Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: PUP.BundleInstaller.VG

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 25.09.2012, 19:49   #31
hoswik
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Entschuldigung, hier kommt eine Meldung das der Text zu lang ist. Ich versuche zu teilen
Code:
ATTFilter
  20:12:44.0174 1912  TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
20:12:44.0284 1912  ============================================================
20:12:44.0284 1912  Current date / time: 2012/09/25 20:12:44.0284
20:12:44.0284 1912  SystemInfo:
20:12:44.0284 1912  
20:12:44.0284 1912  OS Version: 6.1.7601 ServicePack: 1.0
20:12:44.0284 1912  Product type: Workstation
20:12:44.0284 1912  ComputerName: ****-PC
20:12:44.0284 1912  UserName: ****
20:12:44.0284 1912  Windows directory: C:\Windows
20:12:44.0284 1912  System windows directory: C:\Windows
20:12:44.0284 1912  Running under WOW64
20:12:44.0284 1912  Processor architecture: Intel x64
20:12:44.0284 1912  Number of processors: 4
20:12:44.0284 1912  Page size: 0x1000
20:12:44.0284 1912  Boot type: Normal boot
20:12:44.0284 1912  ============================================================
20:12:46.0156 1912  Drive \Device\Harddisk0\DR0 - Size: 0x4A81300000 (298.02 Gb), SectorSize: 0x200, Cylinders: 0x97F7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:12:46.0202 1912  ============================================================
20:12:46.0202 1912  \Device\Harddisk0\DR0:
20:12:46.0202 1912  MBR partitions:
20:12:46.0202 1912  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1F800, BlocksNum 0x1E00000
20:12:46.0202 1912  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E1F800, BlocksNum 0x235E9800
20:12:46.0202 1912  ============================================================
20:12:46.0234 1912  C: <-> \Device\Harddisk0\DR0\Partition2
20:12:46.0249 1912  D: <-> \Device\Harddisk0\DR0\Partition1
20:12:46.0249 1912  ============================================================
20:12:46.0249 1912  Initialize success
20:12:46.0249 1912  ============================================================
20:12:58.0417 2960  ============================================================
20:12:58.0417 2960  Scan started
20:12:58.0417 2960  Mode: Manual; 
20:12:58.0417 2960  ============================================================
20:12:59.0228 2960  ================ Scan system memory ========================
20:12:59.0228 2960  System memory - ok
20:12:59.0228 2960  ================ Scan services =============================
20:12:59.0431 2960  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
20:12:59.0431 2960  1394ohci - ok
20:12:59.0509 2960  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
20:12:59.0509 2960  ACDaemon - ok
20:12:59.0556 2960  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
20:12:59.0556 2960  ACPI - ok
20:12:59.0572 2960  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
20:12:59.0572 2960  AcpiPmi - ok
20:12:59.0650 2960  [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:12:59.0650 2960  AdobeARMservice - ok
20:12:59.0774 2960  [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:12:59.0774 2960  AdobeFlashPlayerUpdateSvc - ok
20:12:59.0821 2960  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
20:12:59.0821 2960  adp94xx - ok
20:12:59.0837 2960  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
20:12:59.0837 2960  adpahci - ok
20:12:59.0852 2960  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
20:12:59.0868 2960  adpu320 - ok
20:12:59.0884 2960  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
20:12:59.0884 2960  AeLookupSvc - ok
20:12:59.0946 2960  [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc             C:\Windows\syswow64\drivers\Afc.sys
20:12:59.0946 2960  Afc - ok
20:12:59.0993 2960  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
20:12:59.0993 2960  AFD - ok
20:13:00.0008 2960  AFS - ok
20:13:00.0040 2960  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
20:13:00.0040 2960  agp440 - ok
20:13:00.0071 2960  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
20:13:00.0071 2960  ALG - ok
20:13:00.0102 2960  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
20:13:00.0102 2960  aliide - ok
20:13:00.0133 2960  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
20:13:00.0133 2960  amdide - ok
20:13:00.0180 2960  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
20:13:00.0180 2960  AmdK8 - ok
20:13:00.0180 2960  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
20:13:00.0180 2960  AmdPPM - ok
20:13:00.0211 2960  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
20:13:00.0227 2960  amdsata - ok
20:13:00.0227 2960  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
20:13:00.0242 2960  amdsbs - ok
20:13:00.0258 2960  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
20:13:00.0258 2960  amdxata - ok
20:13:00.0289 2960  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
20:13:00.0289 2960  AppID - ok
20:13:00.0320 2960  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
20:13:00.0320 2960  AppIDSvc - ok
20:13:00.0352 2960  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
20:13:00.0352 2960  Appinfo - ok
20:13:00.0383 2960  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
20:13:00.0383 2960  AppMgmt - ok
20:13:00.0414 2960  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
20:13:00.0430 2960  arc - ok
20:13:00.0445 2960  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
20:13:00.0445 2960  arcsas - ok
20:13:00.0476 2960  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
20:13:00.0476 2960  AsyncMac - ok
20:13:00.0508 2960  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
20:13:00.0508 2960  atapi - ok
20:13:00.0539 2960  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:13:00.0554 2960  AudioEndpointBuilder - ok
20:13:00.0570 2960  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
20:13:00.0570 2960  AudioSrv - ok
20:13:00.0617 2960  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
20:13:00.0617 2960  AxInstSV - ok
20:13:00.0664 2960  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
20:13:00.0664 2960  b06bdrv - ok
20:13:00.0679 2960  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
20:13:00.0679 2960  b57nd60a - ok
20:13:00.0726 2960  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
20:13:00.0726 2960  BDESVC - ok
20:13:00.0757 2960  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
20:13:00.0757 2960  Beep - ok
20:13:00.0804 2960  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
20:13:00.0820 2960  BFE - ok
20:13:00.0851 2960  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
20:13:00.0866 2960  BITS - ok
20:13:00.0882 2960  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
20:13:00.0882 2960  blbdrive - ok
20:13:00.0913 2960  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
20:13:00.0913 2960  bowser - ok
20:13:00.0929 2960  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:13:00.0929 2960  BrFiltLo - ok
20:13:00.0944 2960  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:13:00.0944 2960  BrFiltUp - ok
20:13:00.0976 2960  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
20:13:00.0976 2960  Browser - ok
20:13:00.0991 2960  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
20:13:00.0991 2960  Brserid - ok
20:13:01.0007 2960  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
20:13:01.0007 2960  BrSerWdm - ok
20:13:01.0022 2960  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
20:13:01.0022 2960  BrUsbMdm - ok
20:13:01.0038 2960  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
20:13:01.0038 2960  BrUsbSer - ok
20:13:01.0085 2960  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
20:13:01.0085 2960  BTHMODEM - ok
20:13:01.0116 2960  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
20:13:01.0116 2960  bthserv - ok
20:13:01.0132 2960  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
20:13:01.0147 2960  cdfs - ok
20:13:01.0163 2960  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
20:13:01.0178 2960  cdrom - ok
20:13:01.0210 2960  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
20:13:01.0210 2960  CertPropSvc - ok
20:13:01.0241 2960  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
20:13:01.0241 2960  circlass - ok
20:13:01.0272 2960  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
20:13:01.0272 2960  CLFS - ok
20:13:01.0334 2960  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:13:01.0334 2960  clr_optimization_v2.0.50727_32 - ok
20:13:01.0381 2960  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:13:01.0381 2960  clr_optimization_v2.0.50727_64 - ok
20:13:01.0459 2960  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:13:01.0490 2960  clr_optimization_v4.0.30319_32 - ok
20:13:01.0537 2960  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:13:01.0553 2960  clr_optimization_v4.0.30319_64 - ok
20:13:01.0584 2960  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
20:13:01.0584 2960  CmBatt - ok
20:13:01.0600 2960  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
20:13:01.0600 2960  cmdide - ok
20:13:01.0646 2960  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
20:13:01.0662 2960  CNG - ok
20:13:01.0662 2960  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
20:13:01.0678 2960  Compbatt - ok
20:13:01.0709 2960  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
20:13:01.0709 2960  CompositeBus - ok
20:13:01.0724 2960  COMSysApp - ok
20:13:01.0724 2960  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
20:13:01.0740 2960  crcdisk - ok
20:13:01.0756 2960  [ 4F5414602E2544A4554D95517948B705 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
20:13:01.0771 2960  CryptSvc - ok
20:13:01.0802 2960  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
20:13:01.0818 2960  CSC - ok
20:13:01.0849 2960  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
20:13:01.0865 2960  CscService - ok
20:13:01.0896 2960  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
20:13:01.0912 2960  DcomLaunch - ok
20:13:01.0943 2960  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
20:13:01.0943 2960  defragsvc - ok
20:13:01.0974 2960  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
20:13:01.0974 2960  DfsC - ok
20:13:01.0990 2960  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
20:13:02.0005 2960  Dhcp - ok
20:13:02.0005 2960  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
20:13:02.0005 2960  discache - ok
20:13:02.0036 2960  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
20:13:02.0036 2960  Disk - ok
20:13:02.0068 2960  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
20:13:02.0068 2960  Dnscache - ok
20:13:02.0114 2960  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
20:13:02.0130 2960  dot3svc - ok
20:13:02.0161 2960  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
20:13:02.0161 2960  DPS - ok
20:13:02.0192 2960  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
20:13:02.0192 2960  drmkaud - ok
20:13:02.0239 2960  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
20:13:02.0239 2960  DXGKrnl - ok
20:13:02.0270 2960  [ 099E01A94167CA8BDA2CF72037AD0E28 ] e1express       C:\Windows\system32\DRIVERS\e1e6232e.sys
20:13:02.0270 2960  e1express - ok
20:13:02.0302 2960  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
20:13:02.0302 2960  EapHost - ok
20:13:02.0395 2960  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
20:13:02.0442 2960  ebdrv - ok
20:13:02.0473 2960  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
20:13:02.0473 2960  EFS - ok
20:13:02.0520 2960  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
20:13:02.0536 2960  ehRecvr - ok
20:13:02.0551 2960  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
20:13:02.0551 2960  ehSched - ok
20:13:02.0598 2960  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
20:13:02.0598 2960  elxstor - ok
20:13:02.0629 2960  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
20:13:02.0629 2960  ErrDev - ok
20:13:02.0660 2960  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
20:13:02.0676 2960  EventSystem - ok
20:13:02.0692 2960  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
20:13:02.0692 2960  exfat - ok
20:13:02.0707 2960  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
20:13:02.0723 2960  fastfat - ok
20:13:02.0770 2960  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
20:13:02.0785 2960  Fax - ok
20:13:02.0801 2960  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
20:13:02.0801 2960  fdc - ok
20:13:02.0816 2960  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
20:13:02.0816 2960  fdPHost - ok
20:13:02.0832 2960  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
20:13:02.0832 2960  FDResPub - ok
20:13:02.0848 2960  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
20:13:02.0848 2960  FileInfo - ok
20:13:02.0848 2960  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
20:13:02.0848 2960  Filetrace - ok
20:13:02.0863 2960  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
20:13:02.0863 2960  flpydisk - ok
20:13:02.0894 2960  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
20:13:02.0894 2960  FltMgr - ok
20:13:02.0941 2960  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
20:13:02.0957 2960  FontCache - ok
20:13:02.0988 2960  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:13:03.0004 2960  FontCache3.0.0.0 - ok
20:13:03.0050 2960  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
20:13:03.0050 2960  FsDepends - ok
20:13:03.0066 2960  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
20:13:03.0066 2960  Fs_Rec - ok
20:13:03.0128 2960  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
20:13:03.0128 2960  fvevol - ok
20:13:03.0144 2960  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
20:13:03.0144 2960  gagp30kx - ok
20:13:03.0160 2960  GEARAspiWDM - ok
20:13:03.0191 2960  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
20:13:03.0206 2960  gpsvc - ok
20:13:03.0300 2960  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:13:03.0300 2960  gupdate - ok
20:13:03.0316 2960  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:13:03.0316 2960  gupdatem - ok
20:13:03.0347 2960  [ C1B577B2169900F4CF7190C39F085794 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:13:03.0347 2960  gusvc - ok
20:13:03.0394 2960  [ 9E308D0BC9A9CF6E50AA25639C9CCCB3 ] HCW85BDA        C:\Windows\system32\drivers\HCW85BDA.sys
20:13:03.0409 2960  HCW85BDA - ok
20:13:03.0440 2960  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
20:13:03.0440 2960  hcw85cir - ok
20:13:03.0503 2960  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:13:03.0503 2960  HdAudAddService - ok
20:13:03.0518 2960  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
20:13:03.0518 2960  HDAudBus - ok
20:13:03.0534 2960  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
20:13:03.0534 2960  HidBatt - ok
20:13:03.0550 2960  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
20:13:03.0550 2960  HidBth - ok
20:13:03.0581 2960  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
20:13:03.0596 2960  HidIr - ok
20:13:03.0612 2960  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
20:13:03.0612 2960  hidserv - ok
20:13:03.0643 2960  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
20:13:03.0643 2960  HidUsb - ok
20:13:03.0659 2960  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
20:13:03.0659 2960  hkmsvc - ok
20:13:03.0690 2960  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:13:03.0690 2960  HomeGroupListener - ok
20:13:03.0721 2960  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:13:03.0721 2960  HomeGroupProvider - ok
20:13:03.0768 2960  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
20:13:03.0768 2960  HpSAMD - ok
20:13:03.0799 2960  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
20:13:03.0815 2960  HTTP - ok
20:13:03.0846 2960  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
20:13:03.0846 2960  hwpolicy - ok
20:13:03.0877 2960  [ 4B7423FCC37664954460AC3E71752B62 ] hxctlflt        C:\Windows\system32\Drivers\hxctlflt.sys
20:13:03.0893 2960  hxctlflt - ok
20:13:03.0924 2960  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
20:13:03.0940 2960  i8042prt - ok
20:13:03.0955 2960  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
20:13:03.0955 2960  iaStorV - ok
