| |
| |||||||
Log-Analyse und Auswertung: AVG meldet: services.exe mit Trojaner infiziertWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
13.10.2012, 20:48
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  AVG meldet: services.exe mit Trojaner infiziert Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
14.10.2012, 16:45
| #17 |
 | AVG meldet: services.exe mit Trojaner infiziert Und hier das Log:
__________________Code:
ATTFilter 17:40:41.0107 3380 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
17:40:41.0122 3380 ============================================================
17:40:41.0122 3380 Current date / time: 2012/10/14 17:40:41.0122
17:40:41.0122 3380 SystemInfo:
17:40:41.0122 3380
17:40:41.0122 3380 OS Version: 6.0.6001 ServicePack: 1.0
17:40:41.0122 3380 Product type: Workstation
17:40:41.0122 3380 ComputerName: VANESSA-PC
17:40:41.0123 3380 UserName: Vanessa
17:40:41.0123 3380 Windows directory: C:\Windows
17:40:41.0123 3380 System windows directory: C:\Windows
17:40:41.0123 3380 Processor architecture: Intel x86
17:40:41.0123 3380 Number of processors: 2
17:40:41.0123 3380 Page size: 0x1000
17:40:41.0123 3380 Boot type: Normal boot
17:40:41.0123 3380 ============================================================
17:40:43.0063 3380 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:40:43.0065 3380 ============================================================
17:40:43.0065 3380 \Device\Harddisk0\DR0:
17:40:43.0065 3380 MBR partitions:
17:40:43.0065 3380 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1BCB27C1
17:40:43.0065 3380 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1BCB2800, BlocksNum 0x1511800
17:40:43.0065 3380 ============================================================
17:40:43.0080 3380 C: <-> \Device\Harddisk0\DR0\Partition1
17:40:43.0866 3380 D: <-> \Device\Harddisk0\DR0\Partition2
17:40:43.0866 3380 ============================================================
17:40:43.0866 3380 Initialize success
17:40:43.0866 3380 ============================================================
17:40:54.0356 1112 ============================================================
17:40:54.0356 1112 Scan started
17:40:54.0356 1112 Mode: Manual; SigCheck; TDLFS;
17:40:54.0356 1112 ============================================================
17:40:56.0344 1112 ================ Scan system memory ========================
17:40:56.0344 1112 System memory - ok
17:40:56.0345 1112 ================ Scan services =============================
17:40:56.0711 1112 [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI C:\Windows\system32\drivers\acpi.sys
17:40:56.0945 1112 ACPI - ok
17:40:57.0160 1112 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:40:57.0176 1112 AdobeFlashPlayerUpdateSvc - ok
17:40:57.0215 1112 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:40:57.0237 1112 adp94xx - ok
17:40:57.0288 1112 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:40:57.0327 1112 adpahci - ok
17:40:57.0335 1112 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
17:40:57.0349 1112 adpu160m - ok
17:40:57.0359 1112 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:40:57.0373 1112 adpu320 - ok
17:40:57.0402 1112 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:40:57.0726 1112 AeLookupSvc - ok
17:40:57.0770 1112 [ 763E172A55177E478CB419F88FD0BA03 ] AFD C:\Windows\system32\drivers\afd.sys
17:40:57.0827 1112 AFD - ok
17:40:57.0905 1112 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:40:57.0923 1112 agp440 - ok
17:40:57.0949 1112 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
17:40:57.0971 1112 aic78xx - ok
17:40:57.0985 1112 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
17:40:58.0027 1112 ALG - ok
17:40:58.0045 1112 [ 3D76FDA1A10ACC3DC84728F55C29B6D4 ] aliide C:\Windows\system32\drivers\aliide.sys
17:40:58.0059 1112 aliide - ok
17:40:58.0115 1112 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
17:40:58.0207 1112 amdagp - ok
17:40:58.0215 1112 [ 5B92E7839F5A1FBC1B39DE67758AD6F8 ] amdide C:\Windows\system32\drivers\amdide.sys
17:40:58.0232 1112 amdide - ok
17:40:58.0272 1112 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
17:40:58.0373 1112 AmdK7 - ok
17:40:58.0411 1112 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:40:58.0515 1112 AmdK8 - ok
17:40:58.0611 1112 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
17:40:58.0678 1112 Appinfo - ok
17:40:58.0697 1112 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
17:40:58.0714 1112 arc - ok
17:40:58.0728 1112 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:40:58.0745 1112 arcsas - ok
17:40:58.0796 1112 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:40:58.0886 1112 AsyncMac - ok
17:40:58.0978 1112 [ 9C0E70031905ADBF94EDB9EA14AF943B ] atapi C:\Windows\system32\drivers\atapi.sys
17:40:58.0992 1112 atapi - ok
17:40:59.0192 1112 [ 600EFE56F37ADBD65A0FB076B50D1B8D ] athr C:\Windows\system32\DRIVERS\athr.sys
17:40:59.0313 1112 athr - ok
17:40:59.0436 1112 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:40:59.0537 1112 AudioEndpointBuilder - ok
17:40:59.0579 1112 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv C:\Windows\System32\Audiosrv.dll
17:40:59.0630 1112 Audiosrv - ok
17:40:59.0722 1112 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
17:40:59.0804 1112 Beep - ok
17:40:59.0859 1112 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
17:40:59.0914 1112 blbdrive - ok
17:40:59.0947 1112 [ 74B442B2BE1260B7588C136177CEAC66 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:41:00.0014 1112 bowser - ok
17:41:00.0077 1112 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
17:41:00.0164 1112 BrFiltLo - ok
17:41:00.0244 1112 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
17:41:00.0346 1112 BrFiltUp - ok
17:41:00.0418 1112 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
17:41:00.0503 1112 Browser - ok
17:41:00.0563 1112 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
17:41:00.0789 1112 Brserid - ok
17:41:01.0105 1112 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
17:41:01.0189 1112 BrSerWdm - ok
17:41:01.0241 1112 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
17:41:01.0346 1112 BrUsbMdm - ok
17:41:01.0438 1112 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
17:41:01.0509 1112 BrUsbSer - ok
17:41:01.0610 1112 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:41:01.0696 1112 BTHMODEM - ok
17:41:01.0724 1112 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:41:01.0761 1112 cdfs - ok
17:41:01.0877 1112 [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:41:01.0920 1112 cdrom - ok
17:41:02.0002 1112 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc C:\Windows\System32\certprop.dll
17:41:02.0086 1112 CertPropSvc - ok
17:41:02.0173 1112 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
17:41:02.0221 1112 circlass - ok
17:41:02.0296 1112 [ 0703B9DEE7EEC6D6370EDEBD43D0F5C2 ] CLFS C:\Windows\system32\CLFS.sys
17:41:02.0317 1112 CLFS - ok
17:41:02.0659 1112 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:41:02.0675 1112 clr_optimization_v2.0.50727_32 - ok
17:41:02.0721 1112 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:41:02.0788 1112 CmBatt - ok
17:41:02.0822 1112 [ D36372A6EA6805EFBE8884D10772313F ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:41:02.0836 1112 cmdide - ok
17:41:02.0889 1112 [ 1ADF6F4852E7D7E2E8AC481BDB970586 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
17:41:02.0984 1112 CnxtHdAudService - ok
17:41:03.0116 1112 [ 7795F8CEBC284A426B53F541E538695F ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
17:41:03.0140 1112 Com4QLBEx - ok
17:41:03.0172 1112 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:41:03.0186 1112 Compbatt - ok
17:41:03.0204 1112 COMSysApp - ok
17:41:03.0257 1112 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:41:03.0271 1112 crcdisk - ok
17:41:03.0696 1112 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
17:41:03.0781 1112 Crusoe - ok
17:41:03.0827 1112 [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:41:03.0896 1112 CryptSvc - ok
17:41:03.0980 1112 [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:41:04.0060 1112 DcomLaunch - ok
17:41:04.0082 1112 [ 9E635AE5E8AD93E2B5989E2E23679F97 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:41:04.0141 1112 DfsC - ok
17:41:04.0252 1112 [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR C:\Windows\system32\DFSR.exe
17:41:04.0455 1112 DFSR - ok
17:41:04.0513 1112 [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
17:41:04.0578 1112 Dhcp - ok
17:41:04.0617 1112 [ 64109E623ABD6955C8FB110B592E68B7 ] disk C:\Windows\system32\drivers\disk.sys
17:41:04.0634 1112 disk - ok
17:41:04.0657 1112 [ F5A0F1DA1ED8B429597E71D27D976E31 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:41:04.0718 1112 Dnscache - ok
17:41:04.0859 1112 [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc C:\Windows\System32\dot3svc.dll
17:41:04.0916 1112 dot3svc - ok
17:41:04.0960 1112 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
17:41:05.0010 1112 DPS - ok
17:41:05.0097 1112 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:41:05.0178 1112 drmkaud - ok
17:41:05.0240 1112 [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:41:05.0353 1112 DXGKrnl - ok
17:41:05.0440 1112 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
17:41:05.0598 1112 E1G60 - ok
17:41:05.0626 1112 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
17:41:05.0715 1112 EapHost - ok
17:41:05.0755 1112 [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache C:\Windows\system32\drivers\ecache.sys
17:41:05.0775 1112 Ecache - ok
17:41:05.0833 1112 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:41:05.0877 1112 ehRecvr - ok
17:41:05.0905 1112 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
17:41:05.0976 1112 ehSched - ok
17:41:06.0016 1112 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
17:41:06.0036 1112 ehstart - ok
17:41:06.0089 1112 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:41:06.0119 1112 elxstor - ok
17:41:06.0341 1112 [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt C:\Windows\system32\emdmgmt.dll
17:41:06.0570 1112 EMDMgmt - ok
17:41:06.0651 1112 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:41:06.0734 1112 ErrDev - ok
17:41:06.0828 1112 [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem C:\Windows\system32\es.dll
17:41:06.0895 1112 EventSystem - ok
17:41:06.0952 1112 [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat C:\Windows\system32\drivers\exfat.sys
17:41:07.0002 1112 exfat - ok
17:41:07.0062 1112 [ 42F721C52EEF2D6DF9372A53813A83EF ] ezSharedSvc C:\Windows\System32\ezsvc7.dll
17:41:07.0091 1112 ezSharedSvc ( UnsignedFile.Multi.Generic ) - warning
17:41:07.0091 1112 ezSharedSvc - detected UnsignedFile.Multi.Generic (1)
17:41:07.0117 1112 [ 3C489390C2E2064563727752AF8EAB9E ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:41:07.0181 1112 fastfat - ok
17:41:07.0321 1112 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:41:07.0425 1112 fdc - ok
17:41:07.0497 1112 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
17:41:07.0575 1112 fdPHost - ok
17:41:07.0627 1112 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
17:41:07.0735 1112 FDResPub - ok
17:41:07.0787 1112 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:41:07.0803 1112 FileInfo - ok
17:41:07.0915 1112 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:41:07.0961 1112 Filetrace - ok
17:41:08.0080 1112 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:41:08.0183 1112 flpydisk - ok
17:41:08.0219 1112 [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:41:08.0241 1112 FltMgr - ok
17:41:08.0404 1112 [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:41:08.0418 1112 FontCache3.0.0.0 - ok
17:41:08.0434 1112 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:41:08.0496 1112 Fs_Rec - ok
17:41:09.0177 1112 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:41:09.0194 1112 gagp30kx - ok
17:41:09.0336 1112 [ BC4D691A2F3339FE89726D4959C79996 ] GameConsoleService C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
17:41:09.0356 1112 GameConsoleService - ok
17:41:09.0391 1112 [ D9F1113D9401185245573350712F92FC ] gpsvc C:\Windows\System32\gpsvc.dll
17:41:09.0506 1112 gpsvc - ok
17:41:09.0778 1112 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:41:09.0800 1112 gupdate - ok
17:41:09.0817 1112 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:41:09.0831 1112 gupdatem - ok
17:41:09.0896 1112 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:41:10.0018 1112 HdAudAddService - ok
17:41:10.0036 1112 [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:41:10.0084 1112 HDAudBus - ok
17:41:10.0114 1112 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:41:10.0191 1112 HidBth - ok
17:41:10.0232 1112 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
17:41:10.0340 1112 HidIr - ok
17:41:10.0395 1112 [ 8FA640195279ACE21BEA91396A0054FC ] hidserv C:\Windows\system32\hidserv.dll
17:41:10.0499 1112 hidserv - ok
17:41:10.0558 1112 [ E2B5BD48AFCC0F0974FB44641B223250 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:41:10.0619 1112 HidUsb - ok
17:41:10.0713 1112 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:41:10.0786 1112 hkmsvc - ok
17:41:10.0865 1112 [ A19B0BB5A7EB6DF2DD4A0711D36955EE ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
17:41:10.0903 1112 HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
17:41:10.0904 1112 HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
17:41:10.0940 1112 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
17:41:10.0955 1112 HpCISSs - ok
17:41:10.0973 1112 [ 35956140E686D53BF676CF0C778880FC ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
17:41:11.0014 1112 HpqKbFiltr - ok
17:41:11.0062 1112 [ 1665C7121A026DF10C903DB9BC5E9D43 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
17:41:11.0077 1112 hpqwmiex - ok
17:41:11.0144 1112 [ CC267848CB3508E72762BE65734E764D ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
17:41:11.0235 1112 HSF_DPV - ok
17:41:11.0301 1112 [ A2882945CC4B6E3E4E9E825590438888 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
17:41:11.0323 1112 HSXHWAZL - ok
17:41:11.0361 1112 [ 406C027C18E98A396FAA1963DAD5FF70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:41:11.0438 1112 HTTP - ok
17:41:11.0485 1112 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
17:41:11.0500 1112 i2omp - ok
17:41:11.0598 1112 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:41:11.0654 1112 i8042prt - ok
17:41:11.0689 1112 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
17:41:11.0713 1112 iaStorV - ok
17:41:11.0822 1112 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:41:11.0856 1112 IDriverT ( UnsignedFile.Multi.Generic ) - warning
17:41:11.0857 1112 IDriverT - detected UnsignedFile.Multi.Generic (1)
17:41:12.0306 1112 [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:41:12.0450 1112 idsvc - ok
17:41:12.0637 1112 [ F1F52F4B4DD7CB8B47570690363F1B28 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
17:41:12.0999 1112 igfx - ok
17:41:13.0033 1112 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:41:13.0049 1112 iirsp - ok
17:41:13.0085 1112 [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT C:\Windows\System32\ikeext.dll
17:41:13.0169 1112 IKEEXT - ok
17:41:13.0232 1112 [ C7E7E43CBD34D3B0A0156B51B917DFCC ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
17:41:13.0310 1112 IntcHdmiAddService - ok
17:41:13.0359 1112 [ DD512A049BD7B4BCE8A83554C5EFF2C1 ] intelide C:\Windows\system32\drivers\intelide.sys
17:41:13.0374 1112 intelide - ok
17:41:13.0416 1112 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:41:13.0490 1112 intelppm - ok
17:41:13.0679 1112 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:41:13.0738 1112 IPBusEnum - ok
17:41:13.0789 1112 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:41:13.0842 1112 IpFilterDriver - ok
17:41:13.0852 1112 IpInIp - ok
17:41:13.0901 1112 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
17:41:13.0951 1112 IPMIDRV - ok
17:41:13.0961 1112 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
17:41:14.0010 1112 IPNAT - ok
17:41:14.0053 1112 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:41:14.0127 1112 IRENUM - ok
17:41:14.0156 1112 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:41:14.0172 1112 isapnp - ok
17:41:14.0205 1112 [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:41:14.0225 1112 iScsiPrt - ok
17:41:14.0236 1112 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
17:41:14.0251 1112 iteatapi - ok
17:41:14.0262 1112 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
17:41:14.0277 1112 iteraid - ok
17:41:14.0308 1112 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:41:14.0323 1112 kbdclass - ok
17:41:14.0341 1112 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:41:14.0389 1112 kbdhid - ok
17:41:14.0416 1112 [ DCF733788C7D088D814E5F80EB4B3E0F ] KeyIso C:\Windows\system32\lsass.exe
17:41:14.0457 1112 KeyIso - ok
17:41:14.0513 1112 [ 5367DC846CAE9639B899BFD13B97A8C9 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:41:14.0570 1112 KSecDD - ok
17:41:14.0627 1112 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
17:41:14.0666 1112 KtmRm - ok
17:41:14.0689 1112 [ 05CE901A4472B3FBF9407C94AD1DB693 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:41:14.0731 1112 LanmanServer - ok
17:41:14.0767 1112 [ DEC1A338B86C5D582C25C40836DD76C3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:41:14.0810 1112 LanmanWorkstation - ok
17:41:14.0866 1112 [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
17:41:14.0871 1112 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
17:41:14.0871 1112 LightScribeService - detected UnsignedFile.Multi.Generic (1)
17:41:14.0888 1112 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:41:14.0931 1112 lltdio - ok
17:41:15.0069 1112 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:41:15.0217 1112 lltdsvc - ok
17:41:15.0235 1112 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:41:15.0286 1112 lmhosts - ok
17:41:15.0347 1112 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:41:15.0357 1112 LSI_FC - ok
17:41:15.0370 1112 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:41:15.0380 1112 LSI_SAS - ok
17:41:15.0394 1112 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:41:15.0404 1112 LSI_SCSI - ok
17:41:15.0412 1112 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
17:41:15.0455 1112 luafv - ok
