Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: AVG meldet: services.exe mit Trojaner infiziert

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 13.10.2012, 20:48   #16
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.

Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 14.10.2012, 16:45   #17
Niggo
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Und hier das Log:

Code:
ATTFilter
17:40:41.0107 3380  TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
17:40:41.0122 3380  ============================================================
17:40:41.0122 3380  Current date / time: 2012/10/14 17:40:41.0122
17:40:41.0122 3380  SystemInfo:
17:40:41.0122 3380  
17:40:41.0122 3380  OS Version: 6.0.6001 ServicePack: 1.0
17:40:41.0122 3380  Product type: Workstation
17:40:41.0122 3380  ComputerName: VANESSA-PC
17:40:41.0123 3380  UserName: Vanessa
17:40:41.0123 3380  Windows directory: C:\Windows
17:40:41.0123 3380  System windows directory: C:\Windows
17:40:41.0123 3380  Processor architecture: Intel x86
17:40:41.0123 3380  Number of processors: 2
17:40:41.0123 3380  Page size: 0x1000
17:40:41.0123 3380  Boot type: Normal boot
17:40:41.0123 3380  ============================================================
17:40:43.0063 3380  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:40:43.0065 3380  ============================================================
17:40:43.0065 3380  \Device\Harddisk0\DR0:
17:40:43.0065 3380  MBR partitions:
17:40:43.0065 3380  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1BCB27C1
17:40:43.0065 3380  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1BCB2800, BlocksNum 0x1511800
17:40:43.0065 3380  ============================================================
17:40:43.0080 3380  C: <-> \Device\Harddisk0\DR0\Partition1
17:40:43.0866 3380  D: <-> \Device\Harddisk0\DR0\Partition2
17:40:43.0866 3380  ============================================================
17:40:43.0866 3380  Initialize success
17:40:43.0866 3380  ============================================================
17:40:54.0356 1112  ============================================================
17:40:54.0356 1112  Scan started
17:40:54.0356 1112  Mode: Manual; SigCheck; TDLFS; 
17:40:54.0356 1112  ============================================================
17:40:56.0344 1112  ================ Scan system memory ========================
17:40:56.0344 1112  System memory - ok
17:40:56.0345 1112  ================ Scan services =============================
17:40:56.0711 1112  [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI            C:\Windows\system32\drivers\acpi.sys
17:40:56.0945 1112  ACPI - ok
17:40:57.0160 1112  [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:40:57.0176 1112  AdobeFlashPlayerUpdateSvc - ok
17:40:57.0215 1112  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
17:40:57.0237 1112  adp94xx - ok
17:40:57.0288 1112  [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci         C:\Windows\system32\drivers\adpahci.sys
17:40:57.0327 1112  adpahci - ok
17:40:57.0335 1112  [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
17:40:57.0349 1112  adpu160m - ok
17:40:57.0359 1112  [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
17:40:57.0373 1112  adpu320 - ok
17:40:57.0402 1112  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:40:57.0726 1112  AeLookupSvc - ok
17:40:57.0770 1112  [ 763E172A55177E478CB419F88FD0BA03 ] AFD             C:\Windows\system32\drivers\afd.sys
17:40:57.0827 1112  AFD - ok
17:40:57.0905 1112  [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440          C:\Windows\system32\drivers\agp440.sys
17:40:57.0923 1112  agp440 - ok
17:40:57.0949 1112  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
17:40:57.0971 1112  aic78xx - ok
17:40:57.0985 1112  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
17:40:58.0027 1112  ALG - ok
17:40:58.0045 1112  [ 3D76FDA1A10ACC3DC84728F55C29B6D4 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:40:58.0059 1112  aliide - ok
17:40:58.0115 1112  [ C47344BC706E5F0B9DCE369516661578 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
17:40:58.0207 1112  amdagp - ok
17:40:58.0215 1112  [ 5B92E7839F5A1FBC1B39DE67758AD6F8 ] amdide          C:\Windows\system32\drivers\amdide.sys
17:40:58.0232 1112  amdide - ok
17:40:58.0272 1112  [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
17:40:58.0373 1112  AmdK7 - ok
17:40:58.0411 1112  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
17:40:58.0515 1112  AmdK8 - ok
17:40:58.0611 1112  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
17:40:58.0678 1112  Appinfo - ok
17:40:58.0697 1112  [ 5D2888182FB46632511ACEE92FDAD522 ] arc             C:\Windows\system32\drivers\arc.sys
17:40:58.0714 1112  arc - ok
17:40:58.0728 1112  [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
17:40:58.0745 1112  arcsas - ok
17:40:58.0796 1112  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:40:58.0886 1112  AsyncMac - ok
17:40:58.0978 1112  [ 9C0E70031905ADBF94EDB9EA14AF943B ] atapi           C:\Windows\system32\drivers\atapi.sys
17:40:58.0992 1112  atapi - ok
17:40:59.0192 1112  [ 600EFE56F37ADBD65A0FB076B50D1B8D ] athr            C:\Windows\system32\DRIVERS\athr.sys
17:40:59.0313 1112  athr - ok
17:40:59.0436 1112  [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:40:59.0537 1112  AudioEndpointBuilder - ok
17:40:59.0579 1112  [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
17:40:59.0630 1112  Audiosrv - ok
17:40:59.0722 1112  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:40:59.0804 1112  Beep - ok
17:40:59.0859 1112  [ D4DF28447741FD3D953526E33A617397 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
17:40:59.0914 1112  blbdrive - ok
17:40:59.0947 1112  [ 74B442B2BE1260B7588C136177CEAC66 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:41:00.0014 1112  bowser - ok
17:41:00.0077 1112  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
17:41:00.0164 1112  BrFiltLo - ok
17:41:00.0244 1112  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
17:41:00.0346 1112  BrFiltUp - ok
17:41:00.0418 1112  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
17:41:00.0503 1112  Browser - ok
17:41:00.0563 1112  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
17:41:00.0789 1112  Brserid - ok
17:41:01.0105 1112  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
17:41:01.0189 1112  BrSerWdm - ok
17:41:01.0241 1112  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
17:41:01.0346 1112  BrUsbMdm - ok
17:41:01.0438 1112  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
17:41:01.0509 1112  BrUsbSer - ok
17:41:01.0610 1112  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
17:41:01.0696 1112  BTHMODEM - ok
17:41:01.0724 1112  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:41:01.0761 1112  cdfs - ok
17:41:01.0877 1112  [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:41:01.0920 1112  cdrom - ok
17:41:02.0002 1112  [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc     C:\Windows\System32\certprop.dll
17:41:02.0086 1112  CertPropSvc - ok
17:41:02.0173 1112  [ E5D4133F37219DBCFE102BC61072589D ] circlass        C:\Windows\system32\drivers\circlass.sys
17:41:02.0221 1112  circlass - ok
17:41:02.0296 1112  [ 0703B9DEE7EEC6D6370EDEBD43D0F5C2 ] CLFS            C:\Windows\system32\CLFS.sys
17:41:02.0317 1112  CLFS - ok
17:41:02.0659 1112  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:41:02.0675 1112  clr_optimization_v2.0.50727_32 - ok
17:41:02.0721 1112  [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
17:41:02.0788 1112  CmBatt - ok
17:41:02.0822 1112  [ D36372A6EA6805EFBE8884D10772313F ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:41:02.0836 1112  cmdide - ok
17:41:02.0889 1112  [ 1ADF6F4852E7D7E2E8AC481BDB970586 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
17:41:02.0984 1112  CnxtHdAudService - ok
17:41:03.0116 1112  [ 7795F8CEBC284A426B53F541E538695F ] Com4QLBEx       C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
17:41:03.0140 1112  Com4QLBEx - ok
17:41:03.0172 1112  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
17:41:03.0186 1112  Compbatt - ok
17:41:03.0204 1112  COMSysApp - ok
17:41:03.0257 1112  [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
17:41:03.0271 1112  crcdisk - ok
17:41:03.0696 1112  [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
17:41:03.0781 1112  Crusoe - ok
17:41:03.0827 1112  [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:41:03.0896 1112  CryptSvc - ok
17:41:03.0980 1112  [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:41:04.0060 1112  DcomLaunch - ok
17:41:04.0082 1112  [ 9E635AE5E8AD93E2B5989E2E23679F97 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:41:04.0141 1112  DfsC - ok
17:41:04.0252 1112  [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR            C:\Windows\system32\DFSR.exe
17:41:04.0455 1112  DFSR - ok
17:41:04.0513 1112  [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
17:41:04.0578 1112  Dhcp - ok
17:41:04.0617 1112  [ 64109E623ABD6955C8FB110B592E68B7 ] disk            C:\Windows\system32\drivers\disk.sys
17:41:04.0634 1112  disk - ok
17:41:04.0657 1112  [ F5A0F1DA1ED8B429597E71D27D976E31 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:41:04.0718 1112  Dnscache - ok
17:41:04.0859 1112  [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:41:04.0916 1112  dot3svc - ok
17:41:04.0960 1112  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
17:41:05.0010 1112  DPS - ok
17:41:05.0097 1112  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:41:05.0178 1112  drmkaud - ok
17:41:05.0240 1112  [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:41:05.0353 1112  DXGKrnl - ok
17:41:05.0440 1112  [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
17:41:05.0598 1112  E1G60 - ok
17:41:05.0626 1112  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
17:41:05.0715 1112  EapHost - ok
17:41:05.0755 1112  [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache          C:\Windows\system32\drivers\ecache.sys
17:41:05.0775 1112  Ecache - ok
17:41:05.0833 1112  [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:41:05.0877 1112  ehRecvr - ok
17:41:05.0905 1112  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched         C:\Windows\ehome\ehsched.exe
17:41:05.0976 1112  ehSched - ok
17:41:06.0016 1112  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart         C:\Windows\ehome\ehstart.dll
17:41:06.0036 1112  ehstart - ok
17:41:06.0089 1112  [ 23B62471681A124889978F6295B3F4C6 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
17:41:06.0119 1112  elxstor - ok
17:41:06.0341 1112  [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
17:41:06.0570 1112  EMDMgmt - ok
17:41:06.0651 1112  [ 3DB974F3935483555D7148663F726C61 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:41:06.0734 1112  ErrDev - ok
17:41:06.0828 1112  [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem     C:\Windows\system32\es.dll
17:41:06.0895 1112  EventSystem - ok
17:41:06.0952 1112  [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat           C:\Windows\system32\drivers\exfat.sys
17:41:07.0002 1112  exfat - ok
17:41:07.0062 1112  [ 42F721C52EEF2D6DF9372A53813A83EF ] ezSharedSvc     C:\Windows\System32\ezsvc7.dll
17:41:07.0091 1112  ezSharedSvc ( UnsignedFile.Multi.Generic ) - warning
17:41:07.0091 1112  ezSharedSvc - detected UnsignedFile.Multi.Generic (1)
17:41:07.0117 1112  [ 3C489390C2E2064563727752AF8EAB9E ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:41:07.0181 1112  fastfat - ok
17:41:07.0321 1112  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
17:41:07.0425 1112  fdc - ok
17:41:07.0497 1112  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
17:41:07.0575 1112  fdPHost - ok
17:41:07.0627 1112  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:41:07.0735 1112  FDResPub - ok
17:41:07.0787 1112  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:41:07.0803 1112  FileInfo - ok
17:41:07.0915 1112  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:41:07.0961 1112  Filetrace - ok
17:41:08.0080 1112  [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
17:41:08.0183 1112  flpydisk - ok
17:41:08.0219 1112  [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:41:08.0241 1112  FltMgr - ok
17:41:08.0404 1112  [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:41:08.0418 1112  FontCache3.0.0.0 - ok
17:41:08.0434 1112  [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:41:08.0496 1112  Fs_Rec - ok
17:41:09.0177 1112  [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
17:41:09.0194 1112  gagp30kx - ok
17:41:09.0336 1112  [ BC4D691A2F3339FE89726D4959C79996 ] GameConsoleService C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
17:41:09.0356 1112  GameConsoleService - ok
17:41:09.0391 1112  [ D9F1113D9401185245573350712F92FC ] gpsvc           C:\Windows\System32\gpsvc.dll
17:41:09.0506 1112  gpsvc - ok
17:41:09.0778 1112  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
17:41:09.0800 1112  gupdate - ok
17:41:09.0817 1112  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
17:41:09.0831 1112  gupdatem - ok
17:41:09.0896 1112  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:41:10.0018 1112  HdAudAddService - ok
17:41:10.0036 1112  [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
17:41:10.0084 1112  HDAudBus - ok
17:41:10.0114 1112  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
17:41:10.0191 1112  HidBth - ok
17:41:10.0232 1112  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
17:41:10.0340 1112  HidIr - ok
17:41:10.0395 1112  [ 8FA640195279ACE21BEA91396A0054FC ] hidserv         C:\Windows\system32\hidserv.dll
17:41:10.0499 1112  hidserv - ok
17:41:10.0558 1112  [ E2B5BD48AFCC0F0974FB44641B223250 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
17:41:10.0619 1112  HidUsb - ok
17:41:10.0713 1112  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:41:10.0786 1112  hkmsvc - ok
17:41:10.0865 1112  [ A19B0BB5A7EB6DF2DD4A0711D36955EE ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
17:41:10.0903 1112  HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
17:41:10.0904 1112  HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
17:41:10.0940 1112  [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
17:41:10.0955 1112  HpCISSs - ok
17:41:10.0973 1112  [ 35956140E686D53BF676CF0C778880FC ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
17:41:11.0014 1112  HpqKbFiltr - ok
17:41:11.0062 1112  [ 1665C7121A026DF10C903DB9BC5E9D43 ] hpqwmiex        C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
17:41:11.0077 1112  hpqwmiex - ok
17:41:11.0144 1112  [ CC267848CB3508E72762BE65734E764D ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
17:41:11.0235 1112  HSF_DPV - ok
17:41:11.0301 1112  [ A2882945CC4B6E3E4E9E825590438888 ] HSXHWAZL        C:\Windows\system32\DRIVERS\HSXHWAZL.sys
17:41:11.0323 1112  HSXHWAZL - ok
17:41:11.0361 1112  [ 406C027C18E98A396FAA1963DAD5FF70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:41:11.0438 1112  HTTP - ok
17:41:11.0485 1112  [ C6B032D69650985468160FC9937CF5B4 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
17:41:11.0500 1112  i2omp - ok
17:41:11.0598 1112  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
17:41:11.0654 1112  i8042prt - ok
17:41:11.0689 1112  [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
17:41:11.0713 1112  iaStorV - ok
17:41:11.0822 1112  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:41:11.0856 1112  IDriverT ( UnsignedFile.Multi.Generic ) - warning
17:41:11.0857 1112  IDriverT - detected UnsignedFile.Multi.Generic (1)
17:41:12.0306 1112  [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:41:12.0450 1112  idsvc - ok
17:41:12.0637 1112  [ F1F52F4B4DD7CB8B47570690363F1B28 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
17:41:12.0999 1112  igfx - ok
17:41:13.0033 1112  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
17:41:13.0049 1112  iirsp - ok
17:41:13.0085 1112  [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT          C:\Windows\System32\ikeext.dll
17:41:13.0169 1112  IKEEXT - ok
17:41:13.0232 1112  [ C7E7E43CBD34D3B0A0156B51B917DFCC ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
17:41:13.0310 1112  IntcHdmiAddService - ok
17:41:13.0359 1112  [ DD512A049BD7B4BCE8A83554C5EFF2C1 ] intelide        C:\Windows\system32\drivers\intelide.sys
17:41:13.0374 1112  intelide - ok
17:41:13.0416 1112  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:41:13.0490 1112  intelppm - ok
17:41:13.0679 1112  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:41:13.0738 1112  IPBusEnum - ok
17:41:13.0789 1112  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:41:13.0842 1112  IpFilterDriver - ok
17:41:13.0852 1112  IpInIp - ok
17:41:13.0901 1112  [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
17:41:13.0951 1112  IPMIDRV - ok
17:41:13.0961 1112  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
17:41:14.0010 1112  IPNAT - ok
17:41:14.0053 1112  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:41:14.0127 1112  IRENUM - ok
17:41:14.0156 1112  [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:41:14.0172 1112  isapnp - ok
17:41:14.0205 1112  [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
17:41:14.0225 1112  iScsiPrt - ok
17:41:14.0236 1112  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
17:41:14.0251 1112  iteatapi - ok
17:41:14.0262 1112  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
17:41:14.0277 1112  iteraid - ok
17:41:14.0308 1112  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:41:14.0323 1112  kbdclass - ok
17:41:14.0341 1112  [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
17:41:14.0389 1112  kbdhid - ok
17:41:14.0416 1112  [ DCF733788C7D088D814E5F80EB4B3E0F ] KeyIso          C:\Windows\system32\lsass.exe
17:41:14.0457 1112  KeyIso - ok
17:41:14.0513 1112  [ 5367DC846CAE9639B899BFD13B97A8C9 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:41:14.0570 1112  KSecDD - ok
17:41:14.0627 1112  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:41:14.0666 1112  KtmRm - ok
17:41:14.0689 1112  [ 05CE901A4472B3FBF9407C94AD1DB693 ] LanmanServer    C:\Windows\system32\srvsvc.dll
17:41:14.0731 1112  LanmanServer - ok
17:41:14.0767 1112  [ DEC1A338B86C5D582C25C40836DD76C3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:41:14.0810 1112  LanmanWorkstation - ok
17:41:14.0866 1112  [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
17:41:14.0871 1112  LightScribeService ( UnsignedFile.Multi.Generic ) - warning
17:41:14.0871 1112  LightScribeService - detected UnsignedFile.Multi.Generic (1)
17:41:14.0888 1112  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:41:14.0931 1112  lltdio - ok
17:41:15.0069 1112  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:41:15.0217 1112  lltdsvc - ok
17:41:15.0235 1112  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:41:15.0286 1112  lmhosts - ok
17:41:15.0347 1112  [ C7E15E82879BF3235B559563D4185365 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
17:41:15.0357 1112  LSI_FC - ok
17:41:15.0370 1112  [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
17:41:15.0380 1112  LSI_SAS - ok
17:41:15.0394 1112  [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
17:41:15.0404 1112  LSI_SCSI - ok
17:41:15.0412 1112  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
17:41:15.0455 1112  luafv - ok
17:41:17.0307 1112  [ 22A7776C5D8EB5930EDF9C8DD0884259 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
17:41:17.0524 1112  McComponentHostService - ok
17:41:17.0586 1112  [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:41:17.0657 1112  Mcx2Svc - ok
17:41:17.0733 1112  [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
17:41:17.0750 1112  mdmxsdk - ok
17:41:17.0794 1112  [ 0001CE609D66632FA17B84705F658879 ] megasas         C:\Windows\system32\drivers\megasas.sys
17:41:17.0809 1112  megasas - ok
17:41:17.0842 1112  [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
17:41:17.0874 1112  MegaSR - ok
17:41:17.0983 1112  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
17:41:18.0088 1112  MMCSS - ok
17:41:18.0125 1112  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
17:41:18.0183 1112  Modem - ok
17:41:18.0234 1112  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:41:18.0278 1112  monitor - ok
17:41:18.0308 1112  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:41:18.0323 1112  mouclass - ok
17:41:18.0371 1112  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:41:18.0415 1112  mouhid - ok
17:41:18.0490 1112  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
17:41:18.0507 1112  MountMgr - ok
17:41:18.0715 1112  [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:41:18.0761 1112  MozillaMaintenance - ok
17:41:18.0903 1112  [ 511D011289755DD9F9A7579FB0B064E6 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:41:18.0985 1112  mpio - ok
17:41:19.0061 1112  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:41:19.0109 1112  mpsdrv - ok
17:41:19.0121 1112  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
17:41:19.0136 1112  Mraid35x - ok
17:41:19.0148 1112  [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:41:19.0281 1112  MRxDAV - ok
17:41:19.0313 1112  [ C4AD205530888404E2B5FC8D9319B119 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:41:19.0360 1112  mrxsmb - ok
17:41:19.0430 1112  [ 0A986B34F1678A2697574D7B1664E2DD ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:41:19.0486 1112  mrxsmb10 - ok
17:41:19.0517 1112  [ 3268B8C3FA92BFC086355C39B45E9CC9 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:41:19.0564 1112  mrxsmb20 - ok
17:41:19.0588 1112  [ AA305CFF241DA187BD5077DE4A2A043D ] msahci          C:\Windows\system32\drivers\msahci.sys
17:41:19.0604 1112  msahci - ok
17:41:19.0619 1112  [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:41:19.0631 1112  msdsm - ok
17:41:19.0663 1112  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
17:41:19.0696 1112  MSDTC - ok
17:41:19.0728 1112  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:41:19.0791 1112  Msfs - ok
17:41:19.0820 1112  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:41:19.0827 1112  msisadrv - ok
17:41:19.0868 1112  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:41:19.0892 1112  MSiSCSI - ok
17:41:19.0897 1112  msiserver - ok
17:41:19.0973 1112  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:41:20.0045 1112  MSKSSRV - ok
17:41:20.0100 1112  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:41:20.0122 1112  MSPCLOCK - ok
17:41:20.0162 1112  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:41:20.0194 1112  MSPQM - ok
17:41:20.0233 1112  [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:41:20.0246 1112  MsRPC - ok
17:41:20.0298 1112  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
17:41:20.0307 1112  mssmbios - ok
17:41:20.0368 1112  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:41:20.0452 1112  MSTEE - ok
17:41:20.0482 1112  [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup             C:\Windows\system32\Drivers\mup.sys
17:41:20.0497 1112  Mup - ok
17:41:20.0651 1112  [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent        C:\Windows\system32\qagentRT.dll
17:41:20.0815 1112  napagent - ok
17:41:20.0863 1112  [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:41:20.0887 1112  NativeWifiP - ok
17:41:20.0919 1112  [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:41:21.0015 1112  NDIS - ok
17:41:21.0097 1112  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:41:21.0192 1112  NdisTapi - ok
17:41:21.0228 1112  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:41:21.0275 1112  Ndisuio - ok
17:41:21.0304 1112  [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:41:21.0352 1112  NdisWan - ok
17:41:21.0382 1112  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:41:21.0427 1112  NDProxy - ok