20:13:04.0018 2960  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:13:04.0033 2960  idsvc - ok
20:13:04.0064 2960  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
20:13:04.0064 2960  iirsp - ok
20:13:04.0111 2960  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
20:13:04.0127 2960  IKEEXT - ok
20:13:04.0158 2960  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
20:13:04.0158 2960  intelide - ok
20:13:04.0189 2960  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
20:13:04.0189 2960  intelppm - ok
20:13:04.0205 2960  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
20:13:04.0205 2960  IPBusEnum - ok
20:13:04.0236 2960  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:13:04.0236 2960  IpFilterDriver - ok
20:13:04.0283 2960  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
20:13:04.0298 2960  iphlpsvc - ok
20:13:04.0314 2960  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
20:13:04.0314 2960  IPMIDRV - ok
20:13:04.0345 2960  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
20:13:04.0345 2960  IPNAT - ok
20:13:04.0361 2960  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
20:13:04.0361 2960  IRENUM - ok
20:13:04.0376 2960  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
20:13:04.0376 2960  isapnp - ok
20:13:04.0408 2960  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
20:13:04.0408 2960  iScsiPrt - ok
20:13:04.0439 2960  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
20:13:04.0439 2960  kbdclass - ok
20:13:04.0470 2960  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
20:13:04.0470 2960  kbdhid - ok
20:13:04.0486 2960  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
20:13:04.0486 2960  KeyIso - ok
20:13:04.0532 2960  [ 07071C1E3CD8F0F9114AAC8B072CA1E5 ] KMWDFILTER      C:\Windows\system32\DRIVERS\KMWDFILTER.sys
20:13:04.0532 2960  KMWDFILTER - ok
20:13:04.0564 2960  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
20:13:04.0564 2960  KSecDD - ok
20:13:04.0595 2960  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
20:13:04.0610 2960  KSecPkg - ok
20:13:04.0626 2960  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
20:13:04.0626 2960  ksthunk - ok
20:13:04.0657 2960  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
20:13:04.0657 2960  KtmRm - ok
20:13:04.0720 2960  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
20:13:04.0735 2960  LanmanServer - ok
20:13:04.0766 2960  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:13:04.0766 2960  LanmanWorkstation - ok
20:13:04.0798 2960  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
20:13:04.0798 2960  lltdio - ok
20:13:04.0829 2960  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
20:13:04.0829 2960  lltdsvc - ok
20:13:04.0844 2960  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
20:13:04.0844 2960  lmhosts - ok
20:13:04.0876 2960  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
20:13:04.0876 2960  LSI_FC - ok
20:13:04.0876 2960  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
20:13:04.0891 2960  LSI_SAS - ok
20:13:04.0891 2960  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:13:04.0891 2960  LSI_SAS2 - ok
20:13:04.0891 2960  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:13:04.0907 2960  LSI_SCSI - ok
20:13:04.0907 2960  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
20:13:04.0907 2960  luafv - ok
20:13:04.0954 2960  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
20:13:04.0954 2960  Mcx2Svc - ok
20:13:04.0954 2960  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
20:13:04.0954 2960  megasas - ok
20:13:04.0985 2960  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
20:13:04.0985 2960  MegaSR - ok
20:13:05.0063 2960  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
20:13:05.0110 2960  Microsoft Office Groove Audit Service - ok
20:13:05.0125 2960  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
20:13:05.0125 2960  MMCSS - ok
20:13:05.0156 2960  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
20:13:05.0156 2960  Modem - ok
20:13:05.0188 2960  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
20:13:05.0188 2960  monitor - ok
20:13:05.0219 2960  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
20:13:05.0219 2960  mouclass - ok
20:13:05.0234 2960  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
20:13:05.0234 2960  mouhid - ok
20:13:05.0250 2960  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
20:13:05.0250 2960  mountmgr - ok
20:13:05.0344 2960  [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:13:05.0344 2960  MozillaMaintenance - ok
20:13:05.0375 2960  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
20:13:05.0375 2960  mpio - ok
20:13:05.0406 2960  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
20:13:05.0406 2960  mpsdrv - ok
20:13:05.0437 2960  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
20:13:05.0468 2960  MpsSvc - ok
20:13:05.0484 2960  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
20:13:05.0500 2960  MRxDAV - ok
20:13:05.0531 2960  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
20:13:05.0531 2960  mrxsmb - ok
20:13:05.0562 2960  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:13:05.0562 2960  mrxsmb10 - ok
20:13:05.0578 2960  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:13:05.0578 2960  mrxsmb20 - ok
20:13:05.0609 2960  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
20:13:05.0609 2960  msahci - ok
20:13:05.0671 2960  [ A592A054D78750B4D73ABAA4C94DECDF ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
20:13:05.0671 2960  MSCamSvc - ok
20:13:05.0687 2960  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
20:13:05.0687 2960  msdsm - ok
20:13:05.0702 2960  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
20:13:05.0702 2960  MSDTC - ok
20:13:05.0734 2960  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
20:13:05.0734 2960  Msfs - ok
20:13:05.0749 2960  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
20:13:05.0749 2960  mshidkmdf - ok
20:13:05.0780 2960  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
20:13:05.0780 2960  msisadrv - ok
20:13:05.0796 2960  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
20:13:05.0796 2960  MSiSCSI - ok
20:13:05.0812 2960  msiserver - ok
20:13:05.0827 2960  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
20:13:05.0827 2960  MSKSSRV - ok
20:13:05.0843 2960  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
20:13:05.0843 2960  MSPCLOCK - ok
20:13:05.0858 2960  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
20:13:05.0858 2960  MSPQM - ok
20:13:05.0890 2960  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
20:13:05.0890 2960  MsRPC - ok
20:13:05.0905 2960  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
20:13:05.0905 2960  mssmbios - ok
20:13:05.0921 2960  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
20:13:05.0921 2960  MSTEE - ok
20:13:05.0936 2960  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
20:13:05.0936 2960  MTConfig - ok
20:13:05.0952 2960  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
20:13:05.0952 2960  Mup - ok
20:13:05.0983 2960  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
20:13:05.0983 2960  napagent - ok
20:13:06.0014 2960  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
20:13:06.0030 2960  NativeWifiP - ok
20:13:06.0061 2960  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
20:13:06.0077 2960  NDIS - ok
20:13:06.0108 2960  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
20:13:06.0108 2960  NdisCap - ok
20:13:06.0124 2960  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
20:13:06.0124 2960  NdisTapi - ok
20:13:06.0155 2960  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
20:13:06.0155 2960  Ndisuio - ok
20:13:06.0186 2960  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
20:13:06.0186 2960  NdisWan - ok
20:13:06.0202 2960  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
20:13:06.0202 2960  NDProxy - ok
20:13:06.0217 2960  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
20:13:06.0217 2960  NetBIOS - ok
20:13:06.0248 2960  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
20:13:06.0248 2960  NetBT - ok
20:13:06.0264 2960  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
20:13:06.0264 2960  Netlogon - ok
20:13:06.0295 2960  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
20:13:06.0311 2960  Netman - ok
20:13:06.0326 2960  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
20:13:06.0342 2960  netprofm - ok
20:13:06.0358 2960  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:13:06.0373 2960  NetTcpPortSharing - ok
20:13:06.0404 2960  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
20:13:06.0404 2960  nfrd960 - ok
20:13:06.0436 2960  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
20:13:06.0436 2960  NlaSvc - ok
20:13:06.0482 2960  [ 903681BAB213D5F84717C0FC42AFB28A ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
20:13:06.0482 2960  nmwcd - ok
20:13:06.0498 2960  [ EC4C5EBD003E0395BF4EA5A2EFD13CE6 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
20:13:06.0498 2960  nmwcdc - ok
20:13:06.0514 2960  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
20:13:06.0514 2960  Npfs - ok
20:13:06.0529 2960  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
20:13:06.0545 2960  nsi - ok
20:13:06.0545 2960  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
20:13:06.0545 2960  nsiproxy - ok
20:13:06.0592 2960  [ A2F74975097F52A00745F9637451FDD8 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
20:13:06.0623 2960  Ntfs - ok
20:13:06.0638 2960  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
20:13:06.0638 2960  Null - ok
20:13:06.0857 2960  [ 9C1996DD3C0469BC8933321F15709F5A ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:13:06.0935 2960  nvlddmkm - ok
20:13:06.0966 2960  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
20:13:06.0966 2960  nvraid - ok
20:13:07.0013 2960  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
20:13:07.0013 2960  nvstor - ok
20:13:07.0075 2960  [ DFDA089BB2CD0FF7E789E2EF6BA1E4BA ] nvsvc           C:\Windows\system32\nvvsvc.exe
20:13:07.0091 2960  nvsvc - ok
20:13:07.0169 2960  [ E7818CD4FB51284C948D68A7A85A69B8 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
20:13:07.0200 2960  nvUpdatusService - ok
20:13:07.0247 2960  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
20:13:07.0247 2960  nv_agp - ok
20:13:07.0325 2960  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:13:07.0340 2960  odserv - ok
20:13:07.0356 2960  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
20:13:07.0356 2960  ohci1394 - ok
20:13:07.0403 2960  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:13:07.0403 2960  ose - ok
20:13:07.0450 2960  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
20:13:07.0450 2960  p2pimsvc - ok
20:13:07.0481 2960  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
20:13:07.0496 2960  p2psvc - ok
20:13:07.0512 2960  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
20:13:07.0528 2960  Parport - ok
20:13:07.0559 2960  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
20:13:07.0559 2960  partmgr - ok
20:13:07.0574 2960  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
20:13:07.0574 2960  PcaSvc - ok
20:13:07.0590 2960  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
20:13:07.0590 2960  pci - ok
20:13:07.0621 2960  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
20:13:07.0621 2960  pciide - ok
20:13:07.0652 2960  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
20:13:07.0652 2960  pcmcia - ok
20:13:07.0668 2960  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
20:13:07.0668 2960  pcw - ok
20:13:07.0684 2960  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
20:13:07.0699 2960  PEAUTH - ok
20:13:07.0762 2960  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
20:13:07.0777 2960  PeerDistSvc - ok
20:13:07.0840 2960  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
20:13:07.0871 2960  PerfHost - ok
20:13:07.0918 2960  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
20:13:07.0933 2960  pla - ok
20:13:07.0980 2960  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
20:13:07.0980 2960  PlugPlay - ok
20:13:07.0996 2960  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
20:13:07.0996 2960  PNRPAutoReg - ok
20:13:08.0027 2960  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
20:13:08.0027 2960  PNRPsvc - ok
20:13:08.0058 2960  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
20:13:08.0058 2960  PolicyAgent - ok
20:13:08.0074 2960  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
20:13:08.0074 2960  Power - ok
20:13:08.0105 2960  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
20:13:08.0105 2960  PptpMiniport - ok
20:13:08.0120 2960  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
20:13:08.0136 2960  Processor - ok
20:13:08.0167 2960  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
20:13:08.0167 2960  ProfSvc - ok
20:13:08.0183 2960  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:13:08.0183 2960  ProtectedStorage - ok
20:13:08.0230 2960  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
20:13:08.0230 2960  Psched - ok
20:13:08.0276 2960  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
20:13:08.0292 2960  ql2300 - ok
20:13:08.0339 2960  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
20:13:08.0339 2960  ql40xx - ok
20:13:08.0370 2960  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
20:13:08.0386 2960  QWAVE - ok
20:13:08.0386 2960  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
20:13:08.0401 2960  QWAVEdrv - ok
20:13:08.0464 2960  [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
20:13:08.0464 2960  RapiMgr - ok
20:13:08.0479 2960  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
20:13:08.0479 2960  RasAcd - ok
20:13:08.0510 2960  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
20:13:08.0510 2960  RasAgileVpn - ok
20:13:08.0526 2960  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
20:13:08.0526 2960  RasAuto - ok
20:13:08.0557 2960  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
20:13:08.0557 2960  Rasl2tp - ok
20:13:08.0573 2960  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
20:13:08.0573 2960  RasMan - ok
20:13:08.0588 2960  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
20:13:08.0604 2960  RasPppoe - ok
20:13:08.0620 2960  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
20:13:08.0620 2960  RasSstp - ok
20:13:08.0651 2960  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
20:13:08.0666 2960  rdbss - ok
20:13:08.0682 2960  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
20:13:08.0682 2960  rdpbus - ok
20:13:08.0698 2960  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
20:13:08.0698 2960  RDPCDD - ok
20:13:08.0713 2960  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
20:13:08.0729 2960  RDPDR - ok
20:13:08.0744 2960  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
20:13:08.0760 2960  RDPENCDD - ok
20:13:08.0760 2960  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
20:13:08.0760 2960  RDPREFMP - ok
20:13:08.0791 2960  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
20:13:08.0791 2960  RDPWD - ok
20:13:08.0854 2960  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
20:13:08.0854 2960  rdyboost - ok
20:13:08.0869 2960  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
20:13:08.0869 2960  RemoteAccess - ok
20:13:08.0900 2960  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
20:13:08.0900 2960  RemoteRegistry - ok
20:13:08.0916 2960  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
20:13:08.0916 2960  RpcEptMapper - ok
20:13:08.0932 2960  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
20:13:08.0932 2960  RpcLocator - ok
20:13:08.0963 2960  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
20:13:08.0978 2960  RpcSs - ok
20:13:09.0010 2960  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
20:13:09.0010 2960  rspndr - ok
20:13:09.0025 2960  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
20:13:09.0025 2960  s3cap - ok
20:13:09.0041 2960  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
20:13:09.0041 2960  SamSs - ok
20:13:09.0072 2960  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
20:13:09.0072 2960  sbp2port - ok
20:13:09.0088 2960  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