17:41:17.0307 1112 [ 22A7776C5D8EB5930EDF9C8DD0884259 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
17:41:17.0524 1112 McComponentHostService - ok
17:41:17.0586 1112 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:41:17.0657 1112 Mcx2Svc - ok
17:41:17.0733 1112 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
17:41:17.0750 1112 mdmxsdk - ok
17:41:17.0794 1112 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
17:41:17.0809 1112 megasas - ok
17:41:17.0842 1112 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
17:41:17.0874 1112 MegaSR - ok
17:41:17.0983 1112 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
17:41:18.0088 1112 MMCSS - ok
17:41:18.0125 1112 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
17:41:18.0183 1112 Modem - ok
17:41:18.0234 1112 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:41:18.0278 1112 monitor - ok
17:41:18.0308 1112 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:41:18.0323 1112 mouclass - ok
17:41:18.0371 1112 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:41:18.0415 1112 mouhid - ok
17:41:18.0490 1112 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
17:41:18.0507 1112 MountMgr - ok
17:41:18.0715 1112 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:41:18.0761 1112 MozillaMaintenance - ok
17:41:18.0903 1112 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
17:41:18.0985 1112 mpio - ok
17:41:19.0061 1112 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:41:19.0109 1112 mpsdrv - ok
17:41:19.0121 1112 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
17:41:19.0136 1112 Mraid35x - ok
17:41:19.0148 1112 [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:41:19.0281 1112 MRxDAV - ok
17:41:19.0313 1112 [ C4AD205530888404E2B5FC8D9319B119 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:41:19.0360 1112 mrxsmb - ok
17:41:19.0430 1112 [ 0A986B34F1678A2697574D7B1664E2DD ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:41:19.0486 1112 mrxsmb10 - ok
17:41:19.0517 1112 [ 3268B8C3FA92BFC086355C39B45E9CC9 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:41:19.0564 1112 mrxsmb20 - ok
17:41:19.0588 1112 [ AA305CFF241DA187BD5077DE4A2A043D ] msahci C:\Windows\system32\drivers\msahci.sys
17:41:19.0604 1112 msahci - ok
17:41:19.0619 1112 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:41:19.0631 1112 msdsm - ok
17:41:19.0663 1112 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
17:41:19.0696 1112 MSDTC - ok
17:41:19.0728 1112 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:41:19.0791 1112 Msfs - ok
17:41:19.0820 1112 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:41:19.0827 1112 msisadrv - ok
17:41:19.0868 1112 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:41:19.0892 1112 MSiSCSI - ok
17:41:19.0897 1112 msiserver - ok
17:41:19.0973 1112 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:41:20.0045 1112 MSKSSRV - ok
17:41:20.0100 1112 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:41:20.0122 1112 MSPCLOCK - ok
17:41:20.0162 1112 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:41:20.0194 1112 MSPQM - ok
17:41:20.0233 1112 [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:41:20.0246 1112 MsRPC - ok
17:41:20.0298 1112 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:41:20.0307 1112 mssmbios - ok
17:41:20.0368 1112 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:41:20.0452 1112 MSTEE - ok
17:41:20.0482 1112 [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup C:\Windows\system32\Drivers\mup.sys
17:41:20.0497 1112 Mup - ok
17:41:20.0651 1112 [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent C:\Windows\system32\qagentRT.dll
17:41:20.0815 1112 napagent - ok
17:41:20.0863 1112 [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:41:20.0887 1112 NativeWifiP - ok
17:41:20.0919 1112 [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:41:21.0015 1112 NDIS - ok
17:41:21.0097 1112 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:41:21.0192 1112 NdisTapi - ok
17:41:21.0228 1112 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:41:21.0275 1112 Ndisuio - ok
17:41:21.0304 1112 [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:41:21.0352 1112 NdisWan - ok
17:41:21.0382 1112 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:41:21.0427 1112 NDProxy - ok
17:41:21.0585 1112 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:41:21.0675 1112 NetBIOS - ok
17:41:21.0726 1112 [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
17:41:21.0763 1112 netbt - ok
17:41:21.0799 1112 [ DCF733788C7D088D814E5F80EB4B3E0F ] Netlogon C:\Windows\system32\lsass.exe
17:41:21.0810 1112 Netlogon - ok
17:41:21.0962 1112 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
17:41:22.0135 1112 Netman - ok
17:41:22.0156 1112 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
17:41:22.0198 1112 netprofm - ok
17:41:22.0244 1112 [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:41:22.0257 1112 NetTcpPortSharing - ok
17:41:22.0710 1112 [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
17:41:22.0966 1112 NETw3v32 - ok
17:41:23.0063 1112 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:41:23.0109 1112 nfrd960 - ok
17:41:23.0140 1112 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:41:23.0216 1112 NlaSvc - ok
17:41:23.0225 1112 [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:41:23.0304 1112 Npfs - ok
17:41:23.0320 1112 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
17:41:23.0416 1112 nsi - ok
17:41:23.0447 1112 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:41:23.0484 1112 nsiproxy - ok
17:41:23.0912 1112 [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:41:24.0063 1112 Ntfs - ok
17:41:24.0096 1112 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
17:41:24.0187 1112 ntrigdigi - ok
17:41:24.0247 1112 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
17:41:24.0272 1112 Null - ok
17:41:24.0314 1112 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:41:24.0329 1112 nvraid - ok
17:41:24.0375 1112 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:41:24.0384 1112 nvstor - ok
17:41:24.0468 1112 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:41:24.0483 1112 nv_agp - ok
17:41:24.0489 1112 NwlnkFlt - ok
17:41:24.0497 1112 NwlnkFwd - ok
17:41:24.0710 1112 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
17:41:24.0768 1112 ohci1394 - ok
17:41:24.0893 1112 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc C:\Windows\system32\p2psvc.dll
17:41:25.0143 1112 p2pimsvc - ok
17:41:25.0172 1112 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc C:\Windows\system32\p2psvc.dll
17:41:25.0260 1112 p2psvc - ok
17:41:25.0304 1112 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
17:41:25.0468 1112 Parport - ok
17:41:25.0548 1112 [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:41:25.0565 1112 partmgr - ok
17:41:25.0600 1112 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
17:41:25.0710 1112 Parvdm - ok
17:41:25.0772 1112 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
17:41:25.0811 1112 PcaSvc - ok
17:41:25.0829 1112 [ 01B94418DEB235DFF777CC80076354B4 ] pci C:\Windows\system32\drivers\pci.sys
17:41:25.0849 1112 pci - ok
17:41:25.0863 1112 [ 1D8B3D8DF8EB7FCF2F0AC02F9F947802 ] pciide C:\Windows\system32\drivers\pciide.sys
17:41:25.0877 1112 pciide - ok
17:41:26.0000 1112 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:41:26.0011 1112 pcmcia - ok
17:41:26.0190 1112 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:41:26.0686 1112 PEAUTH - ok
17:41:27.0125 1112 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
17:41:27.0461 1112 pla - ok
17:41:27.0534 1112 [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:41:27.0677 1112 PlugPlay - ok
17:41:27.0950 1112 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
17:41:28.0071 1112 PNRPAutoReg - ok
17:41:28.0352 1112 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc C:\Windows\system32\p2psvc.dll
17:41:28.0445 1112 PNRPsvc - ok
17:41:28.0673 1112 [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:41:28.0804 1112 PolicyAgent - ok
17:41:28.0833 1112 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:41:28.0900 1112 PptpMiniport - ok
17:41:28.0929 1112 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
17:41:28.0977 1112 Processor - ok
17:41:29.0077 1112 [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc C:\Windows\system32\profsvc.dll
17:41:29.0229 1112 ProfSvc - ok
17:41:29.0260 1112 [ DCF733788C7D088D814E5F80EB4B3E0F ] ProtectedStorage C:\Windows\system32\lsass.exe
17:41:29.0282 1112 ProtectedStorage - ok
17:41:29.0313 1112 [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched C:\Windows\system32\DRIVERS\pacer.sys
17:41:29.0431 1112 PSched - ok
17:41:29.0508 1112 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:41:29.0718 1112 ql2300 - ok
17:41:29.0728 1112 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:41:29.0746 1112 ql40xx - ok
17:41:29.0812 1112 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
17:41:29.0933 1112 QWAVE - ok
17:41:29.0957 1112 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:41:30.0001 1112 QWAVEdrv - ok
17:41:30.0050 1112 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:41:30.0130 1112 RasAcd - ok
17:41:30.0183 1112 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
17:41:30.0241 1112 RasAuto - ok
17:41:30.0315 1112 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:41:30.0365 1112 Rasl2tp - ok
17:41:30.0418 1112 [ AFB474438762F0418060653F7294D92C ] RasMan C:\Windows\System32\rasmans.dll
17:41:30.0478 1112 RasMan - ok
17:41:30.0552 1112 [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:41:30.0598 1112 RasPppoe - ok
17:41:30.0677 1112 [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:41:30.0728 1112 RasSstp - ok
17:41:30.0778 1112 [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:41:30.0830 1112 rdbss - ok
17:41:30.0911 1112 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:41:31.0031 1112 RDPCDD - ok
17:41:31.0114 1112 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
17:41:31.0166 1112 rdpdr - ok
17:41:31.0179 1112 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:41:31.0267 1112 RDPENCDD - ok
17:41:31.0312 1112 [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:41:31.0345 1112 RDPWD - ok
17:41:31.0400 1112 [ 0D362785BEF9BDF5A6E1F4628D06716D ] Recovery Service for Windows C:\Program Files\SMINST\BLService.exe
17:41:31.0535 1112 Recovery Service for Windows - ok
17:41:31.0616 1112 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:41:31.0640 1112 RemoteAccess - ok
17:41:31.0777 1112 [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:41:31.0825 1112 RemoteRegistry - ok
17:41:32.0160 1112 [ 805AE1F90C64758D19AAA001CF8CBA12 ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
17:41:32.0251 1112 RichVideo ( UnsignedFile.Multi.Generic ) - warning
17:41:32.0251 1112 RichVideo - detected UnsignedFile.Multi.Generic (1)
17:41:32.0281 1112 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
17:41:32.0313 1112 RpcLocator - ok
17:41:32.0514 1112 [ 301AE00E12408650BADDC04DBC832830 ] RpcSs C:\Windows\system32\rpcss.dll
17:41:32.0574 1112 RpcSs - ok
17:41:32.0617 1112 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:41:32.0666 1112 rspndr - ok
17:41:32.0746 1112 [ 125C504A34D0A2E152517E342E7E432C ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
17:41:32.0801 1112 RTL8169 - ok
17:41:32.0852 1112 [ 8DAB5975B5C7923D61506A48E251DBAD ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
17:41:32.0891 1112 RTSTOR - ok
17:41:32.0924 1112 [ DCF733788C7D088D814E5F80EB4B3E0F ] SamSs C:\Windows\system32\lsass.exe
17:41:32.0946 1112 SamSs - ok
17:41:33.0020 1112 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:41:33.0039 1112 sbp2port - ok
17:41:33.0211 1112 [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:41:33.0331 1112 SCardSvr - ok
17:41:33.0523 1112 [ 1D5E99DB3C10F4FA034010DC49043CA4 ] Schedule C:\Windows\system32\schedsvc.dll
17:41:33.0753 1112 Schedule - ok
17:41:33.0812 1112 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc C:\Windows\System32\certprop.dll
17:41:33.0856 1112 SCPolicySvc - ok
17:41:33.0988 1112 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
17:41:34.0116 1112 sdbus - ok
17:41:34.0154 1112 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:41:34.0211 1112 SDRSVC - ok
17:41:34.0234 1112 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:41:34.0326 1112 secdrv - ok
17:41:34.0446 1112 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
17:41:34.0636 1112 seclogon - ok
17:41:34.0650 1112 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
17:41:34.0703 1112 SENS - ok
17:41:34.0747 1112 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
17:41:34.0891 1112 Serenum - ok
17:41:34.0960 1112 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
17:41:35.0051 1112 Serial - ok
17:41:35.0109 1112 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:41:35.0142 1112 sermouse - ok
17:41:35.0201 1112 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
17:41:35.0243 1112 SessionEnv - ok
17:41:35.0317 1112 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:41:35.0366 1112 sffdisk - ok
17:41:35.0405 1112 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:41:35.0467 1112 sffp_mmc - ok
17:41:35.0498 1112 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:41:35.0564 1112 sffp_sd - ok
17:41:35.0602 1112 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:41:35.0709 1112 sfloppy - ok
17:41:35.0778 1112 [ 27F10F348E508243F6254846F8370D0D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:41:35.0807 1112 ShellHWDetection - ok
17:41:35.0881 1112 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
17:41:35.0894 1112 sisagp - ok
17:41:35.0919 1112 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
17:41:35.0928 1112 SiSRaid2 - ok
17:41:35.0941 1112 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:41:35.0950 1112 SiSRaid4 - ok
17:41:36.0184 1112 [ 0BA91E1358AD25236863039BB2609A2E ] slsvc C:\Windows\system32\SLsvc.exe
17:41:36.0316 1112 slsvc - ok
17:41:36.0344 1112 [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify C:\Windows\system32\SLUINotify.dll
17:41:36.0378 1112 SLUINotify - ok
17:41:36.0555 1112 [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:41:36.0692 1112 Smb - ok
17:41:36.0746 1112 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:41:36.0770 1112 SNMPTRAP - ok
17:41:36.0835 1112 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
17:41:36.0846 1112 spldr - ok
17:41:36.0909 1112 [ 846CDF9A3CF4DA9B306ADFB7D55EE4C2 ] Spooler C:\Windows\System32\spoolsv.exe
17:41:37.0033 1112 Spooler - ok
17:41:37.0281 1112 [ 73DDDBEEC61E78568082916A27AADAEE ] srv C:\Windows\system32\DRIVERS\srv.sys
17:41:37.0435 1112 srv - ok
17:41:37.0484 1112 [ 805FAC010405AD3F82EF8DF0BB035D81 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:41:37.0550 1112 srv2 - ok
17:41:37.0569 1112 [ F63A0A58AAFE34D7A1A0A74ABCCDD9C0 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:41:37.0637 1112 srvnet - ok
17:41:37.0731 1112 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:41:37.0884 1112 SSDPSRV - ok
17:41:38.0015 1112 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:41:38.0072 1112 SstpSvc - ok
17:41:38.0129 1112 [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc C:\Windows\System32\wiaservc.dll
17:41:38.0208 1112 stisvc - ok
17:41:38.0329 1112 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:41:38.0346 1112 swenum - ok
17:41:38.0489 1112 [ B36C7CDB86F7F7A8E884479219766950 ] swprv C:\Windows\System32\swprv.dll
17:41:38.0555 1112 swprv - ok
17:41:38.0594 1112 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
17:41:38.0609 1112 Symc8xx - ok
17:41:38.0618 1112 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
17:41:38.0633 1112 Sym_hi - ok
17:41:38.0643 1112 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
17:41:38.0658 1112 Sym_u3 - ok
17:41:38.0691 1112 [ 00B19F27858F56181EDB58B71A7C67A0 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:41:38.0710 1112 SynTP - ok
17:41:39.0152 1112 [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain C:\Windows\system32\sysmain.dll
17:41:39.0340 1112 SysMain - ok
17:41:39.0407 1112 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:41:39.0438 1112 TabletInputService - ok
17:41:39.0522 1112 [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv C:\Windows\System32\tapisrv.dll
17:41:39.0671 1112 TapiSrv - ok
17:41:39.0752 1112 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
17:41:39.0874 1112 TBS - ok
17:41:40.0175 1112 [ 82E266BEE5F0167E41C6ECFDD2A79C02 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:41:40.0295 1112 Tcpip - ok
17:41:40.0515 1112 [ 82E266BEE5F0167E41C6ECFDD2A79C02 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
17:41:40.0582 1112 Tcpip6 - ok
17:41:40.0658 1112 [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:41:40.0708 1112 tcpipreg - ok
17:41:40.0738 1112 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:41:40.0783 1112 TDPIPE - ok
17:41:40.0808 1112 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:41:40.0855 1112 TDTCP - ok
17:41:40.0907 1112 [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:41:40.0973 1112 tdx - ok
17:41:41.0026 1112 [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:41:41.0041 1112 TermDD - ok
17:41:41.0272 1112 [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService C:\Windows\System32\termsrv.dll
17:41:41.0399 1112 TermService - ok
17:41:41.0419 1112 [ 27F10F348E508243F6254846F8370D0D ] Themes C:\Windows\system32\shsvcs.dll
17:41:41.0472 1112 Themes - ok
17:41:41.0521 1112 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
17:41:41.0567 1112 THREADORDER - ok
17:41:41.0619 1112 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
17:41:41.0736 1112 TrkWks - ok
17:41:41.0925 1112 [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:41:42.0070 1112 TrustedInstaller - ok
17:41:42.0198 1112 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:41:42.0272 1112 tssecsrv - ok
17:41:42.0301 1112 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
17:41:42.0345 1112 tunmp - ok
17:41:42.0420 1112 [ 119B8184E106BAEDC83FCE5DDF3950DA ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:41:42.0506 1112 tunnel - ok
17:41:42.0554 1112 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:41:42.0602 1112 uagp35 - ok
17:41:42.0626 1112 [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:41:42.0678 1112 udfs - ok
