitalPersona, Inc." - C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll {C9EE92B7-EDD5-4ad9-8029-2EC6818E653A} "eCard Client Initiator" - "OpenLimit SignCubes AG" - C:\Program Files (x86)\AusweisApp\siqeCardClient.ols {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll {9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live ID-Anmelde-Hilfsprogramm" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [Known DLLs] -----( HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDLLs )----- "advapi32" - "Microsoft Corporation" - C:\Windows\system32\advapi32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "clbcatq" - "Microsoft Corporation" - C:\Windows\system32\clbcatq.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "COMDLG32" - "Microsoft Corporation" - C:\Windows\system32\COMDLG32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "DifxApi" - "Microsoft Corporation" - C:\Windows\system32\difxapi.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "gdi32" - "Microsoft Corporation" - C:\Windows\system32\gdi32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "IERTUTIL" - "Microsoft Corporation" - C:\Windows\system32\IERTUTIL.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "IMAGEHLP" - "Microsoft Corporation" - C:\Windows\system32\IMAGEHLP.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "IMM32" - "Microsoft Corporation" - C:\Windows\system32\IMM32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "kernel32" - "Microsoft Corporation" - C:\Windows\system32\kernel32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "LPK" - "Microsoft Corporation" - C:\Windows\system32\LPK.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "MSCTF" - "Microsoft Corporation" - C:\Windows\system32\MSCTF.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "MSVCRT" - "Microsoft Corporation" - C:\Windows\system32\MSVCRT.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "NORMALIZ" - "Microsoft Corporation" - C:\Windows\system32\NORMALIZ.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "NSI" - "Microsoft Corporation" - C:\Windows\system32\NSI.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "ole32" - "Microsoft Corporation" - C:\Windows\system32\ole32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "OLEAUT32" - "Microsoft Corporation" - C:\Windows\system32\OLEAUT32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "PSAPI" - "Microsoft Corporation" - C:\Windows\system32\PSAPI.DLL (Hidden registry entry, rootkit activity | File signed by Microsoft) "rpcrt4" - "Microsoft Corporation" - C:\Windows\system32\rpcrt4.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "sechost" - "Microsoft Corporation" - C:\Windows\system32\sechost.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "Setupapi" - "Microsoft Corporation" - C:\Windows\system32\Setupapi.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "SHELL32" - "Microsoft Corporation" - C:\Windows\system32\SHELL32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "SHLWAPI" - "Microsoft Corporation" - C:\Windows\system32\SHLWAPI.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "URLMON" - "Microsoft Corporation" - C:\Windows\system32\URLMON.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "user32" - "Microsoft Corporation" - C:\Windows\system32\user32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "USP10" - "Microsoft Corporation" - C:\Windows\system32\USP10.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "WININET" - "Microsoft Corporation" - C:\Windows\system32\WININET.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "WLDAP32" - "Microsoft Corporation" - C:\Windows\system32\WLDAP32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) "WS2_32" - "Microsoft Corporation" - C:\Windows\system32\WS2_32.dll (Hidden registry entry, rootkit activity | File signed by Microsoft) [LSA Providers] -----( HKLM\SYSTEM\CurrentControlSet\Control\Lsa )----- "Security Packages" - "Microsoft Corp." - C:\Windows\system32\livessp.dll [Logon] -----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\Users\matze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini "Tintenwarnungen überwachen - HP Photosmart 5510d series (Netzwerk).lnk" - "Hewlett-Packard Co." - C:\Program Files\HP\HP Photosmart 5510d series\bin\HPStatusBL.dll (Shortcut exists | File exists) -----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini "SanDisk Media Manager.lnk" - "SanDisk Corporation" - C:\Program Files (x86)\SanDisk\SanDisk Media Manager\SanDiskMediaManager-Launcher.EXE (Shortcut exists | File exists) "Squeezebox Server-Taskleisten-Tool.lnk" - "Logitech Inc." - C:\Program Files (x86)\Squeezebox\SqueezeTray.exe (Shortcut exists | File exists) "WISO Mein Steuer-Sparbuch heute.lnk" - "Buhl Tax Service, Hannover" - C:\Program Files (x86)\WISO\Steuersoftware 2012\mshaktuell.exe (Shortcut exists | File exists) -----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )----- "HP Photosmart 5510d series (NET)" - "Hewlett-Packard