Firefox leitet auf andere Webseiten um

cosinus · 16.10.2012, 16:09

Zitat:

wenn ich die neue 2.0.0.5 version herunterladen will z.b. auf chip.de

Was soll das??

Ich hab den adwCleaner extra verlinkt!!

Lauraaaa · 16.10.2012, 16:21

oooh entschuldigung,dass hatte ich einfach übersehen

Code:

ATTFilter

 # AdwCleaner v2.005 - Datei am 16/10/2012 um 17:20:32 erstellt
# Aktualisiert am 14/10/2012 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzer : Laura - LAURA-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Laura\Desktop\adwcleaner.exe
# Option [Suche]


**** [Dienste] ****


***** [Dateien / Ordner] *****


***** [Registrierungsdatenbank] *****


***** [Internet Browser] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Die Registrierungsdatenbank ist sauber.

-\\ Mozilla Firefox v16.0.1 (de)

Profilname : default 
Datei : C:\Users\Laura\AppData\Roaming\Mozilla\Firefox\Profiles\vk64fhu3.default\prefs.js

[OK] Die Datei ist sauber.

*************************

AdwCleaner[R1].txt - [9062 octets] - [15/10/2012 14:56:57]
AdwCleaner[S1].txt - [9046 octets] - [15/10/2012 16:58:17]
AdwCleaner[R2].txt - [866 octets] - [16/10/2012 17:20:32]

########## EOF - C:\AdwCleaner[R2].txt - [925 octets] ##########

cosinus · 17.10.2012, 12:36

Hm hat nichts mehr gefunden

Code:

ATTFilter

PRC - [2012.10.06 18:01:48 | 003,084,176 | ---- | M] (Emsisoft GmbH) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe

Bitte Emsioft deinstallieren, du solltest es mit Virenscanner nicht übertreiben!
Mach danach bitte wieder ein neues OTL-Log wie o.g.

Lauraaaa · 17.10.2012, 13:30

OTL Logfile:

Code:

ATTFilter

OTL logfile created on: 17.10.2012 14:11:38 - Run 2
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Laura\Desktop
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,96 Gb Total Physical Memory | 2,79 Gb Available Physical Memory | 70,40% Memory free
7,92 Gb Paging File | 6,69 Gb Available in Paging File | 84,43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451,01 Gb Total Space | 394,91 Gb Free Space | 87,56% Space Free | Partition Type: NTFS
 
Computer Name: LAURA-PC | User Name: Laura | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2012.10.15 21:53:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Laura\Desktop\OTL.exe
PRC - [2012.09.20 11:53:26 | 005,686,272 | ---- | M] () -- C:\Program Files (x86)\Freetec\SystemStore\Freemium.SelfUpdate.exe
PRC - [2012.09.07 17:04:46 | 000,676,936 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012.09.07 17:04:46 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012.09.07 17:04:44 | 000,766,536 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012.08.28 07:41:08 | 000,092,632 | ---- | M] (TomTom) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2012.08.28 07:41:06 | 000,247,768 | ---- | M] (TomTom) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
PRC - [2012.08.10 18:59:52 | 004,440,896 | ---- | M] (Akamai Technologies, Inc.) -- C:\Users\Laura\AppData\Local\Akamai\netsession_win.exe
PRC - [2012.07.27 22:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.07.18 18:04:33 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2012.07.18 18:04:23 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2012.07.18 18:04:22 | 000,348,664 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2011.11.02 02:00:44 | 000,090,448 | ---- | M] (Research In Motion Limited) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
PRC - [2009.07.01 23:12:46 | 000,623,960 | ---- | M] (Research In Motion Limited) -- C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
PRC - [2007.07.27 16:43:34 | 000,118,784 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files (x86)\Dell\Dell Webcam Manager\DellWMgr.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2012.05.30 20:06:48 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012.05.30 20:06:30 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012.10.13 19:24:08 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.10.12 10:21:49 | 009,012,224 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Freetec\SystemStore\SystemStore.exe -- (SystemStoreService)
SRV - [2012.09.20 11:53:26 | 005,686,272 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Freetec\SystemStore\Freemium.SelfUpdate.exe -- (FreemiumSelfUpdateService)
SRV - [2012.09.07 17:04:46 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012.09.07 17:04:46 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012.08.28 07:41:08 | 000,092,632 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2012.07.27 22:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.07.18 18:04:33 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012.07.18 18:04:23 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012.07.13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.01.09 21:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV - [2010.01.09 21:20:56 | 000,174,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose64)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2012.09.07 17:04:46 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012.08.21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012.07.18 18:04:42 | 000,132,832 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2012.07.18 18:04:42 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2012.07.18 18:04:41 | 000,098,848 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2012.07.09 13:42:54 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.07.25 17:44:46 | 000,074,752 | ---- | M] (Research In Motion Limited) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RimUsb_AMD64.sys -- (RimUsb)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.02.11 19:16:38 | 010,628,640 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010.09.26 20:15:22 | 002,374,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2010.06.25 10:33:36 | 000,076,912 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2010.06.21 22:07:24 | 000,304,760 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:10:47 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rootmdm.sys -- (ROOTMODEM)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.01.09 15:02:08 | 000,031,744 | ---- | M] (Research in Motion Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RimSerial_AMD64.sys -- (RimVSerPort)
DRV:64bit: - [2007.05.01 03:00:00 | 000,052,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = 
 
 
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = 
 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = 
 
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 98 91 97 89 E9 70 CD 01  [binary data]
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-158783214-850266951-202426709-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>
 
========== FireFox ==========
 
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..extensions.enabledAddons: software@loadtubes.com:1.01
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@rim.com/npappworld: C:\Program Files (x86)\Research In Motion Limited\BlackBerry App World Browser Plugin\npappworld.dll ()
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.10.13 19:24:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2012.09.27 16:32:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Laura\AppData\Roaming\mozilla\Extensions
[2012.09.27 16:32:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Laura\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2012.10.15 16:58:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Laura\AppData\Roaming\mozilla\Firefox\Profiles\vk64fhu3.default\extensions
[2012.09.05 20:20:30 | 000,000,000 | ---D | M] (loadtbs) -- C:\Users\Laura\AppData\Roaming\mozilla\Firefox\Profiles\vk64fhu3.default\extensions\software@loadtubes.com
[2012.10.13 19:24:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012.10.13 19:24:08 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012.07.14 02:45:08 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.08.30 19:05:58 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012.07.14 02:45:08 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2012.07.14 02:45:08 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.07.14 02:45:08 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.07.14 02:45:07 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [Apoint] C:\Programme\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [BlackBerryAutoUpdate] C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe (Research In Motion Limited)
O4 - HKLM..\Run: [DELL Webcam Manager] C:\Program Files (x86)\Dell\Dell Webcam Manager\DellWMgr.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-158783214-850266951-202426709-1000..\Run: [Akamai NetSession Interface] C:\Users\Laura\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKU\S-1-5-21-158783214-850266951-202426709-1000..\Run: [TomTomHOME.exe] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-158783214-850266951-202426709-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1
O8:64bit: - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe (ICQ, LLC.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} https://support.dell.com/systemprofiler/SysProExe.CAB (Reg Error: Key error.)
O16:64bit: - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16:64bit: - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{31E7D6FB-7549-4FA6-A28E-E43EBF28AA5F}: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DC6B42DF-E6DA-4FD4-81E6-547CA7FCA8F2}: DhcpNameServer = 192.168.154.139
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
 
 
SafeBootMin:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: vmms - Service
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
SafeBootNet:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootNet:64bit: Base - Driver Group
SafeBootNet:64bit: Boot Bus Extender - Driver Group
SafeBootNet:64bit: Boot file system - Driver Group
SafeBootNet:64bit: File system - Driver Group
SafeBootNet:64bit: Filter - Driver Group
SafeBootNet:64bit: HelpSvc - Service
SafeBootNet:64bit: Messenger - Service
SafeBootNet:64bit: NDIS Wrapper - Driver Group
SafeBootNet:64bit: NetBIOSGroup - Driver Group
SafeBootNet:64bit: NetDDEGroup - Driver Group
SafeBootNet:64bit: Network - Driver Group
SafeBootNet:64bit: NetworkProvider - Driver Group
SafeBootNet:64bit: PCI Configuration - Driver Group
SafeBootNet:64bit: PNP Filter - Driver Group
SafeBootNet:64bit: PNP_TDI - Driver Group
SafeBootNet:64bit: Primary disk - Driver Group
SafeBootNet:64bit: rdsessmgr - Service
SafeBootNet:64bit: sacsvr - Service
SafeBootNet:64bit: SCSI Class - Driver Group
SafeBootNet:64bit: Streams Drivers - Driver Group
SafeBootNet:64bit: System Bus Extender - Driver Group
SafeBootNet:64bit: TDI - Driver Group
SafeBootNet:64bit: vmms - Service
SafeBootNet:64bit: WudfUsbccidDriver - Driver
SafeBootNet:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
 