17:41:42.0729 1112 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:41:42.0787 1112 UI0Detect - ok
17:41:42.0871 1112 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:41:42.0891 1112 uliagpkx - ok
17:41:42.0911 1112 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
17:41:42.0952 1112 uliahci - ok
17:41:42.0965 1112 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
17:41:42.0983 1112 UlSata - ok
17:41:42.0993 1112 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
17:41:43.0011 1112 ulsata2 - ok
17:41:43.0028 1112 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:41:43.0074 1112 umbus - ok
17:41:43.0114 1112 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
17:41:43.0207 1112 upnphost - ok
17:41:43.0267 1112 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:41:43.0320 1112 usbccgp - ok
17:41:43.0473 1112 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:41:43.0558 1112 usbcir - ok
17:41:43.0604 1112 [ CEBE90821810E76320155BEBA722FCF9 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:41:43.0649 1112 usbehci - ok
17:41:43.0676 1112 [ CC6B28E4CE39951357963119CE47B143 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:41:43.0727 1112 usbhub - ok
17:41:43.0758 1112 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:41:43.0838 1112 usbohci - ok
17:41:43.0941 1112 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:41:44.0052 1112 usbprint - ok
17:41:44.0147 1112 [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:41:44.0198 1112 USBSTOR - ok
17:41:44.0320 1112 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:41:44.0454 1112 usbuhci - ok
17:41:44.0510 1112 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
17:41:44.0571 1112 usbvideo - ok
17:41:44.0603 1112 [ 032A0ACC3909AE7215D524E29D536797 ] UxSms C:\Windows\System32\uxsms.dll
17:41:44.0646 1112 UxSms - ok
17:41:44.0666 1112 [ B13BC395B9D6116628F5AF47E0802AC4 ] vds C:\Windows\System32\vds.exe
17:41:44.0792 1112 vds - ok
17:41:44.0950 1112 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:41:45.0020 1112 vga - ok
17:41:45.0051 1112 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
17:41:45.0109 1112 VgaSave - ok
17:41:45.0150 1112 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
17:41:45.0161 1112 viaagp - ok
17:41:45.0181 1112 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
17:41:45.0210 1112 ViaC7 - ok
17:41:45.0241 1112 [ EA1AA6E3ABB3C194FEBA12A46DE8CF2C ] viaide C:\Windows\system32\drivers\viaide.sys
17:41:45.0251 1112 viaide - ok
17:41:45.0280 1112 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:41:45.0290 1112 volmgr - ok
17:41:45.0363 1112 [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:41:45.0383 1112 volmgrx - ok
17:41:45.0410 1112 [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:41:45.0512 1112 volsnap - ok
17:41:45.0522 1112 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:41:45.0538 1112 vsmraid - ok
17:41:45.0677 1112 [ D5FB73D19C46ADE183F968E13F186B23 ] VSS C:\Windows\system32\vssvc.exe
17:41:45.0864 1112 VSS - ok
17:41:45.0947 1112 [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time C:\Windows\system32\w32time.dll
17:41:46.0014 1112 W32Time - ok
17:41:46.0056 1112 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:41:46.0138 1112 WacomPen - ok
17:41:46.0170 1112 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
17:41:46.0243 1112 Wanarp - ok
17:41:46.0252 1112 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:41:46.0300 1112 Wanarpv6 - ok
17:41:46.0391 1112 [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:41:46.0513 1112 wcncsvc - ok
17:41:46.0599 1112 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:41:46.0627 1112 WcsPlugInService - ok
17:41:46.0664 1112 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
17:41:46.0672 1112 Wd - ok
17:41:46.0787 1112 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:41:46.0875 1112 Wdf01000 - ok
17:41:46.0967 1112 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:41:47.0022 1112 WdiServiceHost - ok
17:41:47.0028 1112 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:41:47.0065 1112 WdiSystemHost - ok
17:41:47.0087 1112 [ CF9A5F41789B642DB967021DE06A2713 ] WebClient C:\Windows\System32\webclnt.dll
17:41:47.0117 1112 WebClient - ok
17:41:47.0138 1112 [ 905214925A88311FCE52F66153DE7610 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:41:47.0179 1112 Wecsvc - ok
17:41:47.0194 1112 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:41:47.0235 1112 wercplsupport - ok
17:41:47.0264 1112 [ FD1965AAA112C6818A30AB02742D0461 ] WerSvc C:\Windows\System32\WerSvc.dll
17:41:47.0296 1112 WerSvc - ok
17:41:47.0342 1112 [ 0ACD399F5DB3DF1B58903CF4949AB5A8 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
17:41:47.0379 1112 winachsf - ok
17:41:47.0387 1112 WinHttpAutoProxySvc - ok
17:41:47.0607 1112 [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:41:47.0659 1112 Winmgmt - ok
17:41:47.0815 1112 [ 20FC93FDC916843CFDFCAA7A1B0DB16F ] WinRM C:\Windows\system32\WsmSvc.dll
17:41:48.0169 1112 WinRM - ok
17:41:48.0292 1112 [ 4B40FF01DB5357299DCBDB5A5746AD21 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:41:48.0353 1112 Wlansvc - ok
17:41:48.0375 1112 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:41:48.0419 1112 WmiAcpi - ok
17:41:48.0452 1112 [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:41:48.0510 1112 wmiApSrv - ok
17:41:48.0641 1112 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
17:41:48.0736 1112 WMPNetworkSvc - ok
17:41:48.0800 1112 [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:41:48.0914 1112 WPCSvc - ok
17:41:48.0935 1112 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:41:49.0005 1112 WPDBusEnum - ok
17:41:49.0047 1112 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:41:49.0095 1112 ws2ifsl - ok
17:41:49.0103 1112 WSearch - ok
17:41:49.0157 1112 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:41:49.0204 1112 WUDFRd - ok
17:41:49.0232 1112 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:41:49.0283 1112 wudfsvc - ok
17:41:49.0295 1112 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
17:41:49.0322 1112 XAudio - ok
17:41:49.0383 1112 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
17:41:49.0440 1112 XAudioService - ok
17:41:49.0501 1112 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
17:41:49.0587 1112 yukonwlh - ok
17:41:49.0635 1112 ================ Scan global ===============================
17:41:49.0666 1112 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
17:41:49.0693 1112 [ 8B05FAF8603E6FDE90C5B103761CC3F6 ] C:\Windows\system32\winsrv.dll
17:41:49.0738 1112 [ 8B05FAF8603E6FDE90C5B103761CC3F6 ] C:\Windows\system32\winsrv.dll
17:41:49.0890 1112 [ 5DC3C54FC22BBB6F66C290C7C0384DF9 ] C:\Windows\system32\services.exe
17:41:49.0948 1112 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - infected
17:41:49.0948 1112 C:\Windows\system32\services.exe - detected Virus.Win32.ZAccess.m (0)
17:41:49.0949 1112 ================ Scan MBR ==================================
17:41:49.0969 1112 [ 588AE8F0C685C02BA11F30D9CD7E61A0 ] \Device\Harddisk0\DR0
17:41:54.0212 1112 \Device\Harddisk0\DR0 - ok
17:41:54.0212 1112 ================ Scan VBR ==================================
17:41:54.0218 1112 [ 896B95FCA63108FD7CE4D9B6B2BC323A ] \Device\Harddisk0\DR0\Partition1
17:41:54.0221 1112 \Device\Harddisk0\DR0\Partition1 - ok
17:41:54.0310 1112 [ CE72B091EAEB452A4132BDEDF2A7A4C2 ] \Device\Harddisk0\DR0\Partition2
17:41:54.0315 1112 \Device\Harddisk0\DR0\Partition2 - ok
17:41:54.0316 1112 ============================================================
17:41:54.0316 1112 Scan finished
17:41:54.0316 1112 ============================================================
17:41:54.0336 1096 Detected object count: 6
17:41:54.0336 1096 Actual detected object count: 6
17:42:27.0149 1096 ezSharedSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:42:27.0149 1096 ezSharedSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:42:27.0153 1096 HP Health Check Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:42:27.0153 1096 HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:42:27.0156 1096 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
17:42:27.0156 1096 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:42:27.0160 1096 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
17:42:27.0160 1096 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:42:27.0163 1096 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
17:42:27.0163 1096 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:42:27.0167 1096 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - skipped by user
17:42:27.0167 1096 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - User select action: Skip
17:43:26.0960 3008 Deinitialize success
|
|
14.10.2012, 19:42
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | AVG meldet: services.exe mit Trojaner infiziertCode:
ATTFilter C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - skipped by user
Um das zu tun musst du den TDSS-Killer neu starten und einen neuen Scan machen. Wenn du danach die Ergebnisse siehst, stellst du bitte diesen Eintrag auf CURE bzw. DELETE (je nachdem was dir angeboten wird, alle anderen bitte auf SKIP lassen! ) und klickst dann unten rechts auf continue Starte Windows danach neu und mach wieder ein komplett neues Log mit dem TDSS-Killer. Wie immer wieder in CODE-Tags posten.
__________________ |
|
14.10.2012, 20:58
| #19 |
| | AVG meldet: services.exe mit Trojaner infiziert Hier das Log nach dem Reboot: Code:
ATTFilter 21:52:31.0486 2440 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
21:52:31.0533 2440 ============================================================
21:52:31.0533 2440 Current date / time: 2012/10/14 21:52:31.0533
21:52:31.0533 2440 SystemInfo:
21:52:31.0533 2440
21:52:31.0533 2440 OS Version: 6.0.6001 ServicePack: 1.0
21:52:31.0533 2440 Product type: Workstation
21:52:31.0533 2440 ComputerName: VANESSA-PC
21:52:31.0533 2440 UserName: Vanessa
21:52:31.0533 2440 Windows directory: C:\Windows
21:52:31.0533 2440 System windows directory: C:\Windows
21:52:31.0533 2440 Processor architecture: Intel x86
21:52:31.0533 2440 Number of processors: 2
21:52:31.0533 2440 Page size: 0x1000
21:52:31.0533 2440 Boot type: Normal boot
21:52:31.0533 2440 ============================================================
21:52:35.0323 2440 BG loaded
21:52:35.0973 2440 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:52:35.0985 2440 ============================================================
21:52:35.0985 2440 \Device\Harddisk0\DR0:
21:52:35.0986 2440 MBR partitions:
21:52:35.0986 2440 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1BCB27C1
21:52:35.0986 2440 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1BCB2800, BlocksNum 0x1511800
21:52:35.0986 2440 ============================================================
21:52:36.0201 2440 C: <-> \Device\Harddisk0\DR0\Partition1
21:52:36.0710 2440 D: <-> \Device\Harddisk0\DR0\Partition2
21:52:36.0710 2440 ============================================================
21:52:36.0710 2440 Initialize success
21:52:36.0710 2440 ============================================================
21:53:41.0060 2460 ============================================================
21:53:41.0060 2460 Scan started
21:53:41.0060 2460 Mode: Manual; SigCheck; TDLFS;
21:53:41.0060 2460 ============================================================
21:53:42.0470 2460 ================ Scan system memory ========================
21:53:42.0470 2460 System memory - ok
21:53:42.0471 2460 ================ Scan services =============================
21:53:43.0081 2460 [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI C:\Windows\system32\drivers\acpi.sys
21:53:43.0230 2460 ACPI - ok
21:53:43.0398 2460 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:53:43.0409 2460 AdobeFlashPlayerUpdateSvc - ok
21:53:43.0565 2460 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:53:43.0668 2460 adp94xx - ok
21:53:43.0682 2460 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:53:43.0725 2460 adpahci - ok
21:53:43.0749 2460 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
21:53:43.0770 2460 adpu160m - ok
21:53:43.0820 2460 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:53:43.0983 2460 adpu320 - ok
21:53:44.0062 2460 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:53:44.0431 2460 AeLookupSvc - ok
21:53:44.0486 2460 [ 763E172A55177E478CB419F88FD0BA03 ] AFD C:\Windows\system32\drivers\afd.sys
21:53:44.0565 2460 AFD - ok
21:53:44.0643 2460 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:53:44.0660 2460 agp440 - ok
21:53:44.0775 2460 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
21:53:44.0794 2460 aic78xx - ok
21:53:44.0823 2460 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
21:53:44.0874 2460 ALG - ok
21:53:44.0893 2460 [ 3D76FDA1A10ACC3DC84728F55C29B6D4 ] aliide C:\Windows\system32\drivers\aliide.sys
21:53:44.0908 2460 aliide - ok
21:53:44.0974 2460 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
21:53:44.0983 2460 amdagp - ok
21:53:44.0990 2460 [ 5B92E7839F5A1FBC1B39DE67758AD6F8 ] amdide C:\Windows\system32\drivers\amdide.sys
21:53:44.0998 2460 amdide - ok
21:53:45.0021 2460 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
21:53:45.0100 2460 AmdK7 - ok
21:53:45.0148 2460 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:53:45.0243 2460 AmdK8 - ok
21:53:45.0293 2460 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
21:53:45.0349 2460 Appinfo - ok
21:53:45.0379 2460 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
21:53:45.0396 2460 arc - ok
21:53:45.0411 2460 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:53:45.0428 2460 arcsas - ok
21:53:45.0478 2460 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:53:45.0579 2460 AsyncMac - ok
21:53:45.0593 2460 [ 9C0E70031905ADBF94EDB9EA14AF943B ] atapi C:\Windows\system32\drivers\atapi.sys
21:53:45.0608 2460 atapi - ok
21:53:45.0651 2460 [ 600EFE56F37ADBD65A0FB076B50D1B8D ] athr C:\Windows\system32\DRIVERS\athr.sys
21:53:45.0739 2460 athr - ok
21:53:45.0806 2460 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:53:45.0858 2460 AudioEndpointBuilder - ok
21:53:45.0877 2460 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:53:45.0917 2460 Audiosrv - ok
21:53:45.0949 2460 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
21:53:46.0012 2460 Beep - ok
21:53:46.0052 2460 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
21:53:46.0079 2460 blbdrive - ok
21:53:46.0107 2460 [ 74B442B2BE1260B7588C136177CEAC66 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:53:46.0266 2460 bowser - ok
21:53:46.0393 2460 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
21:53:46.0546 2460 BrFiltLo - ok
21:53:46.0604 2460 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
21:53:46.0716 2460 BrFiltUp - ok
21:53:46.0800 2460 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
21:53:46.0920 2460 Browser - ok
21:53:46.0979 2460 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
21:53:47.0194 2460 Brserid - ok
21:53:47.0265 2460 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
21:53:47.0350 2460 BrSerWdm - ok
21:53:47.0402 2460 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
21:53:47.0994 2460 BrUsbMdm - ok
21:53:48.0142 2460 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
21:53:48.0242 2460 BrUsbSer - ok
21:53:48.0337 2460 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:53:48.0461 2460 BTHMODEM - ok
21:53:48.0485 2460 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:53:48.0518 2460 cdfs - ok
21:53:48.0548 2460 [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:53:48.0575 2460 cdrom - ok
21:53:48.0607 2460 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc C:\Windows\System32\certprop.dll
21:53:48.0652 2460 CertPropSvc - ok
21:53:48.0689 2460 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
21:53:48.0793 2460 circlass - ok
21:53:48.0867 2460 [ 0703B9DEE7EEC6D6370EDEBD43D0F5C2 ] CLFS C:\Windows\system32\CLFS.sys
21:53:48.0927 2460 CLFS - ok
21:53:49.0285 2460 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:53:49.0301 2460 clr_optimization_v2.0.50727_32 - ok
21:53:49.0392 2460 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:53:49.0459 2460 CmBatt - ok
21:53:49.0548 2460 [ D36372A6EA6805EFBE8884D10772313F ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:53:49.0563 2460 cmdide - ok
21:53:49.0715 2460 [ 1ADF6F4852E7D7E2E8AC481BDB970586 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
21:53:49.0877 2460 CnxtHdAudService - ok
21:53:49.0986 2460 [ 7795F8CEBC284A426B53F541E538695F ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
21:53:50.0004 2460 Com4QLBEx - ok
21:53:50.0013 2460 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:53:50.0032 2460 Compbatt - ok
21:53:50.0042 2460 COMSysApp - ok
21:53:50.0069 2460 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:53:50.0087 2460 crcdisk - ok
21:53:50.0134 2460 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
21:53:50.0229 2460 Crusoe - ok
21:53:50.0265 2460 [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:53:50.0334 2460 CryptSvc - ok
21:53:50.0462 2460 [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:53:50.0610 2460 DcomLaunch - ok
21:53:50.0631 2460 [ 9E635AE5E8AD93E2B5989E2E23679F97 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:53:50.0688 2460 DfsC - ok
21:53:50.0970 2460 [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR C:\Windows\system32\DFSR.exe
21:53:51.0215 2460 DFSR - ok
21:53:51.0273 2460 [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
21:53:51.0337 2460 Dhcp - ok
21:53:51.0366 2460 [ 64109E623ABD6955C8FB110B592E68B7 ] disk C:\Windows\system32\drivers\disk.sys
21:53:51.0383 2460 disk - ok
21:53:51.0405 2460 [ F5A0F1DA1ED8B429597E71D27D976E31 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:53:51.0466 2460 Dnscache - ok
21:53:51.0519 2460 [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc C:\Windows\System32\dot3svc.dll
21:53:51.0567 2460 dot3svc - ok
21:53:51.0586 2460 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
21:53:51.0627 2460 DPS - ok
21:53:51.0823 2460 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:53:51.0896 2460 drmkaud - ok
21:53:52.0020 2460 [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:53:52.0088 2460 DXGKrnl - ok
21:53:52.0178 2460 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
21:53:52.0269 2460 E1G60 - ok
21:53:52.0341 2460 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