Co." - "C:\Program Files\HP\HP Photosmart 5510d series\Bin\ScanToPCActivationApp.exe" -deviceID "CN1A51B18S05RW:NW" -scfn "HP Photosmart 5510d series (NET)" -AutoStart 1 "HPADVISOR" - "Hewlett-Packard" - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW "ICQ" - "ICQ, LLC." - "C:\Program Files (x86)\ICQ7M\ICQ.exe" silent loginmode=4 "KiesHelper" - "Samsung" - C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s "KiesPDLR" - ? - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe "KiesTrayAgent" - "Samsung Electronics Co., Ltd." - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe "msnmsgr" - "Microsoft Corporation" - "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "AllShareAgent" - "Samsung" - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe "avast" - "AVAST Software" - "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui "DpAgent" - "DigitalPersona, Inc." - C:\Program Files (x86)\DigitalPersona\Bin\dpagent.exe "Malwarebytes' Anti-Malware" - "Malwarebytes Corporation" - "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray "Nikon Message Center 2" - "Nikon Corporation" - C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s "Nikon Transfer Monitor" - "Nikon Corporation" - C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe "PDFPrint" - "Geek Software GmbH" - C:\Program Files (x86)\PDF24\pdf24.exe "PlusService" - "Yuna Software" - C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe "QlbCtrl.exe" - " Hewlett-Packard Development Company, L.P." - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start "WD Quick View" - "Western Digital Technologies, Inc." - C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe "WinampAgent" - "Nullsoft, Inc." - "C:\Program Files (x86)\Winamp\winampa.exe" [Print Monitors] -----( HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors )----- "HP Discovery Port Monitor (HP Photosmart 5510d series)" - "Hewlett-Packard Co." - C:\Windows\system32\HPDiscoPMb411.dll [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103" (WinDefend) - ? - C:\Program Files (x86)\Windows Defender\mpsvc.dll (File not found) "@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe" (File not found) "Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe "Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe "Apple Mobile Device" (Apple Mobile Device) - "Apple Inc." - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe "avast! Antivirus" (avast! Antivirus) - "AVAST Software" - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe "Com4QLBEx" (Com4QLBEx) - "Hewlett-Packard Development Company, L.P." - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe "Dienst "Bonjour"" (Bonjour Service) - "Apple Inc." - C:\Program Files (x86)\Bonjour\mDNSResponder.exe "Google Update-Dienst (gupdate)" (gupdate) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe "HP Quick Synchronization Service" (HPDrvMntSvc.exe) - "Hewlett-Packard Company" - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe "HP Software Framework Service" (hpqwmiex) - "Hewlett-Packard Company" - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe "HP Support Assistant Service" (HP Support Assistant Service) - "Hewlett-Packard Company" - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe "iPod-Dienst" (iPod Service) - "Apple Inc." - C:\Program Files\iPod\bin\iPodService.exe "MBAMService" (MBAMService) - "Malwarebytes Corporation" - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe "Microsoft .NET Framework NGEN v4.0.30319_X64" (clr_optimization_v4.0.30319_64) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe "Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe "Microsoft Office Diagnostics Service" (odserv) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE "Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe "Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE "Samsung AllShare PC Service" (SamsungAllShare) - ? - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe (File found, but it contains no detailed information) "SimpleSlideShowServer" (SimpleSlideShowServer) - "Samsung Electronics" - C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe "Validity Fingerprint Service" (vfsFPService) - "Validity Sensors, Inc." - c:\Windows\system32\vfsFPService.exe "WD Backup" (WDBackup) - "Western Digital " - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe "WD Drive Manager" (WDDriveService) - "Western Digital" - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe "WD Rules" (WDRulesService) - "Western Digital " - C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe "Windows Live ID Sign-in Assistant" (wlidsvc) - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [Winsock Providers] -----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )----- "mdnsNSP" - "Apple Inc." - C:\Program Files (x86)\Bonjour\mdnsNSP.dll "WindowsLive Local NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL "WindowsLive NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL ===[ Logfile end ]=========================================[ Logfile end ]=== If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-08-06 15:26:35