20:13:09.0088 2960  SCardSvr - ok
20:13:09.0119 2960  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
20:13:09.0119 2960  scfilter - ok
20:13:09.0166 2960  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
20:13:09.0181 2960  Schedule - ok
20:13:09.0197 2960  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
20:13:09.0197 2960  SCPolicySvc - ok
20:13:09.0212 2960  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
20:13:09.0228 2960  SDRSVC - ok
20:13:09.0259 2960  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
20:13:09.0259 2960  secdrv - ok
20:13:09.0275 2960  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
20:13:09.0275 2960  seclogon - ok
20:13:09.0290 2960  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
20:13:09.0290 2960  SENS - ok
20:13:09.0306 2960  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
20:13:09.0306 2960  SensrSvc - ok
20:13:09.0322 2960  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
20:13:09.0322 2960  Serenum - ok
20:13:09.0337 2960  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
20:13:09.0337 2960  Serial - ok
20:13:09.0353 2960  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
20:13:09.0353 2960  sermouse - ok
20:13:09.0384 2960  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
20:13:09.0384 2960  SessionEnv - ok
20:13:09.0415 2960  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
20:13:09.0415 2960  sffdisk - ok
20:13:09.0431 2960  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
20:13:09.0431 2960  sffp_mmc - ok
20:13:09.0446 2960  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
20:13:09.0446 2960  sffp_sd - ok
20:13:09.0478 2960  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
20:13:09.0478 2960  sfloppy - ok
20:13:09.0509 2960  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
20:13:09.0509 2960  SharedAccess - ok
20:13:09.0540 2960  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:13:09.0556 2960  ShellHWDetection - ok
20:13:09.0571 2960  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:13:09.0571 2960  SiSRaid2 - ok
20:13:09.0587 2960  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
20:13:09.0602 2960  SiSRaid4 - ok
20:13:09.0665 2960  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
20:13:09.0665 2960  SkypeUpdate - ok
20:13:09.0680 2960  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
20:13:09.0680 2960  Smb - ok
20:13:09.0712 2960  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
20:13:09.0712 2960  SNMPTRAP - ok
20:13:09.0805 2960  [ BA2E864CDC01731A4F144019FB3BF598 ] SNP2UVC         C:\Windows\system32\DRIVERS\snp2uvc.sys
20:13:09.0852 2960  SNP2UVC - ok
20:13:09.0883 2960  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
20:13:09.0883 2960  spldr - ok
20:13:09.0914 2960  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
20:13:09.0914 2960  Spooler - ok
20:13:10.0008 2960  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
20:13:10.0024 2960  sppsvc - ok
20:13:10.0055 2960  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
20:13:10.0055 2960  sppuinotify - ok
20:13:10.0070 2960  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
20:13:10.0086 2960  srv - ok
20:13:10.0102 2960  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
20:13:10.0102 2960  srv2 - ok
20:13:10.0117 2960  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
20:13:10.0117 2960  srvnet - ok
20:13:10.0148 2960  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
20:13:10.0148 2960  SSDPSRV - ok
20:13:10.0164 2960  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
20:13:10.0164 2960  SstpSvc - ok
20:13:10.0180 2960  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
20:13:10.0180 2960  stexstor - ok
20:13:10.0226 2960  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
20:13:10.0242 2960  stisvc - ok
20:13:10.0258 2960  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
20:13:10.0258 2960  storflt - ok
20:13:10.0273 2960  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
20:13:10.0273 2960  StorSvc - ok
20:13:10.0289 2960  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
20:13:10.0289 2960  storvsc - ok
20:13:10.0320 2960  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
20:13:10.0320 2960  swenum - ok
20:13:10.0351 2960  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
20:13:10.0367 2960  swprv - ok
20:13:10.0414 2960  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
20:13:10.0445 2960  SysMain - ok
20:13:10.0476 2960  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:13:10.0476 2960  TabletInputService - ok
20:13:10.0492 2960  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
20:13:10.0507 2960  TapiSrv - ok
20:13:10.0523 2960  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
20:13:10.0523 2960  TBS - ok
20:13:10.0585 2960  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
20:13:10.0616 2960  Tcpip - ok
20:13:10.0663 2960  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
20:13:10.0679 2960  TCPIP6 - ok
20:13:10.0710 2960  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
20:13:10.0710 2960  tcpipreg - ok
20:13:10.0726 2960  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
20:13:10.0741 2960  TDPIPE - ok
20:13:10.0757 2960  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
20:13:10.0757 2960  TDTCP - ok
20:13:10.0788 2960  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
20:13:10.0788 2960  tdx - ok
20:13:10.0819 2960  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
20:13:10.0819 2960  TermDD - ok
20:13:10.0866 2960  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
20:13:10.0882 2960  TermService - ok
20:13:10.0897 2960  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
20:13:10.0913 2960  Themes - ok
20:13:10.0913 2960  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
20:13:10.0913 2960  THREADORDER - ok
20:13:10.0928 2960  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
20:13:10.0928 2960  TrkWks - ok
20:13:10.0991 2960  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:13:10.0991 2960  TrustedInstaller - ok
20:13:11.0022 2960  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
20:13:11.0022 2960  tssecsrv - ok
20:13:11.0069 2960  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
20:13:11.0069 2960  TsUsbFlt - ok
20:13:11.0116 2960  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
20:13:11.0116 2960  tunnel - ok
20:13:11.0147 2960  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
20:13:11.0147 2960  uagp35 - ok
20:13:11.0178 2960  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
20:13:11.0178 2960  udfs - ok
20:13:11.0194 2960  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
20:13:11.0194 2960  UI0Detect - ok
20:13:11.0225 2960  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
20:13:11.0225 2960  uliagpkx - ok
20:13:11.0256 2960  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
20:13:11.0272 2960  umbus - ok
20:13:11.0272 2960  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
20:13:11.0272 2960  UmPass - ok
20:13:11.0318 2960  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
20:13:11.0318 2960  UmRdpService - ok
20:13:11.0334 2960  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
20:13:11.0334 2960  upnphost - ok
20:13:11.0365 2960  [ 7168819F30FE9622284EA19BDE7F8AB4 ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
20:13:11.0381 2960  upperdev - ok
20:13:11.0412 2960  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
20:13:11.0412 2960  usbaudio - ok
20:13:11.0459 2960  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
20:13:11.0459 2960  usbccgp - ok
20:13:11.0506 2960  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
20:13:11.0506 2960  usbcir - ok
20:13:11.0521 2960  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
20:13:11.0521 2960  usbehci - ok
20:13:11.0552 2960  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
20:13:11.0552 2960  usbhub - ok
20:13:11.0584 2960  [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
20:13:11.0584 2960  usbohci - ok
20:13:11.0584 2960  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
20:13:11.0584 2960  usbprint - ok
20:13:11.0615 2960  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
20:13:11.0615 2960  usbscan - ok
20:13:11.0630 2960  [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser          C:\Windows\system32\drivers\usbser.sys
20:13:11.0630 2960  usbser - ok
20:13:11.0646 2960  [ 66C25CB20B2974E0C0CFDAB49FB72A02 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
20:13:11.0646 2960  UsbserFilt - ok
20:13:11.0677 2960  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:13:11.0677 2960  USBSTOR - ok
20:13:11.0708 2960  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
20:13:11.0708 2960  usbuhci - ok
20:13:11.0740 2960  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
20:13:11.0755 2960  usbvideo - ok
20:13:11.0771 2960  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
20:13:11.0786 2960  UxSms - ok
20:13:11.0786 2960  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
20:13:11.0786 2960  VaultSvc - ok
20:13:11.0833 2960  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
20:13:11.0833 2960  vdrvroot - ok
20:13:11.0864 2960  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
20:13:11.0880 2960  vds - ok
20:13:11.0911 2960  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
20:13:11.0911 2960  vga - ok
20:13:11.0927 2960  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
20:13:11.0927 2960  VgaSave - ok
20:13:11.0942 2960  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
20:13:11.0942 2960  vhdmp - ok
20:13:11.0974 2960  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
20:13:11.0974 2960  viaide - ok
20:13:12.0005 2960  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
20:13:12.0005 2960  vmbus - ok
20:13:12.0020 2960  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
20:13:12.0020 2960  VMBusHID - ok
20:13:12.0036 2960  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
20:13:12.0036 2960  volmgr - ok
20:13:12.0083 2960  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
20:13:12.0083 2960  volmgrx - ok
20:13:12.0114 2960  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
20:13:12.0130 2960  volsnap - ok
20:13:12.0161 2960  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
20:13:12.0161 2960  vsmraid - ok
20:13:12.0208 2960  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
20:13:12.0239 2960  VSS - ok
20:13:12.0254 2960  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
20:13:12.0254 2960  vwifibus - ok
20:13:12.0317 2960  [ C366AE91D2CC2C1C25380061D235C36B ] VX3000          C:\Windows\system32\DRIVERS\VX3000.sys
20:13:12.0348 2960  VX3000 - ok
20:13:12.0379 2960  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
20:13:12.0379 2960  W32Time - ok
20:13:12.0410 2960  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
20:13:12.0410 2960  WacomPen - ok
20:13:12.0457 2960  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
20:13:12.0457 2960  WANARP - ok
20:13:12.0473 2960  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
20:13:12.0473 2960  Wanarpv6 - ok
20:13:12.0520 2960  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
20:13:12.0551 2960  wbengine - ok
20:13:12.0566 2960  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
20:13:12.0566 2960  WbioSrvc - ok
20:13:12.0629 2960  [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
20:13:12.0629 2960  WcesComm - ok
20:13:12.0660 2960  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
20:13:12.0676 2960  wcncsvc - ok
20:13:12.0691 2960  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:13:12.0691 2960  WcsPlugInService - ok
20:13:12.0707 2960  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
20:13:12.0707 2960  Wd - ok
20:13:12.0722 2960  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
20:13:12.0738 2960  Wdf01000 - ok
20:13:12.0738 2960  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
20:13:12.0754 2960  WdiServiceHost - ok
20:13:12.0754 2960  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
20:13:12.0754 2960  WdiSystemHost - ok
20:13:12.0785 2960  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
20:13:12.0800 2960  WebClient - ok
20:13:12.0816 2960  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
20:13:12.0816 2960  Wecsvc - ok
20:13:12.0832 2960  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
20:13:12.0832 2960  wercplsupport - ok
20:13:12.0863 2960  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
20:13:12.0863 2960  WerSvc - ok
20:13:12.0878 2960  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
20:13:12.0878 2960  WfpLwf - ok
20:13:12.0894 2960  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
20:13:12.0894 2960  WIMMount - ok
20:13:12.0910 2960  WinDefend - ok
20:13:12.0910 2960  WinHttpAutoProxySvc - ok
20:13:12.0956 2960  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
20:13:12.0956 2960  Winmgmt - ok
20:13:13.0019 2960  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
20:13:13.0050 2960  WinRM - ok
20:13:13.0097 2960  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUSB.SYS
20:13:13.0097 2960  WinUsb - ok
20:13:13.0128 2960  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
20:13:13.0159 2960  Wlansvc - ok
20:13:13.0190 2960  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
20:13:13.0190 2960  WmiAcpi - ok
20:13:13.0206 2960  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
20:13:13.0206 2960  wmiApSrv - ok
20:13:13.0222 2960  WMPNetworkSvc - ok
20:13:13.0253 2960  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
20:13:13.0253 2960  WPCSvc - ok
20:13:13.0284 2960  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
20:13:13.0284 2960  WPDBusEnum - ok
20:13:13.0315 2960  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
20:13:13.0315 2960  ws2ifsl - ok
20:13:13.0331 2960  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
20:13:13.0331 2960  wscsvc - ok
20:13:13.0331 2960  WSearch - ok
20:13:13.0409 2960  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
20:13:13.0440 2960  wuauserv - ok
20:13:13.0456 2960  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
20:13:13.0456 2960  WudfPf - ok
20:13:13.0502 2960  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
20:13:13.0502 2960  WUDFRd - ok
20:13:13.0518 2960  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
20:13:13.0534 2960  wudfsvc - ok
20:13:13.0549 2960  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
20:13:13.0549 2960  WwanSvc - ok
20:13:13.0565 2960  ================ Scan global ===============================
20:13:13.0580 2960  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:13:13.0612 2960  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:13:13.0627 2960  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:13:13.0643 2960  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:13:13.0658 2960  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:13:13.0674 2960  [Global] - ok
20:13:13.0674 2960  ================ Scan MBR ==================================
20:13:13.0674 2960  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:13:13.0877 2960  \Device\Harddisk0\DR0 - ok
20:13:13.0877 2960  ================ Scan VBR ==================================
20:13:13.0892 2960  [ 009D32293B3E867DE611F771997D6AAF ] \Device\Harddisk0\DR0\Partition1
20:13:13.0892 2960  \Device\Harddisk0\DR0\Partition1 - ok
20:13:13.0892 2960  [ 85B473E9ADFA30308613C9C4112E48AD ] \Device\Harddisk0\DR0\Partition2
20:13:13.0892 2960  \Device\Harddisk0\DR0\Partition2 - ok
20:13:13.0892 2960  ============================================================
20:13:13.0892 2960  Scan finished
20:13:13.0892 2960  ============================================================
20:13:13.0892 1248  Detected object count: 0
20:13:13.0908 1248  Actual detected object count: 0
20:26:37.0169 2020  ============================================================
20:26:37.0169 2020  Scan started
20:26:37.0169 2020  Mode: Manual; SigCheck; TDLFS; 
20:26:37.0169 2020  ============================================================
20:26:37.0294 2020  ================ Scan system memory ========================
20:26:37.0294 2020  System memory - ok
20:26:37.0294 2020  ================ Scan services =============================
         