21:53:52.0430 2460 EapHost - ok
21:53:52.0459 2460 [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache C:\Windows\system32\drivers\ecache.sys
21:53:52.0479 2460 Ecache - ok
21:53:52.0604 2460 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:53:52.0659 2460 ehRecvr - ok
21:53:52.0698 2460 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
21:53:52.0769 2460 ehSched - ok
21:53:52.0820 2460 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
21:53:52.0838 2460 ehstart - ok
21:53:52.0960 2460 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:53:53.0094 2460 elxstor - ok
21:53:53.0190 2460 [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt C:\Windows\system32\emdmgmt.dll
21:53:53.0274 2460 EMDMgmt - ok
21:53:53.0389 2460 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:53:53.0460 2460 ErrDev - ok
21:53:53.0543 2460 [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem C:\Windows\system32\es.dll
21:53:53.0633 2460 EventSystem - ok
21:53:53.0701 2460 [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat C:\Windows\system32\drivers\exfat.sys
21:53:53.0749 2460 exfat - ok
21:53:53.0800 2460 [ 42F721C52EEF2D6DF9372A53813A83EF ] ezSharedSvc C:\Windows\System32\ezsvc7.dll
21:53:53.0839 2460 ezSharedSvc ( UnsignedFile.Multi.Generic ) - warning
21:53:53.0840 2460 ezSharedSvc - detected UnsignedFile.Multi.Generic (1)
21:53:53.0865 2460 [ 3C489390C2E2064563727752AF8EAB9E ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:53:53.0925 2460 fastfat - ok
21:53:53.0992 2460 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:53:54.0084 2460 fdc - ok
21:53:54.0290 2460 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
21:53:54.0523 2460 fdPHost - ok
21:53:54.0575 2460 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
21:53:54.0726 2460 FDResPub - ok
21:53:54.0791 2460 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:53:54.0807 2460 FileInfo - ok
21:53:54.0852 2460 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:53:54.0900 2460 Filetrace - ok
21:53:54.0950 2460 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:53:55.0042 2460 flpydisk - ok
21:53:55.0101 2460 [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:53:55.0120 2460 FltMgr - ok
21:53:55.0397 2460 [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:53:55.0410 2460 FontCache3.0.0.0 - ok
21:53:55.0460 2460 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:53:55.0556 2460 Fs_Rec - ok
21:53:55.0892 2460 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:53:55.0909 2460 gagp30kx - ok
21:53:56.0284 2460 [ BC4D691A2F3339FE89726D4959C79996 ] GameConsoleService C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
21:53:56.0304 2460 GameConsoleService - ok
21:53:56.0422 2460 [ D9F1113D9401185245573350712F92FC ] gpsvc C:\Windows\System32\gpsvc.dll
21:53:56.0492 2460 gpsvc - ok
21:53:57.0017 2460 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:53:57.0031 2460 gupdate - ok
21:53:57.0066 2460 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:53:57.0079 2460 gupdatem - ok
21:53:57.0145 2460 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:53:57.0265 2460 HdAudAddService - ok
21:53:57.0329 2460 [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:53:57.0441 2460 HDAudBus - ok
21:53:57.0518 2460 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:53:57.0666 2460 HidBth - ok
21:53:57.0814 2460 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
21:53:57.0964 2460 HidIr - ok
21:53:58.0054 2460 [ 8FA640195279ACE21BEA91396A0054FC ] hidserv C:\Windows\system32\hidserv.dll
21:53:58.0136 2460 hidserv - ok
21:53:58.0217 2460 [ E2B5BD48AFCC0F0974FB44641B223250 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:53:58.0305 2460 HidUsb - ok
21:53:58.0339 2460 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:53:58.0410 2460 hkmsvc - ok
21:53:58.0469 2460 [ A19B0BB5A7EB6DF2DD4A0711D36955EE ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
21:53:58.0541 2460 HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
21:53:58.0541 2460 HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
21:53:58.0588 2460 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
21:53:58.0607 2460 HpCISSs - ok
21:53:58.0632 2460 [ 35956140E686D53BF676CF0C778880FC ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
21:53:58.0753 2460 HpqKbFiltr - ok
21:53:58.0875 2460 [ 1665C7121A026DF10C903DB9BC5E9D43 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
21:53:58.0888 2460 hpqwmiex - ok
21:53:59.0047 2460 [ CC267848CB3508E72762BE65734E764D ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
21:53:59.0139 2460 HSF_DPV - ok
21:53:59.0204 2460 [ A2882945CC4B6E3E4E9E825590438888 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
21:53:59.0224 2460 HSXHWAZL - ok
21:53:59.0325 2460 [ 406C027C18E98A396FAA1963DAD5FF70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:53:59.0385 2460 HTTP - ok
21:53:59.0477 2460 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
21:53:59.0493 2460 i2omp - ok
21:53:59.0535 2460 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:53:59.0590 2460 i8042prt - ok
21:53:59.0627 2460 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
21:53:59.0651 2460 iaStorV - ok
21:53:59.0826 2460 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
21:53:59.0871 2460 IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:53:59.0871 2460 IDriverT - detected UnsignedFile.Multi.Generic (1)
21:54:00.0274 2460 [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:54:00.0578 2460 idsvc - ok
21:54:01.0179 2460 [ F1F52F4B4DD7CB8B47570690363F1B28 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
21:54:01.0361 2460 igfx - ok
21:54:01.0492 2460 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:54:01.0512 2460 iirsp - ok
21:54:01.0788 2460 [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT C:\Windows\System32\ikeext.dll
21:54:01.0983 2460 IKEEXT - ok
21:54:02.0035 2460 [ C7E7E43CBD34D3B0A0156B51B917DFCC ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
21:54:02.0087 2460 IntcHdmiAddService - ok
21:54:02.0140 2460 [ DD512A049BD7B4BCE8A83554C5EFF2C1 ] intelide C:\Windows\system32\drivers\intelide.sys
21:54:02.0149 2460 intelide - ok
21:54:02.0185 2460 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:54:02.0219 2460 intelppm - ok
21:54:02.0248 2460 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:54:02.0289 2460 IPBusEnum - ok
21:54:02.0336 2460 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:54:02.0362 2460 IpFilterDriver - ok
21:54:02.0369 2460 IpInIp - ok
21:54:02.0426 2460 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
21:54:02.0451 2460 IPMIDRV - ok
21:54:02.0462 2460 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
21:54:02.0487 2460 IPNAT - ok
21:54:02.0601 2460 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:54:02.0688 2460 IRENUM - ok
21:54:02.0725 2460 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:54:02.0743 2460 isapnp - ok
21:54:02.0774 2460 [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:54:02.0786 2460 iScsiPrt - ok
21:54:02.0794 2460 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
21:54:02.0804 2460 iteatapi - ok
21:54:02.0811 2460 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
21:54:02.0823 2460 iteraid - ok
21:54:02.0844 2460 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:54:02.0855 2460 kbdclass - ok
21:54:02.0899 2460 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:54:02.0933 2460 kbdhid - ok
21:54:02.0963 2460 [ DCF733788C7D088D814E5F80EB4B3E0F ] KeyIso C:\Windows\system32\lsass.exe
21:54:03.0015 2460 KeyIso - ok
21:54:03.0127 2460 [ 5367DC846CAE9639B899BFD13B97A8C9 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:54:03.0251 2460 KSecDD - ok
21:54:03.0309 2460 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
21:54:03.0377 2460 KtmRm - ok
21:54:03.0448 2460 [ 05CE901A4472B3FBF9407C94AD1DB693 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:54:03.0508 2460 LanmanServer - ok
21:54:03.0548 2460 [ DEC1A338B86C5D582C25C40836DD76C3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:54:03.0621 2460 LanmanWorkstation - ok
21:54:03.0691 2460 [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:54:03.0698 2460 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
21:54:03.0698 2460 LightScribeService - detected UnsignedFile.Multi.Generic (1)
21:54:03.0724 2460 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:54:03.0785 2460 lltdio - ok
21:54:03.0862 2460 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:54:03.0935 2460 lltdsvc - ok
21:54:03.0983 2460 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:54:04.0064 2460 lmhosts - ok
21:54:04.0128 2460 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:54:04.0148 2460 LSI_FC - ok
21:54:04.0180 2460 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:54:04.0198 2460 LSI_SAS - ok
21:54:04.0242 2460 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:54:04.0263 2460 LSI_SCSI - ok
21:54:04.0273 2460 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
21:54:04.0344 2460 luafv - ok
21:54:04.0944 2460 [ 22A7776C5D8EB5930EDF9C8DD0884259 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
21:54:05.0184 2460 McComponentHostService - ok
21:54:05.0245 2460 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:54:05.0293 2460 Mcx2Svc - ok
21:54:05.0314 2460 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
21:54:05.0330 2460 mdmxsdk - ok
21:54:05.0353 2460 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
21:54:05.0369 2460 megasas - ok
21:54:05.0396 2460 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
21:54:05.0419 2460 MegaSR - ok
21:54:05.0464 2460 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
21:54:05.0516 2460 MMCSS - ok
21:54:05.0539 2460 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
21:54:05.0578 2460 Modem - ok
21:54:05.0616 2460 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:54:05.0649 2460 monitor - ok
21:54:05.0667 2460 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:54:05.0679 2460 mouclass - ok
21:54:05.0697 2460 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:54:05.0732 2460 mouhid - ok
21:54:05.0783 2460 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
21:54:05.0795 2460 MountMgr - ok
21:54:05.0941 2460 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:54:05.0961 2460 MozillaMaintenance - ok
21:54:05.0985 2460 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
21:54:06.0005 2460 mpio - ok
21:54:06.0032 2460 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:54:06.0079 2460 mpsdrv - ok
21:54:06.0100 2460 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
21:54:06.0115 2460 Mraid35x - ok
21:54:06.0125 2460 [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:54:06.0201 2460 MRxDAV - ok
21:54:06.0228 2460 [ C4AD205530888404E2B5FC8D9319B119 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:54:06.0273 2460 mrxsmb - ok
21:54:06.0311 2460 [ 0A986B34F1678A2697574D7B1664E2DD ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:54:06.0468 2460 mrxsmb10 - ok
21:54:06.0505 2460 [ 3268B8C3FA92BFC086355C39B45E9CC9 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:54:06.0549 2460 mrxsmb20 - ok
21:54:06.0570 2460 [ AA305CFF241DA187BD5077DE4A2A043D ] msahci C:\Windows\system32\drivers\msahci.sys
21:54:06.0585 2460 msahci - ok
21:54:06.0601 2460 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:54:06.0620 2460 msdsm - ok
21:54:06.0645 2460 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
21:54:06.0709 2460 MSDTC - ok
21:54:06.0743 2460 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:54:06.0803 2460 Msfs - ok
21:54:06.0846 2460 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:54:06.0861 2460 msisadrv - ok
21:54:06.0906 2460 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:54:06.0955 2460 MSiSCSI - ok
21:54:06.0963 2460 msiserver - ok
21:54:07.0055 2460 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:54:07.0105 2460 MSKSSRV - ok
21:54:07.0160 2460 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:54:07.0184 2460 MSPCLOCK - ok
21:54:07.0211 2460 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:54:07.0249 2460 MSPQM - ok
21:54:07.0270 2460 [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:54:07.0288 2460 MsRPC - ok
21:54:07.0313 2460 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:54:07.0324 2460 mssmbios - ok
21:54:07.0361 2460 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:54:07.0423 2460 MSTEE - ok
21:54:07.0453 2460 [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup C:\Windows\system32\Drivers\mup.sys
21:54:07.0470 2460 Mup - ok
21:54:07.0504 2460 [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent C:\Windows\system32\qagentRT.dll
21:54:07.0564 2460 napagent - ok
21:54:07.0601 2460 [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:54:07.0623 2460 NativeWifiP - ok
21:54:07.0656 2460 [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:54:07.0715 2460 NDIS - ok
21:54:07.0779 2460 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:54:07.0829 2460 NdisTapi - ok
21:54:07.0843 2460 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:54:07.0887 2460 Ndisuio - ok
21:54:07.0941 2460 [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:54:07.0988 2460 NdisWan - ok
21:54:08.0003 2460 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:54:08.0048 2460 NDProxy - ok
21:54:08.0068 2460 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:54:08.0167 2460 NetBIOS - ok
21:54:08.0187 2460 [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
21:54:08.0243 2460 netbt - ok
21:54:08.0259 2460 [ DCF733788C7D088D814E5F80EB4B3E0F ] Netlogon C:\Windows\system32\lsass.exe
21:54:08.0283 2460 Netlogon - ok
21:54:08.0320 2460 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
21:54:08.0362 2460 Netman - ok
21:54:08.0383 2460 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
21:54:08.0422 2460 netprofm - ok
21:54:08.0502 2460 [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:54:08.0553 2460 NetTcpPortSharing - ok
21:54:09.0641 2460 [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
21:54:10.0019 2460 NETw3v32 - ok
21:54:10.0100 2460 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:54:10.0123 2460 nfrd960 - ok
21:54:10.0155 2460 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:54:10.0231 2460 NlaSvc - ok
21:54:10.0240 2460 [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:54:10.0305 2460 Npfs - ok
21:54:10.0324 2460 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
21:54:10.0386 2460 nsi - ok
21:54:10.0418 2460 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:54:10.0466 2460 nsiproxy - ok
21:54:10.0743 2460 [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:54:10.0933 2460 Ntfs - ok
21:54:10.0978 2460 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
21:54:11.0064 2460 ntrigdigi - ok
21:54:11.0085 2460 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
21:54:11.0117 2460 Null - ok
21:54:11.0152 2460 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:54:11.0164 2460 nvraid - ok
21:54:11.0171 2460 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:54:11.0180 2460 nvstor - ok
21:54:11.0216 2460 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:54:11.0235 2460 nv_agp - ok
21:54:11.0241 2460 NwlnkFlt - ok
21:54:11.0248 2460 NwlnkFwd - ok
21:54:11.0292 2460 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:54:11.0327 2460 ohci1394 - ok
21:54:11.0375 2460 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc C:\Windows\system32\p2psvc.dll
21:54:11.0479 2460 p2pimsvc - ok
21:54:11.0510 2460 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc C:\Windows\system32\p2psvc.dll
21:54:11.0548 2460 p2psvc - ok
21:54:11.0642 2460 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
21:54:11.0761 2460 Parport - ok
21:54:11.0842 2460 [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:54:11.0859 2460 partmgr - ok
21:54:11.0882 2460 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
21:54:11.0978 2460 Parvdm - ok
21:54:12.0032 2460 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
21:54:12.0064 2460 PcaSvc - ok
21:54:12.0089 2460 [ 01B94418DEB235DFF777CC80076354B4 ] pci C:\Windows\system32\drivers\pci.sys
21:54:12.0110 2460 pci - ok
21:54:12.0134 2460 [ 1D8B3D8DF8EB7FCF2F0AC02F9F947802 ] pciide C:\Windows\system32\drivers\pciide.sys
21:54:12.0148 2460 pciide - ok
21:54:12.0182 2460 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:54:12.0195 2460 pcmcia - ok
21:54:12.0242 2460 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:54:12.0323 2460 PEAUTH - ok
21:54:12.0482 2460 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
21:54:12.0677 2460 pla - ok
21:54:12.0773 2460 [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:54:12.0893 2460 PlugPlay - ok
21:54:12.0994 2460 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
21:54:13.0035 2460 PNRPAutoReg - ok
21:54:13.0168 2460 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc C:\Windows\system32\p2psvc.dll
21:54:13.0208 2460 PNRPsvc - ok
21:54:13.0428 2460 [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:54:13.0576 2460 PolicyAgent - ok
21:54:13.0672 2460 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:54:13.0739 2460 PptpMiniport - ok
21:54:13.0779 2460 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
21:54:13.0828 2460 Processor - ok
21:54:13.0914 2460 [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc C:\Windows\system32\profsvc.dll
21:54:14.0012 2460 ProfSvc - ok
21:54:14.0077 2460 [ DCF733788C7D088D814E5F80EB4B3E0F ] ProtectedStorage C:\Windows\system32\lsass.exe
21:54:14.0103 2460 ProtectedStorage - ok
21:54:14.0218 2460 [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched C:\Windows\system32\DRIVERS\pacer.sys
21:54:14.0298 2460 PSched - ok
21:54:14.0458 2460 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:54:14.0535 2460 ql2300 - ok
21:54:14.0544 2460 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:54:14.0561 2460 ql40xx - ok
21:54:14.0618 2460 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
21:54:14.0672 2460 QWAVE - ok
21:54:14.0696 2460 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:54:14.0740 2460 QWAVEdrv - ok
21:54:14.0789 2460 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:54:14.0858 2460 RasAcd - ok
21:54:14.0889 2460 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
21:54:14.0946 2460 RasAuto - ok
21:54:14.0966 2460 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:54:15.0010 2460 Rasl2tp - ok