17:41:21.0585 1112  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:41:21.0675 1112  NetBIOS - ok
17:41:21.0726 1112  [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
17:41:21.0763 1112  netbt - ok
17:41:21.0799 1112  [ DCF733788C7D088D814E5F80EB4B3E0F ] Netlogon        C:\Windows\system32\lsass.exe
17:41:21.0810 1112  Netlogon - ok
17:41:21.0962 1112  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
17:41:22.0135 1112  Netman - ok
17:41:22.0156 1112  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
17:41:22.0198 1112  netprofm - ok
17:41:22.0244 1112  [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:41:22.0257 1112  NetTcpPortSharing - ok
17:41:22.0710 1112  [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32        C:\Windows\system32\DRIVERS\NETw3v32.sys
17:41:22.0966 1112  NETw3v32 - ok
17:41:23.0063 1112  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
17:41:23.0109 1112  nfrd960 - ok
17:41:23.0140 1112  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:41:23.0216 1112  NlaSvc - ok
17:41:23.0225 1112  [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:41:23.0304 1112  Npfs - ok
17:41:23.0320 1112  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
17:41:23.0416 1112  nsi - ok
17:41:23.0447 1112  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:41:23.0484 1112  nsiproxy - ok
17:41:23.0912 1112  [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:41:24.0063 1112  Ntfs - ok
17:41:24.0096 1112  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
17:41:24.0187 1112  ntrigdigi - ok
17:41:24.0247 1112  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
17:41:24.0272 1112  Null - ok
17:41:24.0314 1112  [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:41:24.0329 1112  nvraid - ok
17:41:24.0375 1112  [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:41:24.0384 1112  nvstor - ok
17:41:24.0468 1112  [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:41:24.0483 1112  nv_agp - ok
17:41:24.0489 1112  NwlnkFlt - ok
17:41:24.0497 1112  NwlnkFwd - ok
17:41:24.0710 1112  [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
17:41:24.0768 1112  ohci1394 - ok
17:41:24.0893 1112  [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
17:41:25.0143 1112  p2pimsvc - ok
17:41:25.0172 1112  [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc          C:\Windows\system32\p2psvc.dll
17:41:25.0260 1112  p2psvc - ok
17:41:25.0304 1112  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
17:41:25.0468 1112  Parport - ok
17:41:25.0548 1112  [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:41:25.0565 1112  partmgr - ok
17:41:25.0600 1112  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
17:41:25.0710 1112  Parvdm - ok
17:41:25.0772 1112  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:41:25.0811 1112  PcaSvc - ok
17:41:25.0829 1112  [ 01B94418DEB235DFF777CC80076354B4 ] pci             C:\Windows\system32\drivers\pci.sys
17:41:25.0849 1112  pci - ok
17:41:25.0863 1112  [ 1D8B3D8DF8EB7FCF2F0AC02F9F947802 ] pciide          C:\Windows\system32\drivers\pciide.sys
17:41:25.0877 1112  pciide - ok
17:41:26.0000 1112  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
17:41:26.0011 1112  pcmcia - ok
17:41:26.0190 1112  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:41:26.0686 1112  PEAUTH - ok
17:41:27.0125 1112  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
17:41:27.0461 1112  pla - ok
17:41:27.0534 1112  [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:41:27.0677 1112  PlugPlay - ok
17:41:27.0950 1112  [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
17:41:28.0071 1112  PNRPAutoReg - ok
17:41:28.0352 1112  [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
17:41:28.0445 1112  PNRPsvc - ok
17:41:28.0673 1112  [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:41:28.0804 1112  PolicyAgent - ok
17:41:28.0833 1112  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:41:28.0900 1112  PptpMiniport - ok
17:41:28.0929 1112  [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor       C:\Windows\system32\drivers\processr.sys
17:41:28.0977 1112  Processor - ok
17:41:29.0077 1112  [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:41:29.0229 1112  ProfSvc - ok
17:41:29.0260 1112  [ DCF733788C7D088D814E5F80EB4B3E0F ] ProtectedStorage C:\Windows\system32\lsass.exe
17:41:29.0282 1112  ProtectedStorage - ok
17:41:29.0313 1112  [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
17:41:29.0431 1112  PSched - ok
17:41:29.0508 1112  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
17:41:29.0718 1112  ql2300 - ok
17:41:29.0728 1112  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
17:41:29.0746 1112  ql40xx - ok
17:41:29.0812 1112  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
17:41:29.0933 1112  QWAVE - ok
17:41:29.0957 1112  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:41:30.0001 1112  QWAVEdrv - ok
17:41:30.0050 1112  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:41:30.0130 1112  RasAcd - ok
17:41:30.0183 1112  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
17:41:30.0241 1112  RasAuto - ok
17:41:30.0315 1112  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:41:30.0365 1112  Rasl2tp - ok
17:41:30.0418 1112  [ AFB474438762F0418060653F7294D92C ] RasMan          C:\Windows\System32\rasmans.dll
17:41:30.0478 1112  RasMan - ok
17:41:30.0552 1112  [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:41:30.0598 1112  RasPppoe - ok
17:41:30.0677 1112  [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:41:30.0728 1112  RasSstp - ok
17:41:30.0778 1112  [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:41:30.0830 1112  rdbss - ok
17:41:30.0911 1112  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:41:31.0031 1112  RDPCDD - ok
17:41:31.0114 1112  [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
17:41:31.0166 1112  rdpdr - ok
17:41:31.0179 1112  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:41:31.0267 1112  RDPENCDD - ok
17:41:31.0312 1112  [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:41:31.0345 1112  RDPWD - ok
17:41:31.0400 1112  [ 0D362785BEF9BDF5A6E1F4628D06716D ] Recovery Service for Windows C:\Program Files\SMINST\BLService.exe
17:41:31.0535 1112  Recovery Service for Windows - ok
17:41:31.0616 1112  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:41:31.0640 1112  RemoteAccess - ok
17:41:31.0777 1112  [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:41:31.0825 1112  RemoteRegistry - ok
17:41:32.0160 1112  [ 805AE1F90C64758D19AAA001CF8CBA12 ] RichVideo       C:\Program Files\CyberLink\Shared files\RichVideo.exe
17:41:32.0251 1112  RichVideo ( UnsignedFile.Multi.Generic ) - warning
17:41:32.0251 1112  RichVideo - detected UnsignedFile.Multi.Generic (1)
17:41:32.0281 1112  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
17:41:32.0313 1112  RpcLocator - ok
17:41:32.0514 1112  [ 301AE00E12408650BADDC04DBC832830 ] RpcSs           C:\Windows\system32\rpcss.dll
17:41:32.0574 1112  RpcSs - ok
17:41:32.0617 1112  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:41:32.0666 1112  rspndr - ok
17:41:32.0746 1112  [ 125C504A34D0A2E152517E342E7E432C ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
17:41:32.0801 1112  RTL8169 - ok
17:41:32.0852 1112  [ 8DAB5975B5C7923D61506A48E251DBAD ] RTSTOR          C:\Windows\system32\drivers\RTSTOR.SYS
17:41:32.0891 1112  RTSTOR - ok
17:41:32.0924 1112  [ DCF733788C7D088D814E5F80EB4B3E0F ] SamSs           C:\Windows\system32\lsass.exe
17:41:32.0946 1112  SamSs - ok
17:41:33.0020 1112  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:41:33.0039 1112  sbp2port - ok
17:41:33.0211 1112  [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:41:33.0331 1112  SCardSvr - ok
17:41:33.0523 1112  [ 1D5E99DB3C10F4FA034010DC49043CA4 ] Schedule        C:\Windows\system32\schedsvc.dll
17:41:33.0753 1112  Schedule - ok
17:41:33.0812 1112  [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:41:33.0856 1112  SCPolicySvc - ok
17:41:33.0988 1112  [ 126EA89BCC413EE45E3004FB0764888F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
17:41:34.0116 1112  sdbus - ok
17:41:34.0154 1112  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:41:34.0211 1112  SDRSVC - ok
17:41:34.0234 1112  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:41:34.0326 1112  secdrv - ok
17:41:34.0446 1112  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
17:41:34.0636 1112  seclogon - ok
17:41:34.0650 1112  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\System32\sens.dll
17:41:34.0703 1112  SENS - ok
17:41:34.0747 1112  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
17:41:34.0891 1112  Serenum - ok
17:41:34.0960 1112  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
17:41:35.0051 1112  Serial - ok
17:41:35.0109 1112  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
17:41:35.0142 1112  sermouse - ok
17:41:35.0201 1112  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
17:41:35.0243 1112  SessionEnv - ok
17:41:35.0317 1112  [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:41:35.0366 1112  sffdisk - ok
17:41:35.0405 1112  [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:41:35.0467 1112  sffp_mmc - ok
17:41:35.0498 1112  [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:41:35.0564 1112  sffp_sd - ok
17:41:35.0602 1112  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
17:41:35.0709 1112  sfloppy - ok
17:41:35.0778 1112  [ 27F10F348E508243F6254846F8370D0D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:41:35.0807 1112  ShellHWDetection - ok
17:41:35.0881 1112  [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
17:41:35.0894 1112  sisagp - ok
17:41:35.0919 1112  [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
17:41:35.0928 1112  SiSRaid2 - ok
17:41:35.0941 1112  [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
17:41:35.0950 1112  SiSRaid4 - ok
17:41:36.0184 1112  [ 0BA91E1358AD25236863039BB2609A2E ] slsvc           C:\Windows\system32\SLsvc.exe
17:41:36.0316 1112  slsvc - ok
17:41:36.0344 1112  [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
17:41:36.0378 1112  SLUINotify - ok
17:41:36.0555 1112  [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:41:36.0692 1112  Smb - ok
17:41:36.0746 1112  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:41:36.0770 1112  SNMPTRAP - ok
17:41:36.0835 1112  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
17:41:36.0846 1112  spldr - ok
17:41:36.0909 1112  [ 846CDF9A3CF4DA9B306ADFB7D55EE4C2 ] Spooler         C:\Windows\System32\spoolsv.exe
17:41:37.0033 1112  Spooler - ok
17:41:37.0281 1112  [ 73DDDBEEC61E78568082916A27AADAEE ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:41:37.0435 1112  srv - ok
17:41:37.0484 1112  [ 805FAC010405AD3F82EF8DF0BB035D81 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:41:37.0550 1112  srv2 - ok
17:41:37.0569 1112  [ F63A0A58AAFE34D7A1A0A74ABCCDD9C0 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:41:37.0637 1112  srvnet - ok
17:41:37.0731 1112  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:41:37.0884 1112  SSDPSRV - ok
17:41:38.0015 1112  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:41:38.0072 1112  SstpSvc - ok
17:41:38.0129 1112  [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc          C:\Windows\System32\wiaservc.dll
17:41:38.0208 1112  stisvc - ok
17:41:38.0329 1112  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
17:41:38.0346 1112  swenum - ok
17:41:38.0489 1112  [ B36C7CDB86F7F7A8E884479219766950 ] swprv           C:\Windows\System32\swprv.dll
17:41:38.0555 1112  swprv - ok
17:41:38.0594 1112  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
17:41:38.0609 1112  Symc8xx - ok
17:41:38.0618 1112  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
17:41:38.0633 1112  Sym_hi - ok
17:41:38.0643 1112  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
17:41:38.0658 1112  Sym_u3 - ok
17:41:38.0691 1112  [ 00B19F27858F56181EDB58B71A7C67A0 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
17:41:38.0710 1112  SynTP - ok
17:41:39.0152 1112  [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain         C:\Windows\system32\sysmain.dll
17:41:39.0340 1112  SysMain - ok
17:41:39.0407 1112  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:41:39.0438 1112  TabletInputService - ok
17:41:39.0522 1112  [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:41:39.0671 1112  TapiSrv - ok
17:41:39.0752 1112  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
17:41:39.0874 1112  TBS - ok
17:41:40.0175 1112  [ 82E266BEE5F0167E41C6ECFDD2A79C02 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:41:40.0295 1112  Tcpip - ok
17:41:40.0515 1112  [ 82E266BEE5F0167E41C6ECFDD2A79C02 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
17:41:40.0582 1112  Tcpip6 - ok
17:41:40.0658 1112  [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:41:40.0708 1112  tcpipreg - ok
17:41:40.0738 1112  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:41:40.0783 1112  TDPIPE - ok
17:41:40.0808 1112  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:41:40.0855 1112  TDTCP - ok
17:41:40.0907 1112  [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:41:40.0973 1112  tdx - ok
17:41:41.0026 1112  [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
17:41:41.0041 1112  TermDD - ok
17:41:41.0272 1112  [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService     C:\Windows\System32\termsrv.dll
17:41:41.0399 1112  TermService - ok
17:41:41.0419 1112  [ 27F10F348E508243F6254846F8370D0D ] Themes          C:\Windows\system32\shsvcs.dll
17:41:41.0472 1112  Themes - ok
17:41:41.0521 1112  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
17:41:41.0567 1112  THREADORDER - ok
17:41:41.0619 1112  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
17:41:41.0736 1112  TrkWks - ok
17:41:41.0925 1112  [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:41:42.0070 1112  TrustedInstaller - ok
17:41:42.0198 1112  [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:41:42.0272 1112  tssecsrv - ok
17:41:42.0301 1112  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
17:41:42.0345 1112  tunmp - ok
17:41:42.0420 1112  [ 119B8184E106BAEDC83FCE5DDF3950DA ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:41:42.0506 1112  tunnel - ok
17:41:42.0554 1112  [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35          C:\Windows\system32\drivers\uagp35.sys
17:41:42.0602 1112  uagp35 - ok
17:41:42.0626 1112  [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:41:42.0678 1112  udfs - ok
17:41:42.0729 1112  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:41:42.0787 1112  UI0Detect - ok
17:41:42.0871 1112  [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:41:42.0891 1112  uliagpkx - ok
17:41:42.0911 1112  [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci         C:\Windows\system32\drivers\uliahci.sys
17:41:42.0952 1112  uliahci - ok
17:41:42.0965 1112  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
17:41:42.0983 1112  UlSata - ok
17:41:42.0993 1112  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
17:41:43.0011 1112  ulsata2 - ok
17:41:43.0028 1112  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
17:41:43.0074 1112  umbus - ok
17:41:43.0114 1112  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
17:41:43.0207 1112  upnphost - ok
17:41:43.0267 1112  [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:41:43.0320 1112  usbccgp - ok
17:41:43.0473 1112  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:41:43.0558 1112  usbcir - ok
17:41:43.0604 1112  [ CEBE90821810E76320155BEBA722FCF9 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
17:41:43.0649 1112  usbehci - ok
17:41:43.0676 1112  [ CC6B28E4CE39951357963119CE47B143 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:41:43.0727 1112  usbhub - ok
17:41:43.0758 1112  [ 38DBC7DD6CC5A72011F187425384388B ] usbohci         C:\Windows\system32\drivers\usbohci.sys
17:41:43.0838 1112  usbohci - ok
17:41:43.0941 1112  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:41:44.0052 1112  usbprint - ok
17:41:44.0147 1112  [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:41:44.0198 1112  USBSTOR - ok
17:41:44.0320 1112  [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
17:41:44.0454 1112  usbuhci - ok
17:41:44.0510 1112  [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
17:41:44.0571 1112  usbvideo - ok
17:41:44.0603 1112  [ 032A0ACC3909AE7215D524E29D536797 ] UxSms           C:\Windows\System32\uxsms.dll
17:41:44.0646 1112  UxSms - ok
17:41:44.0666 1112  [ B13BC395B9D6116628F5AF47E0802AC4 ] vds             C:\Windows\System32\vds.exe
17:41:44.0792 1112  vds - ok
17:41:44.0950 1112  [ 87B06E1F30B749A114F74622D013F8D4 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:41:45.0020 1112  vga - ok
17:41:45.0051 1112  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:41:45.0109 1112  VgaSave - ok
17:41:45.0150 1112  [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp          C:\Windows\system32\drivers\viaagp.sys
17:41:45.0161 1112  viaagp - ok
17:41:45.0181 1112  [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7           C:\Windows\system32\drivers\viac7.sys
17:41:45.0210 1112  ViaC7 - ok
17:41:45.0241 1112  [ EA1AA6E3ABB3C194FEBA12A46DE8CF2C ] viaide          C:\Windows\system32\drivers\viaide.sys
17:41:45.0251 1112  viaide - ok
17:41:45.0280 1112  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:41:45.0290 1112  volmgr - ok
17:41:45.0363 1112  [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:41:45.0383 1112  volmgrx - ok
17:41:45.0410 1112  [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:41:45.0512 1112  volsnap - ok
17:41:45.0522 1112  [ 587253E09325E6BF226B299774B728A9 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
17:41:45.0538 1112  vsmraid - ok
17:41:45.0677 1112  [ D5FB73D19C46ADE183F968E13F186B23 ] VSS             C:\Windows\system32\vssvc.exe
17:41:45.0864 1112  VSS - ok
17:41:45.0947 1112  [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time         C:\Windows\system32\w32time.dll
17:41:46.0014 1112  W32Time - ok
17:41:46.0056 1112  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
17:41:46.0138 1112  WacomPen - ok
17:41:46.0170 1112  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
17:41:46.0243 1112  Wanarp - ok
17:41:46.0252 1112  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:41:46.0300 1112  Wanarpv6 - ok
17:41:46.0391 1112  [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:41:46.0513 1112  wcncsvc - ok
17:41:46.0599 1112  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:41:46.0627 1112  WcsPlugInService - ok
17:41:46.0664 1112  [ 78FE9542363F297B18C027B2D7E7C07F ] Wd              C:\Windows\system32\drivers\wd.sys
17:41:46.0672 1112  Wd - ok
17:41:46.0787 1112  [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:41:46.0875 1112  Wdf01000 - ok
17:41:46.0967 1112  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:41:47.0022 1112  WdiServiceHost - ok
17:41:47.0028 1112  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:41:47.0065 1112  WdiSystemHost - ok
17:41:47.0087 1112  [ CF9A5F41789B642DB967021DE06A2713 ] WebClient       C:\Windows\System32\webclnt.dll
17:41:47.0117 1112  WebClient - ok
17:41:47.0138 1112  [ 905214925A88311FCE52F66153DE7610 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:41:47.0179 1112  Wecsvc - ok
17:41:47.0194 1112  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:41:47.0235 1112  wercplsupport - ok
17:41:47.0264 1112  [ FD1965AAA112C6818A30AB02742D0461 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:41:47.0296 1112  WerSvc - ok
17:41:47.0342 1112  [ 0ACD399F5DB3DF1B58903CF4949AB5A8 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
17:41:47.0379 1112  winachsf - ok
17:41:47.0387 1112  WinHttpAutoProxySvc - ok
17:41:47.0607 1112  [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:41:47.0659 1112  Winmgmt - ok
17:41:47.0815 1112  [ 20FC93FDC916843CFDFCAA7A1B0DB16F ] WinRM           C:\Windows\system32\WsmSvc.dll
17:41:48.0169 1112  WinRM - ok
17:41:48.0292 1112  [ 4B40FF01DB5357299DCBDB5A5746AD21 ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:41:48.0353 1112  Wlansvc - ok
17:41:48.0375 1112  [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
17:41:48.0419 1112  WmiAcpi - ok
17:41:48.0452 1112  [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:41:48.0510 1112  wmiApSrv - ok
17:41:48.0641 1112  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
17:41:48.0736 1112  WMPNetworkSvc - ok
17:41:48.0800 1112  [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:41:48.0914 1112  WPCSvc - ok
17:41:48.0935 1112  [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:41:49.0005 1112  WPDBusEnum - ok
17:41:49.0047 1112  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:41:49.0095 1112  ws2ifsl - ok
17:41:49.0103 1112  WSearch - ok
17:41:49.0157 1112  [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:41:49.0204 1112  WUDFRd - ok
17:41:49.0232 1112  [ 575A4190D989F64732119E4114045A4F ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:41:49.0283 1112  wudfsvc - ok
17:41:49.0295 1112  [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
17:41:49.0322 1112  XAudio - ok
17:41:49.0383 1112  [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
17:41:49.0440 1112  XAudioService - ok
17:41:49.0501 1112  [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
17:41:49.0587 1112  yukonwlh - ok
17:41:49.0635 1112  ================ Scan global ===============================
17:41:49.0666 1112  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
17:41:49.0693 1112  [ 8B05FAF8603E6FDE90C5B103761CC3F6 ] C:\Windows\system32\winsrv.dll
17:41:49.0738 1112  [ 8B05FAF8603E6FDE90C5B103761CC3F6 ] C:\Windows\system32\winsrv.dll
17:41:49.0890 1112  [ 5DC3C54FC22BBB6F66C290C7C0384DF9 ] C:\Windows\system32\services.exe
17:41:49.0948 1112  C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - infected
17:41:49.0948 1112  C:\Windows\system32\services.exe - detected Virus.Win32.ZAccess.m (0)
17:41:49.0949 1112  ================ Scan MBR ==================================
17:41:49.0969 1112  [ 588AE8F0C685C02BA11F30D9CD7E61A0 ] \Device\Harddisk0\DR0
17:41:54.0212 1112  \Device\Harddisk0\DR0 - ok
17:41:54.0212 1112  ================ Scan VBR ==================================
17:41:54.0218 1112  [ 896B95FCA63108FD7CE4D9B6B2BC323A ] \Device\Harddisk0\DR0\Partition1
17:41:54.0221 1112  \Device\Harddisk0\DR0\Partition1 - ok
17:41:54.0310 1112  [ CE72B091EAEB452A4132BDEDF2A7A4C2 ] \Device\Harddisk0\DR0\Partition2
17:41:54.0315 1112  \Device\Harddisk0\DR0\Partition2 - ok
17:41:54.0316 1112  ============================================================
17:41:54.0316 1112  Scan finished
17:41:54.0316 1112  ============================================================
17:41:54.0336 1096  Detected object count: 6
17:41:54.0336 1096  Actual detected object count: 6
17:42:27.0149 1096  ezSharedSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:42:27.0149 1096  ezSharedSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:42:27.0153 1096  HP Health Check Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:42:27.0153 1096  HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:42:27.0156 1096  IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
17:42:27.0156 1096  IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:42:27.0160 1096  LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
17:42:27.0160 1096  LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:42:27.0163 1096  RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
17:42:27.0163 1096  RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:42:27.0167 1096  C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - skipped by user
17:42:27.0167 1096  C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - User select action: Skip 
17:43:26.0960 3008  Deinitialize success
         