-----------------------------
15:26:35.539 OS Version: Windows x64 6.1.7601 Service Pack 1
15:26:35.539 Number of processors: 2 586 0x1706
15:26:35.539 ComputerName: MATZE-PC UserName: matze
15:26:36.413 Initialize success
15:26:39.876 AVAST engine defs: 12080600
15:26:55.975 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
15:26:55.975 Disk 0 Vendor: TOSHIBA_MK3252GSX LV011C Size: 305245MB BusType: 11
15:26:55.975 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-2
15:26:55.991 Disk 1 Vendor: TOSHIBA_MK3252GSX LV011C Size: 305245MB BusType: 11
15:26:56.022 Disk 0 MBR read successfully
15:26:56.038 Disk 0 MBR scan
15:26:56.038 Disk 0 Windows 7 default MBR code
15:26:56.038 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 293599 MB offset 63
15:26:56.085 Disk 0 scanning C:\Windows\system32\drivers
15:27:10.359 Service scanning
15:27:45.162 Modules scanning
15:27:45.162 Disk 0 trace - called modules:
15:27:45.209 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ACPI.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
15:27:45.724 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c4e790]
15:27:45.724 3 CLASSPNP.SYS[fffff880019b643f] -> nt!IofCallDriver -> [0xfffffa8004c4d480]
15:27:45.739 5 hpdskflt.sys[fffff8800195d289] -> nt!IofCallDriver -> [0xfffffa8004aca520]
15:27:45.755 7 ACPI.sys[fffff88000f107a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004ac6680]
15:27:46.566 AVAST engine scan C:\Windows
15:27:50.513 AVAST engine scan C:\Windows\system32
15:30:43.143 AVAST engine scan C:\Windows\system32\drivers
15:30:54.874 AVAST engine scan C:\Users\matze
15:48:20.014 AVAST engine scan C:\ProgramData
15:50:14.658 Disk 0 MBR has been saved successfully to "C:\Users\matze\Desktop\MBR.dat"
15:50:14.674 The log file has been saved successfully to "C:\Users\matze\Desktop\aswMBR.txt"
|
|
06.08.2012, 20:37
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bericht von Malwarebytes Anti-Malware. Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.08.2012, 11:05
| #27 |
| | Bericht von Malwarebytes Anti-Malware. Malewarebytes: Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.62.0.1300 www.malwarebytes.org Datenbank Version: v2012.08.07.03 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 matze :: MATZE-PC [Administrator] Schutz: Deaktiviert 07.08.2012 10:51:56 mbam-log-2012-08-07 (10-51-56).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|F:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 405648 Laufzeit: 1 Stunde(n), 30 Minute(n), 34 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 08/08/2012 at 10:52 AM
Application Version : 5.5.1012
Core Rules Database Version : 9021
Trace Rules Database Version: 6833
Scan type : Complete Scan
Total Scan Time : 22:16:35
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Administrator
Memory items scanned : 697
Memory threats detected : 0
Registry items scanned : 68361
Registry threats detected : 0
File items scanned : 194928
File threats detected : 687
Adware.Tracking Cookie
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@ad.adition[2].txt [ /ad.adition ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@ad.extr1[1].txt [ /ad.extr1 ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@ad1.adfarm.adtelligence[2].txt [ /ad1.adfarm.adtelligence ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@ads.medienhaus[1].txt [ /ads.medienhaus ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@adserver.zonemedia[1].txt [ /adserver.zonemedia ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@atdmt.combing[2].txt [ /atdmt.combing ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@atwola[1].txt [ /atwola ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@guj.122.2o7[1].txt [ /guj.122.2o7 ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@imrworldwide[2].txt [ /imrworldwide ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@microsoftwllivemkt.112.2o7[1].txt [ /microsoftwllivemkt.112.2o7 ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@sevenoneintermedia.112.2o7[1].txt [ /sevenoneintermedia.112.2o7 ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@track.effiliation[1].txt [ /track.effiliation ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@track.effiliation[3].txt [ /track.effiliation ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@traffictrack[2].txt [ /traffictrack ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@xm.xtendmedia[1].txt [ /xm.xtendmedia ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\matze@zbox.zanox[2].txt [ /zbox.zanox ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\4KAGU0J2.txt [ /smartadserver.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\1X9SR39I.txt [ /serving-sys.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\6NUQDXLB.txt [ /ad2.adfarm1.adition.