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
 
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
 
========== Files/Folders - Created Within 30 Days ==========
 
[2012.10.15 21:53:31 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Laura\Desktop\OTL.exe
[2012.10.14 17:59:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2012.10.13 19:24:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012.10.13 12:34:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Emsisoft Anti-Malware
[2012.10.13 12:34:14 | 000,000,000 | ---D | C] -- C:\Users\Laura\Documents\Anti-Malware
[2012.10.13 11:27:45 | 000,000,000 | ---D | C] -- C:\Users\Laura\AppData\Roaming\Malwarebytes
[2012.10.13 11:27:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.10.13 11:27:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.10.13 11:27:32 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012.10.13 11:27:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012.10.05 12:15:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Canon
[2012.10.05 11:56:42 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2012.09.27 16:32:48 | 000,000,000 | ---D | C] -- C:\Users\Laura\Documents\TomTom
[2012.09.27 16:32:40 | 000,000,000 | ---D | C] -- C:\ProgramData\TomTom
[2012.09.27 16:32:37 | 000,000,000 | ---D | C] -- C:\Users\Laura\AppData\Roaming\TomTom
[2012.09.27 16:32:37 | 000,000,000 | ---D | C] -- C:\Users\Laura\AppData\Local\TomTom
[2012.09.27 16:32:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
[2012.09.27 16:32:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TomTom HOME 2
[2012.09.27 16:31:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TomTom International B.V
[2012.09.26 15:25:33 | 000,000,000 | ---D | C] -- C:\Users\Laura\AppData\Local\Akamai
[2012.09.22 13:44:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012.09.22 13:43:54 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012.09.22 13:43:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2012.09.22 13:43:54 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012.09.22 13:43:54 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2012.09.22 10:36:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab
[2012.09.22 10:36:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ClipGrab
[2012.09.22 10:22:43 | 000,000,000 | ---D | C] -- C:\Users\Laura\AppData\Local\TubeBox
[2012.09.22 10:17:08 | 000,000,000 | ---D | C] -- C:\Users\Laura\AppData\Local\Freetec
[2012.09.22 10:16:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freetec
[2012.09.22 10:16:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Freetec
[2012.09.22 10:16:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2012.09.19 20:53:53 | 000,000,000 | ---D | C] -- C:\Users\Laura\AppData\Roaming\vlc
 
========== Files - Modified Within 30 Days ==========
 
[2012.10.17 14:15:10 | 000,031,088 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.10.17 14:15:10 | 000,031,088 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.10.17 14:08:25 | 000,000,300 | ---- | M] () -- C:\Windows\tasks\gmxwzfzu.job
[2012.10.17 14:08:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.10.17 14:08:14 | 3191,623,680 | -HS- | M] () -- C:\hiberfil.sys
[2012.10.16 17:20:20 | 000,538,941 | ---- | M] () -- C:\Users\Laura\Desktop\adwcleaner.exe
[2012.10.15 21:53:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Laura\Desktop\OTL.exe
[2012.10.15 18:30:37 | 004,353,563 | ---- | M] () -- C:\Users\Laura\Desktop\Fun - Some nights.mp3
[2012.10.15 18:19:17 | 003,226,701 | ---- | M] () -- C:\Users\Laura\Desktop\Emeli Sandé - Next to me.mp3
[2012.10.15 18:11:47 | 003,853,309 | ---- | M] () -- C:\Users\Laura\Desktop\After Tonight.mp3
[2012.10.15 15:39:21 | 003,549,177 | ---- | M] () -- C:\Users\Laura\Desktop\The Script - We cry.mp3
[2012.10.14 19:47:10 | 001,507,106 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012.10.14 19:47:10 | 000,657,676 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2012.10.14 19:47:10 | 000,618,912 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012.10.14 19:47:10 | 000,131,016 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2012.10.14 19:47:10 | 000,107,232 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012.10.13 16:12:33 | 003,552,333 | ---- | M] () -- C:\Users\Laura\Desktop\Taio Cruz - Fast car.mp3
[2012.10.12 17:28:14 | 000,098,304 | RHS- | M] () -- C:\Windows\SysWow64\dmviewk.dll
[2012.10.12 15:57:15 | 003,433,677 | ---- | M] () -- C:\Users\Laura\Desktop\Ke$ha - Die young.mp3
[2012.10.12 15:39:30 | 003,953,003 | ---- | M] () -- C:\Users\Laura\Desktop\Kelly Clarkson - Catch my breath.mp3
[2012.10.12 15:39:20 | 003,584,936 | ---- | M] () -- C:\Users\Laura\Desktop\Flo Rida - I cry.mp3
[2012.10.12 15:34:00 | 003,092,685 | ---- | M] () -- C:\Users\Laura\Desktop\Taylor Swift - We are never ever getting back together.mp3
[2012.10.07 20:27:30 | 000,127,139 | ---- | M] () -- C:\Users\Laura\Desktop\227561_3879192743882_1583954944_n.jpg
[2012.10.07 20:21:22 | 000,044,875 | ---- | M] () -- C:\Users\Laura\Desktop\400945_3878533927412_520149741_n.jpg
[2012.10.05 12:05:45 | 000,692,228 | ---- | M] () -- C:\Users\Laura\Documents\ok
[2012.09.26 15:38:05 | 144,109,622 | ---- | M] () -- C:\Users\Laura\Documents\R241392.zip
[2012.09.22 13:44:36 | 000,001,789 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012.09.22 10:16:45 | 000,002,521 | ---- | M] () -- C:\Users\Public\Desktop\Freetec TubeBox.lnk
 
========== Files Created - No Company Name ==========
 
[2012.10.16 17:19:51 | 000,538,941 | ---- | C] () -- C:\Users\Laura\Desktop\adwcleaner.exe
[2012.10.15 18:30:37 | 004,353,563 | ---- | C] () -- C:\Users\Laura\Desktop\Fun - Some nights.mp3
[2012.10.15 18:19:17 | 003,226,701 | ---- | C] () -- C:\Users\Laura\Desktop\Emeli Sandé - Next to me.mp3
[2012.10.15 15:43:56 | 003,853,309 | ---- | C] () -- C:\Users\Laura\Desktop\After Tonight.mp3
[2012.10.15 15:39:21 | 003,549,177 | ---- | C] () -- C:\Users\Laura\Desktop\The Script - We cry.mp3
[2012.10.13 16:12:33 | 003,552,333 | ---- | C] () -- C:\Users\Laura\Desktop\Taio Cruz - Fast car.mp3
[2012.10.12 17:28:14 | 000,098,304 | RHS- | C] () -- C:\Windows\SysWow64\dmviewk.dll
[2012.10.12 17:28:14 | 000,000,300 | ---- | C] () -- C:\Windows\tasks\gmxwzfzu.job
[2012.10.12 15:57:15 | 003,433,677 | ---- | C] () -- C:\Users\Laura\Desktop\Ke$ha - Die young.mp3
[2012.10.12 15:39:30 | 003,953,003 | ---- | C] () -- C:\Users\Laura\Desktop\Kelly Clarkson - Catch my breath.mp3
[2012.10.12 15:39:20 | 003,584,936 | ---- | C] () -- C:\Users\Laura\Desktop\Flo Rida - I cry.mp3
[2012.10.12 15:34:00 | 003,092,685 | ---- | C] () -- C:\Users\Laura\Desktop\Taylor Swift - We are never ever getting back together.mp3
[2012.10.07 20:27:29 | 000,127,139 | ---- | C] () -- C:\Users\Laura\Desktop\227561_3879192743882_1583954944_n.jpg
[2012.10.07 20:21:19 | 000,044,875 | ---- | C] () -- C:\Users\Laura\Desktop\400945_3878533927412_520149741_n.jpg
[2012.10.05 12:05:00 | 000,692,228 | ---- | C] () -- C:\Users\Laura\Documents\ok
[2012.09.26 15:27:57 | 144,109,622 | ---- | C] () -- C:\Users\Laura\Documents\R241392.zip
[2012.09.22 13:44:36 | 000,001,789 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012.09.22 10:16:45 | 000,002,521 | ---- | C] () -- C:\Users\Public\Desktop\Freetec TubeBox.lnk
[2012.08.05 21:21:47 | 000,000,256 | ---- | C] () -- C:\Windows\SysWow64\pool.bin
[2011.02.11 19:15:08 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2011.02.11 19:15:08 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2011.02.11 19:15:08 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
 