21:54:15.0034 2460 [ AFB474438762F0418060653F7294D92C ] RasMan C:\Windows\System32\rasmans.dll
21:54:15.0079 2460 RasMan - ok
21:54:15.0114 2460 [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:54:15.0135 2460 RasPppoe - ok
21:54:15.0154 2460 [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:54:15.0178 2460 RasSstp - ok
21:54:15.0205 2460 [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:54:15.0236 2460 rdbss - ok
21:54:15.0273 2460 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:54:15.0323 2460 RDPCDD - ok
21:54:15.0442 2460 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
21:54:15.0481 2460 rdpdr - ok
21:54:15.0506 2460 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:54:15.0554 2460 RDPENCDD - ok
21:54:15.0607 2460 [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:54:15.0634 2460 RDPWD - ok
21:54:15.0682 2460 [ 0D362785BEF9BDF5A6E1F4628D06716D ] Recovery Service for Windows C:\Program Files\SMINST\BLService.exe
21:54:15.0696 2460 Recovery Service for Windows - ok
21:54:15.0722 2460 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:54:15.0745 2460 RemoteAccess - ok
21:54:15.0827 2460 [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:54:15.0904 2460 RemoteRegistry - ok
21:54:16.0466 2460 [ 805AE1F90C64758D19AAA001CF8CBA12 ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
21:54:16.0535 2460 RichVideo ( UnsignedFile.Multi.Generic ) - warning
21:54:16.0536 2460 RichVideo - detected UnsignedFile.Multi.Generic (1)
21:54:16.0621 2460 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
21:54:16.0711 2460 RpcLocator - ok
21:54:16.0820 2460 [ 301AE00E12408650BADDC04DBC832830 ] RpcSs C:\Windows\system32\rpcss.dll
21:54:16.0857 2460 RpcSs - ok
21:54:16.0913 2460 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:54:16.0958 2460 rspndr - ok
21:54:17.0029 2460 [ 125C504A34D0A2E152517E342E7E432C ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
21:54:17.0085 2460 RTL8169 - ok
21:54:17.0125 2460 [ 8DAB5975B5C7923D61506A48E251DBAD ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
21:54:17.0164 2460 RTSTOR - ok
21:54:17.0197 2460 [ DCF733788C7D088D814E5F80EB4B3E0F ] SamSs C:\Windows\system32\lsass.exe
21:54:17.0220 2460 SamSs - ok
21:54:17.0293 2460 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:54:17.0317 2460 sbp2port - ok
21:54:17.0350 2460 [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:54:17.0415 2460 SCardSvr - ok
21:54:17.0452 2460 [ 1D5E99DB3C10F4FA034010DC49043CA4 ] Schedule C:\Windows\system32\schedsvc.dll
21:54:17.0526 2460 Schedule - ok
21:54:17.0563 2460 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc C:\Windows\System32\certprop.dll
21:54:17.0608 2460 SCPolicySvc - ok
21:54:17.0906 2460 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
21:54:17.0990 2460 sdbus - ok
21:54:18.0072 2460 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:54:18.0162 2460 SDRSVC - ok
21:54:18.0207 2460 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:54:18.0311 2460 secdrv - ok
21:54:18.0386 2460 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
21:54:18.0433 2460 seclogon - ok
21:54:18.0456 2460 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
21:54:18.0524 2460 SENS - ok
21:54:18.0576 2460 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
21:54:18.0670 2460 Serenum - ok
21:54:18.0700 2460 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
21:54:18.0820 2460 Serial - ok
21:54:18.0838 2460 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:54:18.0883 2460 sermouse - ok
21:54:18.0974 2460 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
21:54:18.0999 2460 SessionEnv - ok
21:54:19.0124 2460 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:54:19.0172 2460 sffdisk - ok
21:54:19.0312 2460 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:54:19.0373 2460 sffp_mmc - ok
21:54:19.0405 2460 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:54:19.0449 2460 sffp_sd - ok
21:54:19.0486 2460 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
21:54:19.0602 2460 sfloppy - ok
21:54:19.0641 2460 [ 27F10F348E508243F6254846F8370D0D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:54:19.0694 2460 ShellHWDetection - ok
21:54:19.0799 2460 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
21:54:19.0815 2460 sisagp - ok
21:54:19.0836 2460 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
21:54:19.0852 2460 SiSRaid2 - ok
21:54:19.0863 2460 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:54:19.0881 2460 SiSRaid4 - ok
21:54:20.0102 2460 [ 0BA91E1358AD25236863039BB2609A2E ] slsvc C:\Windows\system32\SLsvc.exe
21:54:20.0234 2460 slsvc - ok
21:54:20.0262 2460 [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify C:\Windows\system32\SLUINotify.dll
21:54:20.0298 2460 SLUINotify - ok
21:54:20.0361 2460 [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:54:20.0409 2460 Smb - ok
21:54:20.0475 2460 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:54:20.0491 2460 SNMPTRAP - ok
21:54:20.0509 2460 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
21:54:20.0526 2460 spldr - ok
21:54:20.0561 2460 [ 846CDF9A3CF4DA9B306ADFB7D55EE4C2 ] Spooler C:\Windows\System32\spoolsv.exe
21:54:20.0684 2460 Spooler - ok
21:54:20.0780 2460 [ 73DDDBEEC61E78568082916A27AADAEE ] srv C:\Windows\system32\DRIVERS\srv.sys
21:54:20.0907 2460 srv - ok
21:54:20.0958 2460 [ 805FAC010405AD3F82EF8DF0BB035D81 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:54:21.0008 2460 srv2 - ok
21:54:21.0018 2460 [ F63A0A58AAFE34D7A1A0A74ABCCDD9C0 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:54:21.0100 2460 srvnet - ok
21:54:21.0138 2460 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:54:21.0215 2460 SSDPSRV - ok
21:54:21.0322 2460 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:54:21.0371 2460 SstpSvc - ok
21:54:21.0445 2460 [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc C:\Windows\System32\wiaservc.dll
21:54:21.0485 2460 stisvc - ok
21:54:21.0514 2460 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:54:21.0528 2460 swenum - ok
21:54:21.0585 2460 [ B36C7CDB86F7F7A8E884479219766950 ] swprv C:\Windows\System32\swprv.dll
21:54:21.0652 2460 swprv - ok
21:54:21.0701 2460 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
21:54:21.0717 2460 Symc8xx - ok
21:54:21.0725 2460 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
21:54:21.0742 2460 Sym_hi - ok
21:54:21.0753 2460 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
21:54:21.0770 2460 Sym_u3 - ok
21:54:21.0801 2460 [ 00B19F27858F56181EDB58B71A7C67A0 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:54:21.0820 2460 SynTP - ok
21:54:21.0870 2460 [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain C:\Windows\system32\sysmain.dll
21:54:21.0934 2460 SysMain - ok
21:54:21.0993 2460 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:54:22.0018 2460 TabletInputService - ok
21:54:22.0118 2460 [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv C:\Windows\System32\tapisrv.dll
21:54:22.0190 2460 TapiSrv - ok
21:54:22.0204 2460 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
21:54:22.0251 2460 TBS - ok
21:54:22.0374 2460 [ 82E266BEE5F0167E41C6ECFDD2A79C02 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:54:22.0460 2460 Tcpip - ok
21:54:22.0523 2460 [ 82E266BEE5F0167E41C6ECFDD2A79C02 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
21:54:22.0568 2460 Tcpip6 - ok
21:54:22.0677 2460 [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:54:22.0722 2460 tcpipreg - ok
21:54:22.0768 2460 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:54:22.0812 2460 TDPIPE - ok
21:54:22.0827 2460 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:54:22.0881 2460 TDTCP - ok
21:54:22.0926 2460 [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:54:22.0983 2460 tdx - ok
21:54:23.0011 2460 [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:54:23.0027 2460 TermDD - ok
21:54:23.0102 2460 [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService C:\Windows\System32\termsrv.dll
21:54:23.0162 2460 TermService - ok
21:54:23.0183 2460 [ 27F10F348E508243F6254846F8370D0D ] Themes C:\Windows\system32\shsvcs.dll
21:54:23.0235 2460 Themes - ok
21:54:23.0262 2460 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
21:54:23.0308 2460 THREADORDER - ok
21:54:23.0371 2460 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
21:54:23.0466 2460 TrkWks - ok
21:54:23.0622 2460 [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:54:23.0691 2460 TrustedInstaller - ok
21:54:23.0717 2460 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:54:23.0781 2460 tssecsrv - ok
21:54:23.0887 2460 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
21:54:23.0930 2460 tunmp - ok
21:54:23.0984 2460 [ 119B8184E106BAEDC83FCE5DDF3950DA ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:54:24.0091 2460 tunnel - ok
21:54:24.0140 2460 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:54:24.0162 2460 uagp35 - ok
21:54:24.0190 2460 [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:54:24.0244 2460 udfs - ok
21:54:24.0304 2460 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:54:24.0362 2460 UI0Detect - ok
21:54:24.0435 2460 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:54:24.0453 2460 uliagpkx - ok
21:54:24.0486 2460 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
21:54:24.0511 2460 uliahci - ok
21:54:24.0521 2460 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
21:54:24.0538 2460 UlSata - ok
21:54:24.0556 2460 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
21:54:24.0574 2460 ulsata2 - ok
21:54:24.0624 2460 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:54:24.0669 2460 umbus - ok
21:54:24.0744 2460 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
21:54:24.0881 2460 upnphost - ok
21:54:24.0941 2460 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:54:24.0988 2460 usbccgp - ok
21:54:25.0103 2460 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:54:25.0189 2460 usbcir - ok
21:54:25.0279 2460 [ CEBE90821810E76320155BEBA722FCF9 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:54:25.0301 2460 usbehci - ok
21:54:25.0427 2460 [ CC6B28E4CE39951357963119CE47B143 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:54:25.0450 2460 usbhub - ok
21:54:25.0477 2460 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:54:25.0523 2460 usbohci - ok
21:54:25.0626 2460 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:54:25.0679 2460 usbprint - ok
21:54:25.0755 2460 [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:54:25.0801 2460 USBSTOR - ok
21:54:25.0861 2460 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:54:25.0974 2460 usbuhci - ok
21:54:26.0008 2460 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:54:26.0070 2460 usbvideo - ok
21:54:26.0145 2460 [ 032A0ACC3909AE7215D524E29D536797 ] UxSms C:\Windows\System32\uxsms.dll
21:54:26.0231 2460 UxSms - ok
21:54:26.0298 2460 [ B13BC395B9D6116628F5AF47E0802AC4 ] vds C:\Windows\System32\vds.exe
21:54:26.0433 2460 vds - ok
21:54:26.0481 2460 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:54:26.0548 2460 vga - ok
21:54:26.0582 2460 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
21:54:26.0643 2460 VgaSave - ok
21:54:26.0669 2460 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
21:54:26.0686 2460 viaagp - ok
21:54:26.0701 2460 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
21:54:26.0747 2460 ViaC7 - ok
21:54:26.0783 2460 [ EA1AA6E3ABB3C194FEBA12A46DE8CF2C ] viaide C:\Windows\system32\drivers\viaide.sys
21:54:26.0799 2460 viaide - ok
21:54:26.0822 2460 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:54:26.0837 2460 volmgr - ok
21:54:26.0854 2460 [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:54:26.0880 2460 volmgrx - ok
21:54:26.0919 2460 [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:54:26.0993 2460 volsnap - ok
21:54:27.0004 2460 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:54:27.0023 2460 vsmraid - ok
21:54:27.0142 2460 [ D5FB73D19C46ADE183F968E13F186B23 ] VSS C:\Windows\system32\vssvc.exe
21:54:27.0220 2460 VSS - ok
21:54:27.0297 2460 [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time C:\Windows\system32\w32time.dll
21:54:27.0367 2460 W32Time - ok
21:54:27.0453 2460 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:54:27.0542 2460 WacomPen - ok
21:54:27.0578 2460 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
21:54:27.0652 2460 Wanarp - ok
21:54:27.0659 2460 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:54:27.0705 2460 Wanarpv6 - ok
21:54:27.0890 2460 [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:54:27.0962 2460 wcncsvc - ok
21:54:28.0019 2460 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:54:28.0074 2460 WcsPlugInService - ok
21:54:28.0095 2460 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
21:54:28.0111 2460 Wd - ok
21:54:28.0146 2460 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:54:28.0215 2460 Wdf01000 - ok
21:54:28.0242 2460 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:54:28.0293 2460 WdiServiceHost - ok
21:54:28.0309 2460 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:54:28.0359 2460 WdiSystemHost - ok
21:54:28.0432 2460 [ CF9A5F41789B642DB967021DE06A2713 ] WebClient C:\Windows\System32\webclnt.dll
21:54:28.0507 2460 WebClient - ok
21:54:28.0591 2460 [ 905214925A88311FCE52F66153DE7610 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:54:28.0713 2460 Wecsvc - ok
21:54:28.0747 2460 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:54:28.0802 2460 wercplsupport - ok
21:54:28.0906 2460 [ FD1965AAA112C6818A30AB02742D0461 ] WerSvc C:\Windows\System32\WerSvc.dll
21:54:28.0954 2460 WerSvc - ok
21:54:29.0019 2460 [ 0ACD399F5DB3DF1B58903CF4949AB5A8 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
21:54:29.0052 2460 winachsf - ok
21:54:29.0062 2460 WinHttpAutoProxySvc - ok
21:54:29.0373 2460 [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:54:29.0456 2460 Winmgmt - ok
21:54:29.0581 2460 [ 20FC93FDC916843CFDFCAA7A1B0DB16F ] WinRM C:\Windows\system32\WsmSvc.dll
21:54:29.0697 2460 WinRM - ok
21:54:29.0869 2460 [ 4B40FF01DB5357299DCBDB5A5746AD21 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:54:29.0912 2460 Wlansvc - ok
21:54:29.0939 2460 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:54:29.0985 2460 WmiAcpi - ok
21:54:30.0138 2460 [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:54:30.0196 2460 wmiApSrv - ok
21:54:30.0371 2460 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:54:30.0438 2460 WMPNetworkSvc - ok
21:54:30.0496 2460 [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:54:30.0572 2460 WPCSvc - ok
21:54:30.0688 2460 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:54:30.0866 2460 WPDBusEnum - ok
21:54:30.0944 2460 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:54:31.0040 2460 ws2ifsl - ok
21:54:31.0048 2460 WSearch - ok
21:54:31.0165 2460 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:54:31.0215 2460 WUDFRd - ok
21:54:31.0573 2460 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:54:31.0623 2460 wudfsvc - ok
21:54:31.0736 2460 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
21:54:31.0759 2460 XAudio - ok
21:54:31.0900 2460 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
21:54:31.0976 2460 XAudioService - ok
21:54:32.0098 2460 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
21:54:32.0331 2460 yukonwlh - ok
21:54:32.0373 2460 ================ Scan global ===============================
21:54:32.0418 2460 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
21:54:32.0467 2460 [ 8B05FAF8603E6FDE90C5B103761CC3F6 ] C:\Windows\system32\winsrv.dll
21:54:32.0545 2460 [ 8B05FAF8603E6FDE90C5B103761CC3F6 ] C:\Windows\system32\winsrv.dll
21:54:32.0804 2460 [ 2B336AB6286D6C81FA02CBAB914E3C6C ] C:\Windows\system32\services.exe
21:54:32.0811 2460 [Global] - ok
21:54:32.0812 2460 ================ Scan MBR ==================================
21:54:32.0854 2460 [ 588AE8F0C685C02BA11F30D9CD7E61A0 ] \Device\Harddisk0\DR0
21:54:39.0018 2460 \Device\Harddisk0\DR0 - ok
21:54:39.0018 2460 ================ Scan VBR ==================================
21:54:39.0024 2460 [ 896B95FCA63108FD7CE4D9B6B2BC323A ] \Device\Harddisk0\DR0\Partition1
21:54:39.0027 2460 \Device\Harddisk0\DR0\Partition1 - ok
21:54:39.0105 2460 [ CE72B091EAEB452A4132BDEDF2A7A4C2 ] \Device\Harddisk0\DR0\Partition2
21:54:39.0112 2460 \Device\Harddisk0\DR0\Partition2 - ok
21:54:39.0112 2460 ============================================================
21:54:39.0112 2460 Scan finished
21:54:39.0112 2460 ============================================================
21:54:39.0136 2444 Detected object count: 5
21:54:39.0137 2444 Actual detected object count: 5
21:54:52.0737 2444 ezSharedSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:54:52.0737 2444 ezSharedSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:54:52.0742 2444 HP Health Check Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:54:52.0742 2444 HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:54:52.0745 2444 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
21:54:52.0745 2444 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:54:52.0748 2444 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
21:54:52.0749 2444 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:54:52.0752 2444 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
21:54:52.0752 2444 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:54:55.0901 2416 Deinitialize success
|
|
15.10.2012, 10:58
| #20 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | AVG meldet: services.exe mit Trojaner infiziert Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
15.10.2012, 18:26
| #21 |
| | AVG meldet: services.exe mit Trojaner infiziert Hier das ComboFix Log: Code:
ATTFilter ComboFix 12-10-14.03 - Vanessa 15.10.2012 18:34:04.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.49.1031.18.3002.2091 [GMT 2:00]
ausgeführt von:: c:\users\Vanessa\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *Disabled/Updated* {0C939084-9E57-CBDB-EA61-0B0C7F62AF82}
SP: AVG Anti-Virus Free *Enabled/Updated* {B7F27160-B86D-C455-D0D1-307E04E5E53F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Vanessa\AppData\Roaming\AcroIEHelpe.txt
c:\users\Vanessa\AppData\Roaming\AcroIEHelpe205.dll
c:\users\Vanessa\AppData\Roaming\h3wstyft.default.tmp
c:\users\Vanessa\AppData\Roaming\srvblck5.tmp
c:\windows\IsUn0407.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-09-15 bis 2012-10-15 ))))))))))))))))))))))))))))))
.