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\ZG8LINK4.txt [ /doubleclick.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\1VWC7FG3.txt [ /atdmt.combing.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\SBQLQ0CU.txt [ /adtech.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\6PFG4BUF.txt [ /atdmt.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\IRK8A321.txt [ /questionmarket.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\TNBHKX18.txt [ /apmebf.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\JIESW2H9.txt [ /specificclick.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\PY20A4HX.txt [ /server.adform.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\BPH8G1W7.txt [ /lucidmedia.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\9RNG0T2X.txt [ /ad.adserver01.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\V359NL2C.txt [ /ad.360yield.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\KCXWSLUW.txt [ /ad.dyntracker.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\INMLUD6D.txt [ /mediaplex.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\COHAMK4O.txt [ /socialsex.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\H1M8CBS7.txt [ /ad1.adfarm1.adition.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\0B7OYQU3.txt [ /content.yieldmanager.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\PVZISSM3.txt [ /zanox-affiliate.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\8XT9M7JO.txt [ /www.usenext.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\YTARF8J4.txt [ /www.traffective-tracking.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\M4FCFJ0X.txt [ /unister-adservices.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\9PKHQ28Q.txt [ /tracking.mlsat02.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\F68TNOCO.txt [ /adserv.kwick.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\XQFAAAK7.txt [ /eas.apm.emediate.eu ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\OV9Q1BN5.txt [ /tracking.quisma.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\GAJ7M3RM.txt [ /adform.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\KF074KA9.txt [ /media6degrees.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\O8LZZBL2.txt [ /lanes.solution.weborama.fr ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\GO8ZDIB7.txt [ /webmasterplan.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\T9KCN2VN.txt [ /adbrite.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\WYD88QPY.txt [ /invitemedia.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\TBC40GOS.txt [ /weborama.fr ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\9GBIZLUE.txt [ /www.socialsex.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\HAAHHJV0.txt [ /tracking.mindshare.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\BLP084GB.txt [ /ru4.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\1YKTW5ZJ.txt [ /track.adform.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\ZSGEFYY1.txt [ /zedo.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\AYKH7OFV.txt [ /adserver.fck.onvert.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\0C26O03I.txt [ /bs.serving-sys.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\XV3EXW7P.txt [ /dyntracker.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\M3JJ88Y5.txt [ /ad4.adfarm1.adition.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\IXRSBQMH.txt [ /server.adformdsp.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\5WI7Y4EK.txt [ /ads.creative-serving.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\UI422NLE.txt [ /msnportal.112.2o7.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\SUMW36NK.txt [ /ad3.adfarm1.adition.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\9JAZNJ04.txt [ /c.atdmt.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\I3XBL014.txt [ /ad.adc-serv.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\4TVT6X5N.txt [ /ad.adnet.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\1WSXT09U.txt [ /tradedoubler.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\07BWF2RP.txt [ /www.zanox-affiliate.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\RO9MIYLY.txt [ /eyewonder.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\NIJ268UD.txt [ /ad.ad-srv.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\I60713ZV.txt [ /revsci.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\8B7RQQDO.txt [ /www.active-tracking.de ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\R638WS1Y.txt [ /adviva.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\BQFUIT6O.txt [ /ad.yieldmanager.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\7CNXJD22.txt [ /fastclick.net ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\N2P3SYL4.txt [ /adfarm1.adition.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\IJUYYR82.txt [ /casalemedia.com ]