========== ZeroAccess Check ==========
 
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2012.09.05 16:21:08 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\convert
[2012.09.18 14:21:49 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Freemium
[2012.10.12 17:30:09 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\ICQ
[2012.09.14 15:04:59 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Research In Motion
[2012.09.27 16:32:37 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\TomTom
 
========== Purity Check ==========
 
 
 
========== Custom Scans ==========
 
< %ALLUSERSPROFILE%\Application Data\*. >
 
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
 
< %APPDATA%\*. >
[2012.08.04 22:03:56 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Adobe
[2012.08.29 18:03:07 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Apple Computer
[2012.08.03 11:32:36 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Avira
[2012.09.05 16:21:08 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\convert
[2012.08.05 13:07:17 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Creative
[2012.09.18 14:21:49 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Freemium
[2012.10.12 17:30:09 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\ICQ
[2012.08.02 19:06:45 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Identities
[2012.08.05 21:40:59 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\InstallShield
[2012.08.04 19:07:34 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Macromedia
[2012.10.13 11:27:45 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Malwarebytes
[2011.04.12 09:54:56 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Media Center Programs
[2012.09.26 14:07:11 | 000,000,000 | --SD | M] -- C:\Users\Laura\AppData\Roaming\Microsoft
[2012.08.02 22:08:56 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Mozilla
[2012.09.14 15:04:59 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Research In Motion
[2012.08.05 21:44:35 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Roxio
[2012.10.12 17:58:47 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\Skype
[2012.09.27 16:32:37 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\TomTom
[2012.09.22 10:38:26 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\vlc
[2012.08.02 22:54:39 | 000,000,000 | ---D | M] -- C:\Users\Laura\AppData\Roaming\WinRAR
 
< %APPDATA%\*.exe /s >
[2010.06.02 11:45:54 | 012,697,088 | ---- | M] () -- C:\Users\Laura\AppData\Roaming\convert\convert.exe
[2012.08.05 12:31:15 | 000,010,134 | R--- | M] () -- C:\Users\Laura\AppData\Roaming\Microsoft\Installer\{42929F0F-CE14-47AF-9FC7-FF297A603021}\ARPPRODUCTICON.exe
[2012.08.05 12:31:15 | 000,045,056 | R--- | M] (Macrovision Corporation) -- C:\Users\Laura\AppData\Roaming\Microsoft\Installer\{42929F0F-CE14-47AF-9FC7-FF297A603021}\NewShortcut1_42929F0FCE1447AF9FC7FF297A603021_1.exe
[2012.09.14 15:56:16 | 000,026,694 | R--- | M] () -- C:\Users\Laura\AppData\Roaming\Microsoft\Installer\{51246C57-EB2D-4490-AEB5-4451AB247E38}\BlackBerry.exe
[2012.09.14 15:01:13 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Laura\AppData\Roaming\Microsoft\Installer\{9064317A-39C7-40D5-8CF5-04A254747B88}\ARPPRODUCTICON.exe
 
< %SYSTEMDRIVE%\*.exe >
 
< MD5 for: AGP440.SYS  >
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys
 
< MD5 for: ATAPI.SYS  >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
 
< MD5 for: CNGAUDIT.DLL  >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
 
< MD5 for: IASTORV.SYS  >
[2010.11.21 05:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.21 05:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011.03.11 08:19:16 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys
 
< MD5 for: NETLOGON.DLL  >
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
 
< MD5 for: NVSTOR.SYS  >
[2011.03.11 08:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys
 
< MD5 for: SCECLI.DLL  >
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
 
< MD5 for: USER32.DLL  >
[2010.11.21 05:24:20 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\SysWOW64\user32.dll
[2010.11.21 05:24:20 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
[2010.11.21 05:24:09 | 001,008,128 | ---- | M] (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\SysNative\user32.dll
[2010.11.21 05:24:09 | 001,008,128 | ---- | M] (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll
 
< MD5 for: USERINIT.EXE  >
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
 
< MD5 for: WININIT.EXE  >
[2009.07.14 03:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- C:\Windows\SysNative\wininit.exe
[2009.07.14 03:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- C:\Windows\winsxs\amd64_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_8ce7aa761e01ad49\wininit.exe
[2009.07.14 03:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\SysWOW64\wininit.exe
[2009.07.14 03:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe
 
< MD5 for: WINLOGON.EXE  >
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2012.09.07 17:04:42 | 000,218,696 | ---- | M] () MD5=4E0D8C9F83B7FD82393F7D8CCC27E7AE -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
 
< MD5 for: WS2IFSL.SYS  >
[2009.07.14 02:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=6BCC1D7D2FD2453957C5479A32364E52 -- C:\Windows\SysNative\drivers\ws2ifsl.sys
[2009.07.14 02:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=6BCC1D7D2FD2453957C5479A32364E52 -- C:\Windows\winsxs\amd64_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.1.7600.16385_none_ab7b927be17eace8\ws2ifsl.sys
 
< %systemroot%\system32\drivers\*.sys /lockedfiles >
 
< %systemroot%\System32\config\*.sav >
 
< %systemroot%\*. /mp /s >
 
< %systemroot%\system32\*.dll /lockedfiles >
[2012.10.12 17:28:14 | 000,098,304 | RHS- | M] () Unable to obtain MD5 -- C:\Windows\system32\dmviewk.dll
 
<           >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,632 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012.10.12 17:28:14 | 000,000,300 | ---- | C] () -- C:\Windows\Tasks\gmxwzfzu.job

< End of report >

--- --- ---

cosinus · 17.10.2012, 15:59

Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!)

Code:

ATTFilter

:OTL
FF - prefs.js..extensions.enabledAddons: software@loadtubes.com:1.01
FF - user.js - File not found
[2012.09.05 20:20:30 | 000,000,000 | ---D | M] (loadtbs) -- C:\Users\Laura\AppData\Roaming\mozilla\Firefox\Profiles\vk64fhu3.default\extensions\software@loadtubes.com
O4 - HKLM..\Run: []  File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
:Files
C:\Windows\tasks\gmxwzfzu.job
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]
[resethosts]

Klick dann oben links auf den Button Fix!
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet.

Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt.

Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!

Lauraaaa · 17.10.2012, 19:06

Code:

ATTFilter

 All processes killed
========== OTL ==========
Prefs.js: software@loadtubes.com:1.01 removed from extensions.enabledAddons
Folder C:\Users\Laura\AppData\Roaming\mozilla\Firefox\Profiles\vk64fhu3.default\extensions\software@loadtubes.com\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\EnableLUA deleted successfully.
========== FILES ==========
C:\Windows\tasks\gmxwzfzu.job moved successfully.
< ipconfig /flushdns /c >
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
C:\Users\Laura\Desktop\cmd.bat deleted successfully.
C:\Users\Laura\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Laura
->Temp folder emptied: 1582064081 bytes
->Temporary Internet Files folder emptied: 239838092 bytes
->Java cache emptied: 1594 bytes
->FireFox cache emptied: 78180593 bytes
->Flash cache emptied: 54430 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 117398203 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67832 bytes
RecycleBin emptied: 113979040 bytes
 
Total Files Cleaned = 2.033,00 mb
 
File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot.
Error: Unble to create default HOSTS file!
 
OTL by OldTimer - Version 3.2.69.0 log created on 10172012_200249

Files\Folders moved on Reboot...
C:\Users\Laura\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Ich hab jetzt mal getestet,die Umleitungen sind verschwunden,lande jetzt wieder auf den gesuchten Seiten

Ich hoffe das wars jetzt,deswegen sag ich schon VIELEN VIELEN DANK! für Ihre Hilfe.Alleine hätte ich das ja im Leben nicht hinbekommen,danke!
-> oke zu früh gefreut,gelegentlich lande ich doch noch auf diversen werbeseiten...

cosinus · 17.10.2012, 19:57

Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.

Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

Lauraaaa · 18.10.2012, 15:29

Code:

ATTFilter

 16:24:47.0016 2204  TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
16:24:47.0328 2204  ============================================================
16:24:47.0328 2204  Current date / time: 2012/10/18 16:24:47.0328
16:24:47.0328 2204  SystemInfo:
16:24:47.0328 2204  
16:24:47.0328 2204  OS Version: 6.1.7601 ServicePack: 1.0
16:24:47.0328 2204  Product type: Workstation
16:24:47.0328 2204  ComputerName: LAURA-PC
16:24:47.0328 2204  UserName: Laura
16:24:47.0328 2204  Windows directory: C:\Windows
16:24:47.0328 2204  System windows directory: C:\Windows
16:24:47.0328 2204  Running under WOW64
16:24:47.0328 2204  Processor architecture: Intel x64
16:24:47.0328 2204  Number of processors: 2
16:24:47.0328 2204  Page size: 0x1000
16:24:47.0328 2204  Boot type: Normal boot
16:24:47.0328 2204  ============================================================
16:24:48.0373 2204  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:24:48.0389 2204  ============================================================
16:24:48.0389 2204  \Device\Harddisk0\DR0:
16:24:48.0389 2204  MBR partitions:
16:24:48.0389 2204  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
16:24:48.0389 2204  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
16:24:48.0389 2204  ============================================================
16:24:48.0436 2204  C: <-> \Device\Harddisk0\DR0\Partition2
16:24:48.0436 2204  ============================================================
16:24:48.0436 2204  Initialize success
16:24:48.0436 2204  ============================================================
16:24:53.0755 3996  ============================================================
16:24:53.0755 3996  Scan started
16:24:53.0755 3996  Mode: Manual; 
16:24:53.0755 3996  ============================================================
16:24:54.0613 3996  ================ Scan system memory ========================
16:24:54.0613 3996  System memory - ok
16:24:54.0613 3996  ================ Scan services =============================
16:24:54.0816 3996  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:24:54.0816 3996  1394ohci - ok
16:24:54.0847 3996  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:24:54.0847 3996  ACPI - ok
16:24:54.0879 3996  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:24:54.0879 3996  AcpiPmi - ok
16:24:54.0972 3996  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:24:54.0972 3996  AdobeARMservice - ok
16:24:55.0019 3996  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:24:55.0035 3996  adp94xx - ok
16:24:55.0050 3996  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:24:55.0050 3996  adpahci - ok
16:24:55.0097 3996  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:24:55.0097 3996  adpu320 - ok
16:24:55.0128 3996  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:24:55.0128 3996  AeLookupSvc - ok
16:24:55.0191 3996  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
16:24:55.0191 3996  AFD - ok
16:24:55.0237 3996  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
16:24:55.0237 3996  agp440 - ok
16:24:55.0269 3996  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
16:24:55.0269 3996  ALG - ok
16:24:55.0300 3996  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:24:55.0300 3996  aliide - ok
16:24:55.0331 3996  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
16:24:55.0347 3996  amdide - ok
16:24:55.0378 3996  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:24:55.0378 3996  AmdK8 - ok
16:24:55.0378 3996  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
16:24:55.0393 3996  AmdPPM - ok
16:24:55.0425 3996  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:24:55.0440 3996  amdsata - ok
16:24:55.0456 3996  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:24:55.0471 3996  amdsbs - ok
16:24:55.0487 3996  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:24:55.0487 3996  amdxata - ok
16:24:55.0565 3996  [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
16:24:55.0565 3996  AntiVirSchedulerService - ok
16:24:55.0612 3996  [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
16:24:55.0612 3996  AntiVirService - ok
16:24:55.0674 3996  [ 8655A2983A86D6675135B1FF6892055D ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
16:24:55.0674 3996  ApfiltrService - ok
16:24:55.0721 3996  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
16:24:55.0721 3996  AppID - ok
16:24:55.0752 3996  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:24:55.0752 3996  AppIDSvc - ok
16:24:55.0768 3996  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
16:24:55.0768 3996  Appinfo - ok
16:24:55.0830 3996  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:24:55.0830 3996  Apple Mobile Device - ok
16:24:55.0893 3996  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:24:55.0893 3996  AppMgmt - ok
16:24:55.0924 3996  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
16:24:55.0924 3996  arc - ok
16:24:55.0955 3996  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:24:55.0955 3996  arcsas - ok
16:24:56.0002 3996  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:24:56.0002 3996  AsyncMac - ok
16:24:56.0049 3996  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
16:24:56.0049 3996  atapi - ok
16:24:56.0236 3996  [ 96ABF88241F90FF647E55C934C55C2F1 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
16:24:56.0298 3996  athr - ok
16:24:56.0345 3996  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:24:56.0345 3996  AudioEndpointBuilder - ok
16:24:56.0361 3996  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:24:56.0361 3996  AudioSrv - ok
16:24:56.0392 3996  [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
16:24:56.0392 3996  avgntflt - ok
16:24:56.0439 3996  [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
16:24:56.0439 3996  avipbb - ok
16:24:56.0439 3996  [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
16:24:56.0439 3996  avkmgr - ok
16:24:56.0485 3996  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:24:56.0485 3996  AxInstSV - ok
16:24:56.0532 3996  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:24:56.0532 3996  b06bdrv - ok
16:24:56.0579 3996  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:24:56.0579 3996  b57nd60a - ok
16:24:56.0641 3996  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:24:56.0641 3996  BDESVC - ok
16:24:56.0657 3996  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:24:56.0657 3996  Beep - ok
16:24:56.0704 3996  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
16:24:56.0719 3996  BFE - ok
16:24:56.0766 3996  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
16:24:56.0797 3996  BITS - ok
16:24:56.0829 3996  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:24:56.0829 3996  blbdrive - ok
16:24:56.0907 3996  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:24:56.0922 3996  Bonjour Service - ok
16:24:56.0953 3996  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:24:56.0953 3996  bowser - ok
16:24:56.0969 3996  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
16:24:56.0969 3996  BrFiltLo - ok
16:24:56.0985 3996  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
16:24:56.0985 3996  BrFiltUp - ok
16:24:57.0016 3996  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
16:24:57.0016 3996  Browser - ok
16:24:57.0016 3996  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:24:57.0031 3996  Brserid - ok
16:24:57.0031 3996  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:24:57.0031 3996  BrSerWdm - ok
16:24:57.0031 3996  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:24:57.0047 3996  BrUsbMdm - ok
16:24:57.0047 3996  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:24:57.0047 3996  BrUsbSer - ok
16:24:57.0078 3996  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:24:57.0078 3996  BTHMODEM - ok
16:24:57.0125 3996  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
16:24:57.0125 3996  bthserv - ok
16:24:57.0141 3996  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:24:57.0141 3996  cdfs - ok
16:24:57.0187 3996  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:24:57.0187 3996  cdrom - ok
16:24:57.0203 3996  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
16:24:57.0203 3996  CertPropSvc - ok
16:24:57.0219 3996  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
16:24:57.0219 3996  circlass - ok
16:24:57.0250 3996  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
16:24:57.0250 3996  CLFS - ok
16:24:57.0312 3996  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:24:57.0312 3996  clr_optimization_v2.0.50727_32 - ok
16:24:57.0359 3996  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:24:57.0359 3996  clr_optimization_v2.0.50727_64 - ok
16:24:57.0437 3996  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:24:57.0437 3996  clr_optimization_v4.0.30319_32 - ok
16:24:57.0484 3996  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:24:57.0484 3996  clr_optimization_v4.0.30319_64 - ok
16:24:57.0515 3996  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:24:57.0515 3996  CmBatt - ok
16:24:57.0531 3996  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:24:57.0546 3996  cmdide - ok
16:24:57.0577 3996  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
16:24:57.0577 3996  CNG - ok
16:24:57.0609 3996  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:24:57.0609 3996  Compbatt - ok
16:24:57.0655 3996  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
16:24:57.0655 3996  CompositeBus - ok
16:24:57.0671 3996  COMSysApp - ok
16:24:57.0702 3996  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:24:57.0702 3996  crcdisk - ok
16:24:57.0733 3996  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:24:57.0733 3996  CryptSvc - ok
16:24:57.0765 3996  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
16:24:57.0780 3996  CSC - ok
16:24:57.0796 3996  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
16:24:57.0796 3996  CscService - ok
16:24:57.0858 3996  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:24:57.0858 3996  DcomLaunch - ok
16:24:57.0889 3996  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
16:24:57.0889 3996  defragsvc - ok
16:24:57.0921 3996  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:24:57.0921 3996  DfsC - ok
16:24:57.0952 3996  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:24:57.0952 3996  Dhcp - ok
16:24:57.0999 3996  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