Alt 25.09.2012, 19:53   #32
hoswik
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



FALSCH! Mache neu.
__________________


Geändert von hoswik (25.09.2012 um 20:09 Uhr) Grund: Mislungen

Alt 25.09.2012, 20:03   #33
hoswik
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Hier ist der Rest.

Code:
ATTFilter
 20:26:37.0434 2020  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
20:26:37.0512 2020  1394ohci - ok
20:26:37.0575 2020  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
20:26:37.0590 2020  ACDaemon - ok
20:26:37.0621 2020  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
20:26:37.0637 2020  ACPI - ok
20:26:37.0653 2020  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
20:26:37.0731 2020  AcpiPmi - ok
20:26:37.0777 2020  [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:26:37.0793 2020  AdobeARMservice - ok
20:26:37.0902 2020  [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:26:37.0918 2020  AdobeFlashPlayerUpdateSvc - ok
20:26:37.0933 2020  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
20:26:37.0965 2020  adp94xx - ok
20:26:37.0965 2020  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
20:26:37.0980 2020  adpahci - ok
20:26:37.0996 2020  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
20:26:38.0011 2020  adpu320 - ok
20:26:38.0027 2020  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
20:26:38.0167 2020  AeLookupSvc - ok
20:26:38.0214 2020  [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc             C:\Windows\syswow64\drivers\Afc.sys
20:26:38.0214 2020  Afc - ok
20:26:38.0261 2020  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
20:26:38.0308 2020  AFD - ok
20:26:38.0323 2020  AFS - ok
20:26:38.0339 2020  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
20:26:38.0355 2020  agp440 - ok
20:26:38.0370 2020  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
20:26:38.0433 2020  ALG - ok
20:26:38.0448 2020  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
20:26:38.0464 2020  aliide - ok
20:26:38.0479 2020  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
20:26:38.0479 2020  amdide - ok
20:26:38.0511 2020  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
20:26:38.0542 2020  AmdK8 - ok
20:26:38.0557 2020  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
20:26:38.0589 2020  AmdPPM - ok
20:26:38.0604 2020  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
20:26:38.0620 2020  amdsata - ok
20:26:38.0635 2020  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
20:26:38.0635 2020  amdsbs - ok
20:26:38.0651 2020  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
20:26:38.0667 2020  amdxata - ok
20:26:38.0698 2020  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
20:26:38.0745 2020  AppID - ok
20:26:38.0776 2020  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
20:26:38.0823 2020  AppIDSvc - ok
20:26:38.0854 2020  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
20:26:38.0901 2020  Appinfo - ok
20:26:38.0932 2020  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
20:26:38.0963 2020  AppMgmt - ok
20:26:38.0994 2020  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
20:26:38.0994 2020  arc - ok
20:26:39.0010 2020  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
20:26:39.0025 2020  arcsas - ok
20:26:39.0057 2020  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
20:26:39.0088 2020  AsyncMac - ok
20:26:39.0119 2020  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
20:26:39.0135 2020  atapi - ok
20:26:39.0166 2020  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:26:39.0228 2020  AudioEndpointBuilder - ok
20:26:39.0244 2020  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
20:26:39.0291 2020  AudioSrv - ok
20:26:39.0306 2020  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
20:26:39.0337 2020  AxInstSV - ok
20:26:39.0369 2020  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
20:26:39.0415 2020  b06bdrv - ok
20:26:39.0431 2020  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
20:26:39.0462 2020  b57nd60a - ok
20:26:39.0493 2020  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
20:26:39.0509 2020  BDESVC - ok
20:26:39.0509 2020  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
20:26:39.0556 2020  Beep - ok
20:26:39.0603 2020  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
20:26:39.0649 2020  BFE - ok
20:26:39.0681 2020  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
20:26:39.0727 2020  BITS - ok
20:26:39.0743 2020  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
20:26:39.0774 2020  blbdrive - ok
20:26:39.0790 2020  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
20:26:39.0805 2020  bowser - ok
20:26:39.0837 2020  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:26:39.0883 2020  BrFiltLo - ok
20:26:39.0899 2020  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:26:39.0915 2020  BrFiltUp - ok
20:26:39.0946 2020  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
20:26:39.0977 2020  Browser - ok
20:26:39.0993 2020  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
20:26:40.0039 2020  Brserid - ok
20:26:40.0039 2020  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
20:26:40.0071 2020  BrSerWdm - ok
20:26:40.0086 2020  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
20:26:40.0117 2020  BrUsbMdm - ok
20:26:40.0133 2020  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
20:26:40.0149 2020  BrUsbSer - ok
20:26:40.0164 2020  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
20:26:40.0195 2020  BTHMODEM - ok
20:26:40.0227 2020  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
20:26:40.0273 2020  bthserv - ok
20:26:40.0289 2020  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
20:26:40.0320 2020  cdfs - ok
20:26:40.0351 2020  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
20:26:40.0367 2020  cdrom - ok
20:26:40.0398 2020  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
20:26:40.0445 2020  CertPropSvc - ok
20:26:40.0476 2020  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
20:26:40.0492 2020  circlass - ok
20:26:40.0523 2020  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
20:26:40.0539 2020  CLFS - ok
20:26:40.0585 2020  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:26:40.0601 2020  clr_optimization_v2.0.50727_32 - ok
20:26:40.0648 2020  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:26:40.0648 2020  clr_optimization_v2.0.50727_64 - ok
20:26:40.0710 2020  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:26:40.0710 2020  clr_optimization_v4.0.30319_32 - ok
20:26:40.0726 2020  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:26:40.0741 2020  clr_optimization_v4.0.30319_64 - ok
20:26:40.0757 2020  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
20:26:40.0788 2020  CmBatt - ok
20:26:40.0804 2020  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
20:26:40.0804 2020  cmdide - ok
20:26:40.0851 2020  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
20:26:40.0897 2020  CNG - ok
20:26:40.0913 2020  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
20:26:40.0929 2020  Compbatt - ok
20:26:40.0960 2020  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
20:26:40.0975 2020  CompositeBus - ok
20:26:40.0991 2020  COMSysApp - ok
20:26:40.0991 2020  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
20:26:41.0007 2020  crcdisk - ok
20:26:41.0038 2020  [ 4F5414602E2544A4554D95517948B705 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
20:26:41.0085 2020  CryptSvc - ok
20:26:41.0116 2020  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
20:26:41.0178 2020  CSC - ok
20:26:41.0209 2020  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
20:26:41.0241 2020  CscService - ok
20:26:41.0287 2020  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
20:26:41.0334 2020  DcomLaunch - ok
20:26:41.0365 2020  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
20:26:41.0412 2020  defragsvc - ok
20:26:41.0443 2020  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
20:26:41.0490 2020  DfsC - ok
20:26:41.0521 2020  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
20:26:41.0553 2020  Dhcp - ok
20:26:41.0584 2020  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
20:26:41.0631 2020  discache - ok
20:26:41.0646 2020  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
20:26:41.0662 2020  Disk - ok
20:26:41.0693 2020  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
20:26:41.0740 2020  Dnscache - ok
20:26:41.0755 2020  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
20:26:41.0802 2020  dot3svc - ok
20:26:41.0833 2020  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
20:26:41.0880 2020  DPS - ok
20:26:41.0896 2020  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
20:26:41.0911 2020  drmkaud - ok
20:26:41.0958 2020  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
20:26:41.0974 2020  DXGKrnl - ok
20:26:41.0989 2020  [ 099E01A94167CA8BDA2CF72037AD0E28 ] e1express       C:\Windows\system32\DRIVERS\e1e6232e.sys
20:26:42.0005 2020  e1express - ok
20:26:42.0036 2020  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
20:26:42.0083 2020  EapHost - ok
20:26:42.0145 2020  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
20:26:42.0192 2020  ebdrv - ok
20:26:42.0223 2020  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
20:26:42.0270 2020  EFS - ok
20:26:42.0317 2020  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
20:26:42.0379 2020  ehRecvr - ok
20:26:42.0411 2020  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
20:26:42.0442 2020  ehSched - ok
20:26:42.0473 2020  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
20:26:42.0489 2020  elxstor - ok
20:26:42.0520 2020  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
20:26:42.0551 2020  ErrDev - ok
20:26:42.0582 2020  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
20:26:42.0629 2020  EventSystem - ok
20:26:42.0660 2020  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
20:26:42.0691 2020  exfat - ok
20:26:42.0723 2020  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
20:26:42.0754 2020  fastfat - ok
20:26:42.0801 2020  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
20:26:42.0832 2020  Fax - ok
20:26:42.0847 2020  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
20:26:42.0863 2020  fdc - ok
20:26:42.0879 2020  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
20:26:42.0941 2020  fdPHost - ok
20:26:42.0957 2020  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
20:26:42.0988 2020  FDResPub - ok
20:26:43.0019 2020  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
20:26:43.0019 2020  FileInfo - ok
20:26:43.0035 2020  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
20:26:43.0081 2020  Filetrace - ok
20:26:43.0097 2020  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
20:26:43.0113 2020  flpydisk - ok
20:26:43.0144 2020  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
20:26:43.0159 2020  FltMgr - ok
20:26:43.0191 2020  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
20:26:43.0237 2020  FontCache - ok
20:26:43.0284 2020  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:26:43.0300 2020  FontCache3.0.0.0 - ok
20:26:43.0331 2020  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
20:26:43.0331 2020  FsDepends - ok
20:26:43.0362 2020  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
20:26:43.0378 2020  Fs_Rec - ok
20:26:43.0393 2020  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
20:26:43.0425 2020  fvevol - ok
20:26:43.0425 2020  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
20:26:43.0440 2020  gagp30kx - ok
20:26:43.0440 2020  GEARAspiWDM - ok
20:26:43.0487 2020  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
20:26:43.0534 2020  gpsvc - ok
20:26:43.0627 2020  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:26:43.0627 2020  gupdate - ok
20:26:43.0643 2020  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:26:43.0659 2020  gupdatem - ok
20:26:43.0659 2020  [ C1B577B2169900F4CF7190C39F085794 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:26:43.0674 2020  gusvc - ok
20:26:43.0705 2020  [ 9E308D0BC9A9CF6E50AA25639C9CCCB3 ] HCW85BDA        C:\Windows\system32\drivers\HCW85BDA.sys
20:26:43.0752 2020  HCW85BDA - ok
20:26:43.0768 2020  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
20:26:43.0783 2020  hcw85cir - ok
20:26:43.0815 2020  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:26:43.0846 2020  HdAudAddService - ok
20:26:43.0877 2020  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
20:26:43.0893 2020  HDAudBus - ok
20:26:43.0924 2020  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
20:26:43.0955 2020  HidBatt - ok
20:26:43.0971 2020  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
20:26:44.0002 2020  HidBth - ok
20:26:44.0017 2020  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
20:26:44.0049 2020  HidIr - ok
20:26:44.0064 2020  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
20:26:44.0111 2020  hidserv - ok
20:26:44.0142 2020  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
20:26:44.0158 2020  HidUsb - ok
20:26:44.0173 2020  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
20:26:44.0220 2020  hkmsvc - ok
20:26:44.0236 2020  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:26:44.0267 2020  HomeGroupListener - ok
20:26:44.0298 2020  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:26:44.0329 2020  HomeGroupProvider - ok
20:26:44.0361 2020  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
20:26:44.0376 2020  HpSAMD - ok
20:26:44.0407 2020  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
20:26:44.0454 2020  HTTP - ok
20:26:44.0470 2020  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
20:26:44.0485 2020  hwpolicy - ok
20:26:44.0517 2020  [ 4B7423FCC37664954460AC3E71752B62 ] hxctlflt        C:\Windows\system32\Drivers\hxctlflt.sys
20:26:44.0548 2020  hxctlflt - ok
20:26:44.0563 2020  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
20:26:44.0579 2020  i8042prt - ok
20:26:44.0595 2020  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
20:26:44.0610 2020  iaStorV - ok
20:26:44.0673 2020  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:26:44.0688 2020  idsvc - ok
20:26:44.0719 2020  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
20:26:44.0719 2020  iirsp - ok
20:26:44.0766 2020  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
20:26:44.0813 2020  IKEEXT - ok
20:26:44.0844 2020  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
20:26:44.0844 2020  intelide - ok
20:26:44.0875 2020  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
20:26:44.0891 2020  intelppm - ok
20:26:44.0922 2020  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
20:26:44.0953 2020  IPBusEnum - ok
20:26:44.0985 2020  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:26:45.0031 2020  IpFilterDriver - ok
20:26:45.0063 2020  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
20:26:45.0094 2020  iphlpsvc - ok
20:26:45.0125 2020  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
20:26:45.0156 2020  IPMIDRV - ok
20:26:45.0172 2020  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
20:26:45.0219 2020  IPNAT - ok
20:26:45.0234 2020  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
20:26:45.0265 2020  IRENUM - ok
20:26:45.0281 2020  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
20:26:45.0281 2020  isapnp - ok
20:26:45.0312 2020  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
20:26:45.0328 2020  iScsiPrt - ok
20:26:45.0343 2020  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
20:26:45.0359 2020  kbdclass - ok
20:26:45.0375 2020  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
20:26:45.0390 2020  kbdhid - ok
20:26:45.0421 2020  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
20:26:45.0437 2020  KeyIso - ok
20:26:45.0468 2020  [ 07071C1E3CD8F0F9114AAC8B072CA1E5 ] KMWDFILTER      C:\Windows\system32\DRIVERS\KMWDFILTER.sys
20:26:45.0468 2020  KMWDFILTER - ok
20:26:45.0499 2020  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
20:26:45.0515 2020  KSecDD - ok
20:26:45.0546 2020  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
20:26:45.0562 2020  KSecPkg - ok
20:26:45.0577 2020  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
20:26:45.0624 2020  ksthunk - ok
20:26:45.0655 2020  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
20:26:45.0702 2020  KtmRm - ok
20:26:45.0733 2020  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
20:26:45.0780 2020  LanmanServer - ok
20:26:45.0796 2020  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:26:45.0843 2020  LanmanWorkstation - ok
20:26:45.0874 2020  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
20:26:45.0905 2020  lltdio - ok
20:26:45.0936 2020  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
20:26:45.0983 2020  lltdsvc - ok
20:26:45.0999 2020  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
20:26:46.0030 2020  lmhosts - ok
20:26:46.0045 2020  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
20:26:46.0061 2020  LSI_FC - ok
20:26:46.0077 2020  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
20:26:46.0077 2020  LSI_SAS - ok
20:26:46.0092 2020  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:26:46.0092 2020  LSI_SAS2 - ok
20:26:46.0108 2020  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:26:46.0108 2020  LSI_SCSI - ok
20:26:46.0123 2020  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
20:26:46.0170 2020  luafv - ok
20:26:46.0201 2020  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
20:26:46.0233 2020  Mcx2Svc - ok
20:26:46.0248 2020  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
20:26:46.0264 2020  megasas - ok
20:26:46.0279 2020  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
20:26:46.0295 2020  MegaSR - ok
20:26:46.0357 2020  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
20:26:46.0373 2020  Microsoft Office Groove Audit Service - ok
20:26:46.0389 2020  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
20:26:46.0435 2020  MMCSS - ok
20:26:46.0467 2020  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
20:26:46.0498 2020  Modem - ok
20:26:46.0545 2020  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
20:26:46.0560 2020  monitor - ok
20:26:46.0591 2020  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
20:26:46.0591 2020  mouclass - ok
20:26:46.0623 2020  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
20:26:46.0638 2020  mouhid - ok
20:26:46.0669 2020  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
20:26:46.0685 2020  mountmgr - ok
20:26:46.0732 2020  [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:26:46.0732 2020  MozillaMaintenance - ok
20:26:46.0763 2020  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
20:26:46.0779 2020  mpio - ok
20:26:46.0810 2020  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
20:26:46.0841 2020  mpsdrv - ok
20:26:46.0872 2020  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
20:26:46.0919 2020  MpsSvc - ok
20:26:46.0950 2020  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
20:26:46.0981 2020  MRxDAV - ok
20:26:47.0013 2020  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
20:26:47.0044 2020  mrxsmb - ok
20:26:47.0075 2020  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:26:47.0106 2020  mrxsmb10 - ok
20:26:47.0122 2020  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:26:47.0137 2020  mrxsmb20 - ok
20:26:47.0169 2020  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
20:26:47.0184 2020  msahci - ok
20:26:47.0215 2020  [ A592A054D78750B4D73ABAA4C94DECDF ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
20:26:47.0231 2020  MSCamSvc - ok
20:26:47.0247 2020  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
20:26:47.0262 2020  msdsm - ok
20:26:47.0278 2020  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
20:26:47.0309 2020  MSDTC - ok
20:26:47.0340 2020  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
20:26:47.0371 2020  Msfs - ok
20:26:47.0371 2020  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
20:26:47.0418 2020  mshidkmdf - ok
20:26:47.0449 2020  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
20:26:47.0465 2020  msisadrv - ok
20:26:47.0496 2020  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
20:26:47.0527 2020  MSiSCSI - ok
20:26:47.0527 2020  msiserver - ok
20:26:47.0559 2020  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
20:26:47.0605 2020  MSKSSRV - ok
20:26:47.0621 2020  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
20:26:47.0652 2020  MSPCLOCK - ok
20:26:47.0683 2020  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
20:26:47.0715 2020  MSPQM - ok
20:26:47.0746 2020  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
20:26:47.0761 2020  MsRPC - ok
20:26:47.0793 2020  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
20:26:47.0808 2020  mssmbios - ok
20:26:47.0824 2020  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
20:26:47.0855 2020  MSTEE - ok
20:26:47.0886 2020  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
20:26:47.0902 2020  MTConfig - ok
20:26:47.0917 2020  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
20:26:47.0933 2020  Mup - ok
20:26:47.0964 2020  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
20:26:48.0011 2020  napagent - ok
20:26:48.0027 2020  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
20:26:48.0058 2020  NativeWifiP - ok
20:26:48.0089 2020  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
20:26:48.0105 2020  NDIS - ok
20:26:48.0120 2020  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
20:26:48.0167 2020  NdisCap - ok
20:26:48.0198 2020  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
20:26:48.0245 2020  NdisTapi - ok
20:26:48.0261 2020  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
20:26:48.0307 2020  Ndisuio - ok
20:26:48.0339 2020  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
20:26:48.0385 2020  NdisWan - ok
20:26:48.0401 2020  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
20:26:48.0448 2020  NDProxy - ok
20:26:48.0463 2020  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
20:26:48.0510 2020  NetBIOS - ok
20:26:48.0541 2020  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
20:26:48.0588 2020  NetBT - ok
20:26:48.0604 2020  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
20:26:48.0604 2020  Netlogon - ok
20:26:48.0635 2020  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
20:26:48.0682 2020  Netman - ok
20:26:48.0713 2020  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
20:26:48.0760 2020  netprofm - ok
20:26:48.0791 2020  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:26:48.0791 2020  NetTcpPortSharing - ok
20:26:48.0807 2020  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
20:26:48.0822 2020  nfrd960 - ok
20:26:48.0853 2020  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
20:26:48.0900 2020  NlaSvc - ok
20:26:48.0916 2020  [ 903681BAB213D5F84717C0FC42AFB28A ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
20:26:48.0963 2020  nmwcd - ok
20:26:48.0978 2020  [ EC4C5EBD003E0395BF4EA5A2EFD13CE6 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