C:\Users\matze\AppData\Roaming\Microsoft\Windows\Cookies\WX1660L1.txt [ /adformdsp.net ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\J1HY30OD.txt [ Cookie:matze@smartadserver.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZIQWVX2Z.txt [ Cookie:matze@serving-sys.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\CBPJRI73.txt [ Cookie:matze@ad2.adfarm1.adition.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@verticaltechmedia[1].txt [ Cookie:matze@verticaltechmedia.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\8MCAEKC1.txt [ Cookie:matze@doubleclick.net/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\KOOR2XQP.txt [ Cookie:matze@adtech.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ESCBSI6Y.txt [ Cookie:matze@atdmt.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@questionmarket[2].txt [ Cookie:matze@questionmarket.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\XLNFS4WM.txt [ Cookie:matze@traffictrack.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@apmebf[1].txt [ Cookie:matze@apmebf.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@specificclick[2].txt [ Cookie:matze@specificclick.net/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\83YRYZO9.txt [ Cookie:matze@deutschepostag.112.2o7.net/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@studivz.adfarm1.adition[1].txt [ Cookie:matze@studivz.adfarm1.adition.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@ad.dyntracker[1].txt [ Cookie:matze@ad.dyntracker.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\L0255M1G.txt [ Cookie:matze@mediaplex.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\FYG5J3LV.txt [ Cookie:matze@zanox.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\P4RHHOI1.txt [ Cookie:matze@pornturbo.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@im.banner.t-online[1].txt [ Cookie:matze@im.banner.t-online.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@zanox-affiliate[1].txt [ Cookie:matze@zanox-affiliate.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@www.googleadservices[3].txt [ Cookie:matze@www.googleadservices.com/pagead/conversion/1071740498/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@tracking.quisma[1].txt [ Cookie:matze@tracking.quisma.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\JX9SFSO5.txt [ Cookie:matze@webmasterplan.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@interclick[2].txt [ Cookie:matze@interclick.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ADUV75Q6.txt [ Cookie:matze@statcounter.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@invitemedia[2].txt [ Cookie:matze@invitemedia.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@hitbox[2].txt [ Cookie:matze@hitbox.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\KPYWOLUH.txt [ Cookie:matze@ero-advertising.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\YGLB0K04.txt [ Cookie:matze@socialsex.biz/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@counters.gigya[1].txt [ Cookie:matze@counters.gigya.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@imrworldwide[2].txt [ Cookie:matze@imrworldwide.com/cgi-bin ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@2o7[2].txt [ Cookie:matze@2o7.net/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\WHAETG6N.txt [ Cookie:matze@track.adform.net/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\GBYHN9YP.txt [ Cookie:matze@media.gan-online.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@bs.serving-sys[2].txt [ Cookie:matze@bs.serving-sys.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\9780EMJW.txt [ Cookie:matze@eas4.emediate.eu/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\2AT3RLDX.txt [ Cookie:matze@ad4.adfarm1.adition.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\TI1IGGLR.txt [ Cookie:matze@stat.dealtime.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\EZ0I7Z81.txt [ Cookie:matze@ad3.adfarm1.adition.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ARSDWU9U.txt [ Cookie:matze@c.atdmt.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\D4QFYZ5D.txt [ Cookie:matze@ad.adnet.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@ehg-techtarget.hitbox[2].txt [ Cookie:matze@ehg-techtarget.hitbox.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@content.yieldmanager[1].txt [ Cookie:matze@content.yieldmanager.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\DNG5AB6F.txt [ Cookie:matze@revsci.net/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@adx.chip[1].txt [ Cookie:matze@adx.chip.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@www.active-tracking[1].txt [ Cookie:matze@www.active-tracking.de/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\8GOU66IR.txt [ Cookie:matze@banners.victor.com/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@track.effiliation[3].txt [ Cookie:matze@track.effiliation.com/servlet/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\matze@fastclick[1].txt [ Cookie:matze@fastclick.net/ ]