16:24:57.0999 3996  discache - ok
16:24:58.0030 3996  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
16:24:58.0030 3996  Disk - ok
16:24:58.0061 3996  [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
16:24:58.0061 3996  dmvsc - ok
16:24:58.0092 3996  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:24:58.0092 3996  Dnscache - ok
16:24:58.0123 3996  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:24:58.0139 3996  dot3svc - ok
16:24:58.0139 3996  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
16:24:58.0155 3996  DPS - ok
16:24:58.0186 3996  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:24:58.0186 3996  drmkaud - ok
16:24:58.0248 3996  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:24:58.0248 3996  DXGKrnl - ok
16:24:58.0279 3996  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
16:24:58.0295 3996  EapHost - ok
16:24:58.0373 3996  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
16:24:58.0482 3996  ebdrv - ok
16:24:58.0513 3996  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
16:24:58.0513 3996  EFS - ok
16:24:58.0607 3996  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:24:58.0623 3996  ehRecvr - ok
16:24:58.0638 3996  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
16:24:58.0638 3996  ehSched - ok
16:24:58.0669 3996  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:24:58.0685 3996  elxstor - ok
16:24:58.0701 3996  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:24:58.0701 3996  ErrDev - ok
16:24:58.0747 3996  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
16:24:58.0747 3996  EventSystem - ok
16:24:58.0763 3996  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
16:24:58.0763 3996  exfat - ok
16:24:58.0779 3996  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:24:58.0794 3996  fastfat - ok
16:24:58.0825 3996  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
16:24:58.0841 3996  Fax - ok
16:24:58.0872 3996  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
16:24:58.0872 3996  fdc - ok
16:24:58.0903 3996  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
16:24:58.0903 3996  fdPHost - ok
16:24:58.0919 3996  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:24:58.0919 3996  FDResPub - ok
16:24:58.0935 3996  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:24:58.0935 3996  FileInfo - ok
16:24:58.0966 3996  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:24:58.0966 3996  Filetrace - ok
16:24:59.0013 3996  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
16:24:59.0013 3996  flpydisk - ok
16:24:59.0044 3996  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:24:59.0044 3996  FltMgr - ok
16:24:59.0106 3996  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
16:24:59.0137 3996  FontCache - ok
16:24:59.0200 3996  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:24:59.0200 3996  FontCache3.0.0.0 - ok
16:24:59.0403 3996  [ 701C9023D8B5B18C9E08C27D4D1B5617 ] FreemiumSelfUpdateService C:\Program Files (x86)\Freetec\SystemStore\Freemium.SelfUpdate.exe
16:24:59.0512 3996  FreemiumSelfUpdateService - ok
16:24:59.0543 3996  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:24:59.0543 3996  FsDepends - ok
16:24:59.0574 3996  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:24:59.0574 3996  Fs_Rec - ok
16:24:59.0590 3996  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:24:59.0590 3996  fvevol - ok
16:24:59.0621 3996  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:24:59.0621 3996  gagp30kx - ok
16:24:59.0652 3996  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:24:59.0652 3996  GEARAspiWDM - ok
16:24:59.0699 3996  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
16:24:59.0699 3996  gpsvc - ok
16:24:59.0715 3996  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:24:59.0715 3996  hcw85cir - ok
16:24:59.0761 3996  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:24:59.0777 3996  HdAudAddService - ok
16:24:59.0808 3996  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:24:59.0808 3996  HDAudBus - ok
16:24:59.0808 3996  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
16:24:59.0808 3996  HidBatt - ok
16:24:59.0824 3996  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:24:59.0824 3996  HidBth - ok
16:24:59.0855 3996  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:24:59.0855 3996  HidIr - ok
16:24:59.0886 3996  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
16:24:59.0886 3996  hidserv - ok
16:24:59.0902 3996  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:24:59.0902 3996  HidUsb - ok
16:24:59.0917 3996  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:24:59.0917 3996  hkmsvc - ok
16:24:59.0933 3996  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:24:59.0933 3996  HomeGroupListener - ok
16:24:59.0964 3996  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:24:59.0964 3996  HomeGroupProvider - ok
16:24:59.0995 3996  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:24:59.0995 3996  HpSAMD - ok
16:25:00.0027 3996  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:25:00.0027 3996  HTTP - ok
16:25:00.0058 3996  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:25:00.0058 3996  hwpolicy - ok
16:25:00.0073 3996  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
16:25:00.0073 3996  i8042prt - ok
16:25:00.0120 3996  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:25:00.0120 3996  iaStorV - ok
16:25:00.0214 3996  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
16:25:00.0214 3996  IDriverT - ok
16:25:00.0276 3996  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:25:00.0307 3996  idsvc - ok
16:25:00.0557 3996  [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
16:25:00.0791 3996  igfx - ok
16:25:00.0822 3996  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:25:00.0822 3996  iirsp - ok
16:25:00.0869 3996  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
16:25:00.0885 3996  IKEEXT - ok
16:25:00.0900 3996  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
16:25:00.0900 3996  intelide - ok
16:25:00.0916 3996  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:25:00.0916 3996  intelppm - ok
16:25:00.0931 3996  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:25:00.0947 3996  IPBusEnum - ok
16:25:00.0963 3996  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:25:00.0963 3996  IpFilterDriver - ok
16:25:00.0963 3996  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:25:00.0978 3996  iphlpsvc - ok
16:25:00.0978 3996  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:25:00.0978 3996  IPMIDRV - ok
16:25:00.0994 3996  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:25:00.0994 3996  IPNAT - ok
16:25:01.0056 3996  [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:25:01.0072 3996  iPod Service - ok
16:25:01.0103 3996  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:25:01.0103 3996  IRENUM - ok
16:25:01.0119 3996  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:25:01.0119 3996  isapnp - ok
16:25:01.0150 3996  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:25:01.0150 3996  iScsiPrt - ok
16:25:01.0228 3996  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:25:01.0243 3996  kbdclass - ok
16:25:01.0259 3996  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
16:25:01.0259 3996  kbdhid - ok
16:25:01.0275 3996  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
16:25:01.0275 3996  KeyIso - ok
16:25:01.0306 3996  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:25:01.0306 3996  KSecDD - ok
16:25:01.0321 3996  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:25:01.0321 3996  KSecPkg - ok
16:25:01.0353 3996  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:25:01.0353 3996  ksthunk - ok
16:25:01.0399 3996  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:25:01.0399 3996  KtmRm - ok
16:25:01.0431 3996  [ 32980B4E711D2EF7128C44DC2CF85706 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
16:25:01.0431 3996  L1C - ok
16:25:01.0462 3996  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:25:01.0462 3996  LanmanServer - ok
16:25:01.0509 3996  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:25:01.0509 3996  LanmanWorkstation - ok
16:25:01.0555 3996  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:25:01.0555 3996  lltdio - ok
16:25:01.0602 3996  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:25:01.0618 3996  lltdsvc - ok
16:25:01.0633 3996  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:25:01.0633 3996  lmhosts - ok
16:25:01.0680 3996  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:25:01.0680 3996  LSI_FC - ok
16:25:01.0727 3996  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:25:01.0727 3996  LSI_SAS - ok
16:25:01.0743 3996  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:25:01.0743 3996  LSI_SAS2 - ok
16:25:01.0758 3996  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:25:01.0758 3996  LSI_SCSI - ok
16:25:01.0789 3996  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
16:25:01.0789 3996  luafv - ok
16:25:01.0821 3996  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:25:01.0821 3996  Mcx2Svc - ok
16:25:01.0836 3996  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:25:01.0836 3996  megasas - ok
16:25:01.0867 3996  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
16:25:01.0867 3996  MegaSR - ok
16:25:01.0930 3996  Microsoft SharePoint Workspace Audit Service - ok
16:25:01.0977 3996  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
16:25:01.0977 3996  MMCSS - ok
16:25:02.0008 3996  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
16:25:02.0023 3996  Modem - ok
16:25:02.0055 3996  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:25:02.0055 3996  monitor - ok
16:25:02.0070 3996  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:25:02.0070 3996  mouclass - ok
16:25:02.0117 3996  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:25:02.0117 3996  mouhid - ok
16:25:02.0133 3996  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:25:02.0133 3996  mountmgr - ok
16:25:02.0179 3996  [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:25:02.0179 3996  MozillaMaintenance - ok
16:25:02.0211 3996  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:25:02.0211 3996  mpio - ok
16:25:02.0242 3996  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:25:02.0242 3996  mpsdrv - ok
16:25:02.0304 3996  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:25:02.0320 3996  MpsSvc - ok
16:25:02.0351 3996  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:25:02.0351 3996  MRxDAV - ok