.
2012-10-14 19:50 . 2012-10-14 19:50 -------- d-----w- C:\TDSSKiller_Quarantine
2012-10-13 16:46 . 2012-10-13 16:46 -------- d-----w- C:\_OTL
2012-10-11 15:35 . 2012-10-11 15:35 -------- d-----w- c:\program files\ESET
2012-10-07 12:58 . 2012-10-07 12:58 -------- d-----w- c:\users\Vanessa\AppData\Roaming\Malwarebytes
2012-10-07 12:58 . 2012-10-07 12:58 -------- d-----w- c:\programdata\Malwarebytes
2012-10-07 12:58 . 2012-10-07 12:58 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-10-07 12:58 . 2012-09-07 15:04 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-03 13:14 . 2012-10-03 13:25 -------- d-----r- C:\Alle Bilder
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-14 19:51 . 2008-01-21 02:24 279040 ----a-w- c:\windows\system32\services.exe
2012-10-11 16:53 . 2012-05-24 09:31 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-11 16:53 . 2011-06-04 09:40 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-22 19:07 . 2012-08-20 18:05 0 ---ha-w- c:\users\Vanessa\AppData\Roaming\winbras.sys
2012-06-17 16:14 . 2011-05-07 04:53 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-09-02 13351304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-17 1049896]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-07-10 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-07-10 170520]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-07-10 145944]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2008-09-23 468264]
"UpdateLBPShortCut"="c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"UpdatePSTShortCut"="c:\program files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2008-10-06 210216]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2007-12-24 222504]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-08-01 202032]
"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"UpdatePDIRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2008-04-15 488752]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 1164584]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2011-03-25 77824]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.0.207\SSScheduler.exe [2011-6-17 272528]
SELPHY Photo Print Launcher.lnk - c:\program files\Canon\SELPHY Photo Print\CIC_SPPhelper.exe [2009-1-8 135168]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-06-12 01:38 34672 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Health Check Scheduler]
2008-10-09 06:58 75008 ----a-w- c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1520116365-816098757-2297299363-1000]
"EnableNotificationsRef"=dword:00000001
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ezSharedSvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 09:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Inhalt des "geplante Tasks" Ordners
.
2012-10-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-24 16:53]
.
2012-10-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-06 18:19]
.
2012-10-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-06 18:19]
.
2012-09-16 c:\windows\Tasks\Norton Security Scan for Vanessa.job
- c:\program files\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2010-11-12 08:48]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com
mStart Page =
IE: Free YouTube Download - c:\users\Vanessa\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Free YouTube to MP3 Converter - c:\users\Vanessa\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
TCP: DhcpNameServer = 192.168.179.1
FF - ProfilePath - c:\users\Vanessa\AppData\Roaming\Mozilla\Firefox\Profiles\h3wstyft.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage - hxxps://google.de
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - (no file)
SafeBoot-14271451.sys
AddRemove-Abenteuer auf dem Reiterhof - c:\windows\IsUn0407.exe
AddRemove-iMesh MediaBar - c:\program files\iMesh Applications\MediaBar\UnwiseLauncher.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2012-10-15 18:42
Windows 6.0.6001 Service Pack 1 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\WLANExt.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\SMINST\BLService.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\windows\system32\conime.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\ehome\ehmsas.exe
c:\program files\Hewlett-Packard\Shared\HpqToaster.exe
c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-10-15 18:48:37 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-10-15 16:48
.
Vor Suchlauf: 14 Verzeichnis(se), 140.652.720.128 Bytes frei
Nach Suchlauf: 21 Verzeichnis(se), 140.372.918.272 Bytes frei
.
- - End Of File - - 46249FF0FB4E48004B6CF19EF1D90E99
Inhalt der Quarantined-Files.txt: Code:
ATTFilter 2012-10-15 16:48:05 . 2012-10-15 16:48:05 1,072 ----a-w- C:\Qoobox\Quarantine\Registry_backups\AddRemove-iMesh MediaBar.reg.dat
2012-10-15 16:48:05 . 2012-10-15 16:48:05 628 ----a-w- C:\Qoobox\Quarantine\Registry_backups\AddRemove-Abenteuer auf dem Reiterhof.reg.dat
2012-10-15 16:47:56 . 2012-10-15 16:47:56 558 ----a-w- C:\Qoobox\Quarantine\Registry_backups\SafeBoot-14271451.sys.reg.dat
2012-10-15 16:47:47 . 2012-10-15 16:47:47 171 ----a-w- C:\Qoobox\Quarantine\Registry_backups\BHO-{ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F}.reg.dat
2012-10-15 16:40:39 . 2012-10-15 16:40:39 270 ----a-w- C:\Qoobox\Quarantine\C\Users\Vanessa\Desktop\_Horses. My life. My love. My death. (kussmund mit zwinker).My life.My Love_.My death.zip
2012-10-15 16:38:44 . 2012-10-15 16:38:44 6,005 ----a-w- C:\Qoobox\Quarantine\Registry_backups\tcpip.reg
2012-10-15 16:30:59 . 2012-10-15 16:41:14 879 ----a-w- C:\Qoobox\Quarantine\catchme.log
2012-09-07 13:52:14 . 2012-09-07 13:52:14 0 ----a-w- C:\Qoobox\Quarantine\C\Users\Vanessa\AppData\Roaming\h3wstyft.default.tmp.vir
2012-08-31 15:59:12 . 2012-08-31 15:59:13 198,200 ----a-w- C:\Qoobox\Quarantine\C\Users\Vanessa\AppData\Roaming\AcroIEHelpe205.dll.vir
2012-07-06 14:18:50 . 2012-08-31 15:59:12 48 ----a-w- C:\Qoobox\Quarantine\C\Users\Vanessa\AppData\Roaming\AcroIEHelpe.txt.vir
2012-07-06 14:18:17 . 2012-07-06 14:18:17 264 ----a-w- C:\Qoobox\Quarantine\C\Users\Vanessa\AppData\Roaming\srvblck5.tmp.vir
2009-03-08 08:26:55 . 1998-10-21 17:43:04 328,704 ----a-w- C:\Qoobox\Quarantine\C\Windows\IsUn0407.exe.vir
|
|
15.10.2012, 19:07
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | AVG meldet: services.exe mit Trojaner infiziert Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
17.10.2012, 16:34
| #23 |
| | AVG meldet: services.exe mit Trojaner infiziert Ein Scan mit GMER war leider nicht möglich. Ist mehrmals abgestürzt; auch im Abgesicherten Modus ging es leider nicht. Hier das Log von OSAM: Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 22:15:25 on 15.10.2012 OS: Windows Vista Home Premium Edition Service Pack 1 (Build 6001), 32-bit Default Browser: Mozilla Corporation Firefox 13.0.1 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [Common] -----( %SystemRoot%\Tasks )----- "GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe "Norton Security Scan for Vanessa.job" - "Symantec Corporation" - C:\Program Files\Norton Security Scan\Engine\2.7.3.34\Nss.exe [Control Panel Objects] -----( %SystemRoot%\system32 )----- "DivXControlPanelApplet.cpl" - "DivX, Inc." - C:\Windows\system32\DivXControlPanelApplet.cpl "FlashPlayerCPLApp.cpl" - "Adobe Systems Incorporated" - C:\Windows\system32\FlashPlayerCPLApp.cpl "QuickTime.cpl" - "Apple Computer, Inc." - C:\Windows\system32\QuickTime.cpl [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "catchme" (catchme) - ? - C:\ComboFix\catchme.sys (File not found) "IP in IP Tunnel Driver" (IpInIp) - ? - C:\Windows\System32\DRIVERS\ipinip.sys (File not found) "IPX Traffic Filter Driver" (NwlnkFlt) - ? - C:\Windows\System32\DRIVERS\nwlnkflt.sys (File not found) "IPX Traffic Forwarder Driver" (NwlnkFwd) - ? - C:\Windows\System32\DRIVERS\nwlnkfwd.sys (File not found) "kwliifow" (kwliifow) - ? - C:\Users\Vanessa\AppData\Local\Temp\kwliifow.sys (Hidden registry entry, rootkit activity | File not found) [Explorer] -----( HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components )----- {10880D85-AAD9-4558-ABDC-2AB1552D831F} "LightScribe Control Panel" - "Hewlett-Packard Company" - "C:\Program Files\Common Files\LightScribe\LSRunOnce.exe" -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll -----( HKLM\Software\Classes\Protocols\Handler )----- {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL {0A9007C0-4076-11D3-8789-0000F8105754} "Microsoft Infotech Storage Protocol for IE 4.0" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll {91774881-D725-4E58-B298-07617B9B86A8} "Skype IE add-on Pluggable Protocol" - "Skype Technologies S.A." - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {911051fa-c21c-4246-b470-070cd8df6dc4} ".cab or .zip files" - ? - (File not found | COM-object registry key not found) {1b24a030-9b20-49bc-97ac-1be4426f9e59} "ActiveDirectory Folder" - ? - (File not found | COM-object registry key not found) {34449847-FD14-4fc8-A75A-7432F5181EFB} "ActiveDirectory Folder" - ? - (File not found | COM-object registry key not found) {0F8604A5-4ECE-4DE1-BA7D-CF10F8AA4F48} "Contacts folder" - ? - (File not found | COM-object registry key not found) {2C2577C2-63A7-40e3-9B7F-586602617ECB} "Explorer Query Band" - ? - (File not found | COM-object registry key not found) {FAC3CBF6-8697-43d0-BAB9-DCD1FCE19D75} "IE User Assist" - ? - (File not found | COM-object registry key not found) {00020d75-0000-0000-c000-000000000046} "lnkfile" - ? - (File not found | COM-object registry key not found) {993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll {C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll {C8494E42-ACDD-4739-B0FB-217361E4894F} "Sam Account Folder" - ? - (File not found | COM-object registry key not found) {E29F9716-5C08-4FCD-955A-119FDB5A522D} "Sam Account Folder" - ? - (File not found | COM-object registry key not found) {7F67036B-66F1-411A-AD85-759FB9C5B0DB} "ShellViewRTF" - "XSS" - C:\Program Files\Sminst\ShellvRTF.dll {da67b8ad-e81b-4c70-9b91b417b5e33527} "Windows Search Shell Service" - ? - (File not found | COM-object registry key not found) [Internet Explorer] -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) -----( HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks )----- "{855F3B16-6D32-4fe6-8A56-BBB695989046}" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_07" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} "Java Plug-in 1.6.0_07" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_07" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} "ClsidExtension" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll "ICQ7.5" - "ICQ, LLC." - C:\Program Files\ICQ7.5\ICQ.exe {898EA8C8-E7FF-479B-8935-AEC46303B9E5} "Skype add-on for Internet Explorer" - "Skype Technologies S.A." - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} "Skype add-on for Internet Explorer" - "Skype Technologies S.A." - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "SSVHelper Class" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [Logon] -----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini "McAfee Security Scan Plus.lnk" - "McAfee, Inc." - C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe (Shortcut exists | File exists) "SELPHY Photo Print Launcher.lnk" - "Canon Inc." - C:\Program Files\Canon\SELPHY Photo Print\CIC_SPPhelper.exe (Shortcut exists | File exists) -----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )----- "LightScribe Control Panel" - "Hewlett-Packard Company" - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden "Skype" - "Skype Technologies S.A." - "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "DivXUpdate" - ? - "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW "HP Software Update" - "Hewlett-Packard" - C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe "hpWirelessAssistant" - "Hewlett-Packard Development Company, L.P." - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe "QlbCtrl.exe" - " Hewlett-Packard Development Company, L.P." - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start "QPService" - "CyberLink Corp." - "C:\Program Files\HP\QuickPlay\QPService.exe" "QuickTime Task" - "Apple Computer, Inc." - "C:\Program Files\QuickTime\qttask.exe" -atboottime "SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" "UCam_Menu" - "CyberLink Corp." - "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" "UpdateLBPShortCut" - "CyberLink Corp." - "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5" "UpdateP2GoShortCut" - "CyberLink Corp." - "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" "UpdatePDIRShortCut" - "CyberLink Corp." - "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0" "UpdatePSTShortCut" - "CyberLink Corp." - "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe "Com4QLBEx" (Com4QLBEx) - "Hewlett-Packard Development Company, L.P." - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe "Easybits Shared Services for Windows" (ezSharedSvc) - "EasyBits Sofware AS" - C:\Windows\System32\ezsvc7.dll "GameConsoleService" (GameConsoleService) - "WildTangent, Inc." - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe "Google Update Service (gupdate)" (gupdate) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe "HP Health Check Service" (HP Health Check Service) - "Hewlett-Packard" - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe "hpqwmiex" (hpqwmiex) - "Hewlett-Packard Development Company, L.P." - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe "InstallDriver Table Manager" (IDriverT) - "Macrovision Corporation" - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe "LightScribeService Direct Disc Labeling Service" (LightScribeService) - "Hewlett-Packard Company" - C:\Program Files\Common Files\LightScribe\LSSrvc.exe "McAfee Security Scan Component Host Service" (McComponentHostService) - "McAfee, Inc." - C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe "Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe "Recovery Service for Windows" (Recovery Service for Windows) - ? - C:\Program Files\SMINST\BLService.exe ===[ Logfile end ]=========================================[ Logfile end ]=== --- --- --- If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-17 16:40:42
-----------------------------
16:40:42.413 OS Version: Windows 6.0.6001 Service Pack 1
16:40:42.413 Number of processors: 2 586 0xF0D
16:40:42.414 ComputerName: VANESSA-PC UserName: Vanessa
16:40:43.978 Initialize success
16:41:00.402 AVAST engine defs: 12101700
16:41:16.249 The log file has been saved successfully to "C:\Users\Vanessa\Desktop\aswMBR_2012-10-17.txt"
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-17 16:41:36
-----------------------------
16:41:36.571 OS Version: Windows 6.0.6001 Service Pack 1
16:41:36.571 Number of processors: 2 586 0xF0D
16:41:36.572 ComputerName: VANESSA-PC UserName: Vanessa
16:41:38.366 Initialize success
16:41:46.569 AVAST engine defs: 12101700
16:41:48.271 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
16:41:48.276 Disk 0 Vendor: ST9250320AS HP07 Size: 238475MB BusType: 3
16:41:48.299 Disk 0 MBR read successfully
16:41:48.305 Disk 0 MBR scan
16:41:48.315 Disk 0 unknown MBR code
16:41:48.323 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 227684 MB offset 63
16:41:48.376 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 10787 MB offset 466298880
16:41:48.390 Disk 0 scanning sectors +488390656
16:41:48.480 Disk 0 scanning C:\Windows\system32\drivers
16:42:07.305 Service scanning
16:42:34.378 Modules scanning
16:42:39.171 Disk 0 trace - called modules:
16:42:39.194 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys
16:42:39.201 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x860ae688]
16:42:39.209 3 CLASSPNP.SYS[805c4745] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x85ee3ba0]
16:42:40.948 AVAST engine scan C:\Windows
16:42:45.800 AVAST engine scan C:\Windows\system32
16:46:11.128 AVAST engine scan C:\Windows\system32\drivers
16:46:30.591 AVAST engine scan C:\Users\Vanessa
17:01:58.935 AVAST engine scan C:\ProgramData
17:06:36.673 Scan finished successfully
17:09:53.316 Disk 0 MBR has been saved successfully to "C:\Users\Vanessa\Desktop\MBR.dat"
17:09:53.327 The log file has been saved successfully to "C:\Users\Vanessa\Desktop\aswMBR_2012-10-17.txt"
|
|
17.10.2012, 17:38
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | AVG meldet: services.exe mit Trojaner infiziert Wir sollten den MBR fixen, sichere für den Fall der Fälle ALLE wichtigen Daten, auch wenn meistens alles glatt geht. Hinweis: Mach bitte NICHT den MBR-Fix, wenn du noch andere Betriebssysteme wie zB Ubuntu installiert hast, ein MBR-Fix mit Windows-Tools macht ein parallel installiertes (Dualboot) Linux unbootbar. Mach den Fix auch dann nicht, wenn du zB mit TrueCrypt oder anderen Verschlüsselungsprogrammen eine Vollverschlüsselung der Windowspartition bzw. gesamten Festplatte hast Starte nach der Datensicherung aswmbr erneut und klick auf den Button FIXMBR. Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehalalrm! Anschließend Windows neu starten und ein neues Log mit aswMBR machen.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.10.2012, 16:49
| #25 |
| | AVG meldet: services.exe mit Trojaner infiziert Der MBR wurde erfolgreich repariert. Hier das neue Log: Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-18 05:58:22
-----------------------------
05:58:22.299 OS Version: Windows 6.0.6001 Service Pack 1
05:58:22.299 Number of processors: 2 586 0xF0D
05:58:22.299 ComputerName: VANESSA-PC UserName: Vanessa
05:58:38.476 Initialize success
05:58:55.621 AVAST engine defs: 12101700
05:59:07.305 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
05:59:07.305 Disk 0 Vendor: ST9250320AS HP07 Size: 238475MB BusType: 3
05:59:07.352 Disk 0 MBR read successfully
05:59:07.367 Disk 0 MBR scan
05:59:07.367 Disk 0 Windows VISTA default MBR code
05:59:07.383 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 227684 MB offset 63
05:59:07.430 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 10787 MB offset 466298880
05:59:07.508 Disk 0 scanning sectors +488390656
05:59:07.664 Disk 0 scanning C:\Windows\system32\drivers
05:59:29.566 Service scanning
05:59:58.442 Modules scanning
06:00:19.939 Disk 0 trace - called modules:
06:00:20.001 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys
06:00:20.017 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x864af688]
06:00:20.032 3 CLASSPNP.SYS[805ca745] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x85eff8e0]
06:00:21.623 AVAST engine scan C:\Windows
06:00:41.233 AVAST engine scan C:\Windows\system32
06:13:10.173 AVAST engine scan C:\Windows\system32\drivers
06:15:25.487 AVAST engine scan C:\Users\Vanessa
06:45:46.818 AVAST engine scan C:\ProgramData
06:49:25.171 Scan finished successfully
06:51:18.329 Disk 0 MBR has been saved successfully to "F:\Vanessa\aswMBR\MBR.dat"
06:51:18.345 The log file has been saved successfully to "F:\Vanessa\aswMBR\aswMBR_2012-10-18.txt"
|
|
18.10.2012, 19:20
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | AVG meldet: services.exe mit Trojaner infiziert Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.10.2012, 22:10
| #27 |
| | AVG meldet: services.exe mit Trojaner infiziert Log von Malwarebytes: Code:
ATTFilter Malwarebytes Anti-Malware 1.65.1.1000 www.malwarebytes.org Datenbank Version: v2012.10.18.07 Windows Vista Service Pack 1 x86 NTFS Internet Explorer 8.0.6001.18702 Vanessa :: VANESSA-PC [Administrator] 18.10.2012 20:55:19 mbam-log-2012-10-18 (20-55-19).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 475406 Laufzeit: 1 Stunde(n), 57 Minute(n), 7 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 7 C:\TDSSKiller_Quarantine\14.10.2012_21.49.36\zasubsys0000\zafs0000\tsk0000.dta (Trojan.0access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\_OTL\MovedFiles\10132012_184632\C_Windows\assembly\GAC\Desktop.ini (Trojan.0access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\_OTL\MovedFiles\10132012_184632\C_Windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000004.@ (Rootkit.Zaccess) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\_OTL\MovedFiles\10132012_184632\C_Windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000008.@ (Trojan.Dropper.BCMiner) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\_OTL\MovedFiles\10132012_184632\C_Windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\000000cb.@ (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\_OTL\MovedFiles\10132012_184632\C_Windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000000.@ (Trojan.Small) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\_OTL\MovedFiles\10132012_184632\C_Windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000032.@ (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 10/19/2012 at 09:32 PM