C:\USERS\MATZE\AppData\Roaming\Microsoft\Windows\Cookies\Low\UGW1TJ2I.txt [ Cookie:matze@ad.zanox.com/ ]
C:\USERS\MATZE\Cookies\4KAGU0J2.txt [ Cookie:matze@smartadserver.com/ ]
C:\USERS\MATZE\Cookies\1X9SR39I.txt [ Cookie:matze@serving-sys.com/ ]
C:\USERS\MATZE\Cookies\6NUQDXLB.txt [ Cookie:matze@ad2.adfarm1.adition.com/ ]
C:\USERS\MATZE\Cookies\ZG8LINK4.txt [ Cookie:matze@doubleclick.net/ ]
C:\USERS\MATZE\Cookies\1VWC7FG3.txt [ Cookie:matze@atdmt.combing.com/ ]
C:\USERS\MATZE\Cookies\SBQLQ0CU.txt [ Cookie:matze@adtech.de/ ]
C:\USERS\MATZE\Cookies\6PFG4BUF.txt [ Cookie:matze@atdmt.com/ ]
C:\USERS\MATZE\Cookies\matze@traffictrack[2].txt [ Cookie:matze@traffictrack.de/ ]
C:\USERS\MATZE\Cookies\IRK8A321.txt [ Cookie:matze@questionmarket.com/ ]
C:\USERS\MATZE\Cookies\TNBHKX18.txt [ Cookie:matze@apmebf.com/ ]
C:\USERS\MATZE\Cookies\JIESW2H9.txt [ Cookie:matze@specificclick.net/ ]
C:\USERS\MATZE\Cookies\KCXWSLUW.txt [ Cookie:matze@ad.dyntracker.de/ ]
C:\USERS\MATZE\Cookies\INMLUD6D.txt [ Cookie:matze@mediaplex.com/ ]
C:\USERS\MATZE\Cookies\COHAMK4O.txt [ Cookie:matze@socialsex.com/ ]
C:\USERS\MATZE\Cookies\matze@microsoftwllivemkt.112.2o7[1].txt [ Cookie:matze@microsoftwllivemkt.112.2o7.net/ ]
C:\USERS\MATZE\Cookies\H1M8CBS7.txt [ Cookie:matze@ad1.adfarm1.adition.com/ ]
C:\USERS\MATZE\Cookies\matze@xm.xtendmedia[1].txt [ Cookie:matze@xm.xtendmedia.com/ ]
C:\USERS\MATZE\Cookies\PVZISSM3.txt [ Cookie:matze@zanox-affiliate.de/ ]
C:\USERS\MATZE\Cookies\8XT9M7JO.txt [ Cookie:matze@www.usenext.de/ ]
C:\USERS\MATZE\Cookies\YTARF8J4.txt [ Cookie:matze@www.traffective-tracking.net/ ]
C:\USERS\MATZE\Cookies\M4FCFJ0X.txt [ Cookie:matze@unister-adservices.com/ ]
C:\USERS\MATZE\Cookies\matze@ad.adition[2].txt [ Cookie:matze@ad.adition.net/ ]
C:\USERS\MATZE\Cookies\XQFAAAK7.txt [ Cookie:matze@eas.apm.emediate.eu/ ]
C:\USERS\MATZE\Cookies\OV9Q1BN5.txt [ Cookie:matze@tracking.quisma.com/ ]
C:\USERS\MATZE\Cookies\matze@atwola[1].txt [ Cookie:matze@atwola.com/ ]
C:\USERS\MATZE\Cookies\KF074KA9.txt [ Cookie:matze@media6degrees.com/ ]
C:\USERS\MATZE\Cookies\O8LZZBL2.txt [ Cookie:matze@lanes.solution.weborama.fr/ ]
C:\USERS\MATZE\Cookies\GO8ZDIB7.txt [ Cookie:matze@webmasterplan.com/ ]
C:\USERS\MATZE\Cookies\matze@guj.122.2o7[1].txt [ Cookie:matze@guj.122.2o7.net/ ]
C:\USERS\MATZE\Cookies\WYD88QPY.txt [ Cookie:matze@invitemedia.com/ ]
C:\USERS\MATZE\Cookies\9GBIZLUE.txt [ Cookie:matze@www.socialsex.com/ ]
C:\USERS\MATZE\Cookies\HAAHHJV0.txt [ Cookie:matze@tracking.mindshare.de/ ]
C:\USERS\MATZE\Cookies\matze@imrworldwide[2].txt [ Cookie:matze@imrworldwide.com/cgi-bin ]
C:\USERS\MATZE\Cookies\1YKTW5ZJ.txt [ Cookie:matze@track.adform.net/ ]
C:\USERS\MATZE\Cookies\0C26O03I.txt [ Cookie:matze@bs.serving-sys.com/ ]
C:\USERS\MATZE\Cookies\XV3EXW7P.txt [ Cookie:matze@dyntracker.com/ ]
C:\USERS\MATZE\Cookies\matze@zbox.zanox[2].txt [ Cookie:matze@zbox.zanox.com/ ]
C:\USERS\MATZE\Cookies\M3JJ88Y5.txt [ Cookie:matze@ad4.adfarm1.adition.com/ ]
C:\USERS\MATZE\Cookies\IXRSBQMH.txt [ Cookie:matze@server.adformdsp.net/ ]
C:\USERS\MATZE\Cookies\SUMW36NK.txt [ Cookie:matze@ad3.adfarm1.adition.com/ ]
C:\USERS\MATZE\Cookies\9JAZNJ04.txt [ Cookie:matze@c.atdmt.com/ ]
C:\USERS\MATZE\Cookies\4TVT6X5N.txt [ Cookie:matze@ad.adnet.de/ ]
C:\USERS\MATZE\Cookies\I60713ZV.txt [ Cookie:matze@revsci.net/ ]
C:\USERS\MATZE\Cookies\8B7RQQDO.txt [ Cookie:matze@www.active-tracking.de/ ]
C:\USERS\MATZE\Cookies\matze@track.effiliation[3].txt [ Cookie:matze@track.effiliation.com/servlet/ ]
C:\USERS\MATZE\Cookies\7CNXJD22.txt [ Cookie:matze@fastclick.net/ ]
C:\USERS\MATZE\Cookies\IJUYYR82.txt [ Cookie:matze@casalemedia.com/ ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\73SQLS84 ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@STATSE.WEBTRENDSLIVE[1].TXT [ /STATSE.WEBTRENDSLIVE ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@STATS.MANTICORETECHNOLOGY[2].TXT [ /STATS.MANTICORETECHNOLOGY ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@TRACK.EFFILIATION[1].TXT [ /TRACK.EFFILIATION ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@AD.ADSERVER01[1].TXT [ /AD.ADSERVER01 ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@BANNER.TESTBERICHTE[1].TXT [ /BANNER.TESTBERICHTE ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@WWW.ZANOX-AFFILIATE[2].TXT [ /WWW.ZANOX-AFFILIATE ]
C:\USERS\MATZE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\MATZE@XITI[1].TXT [ /XITI ]
.imrworldwide.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.a.revenuemax.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revenuemax.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.daimlerag.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.loyaltypartner.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adserver.fck.onvert.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tvtv.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
in.getclicky.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.olympiaverlag.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tracking.sim-technik.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