16:25:02.0382 3996  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:25:02.0382 3996  mrxsmb - ok
16:25:02.0413 3996  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:25:02.0413 3996  mrxsmb10 - ok
16:25:02.0429 3996  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:25:02.0429 3996  mrxsmb20 - ok
16:25:02.0445 3996  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:25:02.0445 3996  msahci - ok
16:25:02.0476 3996  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:25:02.0476 3996  msdsm - ok
16:25:02.0507 3996  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
16:25:02.0507 3996  MSDTC - ok
16:25:02.0554 3996  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:25:02.0554 3996  Msfs - ok
16:25:02.0585 3996  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:25:02.0585 3996  mshidkmdf - ok
16:25:02.0585 3996  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:25:02.0585 3996  msisadrv - ok
16:25:02.0632 3996  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:25:02.0632 3996  MSiSCSI - ok
16:25:02.0632 3996  msiserver - ok
16:25:02.0679 3996  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:25:02.0679 3996  MSKSSRV - ok
16:25:02.0710 3996  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:25:02.0710 3996  MSPCLOCK - ok
16:25:02.0710 3996  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:25:02.0710 3996  MSPQM - ok
16:25:02.0741 3996  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:25:02.0741 3996  MsRPC - ok
16:25:02.0757 3996  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:25:02.0757 3996  mssmbios - ok
16:25:02.0772 3996  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:25:02.0772 3996  MSTEE - ok
16:25:02.0788 3996  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
16:25:02.0788 3996  MTConfig - ok
16:25:02.0803 3996  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
16:25:02.0803 3996  Mup - ok
16:25:02.0835 3996  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
16:25:02.0835 3996  napagent - ok
16:25:02.0881 3996  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:25:02.0897 3996  NativeWifiP - ok
16:25:02.0944 3996  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:25:02.0959 3996  NDIS - ok
16:25:02.0975 3996  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:25:02.0991 3996  NdisCap - ok
16:25:03.0006 3996  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:25:03.0006 3996  NdisTapi - ok
16:25:03.0022 3996  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:25:03.0022 3996  Ndisuio - ok
16:25:03.0037 3996  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:25:03.0037 3996  NdisWan - ok
16:25:03.0053 3996  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:25:03.0053 3996  NDProxy - ok
16:25:03.0069 3996  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:25:03.0069 3996  NetBIOS - ok
16:25:03.0100 3996  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:25:03.0100 3996  NetBT - ok
16:25:03.0131 3996  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
16:25:03.0131 3996  Netlogon - ok
16:25:03.0178 3996  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
16:25:03.0193 3996  Netman - ok
16:25:03.0209 3996  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
16:25:03.0209 3996  netprofm - ok
16:25:03.0256 3996  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:25:03.0256 3996  NetTcpPortSharing - ok
16:25:03.0287 3996  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:25:03.0287 3996  nfrd960 - ok
16:25:03.0318 3996  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:25:03.0334 3996  NlaSvc - ok
16:25:03.0349 3996  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:25:03.0349 3996  Npfs - ok
16:25:03.0349 3996  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
16:25:03.0365 3996  nsi - ok
16:25:03.0381 3996  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:25:03.0381 3996  nsiproxy - ok
16:25:03.0443 3996  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:25:03.0490 3996  Ntfs - ok
16:25:03.0505 3996  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
16:25:03.0505 3996  Null - ok
16:25:03.0537 3996  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:25:03.0537 3996  nvraid - ok
16:25:03.0568 3996  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:25:03.0568 3996  nvstor - ok
16:25:03.0599 3996  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:25:03.0599 3996  nv_agp - ok
16:25:03.0599 3996  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:25:03.0615 3996  ohci1394 - ok
16:25:03.0693 3996  [ 4965B005492CBA7719E82B71E3245495 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:25:03.0693 3996  ose64 - ok
16:25:03.0849 3996  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:25:03.0927 3996  osppsvc - ok
16:25:03.0973 3996  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:25:03.0973 3996  p2pimsvc - ok
16:25:04.0005 3996  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:25:04.0005 3996  p2psvc - ok
16:25:04.0036 3996  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
16:25:04.0036 3996  Parport - ok
16:25:04.0067 3996  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:25:04.0067 3996  partmgr - ok
16:25:04.0083 3996  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:25:04.0098 3996  PcaSvc - ok
16:25:04.0114 3996  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
16:25:04.0114 3996  pci - ok
16:25:04.0129 3996  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
16:25:04.0129 3996  pciide - ok
16:25:04.0161 3996  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:25:04.0161 3996  pcmcia - ok
16:25:04.0176 3996  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:25:04.0176 3996  pcw - ok
16:25:04.0207 3996  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:25:04.0207 3996  PEAUTH - ok
16:25:04.0254 3996  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:25:04.0301 3996  PeerDistSvc - ok
16:25:04.0379 3996  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:25:04.0395 3996  PerfHost - ok
16:25:04.0457 3996  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
16:25:04.0488 3996  pla - ok
16:25:04.0535 3996  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:25:04.0535 3996  PlugPlay - ok
16:25:04.0566 3996  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:25:04.0566 3996  PNRPAutoReg - ok
16:25:04.0597 3996  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:25:04.0597 3996  PNRPsvc - ok
16:25:04.0629 3996  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:25:04.0644 3996  PolicyAgent - ok
16:25:04.0660 3996  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
16:25:04.0675 3996  Power - ok
16:25:04.0691 3996  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:25:04.0691 3996  PptpMiniport - ok
16:25:04.0722 3996  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
16:25:04.0722 3996  Processor - ok
16:25:04.0753 3996  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:25:04.0753 3996  ProfSvc - ok
16:25:04.0769 3996  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:25:04.0769 3996  ProtectedStorage - ok
16:25:04.0800 3996  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:25:04.0800 3996  Psched - ok
16:25:04.0847 3996  [ A6BF0A9B5A30D743623CA0D3BE35DF05 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
16:25:04.0847 3996  PxHlpa64 - ok
16:25:04.0894 3996  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:25:04.0925 3996  ql2300 - ok
16:25:04.0956 3996  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:25:04.0956 3996  ql40xx - ok
16:25:05.0003 3996  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
16:25:05.0003 3996  QWAVE - ok
16:25:05.0019 3996  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:25:05.0019 3996  QWAVEdrv - ok
16:25:05.0050 3996  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:25:05.0050 3996  RasAcd - ok
16:25:05.0097 3996  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:25:05.0097 3996  RasAgileVpn - ok
16:25:05.0128 3996  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
16:25:05.0128 3996  RasAuto - ok
16:25:05.0143 3996  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:25:05.0143 3996  Rasl2tp - ok
16:25:05.0159 3996  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
16:25:05.0175 3996  RasMan - ok
16:25:05.0190 3996  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:25:05.0190 3996  RasPppoe - ok
16:25:05.0206 3996  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:25:05.0206 3996  RasSstp - ok
16:25:05.0237 3996  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:25:05.0253 3996  rdbss - ok
16:25:05.0268 3996  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:25:05.0268 3996  rdpbus - ok
16:25:05.0299 3996  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:25:05.0299 3996  RDPCDD - ok
16:25:05.0331 3996  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:25:05.0331 3996  RDPDR - ok
16:25:05.0362 3996  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:25:05.0362 3996  RDPENCDD - ok
16:25:05.0377 3996  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:25:05.0377 3996  RDPREFMP - ok
16:25:05.0409 3996  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:25:05.0424 3996  RDPWD - ok
16:25:05.0440 3996  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:25:05.0455 3996  rdyboost - ok
16:25:05.0487 3996  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:25:05.0487 3996  RemoteAccess - ok
16:25:05.0518 3996  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:25:05.0518 3996  RemoteRegistry - ok
16:25:05.0565 3996  [ AD42432D22940B4215177BE113E4919C ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
16:25:05.0580 3996  RimUsb - ok
16:25:05.0611 3996  [ C903D49655B4AAE46673F0AAA6BE0F58 ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
16:25:05.0611 3996  RimVSerPort - ok
16:25:05.0643 3996  [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
16:25:05.0643 3996  ROOTMODEM - ok
16:25:05.0705 3996  [ AFD61A7C48A3E15C86A6FADF0B69A2E4 ] Roxio UPnP Renderer 9 C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
16:25:05.0705 3996  Roxio UPnP Renderer 9 - ok
16:25:05.0736 3996  [ EFBB36E2BB02169D26E9980778FC20D3 ] Roxio Upnp Server 9 C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe
16:25:05.0736 3996  Roxio Upnp Server 9 - ok
16:25:05.0814 3996  [ E06224CF971D33A680E852DFA212A8AB ] RoxLiveShare9   C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
16:25:05.0830 3996  RoxLiveShare9 - ok