20:26:49.0009 2020  nmwcdc - ok
20:26:49.0025 2020  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
20:26:49.0056 2020  Npfs - ok
20:26:49.0072 2020  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
20:26:49.0134 2020  nsi - ok
20:26:49.0150 2020  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
20:26:49.0197 2020  nsiproxy - ok
20:26:49.0243 2020  [ A2F74975097F52A00745F9637451FDD8 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
20:26:49.0275 2020  Ntfs - ok
20:26:49.0290 2020  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
20:26:49.0337 2020  Null - ok
20:26:49.0540 2020  [ 9C1996DD3C0469BC8933321F15709F5A ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:26:49.0743 2020  nvlddmkm - ok
20:26:49.0774 2020  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
20:26:49.0789 2020  nvraid - ok
20:26:49.0821 2020  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
20:26:49.0836 2020  nvstor - ok
20:26:49.0867 2020  [ DFDA089BB2CD0FF7E789E2EF6BA1E4BA ] nvsvc           C:\Windows\system32\nvvsvc.exe
20:26:49.0883 2020  nvsvc - ok
20:26:49.0961 2020  [ E7818CD4FB51284C948D68A7A85A69B8 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
20:26:49.0992 2020  nvUpdatusService - ok
20:26:50.0023 2020  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
20:26:50.0039 2020  nv_agp - ok
20:26:50.0117 2020  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:26:50.0133 2020  odserv - ok
20:26:50.0164 2020  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
20:26:50.0179 2020  ohci1394 - ok
20:26:50.0211 2020  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:26:50.0226 2020  ose - ok
20:26:50.0242 2020  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
20:26:50.0289 2020  p2pimsvc - ok
20:26:50.0304 2020  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
20:26:50.0320 2020  p2psvc - ok
20:26:50.0351 2020  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
20:26:50.0367 2020  Parport - ok
20:26:50.0382 2020  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
20:26:50.0398 2020  partmgr - ok
20:26:50.0413 2020  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
20:26:50.0445 2020  PcaSvc - ok
20:26:50.0460 2020  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
20:26:50.0476 2020  pci - ok
20:26:50.0491 2020  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
20:26:50.0507 2020  pciide - ok
20:26:50.0538 2020  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
20:26:50.0554 2020  pcmcia - ok
20:26:50.0554 2020  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
20:26:50.0569 2020  pcw - ok
20:26:50.0585 2020  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
20:26:50.0647 2020  PEAUTH - ok
20:26:50.0694 2020  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
20:26:50.0725 2020  PeerDistSvc - ok
20:26:50.0788 2020  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
20:26:50.0803 2020  PerfHost - ok
20:26:50.0850 2020  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
20:26:50.0913 2020  pla - ok
20:26:50.0959 2020  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
20:26:50.0975 2020  PlugPlay - ok
20:26:51.0006 2020  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
20:26:51.0022 2020  PNRPAutoReg - ok
20:26:51.0053 2020  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
20:26:51.0069 2020  PNRPsvc - ok
20:26:51.0100 2020  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
20:26:51.0147 2020  PolicyAgent - ok
20:26:51.0178 2020  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
20:26:51.0225 2020  Power - ok
20:26:51.0240 2020  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
20:26:51.0271 2020  PptpMiniport - ok
20:26:51.0287 2020  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
20:26:51.0318 2020  Processor - ok
20:26:51.0349 2020  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
20:26:51.0365 2020  ProfSvc - ok
20:26:51.0381 2020  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:26:51.0396 2020  ProtectedStorage - ok
20:26:51.0412 2020  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
20:26:51.0459 2020  Psched - ok
20:26:51.0505 2020  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
20:26:51.0537 2020  ql2300 - ok
20:26:51.0568 2020  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
20:26:51.0568 2020  ql40xx - ok
20:26:51.0599 2020  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
20:26:51.0630 2020  QWAVE - ok
20:26:51.0646 2020  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
20:26:51.0661 2020  QWAVEdrv - ok
20:26:51.0693 2020  [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
20:26:51.0708 2020  RapiMgr - ok
20:26:51.0724 2020  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
20:26:51.0771 2020  RasAcd - ok
20:26:51.0802 2020  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
20:26:51.0849 2020  RasAgileVpn - ok
20:26:51.0864 2020  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
20:26:51.0895 2020  RasAuto - ok
20:26:51.0927 2020  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
20:26:51.0973 2020  Rasl2tp - ok
20:26:51.0989 2020  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
20:26:52.0051 2020  RasMan - ok
20:26:52.0067 2020  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
20:26:52.0114 2020  RasPppoe - ok
20:26:52.0129 2020  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
20:26:52.0176 2020  RasSstp - ok
20:26:52.0207 2020  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
20:26:52.0254 2020  rdbss - ok
20:26:52.0285 2020  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
20:26:52.0301 2020  rdpbus - ok
20:26:52.0301 2020  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
20:26:52.0348 2020  RDPCDD - ok
20:26:52.0379 2020  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
20:26:52.0395 2020  RDPDR - ok
20:26:52.0410 2020  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
20:26:52.0457 2020  RDPENCDD - ok
20:26:52.0457 2020  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
20:26:52.0488 2020  RDPREFMP - ok
20:26:52.0519 2020  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
20:26:52.0582 2020  RDPWD - ok
20:26:52.0613 2020  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
20:26:52.0629 2020  rdyboost - ok
20:26:52.0644 2020  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
20:26:52.0691 2020  RemoteAccess - ok
20:26:52.0722 2020  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
20:26:52.0753 2020  RemoteRegistry - ok
20:26:52.0769 2020  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
20:26:52.0816 2020  RpcEptMapper - ok
20:26:52.0831 2020  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
20:26:52.0863 2020  RpcLocator - ok
20:26:52.0878 2020  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
20:26:52.0925 2020  RpcSs - ok
20:26:52.0941 2020  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
20:26:52.0987 2020  rspndr - ok
20:26:53.0019 2020  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
20:26:53.0050 2020  s3cap - ok
20:26:53.0065 2020  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
20:26:53.0081 2020  SamSs - ok
20:26:53.0097 2020  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
20:26:53.0112 2020  sbp2port - ok
20:26:53.0128 2020  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
20:26:53.0175 2020  SCardSvr - ok
20:26:53.0206 2020  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
20:26:53.0253 2020  scfilter - ok
20:26:53.0299 2020  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
20:26:53.0346 2020  Schedule - ok
20:26:53.0377 2020  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
20:26:53.0409 2020  SCPolicySvc - ok
20:26:53.0424 2020  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
20:26:53.0455 2020  SDRSVC - ok
20:26:53.0487 2020  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
20:26:53.0518 2020  secdrv - ok
20:26:53.0533 2020  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
20:26:53.0580 2020  seclogon - ok
20:26:53.0611 2020  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
20:26:53.0658 2020  SENS - ok
20:26:53.0689 2020  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
20:26:53.0705 2020  SensrSvc - ok
20:26:53.0721 2020  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
20:26:53.0721 2020  Serenum - ok
20:26:53.0736 2020  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
20:26:53.0767 2020  Serial - ok
20:26:53.0783 2020  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
20:26:53.0799 2020  sermouse - ok
20:26:53.0814 2020  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
20:26:53.0845 2020  SessionEnv - ok
20:26:53.0877 2020  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
20:26:53.0892 2020  sffdisk - ok
20:26:53.0923 2020  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
20:26:53.0939 2020  sffp_mmc - ok
20:26:53.0955 2020  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
20:26:53.0986 2020  sffp_sd - ok
20:26:54.0001 2020  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
20:26:54.0017 2020  sfloppy - ok
20:26:54.0064 2020  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
20:26:54.0111 2020  SharedAccess - ok
20:26:54.0142 2020  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:26:54.0189 2020  ShellHWDetection - ok
20:26:54.0220 2020  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:26:54.0235 2020  SiSRaid2 - ok
20:26:54.0251 2020  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
20:26:54.0251 2020  SiSRaid4 - ok
20:26:54.0313 2020  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
20:26:54.0329 2020  SkypeUpdate - ok
20:26:54.0345 2020  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
20:26:54.0391 2020  Smb - ok
20:26:54.0423 2020  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
20:26:54.0438 2020  SNMPTRAP - ok
20:26:54.0501 2020  [ BA2E864CDC01731A4F144019FB3BF598 ] SNP2UVC         C:\Windows\system32\DRIVERS\snp2uvc.sys
20:26:54.0547 2020  SNP2UVC - ok
20:26:54.0579 2020  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
20:26:54.0594 2020  spldr - ok
20:26:54.0625 2020  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
20:26:54.0657 2020  Spooler - ok
20:26:54.0750 2020  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
20:26:54.0828 2020  sppsvc - ok
20:26:54.0859 2020  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
20:26:54.0906 2020  sppuinotify - ok
20:26:54.0953 2020  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
20:26:54.0969 2020  srv - ok
20:26:55.0000 2020  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
20:26:55.0015 2020  srv2 - ok
20:26:55.0047 2020  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
20:26:55.0062 2020  srvnet - ok
20:26:55.0093 2020  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
20:26:55.0140 2020  SSDPSRV - ok
20:26:55.0140 2020  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
20:26:55.0171 2020  SstpSvc - ok
20:26:55.0203 2020  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
20:26:55.0203 2020  stexstor - ok
20:26:55.0234 2020  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
20:26:55.0281 2020  stisvc - ok
20:26:55.0296 2020  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
20:26:55.0312 2020  storflt - ok
20:26:55.0343 2020  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
20:26:55.0359 2020  StorSvc - ok
20:26:55.0374 2020  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
20:26:55.0390 2020  storvsc - ok
20:26:55.0405 2020  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
20:26:55.0421 2020  swenum - ok
20:26:55.0452 2020  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
20:26:55.0515 2020  swprv - ok
20:26:55.0577 2020  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
20:26:55.0624 2020  SysMain - ok
20:26:55.0639 2020  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:26:55.0671 2020  TabletInputService - ok
20:26:55.0702 2020  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
20:26:55.0749 2020  TapiSrv - ok
20:26:55.0780 2020  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
20:26:55.0811 2020  TBS - ok
20:26:55.0873 2020  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
20:26:55.0905 2020  Tcpip - ok
20:26:55.0951 2020  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
20:26:55.0983 2020  TCPIP6 - ok
20:26:56.0014 2020  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
20:26:56.0045 2020  tcpipreg - ok
20:26:56.0076 2020  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
20:26:56.0107 2020  TDPIPE - ok
20:26:56.0123 2020  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
20:26:56.0139 2020  TDTCP - ok
20:26:56.0170 2020  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
20:26:56.0201 2020  tdx - ok
20:26:56.0232 2020  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
20:26:56.0248 2020  TermDD - ok
20:26:56.0295 2020  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
20:26:56.0341 2020  TermService - ok
20:26:56.0357 2020  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
20:26:56.0388 2020  Themes - ok
20:26:56.0404 2020  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
20:26:56.0451 2020  THREADORDER - ok
20:26:56.0451 2020  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
20:26:56.0497 2020  TrkWks - ok
20:26:56.0544 2020  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:26:56.0591 2020  TrustedInstaller - ok
20:26:56.0622 2020  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
20:26:56.0653 2020  tssecsrv - ok
20:26:56.0669 2020  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
20:26:56.0700 2020  TsUsbFlt - ok
20:26:56.0731 2020  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
20:26:56.0778 2020  tunnel - ok
20:26:56.0809 2020  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
20:26:56.0809 2020  uagp35 - ok
20:26:56.0841 2020  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
20:26:56.0872 2020  udfs - ok
20:26:56.0903 2020  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
20:26:56.0919 2020  UI0Detect - ok
20:26:56.0934 2020  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
20:26:56.0950 2020  uliagpkx - ok
20:26:56.0965 2020  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
20:26:56.0997 2020  umbus - ok
20:26:57.0028 2020  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
20:26:57.0028 2020  UmPass - ok
20:26:57.0059 2020  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
20:26:57.0090 2020  UmRdpService - ok
20:26:57.0121 2020  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
20:26:57.0168 2020  upnphost - ok
20:26:57.0184 2020  [ 7168819F30FE9622284EA19BDE7F8AB4 ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
20:26:57.0215 2020  upperdev - ok
20:26:57.0246 2020  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
20:26:57.0262 2020  usbaudio - ok
20:26:57.0293 2020  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
20:26:57.0340 2020  usbccgp - ok
20:26:57.0355 2020  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
20:26:57.0387 2020  usbcir - ok
20:26:57.0402 2020  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
20:26:57.0433 2020  usbehci - ok
20:26:57.0465 2020  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
20:26:57.0496 2020  usbhub - ok
20:26:57.0511 2020  [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
20:26:57.0527 2020  usbohci - ok
20:26:57.0543 2020  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
20:26:57.0558 2020  usbprint - ok
20:26:57.0589 2020  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
20:26:57.0605 2020  usbscan - ok
20:26:57.0605 2020  [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser          C:\Windows\system32\drivers\usbser.sys
20:26:57.0652 2020  usbser - ok
20:26:57.0652 2020  [ 66C25CB20B2974E0C0CFDAB49FB72A02 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
20:26:57.0699 2020  UsbserFilt - ok
20:26:57.0730 2020  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:26:57.0761 2020  USBSTOR - ok
20:26:57.0777 2020  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
20:26:57.0792 2020  usbuhci - ok
20:26:57.0839 2020  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
20:26:57.0870 2020  usbvideo - ok
20:26:57.0886 2020  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
20:26:57.0917 2020  UxSms - ok
20:26:57.0933 2020  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
20:26:57.0948 2020  VaultSvc - ok
20:26:57.0979 2020  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
20:26:57.0995 2020  vdrvroot - ok
20:26:58.0026 2020  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
20:26:58.0073 2020  vds - ok
20:26:58.0104 2020  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
20:26:58.0120 2020  vga - ok
20:26:58.0135 2020  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
20:26:58.0182 2020  VgaSave - ok
20:26:58.0213 2020  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
20:26:58.0213 2020  vhdmp - ok
20:26:58.0245 2020  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
20:26:58.0260 2020  viaide - ok
20:26:58.0291 2020  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
20:26:58.0291 2020  vmbus - ok
20:26:58.0307 2020  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
20:26:58.0338 2020  VMBusHID - ok
20:26:58.0354 2020  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
20:26:58.0369 2020  volmgr - ok
20:26:58.0401 2020  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
20:26:58.0416 2020  volmgrx - ok
20:26:58.0447 2020  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
20:26:58.0463 2020  volsnap - ok
20:26:58.0494 2020  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
20:26:58.0494 2020  vsmraid - ok
20:26:58.0541 2020  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
20:26:58.0603 2020  VSS - ok
20:26:58.0619 2020  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
20:26:58.0650 2020  vwifibus - ok
20:26:58.0697 2020  [ C366AE91D2CC2C1C25380061D235C36B ] VX3000          C:\Windows\system32\DRIVERS\VX3000.sys
20:26:58.0728 2020  VX3000 - ok
20:26:58.0759 2020  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
20:26:58.0791 2020  W32Time - ok
20:26:58.0822 2020  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
20:26:58.0837 2020  WacomPen - ok
20:26:58.0869 2020  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
20:26:58.0915 2020  WANARP - ok
20:26:58.0915 2020  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
20:26:58.0947 2020  Wanarpv6 - ok
20:26:58.0993 2020  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
20:26:59.0040 2020  wbengine - ok
20:26:59.0056 2020  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
20:26:59.0071 2020  WbioSrvc - ok
20:26:59.0134 2020  [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
20:26:59.0149 2020  WcesComm - ok
20:26:59.0181 2020  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
20:26:59.0212 2020  wcncsvc - ok
20:26:59.0243 2020  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:26:59.0259 2020  WcsPlugInService - ok
20:26:59.0274 2020  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
20:26:59.0290 2020  Wd - ok
20:26:59.0305 2020  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
20:26:59.0337 2020  Wdf01000 - ok
20:26:59.0337 2020  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
20:26:59.0415 2020  WdiServiceHost - ok
20:26:59.0430 2020  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
20:26:59.0446 2020  WdiSystemHost - ok
20:26:59.0477 2020  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
20:26:59.0508 2020  WebClient - ok
20:26:59.0539 2020  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
20:26:59.0571 2020  Wecsvc - ok
20:26:59.0586 2020  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
20:26:59.0649 2020  wercplsupport - ok
20:26:59.0664 2020  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
20:26:59.0711 2020  WerSvc - ok
20:26:59.0727 2020  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
20:26:59.0758 2020  WfpLwf - ok
20:26:59.0773 2020  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
20:26:59.0773 2020  WIMMount - ok
20:26:59.0789 2020  WinDefend - ok
20:26:59.0789 2020  WinHttpAutoProxySvc - ok
20:26:59.0836 2020  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
20:26:59.0883 2020  Winmgmt - ok
20:26:59.0929 2020  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
20:26:59.0992 2020  WinRM - ok
20:27:00.0007 2020  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUSB.SYS
20:27:00.0023 2020  WinUsb - ok
20:27:00.0054 2020  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
20:27:00.0101 2020  Wlansvc - ok
20:27:00.0132 2020  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
20:27:00.0148 2020  WmiAcpi - ok
20:27:00.0179 2020  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
20:27:00.0210 2020  wmiApSrv - ok
20:27:00.0226 2020  WMPNetworkSvc - ok
20:27:00.0241 2020  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
20:27:00.0257 2020  WPCSvc - ok
20:27:00.0288 2020  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
20:27:00.0304 2020  WPDBusEnum - ok
20:27:00.0319 2020  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
20:27:00.0351 2020  ws2ifsl - ok
20:27:00.0382 2020  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
20:27:00.0413 2020  wscsvc - ok
20:27:00.0413 2020  WSearch - ok
20:27:00.0475 2020  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
20:27:00.0522 2020  wuauserv - ok
20:27:00.0538 2020  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
20:27:00.0585 2020  WudfPf - ok
20:27:00.0616 2020  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
20:27:00.0663 2020  WUDFRd - ok
20:27:00.0694 2020  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
20:27:00.0725 2020  wudfsvc - ok
20:27:00.0756 2020  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
20:27:00.0772 2020  WwanSvc - ok
20:27:00.0787 2020  ================ Scan global ===============================
20:27:00.0787 2020  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:27:00.0819 2020  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:27:00.0819 2020  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:27:00.0834 2020  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:27:00.0865 2020  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:27:00.0865 2020  [Global] - ok
20:27:00.0865 2020  ================ Scan MBR ==================================
20:27:00.0881 2020  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:27:01.0162 2020  \Device\Harddisk0\DR0 - ok
20:27:01.0162 2020  ================ Scan VBR ==================================
20:27:01.0193 2020  [ 009D32293B3E867DE611F771997D6AAF ] \Device\Harddisk0\DR0\Partition1
20:27:01.0193 2020  \Device\Harddisk0\DR0\Partition1 - ok
20:27:01.0209 2020  [ 85B473E9ADFA30308613C9C4112E48AD ] \Device\Harddisk0\DR0\Partition2
20:27:01.0209 2020  \Device\Harddisk0\DR0\Partition2 - ok
20:27:01.0209 2020  ============================================================
20:27:01.0209 2020  Scan finished
20:27:01.0209 2020  ============================================================
20:27:01.0224 2600  Detected object count: 0
20:27:01.0224 2600  Actual detected object count: 0
         