server.adformdsp.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.divx.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.komtrack.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.komtrack.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.microsoftwllivemkt.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.gesext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.sex.gesext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.sex.gesext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.gesext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.gesext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adv.arubamediamarketing.it [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.shinystat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.vodafoneit.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.vodafoneit.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.vodafoneit.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.vodafoneit.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.weboramaitdata.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.weboramaitdata.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.weboramaitdata.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.weboramaitdata.solution.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.weborama.fr [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.nikonjp.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wfliwlazgeo.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.guj.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.h.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.h.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.h.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.h.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wnkowkdpcfo.stats.esomniture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
wt.socialsex.biz [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adultfriendfinder.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.bike-discount.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.bike-discount.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.bike-discount.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.bike-discount.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.autoscout24.112.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.socialsex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tracking.mobile.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tracking.tchibo.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adserv.kwick.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adserv.kwick.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.zieltrack.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
zbox.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tracking.dc-storm.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
naturaltracking.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
naturaltracking.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
naturaltracking.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.parship.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.yieldmanager.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.skydeutschland.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.rambler.ru [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tns-counter.ru [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.mmotraffic.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.mmotraffic.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
7.rotator.wigetmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
7.rotator.wigetmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adserver.anschlusstor.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.beiersdorf.122.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ad2.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ad2.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
uk.sitestat.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.socialsex.biz [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.socialsex.biz [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adscendmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.trafficjmp.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.trafficjmp.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adscendmedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.flagcounter.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tracking.oe24.at [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
server.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.dealtime.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