16:25:05.0877 3996  [ FB68FD9505AB89416D70A0E8A5C49E45 ] RoxMediaDB9     C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
16:25:05.0908 3996  RoxMediaDB9 - ok
16:25:05.0939 3996  [ D6BDB50D2A28FF70CE60B4D995F0143A ] RoxWatch9       C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
16:25:05.0939 3996  RoxWatch9 - ok
16:25:05.0970 3996  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:25:05.0970 3996  RpcEptMapper - ok
16:25:06.0001 3996  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
16:25:06.0001 3996  RpcLocator - ok
16:25:06.0033 3996  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
16:25:06.0033 3996  RpcSs - ok
16:25:06.0079 3996  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:25:06.0079 3996  rspndr - ok
16:25:06.0095 3996  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
16:25:06.0111 3996  s3cap - ok
16:25:06.0111 3996  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
16:25:06.0111 3996  SamSs - ok
16:25:06.0142 3996  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:25:06.0142 3996  sbp2port - ok
16:25:06.0173 3996  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:25:06.0173 3996  SCardSvr - ok
16:25:06.0189 3996  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:25:06.0204 3996  scfilter - ok
16:25:06.0298 3996  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
16:25:06.0345 3996  Schedule - ok
16:25:06.0423 3996  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:25:06.0423 3996  SCPolicySvc - ok
16:25:06.0469 3996  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:25:06.0469 3996  SDRSVC - ok
16:25:06.0485 3996  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:25:06.0485 3996  secdrv - ok
16:25:06.0501 3996  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
16:25:06.0501 3996  seclogon - ok
16:25:06.0516 3996  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
16:25:06.0516 3996  SENS - ok
16:25:06.0547 3996  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:25:06.0547 3996  SensrSvc - ok
16:25:06.0563 3996  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
16:25:06.0563 3996  Serenum - ok
16:25:06.0579 3996  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
16:25:06.0579 3996  Serial - ok
16:25:06.0610 3996  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:25:06.0610 3996  sermouse - ok
16:25:06.0641 3996  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:25:06.0641 3996  SessionEnv - ok
16:25:06.0657 3996  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:25:06.0657 3996  sffdisk - ok
16:25:06.0657 3996  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:25:06.0657 3996  sffp_mmc - ok
16:25:06.0672 3996  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:25:06.0672 3996  sffp_sd - ok
16:25:06.0672 3996  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:25:06.0672 3996  sfloppy - ok
16:25:06.0703 3996  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:25:06.0703 3996  SharedAccess - ok
16:25:06.0735 3996  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:25:06.0735 3996  ShellHWDetection - ok
16:25:06.0750 3996  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:25:06.0750 3996  SiSRaid2 - ok
16:25:06.0766 3996  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:25:06.0766 3996  SiSRaid4 - ok
16:25:06.0813 3996  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
16:25:06.0813 3996  SkypeUpdate - ok
16:25:06.0828 3996  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:25:06.0828 3996  Smb - ok
16:25:06.0859 3996  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:25:06.0859 3996  SNMPTRAP - ok
16:25:06.0875 3996  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:25:06.0875 3996  spldr - ok
16:25:06.0922 3996  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
16:25:06.0922 3996  Spooler - ok
16:25:07.0000 3996  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
16:25:07.0078 3996  sppsvc - ok
16:25:07.0093 3996  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:25:07.0109 3996  sppuinotify - ok
16:25:07.0140 3996  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:25:07.0140 3996  srv - ok
16:25:07.0156 3996  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:25:07.0156 3996  srv2 - ok
16:25:07.0171 3996  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:25:07.0171 3996  srvnet - ok
16:25:07.0218 3996  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:25:07.0234 3996  SSDPSRV - ok
16:25:07.0234 3996  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:25:07.0234 3996  SstpSvc - ok
16:25:07.0281 3996  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:25:07.0281 3996  stexstor - ok
16:25:07.0327 3996  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
16:25:07.0327 3996  stisvc - ok
16:25:07.0359 3996  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
16:25:07.0359 3996  storflt - ok
16:25:07.0390 3996  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
16:25:07.0390 3996  StorSvc - ok
16:25:07.0405 3996  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:25:07.0405 3996  storvsc - ok
16:25:07.0421 3996  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:25:07.0421 3996  swenum - ok
16:25:07.0468 3996  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
16:25:07.0468 3996  swprv - ok
16:25:07.0530 3996  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
16:25:07.0561 3996  SysMain - ok
16:25:07.0827 3996  [ 1D7B1AD1AEB2B7CBDFF28DA4D132E07F ] SystemStoreService C:\Program Files (x86)\Freetec\SystemStore\SystemStore.exe
16:25:08.0014 3996  SystemStoreService - ok
16:25:08.0045 3996  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:25:08.0045 3996  TabletInputService - ok
16:25:08.0061 3996  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:25:08.0061 3996  TapiSrv - ok
16:25:08.0076 3996  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
16:25:08.0092 3996  TBS - ok
16:25:08.0170 3996  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:25:08.0201 3996  Tcpip - ok
16:25:08.0248 3996  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:25:08.0263 3996  TCPIP6 - ok
16:25:08.0295 3996  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:25:08.0295 3996  tcpipreg - ok
16:25:08.0310 3996  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:25:08.0310 3996  TDPIPE - ok
16:25:08.0341 3996  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:25:08.0341 3996  TDTCP - ok
16:25:08.0357 3996  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:25:08.0357 3996  tdx - ok
16:25:08.0388 3996  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:25:08.0388 3996  TermDD - ok
16:25:08.0420 3996  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
16:25:08.0420 3996  TermService - ok
16:25:08.0451 3996  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
16:25:08.0451 3996  Themes - ok
16:25:08.0482 3996  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
16:25:08.0482 3996  THREADORDER - ok
16:25:08.0544 3996  [ 0407143F2BBC1A5DD5B518AC0704FCBF ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
16:25:08.0560 3996  TomTomHOMEService - ok
16:25:08.0560 3996  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
16:25:08.0560 3996  TrkWks - ok
16:25:08.0622 3996  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:25:08.0622 3996  TrustedInstaller - ok
16:25:08.0654 3996  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:25:08.0654 3996  tssecsrv - ok
16:25:08.0669 3996  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:25:08.0669 3996  TsUsbFlt - ok
16:25:08.0685 3996  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
16:25:08.0700 3996  TsUsbGD - ok
16:25:08.0732 3996  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:25:08.0732 3996  tunnel - ok
16:25:08.0747 3996  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:25:08.0747 3996  uagp35 - ok
16:25:08.0763 3996  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:25:08.0763 3996  udfs - ok
16:25:08.0794 3996  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:25:08.0810 3996  UI0Detect - ok
16:25:08.0841 3996  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:25:08.0841 3996  uliagpkx - ok
16:25:08.0872 3996  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:25:08.0872 3996  umbus - ok
16:25:08.0888 3996  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
16:25:08.0888 3996  UmPass - ok
16:25:08.0919 3996  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
16:25:08.0919 3996  UmRdpService - ok
16:25:08.0950 3996  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
16:25:08.0966 3996  upnphost - ok
16:25:09.0012 3996  [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
16:25:09.0012 3996  USBAAPL64 - ok
16:25:09.0044 3996  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:25:09.0044 3996  usbccgp - ok
16:25:09.0075 3996  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:25:09.0075 3996  usbcir - ok
16:25:09.0090 3996  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:25:09.0090 3996  usbehci - ok
16:25:09.0137 3996  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:25:09.0137 3996  usbhub - ok
16:25:09.0168 3996  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:25:09.0168 3996  usbohci - ok
16:25:09.0200 3996  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:25:09.0200 3996  usbprint - ok
16:25:09.0231 3996  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:25:09.0231 3996  USBSTOR - ok
16:25:09.0246 3996  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
16:25:09.0246 3996  usbuhci - ok
16:25:09.0278 3996  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
16:25:09.0278 3996  usbvideo - ok
16:25:09.0309 3996  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
16:25:09.0324 3996  UxSms - ok
16:25:09.0340 3996  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
16:25:09.0340 3996  VaultSvc - ok
16:25:09.0371 3996  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:25:09.0371 3996  vdrvroot - ok
16:25:09.0402 3996  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
16:25:09.0418 3996  vds - ok
16:25:09.0434 3996  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:25:09.0434 3996  vga - ok
16:25:09.0449 3996  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:25:09.0449 3996  VgaSave - ok
16:25:09.0449 3996  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:25:09.0449 3996  vhdmp - ok
16:25:09.0465 3996  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:25:09.0465 3996  viaide - ok
16:25:09.0512 3996  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:25:09.0512 3996  vmbus - ok