Bei change parameters gab es ein noch ein Häkchen bei: System memory, Ich habe es so gelasen, O.K?
__________________

Alt 26.09.2012, 11:07   #34
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix
  • Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.
  • Starte combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
    Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.
  • Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.
Wichtiger Hinweis:
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 03.10.2012, 14:11   #35
hoswik
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Entschuldigung, habe etwas Zeit gebraucht, aber jetzt weiß ich wie ich den Vierenscaner deaktiviere.

Code:
ATTFilter
ComboFix 12-10-02.02 - **** 03.10.2012  14:03:09.1.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.3070.2025 [GMT 2:00]
ausgeführt von:: c:\users\****\Desktop\ComboFix.exe
AV: Unitymedia Sicherheitspaket 9.01 *Disabled/Updated* {15414183-282E-D62C-CA37-EF24860A2F17}
FW: Unitymedia Sicherheitspaket 9.01 *Enabled* {2D7AC0A6-6241-D774-E168-461178D9686C}
SP: Unitymedia Sicherheitspaket 9.01 *Disabled/Updated* {AE20A067-0E14-D9A2-F087-D456FD8D65AA}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\fspscprereqmsiinst.log
c:\windows\SysWow64\FlashPlayerInstaller.exe
.
Infizierte Kopie von c:\windows\SysWow64\userinit.exe wurde gefunden und desinfiziert 
Kopie von - c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe wurde wiederhergestellt 
.
.
(((((((((((((((((((((((   Dateien erstellt von 2012-09-03 bis 2012-10-03  ))))))))))))))))))))))))))))))
.
.
2012-10-03 12:12 . 2012-10-03 12:12	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2012-10-03 12:12 . 2012-10-03 12:12	--------	d-----w-	c:\users\Gast\AppData\Local\temp
2012-10-03 12:12 . 2012-10-03 12:12	--------	d-----w-	c:\users\Default\AppData\Local\temp
2012-10-02 21:28 . 2012-08-30 07:27	9308616	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{FDC6BD41-0D51-4E82-AFB9-F92537500F63}\mpengine.dll
2012-09-25 19:19 . 2012-09-25 19:58	45624	----a-w-	c:\windows\system32\drivers\fses.sys
2012-09-25 19:19 . 2012-09-25 19:58	94280	----a-w-	c:\windows\system32\drivers\fsdfw.sys
2012-09-25 17:43 . 2012-08-21 21:01	245760	----a-w-	c:\windows\system32\OxpsConverter.exe
2012-09-18 09:17 . 2012-09-18 09:17	33408	----a-w-	c:\windows\SysWow64\drivers\fsbts.sys
2012-09-18 08:48 . 2012-09-18 08:48	--------	d-----w-	C:\_OTL
2012-09-12 18:48 . 2012-08-22 18:12	950128	----a-w-	c:\windows\system32\drivers\ndis.sys
2012-09-12 18:48 . 2012-07-04 20:26	41472	----a-w-	c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 18:47 . 2012-08-02 17:58	574464	----a-w-	c:\windows\system32\d3d10level9.dll
2012-09-12 18:47 . 2012-08-02 16:57	490496	----a-w-	c:\windows\SysWow64\d3d10level9.dll
2012-09-12 18:47 . 2012-08-22 18:12	1913200	----a-w-	c:\windows\system32\drivers\tcpip.sys
2012-09-12 18:47 . 2012-08-22 18:12	376688	----a-w-	c:\windows\system32\drivers\netio.sys
2012-09-12 18:47 . 2012-08-22 18:12	288624	----a-w-	c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-04 10:40 . 2012-09-04 10:40	--------	d-----w-	c:\users\Schwendich\AppData\Local\BVRP Software
2012-09-03 16:40 . 2012-09-03 16:40	--------	d-----w-	c:\users\Gast\AppData\Roaming\NVIDIA
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-21 22:10 . 2012-04-06 07:45	696240	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2012-09-21 22:10 . 2011-06-02 08:49	73136	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-09-12 21:27 . 2011-02-18 22:40	64462936	----a-w-	c:\windows\system32\MRT.exe
2012-08-16 07:45 . 2012-05-09 19:07	56016	----a-w-	c:\windows\system32\drivers\fsbts.sys
2012-07-18 18:15 . 2012-08-16 07:52	3148800	----a-w-	c:\windows\system32\win32k.sys
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GameXN GO"="c:\programdata\GameXN\GameXNGO.exe" [2012-08-17 347008]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"F-Secure Manager"="c:\program files (x86)\Unitymedia\Sicherheitspaket\Common\FSM32.EXE" [2009-08-05 199264]
"F-Secure TNB"="c:\program files (x86)\Unitymedia\Sicherheitspaket\FSGUI\TNBUtil.exe" [2009-08-05 2349664]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"ArcSoft Connection Service"=c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R0 AFS;AFS; [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-26 135664]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-21 250288]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-26 135664]
R3 hxctlflt;hxctlflt;c:\windows\system32\Drivers\hxctlflt.sys [2009-02-08 111104]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-18 113120]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R4 F-Secure Filter;F-Secure File System Filter;c:\program files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\Win2K\FSfilter.sys [2009-08-05 39776]
R4 F-Secure Recognizer;F-Secure File System Recognizer;c:\program files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\Win2K\FSrec.sys [2009-08-05 25184]
S1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files (x86)\Unitymedia\Sicherheitspaket\HIPS\drivers\fshs.sys [2009-08-05 57920]
S1 FSES;F-Secure Email Scanning Driver;c:\windows\system32\drivers\fses.sys [2012-09-25 45624]
S1 FSFW;F-Secure Firewall Driver;c:\windows\system32\drivers\fsdfw.sys [2012-09-25 94280]
S1 fsvista;F-Secure Vista Support Driver;c:\program files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\minifilter\fsvista.sys [2009-08-05 14904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-05-21 2214504]
S3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\minifilter\fsgk.sys [2012-09-25 199848]
S3 FSORSPClient;F-Secure ORSP Client;c:\program files (x86)\Unitymedia\Sicherheitspaket\ORSP Client\fsorsp.exe [2012-09-25 61088]
S3 HCW85BDA;Hauppauge WinTV 885 Video Capture;c:\windows\system32\drivers\HCW85BDA.sys [2009-06-10 1192448]
.
.
Inhalt des "geplante Tasks" Ordners
.
2012-10-03 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-06 22:10]
.
2012-10-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-26 18:33]
.
2012-10-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-26 18:33]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VX3000"="c:\windows\vVX3000.exe" [2010-05-20 762736]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.besteinfo.de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
LSP: c:\program files (x86)\Unitymedia\Sicherheitspaket\FSPS\program\FSLSP.DLL
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\Schwendich\AppData\Roaming\Mozilla\Firefox\Profiles\1i64pcaj.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.schnell-startseite.de/|hxxp://www.finanzen.net/fonds/W&W_Quality_Select_Aktien_Europa
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{c840e246-6b95-475e-9bd7-caa1c7eca9f2} - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\program files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\fsgk32st.exe
c:\program files (x86)\Unitymedia\Sicherheitspaket\Common\FSMA32.EXE
c:\program files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\FSGK32.EXE
c:\program files (x86)\Unitymedia\Sicherheitspaket\Common\FSHDLL32.EXE
c:\program files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\fssm32.exe
c:\program files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\fsav32.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-10-03  14:22:54 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2012-10-03 12:22
.
Vor Suchlauf: 12 Verzeichnis(se), 212.738.179.072 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 212.680.495.104 Bytes frei
.
- - End Of File - - FD7FFD49F37BFCAACAEABA64D80C12B6
         


Alt 03.10.2012, 19:29   #36
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Bitte nun Logs mit GMER und OSAM erstellen und posten.
GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen.
Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst.

Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM!

Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
  • Starte die aswMBR.exe - (aswMBR.exe Anleitung)
    Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten".
  • Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen )
    Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
  • Klicke auf Scan.
  • Warte bitte bis Scan finished successfully im DOS-Fenster steht.
  • Drücke auf Save Log und speichere diese auf dem Desktop.
Poste mir die aswMBR.txt in deiner nächsten Antwort.

Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung

Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).



Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________
--> PUP.BundleInstaller.VG

Alt 03.10.2012, 21:54   #37
hoswik
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Hier ist das erste Teil der Aufgabe, das andere versuche ich morgen zu erledigen.

GMER Logfile:
Code:
ATTFilter
GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2012-10-03 22:50:49
Windows 6.1.7601 Service Pack 1 
Running: vln19v88.exe


---- Files - GMER 1.0.15 ----

File  C:\Windows\temp\TMP0000007EC8F5253B55E7BA57  524288 bytes

---- EOF - GMER 1.0.15 ----
         
--- --- ---

Alt 05.10.2012, 09:19   #38
hoswik
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Ich schaffe es nicht mehr vor dem Urlaub, melde mich danach. Bis dann...

Alt 22.10.2012, 19:46   #39
hoswik
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Hallo, ich bin wieder da. Hier ist das Log von OSAM

OSAM Logfile:
Code:
ATTFilter
Report of OSAM: Autorun Manager v5.0.11926.0
hxxp://www.online-solutions.ru/en/
Saved at 20:29:51 on 22.10.2012

OS: Windows 7  Service Pack 1 (Build 7601), 64-bit
Default Browser: Google Inc. Google Chrome 22.0.1229.79

Scanner Settings
[x] Rootkits detection (hidden registry)
[x] Rootkits detection (hidden files)
[x] Retrieve files information
[x] Check Microsoft signatures

Filters
[ ] Trusted entries
[ ] Empty entries
[x] Hidden registry entries (rootkit activity)
[x] Exclusively opened files
[x] Not found files
[x] Files without detailed information
[x] Existing files
[ ] Non-startable services
[ ] Non-startable drivers
[x] Active entries
[x] Disabled entries


[Common]
-----( %SystemRoot%\Tasks )-----
"GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

[Control Panel Objects]
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )-----
"mlcfg32.cpl" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\MLCFG32.CPL

[Drivers]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"AFS" (AFS) - ? - C:\Windows\system32\drivers\AFS.sys  (File not found)
"catchme" (catchme) - ? - C:\ComboFix\catchme.sys  (File not found)
"F-Secure Email Scanning Driver" (FSES) - "F-Secure Corporation" - C:\Windows\System32\drivers\fses.sys
"F-Secure Firewall Driver" (FSFW) - "F-Secure Corporation" - C:\Windows\System32\drivers\fsdfw.sys
"F-Secure Gatekeeper" (F-Secure Gatekeeper) - "F-Secure Corporation" - C:\Program Files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\minifilter\fsgk.sys
"F-Secure HIPS Driver" (F-Secure HIPS) - "F-Secure Corporation" - C:\Program Files (x86)\Unitymedia\Sicherheitspaket\HIPS\drivers\fshs.sys
"F-Secure Vista Support Driver" (fsvista) - "F-Secure Corporation" - C:\Program Files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\minifilter\fsvista.sys
"GEAR ASPI Filter Driver" (GEARAspiWDM) - ? - C:\Windows\System32\Drivers\GEARAspiWDM.sys  (File not found)
"PPdus ASPI Shell" (Afc) - "Arcsoft, Inc." - C:\Windows\SysWOW64\drivers\Afc.sys

[Explorer]
-----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )-----
{F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
-----( HKLM\Software\Classes\Protocols\Filter )-----
{807563E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
-----( HKLM\Software\Classes\Protocols\Handler )-----
{314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll
{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
{88FED34C-F0CA-4636-A375-3CB6248B04CD} "Local Groove Web Services Protocol" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
{91774881-D725-4E58-B298-07617B9B86A8} "Skype IE add-on Pluggable Protocol" - "Skype Technologies S.A." - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks )-----
{B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )-----
{D8D1CE8C-B1EB-4E95-B63B-1531BA60E992} "DivX Property Handler" - "DivX, Inc." - C:\Program Files (x86)\DivX\DivX Plus Media Foundation Components\DivXPropertyHandler.dll
{83238FAE-D346-4E12-8734-D42F7554B3E6} "DivX Thumbnail Provider" - "DivX, Inc." - C:\Program Files (x86)\DivX\DivX Plus Media Foundation Components\DivXThumbnailProvider.dll
{B089FE88-FB52-11D3-BDF1-0050DA34150D} "ESET Smart Security - Context Menu Shell Extension" - ? -   (File not found | COM-object registry key not found)
{99FD978C-D287-4F50-827F-B2C658EDA8E7} "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} "Groove Explorer Icon Overlay 2 (GFS Stub)" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{920E6DB1-9907-4370-B3A0-BAFC03D81399} "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{16F3DD56-1AF5-4347-846D-7C10C4192619} "Groove Explorer Icon Overlay 3 (GFS Folder)" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{2916C86E-86A6-43FE-8112-43ABE6BF8DCC} "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{2A541AE1-5BF6-4665-A8A3-CFA9672E4291} "Groove Folder Synchronization" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{6C467336-8281-4E60-8204-430CED96822D} "Groove GFS Context Menu Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{A449600E-1DC6-4232-B948-9BD794D62056} "Groove GFS Stub Icon Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{387E725D-DC16-4D76-B310-2C93ED4752A0} "Groove XML Icon Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\msohevi.dll
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
{5858A72C-C2B4-4dd7-B2BF-B76DB1BD9F6C} "Microsoft Office OneNote Namespace Extension for Windows Desktop Search" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\ONFILTER.DLL
{00020D75-0000-0000-C000-000000000046} "Microsoft Office Outlook" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\MLSHEXT.DLL
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
{0006F045-0000-0000-C000-000000000046} "Outlook File Icon Extension" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\OLKFSTUB.DLL
{4838CD50-7E5D-4811-9B17-C47A85539F28} "TuneUp Disk Space Explorer Shell Extension" - ? - C:\Program Files (x86)\TuneUp Utilities 2012\DseShExt-x86.dll  (File not found)
{4858E7D9-8E12-45a3-B6A3-1CD128C9D403} "TuneUp Shredder Shell Extension" - ? - C:\Program Files (x86)\TuneUp Utilities 2012\SDShelEx-win32.dll  (File not found)
{E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad )-----
{E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? -   (File not found | COM-object registry key not found)

[Internet Explorer]
-----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )-----
ITBar7Height "ITBar7Height" - ? -   (File not found | COM-object registry key not found)
ITBar7Height64 "ITBar7Height64" - ? -   (File not found | COM-object registry key not found)
<binary data> "ITBar7Layout" - ? -   (File not found | COM-object registry key not found)
<binary data> "ITBar7Layout64" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )-----
{8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_31" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} "Java Plug-in 1.6.0_31" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_31" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\npjpi160_31.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )-----
{2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} "@C:\Windows\WindowsMobile\INetRepl.dll,-222" - "Microsoft Corporation" - C:\Windows\WindowsMobile\INetRepl.dll
{48E73304-E1D6-4330-914C-F5F514E3486C} "An OneNote senden" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
{2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} "ClsidExtension" - "Microsoft Corporation" - C:\Windows\WindowsMobile\INetRepl.dll
{FF059E31-CC5A-4E2E-BF3B-96E929D65503} "Research" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
{898EA8C8-E7FF-479B-8935-AEC46303B9E5} "Skype Click to Call" - "Skype Technologies S.A." - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )-----
{265EEE8E-3228-44D3-AEA5-F7FDF5860049} "Browsing Protection Toolbar" - "F-Secure Corporation" - C:\Program Files (x86)\Unitymedia\Sicherheitspaket\NRS\iescript\baselitmus.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )-----
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
{C6867EB7-8350-4856-877F-93CF8AE3DC9C} "Browsing Protection Class" - "F-Secure Corporation" - C:\Program Files (x86)\Unitymedia\Sicherheitspaket\NRS\iescript\baselitmus.dll
{326E768D-4182-46FD-9C16-1449A49795F4} "DivX Plus Web Player HTML5 <video>" - "DivX, LLC" - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
{DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "Java(tm) Plug-In SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} "Skype Browser Helper" - "Skype Technologies S.A." - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

[Logon]
-----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\Users\Schwendich\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )-----
"GameXN GO" - "EasyBits Software AS" - "C:\ProgramData\GameXN\GameXNGO.exe" /startup
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )-----
"F-Secure Manager" - "F-Secure Corporation" - "C:\Program Files (x86)\Unitymedia\Sicherheitspaket\Common\FSM32.EXE" /splash
"F-Secure TNB" - "F-Secure Corporation" - "C:\Program Files (x86)\Unitymedia\Sicherheitspaket\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW

[Services]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103" (WinDefend) - ? - C:\Program Files (x86)\Windows Defender\mpsvc.dll  (File not found)
"@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe"  (File not found)
"Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
"Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
"ArcSoft Connect Daemon" (ACDaemon) - "ArcSoft Inc." - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
"F-Secure Anti-Virus Firewall Daemon" (FSDFWD) - "F-Secure Corporation" - C:\Program Files (x86)\Unitymedia\Sicherheitspaket\FWES\Program\fsdfwd.exe
"F-Secure Management Agent" (FSMA) - "F-Secure Corporation" - C:\Program Files (x86)\Unitymedia\Sicherheitspaket\Common\FSMA32.EXE
"F-Secure ORSP Client" (FSORSPClient) - "F-Secure Corporation" - C:\Program Files (x86)\Unitymedia\Sicherheitspaket\ORSP Client\fsorsp.exe
"FSGKHS" (F-Secure Gatekeeper Handler Starter) - "F-Secure Corporation" - C:\Program Files (x86)\Unitymedia\Sicherheitspaket\Anti-Virus\fsgk32st.exe
"Google Update Service (gupdate)" (gupdate) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"Google Updater Service" (gusvc) - "Google" - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
"Microsoft .NET Framework NGEN v4.0.30319_X64" (clr_optimization_v4.0.30319_64) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"Microsoft Office Diagnostics Service" (odserv) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
"Microsoft Office Groove Audit Service" (Microsoft Office Groove Audit Service) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
"Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
"MSCamSvc" (MSCamSvc) - "Microsoft Corporation" - C:\Program Files\Microsoft LifeCam\MSCamS64.exe
"NVIDIA Display Driver Service" (nvsvc) - "NVIDIA Corporation" - C:\Windows\system32\nvvsvc.exe
"NVIDIA Update Service Daemon" (nvUpdatusService) - "NVIDIA Corporation" - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
"Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
"Skype Updater" (SkypeUpdate) - "Skype Technologies" - C:\Program Files (x86)\Skype\Updater\Updater.exe

[Winsock Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries )-----
"F-Secure Protocol Scanner" - "F-Secure Corporation" - C:\Program Files (x86)\Unitymedia\Sicherheitspaket\FSPS\program\FSLSP.DLL

===[ Logfile end ]=========================================[ Logfile end ]===
         
--- --- ---

If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru [/code]

Und hier ist noch der Rest der Aufgabe

Code:
ATTFilter
 aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-22 20:48:22
-----------------------------
20:48:22.751    OS Version: Windows x64 6.1.7601 Service Pack 1
20:48:22.751    Number of processors: 4 586 0xF0B
20:48:22.752    ComputerName: ****  UserName: ****
20:48:23.541    Initialize success
20:50:48.482    AVAST engine defs: 12102200
20:50:56.003    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-2
20:50:56.005    Disk 0 Vendor: Intel___ 1.0. Size: 305171MB BusType: 8
20:50:56.043    Disk 0 MBR read successfully
20:50:56.046    Disk 0 MBR scan
20:50:56.133    Disk 0 Windows 7 default MBR code
20:50:56.136    Disk 0 Partition 1 00     DE Dell Utility Dell 8.0       62 MB offset 63
20:50:56.202    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS        15360 MB offset 129024
20:50:56.227    Disk 0 Partition 3 80 (A) 07    HPFS/NTFS NTFS       289747 MB offset 31586304
20:50:56.276    Disk 0 scanning C:\Windows\system32\drivers
20:51:11.398    Service scanning
20:51:37.840    Modules scanning
20:51:37.849    Disk 0 trace - called modules:
20:51:37.866    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStorV.sys hal.dll 
20:51:37.871    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80040ba060]
20:51:38.084    3 CLASSPNP.SYS[fffff88000e6b43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-2[0xfffffa8002eed050]
20:51:38.878    AVAST engine scan C:\Windows
20:51:43.251    AVAST engine scan C:\Windows\system32
20:56:12.196    AVAST engine scan C:\Windows\system32\drivers
20:56:26.290    AVAST engine scan C:\Users\Schwendich
20:59:25.235    AVAST engine scan C:\ProgramData
21:00:38.454    Scan finished successfully
22:17:02.510    Disk 0 MBR has been saved successfully to "C:\Users\Schwendich\Desktop\Neuer Ordner\MBR.dat"
22:17:02.517    The log file has been saved successfully to "C:\Users\Schwendich\Desktop\Neuer Ordner\aswMBR.txt"
         

Alt 23.10.2012, 15:47   #40
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 23.10.2012, 21:24   #41
hoswik
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Zuerst Malwarebytes Anti-Malware


Code:
ATTFilter
 Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Datenbank Version: v2012.10.23.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
**** :: **** [Administrator]

23.10.2012 20:00:52
mbam-log-2012-10-23 (20-00-52).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 397593
Laufzeit: 41 Minute(n), 52 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
         

Alt 24.10.2012, 11:18   #42
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Ok, fehlt noch das andere. Bitte daran denken es via Rechtsklick als Admin zu starten
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 25.10.2012, 20:22   #43
hoswik
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Mein Internet ist jetzt schon viel schneller geworden. Ich hatte davor schon vergeblich mit Arbeitsplatz Bereinigung versucht. Vielen Dank!
Es ist sehr viel geworden, ich muss wieder teilen.