stat.dealtime.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.pornturbo.xxx [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.lusthaus2.bannerdealer.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.lusthaus2.bannerdealer.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.socialsex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.socialsex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.burstnet.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.c.gigcount.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
server.adformdsp.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adformdsp.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adserver.gb4.motorpresse.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.urbia.wwe-media.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adserver.fck.onvert.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.mediamarkt.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracking.mindshare.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.usenext.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.trackalyzer.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tracker.vinsight.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
t2.trackalyzer.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad1.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adserver.fck.onvert.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tomtailor.dyntracker.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
partners.webmasterplan.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
ww251.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\MATZE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X9UH4A59.DEFAULT\COOKIES.SQLITE ]
Trojan.Agent/Gen-Multi
C:\PROGRAM FILES (X86)\SOLID EDGE V20\CUSTOM\AUTOCONSTRAIN\AUTOCNST.DLL
|
|
08.08.2012, 20:33
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bericht von Malwarebytes Anti-Malware. Sieht ok aus, da wurden nur Cookies gefunden. Und ein Fehlalarm war dabei Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat. Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/ Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
09.08.2012, 09:11
| #29 |
| | Bericht von Malwarebytes Anti-Malware. Okay, danke schonmal für die Hilfe! Ich denke ich werde diesen Cookie Culler installieren das sollte das Problem ja eingrenzen wenn ich nur bestimmte Cookies erlaube und der rest bei jedem Schließen gelöscht wird oder? Eine Frage hätte ich noch, und zwar hab ich ja letztens bei dem Test mit Malewarebytes aus versehen eine Datei von DigitalPersona dem Fingerprinter gelöscht Code:
ATTFilter 18:13:54.0640 5472 C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe - will be deleted on reboot
Code:
ATTFilter Es liegt ein dieses Windows Installer-Paket betreffendes Problem vor. Ein für den Abschluss der Installation erforderliches Programm konnte nicht ausgeführt werden. Wenden Sie sich an das Supportpersonal oder den Hersteller des Pakets. Aktion:UnregDpHostW.38A1246F_A554_4A85_8F52_C3EE726E2B84.
Pfad:C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe.
Befehl:/UnregServer
Grüße Matze Wollte den Cookie Culler gerade installieren der funktioniert jedoch nicht unter FF Version 14.0.1. |
|
10.08.2012, 09:45
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bericht von Malwarebytes Anti-Malware. Einfach mal nach Cookie Culler googeln und schon hättest du die aktuelle Version gefunden! => http://filepony.de/download-cookie_culler/ DigitalPersona kann ich dir nicht weiterhelfen, evtl. kannst du es noch mit dem RevoUninstaller deinstallieren. Wenn nicht hab ich aus der Ferne keine Idee. Ansonsten wären wir durch!  Die Programme, die hier zum Einsatz kamen, können alle wieder runter. Mit Hilfe von OTL kannst du auch viele Tools entfernen: Starte bitte OTL und klicke auf Bereinigung. Dies wird die meisten Tools entfernen, die wir zur Bereinigung benötigt haben. Sollte etwas bestehen bleiben, bitte mit Rechtsklick --> Löschen entfernen. Malwarebytes zu behalten ist zu empfehlen. Kannst ja 1x im Monat damit einen Vollscan machen, aber immer vorher ans Update denken. Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden. Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern. Microsoftupdate Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren. Windows Vista/7: Anleitung Windows-Update PDF-Reader aktualisieren Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast) Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader. Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers: Prüfen => http://www.adobe.com/software/flash/about/ Downloadlinks => http://www.adobe.com/products/flashp...ribution3.html Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind. Java-Update Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Bericht von Malwarebytes Anti-Malware. |
| administrator, anti-malware, autostart, beachten, bericht, bösartige, dateien, downloads, durchgeführt, erfolgreich, explorer, frage, gelöscht, gen, infizierte, infizierte dateien, loader, malwarebytes, minute, quarantäne, registrierung, schonmal, service, speicher, test, version |
Linear-Darstellung