Application Version : 5.6.1012
Core Rules Database Version : 9438
Trace Rules Database Version: 7250
Scan type : Complete Scan
Total Scan Time : 02:34:05
Operating System Information
Windows Vista Home Premium 32-bit, Service Pack 1 (Build 6.00.6001)
UAC On - Administrator
Memory items scanned : 526
Memory threats detected : 0
Registry items scanned : 36169
Registry threats detected : 0
File items scanned : 223736
File threats detected : 800
Adware.Tracking Cookie
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@2o7[1].txt [ /2o7 ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@2o7[2].txt [ /2o7 ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@a2.adserver01[1].txt [ /a2.adserver01 ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@accounts.google[1].txt [ /accounts.google ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.360yield[2].txt [ /ad.360yield ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.ad-srv[2].txt [ /ad.ad-srv ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.adnet[2].txt [ /ad.adnet ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.yieldmanager[1].txt [ /ad.yieldmanager ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.yieldmanager[2].txt [ /ad.yieldmanager ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.yieldmanager[3].txt [ /ad.yieldmanager ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.yieldmanager[4].txt [ /ad.yieldmanager ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.yieldmanager[5].txt [ /ad.yieldmanager ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.zanox[1].txt [ /ad.zanox ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.zanox[2].txt [ /ad.zanox ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad1.adfarm1.adition[1].txt [ /ad1.adfarm1.adition ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad2.adfarm1.adition[1].txt [ /ad2.adfarm1.adition ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad3.adfarm1.adition[2].txt [ /ad3.adfarm1.adition ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad3.adfarm1.adition[3].txt [ /ad3.adfarm1.adition ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad4.adfarm1.adition[2].txt [ /ad4.adfarm1.adition ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adfarm1.adition[1].txt [ /adfarm1.adition ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adfarm1.adition[2].txt [ /adfarm1.adition ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adformdsp[1].txt [ /adformdsp ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adform[2].txt [ /adform ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.creative-serving[1].txt [ /ads.creative-serving ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.creative-serving[2].txt [ /ads.creative-serving ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.creative-serving[3].txt [ /ads.creative-serving ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.creative-serving[4].txt [ /ads.creative-serving ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.heias[1].txt [ /ads.heias ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.pferde[2].txt [ /ads.pferde ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.planetactive[2].txt [ /ads.planetactive ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.quartermedia[1].txt [ /ads.quartermedia ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adserver.adtechus[1].txt [ /adserver.adtechus ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adsrv.admediate[2].txt [ /adsrv.admediate ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adtech[2].txt [ /adtech ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@advertising[1].txt [ /advertising ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@advertising[2].txt [ /advertising ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@aolde.122.2o7[1].txt [ /aolde.122.2o7 ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@apmebf[1].txt [ /apmebf ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ar.atwola[1].txt [ /ar.atwola ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@at.atwola[1].txt [ /at.atwola ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@at.atwola[3].txt [ /at.atwola ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@atdmt[2].txt [ /atdmt ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@atwola[1].txt [ /atwola ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@atwola[2].txt [ /atwola ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@avgtechnologies.112.2o7[1].txt [ /avgtechnologies.112.2o7 ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@avgtechnologies.112.2o7[2].txt [ /avgtechnologies.112.2o7 ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@bs.serving-sys[1].txt [ /bs.serving-sys ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@bs.serving-sys[2].txt [ /bs.serving-sys ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@cdn.at.atwola[1].txt [ /cdn.at.atwola ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@content.yieldmanager[1].txt [ /content.yieldmanager ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@content.yieldmanager[2].txt [ /content.yieldmanager ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@content.yieldmanager[3].txt [ /content.yieldmanager ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@content.yieldmanager[4].txt [ /content.yieldmanager ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@content.yieldmanager[5].txt [ /content.yieldmanager ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@de.at.atwola[1].txt [ /de.at.atwola ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@delivery.ads.coupling-media[1].txt [ /delivery.ads.coupling-media ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@doubleclick[1].txt [ /doubleclick ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@doubleclick[3].txt [ /doubleclick ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@euroclick[1].txt [ /euroclick ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@eyewonder[2].txt [ /eyewonder ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@fastclick[2].txt [ /fastclick ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@gamecenter.oberon-media[2].txt [ /gamecenter.oberon-media ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@googleads.g.doubleclick[1].txt [ /googleads.g.doubleclick ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@host.oddcast[2].txt [ /host.oddcast ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@host.oddcast[3].txt [ /host.oddcast ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@imrworldwide[2].txt [ /imrworldwide ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@invitemedia[1].txt [ /invitemedia ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@invitemedia[2].txt [ /invitemedia ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@komtrack[2].txt [ /komtrack ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@media6degrees[2].txt [ /media6degrees ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@mediaplex[1].txt [ /mediaplex ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@mediaplex[2].txt [ /mediaplex ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@mm.chitika[1].txt [ /mm.chitika ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@mm.chitika[2].txt [ /mm.chitika ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@mywebsearch[2].txt [ /mywebsearch ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@oberon-media[2].txt [ /oberon-media ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@overture[1].txt [ /overture ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@revsci[1].txt [ /revsci ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@revsci[2].txt [ /revsci ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@rotator.adjuggler[1].txt [ /rotator.adjuggler ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@server.adformdsp[1].txt [ /server.adformdsp ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@server.adform[2].txt [ /server.adform ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@serving-sys[1].txt [ /serving-sys ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@serving-sys[2].txt [ /serving-sys ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@sevenoneintermedia.112.2o7[1].txt [ /sevenoneintermedia.112.2o7 ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@smartadserver[2].txt [ /smartadserver ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tacoda.at.atwola[1].txt [ /tacoda.at.atwola ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tacoda[2].txt [ /tacoda ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@track.adform[1].txt [ /track.adform ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tracking.mindshare[2].txt [ /tracking.mindshare ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tracking.mlsat02[1].txt [ /tracking.mlsat02 ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tracking.quisma[2].txt [ /tracking.quisma ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tracking.quisma[3].txt [ /tracking.quisma ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tradedoubler[1].txt [ /tradedoubler ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tradedoubler[2].txt [ /tradedoubler ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tradedoubler[3].txt [ /tradedoubler ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@traffictrack[2].txt [ /traffictrack ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@unitymedia[2].txt [ /unitymedia ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@webmasterplan[1].txt [ /webmasterplan ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.etracker[2].txt [ /www.etracker ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[1].txt [ /www.googleadservices ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[2].txt [ /www.googleadservices ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[3].txt [ /www.googleadservices ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[4].txt [ /www.googleadservices ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[5].txt [ /www.googleadservices ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[6].txt [ /www.googleadservices ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[7].txt [ /www.googleadservices ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.windowsmedia[2].txt [ /www.windowsmedia ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.zanox-affiliate[1].txt [ /www.zanox-affiliate ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@yadro[2].txt [ /yadro ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@zanox-affiliate[1].txt [ /zanox-affiliate ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@zanox[1].txt [ /zanox ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@zanox[2].txt [ /zanox ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@zbox.zanox[2].txt [ /zbox.zanox ]
C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@zedo[2].txt [ /zedo ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@tracking.quisma[2].txt [ Cookie:gast@tracking.quisma.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@user.lucidmedia[1].txt [ Cookie:gast@user.lucidmedia.com/clicksense/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@invitemedia[1].txt [ Cookie:gast@invitemedia.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@adbrite[2].txt [ Cookie:gast@adbrite.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@fl01.ct2.comclick[2].txt [ Cookie:gast@fl01.ct2.comclick.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@adfarm1.adition[2].txt [ Cookie:gast@adfarm1.adition.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@doubleclick[1].txt [ Cookie:gast@doubleclick.net/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@ru4[2].txt [ Cookie:gast@ru4.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@tracking.mlsat02[1].txt [ Cookie:gast@tracking.mlsat02.de/tmobile/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@himedia.individuad[2].txt [ Cookie:gast@himedia.individuad.net/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@traffictrack[2].txt [ Cookie:gast@traffictrack.de/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@ad.yieldmanager[1].txt [ Cookie:gast@ad.yieldmanager.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@tradedoubler[2].txt [ Cookie:gast@tradedoubler.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@bs.serving-sys[1].txt [ Cookie:gast@bs.serving-sys.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@unitymedia[2].txt [ Cookie:gast@unitymedia.de/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@content.yieldmanager[3].txt [ Cookie:gast@content.yieldmanager.com/ak/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@wsclick.infospace[1].txt [ Cookie:gast@wsclick.infospace.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@apmebf[2].txt [ Cookie:gast@apmebf.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@mediaplex[2].txt [ Cookie:gast@mediaplex.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@www.google[2].txt [ Cookie:gast@www.google.com/accounts ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@rotator.adjuggler[2].txt [ Cookie:gast@rotator.adjuggler.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@ads2.net2day[1].txt [ Cookie:gast@ads2.net2day.de/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@statcounter[2].txt [ Cookie:gast@statcounter.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@adtech[1].txt [ Cookie:gast@adtech.de/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@serving-sys[1].txt [ Cookie:gast@serving-sys.com/ ]
C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@webmasterplan[2].txt [ Cookie:gast@webmasterplan.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@clkads[2].txt [ Cookie:Vanessa@clkads.com/adServe ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.google[1].txt [ Cookie:Vanessa@www.google.com/accounts ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@clkads[4].txt [ Cookie:Vanessa@clkads.com/adServe/banners ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@clkads[5].txt [ Cookie:Vanessa@clkads.com/adServe/static/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@apmebf[1].txt [ Cookie:vanessa@apmebf.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@overture[1].txt [ Cookie:vanessa@overture.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@delivery.ads.coupling-media[1].txt [ Cookie:vanessa@delivery.ads.coupling-media.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@clkads[2].txt [ Cookie:vanessa@clkads.com/adServe ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@webmasterplan[1].txt [ Cookie:vanessa@webmasterplan.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@ad.zanox[1].txt [ Cookie:vanessa@ad.zanox.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.googleadservices[5].txt [ Cookie:vanessa@www.googleadservices.com/pagead/conversion/1054354546/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.zanox-affiliate[1].txt [ Cookie:vanessa@www.zanox-affiliate.de/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@doubleclick[1].txt [ Cookie:vanessa@doubleclick.net/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@tracking.quisma[2].txt [ Cookie:vanessa@tracking.quisma.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@adsrv.admediate[2].txt [ Cookie:vanessa@adsrv.admediate.net/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@clkads[5].txt [ Cookie:vanessa@clkads.com/adServe/static/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@de.at.atwola[1].txt [ Cookie:vanessa@de.at.atwola.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.googleadservices[1].txt [ Cookie:vanessa@www.googleadservices.com/pagead/conversion/1069511586/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@zbox.zanox[2].txt [ Cookie:vanessa@zbox.zanox.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@adtech[2].txt [ Cookie:vanessa@adtech.de/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@adserver.adtechus[1].txt [ Cookie:vanessa@adserver.adtechus.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@serving-sys[2].txt [ Cookie:vanessa@serving-sys.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.googleadservices[2].txt [ Cookie:vanessa@www.googleadservices.com/pagead/conversion/1066535312/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.googleadservices[3].txt [ Cookie:vanessa@www.googleadservices.com/pagead/conversion/1068470753/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@a2.adserver01[1].txt [ Cookie:vanessa@a2.adserver01.de/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@mywebsearch[2].txt [ Cookie:vanessa@mywebsearch.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@ad.yieldmanager[2].txt [ Cookie:vanessa@ad.yieldmanager.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.googleadservices[7].txt [ Cookie:vanessa@www.googleadservices.com/pagead/conversion/1067350970/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.etracker[2].txt [ Cookie:vanessa@www.etracker.de/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@content.yieldmanager[3].txt [ Cookie:vanessa@content.yieldmanager.com/ak/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@mediaplex[2].txt [ Cookie:vanessa@mediaplex.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@media6degrees[2].txt [ Cookie:vanessa@media6degrees.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@googleads.g.doubleclick[1].txt [ Cookie:vanessa@googleads.g.doubleclick.net/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@google[2].txt [ Cookie:vanessa@google.com/accounts/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@atdmt[2].txt [ Cookie:vanessa@atdmt.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@advertising[1].txt [ Cookie:vanessa@advertising.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@tradedoubler[2].txt [ Cookie:vanessa@tradedoubler.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@content.yieldmanager[2].txt [ Cookie:vanessa@content.yieldmanager.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@bs.serving-sys[2].txt [ Cookie:vanessa@bs.serving-sys.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.google[1].txt [ Cookie:vanessa@www.google.com/accounts ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@komtrack[2].txt [ Cookie:vanessa@komtrack.com/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@zanox-affiliate[1].txt [ Cookie:vanessa@zanox-affiliate.de/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@tracking.mlsat02[1].txt [ Cookie:vanessa@tracking.mlsat02.de/tmobile/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@fastclick[2].txt [ Cookie:vanessa@fastclick.net/ ]
C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@ad3.adfarm1.adition[2].txt [ Cookie:vanessa@ad3.adfarm1.adition.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@apmebf[1].txt [ Cookie:vanessa@apmebf.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@adform[2].txt [ Cookie:vanessa@adform.net/ ]
C:\USERS\VANESSA\Cookies\vanessa@smartadserver[2].txt [ Cookie:vanessa@smartadserver.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@sevenoneintermedia.112.2o7[1].txt [ Cookie:vanessa@sevenoneintermedia.112.2o7.net/ ]
C:\USERS\VANESSA\Cookies\vanessa@adtech[2].txt [ Cookie:Vanessa@adtech.de/ ]
C:\USERS\VANESSA\Cookies\vanessa@clkads[2].txt [ Cookie:Vanessa@clkads.com/adServe ]
C:\USERS\VANESSA\Cookies\vanessa@serving-sys[2].txt [ Cookie:Vanessa@serving-sys.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@www.etracker[2].txt [ Cookie:Vanessa@www.etracker.de/ ]