__________________


Alt 14.10.2012, 19:42   #18
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Code:
ATTFilter
C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - skipped by user
         
Diesen Eintrag bitte mit dem TDSS-Killer fixen. Aber bitte nur diesen Eintrag!

Um das zu tun musst du den TDSS-Killer neu starten und einen neuen Scan machen. Wenn du danach die Ergebnisse siehst, stellst du bitte diesen Eintrag auf CURE bzw. DELETE (je nachdem was dir angeboten wird, alle anderen bitte auf SKIP lassen! ) und klickst dann unten rechts auf continue

Starte Windows danach neu und mach wieder ein komplett neues Log mit dem TDSS-Killer. Wie immer wieder in CODE-Tags posten.
__________________
__________________

Alt 14.10.2012, 20:58   #19
Niggo
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Hier das Log nach dem Reboot:

Code:
ATTFilter
21:52:31.0486 2440  TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
21:52:31.0533 2440  ============================================================
21:52:31.0533 2440  Current date / time: 2012/10/14 21:52:31.0533
21:52:31.0533 2440  SystemInfo:
21:52:31.0533 2440  
21:52:31.0533 2440  OS Version: 6.0.6001 ServicePack: 1.0
21:52:31.0533 2440  Product type: Workstation
21:52:31.0533 2440  ComputerName: VANESSA-PC
21:52:31.0533 2440  UserName: Vanessa
21:52:31.0533 2440  Windows directory: C:\Windows
21:52:31.0533 2440  System windows directory: C:\Windows
21:52:31.0533 2440  Processor architecture: Intel x86
21:52:31.0533 2440  Number of processors: 2
21:52:31.0533 2440  Page size: 0x1000
21:52:31.0533 2440  Boot type: Normal boot
21:52:31.0533 2440  ============================================================
21:52:35.0323 2440  BG loaded
21:52:35.0973 2440  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:52:35.0985 2440  ============================================================
21:52:35.0985 2440  \Device\Harddisk0\DR0:
21:52:35.0986 2440  MBR partitions:
21:52:35.0986 2440  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1BCB27C1
21:52:35.0986 2440  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1BCB2800, BlocksNum 0x1511800
21:52:35.0986 2440  ============================================================
21:52:36.0201 2440  C: <-> \Device\Harddisk0\DR0\Partition1
21:52:36.0710 2440  D: <-> \Device\Harddisk0\DR0\Partition2
21:52:36.0710 2440  ============================================================
21:52:36.0710 2440  Initialize success
21:52:36.0710 2440  ============================================================
21:53:41.0060 2460  ============================================================
21:53:41.0060 2460  Scan started
21:53:41.0060 2460  Mode: Manual; SigCheck; TDLFS; 
21:53:41.0060 2460  ============================================================
21:53:42.0470 2460  ================ Scan system memory ========================
21:53:42.0470 2460  System memory - ok
21:53:42.0471 2460  ================ Scan services =============================
21:53:43.0081 2460  [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI            C:\Windows\system32\drivers\acpi.sys
21:53:43.0230 2460  ACPI - ok
21:53:43.0398 2460  [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:53:43.0409 2460  AdobeFlashPlayerUpdateSvc - ok
21:53:43.0565 2460  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:53:43.0668 2460  adp94xx - ok
21:53:43.0682 2460  [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:53:43.0725 2460  adpahci - ok
21:53:43.0749 2460  [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
21:53:43.0770 2460  adpu160m - ok
21:53:43.0820 2460  [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:53:43.0983 2460  adpu320 - ok
21:53:44.0062 2460  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:53:44.0431 2460  AeLookupSvc - ok
21:53:44.0486 2460  [ 763E172A55177E478CB419F88FD0BA03 ] AFD             C:\Windows\system32\drivers\afd.sys
21:53:44.0565 2460  AFD - ok
21:53:44.0643 2460  [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:53:44.0660 2460  agp440 - ok
21:53:44.0775 2460  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
21:53:44.0794 2460  aic78xx - ok
21:53:44.0823 2460  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
21:53:44.0874 2460  ALG - ok
21:53:44.0893 2460  [ 3D76FDA1A10ACC3DC84728F55C29B6D4 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:53:44.0908 2460  aliide - ok
21:53:44.0974 2460  [ C47344BC706E5F0B9DCE369516661578 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
21:53:44.0983 2460  amdagp - ok
21:53:44.0990 2460  [ 5B92E7839F5A1FBC1B39DE67758AD6F8 ] amdide          C:\Windows\system32\drivers\amdide.sys
21:53:44.0998 2460  amdide - ok
21:53:45.0021 2460  [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
21:53:45.0100 2460  AmdK7 - ok
21:53:45.0148 2460  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:53:45.0243 2460  AmdK8 - ok
21:53:45.0293 2460  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
21:53:45.0349 2460  Appinfo - ok
21:53:45.0379 2460  [ 5D2888182FB46632511ACEE92FDAD522 ] arc             C:\Windows\system32\drivers\arc.sys
21:53:45.0396 2460  arc - ok
21:53:45.0411 2460  [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:53:45.0428 2460  arcsas - ok
21:53:45.0478 2460  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:53:45.0579 2460  AsyncMac - ok
21:53:45.0593 2460  [ 9C0E70031905ADBF94EDB9EA14AF943B ] atapi           C:\Windows\system32\drivers\atapi.sys
21:53:45.0608 2460  atapi - ok
21:53:45.0651 2460  [ 600EFE56F37ADBD65A0FB076B50D1B8D ] athr            C:\Windows\system32\DRIVERS\athr.sys
21:53:45.0739 2460  athr - ok
21:53:45.0806 2460  [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:53:45.0858 2460  AudioEndpointBuilder - ok
21:53:45.0877 2460  [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
21:53:45.0917 2460  Audiosrv - ok
21:53:45.0949 2460  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:53:46.0012 2460  Beep - ok
21:53:46.0052 2460  [ D4DF28447741FD3D953526E33A617397 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
21:53:46.0079 2460  blbdrive - ok
21:53:46.0107 2460  [ 74B442B2BE1260B7588C136177CEAC66 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:53:46.0266 2460  bowser - ok
21:53:46.0393 2460  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
21:53:46.0546 2460  BrFiltLo - ok
21:53:46.0604 2460  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
21:53:46.0716 2460  BrFiltUp - ok
21:53:46.0800 2460  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
21:53:46.0920 2460  Browser - ok
21:53:46.0979 2460  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
21:53:47.0194 2460  Brserid - ok
21:53:47.0265 2460  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
21:53:47.0350 2460  BrSerWdm - ok
21:53:47.0402 2460  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
21:53:47.0994 2460  BrUsbMdm - ok
21:53:48.0142 2460  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
21:53:48.0242 2460  BrUsbSer - ok
21:53:48.0337 2460  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:53:48.0461 2460  BTHMODEM - ok
21:53:48.0485 2460  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:53:48.0518 2460  cdfs - ok
21:53:48.0548 2460  [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:53:48.0575 2460  cdrom - ok
21:53:48.0607 2460  [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc     C:\Windows\System32\certprop.dll
21:53:48.0652 2460  CertPropSvc - ok
21:53:48.0689 2460  [ E5D4133F37219DBCFE102BC61072589D ] circlass        C:\Windows\system32\drivers\circlass.sys
21:53:48.0793 2460  circlass - ok
21:53:48.0867 2460  [ 0703B9DEE7EEC6D6370EDEBD43D0F5C2 ] CLFS            C:\Windows\system32\CLFS.sys
21:53:48.0927 2460  CLFS - ok
21:53:49.0285 2460  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:53:49.0301 2460  clr_optimization_v2.0.50727_32 - ok
21:53:49.0392 2460  [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:53:49.0459 2460  CmBatt - ok
21:53:49.0548 2460  [ D36372A6EA6805EFBE8884D10772313F ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:53:49.0563 2460  cmdide - ok
21:53:49.0715 2460  [ 1ADF6F4852E7D7E2E8AC481BDB970586 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
21:53:49.0877 2460  CnxtHdAudService - ok
21:53:49.0986 2460  [ 7795F8CEBC284A426B53F541E538695F ] Com4QLBEx       C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
21:53:50.0004 2460  Com4QLBEx - ok
21:53:50.0013 2460  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:53:50.0032 2460  Compbatt - ok
21:53:50.0042 2460  COMSysApp - ok
21:53:50.0069 2460  [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:53:50.0087 2460  crcdisk - ok
21:53:50.0134 2460  [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
21:53:50.0229 2460  Crusoe - ok
21:53:50.0265 2460  [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:53:50.0334 2460  CryptSvc - ok
21:53:50.0462 2460  [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:53:50.0610 2460  DcomLaunch - ok
21:53:50.0631 2460  [ 9E635AE5E8AD93E2B5989E2E23679F97 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:53:50.0688 2460  DfsC - ok
21:53:50.0970 2460  [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR            C:\Windows\system32\DFSR.exe
21:53:51.0215 2460  DFSR - ok
21:53:51.0273 2460  [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
21:53:51.0337 2460  Dhcp - ok
21:53:51.0366 2460  [ 64109E623ABD6955C8FB110B592E68B7 ] disk            C:\Windows\system32\drivers\disk.sys
21:53:51.0383 2460  disk - ok
21:53:51.0405 2460  [ F5A0F1DA1ED8B429597E71D27D976E31 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:53:51.0466 2460  Dnscache - ok
21:53:51.0519 2460  [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:53:51.0567 2460  dot3svc - ok
21:53:51.0586 2460  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
21:53:51.0627 2460  DPS - ok
21:53:51.0823 2460  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:53:51.0896 2460  drmkaud - ok
21:53:52.0020 2460  [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:53:52.0088 2460  DXGKrnl - ok
21:53:52.0178 2460  [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
21:53:52.0269 2460  E1G60 - ok
21:53:52.0341 2460  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
21:53:52.0430 2460  EapHost - ok
21:53:52.0459 2460  [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache          C:\Windows\system32\drivers\ecache.sys
21:53:52.0479 2460  Ecache - ok
21:53:52.0604 2460  [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:53:52.0659 2460  ehRecvr - ok
21:53:52.0698 2460  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched         C:\Windows\ehome\ehsched.exe
21:53:52.0769 2460  ehSched - ok
21:53:52.0820 2460  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart         C:\Windows\ehome\ehstart.dll
21:53:52.0838 2460  ehstart - ok
21:53:52.0960 2460  [ 23B62471681A124889978F6295B3F4C6 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:53:53.0094 2460  elxstor - ok
21:53:53.0190 2460  [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
21:53:53.0274 2460  EMDMgmt - ok
21:53:53.0389 2460  [ 3DB974F3935483555D7148663F726C61 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:53:53.0460 2460  ErrDev - ok
21:53:53.0543 2460  [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem     C:\Windows\system32\es.dll
21:53:53.0633 2460  EventSystem - ok
21:53:53.0701 2460  [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat           C:\Windows\system32\drivers\exfat.sys
21:53:53.0749 2460  exfat - ok
21:53:53.0800 2460  [ 42F721C52EEF2D6DF9372A53813A83EF ] ezSharedSvc     C:\Windows\System32\ezsvc7.dll
21:53:53.0839 2460  ezSharedSvc ( UnsignedFile.Multi.Generic ) - warning
21:53:53.0840 2460  ezSharedSvc - detected UnsignedFile.Multi.Generic (1)
21:53:53.0865 2460  [ 3C489390C2E2064563727752AF8EAB9E ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:53:53.0925 2460  fastfat - ok
21:53:53.0992 2460  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:53:54.0084 2460  fdc - ok
21:53:54.0290 2460  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
21:53:54.0523 2460  fdPHost - ok
21:53:54.0575 2460  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:53:54.0726 2460  FDResPub - ok
21:53:54.0791 2460  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:53:54.0807 2460  FileInfo - ok
21:53:54.0852 2460  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:53:54.0900 2460  Filetrace - ok
21:53:54.0950 2460  [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:53:55.0042 2460  flpydisk - ok
21:53:55.0101 2460  [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:53:55.0120 2460  FltMgr - ok
21:53:55.0397 2460  [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:53:55.0410 2460  FontCache3.0.0.0 - ok
21:53:55.0460 2460  [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:53:55.0556 2460  Fs_Rec - ok
21:53:55.0892 2460  [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:53:55.0909 2460  gagp30kx - ok
21:53:56.0284 2460  [ BC4D691A2F3339FE89726D4959C79996 ] GameConsoleService C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
21:53:56.0304 2460  GameConsoleService - ok
21:53:56.0422 2460  [ D9F1113D9401185245573350712F92FC ] gpsvc           C:\Windows\System32\gpsvc.dll
21:53:56.0492 2460  gpsvc - ok
21:53:57.0017 2460  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
21:53:57.0031 2460  gupdate - ok
21:53:57.0066 2460  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
21:53:57.0079 2460  gupdatem - ok
21:53:57.0145 2460  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:53:57.0265 2460  HdAudAddService - ok
21:53:57.0329 2460  [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:53:57.0441 2460  HDAudBus - ok
21:53:57.0518 2460  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:53:57.0666 2460  HidBth - ok
21:53:57.0814 2460  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
21:53:57.0964 2460  HidIr - ok
21:53:58.0054 2460  [ 8FA640195279ACE21BEA91396A0054FC ] hidserv         C:\Windows\system32\hidserv.dll
21:53:58.0136 2460  hidserv - ok
21:53:58.0217 2460  [ E2B5BD48AFCC0F0974FB44641B223250 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:53:58.0305 2460  HidUsb - ok
21:53:58.0339 2460  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:53:58.0410 2460  hkmsvc - ok
21:53:58.0469 2460  [ A19B0BB5A7EB6DF2DD4A0711D36955EE ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
21:53:58.0541 2460  HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
21:53:58.0541 2460  HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
21:53:58.0588 2460  [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
21:53:58.0607 2460  HpCISSs - ok
21:53:58.0632 2460  [ 35956140E686D53BF676CF0C778880FC ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
21:53:58.0753 2460  HpqKbFiltr - ok
21:53:58.0875 2460  [ 1665C7121A026DF10C903DB9BC5E9D43 ] hpqwmiex        C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
21:53:58.0888 2460  hpqwmiex - ok
21:53:59.0047 2460  [ CC267848CB3508E72762BE65734E764D ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
21:53:59.0139 2460  HSF_DPV - ok
21:53:59.0204 2460  [ A2882945CC4B6E3E4E9E825590438888 ] HSXHWAZL        C:\Windows\system32\DRIVERS\HSXHWAZL.sys
21:53:59.0224 2460  HSXHWAZL - ok
21:53:59.0325 2460  [ 406C027C18E98A396FAA1963DAD5FF70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:53:59.0385 2460  HTTP - ok
21:53:59.0477 2460  [ C6B032D69650985468160FC9937CF5B4 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
21:53:59.0493 2460  i2omp - ok
21:53:59.0535 2460  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:53:59.0590 2460  i8042prt - ok
21:53:59.0627 2460  [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
21:53:59.0651 2460  iaStorV - ok
21:53:59.0826 2460  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
21:53:59.0871 2460  IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:53:59.0871 2460  IDriverT - detected UnsignedFile.Multi.Generic (1)
21:54:00.0274 2460  [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:54:00.0578 2460  idsvc - ok
21:54:01.0179 2460  [ F1F52F4B4DD7CB8B47570690363F1B28 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
21:54:01.0361 2460  igfx - ok
21:54:01.0492 2460  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:54:01.0512 2460  iirsp - ok
21:54:01.0788 2460  [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT          C:\Windows\System32\ikeext.dll
21:54:01.0983 2460  IKEEXT - ok
21:54:02.0035 2460  [ C7E7E43CBD34D3B0A0156B51B917DFCC ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
21:54:02.0087 2460  IntcHdmiAddService - ok
21:54:02.0140 2460  [ DD512A049BD7B4BCE8A83554C5EFF2C1 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:54:02.0149 2460  intelide - ok
21:54:02.0185 2460  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:54:02.0219 2460  intelppm - ok
21:54:02.0248 2460  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:54:02.0289 2460  IPBusEnum - ok
21:54:02.0336 2460  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:54:02.0362 2460  IpFilterDriver - ok
21:54:02.0369 2460  IpInIp - ok
21:54:02.0426 2460  [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
21:54:02.0451 2460  IPMIDRV - ok
21:54:02.0462 2460  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
21:54:02.0487 2460  IPNAT - ok
21:54:02.0601 2460  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:54:02.0688 2460  IRENUM - ok
21:54:02.0725 2460  [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:54:02.0743 2460  isapnp - ok
21:54:02.0774 2460  [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
21:54:02.0786 2460  iScsiPrt - ok
21:54:02.0794 2460  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
21:54:02.0804 2460  iteatapi - ok
21:54:02.0811 2460  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
21:54:02.0823 2460  iteraid - ok
21:54:02.0844 2460  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:54:02.0855 2460  kbdclass - ok
21:54:02.0899 2460  [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:54:02.0933 2460  kbdhid - ok
21:54:02.0963 2460  [ DCF733788C7D088D814E5F80EB4B3E0F ] KeyIso          C:\Windows\system32\lsass.exe
21:54:03.0015 2460  KeyIso - ok
21:54:03.0127 2460  [ 5367DC846CAE9639B899BFD13B97A8C9 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:54:03.0251 2460  KSecDD - ok
21:54:03.0309 2460  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:54:03.0377 2460  KtmRm - ok
21:54:03.0448 2460  [ 05CE901A4472B3FBF9407C94AD1DB693 ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:54:03.0508 2460  LanmanServer - ok
21:54:03.0548 2460  [ DEC1A338B86C5D582C25C40836DD76C3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:54:03.0621 2460  LanmanWorkstation - ok
21:54:03.0691 2460  [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:54:03.0698 2460  LightScribeService ( UnsignedFile.Multi.Generic ) - warning
21:54:03.0698 2460  LightScribeService - detected UnsignedFile.Multi.Generic (1)
21:54:03.0724 2460  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:54:03.0785 2460  lltdio - ok
21:54:03.0862 2460  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:54:03.0935 2460  lltdsvc - ok
21:54:03.0983 2460  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:54:04.0064 2460  lmhosts - ok
21:54:04.0128 2460  [ C7E15E82879BF3235B559563D4185365 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:54:04.0148 2460  LSI_FC - ok
21:54:04.0180 2460  [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:54:04.0198 2460  LSI_SAS - ok
21:54:04.0242 2460  [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:54:04.0263 2460  LSI_SCSI - ok
21:54:04.0273 2460  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
21:54:04.0344 2460  luafv - ok
21:54:04.0944 2460  [ 22A7776C5D8EB5930EDF9C8DD0884259 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
21:54:05.0184 2460  McComponentHostService - ok
21:54:05.0245 2460  [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:54:05.0293 2460  Mcx2Svc - ok
21:54:05.0314 2460  [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
21:54:05.0330 2460  mdmxsdk - ok
21:54:05.0353 2460  [ 0001CE609D66632FA17B84705F658879 ] megasas         C:\Windows\system32\drivers\megasas.sys
21:54:05.0369 2460  megasas - ok
21:54:05.0396 2460  [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
21:54:05.0419 2460  MegaSR - ok
21:54:05.0464 2460  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
21:54:05.0516 2460  MMCSS - ok
21:54:05.0539 2460  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
21:54:05.0578 2460  Modem - ok
21:54:05.0616 2460  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:54:05.0649 2460  monitor - ok
21:54:05.0667 2460  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:54:05.0679 2460  mouclass - ok
21:54:05.0697 2460  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:54:05.0732 2460  mouhid - ok
21:54:05.0783 2460  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
21:54:05.0795 2460  MountMgr - ok
21:54:05.0941 2460  [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:54:05.0961 2460  MozillaMaintenance - ok
21:54:05.0985 2460  [ 511D011289755DD9F9A7579FB0B064E6 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:54:06.0005 2460  mpio - ok
21:54:06.0032 2460  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:54:06.0079 2460  mpsdrv - ok
21:54:06.0100 2460  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
21:54:06.0115 2460  Mraid35x - ok
21:54:06.0125 2460  [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:54:06.0201 2460  MRxDAV - ok
21:54:06.0228 2460  [ C4AD205530888404E2B5FC8D9319B119 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:54:06.0273 2460  mrxsmb - ok
21:54:06.0311 2460  [ 0A986B34F1678A2697574D7B1664E2DD ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:54:06.0468 2460  mrxsmb10 - ok
21:54:06.0505 2460  [ 3268B8C3FA92BFC086355C39B45E9CC9 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:54:06.0549 2460  mrxsmb20 - ok
21:54:06.0570 2460  [ AA305CFF241DA187BD5077DE4A2A043D ] msahci          C:\Windows\system32\drivers\msahci.sys
21:54:06.0585 2460  msahci - ok
21:54:06.0601 2460  [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:54:06.0620 2460  msdsm - ok
21:54:06.0645 2460  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
21:54:06.0709 2460  MSDTC - ok
21:54:06.0743 2460  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:54:06.0803 2460  Msfs - ok
21:54:06.0846 2460  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:54:06.0861 2460  msisadrv - ok
21:54:06.0906 2460  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:54:06.0955 2460  MSiSCSI - ok
21:54:06.0963 2460  msiserver - ok
21:54:07.0055 2460  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:54:07.0105 2460  MSKSSRV - ok
21:54:07.0160 2460  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:54:07.0184 2460  MSPCLOCK - ok
21:54:07.0211 2460  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:54:07.0249 2460  MSPQM - ok
21:54:07.0270 2460  [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:54:07.0288 2460  MsRPC - ok
21:54:07.0313 2460  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:54:07.0324 2460  mssmbios - ok
21:54:07.0361 2460  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:54:07.0423 2460  MSTEE - ok
21:54:07.0453 2460  [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup             C:\Windows\system32\Drivers\mup.sys
21:54:07.0470 2460  Mup - ok
21:54:07.0504 2460  [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent        C:\Windows\system32\qagentRT.dll
21:54:07.0564 2460  napagent - ok
21:54:07.0601 2460  [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:54:07.0623 2460  NativeWifiP - ok
21:54:07.0656 2460  [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:54:07.0715 2460  NDIS - ok
21:54:07.0779 2460  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:54:07.0829 2460  NdisTapi - ok