Code:
ATTFilter
 SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 10/24/2012 at 08:41 PM

Application Version : 5.6.1012

Core Rules Database Version : 9464
Trace Rules Database Version: 7276

Scan type       : Complete Scan
Total Scan Time : 01:27:41

Operating System Information
Windows 7 Professional 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned      : 572
Memory threats detected   : 0
Registry items scanned    : 76783
Registry threats detected : 0
File items scanned        : 152167
File threats detected     : 573

Adware.Tracking Cookie
	C:\Users\****\AppData\Roaming\Microsoft\Windows\Cookies\06IX89W0.txt [ /banner.lbs.km.ru ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\0MNEFWPO.txt [ Cookie:gast@www.googleadservices.com/pagead/conversion/1053860776/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\H5QQ4UO9.txt [ Cookie:gast@autoscout24.112.2o7.net/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\7WTITSLX.txt [ Cookie:gast@c.atdmt.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\OPITSF63.txt [ Cookie:gast@invitemedia.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\1HE4IP4R.txt [ Cookie:gast@fl01.ct2.comclick.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\AJNOPSOM.txt [ Cookie:gast@adfarm1.adition.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\A1DPL40U.txt [ Cookie:gast@doubleclick.net/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\JIMFD02B.txt [ Cookie:gast@ru4.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\8V8VFYH0.txt [ Cookie:gast@tracking.mlsat02.de/tmobile/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\71KMJKV7.txt [ Cookie:gast@ad.yieldmanager.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\E4DWGMVC.txt [ Cookie:gast@apmebf.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\T0R0W9HX.txt [ Cookie:gast@mediaplex.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\7PYQ23PK.txt [ Cookie:gast@zanox-affiliate.de/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\JZX5WKJV.txt [ Cookie:gast@webmasterplan.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\989UBH07.txt [ Cookie:gast@www.googleadservices.com/pagead/conversion/1031060403/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\M9ZLGZI1.txt [ Cookie:gast@www.googleadservices.com/pagead/conversion/1008518555/ ]
	C:\USERS\****\AppData\Roaming\Microsoft\Windows\Cookies\Low\PW01Y7IM.txt [ Cookie:****@banner.lbs.km.ru/ ]
	C:\USERS\****\Cookies\06IX89W0.txt [ Cookie:****@banner.lbs.km.ru/ ]
	.adxpansion.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.youporn.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.youporn.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.atdmt.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.atdmt.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.rambler.ru [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.directadvert.ru [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.doubleclick.net [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.stat.adlabs.ru [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.usenext.de [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.technoratimedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.technoratimedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.media6degrees.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ru4.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ru4.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adbrite.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.micklemedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.micklemedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.media6degrees.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.media6degrees.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.micklemedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.micklemedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.micklemedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.micklemedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.micklemedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tns-counter.ru [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.usermediaclick.ru [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.userporn.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.track.senzapudore.net [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.track.senzapudore.net [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.enoratraffic.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	panzertraffic.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.countomat.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.flagcounter.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.2o7.net [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	7.rotator.wigetmedia.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zedo.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.bwincom.122.2o7.net [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.amazon-adsystem.com [ C:\USERS\***\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.amazon-adsystem.com [ C:\USERS\***\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.hotlog.ru [ C:\USERS\***\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.histats.com [ C:\USERS\***\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.histats.com [ C:\USERS\***\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adtech.de [ C:\USERS\****\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.lucidmedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.apmebf.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.mediaplex.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.drive.videoclick.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.drive.videoclick.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ads.crakmedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.imrworldwide.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.imrworldwide.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.liveperson.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.quartermedia.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.quartermedia.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adbrite.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.userporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.userporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adnetwork.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.gostats.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.dyntracker.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tradedoubler.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tradedoubler.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.dicarlotrack.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	3questionsgetthegirl.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	3questionsgetthegirl.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.3questionsgetthegirl.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.3questionsgetthegirl.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.3questionsgetthegirl.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.3questionsgetthegirl.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.3questionsgetthegirl.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.3questionsgetthegirl.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.3questionsgetthegirl.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.gostats.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.gostats.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.histats.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.zanox-affiliate.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zieltrack.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	teufel-media.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adxpose.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.go.underclick.ru [ C:\USERS\**\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.autoscout24.112.2o7.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.revsci.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zanox-affiliate.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.im.banner.t-online.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	track.effiliation.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	7.rotator.trafficbee.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	wmedia.rotator.hadj7.adjuggler.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	wmedia.rotator.hadj7.adjuggler.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adtech.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	accounts.google.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	7.rotator.trafficbee.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	count.rbc.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.e-2dj6wjkywpdpwhp.stats.esomniture.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	eas.apm.emediate.eu [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.gostats.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	7.rotator.wigetmedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	trekmedia.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.clicksor.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.clicksor.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.clicksor.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.myroitracking.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.clicksor.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.clicksor.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.findit.uk.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.findit.uk.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.findit.uk.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.findit.uk.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	rotator.hadj7.adjuggler.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zedo.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.clicksadvert.info [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ox.red-promotion.xxx [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.pornos-kostenlos.tv [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.pornos-kostenlos.tv [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.pornos-kostenlos.tv [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.zanox.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.spylog.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.engine.rbc.medialand.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.xm.xtendmedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	adfarm1.adition.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.bs.serving-sys.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.smartadserver.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	track.adform.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	tracking.mlsat02.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.dealtime.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.etracker.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	statse.webtrendslive.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	stat.dealtime.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	eas.apm.emediate.eu [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	eas.apm.emediate.eu [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	server.adformdsp.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	track.effiliation.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	track.effiliation.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	track.effiliation.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	track.effiliation.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	track.effiliation.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	tomtailor.dyntracker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.bshg.122.2o7.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.medialand.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.medialand.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.engine.mediamir.medialand.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.engine.mediamir.medialand.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	track.adform.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adtech.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.zanox.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	webstat.delti.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	traffic.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.syndication.traffichaus.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.syndication.traffichaus.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.syndication.traffichaus.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.exoclick.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ads2.zeusclicks.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultadworld.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultadworld.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultadworld.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultadworld.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultadworld.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultadworld.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tradedoubler.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.dextersporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.dextersporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.dextersporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	media.campartner.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.click202.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.click202.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	click202.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.2o7.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.2o7.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.lfstmedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.lfstmedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.lfstmedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.traffictrack.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.apmebf.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.fastclick.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.casalemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.casalemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.casalemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.casalemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.casalemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.casalemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.casalemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.mediaplex.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	server.adform.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	server.adform.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ad.adnet.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ad.adnet.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zanox.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.webmasterplan.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.zanox.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.webmasterplan.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	adserver3.oberberg.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tracking.quisma.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.webmasterplan.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.webmasterplan.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tracking.quisma.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.etracker.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.etracker.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.etracker.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www4.smartadserver.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www4.smartadserver.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	eas.apm.emediate.eu [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	eas.apm.emediate.eu [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ad.adnet.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.directadvert.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tradedoubler.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tradedoubler.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.statcounter.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.c.gigcount.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ero-advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.landing.sexkiste.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.landing.sexkiste.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.landing.sexkiste.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.sexkiste.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	landing.sexkiste.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.youporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ads.trafficjunky.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ads.trafficjunky.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ads.playamedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ads.playamedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ads.playamedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.youporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.youporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.youporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.youporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.youporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.youporn.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	track.adform.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adform.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
         
Code:
ATTFilter
 	www.googleadservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.pornhub.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	rts.pgmediaserve.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	rts.pgmediaserve.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	rts.pgmediaserve.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.de.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.partypoker.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ads.trafficjunky.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.pornhub.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.pornhub.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.pornhub.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.pornhub.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.mediaplex.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	media-manager.ksk-koeln.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	media-manager.ksk-koeln.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.unitymedia.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.smartadserver.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.smartadserver.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.smartadserver.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad3.adfarm1.adition.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.unitymedia.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	serialu.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	serialu.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serial-on.tv [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serial-on.tv [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	serial-on.tv [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	serial-on.tv [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serial-on.tv [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	new-serial.net [ C:\USERS\*H\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	new-serial.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	new-serial.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.pornhub.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.youpornos.info [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.youpornos.info [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.youpornos.info [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.pornme.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.pornme.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.pornme.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.youpornos.info [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.youpornos.info [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.youpornos.info [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.unitymedia.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.unitymedia.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.kontera.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tacoda.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tacoda.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tacoda.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tacoda.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tacoda.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tacoda.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tacoda.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tacoda.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tacoda.at.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tacoda.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ar.atwola.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.advertising.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tribalfusion.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.questionmarket.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.questionmarket.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.specificclick.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.revsci.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.revsci.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.revsci.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad2.adfarm1.adition.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.tracker.vinsight.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.doubleclick.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.im.banner.t-online.de [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad1.adfarm1.adition.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.unister-adservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ww251.smartadserver.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.clickfuse.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.yadro.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	banner.lbs.km.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.countby.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.openstat.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.rambler.ru [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.doubleclick.net [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.googleadservices.com [ C:\USERS\**\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.rambler.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.youporn.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.youporn.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.youporn.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.youporn.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.youporn.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.youporn.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.youporn.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	ads.trafficjunky.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.sexad.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.youporn.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.youporn.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.syndication.traffichaus.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.syndication.traffichaus.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.syndication.traffichaus.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	ad4.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.kino-serial.tv [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.kino-serial.tv [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.directadvert.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	kino-serial.tv [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	kino-serial.tv [ C:\USERS\**\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	kino-serial.tv [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	fl01.ct2.comclick.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	fl01.ct2.comclick.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.clicktracking123.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.clicktracking123.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.unister-adservices.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\*H\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	partners.webmasterplan.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.xiti.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	sub.bubblesmedia.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	sub.bubblesmedia.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	n.pay-click.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	n.pay-click.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	count.yandeg.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.clicksadvert.info [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	accounts.google.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	accounts.youtube.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.hxtrack.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	secure.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	secure.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	secure.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	secure.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.parkdiscounter.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	ad1.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.medclick.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.medialand.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.medialand.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.engine.medialand.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	media-manager.ksk-koeln.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	media-manager.ksk-koeln.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.at.atwola.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\*H\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.openstat.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	7.rotator.wigetmedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	7.rotator.wigetmedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	ads.crakmedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.userporn.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.nextag.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.nextag.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.nextag.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.nextag.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.amazon-adsystem.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.amazon-adsystem.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.tribalfusion.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.bshg.122.2o7.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.unitymedia.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.unitymedia.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	web.unitymedia.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	7.rotator.trafficbee.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	7.rotator.trafficbee.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	7.rotator.trafficbee.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	rts.pgmediaserve.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	rts.pgmediaserve.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	rts.pgmediaserve.com [ C:\USERS\S*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	7.rotator.wigetmedia.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	rotator.hadj7.adjuggler.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.unitymedia.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adform.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	ad3.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	www.directadvert.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.rambler.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.vedamedia.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.vedamedia.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.vedamedia.ru [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.aim4media.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.stat.adlabs.ru [ C:\USERS\**\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	ad2.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.zanox.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	ad.zanox.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.traveladvertising.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.traveladvertising.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	de.sitestat.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.zanox.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	ad.zanox.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\*\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1I64PCAJ.DEFAULT\COOKIES.SQLITE ]
         

Alt 25.10.2012, 22:07   #44
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Code:
ATTFilter
UAC On - Limited User
         
Wie hast du SUPERAntiSpyware gestartet? Einfach per Doppelklick?

Bitte so wie es in der Anleitung steht auch ausführen!

Zitat:
Zitat von cosinus Beitrag anzeigen
Teil 2: Programm ausführen
Das Programm wurde nun installiert, eine Verknüpfung auf dem Desktop sollte erstellt worden sein. Nachdem du es gestartet hast, wird es sich erstmalig beim Updateserver nach neuen Schädlingssignaturen umsehen und Updates installieren. Diesen Vorgang NICHT abbrechen!

Benutzer mit Windows Vista und Windows 7 starten das Tool bitte wieder per Rechtsklick => als Administrator ausführen!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 03.11.2012, 16:57   #45
hoswik
 
PUP.BundleInstaller.VG - Standard

PUP.BundleInstaller.VG



Zuerst hatte ich wirklich ein paarmal falsch gemacht, aber dann doch noch richtig, als Administrator starten und weiter auch auf alle Kleinigkeiten aufgepasst. Jetzt habe ich es noch ein paarmal gemacht, auch alles deinstalliert und komplett neu. Und komischer weise wird die Liste immer länger. Wenn im ersten Log steht: File threats detected : 573 , im letzten schon 829. Obwohl ich nur wenig ins Internet gehe.?

Antwort

Themen zu PUP.BundleInstaller.VG
pup.bundleinstaller.vg




Ähnliche Themen: PUP.BundleInstaller.VG


  1. PUP.Optional.BundleInstaller.A auf dem PC gefunden.
    Log-Analyse und Auswertung - 24.03.2014 (7)
  2. PUP.Optional.OpenCandy PricePeep Wajam BundleInstaller.A SimplyTechA Funde
    Log-Analyse und Auswertung - 15.02.2014 (11)
  3. PUP.BundleInstaller.SOL 30_03_2013
    Log-Analyse und Auswertung - 06.04.2013 (3)
  4. PUP.Bundleinstaller, Adware Shopper und Trojan.Downloader...am Ende meines IT-Lateins
    Plagegeister aller Art und deren Bekämpfung - 27.03.2013 (33)
  5. Sind meine Systemabstürze verursacht von PUP.BundleInstaller.SOL?
    Log-Analyse und Auswertung - 24.03.2013 (18)
  6. PUP.BundleInstaller.ib und PUB.InstallBrain
    Plagegeister aller Art und deren Bekämpfung - 04.02.2013 (21)
  7. Pub.Adware.Relevantknowledge und Pub.Bundleinstaller.SOL von Malwarebytes gefunden - jetzt clean?
    Log-Analyse und Auswertung - 19.12.2012 (3)
  8. PC plötzlich langsam - MB-Fund: PUP.BundleInstaller.BI - Zusammenhang?
    Plagegeister aller Art und deren Bekämpfung - 23.11.2012 (7)
  9. PUP.Adbundle PUP.BundleInstaller.VG PUP.InstallBrain mit MalwareBytes gefunden, was tun?
    Plagegeister aller Art und deren Bekämpfung - 10.11.2012 (11)
  10. .exe (Trojan.Agent) und (PUP.BundleInstaller.BI)
    Plagegeister aller Art und deren Bekämpfung - 26.10.2012 (35)
  11. Potentielle Malware im MCPatcher (PUP.BundleInstaller.Bl)
    Log-Analyse und Auswertung - 15.10.2012 (3)

Zum Thema PUP.BundleInstaller.VG - Entschuldigung, hier kommt eine Meldung das der Text zu lang ist. Ich versuche zu teilen Code: Alles auswählen Aufklappen ATTFilter 20:12:44.0174 1912 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 - PUP.BundleInstaller.VG...
Archiv
Du betrachtest: PUP.BundleInstaller.VG auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.