C:\USERS\VANESSA\Cookies\vanessa@ad.zanox[2].txt [ Cookie:vanessa@ad.zanox.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@server.adform[2].txt [ Cookie:vanessa@server.adform.net/ ]
C:\USERS\VANESSA\Cookies\vanessa@doubleclick[3].txt [ Cookie:vanessa@doubleclick.net/ ]
C:\USERS\VANESSA\Cookies\vanessa@track.adform[1].txt [ Cookie:vanessa@track.adform.net/ ]
C:\USERS\VANESSA\Cookies\vanessa@euroclick[1].txt [ Cookie:Vanessa@euroclick.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@googleads.g.doubleclick[1].txt [ Cookie:Vanessa@googleads.g.doubleclick.net/ ]
C:\USERS\VANESSA\Cookies\vanessa@tradedoubler[2].txt [ Cookie:Vanessa@tradedoubler.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@rotator.adjuggler[1].txt [ Cookie:Vanessa@rotator.adjuggler.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@media6degrees[2].txt [ Cookie:Vanessa@media6degrees.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@tacoda.at.atwola[1].txt [ Cookie:vanessa@tacoda.at.atwola.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@ad4.adfarm1.adition[2].txt [ Cookie:vanessa@ad4.adfarm1.adition.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@serving-sys[1].txt [ Cookie:vanessa@serving-sys.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@ad.yieldmanager[2].txt [ Cookie:Vanessa@ad.yieldmanager.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@gamecenter.oberon-media[2].txt [ Cookie:vanessa@gamecenter.oberon-media.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@tracking.mindshare[2].txt [ Cookie:vanessa@tracking.mindshare.de/ ]
C:\USERS\VANESSA\Cookies\vanessa@www.google[1].txt [ Cookie:Vanessa@www.google.com/accounts ]
C:\USERS\VANESSA\Cookies\vanessa@oberon-media[2].txt [ Cookie:vanessa@oberon-media.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@ad3.adfarm1.adition[3].txt [ Cookie:vanessa@ad3.adfarm1.adition.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@mywebsearch[2].txt [ Cookie:Vanessa@mywebsearch.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@www.googleadservices[3].txt [ Cookie:Vanessa@www.googleadservices.com/pagead/conversion/1068470753/ ]
C:\USERS\VANESSA\Cookies\vanessa@adfarm1.adition[1].txt [ Cookie:Vanessa@adfarm1.adition.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@www.googleadservices[5].txt [ Cookie:Vanessa@www.googleadservices.com/pagead/conversion/1054354546/ ]
C:\USERS\VANESSA\Cookies\vanessa@zbox.zanox[2].txt [ Cookie:Vanessa@zbox.zanox.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@www.windowsmedia[2].txt [ Cookie:vanessa@www.windowsmedia.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@de.at.atwola[1].txt [ Cookie:Vanessa@de.at.atwola.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@revsci[2].txt [ Cookie:Vanessa@revsci.net/ ]
C:\USERS\VANESSA\Cookies\vanessa@mediaplex[1].txt [ Cookie:vanessa@mediaplex.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@yadro[2].txt [ Cookie:vanessa@yadro.ru/ ]
C:\USERS\VANESSA\Cookies\vanessa@zedo[2].txt [ Cookie:Vanessa@zedo.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@eyewonder[2].txt [ Cookie:vanessa@eyewonder.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@bs.serving-sys[2].txt [ Cookie:Vanessa@bs.serving-sys.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@clkads[4].txt [ Cookie:Vanessa@clkads.com/adServe/banners ]
C:\USERS\VANESSA\Cookies\vanessa@content.yieldmanager[2].txt [ Cookie:Vanessa@content.yieldmanager.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@ad.zanox[1].txt [ Cookie:Vanessa@ad.zanox.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@zanox[2].txt [ Cookie:Vanessa@zanox.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@atdmt[2].txt [ Cookie:vanessa@atdmt.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@content.yieldmanager[3].txt [ Cookie:Vanessa@content.yieldmanager.com/ak/ ]
C:\USERS\VANESSA\Cookies\vanessa@invitemedia[1].txt [ Cookie:Vanessa@invitemedia.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@overture[1].txt [ Cookie:Vanessa@overture.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@atwola[2].txt [ Cookie:vanessa@atwola.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@advertising[2].txt [ Cookie:vanessa@advertising.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@www.googleadservices[1].txt [ Cookie:Vanessa@www.googleadservices.com/pagead/conversion/1069511586/ ]
C:\USERS\VANESSA\Cookies\vanessa@ar.atwola[1].txt [ Cookie:vanessa@ar.atwola.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@advertising[1].txt [ Cookie:Vanessa@advertising.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@tradedoubler[3].txt [ Cookie:vanessa@tradedoubler.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@content.yieldmanager[1].txt [ Cookie:vanessa@content.yieldmanager.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@webmasterplan[1].txt [ Cookie:Vanessa@webmasterplan.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@2o7[1].txt [ Cookie:Vanessa@2o7.net/ ]
C:\USERS\VANESSA\Cookies\vanessa@clkads[5].txt [ Cookie:Vanessa@clkads.com/adServe/static/ ]
C:\USERS\VANESSA\Cookies\vanessa@bs.serving-sys[1].txt [ Cookie:vanessa@bs.serving-sys.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@ad3.adfarm1.adition[2].txt [ Cookie:Vanessa@ad3.adfarm1.adition.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@fastclick[2].txt [ Cookie:Vanessa@fastclick.net/ ]
C:\USERS\VANESSA\Cookies\vanessa@a2.adserver01[1].txt [ Cookie:Vanessa@a2.adserver01.de/ ]
C:\USERS\VANESSA\Cookies\vanessa@adformdsp[1].txt [ Cookie:vanessa@adformdsp.net/ ]
C:\USERS\VANESSA\Cookies\vanessa@zanox-affiliate[1].txt [ Cookie:Vanessa@zanox-affiliate.de/ ]
C:\USERS\VANESSA\Cookies\vanessa@www.googleadservices[4].txt [ Cookie:Vanessa@www.googleadservices.com/pagead/conversion/1065490749/ ]
C:\USERS\VANESSA\Cookies\vanessa@traffictrack[2].txt [ Cookie:Vanessa@traffictrack.de/ ]
C:\USERS\VANESSA\Cookies\vanessa@mediaplex[2].txt [ Cookie:Vanessa@mediaplex.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@tracking.quisma[2].txt [ Cookie:Vanessa@tracking.quisma.com/ ]
C:\USERS\VANESSA\Cookies\vanessa@doubleclick[1].txt [ Cookie:Vanessa@doubleclick.net/ ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@AD.ZANOX[1].TXT [ /AD.ZANOX ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@FASTCLICK[2].TXT [ /FASTCLICK ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ADS.PUBMATIC[1].TXT [ /ADS.PUBMATIC ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@TRIBALFUSION[2].TXT [ /TRIBALFUSION ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ADS.1001SPIELE[2].TXT [ /ADS.1001SPIELE ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ADS.1001SPIELE[3].TXT [ /ADS.1001SPIELE ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ATDMT[2].TXT [ /ATDMT ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ADS.NET2DAY[2].TXT [ /ADS.NET2DAY ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@CONTENT.YIELDMANAGER[1].TXT [ /CONTENT.YIELDMANAGER ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@MEDIA6DEGREES[1].TXT [ /MEDIA6DEGREES ]
C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ZANOX[2].TXT [ /ZANOX ]
www.vagosex.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
www.vagosex.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
www.vagosex.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
.lfstmedia.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
.lfstmedia.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
.divx.112.2o7.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lucidmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.apmebf.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.vagosex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.vagosex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.vagosex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.vagosex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad1.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.xiti.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad3.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
banner.lv.de [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad2.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.xm.xtendmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.gostats.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.gostats.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
7.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.track.senzapudore.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.track.senzapudore.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.etracker.de [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
7.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.liveperson.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.content.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@IMRWORLDWIDE[2].TXT [ /IMRWORLDWIDE ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ZANOX[2].TXT [ /ZANOX ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@WWW.GOOGLEADSERVICES[4].TXT [ /WWW.GOOGLEADSERVICES ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@2O7[1].TXT [ /2O7 ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ADS.QUARTERMEDIA[1].TXT [ /ADS.QUARTERMEDIA ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ROTATOR.ADJUGGLER[1].TXT [ /ROTATOR.ADJUGGLER ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ADFARM1.ADITION[1].TXT [ /ADFARM1.ADITION ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@TRAFFICTRACK[2].TXT [ /TRAFFICTRACK ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ADS.PLANETACTIVE[2].TXT [ /ADS.PLANETACTIVE ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@AD.AD-SRV[2].TXT [ /AD.AD-SRV ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ADS.PFERDE[2].TXT [ /ADS.PFERDE ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@REVSCI[2].TXT [ /REVSCI ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@INVITEMEDIA[1].TXT [ /INVITEMEDIA ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@EUROCLICK[1].TXT [ /EUROCLICK ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ZEDO[2].TXT [ /ZEDO ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@AOLDE.122.2O7[1].TXT [ /AOLDE.122.2O7 ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ADS.HEIAS[1].TXT [ /ADS.HEIAS ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@UNITYMEDIA[2].TXT [ /UNITYMEDIA ]
C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@WWW.GOOGLEADSERVICES[6].TXT [ /WWW.GOOGLEADSERVICES ]
server.cpmstar.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
adserver.71i.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.247realmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.media.photobucket.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.adition.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
de.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.game-advertising-online.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.guj.122.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.112.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adserver.adtechus.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.a.revenuemax.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.gostats.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.usenext.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.gostats.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adcentriconline.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adserving.w2c.ru [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adserving.w2c.ru [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adserving.w2c.ru [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.luroxmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.msnbc.112.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
wmedia.rotator.hadj7.adjuggler.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
wmedia.rotator.hadj7.adjuggler.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.mediathek.ffh.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.findwallpaper.info [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.isegailsexyymena.goodluckwith.us [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.luroxmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.luroxmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.freaks-toplist.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.youporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.youporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.youporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.sexad.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www8.addfreestats.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.fuckmybrain.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.googleads.g.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.finde-reitbeteiligung.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.finde-reitbeteiligung.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ad-emea.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ad-emea.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
7.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
media.neodau.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
banner.lv.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.xm.xtendmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.bwincom.122.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.liveperson.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
studivz.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
studivz.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
tracker.bmtsystem.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ads20.wwe-media.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
traffic.brokerbabe.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
tracking.mobile.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
dm3adserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.advertisingenhanced.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.advertisingenhanced.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ar.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.exoclick.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.cpvadverts.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.cpvadverts.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.maximumfindings.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.maximumfindings.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tns-counter.ru [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.technoratimedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.technoratimedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.multimediaxis.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.multimediaxis.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
count.asnetworks.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.partnerdemoemea.112.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tiniporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tiniporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.tiniporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.tiniporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.pornofilmpjes.nl [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.pornofilmpjes.nl [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adxpose.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.technoratimedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.googleads.g.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ads2.247activemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.mm.chitika.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.mmotraffic.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.mmotraffic.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adlegend.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.www.burstnet.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.yieldmanager.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.burstnet.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ww251.smartadserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.aim4media.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
server.adform.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ads.247activemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.avgtechnologies.112.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.active-tracking.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.active-tracking.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.active-tracking.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
rtbma.revenuemax.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.clickbank.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.clickbank.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.adition.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.adition.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad1.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
zbox.zanox.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
adserver.zenoviaexchange.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
tomtailor.dyntracker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.usenext.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
aa.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.mediatraffic.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
7.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
server.adformdsp.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adformdsp.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.examinestats.org [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.examinestats.org [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.examinestats.org [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.blogcounter.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adformdsp.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
server.adformdsp.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adformdsp.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.exoclick.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
cdn2.baronsmedia.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\NJ7KMB9Y ]
delivery.ibanner.de [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\NJ7KMB9Y ]
|
|
21.10.2012, 11:52
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | AVG meldet: services.exe mit Trojaner infiziert Malwarebytes hat nur Funde in der OTL- und TDSS-Killer-Qurantäne gehabt. Ansonsten wurden nur Cookies gefunden, die können alle weg. Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat. Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/ Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
22.10.2012, 06:30
| #29 |
| | AVG meldet: services.exe mit Trojaner infiziert Danke für deine Tipps und Unterstützung! Nein, ansonst gibt es keine weiteren Probleme. Grüße Nico |
|
22.10.2012, 11:28
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | AVG meldet: services.exe mit Trojaner infiziert Dann wären wir durch!  Die Programme, die hier zum Einsatz kamen, können alle wieder runter. Malwarebytes zu behalten ist zu empfehlen. Kannst ja 1x im Monat damit einen Vollscan machen, aber immer vorher ans Update denken. Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden. Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern. Microsoftupdate Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren. Windows Vista/7: Anleitung Windows-Update PDF-Reader aktualisieren Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast) Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader. Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers: Prüfen => Adobe - Flash Player Downloadlinks => Adobe Flash Player Distribution | Adobe Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind. Java-Update Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu AVG meldet: services.exe mit Trojaner infiziert |
| autorun, avg, bho, canon, converter, explorer, firefox, flash player, format, home, iminent, iminent toolbar, infiziert, intranet, logfile, mp3, plug-in, programm, prozess, realtek, registry, rundll, scan, security, services.exe, software, system, trojaner, vista, windows |
Linear-Darstellung