21:54:07.0843 2460  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:54:07.0887 2460  Ndisuio - ok
21:54:07.0941 2460  [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:54:07.0988 2460  NdisWan - ok
21:54:08.0003 2460  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:54:08.0048 2460  NDProxy - ok
21:54:08.0068 2460  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:54:08.0167 2460  NetBIOS - ok
21:54:08.0187 2460  [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
21:54:08.0243 2460  netbt - ok
21:54:08.0259 2460  [ DCF733788C7D088D814E5F80EB4B3E0F ] Netlogon        C:\Windows\system32\lsass.exe
21:54:08.0283 2460  Netlogon - ok
21:54:08.0320 2460  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
21:54:08.0362 2460  Netman - ok
21:54:08.0383 2460  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
21:54:08.0422 2460  netprofm - ok
21:54:08.0502 2460  [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:54:08.0553 2460  NetTcpPortSharing - ok
21:54:09.0641 2460  [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32        C:\Windows\system32\DRIVERS\NETw3v32.sys
21:54:10.0019 2460  NETw3v32 - ok
21:54:10.0100 2460  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:54:10.0123 2460  nfrd960 - ok
21:54:10.0155 2460  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:54:10.0231 2460  NlaSvc - ok
21:54:10.0240 2460  [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:54:10.0305 2460  Npfs - ok
21:54:10.0324 2460  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
21:54:10.0386 2460  nsi - ok
21:54:10.0418 2460  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:54:10.0466 2460  nsiproxy - ok
21:54:10.0743 2460  [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:54:10.0933 2460  Ntfs - ok
21:54:10.0978 2460  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
21:54:11.0064 2460  ntrigdigi - ok
21:54:11.0085 2460  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
21:54:11.0117 2460  Null - ok
21:54:11.0152 2460  [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:54:11.0164 2460  nvraid - ok
21:54:11.0171 2460  [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:54:11.0180 2460  nvstor - ok
21:54:11.0216 2460  [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:54:11.0235 2460  nv_agp - ok
21:54:11.0241 2460  NwlnkFlt - ok
21:54:11.0248 2460  NwlnkFwd - ok
21:54:11.0292 2460  [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
21:54:11.0327 2460  ohci1394 - ok
21:54:11.0375 2460  [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
21:54:11.0479 2460  p2pimsvc - ok
21:54:11.0510 2460  [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:54:11.0548 2460  p2psvc - ok
21:54:11.0642 2460  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
21:54:11.0761 2460  Parport - ok
21:54:11.0842 2460  [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:54:11.0859 2460  partmgr - ok
21:54:11.0882 2460  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
21:54:11.0978 2460  Parvdm - ok
21:54:12.0032 2460  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:54:12.0064 2460  PcaSvc - ok
21:54:12.0089 2460  [ 01B94418DEB235DFF777CC80076354B4 ] pci             C:\Windows\system32\drivers\pci.sys
21:54:12.0110 2460  pci - ok
21:54:12.0134 2460  [ 1D8B3D8DF8EB7FCF2F0AC02F9F947802 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:54:12.0148 2460  pciide - ok
21:54:12.0182 2460  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:54:12.0195 2460  pcmcia - ok
21:54:12.0242 2460  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:54:12.0323 2460  PEAUTH - ok
21:54:12.0482 2460  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
21:54:12.0677 2460  pla - ok
21:54:12.0773 2460  [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:54:12.0893 2460  PlugPlay - ok
21:54:12.0994 2460  [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
21:54:13.0035 2460  PNRPAutoReg - ok
21:54:13.0168 2460  [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
21:54:13.0208 2460  PNRPsvc - ok
21:54:13.0428 2460  [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:54:13.0576 2460  PolicyAgent - ok
21:54:13.0672 2460  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:54:13.0739 2460  PptpMiniport - ok
21:54:13.0779 2460  [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor       C:\Windows\system32\drivers\processr.sys
21:54:13.0828 2460  Processor - ok
21:54:13.0914 2460  [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc         C:\Windows\system32\profsvc.dll
21:54:14.0012 2460  ProfSvc - ok
21:54:14.0077 2460  [ DCF733788C7D088D814E5F80EB4B3E0F ] ProtectedStorage C:\Windows\system32\lsass.exe
21:54:14.0103 2460  ProtectedStorage - ok
21:54:14.0218 2460  [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
21:54:14.0298 2460  PSched - ok
21:54:14.0458 2460  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:54:14.0535 2460  ql2300 - ok
21:54:14.0544 2460  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:54:14.0561 2460  ql40xx - ok
21:54:14.0618 2460  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
21:54:14.0672 2460  QWAVE - ok
21:54:14.0696 2460  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:54:14.0740 2460  QWAVEdrv - ok
21:54:14.0789 2460  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:54:14.0858 2460  RasAcd - ok
21:54:14.0889 2460  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
21:54:14.0946 2460  RasAuto - ok
21:54:14.0966 2460  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:54:15.0010 2460  Rasl2tp - ok
21:54:15.0034 2460  [ AFB474438762F0418060653F7294D92C ] RasMan          C:\Windows\System32\rasmans.dll
21:54:15.0079 2460  RasMan - ok
21:54:15.0114 2460  [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:54:15.0135 2460  RasPppoe - ok
21:54:15.0154 2460  [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:54:15.0178 2460  RasSstp - ok
21:54:15.0205 2460  [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:54:15.0236 2460  rdbss - ok
21:54:15.0273 2460  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:54:15.0323 2460  RDPCDD - ok
21:54:15.0442 2460  [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
21:54:15.0481 2460  rdpdr - ok
21:54:15.0506 2460  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:54:15.0554 2460  RDPENCDD - ok
21:54:15.0607 2460  [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:54:15.0634 2460  RDPWD - ok
21:54:15.0682 2460  [ 0D362785BEF9BDF5A6E1F4628D06716D ] Recovery Service for Windows C:\Program Files\SMINST\BLService.exe
21:54:15.0696 2460  Recovery Service for Windows - ok
21:54:15.0722 2460  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:54:15.0745 2460  RemoteAccess - ok
21:54:15.0827 2460  [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:54:15.0904 2460  RemoteRegistry - ok
21:54:16.0466 2460  [ 805AE1F90C64758D19AAA001CF8CBA12 ] RichVideo       C:\Program Files\CyberLink\Shared files\RichVideo.exe
21:54:16.0535 2460  RichVideo ( UnsignedFile.Multi.Generic ) - warning
21:54:16.0536 2460  RichVideo - detected UnsignedFile.Multi.Generic (1)
21:54:16.0621 2460  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
21:54:16.0711 2460  RpcLocator - ok
21:54:16.0820 2460  [ 301AE00E12408650BADDC04DBC832830 ] RpcSs           C:\Windows\system32\rpcss.dll
21:54:16.0857 2460  RpcSs - ok
21:54:16.0913 2460  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:54:16.0958 2460  rspndr - ok
21:54:17.0029 2460  [ 125C504A34D0A2E152517E342E7E432C ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
21:54:17.0085 2460  RTL8169 - ok
21:54:17.0125 2460  [ 8DAB5975B5C7923D61506A48E251DBAD ] RTSTOR          C:\Windows\system32\drivers\RTSTOR.SYS
21:54:17.0164 2460  RTSTOR - ok
21:54:17.0197 2460  [ DCF733788C7D088D814E5F80EB4B3E0F ] SamSs           C:\Windows\system32\lsass.exe
21:54:17.0220 2460  SamSs - ok
21:54:17.0293 2460  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:54:17.0317 2460  sbp2port - ok
21:54:17.0350 2460  [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:54:17.0415 2460  SCardSvr - ok
21:54:17.0452 2460  [ 1D5E99DB3C10F4FA034010DC49043CA4 ] Schedule        C:\Windows\system32\schedsvc.dll
21:54:17.0526 2460  Schedule - ok
21:54:17.0563 2460  [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:54:17.0608 2460  SCPolicySvc - ok
21:54:17.0906 2460  [ 126EA89BCC413EE45E3004FB0764888F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
21:54:17.0990 2460  sdbus - ok
21:54:18.0072 2460  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:54:18.0162 2460  SDRSVC - ok
21:54:18.0207 2460  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:54:18.0311 2460  secdrv - ok
21:54:18.0386 2460  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
21:54:18.0433 2460  seclogon - ok
21:54:18.0456 2460  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\System32\sens.dll
21:54:18.0524 2460  SENS - ok
21:54:18.0576 2460  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:54:18.0670 2460  Serenum - ok
21:54:18.0700 2460  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
21:54:18.0820 2460  Serial - ok
21:54:18.0838 2460  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:54:18.0883 2460  sermouse - ok
21:54:18.0974 2460  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:54:18.0999 2460  SessionEnv - ok
21:54:19.0124 2460  [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:54:19.0172 2460  sffdisk - ok
21:54:19.0312 2460  [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:54:19.0373 2460  sffp_mmc - ok
21:54:19.0405 2460  [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:54:19.0449 2460  sffp_sd - ok
21:54:19.0486 2460  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
21:54:19.0602 2460  sfloppy - ok
21:54:19.0641 2460  [ 27F10F348E508243F6254846F8370D0D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:54:19.0694 2460  ShellHWDetection - ok
21:54:19.0799 2460  [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
21:54:19.0815 2460  sisagp - ok
21:54:19.0836 2460  [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
21:54:19.0852 2460  SiSRaid2 - ok
21:54:19.0863 2460  [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:54:19.0881 2460  SiSRaid4 - ok
21:54:20.0102 2460  [ 0BA91E1358AD25236863039BB2609A2E ] slsvc           C:\Windows\system32\SLsvc.exe
21:54:20.0234 2460  slsvc - ok
21:54:20.0262 2460  [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
21:54:20.0298 2460  SLUINotify - ok
21:54:20.0361 2460  [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:54:20.0409 2460  Smb - ok
21:54:20.0475 2460  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:54:20.0491 2460  SNMPTRAP - ok
21:54:20.0509 2460  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
21:54:20.0526 2460  spldr - ok
21:54:20.0561 2460  [ 846CDF9A3CF4DA9B306ADFB7D55EE4C2 ] Spooler         C:\Windows\System32\spoolsv.exe
21:54:20.0684 2460  Spooler - ok
21:54:20.0780 2460  [ 73DDDBEEC61E78568082916A27AADAEE ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:54:20.0907 2460  srv - ok
21:54:20.0958 2460  [ 805FAC010405AD3F82EF8DF0BB035D81 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:54:21.0008 2460  srv2 - ok
21:54:21.0018 2460  [ F63A0A58AAFE34D7A1A0A74ABCCDD9C0 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:54:21.0100 2460  srvnet - ok
21:54:21.0138 2460  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:54:21.0215 2460  SSDPSRV - ok
21:54:21.0322 2460  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:54:21.0371 2460  SstpSvc - ok
21:54:21.0445 2460  [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc          C:\Windows\System32\wiaservc.dll
21:54:21.0485 2460  stisvc - ok
21:54:21.0514 2460  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:54:21.0528 2460  swenum - ok
21:54:21.0585 2460  [ B36C7CDB86F7F7A8E884479219766950 ] swprv           C:\Windows\System32\swprv.dll
21:54:21.0652 2460  swprv - ok
21:54:21.0701 2460  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
21:54:21.0717 2460  Symc8xx - ok
21:54:21.0725 2460  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
21:54:21.0742 2460  Sym_hi - ok
21:54:21.0753 2460  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
21:54:21.0770 2460  Sym_u3 - ok
21:54:21.0801 2460  [ 00B19F27858F56181EDB58B71A7C67A0 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
21:54:21.0820 2460  SynTP - ok
21:54:21.0870 2460  [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain         C:\Windows\system32\sysmain.dll
21:54:21.0934 2460  SysMain - ok
21:54:21.0993 2460  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:54:22.0018 2460  TabletInputService - ok
21:54:22.0118 2460  [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:54:22.0190 2460  TapiSrv - ok
21:54:22.0204 2460  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
21:54:22.0251 2460  TBS - ok
21:54:22.0374 2460  [ 82E266BEE5F0167E41C6ECFDD2A79C02 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:54:22.0460 2460  Tcpip - ok
21:54:22.0523 2460  [ 82E266BEE5F0167E41C6ECFDD2A79C02 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
21:54:22.0568 2460  Tcpip6 - ok
21:54:22.0677 2460  [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:54:22.0722 2460  tcpipreg - ok
21:54:22.0768 2460  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:54:22.0812 2460  TDPIPE - ok
21:54:22.0827 2460  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:54:22.0881 2460  TDTCP - ok
21:54:22.0926 2460  [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:54:22.0983 2460  tdx - ok
21:54:23.0011 2460  [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:54:23.0027 2460  TermDD - ok
21:54:23.0102 2460  [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService     C:\Windows\System32\termsrv.dll
21:54:23.0162 2460  TermService - ok
21:54:23.0183 2460  [ 27F10F348E508243F6254846F8370D0D ] Themes          C:\Windows\system32\shsvcs.dll
21:54:23.0235 2460  Themes - ok
21:54:23.0262 2460  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
21:54:23.0308 2460  THREADORDER - ok
21:54:23.0371 2460  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
21:54:23.0466 2460  TrkWks - ok
21:54:23.0622 2460  [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:54:23.0691 2460  TrustedInstaller - ok
21:54:23.0717 2460  [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:54:23.0781 2460  tssecsrv - ok
21:54:23.0887 2460  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
21:54:23.0930 2460  tunmp - ok
21:54:23.0984 2460  [ 119B8184E106BAEDC83FCE5DDF3950DA ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:54:24.0091 2460  tunnel - ok
21:54:24.0140 2460  [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:54:24.0162 2460  uagp35 - ok
21:54:24.0190 2460  [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:54:24.0244 2460  udfs - ok
21:54:24.0304 2460  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:54:24.0362 2460  UI0Detect - ok
21:54:24.0435 2460  [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:54:24.0453 2460  uliagpkx - ok
21:54:24.0486 2460  [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci         C:\Windows\system32\drivers\uliahci.sys
21:54:24.0511 2460  uliahci - ok
21:54:24.0521 2460  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
21:54:24.0538 2460  UlSata - ok
21:54:24.0556 2460  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
21:54:24.0574 2460  ulsata2 - ok
21:54:24.0624 2460  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:54:24.0669 2460  umbus - ok
21:54:24.0744 2460  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
21:54:24.0881 2460  upnphost - ok
21:54:24.0941 2460  [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:54:24.0988 2460  usbccgp - ok
21:54:25.0103 2460  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:54:25.0189 2460  usbcir - ok
21:54:25.0279 2460  [ CEBE90821810E76320155BEBA722FCF9 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:54:25.0301 2460  usbehci - ok
21:54:25.0427 2460  [ CC6B28E4CE39951357963119CE47B143 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:54:25.0450 2460  usbhub - ok
21:54:25.0477 2460  [ 38DBC7DD6CC5A72011F187425384388B ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:54:25.0523 2460  usbohci - ok
21:54:25.0626 2460  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:54:25.0679 2460  usbprint - ok
21:54:25.0755 2460  [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:54:25.0801 2460  USBSTOR - ok
21:54:25.0861 2460  [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:54:25.0974 2460  usbuhci - ok
21:54:26.0008 2460  [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
21:54:26.0070 2460  usbvideo - ok
21:54:26.0145 2460  [ 032A0ACC3909AE7215D524E29D536797 ] UxSms           C:\Windows\System32\uxsms.dll
21:54:26.0231 2460  UxSms - ok
21:54:26.0298 2460  [ B13BC395B9D6116628F5AF47E0802AC4 ] vds             C:\Windows\System32\vds.exe
21:54:26.0433 2460  vds - ok
21:54:26.0481 2460  [ 87B06E1F30B749A114F74622D013F8D4 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:54:26.0548 2460  vga - ok
21:54:26.0582 2460  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:54:26.0643 2460  VgaSave - ok
21:54:26.0669 2460  [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp          C:\Windows\system32\drivers\viaagp.sys
21:54:26.0686 2460  viaagp - ok
21:54:26.0701 2460  [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7           C:\Windows\system32\drivers\viac7.sys
21:54:26.0747 2460  ViaC7 - ok
21:54:26.0783 2460  [ EA1AA6E3ABB3C194FEBA12A46DE8CF2C ] viaide          C:\Windows\system32\drivers\viaide.sys
21:54:26.0799 2460  viaide - ok
21:54:26.0822 2460  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:54:26.0837 2460  volmgr - ok
21:54:26.0854 2460  [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:54:26.0880 2460  volmgrx - ok
21:54:26.0919 2460  [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:54:26.0993 2460  volsnap - ok
21:54:27.0004 2460  [ 587253E09325E6BF226B299774B728A9 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:54:27.0023 2460  vsmraid - ok
21:54:27.0142 2460  [ D5FB73D19C46ADE183F968E13F186B23 ] VSS             C:\Windows\system32\vssvc.exe
21:54:27.0220 2460  VSS - ok
21:54:27.0297 2460  [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time         C:\Windows\system32\w32time.dll
21:54:27.0367 2460  W32Time - ok
21:54:27.0453 2460  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:54:27.0542 2460  WacomPen - ok
21:54:27.0578 2460  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
21:54:27.0652 2460  Wanarp - ok
21:54:27.0659 2460  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:54:27.0705 2460  Wanarpv6 - ok
21:54:27.0890 2460  [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:54:27.0962 2460  wcncsvc - ok
21:54:28.0019 2460  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:54:28.0074 2460  WcsPlugInService - ok
21:54:28.0095 2460  [ 78FE9542363F297B18C027B2D7E7C07F ] Wd              C:\Windows\system32\drivers\wd.sys
21:54:28.0111 2460  Wd - ok
21:54:28.0146 2460  [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:54:28.0215 2460  Wdf01000 - ok
21:54:28.0242 2460  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:54:28.0293 2460  WdiServiceHost - ok
21:54:28.0309 2460  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:54:28.0359 2460  WdiSystemHost - ok
21:54:28.0432 2460  [ CF9A5F41789B642DB967021DE06A2713 ] WebClient       C:\Windows\System32\webclnt.dll
21:54:28.0507 2460  WebClient - ok
21:54:28.0591 2460  [ 905214925A88311FCE52F66153DE7610 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:54:28.0713 2460  Wecsvc - ok
21:54:28.0747 2460  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:54:28.0802 2460  wercplsupport - ok
21:54:28.0906 2460  [ FD1965AAA112C6818A30AB02742D0461 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:54:28.0954 2460  WerSvc - ok
21:54:29.0019 2460  [ 0ACD399F5DB3DF1B58903CF4949AB5A8 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
21:54:29.0052 2460  winachsf - ok
21:54:29.0062 2460  WinHttpAutoProxySvc - ok
21:54:29.0373 2460  [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:54:29.0456 2460  Winmgmt - ok
21:54:29.0581 2460  [ 20FC93FDC916843CFDFCAA7A1B0DB16F ] WinRM           C:\Windows\system32\WsmSvc.dll
21:54:29.0697 2460  WinRM - ok
21:54:29.0869 2460  [ 4B40FF01DB5357299DCBDB5A5746AD21 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:54:29.0912 2460  Wlansvc - ok
21:54:29.0939 2460  [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
21:54:29.0985 2460  WmiAcpi - ok
21:54:30.0138 2460  [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:54:30.0196 2460  wmiApSrv - ok
21:54:30.0371 2460  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
21:54:30.0438 2460  WMPNetworkSvc - ok
21:54:30.0496 2460  [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:54:30.0572 2460  WPCSvc - ok
21:54:30.0688 2460  [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:54:30.0866 2460  WPDBusEnum - ok
21:54:30.0944 2460  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:54:31.0040 2460  ws2ifsl - ok
21:54:31.0048 2460  WSearch - ok
21:54:31.0165 2460  [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:54:31.0215 2460  WUDFRd - ok
21:54:31.0573 2460  [ 575A4190D989F64732119E4114045A4F ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:54:31.0623 2460  wudfsvc - ok
21:54:31.0736 2460  [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
21:54:31.0759 2460  XAudio - ok
21:54:31.0900 2460  [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
21:54:31.0976 2460  XAudioService - ok
21:54:32.0098 2460  [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
21:54:32.0331 2460  yukonwlh - ok
21:54:32.0373 2460  ================ Scan global ===============================
21:54:32.0418 2460  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
21:54:32.0467 2460  [ 8B05FAF8603E6FDE90C5B103761CC3F6 ] C:\Windows\system32\winsrv.dll
21:54:32.0545 2460  [ 8B05FAF8603E6FDE90C5B103761CC3F6 ] C:\Windows\system32\winsrv.dll
21:54:32.0804 2460  [ 2B336AB6286D6C81FA02CBAB914E3C6C ] C:\Windows\system32\services.exe
21:54:32.0811 2460  [Global] - ok
21:54:32.0812 2460  ================ Scan MBR ==================================
21:54:32.0854 2460  [ 588AE8F0C685C02BA11F30D9CD7E61A0 ] \Device\Harddisk0\DR0
21:54:39.0018 2460  \Device\Harddisk0\DR0 - ok
21:54:39.0018 2460  ================ Scan VBR ==================================
21:54:39.0024 2460  [ 896B95FCA63108FD7CE4D9B6B2BC323A ] \Device\Harddisk0\DR0\Partition1
21:54:39.0027 2460  \Device\Harddisk0\DR0\Partition1 - ok
21:54:39.0105 2460  [ CE72B091EAEB452A4132BDEDF2A7A4C2 ] \Device\Harddisk0\DR0\Partition2
21:54:39.0112 2460  \Device\Harddisk0\DR0\Partition2 - ok
21:54:39.0112 2460  ============================================================
21:54:39.0112 2460  Scan finished
21:54:39.0112 2460  ============================================================
21:54:39.0136 2444  Detected object count: 5
21:54:39.0137 2444  Actual detected object count: 5
21:54:52.0737 2444  ezSharedSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:54:52.0737 2444  ezSharedSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:54:52.0742 2444  HP Health Check Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:54:52.0742 2444  HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:54:52.0745 2444  IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
21:54:52.0745 2444  IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:54:52.0748 2444  LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
21:54:52.0749 2444  LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:54:52.0752 2444  RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
21:54:52.0752 2444  RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:54:55.0901 2416  Deinitialize success
         

Alt 15.10.2012, 10:58   #20
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix
  • Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.
  • Starte combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
    Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.
  • Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.
Wichtiger Hinweis:
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 15.10.2012, 18:26   #21
Niggo
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Hier das ComboFix Log:


Code:
ATTFilter
ComboFix 12-10-14.03 - Vanessa 15.10.2012  18:34:04.1.2 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6001.1.1252.49.1031.18.3002.2091 [GMT 2:00]
ausgeführt von:: c:\users\Vanessa\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *Disabled/Updated* {0C939084-9E57-CBDB-EA61-0B0C7F62AF82}
SP: AVG Anti-Virus Free *Enabled/Updated* {B7F27160-B86D-C455-D0D1-307E04E5E53F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Vanessa\AppData\Roaming\AcroIEHelpe.txt
c:\users\Vanessa\AppData\Roaming\AcroIEHelpe205.dll
c:\users\Vanessa\AppData\Roaming\h3wstyft.default.tmp
c:\users\Vanessa\AppData\Roaming\srvblck5.tmp
c:\windows\IsUn0407.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2012-09-15 bis 2012-10-15  ))))))))))))))))))))))))))))))
.
.
2012-10-14 19:50 . 2012-10-14 19:50	--------	d-----w-	C:\TDSSKiller_Quarantine
2012-10-13 16:46 . 2012-10-13 16:46	--------	d-----w-	C:\_OTL
2012-10-11 15:35 . 2012-10-11 15:35	--------	d-----w-	c:\program files\ESET
2012-10-07 12:58 . 2012-10-07 12:58	--------	d-----w-	c:\users\Vanessa\AppData\Roaming\Malwarebytes
2012-10-07 12:58 . 2012-10-07 12:58	--------	d-----w-	c:\programdata\Malwarebytes
2012-10-07 12:58 . 2012-10-07 12:58	--------	d-----w-	c:\program files\Malwarebytes' Anti-Malware
2012-10-07 12:58 . 2012-09-07 15:04	22856	----a-w-	c:\windows\system32\drivers\mbam.sys
2012-10-03 13:14 . 2012-10-03 13:25	--------	d-----r-	C:\Alle Bilder
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-14 19:51 . 2008-01-21 02:24	279040	----a-w-	c:\windows\system32\services.exe
2012-10-11 16:53 . 2012-05-24 09:31	696760	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2012-10-11 16:53 . 2011-06-04 09:40	73656	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-22 19:07 . 2012-08-20 18:05	0	---ha-w-	c:\users\Vanessa\AppData\Roaming\winbras.sys
2012-06-17 16:14 . 2011-05-07 04:53	85472	----a-w-	c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-09-02 13351304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-17 1049896]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-07-10 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-07-10 170520]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-07-10 145944]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2008-09-23 468264]
"UpdateLBPShortCut"="c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"UpdatePSTShortCut"="c:\program files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2008-10-06 210216]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2007-12-24 222504]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-08-01 202032]
"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"UpdatePDIRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2008-04-15 488752]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 1164584]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2011-03-25 77824]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.0.207\SSScheduler.exe [2011-6-17 272528]
SELPHY Photo Print Launcher.lnk - c:\program files\Canon\SELPHY Photo Print\CIC_SPPhelper.exe [2009-1-8 135168]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-06-12 01:38	34672	----a-w-	c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Health Check Scheduler]
2008-10-09 06:58	75008	----a-w-	c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1520116365-816098757-2297299363-1000]
"EnableNotificationsRef"=dword:00000001
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
ezSharedSvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 09:14	451872	----a-w-	c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Inhalt des "geplante Tasks" Ordners
.
2012-10-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-24 16:53]
.
2012-10-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-06 18:19]
.
2012-10-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-06 18:19]
.
2012-09-16 c:\windows\Tasks\Norton Security Scan for Vanessa.job
- c:\program files\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2010-11-12 08:48]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com
mStart Page = 
IE: Free YouTube Download - c:\users\Vanessa\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Free YouTube to MP3 Converter - c:\users\Vanessa\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
TCP: DhcpNameServer = 192.168.179.1
FF - ProfilePath - c:\users\Vanessa\AppData\Roaming\Mozilla\Firefox\Profiles\h3wstyft.default\
FF - prefs.js: browser.search.defaulturl - 
FF - prefs.js: browser.search.selectedEngine - 
FF - prefs.js: browser.startup.homepage - hxxps://google.de
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - (no file)
SafeBoot-14271451.sys
AddRemove-Abenteuer auf dem Reiterhof - c:\windows\IsUn0407.exe
AddRemove-iMesh MediaBar - c:\program files\iMesh Applications\MediaBar\UnwiseLauncher.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2012-10-15 18:42
Windows 6.0.6001 Service Pack 1 NTFS
.
Scanne versteckte Prozesse... 
.
Scanne versteckte Autostarteinträge... 
.
Scanne versteckte Dateien... 
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\WLANExt.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\SMINST\BLService.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\windows\system32\conime.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\ehome\ehmsas.exe
c:\program files\Hewlett-Packard\Shared\HpqToaster.exe
c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-10-15  18:48:37 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2012-10-15 16:48
.
Vor Suchlauf: 14 Verzeichnis(se), 140.652.720.128 Bytes frei
Nach Suchlauf: 21 Verzeichnis(se), 140.372.918.272 Bytes frei
.
- - End Of File - - 46249FF0FB4E48004B6CF19EF1D90E99
         


Inhalt der Quarantined-Files.txt:

Code:
ATTFilter
2012-10-15 16:48:05 . 2012-10-15 16:48:05            1,072 ----a-w-  C:\Qoobox\Quarantine\Registry_backups\AddRemove-iMesh MediaBar.reg.dat
2012-10-15 16:48:05 . 2012-10-15 16:48:05              628 ----a-w-  C:\Qoobox\Quarantine\Registry_backups\AddRemove-Abenteuer auf dem Reiterhof.reg.dat
2012-10-15 16:47:56 . 2012-10-15 16:47:56              558 ----a-w-  C:\Qoobox\Quarantine\Registry_backups\SafeBoot-14271451.sys.reg.dat
2012-10-15 16:47:47 . 2012-10-15 16:47:47              171 ----a-w-  C:\Qoobox\Quarantine\Registry_backups\BHO-{ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F}.reg.dat
2012-10-15 16:40:39 . 2012-10-15 16:40:39              270 ----a-w-  C:\Qoobox\Quarantine\C\Users\Vanessa\Desktop\_Horses. My life. My love. My death. (kussmund mit zwinker).My life.My Love_.My death.zip
2012-10-15 16:38:44 . 2012-10-15 16:38:44            6,005 ----a-w-  C:\Qoobox\Quarantine\Registry_backups\tcpip.reg
2012-10-15 16:30:59 . 2012-10-15 16:41:14              879 ----a-w-  C:\Qoobox\Quarantine\catchme.log
2012-09-07 13:52:14 . 2012-09-07 13:52:14                0 ----a-w-  C:\Qoobox\Quarantine\C\Users\Vanessa\AppData\Roaming\h3wstyft.default.tmp.vir
2012-08-31 15:59:12 . 2012-08-31 15:59:13          198,200 ----a-w-  C:\Qoobox\Quarantine\C\Users\Vanessa\AppData\Roaming\AcroIEHelpe205.dll.vir
2012-07-06 14:18:50 . 2012-08-31 15:59:12               48 ----a-w-  C:\Qoobox\Quarantine\C\Users\Vanessa\AppData\Roaming\AcroIEHelpe.txt.vir
2012-07-06 14:18:17 . 2012-07-06 14:18:17              264 ----a-w-  C:\Qoobox\Quarantine\C\Users\Vanessa\AppData\Roaming\srvblck5.tmp.vir
2009-03-08 08:26:55 . 1998-10-21 17:43:04          328,704 ----a-w-  C:\Qoobox\Quarantine\C\Windows\IsUn0407.exe.vir
         

Alt 15.10.2012, 19:07   #22
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Bitte nun Logs mit GMER und OSAM erstellen und posten.
GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen.
Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst.

Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM!

Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
  • Starte die aswMBR.exe - (aswMBR.exe Anleitung)
    Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten".
  • Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen )
    Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
  • Klicke auf Scan.
  • Warte bitte bis Scan finished successfully im DOS-Fenster steht.
  • Drücke auf Save Log und speichere diese auf dem Desktop.
Poste mir die aswMBR.txt in deiner nächsten Antwort.

Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung

Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).



Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 17.10.2012, 16:34   #23
Niggo
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Ein Scan mit GMER war leider nicht möglich. Ist mehrmals abgestürzt; auch im Abgesicherten Modus ging es leider nicht.

Hier das Log von OSAM:

Code:
ATTFilter
Report of OSAM: Autorun Manager v5.0.11926.0
hxxp://www.online-solutions.ru/en/
Saved at 22:15:25 on 15.10.2012

OS: Windows Vista Home Premium Edition Service Pack 1 (Build 6001), 32-bit
Default Browser: Mozilla Corporation Firefox 13.0.1

Scanner Settings
[x] Rootkits detection (hidden registry)
[x] Rootkits detection (hidden files)
[x] Retrieve files information
[x] Check Microsoft signatures

Filters
[ ] Trusted entries
[ ] Empty entries
[x] Hidden registry entries (rootkit activity)
[x] Exclusively opened files
[x] Not found files
[x] Files without detailed information
[x] Existing files
[ ] Non-startable services
[ ] Non-startable drivers
[x] Active entries
[x] Disabled entries


[Common]
-----( %SystemRoot%\Tasks )-----
"GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe
"GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe
"Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
"Norton Security Scan for Vanessa.job" - "Symantec Corporation" - C:\Program Files\Norton Security Scan\Engine\2.7.3.34\Nss.exe

[Control Panel Objects]
-----( %SystemRoot%\system32 )-----
"DivXControlPanelApplet.cpl" - "DivX, Inc." - C:\Windows\system32\DivXControlPanelApplet.cpl
"FlashPlayerCPLApp.cpl" - "Adobe Systems Incorporated" - C:\Windows\system32\FlashPlayerCPLApp.cpl
"QuickTime.cpl" - "Apple Computer, Inc." - C:\Windows\system32\QuickTime.cpl

[Drivers]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"catchme" (catchme) - ? - C:\ComboFix\catchme.sys  (File not found)
"IP in IP Tunnel Driver" (IpInIp) - ? - C:\Windows\System32\DRIVERS\ipinip.sys  (File not found)
"IPX Traffic Filter Driver" (NwlnkFlt) - ? - C:\Windows\System32\DRIVERS\nwlnkflt.sys  (File not found)
"IPX Traffic Forwarder Driver" (NwlnkFwd) - ? - C:\Windows\System32\DRIVERS\nwlnkfwd.sys  (File not found)
"kwliifow" (kwliifow) - ? - C:\Users\Vanessa\AppData\Local\Temp\kwliifow.sys  (Hidden registry entry, rootkit activity | File not found)

[Explorer]
-----( HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components )-----
{10880D85-AAD9-4558-ABDC-2AB1552D831F} "LightScribe Control Panel" - "Hewlett-Packard Company" - "C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
-----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )-----
{F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
-----( HKLM\Software\Classes\Protocols\Handler )-----
{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
{0A9007C0-4076-11D3-8789-0000F8105754} "Microsoft Infotech Storage Protocol for IE 4.0" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
{91774881-D725-4E58-B298-07617B9B86A8} "Skype IE add-on Pluggable Protocol" - "Skype Technologies S.A." - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )-----
{911051fa-c21c-4246-b470-070cd8df6dc4} ".cab or .zip files" - ? -   (File not found | COM-object registry key not found)
{1b24a030-9b20-49bc-97ac-1be4426f9e59} "ActiveDirectory Folder" - ? -   (File not found | COM-object registry key not found)
{34449847-FD14-4fc8-A75A-7432F5181EFB} "ActiveDirectory Folder" - ? -   (File not found | COM-object registry key not found)
{0F8604A5-4ECE-4DE1-BA7D-CF10F8AA4F48} "Contacts folder" - ? -   (File not found | COM-object registry key not found)
{2C2577C2-63A7-40e3-9B7F-586602617ECB} "Explorer Query Band" - ? -   (File not found | COM-object registry key not found)
{FAC3CBF6-8697-43d0-BAB9-DCD1FCE19D75} "IE User Assist" - ? -   (File not found | COM-object registry key not found)
{00020d75-0000-0000-c000-000000000046} "lnkfile" - ? -   (File not found | COM-object registry key not found)
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
{C8494E42-ACDD-4739-B0FB-217361E4894F} "Sam Account Folder" - ? -   (File not found | COM-object registry key not found)
{E29F9716-5C08-4FCD-955A-119FDB5A522D} "Sam Account Folder" - ? -   (File not found | COM-object registry key not found)
{7F67036B-66F1-411A-AD85-759FB9C5B0DB} "ShellViewRTF" - "XSS" - C:\Program Files\Sminst\ShellvRTF.dll
{da67b8ad-e81b-4c70-9b91b417b5e33527} "Windows Search Shell Service" - ? -   (File not found | COM-object registry key not found)

[Internet Explorer]
-----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )-----
ITBar7Height "ITBar7Height" - ? -   (File not found | COM-object registry key not found)
<binary data> "ITBar7Layout" - ? -   (File not found | COM-object registry key not found)
-----( HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks )-----
 "{855F3B16-6D32-4fe6-8A56-BBB695989046}" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )-----
{8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_07" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} "Java Plug-in 1.6.0_07" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_07" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )-----
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} "ClsidExtension" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll
"ICQ7.5" - "ICQ, LLC." - C:\Program Files\ICQ7.5\ICQ.exe
{898EA8C8-E7FF-479B-8935-AEC46303B9E5} "Skype add-on for Internet Explorer" - "Skype Technologies S.A." - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )-----
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} "Skype add-on for Internet Explorer" - "Skype Technologies S.A." - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "SSVHelper Class" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

[Logon]
-----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
"McAfee Security Scan Plus.lnk" - "McAfee, Inc." - C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe  (Shortcut exists | File exists)
"SELPHY Photo Print Launcher.lnk" - "Canon Inc." - C:\Program Files\Canon\SELPHY Photo Print\CIC_SPPhelper.exe  (Shortcut exists | File exists)
-----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )-----
"LightScribe Control Panel" - "Hewlett-Packard Company" - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
"Skype" - "Skype Technologies S.A." - "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
-----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )-----
"StartupPrograms" - ? - rdpclip  (File not found)
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )-----
"DivXUpdate" - ? - "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"HP Software Update" - "Hewlett-Packard" - C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
"hpWirelessAssistant" - "Hewlett-Packard Development Company, L.P." - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
"QlbCtrl.exe" - " Hewlett-Packard Development Company, L.P." - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
"QPService" - "CyberLink Corp." - "C:\Program Files\HP\QuickPlay\QPService.exe"
"QuickTime Task" - "Apple Computer, Inc." - "C:\Program Files\QuickTime\qttask.exe" -atboottime
"SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
"UCam_Menu" - "CyberLink Corp." - "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
"UpdateLBPShortCut" - "CyberLink Corp." - "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
"UpdateP2GoShortCut" - "CyberLink Corp." - "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
"UpdatePDIRShortCut" - "CyberLink Corp." - "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0"
"UpdatePSTShortCut" - "CyberLink Corp." - "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"

[Services]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
"Com4QLBEx" (Com4QLBEx) - "Hewlett-Packard Development Company, L.P." - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
"Easybits Shared Services for Windows" (ezSharedSvc) - "EasyBits Sofware AS" - C:\Windows\System32\ezsvc7.dll
"GameConsoleService" (GameConsoleService) - "WildTangent, Inc." - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
"Google Update Service (gupdate)" (gupdate) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe
"Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe
"HP Health Check Service" (HP Health Check Service) - "Hewlett-Packard" - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
"hpqwmiex" (hpqwmiex) - "Hewlett-Packard Development Company, L.P." - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
"InstallDriver Table Manager" (IDriverT) - "Macrovision Corporation" - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
"LightScribeService Direct Disc Labeling Service" (LightScribeService) - "Hewlett-Packard Company" - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
"McAfee Security Scan Component Host Service" (McComponentHostService) - "McAfee, Inc." - C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
"Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
"Recovery Service for Windows" (Recovery Service for Windows) - ? - C:\Program Files\SMINST\BLService.exe

===[ Logfile end ]=========================================[ Logfile end ]===
--- --- ---

If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru
         
Das Log von aswMBR:

Code:
ATTFilter
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-17 16:40:42
-----------------------------
16:40:42.413    OS Version: Windows 6.0.6001 Service Pack 1
16:40:42.413    Number of processors: 2 586 0xF0D
16:40:42.414    ComputerName: VANESSA-PC  UserName: Vanessa
16:40:43.978    Initialize success
16:41:00.402    AVAST engine defs: 12101700
16:41:16.249    The log file has been saved successfully to "C:\Users\Vanessa\Desktop\aswMBR_2012-10-17.txt"


aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-17 16:41:36
-----------------------------
16:41:36.571    OS Version: Windows 6.0.6001 Service Pack 1
16:41:36.571    Number of processors: 2 586 0xF0D
16:41:36.572    ComputerName: VANESSA-PC  UserName: Vanessa
16:41:38.366    Initialize success
16:41:46.569    AVAST engine defs: 12101700
16:41:48.271    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
16:41:48.276    Disk 0 Vendor: ST9250320AS HP07 Size: 238475MB BusType: 3
16:41:48.299    Disk 0 MBR read successfully
16:41:48.305    Disk 0 MBR scan
16:41:48.315    Disk 0 unknown MBR code
16:41:48.323    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS       227684 MB offset 63
16:41:48.376    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS        10787 MB offset 466298880
16:41:48.390    Disk 0 scanning sectors +488390656
16:41:48.480    Disk 0 scanning C:\Windows\system32\drivers
16:42:07.305    Service scanning
16:42:34.378    Modules scanning
16:42:39.171    Disk 0 trace - called modules:
16:42:39.194    ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys 
16:42:39.201    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x860ae688]
16:42:39.209    3 CLASSPNP.SYS[805c4745] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x85ee3ba0]
16:42:40.948    AVAST engine scan C:\Windows
16:42:45.800    AVAST engine scan C:\Windows\system32
16:46:11.128    AVAST engine scan C:\Windows\system32\drivers
16:46:30.591    AVAST engine scan C:\Users\Vanessa
17:01:58.935    AVAST engine scan C:\ProgramData
17:06:36.673    Scan finished successfully
17:09:53.316    Disk 0 MBR has been saved successfully to "C:\Users\Vanessa\Desktop\MBR.dat"
17:09:53.327    The log file has been saved successfully to "C:\Users\Vanessa\Desktop\aswMBR_2012-10-17.txt"
         

Alt 17.10.2012, 17:38   #24
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Wir sollten den MBR fixen, sichere für den Fall der Fälle ALLE wichtigen Daten, auch wenn meistens alles glatt geht.

Hinweis: Mach bitte NICHT den MBR-Fix, wenn du noch andere Betriebssysteme wie zB Ubuntu installiert hast, ein MBR-Fix mit Windows-Tools macht ein parallel installiertes (Dualboot) Linux unbootbar.
Mach den Fix auch dann nicht, wenn du zB mit TrueCrypt oder anderen Verschlüsselungsprogrammen eine Vollverschlüsselung der Windowspartition bzw. gesamten Festplatte hast


Starte nach der Datensicherung aswmbr erneut und klick auf den Button FIXMBR.

Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehalalrm!

Anschließend Windows neu starten und ein neues Log mit aswMBR machen.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 18.10.2012, 16:49   #25
Niggo
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Der MBR wurde erfolgreich repariert.

Hier das neue Log:

Code:
ATTFilter
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-18 05:58:22
-----------------------------
05:58:22.299    OS Version: Windows 6.0.6001 Service Pack 1
05:58:22.299    Number of processors: 2 586 0xF0D
05:58:22.299    ComputerName: VANESSA-PC  UserName: Vanessa
05:58:38.476    Initialize success
05:58:55.621    AVAST engine defs: 12101700
05:59:07.305    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
05:59:07.305    Disk 0 Vendor: ST9250320AS HP07 Size: 238475MB BusType: 3
05:59:07.352    Disk 0 MBR read successfully
05:59:07.367    Disk 0 MBR scan
05:59:07.367    Disk 0 Windows VISTA default MBR code
05:59:07.383    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS       227684 MB offset 63
05:59:07.430    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS        10787 MB offset 466298880
05:59:07.508    Disk 0 scanning sectors +488390656
05:59:07.664    Disk 0 scanning C:\Windows\system32\drivers
05:59:29.566    Service scanning
05:59:58.442    Modules scanning
06:00:19.939    Disk 0 trace - called modules:
06:00:20.001    ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys 
06:00:20.017    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x864af688]
06:00:20.032    3 CLASSPNP.SYS[805ca745] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x85eff8e0]
06:00:21.623    AVAST engine scan C:\Windows
06:00:41.233    AVAST engine scan C:\Windows\system32
06:13:10.173    AVAST engine scan C:\Windows\system32\drivers
06:15:25.487    AVAST engine scan C:\Users\Vanessa
06:45:46.818    AVAST engine scan C:\ProgramData
06:49:25.171    Scan finished successfully
06:51:18.329    Disk 0 MBR has been saved successfully to "F:\Vanessa\aswMBR\MBR.dat"
06:51:18.345    The log file has been saved successfully to "F:\Vanessa\aswMBR\aswMBR_2012-10-18.txt"
         

Alt 18.10.2012, 19:20   #26
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 19.10.2012, 22:10   #27
Niggo
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Log von Malwarebytes:

Code:
ATTFilter
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Datenbank Version: v2012.10.18.07

Windows Vista Service Pack 1 x86 NTFS
Internet Explorer 8.0.6001.18702
Vanessa :: VANESSA-PC [Administrator]

18.10.2012 20:55:19
mbam-log-2012-10-18 (20-55-19).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 475406
Laufzeit: 1 Stunde(n), 57 Minute(n), 7 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 7
C:\TDSSKiller_Quarantine\14.10.2012_21.49.36\zasubsys0000\zafs0000\tsk0000.dta (Trojan.0access) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\_OTL\MovedFiles\10132012_184632\C_Windows\assembly\GAC\Desktop.ini (Trojan.0access) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\_OTL\MovedFiles\10132012_184632\C_Windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000004.@ (Rootkit.Zaccess) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\_OTL\MovedFiles\10132012_184632\C_Windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000008.@ (Trojan.Dropper.BCMiner) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\_OTL\MovedFiles\10132012_184632\C_Windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\000000cb.@ (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\_OTL\MovedFiles\10132012_184632\C_Windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000000.@ (Trojan.Small) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\_OTL\MovedFiles\10132012_184632\C_Windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000032.@ (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         
Log von SuperAntiSpyware:

Code:
ATTFilter
SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 10/19/2012 at 09:32 PM

Application Version : 5.6.1012

Core Rules Database Version : 9438
Trace Rules Database Version: 7250

Scan type       : Complete Scan
Total Scan Time : 02:34:05

Operating System Information
Windows Vista Home Premium 32-bit, Service Pack 1 (Build 6.00.6001)
UAC On - Administrator

Memory items scanned      : 526
Memory threats detected   : 0
Registry items scanned    : 36169
Registry threats detected : 0
File items scanned        : 223736
File threats detected     : 800

Adware.Tracking Cookie
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@2o7[1].txt [ /2o7 ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@2o7[2].txt [ /2o7 ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@a2.adserver01[1].txt [ /a2.adserver01 ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@accounts.google[1].txt [ /accounts.google ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.360yield[2].txt [ /ad.360yield ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.ad-srv[2].txt [ /ad.ad-srv ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.adnet[2].txt [ /ad.adnet ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.yieldmanager[1].txt [ /ad.yieldmanager ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.yieldmanager[2].txt [ /ad.yieldmanager ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.yieldmanager[3].txt [ /ad.yieldmanager ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.yieldmanager[4].txt [ /ad.yieldmanager ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.yieldmanager[5].txt [ /ad.yieldmanager ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.zanox[1].txt [ /ad.zanox ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad.zanox[2].txt [ /ad.zanox ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad1.adfarm1.adition[1].txt [ /ad1.adfarm1.adition ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad2.adfarm1.adition[1].txt [ /ad2.adfarm1.adition ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad3.adfarm1.adition[2].txt [ /ad3.adfarm1.adition ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad3.adfarm1.adition[3].txt [ /ad3.adfarm1.adition ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ad4.adfarm1.adition[2].txt [ /ad4.adfarm1.adition ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adfarm1.adition[1].txt [ /adfarm1.adition ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adfarm1.adition[2].txt [ /adfarm1.adition ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adformdsp[1].txt [ /adformdsp ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adform[2].txt [ /adform ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.creative-serving[1].txt [ /ads.creative-serving ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.creative-serving[2].txt [ /ads.creative-serving ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.creative-serving[3].txt [ /ads.creative-serving ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.creative-serving[4].txt [ /ads.creative-serving ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.heias[1].txt [ /ads.heias ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.pferde[2].txt [ /ads.pferde ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.planetactive[2].txt [ /ads.planetactive ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ads.quartermedia[1].txt [ /ads.quartermedia ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adserver.adtechus[1].txt [ /adserver.adtechus ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adsrv.admediate[2].txt [ /adsrv.admediate ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@adtech[2].txt [ /adtech ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@advertising[1].txt [ /advertising ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@advertising[2].txt [ /advertising ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@aolde.122.2o7[1].txt [ /aolde.122.2o7 ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@apmebf[1].txt [ /apmebf ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@ar.atwola[1].txt [ /ar.atwola ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@at.atwola[1].txt [ /at.atwola ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@at.atwola[3].txt [ /at.atwola ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@atdmt[2].txt [ /atdmt ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@atwola[1].txt [ /atwola ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@atwola[2].txt [ /atwola ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@avgtechnologies.112.2o7[1].txt [ /avgtechnologies.112.2o7 ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@avgtechnologies.112.2o7[2].txt [ /avgtechnologies.112.2o7 ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@bs.serving-sys[1].txt [ /bs.serving-sys ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@bs.serving-sys[2].txt [ /bs.serving-sys ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@cdn.at.atwola[1].txt [ /cdn.at.atwola ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@content.yieldmanager[1].txt [ /content.yieldmanager ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@content.yieldmanager[2].txt [ /content.yieldmanager ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@content.yieldmanager[3].txt [ /content.yieldmanager ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@content.yieldmanager[4].txt [ /content.yieldmanager ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@content.yieldmanager[5].txt [ /content.yieldmanager ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@de.at.atwola[1].txt [ /de.at.atwola ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@delivery.ads.coupling-media[1].txt [ /delivery.ads.coupling-media ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@doubleclick[1].txt [ /doubleclick ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@doubleclick[3].txt [ /doubleclick ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@euroclick[1].txt [ /euroclick ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@eyewonder[2].txt [ /eyewonder ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@fastclick[2].txt [ /fastclick ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@gamecenter.oberon-media[2].txt [ /gamecenter.oberon-media ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@googleads.g.doubleclick[1].txt [ /googleads.g.doubleclick ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@host.oddcast[2].txt [ /host.oddcast ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@host.oddcast[3].txt [ /host.oddcast ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@imrworldwide[2].txt [ /imrworldwide ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@invitemedia[1].txt [ /invitemedia ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@invitemedia[2].txt [ /invitemedia ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@komtrack[2].txt [ /komtrack ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@media6degrees[2].txt [ /media6degrees ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@mediaplex[1].txt [ /mediaplex ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@mediaplex[2].txt [ /mediaplex ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@mm.chitika[1].txt [ /mm.chitika ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@mm.chitika[2].txt [ /mm.chitika ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@mywebsearch[2].txt [ /mywebsearch ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@oberon-media[2].txt [ /oberon-media ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@overture[1].txt [ /overture ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@revsci[1].txt [ /revsci ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@revsci[2].txt [ /revsci ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@rotator.adjuggler[1].txt [ /rotator.adjuggler ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@server.adformdsp[1].txt [ /server.adformdsp ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@server.adform[2].txt [ /server.adform ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@serving-sys[1].txt [ /serving-sys ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@serving-sys[2].txt [ /serving-sys ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@sevenoneintermedia.112.2o7[1].txt [ /sevenoneintermedia.112.2o7 ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@smartadserver[2].txt [ /smartadserver ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tacoda.at.atwola[1].txt [ /tacoda.at.atwola ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tacoda[2].txt [ /tacoda ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@track.adform[1].txt [ /track.adform ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tracking.mindshare[2].txt [ /tracking.mindshare ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tracking.mlsat02[1].txt [ /tracking.mlsat02 ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tracking.quisma[2].txt [ /tracking.quisma ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tracking.quisma[3].txt [ /tracking.quisma ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tradedoubler[1].txt [ /tradedoubler ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tradedoubler[2].txt [ /tradedoubler ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@tradedoubler[3].txt [ /tradedoubler ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@traffictrack[2].txt [ /traffictrack ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@unitymedia[2].txt [ /unitymedia ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@webmasterplan[1].txt [ /webmasterplan ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.etracker[2].txt [ /www.etracker ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[1].txt [ /www.googleadservices ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[2].txt [ /www.googleadservices ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[3].txt [ /www.googleadservices ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[4].txt [ /www.googleadservices ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[5].txt [ /www.googleadservices ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[6].txt [ /www.googleadservices ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.googleadservices[7].txt [ /www.googleadservices ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.windowsmedia[2].txt [ /www.windowsmedia ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.zanox-affiliate[1].txt [ /www.zanox-affiliate ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@yadro[2].txt [ /yadro ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@zanox-affiliate[1].txt [ /zanox-affiliate ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@zanox[1].txt [ /zanox ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@zanox[2].txt [ /zanox ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@zbox.zanox[2].txt [ /zbox.zanox ]
	C:\Users\Vanessa\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@zedo[2].txt [ /zedo ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@tracking.quisma[2].txt [ Cookie:gast@tracking.quisma.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@user.lucidmedia[1].txt [ Cookie:gast@user.lucidmedia.com/clicksense/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@invitemedia[1].txt [ Cookie:gast@invitemedia.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@adbrite[2].txt [ Cookie:gast@adbrite.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@fl01.ct2.comclick[2].txt [ Cookie:gast@fl01.ct2.comclick.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@adfarm1.adition[2].txt [ Cookie:gast@adfarm1.adition.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@doubleclick[1].txt [ Cookie:gast@doubleclick.net/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@ru4[2].txt [ Cookie:gast@ru4.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@tracking.mlsat02[1].txt [ Cookie:gast@tracking.mlsat02.de/tmobile/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@himedia.individuad[2].txt [ Cookie:gast@himedia.individuad.net/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@traffictrack[2].txt [ Cookie:gast@traffictrack.de/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@ad.yieldmanager[1].txt [ Cookie:gast@ad.yieldmanager.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@tradedoubler[2].txt [ Cookie:gast@tradedoubler.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@bs.serving-sys[1].txt [ Cookie:gast@bs.serving-sys.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@unitymedia[2].txt [ Cookie:gast@unitymedia.de/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@content.yieldmanager[3].txt [ Cookie:gast@content.yieldmanager.com/ak/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@wsclick.infospace[1].txt [ Cookie:gast@wsclick.infospace.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@apmebf[2].txt [ Cookie:gast@apmebf.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@mediaplex[2].txt [ Cookie:gast@mediaplex.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@www.google[2].txt [ Cookie:gast@www.google.com/accounts ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@rotator.adjuggler[2].txt [ Cookie:gast@rotator.adjuggler.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@ads2.net2day[1].txt [ Cookie:gast@ads2.net2day.de/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@statcounter[2].txt [ Cookie:gast@statcounter.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@adtech[1].txt [ Cookie:gast@adtech.de/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@serving-sys[1].txt [ Cookie:gast@serving-sys.com/ ]
	C:\USERS\GAST\AppData\Roaming\Microsoft\Windows\Cookies\Low\gast@webmasterplan[2].txt [ Cookie:gast@webmasterplan.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@clkads[2].txt [ Cookie:Vanessa@clkads.com/adServe ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@www.google[1].txt [ Cookie:Vanessa@www.google.com/accounts ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@clkads[4].txt [ Cookie:Vanessa@clkads.com/adServe/banners ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\vanessa@clkads[5].txt [ Cookie:Vanessa@clkads.com/adServe/static/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@apmebf[1].txt [ Cookie:vanessa@apmebf.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@overture[1].txt [ Cookie:vanessa@overture.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@delivery.ads.coupling-media[1].txt [ Cookie:vanessa@delivery.ads.coupling-media.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@clkads[2].txt [ Cookie:vanessa@clkads.com/adServe ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@webmasterplan[1].txt [ Cookie:vanessa@webmasterplan.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@ad.zanox[1].txt [ Cookie:vanessa@ad.zanox.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.googleadservices[5].txt [ Cookie:vanessa@www.googleadservices.com/pagead/conversion/1054354546/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.zanox-affiliate[1].txt [ Cookie:vanessa@www.zanox-affiliate.de/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@doubleclick[1].txt [ Cookie:vanessa@doubleclick.net/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@tracking.quisma[2].txt [ Cookie:vanessa@tracking.quisma.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@adsrv.admediate[2].txt [ Cookie:vanessa@adsrv.admediate.net/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@clkads[5].txt [ Cookie:vanessa@clkads.com/adServe/static/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@de.at.atwola[1].txt [ Cookie:vanessa@de.at.atwola.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.googleadservices[1].txt [ Cookie:vanessa@www.googleadservices.com/pagead/conversion/1069511586/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@zbox.zanox[2].txt [ Cookie:vanessa@zbox.zanox.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@adtech[2].txt [ Cookie:vanessa@adtech.de/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@adserver.adtechus[1].txt [ Cookie:vanessa@adserver.adtechus.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@serving-sys[2].txt [ Cookie:vanessa@serving-sys.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.googleadservices[2].txt [ Cookie:vanessa@www.googleadservices.com/pagead/conversion/1066535312/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.googleadservices[3].txt [ Cookie:vanessa@www.googleadservices.com/pagead/conversion/1068470753/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@a2.adserver01[1].txt [ Cookie:vanessa@a2.adserver01.de/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@mywebsearch[2].txt [ Cookie:vanessa@mywebsearch.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@ad.yieldmanager[2].txt [ Cookie:vanessa@ad.yieldmanager.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.googleadservices[7].txt [ Cookie:vanessa@www.googleadservices.com/pagead/conversion/1067350970/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.etracker[2].txt [ Cookie:vanessa@www.etracker.de/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@content.yieldmanager[3].txt [ Cookie:vanessa@content.yieldmanager.com/ak/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@mediaplex[2].txt [ Cookie:vanessa@mediaplex.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@media6degrees[2].txt [ Cookie:vanessa@media6degrees.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@googleads.g.doubleclick[1].txt [ Cookie:vanessa@googleads.g.doubleclick.net/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@google[2].txt [ Cookie:vanessa@google.com/accounts/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@atdmt[2].txt [ Cookie:vanessa@atdmt.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@advertising[1].txt [ Cookie:vanessa@advertising.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@tradedoubler[2].txt [ Cookie:vanessa@tradedoubler.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@content.yieldmanager[2].txt [ Cookie:vanessa@content.yieldmanager.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@bs.serving-sys[2].txt [ Cookie:vanessa@bs.serving-sys.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@www.google[1].txt [ Cookie:vanessa@www.google.com/accounts ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@komtrack[2].txt [ Cookie:vanessa@komtrack.com/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@zanox-affiliate[1].txt [ Cookie:vanessa@zanox-affiliate.de/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@tracking.mlsat02[1].txt [ Cookie:vanessa@tracking.mlsat02.de/tmobile/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@fastclick[2].txt [ Cookie:vanessa@fastclick.net/ ]
	C:\USERS\VANESSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\vanessa@ad3.adfarm1.adition[2].txt [ Cookie:vanessa@ad3.adfarm1.adition.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@apmebf[1].txt [ Cookie:vanessa@apmebf.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@adform[2].txt [ Cookie:vanessa@adform.net/ ]
	C:\USERS\VANESSA\Cookies\vanessa@smartadserver[2].txt [ Cookie:vanessa@smartadserver.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@sevenoneintermedia.112.2o7[1].txt [ Cookie:vanessa@sevenoneintermedia.112.2o7.net/ ]
	C:\USERS\VANESSA\Cookies\vanessa@adtech[2].txt [ Cookie:Vanessa@adtech.de/ ]
	C:\USERS\VANESSA\Cookies\vanessa@clkads[2].txt [ Cookie:Vanessa@clkads.com/adServe ]
	C:\USERS\VANESSA\Cookies\vanessa@serving-sys[2].txt [ Cookie:Vanessa@serving-sys.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@www.etracker[2].txt [ Cookie:Vanessa@www.etracker.de/ ]
	C:\USERS\VANESSA\Cookies\vanessa@ad.zanox[2].txt [ Cookie:vanessa@ad.zanox.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@server.adform[2].txt [ Cookie:vanessa@server.adform.net/ ]
	C:\USERS\VANESSA\Cookies\vanessa@doubleclick[3].txt [ Cookie:vanessa@doubleclick.net/ ]
	C:\USERS\VANESSA\Cookies\vanessa@track.adform[1].txt [ Cookie:vanessa@track.adform.net/ ]
	C:\USERS\VANESSA\Cookies\vanessa@euroclick[1].txt [ Cookie:Vanessa@euroclick.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@googleads.g.doubleclick[1].txt [ Cookie:Vanessa@googleads.g.doubleclick.net/ ]
	C:\USERS\VANESSA\Cookies\vanessa@tradedoubler[2].txt [ Cookie:Vanessa@tradedoubler.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@rotator.adjuggler[1].txt [ Cookie:Vanessa@rotator.adjuggler.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@media6degrees[2].txt [ Cookie:Vanessa@media6degrees.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@tacoda.at.atwola[1].txt [ Cookie:vanessa@tacoda.at.atwola.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@ad4.adfarm1.adition[2].txt [ Cookie:vanessa@ad4.adfarm1.adition.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@serving-sys[1].txt [ Cookie:vanessa@serving-sys.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@ad.yieldmanager[2].txt [ Cookie:Vanessa@ad.yieldmanager.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@gamecenter.oberon-media[2].txt [ Cookie:vanessa@gamecenter.oberon-media.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@tracking.mindshare[2].txt [ Cookie:vanessa@tracking.mindshare.de/ ]
	C:\USERS\VANESSA\Cookies\vanessa@www.google[1].txt [ Cookie:Vanessa@www.google.com/accounts ]
	C:\USERS\VANESSA\Cookies\vanessa@oberon-media[2].txt [ Cookie:vanessa@oberon-media.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@ad3.adfarm1.adition[3].txt [ Cookie:vanessa@ad3.adfarm1.adition.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@mywebsearch[2].txt [ Cookie:Vanessa@mywebsearch.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@www.googleadservices[3].txt [ Cookie:Vanessa@www.googleadservices.com/pagead/conversion/1068470753/ ]
	C:\USERS\VANESSA\Cookies\vanessa@adfarm1.adition[1].txt [ Cookie:Vanessa@adfarm1.adition.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@www.googleadservices[5].txt [ Cookie:Vanessa@www.googleadservices.com/pagead/conversion/1054354546/ ]
	C:\USERS\VANESSA\Cookies\vanessa@zbox.zanox[2].txt [ Cookie:Vanessa@zbox.zanox.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@www.windowsmedia[2].txt [ Cookie:vanessa@www.windowsmedia.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@de.at.atwola[1].txt [ Cookie:Vanessa@de.at.atwola.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@revsci[2].txt [ Cookie:Vanessa@revsci.net/ ]
	C:\USERS\VANESSA\Cookies\vanessa@mediaplex[1].txt [ Cookie:vanessa@mediaplex.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@yadro[2].txt [ Cookie:vanessa@yadro.ru/ ]
	C:\USERS\VANESSA\Cookies\vanessa@zedo[2].txt [ Cookie:Vanessa@zedo.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@eyewonder[2].txt [ Cookie:vanessa@eyewonder.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@bs.serving-sys[2].txt [ Cookie:Vanessa@bs.serving-sys.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@clkads[4].txt [ Cookie:Vanessa@clkads.com/adServe/banners ]
	C:\USERS\VANESSA\Cookies\vanessa@content.yieldmanager[2].txt [ Cookie:Vanessa@content.yieldmanager.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@ad.zanox[1].txt [ Cookie:Vanessa@ad.zanox.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@zanox[2].txt [ Cookie:Vanessa@zanox.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@atdmt[2].txt [ Cookie:vanessa@atdmt.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@content.yieldmanager[3].txt [ Cookie:Vanessa@content.yieldmanager.com/ak/ ]
	C:\USERS\VANESSA\Cookies\vanessa@invitemedia[1].txt [ Cookie:Vanessa@invitemedia.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@overture[1].txt [ Cookie:Vanessa@overture.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@atwola[2].txt [ Cookie:vanessa@atwola.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@advertising[2].txt [ Cookie:vanessa@advertising.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@www.googleadservices[1].txt [ Cookie:Vanessa@www.googleadservices.com/pagead/conversion/1069511586/ ]
	C:\USERS\VANESSA\Cookies\vanessa@ar.atwola[1].txt [ Cookie:vanessa@ar.atwola.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@advertising[1].txt [ Cookie:Vanessa@advertising.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@tradedoubler[3].txt [ Cookie:vanessa@tradedoubler.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@content.yieldmanager[1].txt [ Cookie:vanessa@content.yieldmanager.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@webmasterplan[1].txt [ Cookie:Vanessa@webmasterplan.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@2o7[1].txt [ Cookie:Vanessa@2o7.net/ ]
	C:\USERS\VANESSA\Cookies\vanessa@clkads[5].txt [ Cookie:Vanessa@clkads.com/adServe/static/ ]
	C:\USERS\VANESSA\Cookies\vanessa@bs.serving-sys[1].txt [ Cookie:vanessa@bs.serving-sys.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@ad3.adfarm1.adition[2].txt [ Cookie:Vanessa@ad3.adfarm1.adition.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@fastclick[2].txt [ Cookie:Vanessa@fastclick.net/ ]
	C:\USERS\VANESSA\Cookies\vanessa@a2.adserver01[1].txt [ Cookie:Vanessa@a2.adserver01.de/ ]
	C:\USERS\VANESSA\Cookies\vanessa@adformdsp[1].txt [ Cookie:vanessa@adformdsp.net/ ]
	C:\USERS\VANESSA\Cookies\vanessa@zanox-affiliate[1].txt [ Cookie:Vanessa@zanox-affiliate.de/ ]
	C:\USERS\VANESSA\Cookies\vanessa@www.googleadservices[4].txt [ Cookie:Vanessa@www.googleadservices.com/pagead/conversion/1065490749/ ]
	C:\USERS\VANESSA\Cookies\vanessa@traffictrack[2].txt [ Cookie:Vanessa@traffictrack.de/ ]
	C:\USERS\VANESSA\Cookies\vanessa@mediaplex[2].txt [ Cookie:Vanessa@mediaplex.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@tracking.quisma[2].txt [ Cookie:Vanessa@tracking.quisma.com/ ]
	C:\USERS\VANESSA\Cookies\vanessa@doubleclick[1].txt [ Cookie:Vanessa@doubleclick.net/ ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@AD.ZANOX[1].TXT [ /AD.ZANOX ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@FASTCLICK[2].TXT [ /FASTCLICK ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ADS.PUBMATIC[1].TXT [ /ADS.PUBMATIC ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@TRIBALFUSION[2].TXT [ /TRIBALFUSION ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ADS.1001SPIELE[2].TXT [ /ADS.1001SPIELE ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ADS.1001SPIELE[3].TXT [ /ADS.1001SPIELE ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ATDMT[2].TXT [ /ATDMT ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ADS.NET2DAY[2].TXT [ /ADS.NET2DAY ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@CONTENT.YIELDMANAGER[1].TXT [ /CONTENT.YIELDMANAGER ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@MEDIA6DEGREES[1].TXT [ /MEDIA6DEGREES ]
	C:\USERS\GAST\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\GAST@ZANOX[2].TXT [ /ZANOX ]
	www.vagosex.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
	www.vagosex.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
	www.vagosex.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
	.lfstmedia.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
	.doubleclick.net [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
	.lfstmedia.com [ C:\USERS\GAST\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MVTKTFW.DEFAULT\COOKIES.SQLITE ]
	.divx.112.2o7.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.doubleclick.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.atdmt.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.atdmt.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.media6degrees.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.media6degrees.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.lucidmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.ru4.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.apmebf.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.mediaplex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.mediaplex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adtech.de [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.vagosex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.vagosex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.vagosex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.vagosex.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad1.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.xiti.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad3.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.revsci.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	banner.lv.de [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad2.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.xm.xtendmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.gostats.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.gostats.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.doubleclick.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.velmedia.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	7.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.track.senzapudore.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.track.senzapudore.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	www.etracker.de [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	7.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.liveperson.net [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	.content.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@IMRWORLDWIDE[2].TXT [ /IMRWORLDWIDE ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ZANOX[2].TXT [ /ZANOX ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@WWW.GOOGLEADSERVICES[4].TXT [ /WWW.GOOGLEADSERVICES ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@2O7[1].TXT [ /2O7 ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ADS.QUARTERMEDIA[1].TXT [ /ADS.QUARTERMEDIA ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ROTATOR.ADJUGGLER[1].TXT [ /ROTATOR.ADJUGGLER ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ADFARM1.ADITION[1].TXT [ /ADFARM1.ADITION ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@TRAFFICTRACK[2].TXT [ /TRAFFICTRACK ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ADS.PLANETACTIVE[2].TXT [ /ADS.PLANETACTIVE ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@AD.AD-SRV[2].TXT [ /AD.AD-SRV ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ADS.PFERDE[2].TXT [ /ADS.PFERDE ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@REVSCI[2].TXT [ /REVSCI ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@INVITEMEDIA[1].TXT [ /INVITEMEDIA ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@EUROCLICK[1].TXT [ /EUROCLICK ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ZEDO[2].TXT [ /ZEDO ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@AOLDE.122.2O7[1].TXT [ /AOLDE.122.2O7 ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@ADS.HEIAS[1].TXT [ /ADS.HEIAS ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@UNITYMEDIA[2].TXT [ /UNITYMEDIA ]
	C:\USERS\VANESSA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\VANESSA@WWW.GOOGLEADSERVICES[6].TXT [ /WWW.GOOGLEADSERVICES ]
	server.cpmstar.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	adserver.71i.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.247realmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.xiti.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adviva.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.imrworldwide.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.imrworldwide.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.media.photobucket.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	rts.pgmediaserve.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.adition.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	de.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.game-advertising-online.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adbrite.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.guj.122.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.112.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.clicksor.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.eyewonder.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.eyewonder.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adserver.adtechus.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.a.revenuemax.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.gostats.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.usenext.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.apmebf.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.atdmt.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.gostats.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adcentriconline.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	accounts.google.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.specificclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.collective-media.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adbrite.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.histats.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.histats.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.amazon-adsystem.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.amazon-adsystem.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adserving.w2c.ru [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adserving.w2c.ru [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adserving.w2c.ru [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.luroxmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.msnbc.112.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.zanox.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	wmedia.rotator.hadj7.adjuggler.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	wmedia.rotator.hadj7.adjuggler.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.mediathek.ffh.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.findwallpaper.info [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.isegailsexyymena.goodluckwith.us [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.lfstmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.luroxmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.luroxmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.freaks-toplist.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.youporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.youporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.youporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.sexad.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www8.addfreestats.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.fuckmybrain.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.clicksor.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.clicksor.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.googleads.g.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.quartermedia.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.finde-reitbeteiligung.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.finde-reitbeteiligung.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ad-emea.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ad-emea.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	7.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	media.neodau.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	banner.lv.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.xm.xtendmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.bwincom.122.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.liveperson.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	studivz.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	studivz.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.accounts.google.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.accounts.google.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	tracker.bmtsystem.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.apmebf.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.adserver01.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ads20.wwe-media.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	traffic.brokerbabe.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	tracking.mobile.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	dm3adserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.advertisingenhanced.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.advertisingenhanced.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.clicksor.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.clicksor.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tacoda.at.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ar.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tacoda.at.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tacoda.at.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.at.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.exoclick.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.cpvadverts.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.cpvadverts.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.maximumfindings.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.maximumfindings.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tns-counter.ru [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.technoratimedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.technoratimedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.zanox-affiliate.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.yadro.ru [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.multimediaxis.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.multimediaxis.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	count.asnetworks.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.partnerdemoemea.112.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tiniporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tiniporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.tiniporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.tiniporn.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.pornofilmpjes.nl [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.pornofilmpjes.nl [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.atdmt.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.c.atdmt.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.c.atdmt.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adxpose.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.technoratimedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.googleads.g.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.at.atwola.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adform.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ads2.247activemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.mm.chitika.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.mmotraffic.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.mmotraffic.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adlegend.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.www.burstnet.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.yieldmanager.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.burstnet.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	statse.webtrendslive.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ww251.smartadserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.dyntracker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.aim4media.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	server.adform.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ads.247activemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.avgtechnologies.112.2o7.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.active-tracking.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.active-tracking.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.active-tracking.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adviva.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	rtbma.revenuemax.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adbrite.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.zanox.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.clickbank.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.clickbank.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.adition.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.adition.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.zanox-affiliate.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.zanox-affiliate.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad1.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	zbox.zanox.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	adserver.zenoviaexchange.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.dyntracker.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	tomtailor.dyntracker.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.traffictrack.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.usenext.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.apmebf.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.lucidmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	aa.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.mediatraffic.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	7.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.geoadserve2.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	server.adformdsp.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adformdsp.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.examinestats.org [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.examinestats.org [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.examinestats.org [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.rotator.wigetmedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.blogcounter.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adformdsp.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad4.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.bs.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.bs.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	server.adformdsp.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adformdsp.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad3.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.zanox.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.fastclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.vagosex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.exoclick.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad2.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adform.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.unitymedia.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.unitymedia.de [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.zanox.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	accounts.google.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	accounts.youtube.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.doubleclick.net [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.serving-sys.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.questionmarket.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	.questionmarket.com [ C:\USERS\VANESSA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H3WSTYFT.DEFAULT\COOKIES.SQLITE ]
	cdn2.baronsmedia.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\NJ7KMB9Y ]
	delivery.ibanner.de [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\NJ7KMB9Y ]
         

Alt 21.10.2012, 11:52   #28
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Malwarebytes hat nur Funde in der OTL- und TDSS-Killer-Qurantäne gehabt.
Ansonsten wurden nur Cookies gefunden, die können alle weg.
Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie )


Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat.

Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/
Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird.

Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da.

Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 22.10.2012, 06:30   #29
Niggo
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Danke für deine Tipps und Unterstützung!

Nein, ansonst gibt es keine weiteren Probleme.

Grüße
Nico

Alt 22.10.2012, 11:28   #30
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
AVG meldet: services.exe mit Trojaner infiziert - Standard

AVG meldet: services.exe mit Trojaner infiziert



Dann wären wir durch!

Die Programme, die hier zum Einsatz kamen, können alle wieder runter. Malwarebytes zu behalten ist zu empfehlen. Kannst ja 1x im Monat damit einen Vollscan machen, aber immer vorher ans Update denken.

Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden.
Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern.


Microsoftupdate

Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren.

Windows Vista/7: Anleitung Windows-Update


PDF-Reader aktualisieren
Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast)

Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader.

Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers:
Prüfen => Adobe - Flash Player
Downloadlinks => Adobe Flash Player Distribution | Adobe

Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind.


Java-Update
Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.
__________________
Logfiles bitte immer in CODE-Tags posten

Antwort

Themen zu AVG meldet: services.exe mit Trojaner infiziert
autorun, avg, bho, canon, converter, explorer, firefox, flash player, format, home, iminent, iminent toolbar, infiziert, intranet, logfile, mp3, plug-in, programm, prozess, realtek, registry, rundll, scan, security, services.exe, software, system, trojaner, vista, windows




Ähnliche Themen: AVG meldet: services.exe mit Trojaner infiziert


  1. Windows 7: Rechner hat Virenbefall. Avira meldet services.exe bei jedem Start!
    Log-Analyse und Auswertung - 07.10.2013 (18)
  2. Echtzeitscanner meldet Problem: services.exe w32/patched.uc
    Plagegeister aller Art und deren Bekämpfung - 22.08.2013 (1)
  3. W32/Patched.UC - services.exe anscheinend infiziert.
    Log-Analyse und Auswertung - 02.07.2013 (17)
  4. Echtzeitscanner meldet Problem: services.exe w32/patched.uc
    Log-Analyse und Auswertung - 30.06.2013 (29)
  5. C:\Windows\System32\services.exe Infiziert!
    Plagegeister aller Art und deren Bekämpfung - 25.05.2013 (58)
  6. Avast meldet ACDSeePro6.exe ist mit MSIL:Crypt-NB [Trj] infiziert
    Plagegeister aller Art und deren Bekämpfung - 09.05.2013 (4)
  7. Avast meldet A0090918.exe ist infiziert von Win32:Malware-gen!
    Log-Analyse und Auswertung - 17.04.2013 (6)
  8. Virus ATRAPS.Gen2 sowie "services.exe" infiziert
    Plagegeister aller Art und deren Bekämpfung - 13.04.2013 (17)
  9. mbam meldet: PipeBeama.exe infiziert
    Plagegeister aller Art und deren Bekämpfung - 19.01.2013 (8)
  10. Malewarebytes meldet ccleaner.exe sei infiziert?
    Plagegeister aller Art und deren Bekämpfung - 29.10.2012 (26)
  11. services.exe mit "W32/Patched.UC" infiziert || TR/ATRAPS.GEN2 und TR/Sirefref.W.16896 gefunden
    Log-Analyse und Auswertung - 18.10.2012 (1)
  12. Symantec meldet: Trojan.Zeroaccess.B | Trojan.Gen.2 | services.exe gefunden
    Plagegeister aller Art und deren Bekämpfung - 22.08.2012 (2)
  13. PC langsam, Trojaner infiziert, Avira und Symantec meldet
    Plagegeister aller Art und deren Bekämpfung - 10.07.2012 (17)
  14. avira antivirus premium meldet in c:\windows\system32\services.exe Virus w32/patched.ub
    Plagegeister aller Art und deren Bekämpfung - 05.07.2012 (22)
  15. ESET meldet "JS/TrojanClicker.Agent.NBN Trojaner" - PC (noch) infiziert?
    Log-Analyse und Auswertung - 09.04.2011 (1)
  16. Symantec DE-Cleaner meldet Hosts als infiziert
    Plagegeister aller Art und deren Bekämpfung - 04.02.2011 (1)
  17. Systemstart & services.exe meldet sich 7oder9 mal
    Log-Analyse und Auswertung - 26.05.2010 (6)

Zum Thema AVG meldet: services.exe mit Trojaner infiziert - Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis : Bitte den Virenscanner abstellen bevor du den - AVG meldet: services.exe mit Trojaner infiziert...
Archiv
Du betrachtest: AVG meldet: services.exe mit Trojaner infiziert auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.