16:25:09.0527 3996  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
16:25:09.0527 3996  VMBusHID - ok
16:25:09.0543 3996  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:25:09.0543 3996  volmgr - ok
16:25:09.0558 3996  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:25:09.0558 3996  volmgrx - ok
16:25:09.0574 3996  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:25:09.0574 3996  volsnap - ok
16:25:09.0605 3996  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:25:09.0605 3996  vsmraid - ok
16:25:09.0668 3996  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
16:25:09.0714 3996  VSS - ok
16:25:09.0730 3996  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
16:25:09.0730 3996  vwifibus - ok
16:25:09.0761 3996  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:25:09.0761 3996  vwififlt - ok
16:25:09.0792 3996  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
16:25:09.0792 3996  vwifimp - ok
16:25:09.0824 3996  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
16:25:09.0824 3996  W32Time - ok
16:25:09.0855 3996  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:25:09.0855 3996  WacomPen - ok
16:25:09.0886 3996  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:25:09.0886 3996  WANARP - ok
16:25:09.0902 3996  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:25:09.0902 3996  Wanarpv6 - ok
16:25:09.0948 3996  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
16:25:09.0980 3996  wbengine - ok
16:25:10.0011 3996  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:25:10.0011 3996  WbioSrvc - ok
16:25:10.0026 3996  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:25:10.0042 3996  wcncsvc - ok
16:25:10.0058 3996  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:25:10.0058 3996  WcsPlugInService - ok
16:25:10.0089 3996  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
16:25:10.0089 3996  Wd - ok
16:25:10.0120 3996  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:25:10.0120 3996  Wdf01000 - ok
16:25:10.0120 3996  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:25:10.0136 3996  WdiServiceHost - ok
16:25:10.0136 3996  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:25:10.0136 3996  WdiSystemHost - ok
16:25:10.0151 3996  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
16:25:10.0151 3996  WebClient - ok
16:25:10.0182 3996  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:25:10.0182 3996  Wecsvc - ok
16:25:10.0198 3996  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:25:10.0198 3996  wercplsupport - ok
16:25:10.0229 3996  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:25:10.0229 3996  WerSvc - ok
16:25:10.0260 3996  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:25:10.0260 3996  WfpLwf - ok
16:25:10.0276 3996  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:25:10.0276 3996  WIMMount - ok
16:25:10.0276 3996  WinDefend - ok
16:25:10.0292 3996  WinHttpAutoProxySvc - ok
16:25:10.0338 3996  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:25:10.0338 3996  Winmgmt - ok
16:25:10.0401 3996  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
16:25:10.0448 3996  WinRM - ok
16:25:10.0526 3996  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:25:10.0541 3996  Wlansvc - ok
16:25:10.0588 3996  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
16:25:10.0588 3996  WmiAcpi - ok
16:25:10.0619 3996  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:25:10.0619 3996  wmiApSrv - ok
16:25:10.0635 3996  WMPNetworkSvc - ok
16:25:10.0666 3996  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:25:10.0682 3996  WPCSvc - ok
16:25:10.0697 3996  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:25:10.0697 3996  WPDBusEnum - ok
16:25:10.0728 3996  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:25:10.0728 3996  ws2ifsl - ok
16:25:10.0744 3996  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
16:25:10.0744 3996  wscsvc - ok
16:25:10.0744 3996  WSearch - ok
16:25:10.0838 3996  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:25:10.0900 3996  wuauserv - ok
16:25:10.0931 3996  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:25:10.0931 3996  WudfPf - ok
16:25:10.0962 3996  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:25:10.0978 3996  WUDFRd - ok
16:25:10.0994 3996  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:25:10.0994 3996  wudfsvc - ok
16:25:11.0025 3996  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:25:11.0025 3996  WwanSvc - ok
16:25:11.0040 3996  ================ Scan global ===============================
16:25:11.0072 3996  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:25:11.0087 3996  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:25:11.0103 3996  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:25:11.0134 3996  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:25:11.0165 3996  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:25:11.0165 3996  [Global] - ok
16:25:11.0165 3996  ================ Scan MBR ==================================
16:25:11.0181 3996  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:25:11.0524 3996  \Device\Harddisk0\DR0 - ok
16:25:11.0524 3996  ================ Scan VBR ==================================
16:25:11.0524 3996  [ DE4CFC9A6BCEAC4DB23F9F39B2598578 ] \Device\Harddisk0\DR0\Partition1
16:25:11.0524 3996  \Device\Harddisk0\DR0\Partition1 - ok
16:25:11.0555 3996  [ 4877E31D8B4A2E9EC34AA16BAF3F4D5F ] \Device\Harddisk0\DR0\Partition2
16:25:11.0555 3996  \Device\Harddisk0\DR0\Partition2 - ok
16:25:11.0555 3996  ============================================================
16:25:11.0555 3996  Scan finished
16:25:11.0555 3996  ============================================================
16:25:11.0571 0492  Detected object count: 0
16:25:11.0571 0492  Actual detected object count: 0
16:26:45.0562 4856  ============================================================
16:26:45.0562 4856  Scan started
16:26:45.0562 4856  Mode: Manual; SigCheck; TDLFS; 
16:26:45.0562 4856  ============================================================
16:26:46.0108 4856  ================ Scan system memory ========================
16:26:46.0123 4856  System memory - ok
16:26:46.0123 4856  ================ Scan services =============================
16:26:46.0279 4856  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:26:46.0357 4856  1394ohci - ok
16:26:46.0389 4856  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:26:46.0404 4856  ACPI - ok
16:26:46.0420 4856  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:26:46.0435 4856  AcpiPmi - ok
16:26:46.0545 4856  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:26:46.0560 4856  AdobeARMservice - ok
16:26:46.0591 4856  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:26:46.0623 4856  adp94xx - ok
16:26:46.0638 4856  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:26:46.0669 4856  adpahci - ok
16:26:46.0685 4856  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:26:46.0685 4856  adpu320 - ok
16:26:46.0716 4856  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:26:46.0857 4856  AeLookupSvc - ok
16:26:46.0903 4856  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
16:26:46.0935 4856  AFD - ok
16:26:46.0981 4856  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
16:26:46.0997 4856  agp440 - ok
16:26:47.0028 4856  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
16:26:47.0075 4856  ALG - ok
16:26:47.0091 4856  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:26:47.0122 4856  aliide - ok
16:26:47.0137 4856  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
16:26:47.0153 4856  amdide - ok
16:26:47.0169 4856  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:26:47.0200 4856  AmdK8 - ok
16:26:47.0200 4856  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
16:26:47.0231 4856  AmdPPM - ok
16:26:47.0262 4856  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:26:47.0278 4856  amdsata - ok
16:26:47.0293 4856  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:26:47.0309 4856  amdsbs - ok
16:26:47.0325 4856  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:26:47.0340 4856  amdxata - ok
16:26:47.0403 4856  [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
16:26:47.0434 4856  AntiVirSchedulerService - ok
16:26:47.0465 4856  [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
16:26:47.0465 4856  AntiVirService - ok
16:26:47.0512 4856  [ 8655A2983A86D6675135B1FF6892055D ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
16:26:47.0543 4856  ApfiltrService - ok
16:26:47.0559 4856  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
16:26:47.0605 4856  AppID - ok
16:26:47.0621 4856  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:26:47.0652 4856  AppIDSvc - ok
16:26:47.0683 4856  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
16:26:47.0730 4856  Appinfo - ok
16:26:47.0964 4856  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:26:47.0995 4856  Apple Mobile Device - ok
16:26:48.0027 4856  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:26:48.0073 4856  AppMgmt - ok
16:26:48.0089 4856  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
16:26:48.0105 4856  arc - ok
16:26:48.0136 4856  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:26:48.0151 4856  arcsas - ok
16:26:48.0167 4856  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:26:48.0214 4856  AsyncMac - ok
16:26:48.0214 4856  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
16:26:48.0229 4856  atapi - ok
16:26:48.0323 4856  [ 96ABF88241F90FF647E55C934C55C2F1 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
16:26:48.0401 4856  athr - ok
16:26:48.0432 4856  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:26:48.0495 4856  AudioEndpointBuilder - ok
16:26:48.0526 4856  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:26:48.0557 4856  AudioSrv - ok
16:26:48.0573 4856  [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
16:26:48.0588 4856  avgntflt - ok
16:26:48.0635 4856  [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
16:26:48.0651 4856  avipbb - ok
16:26:48.0666 4856  [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
16:26:48.0682 4856  avkmgr - ok
16:26:48.0697 4856  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:26:48.0791 4856  AxInstSV - ok
16:26:48.0822 4856  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:26:48.0885 4856  b06bdrv - ok
16:26:48.0916 4856  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:26:48.0947 4856  b57nd60a - ok
16:26:48.0978 4856  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:26:49.0025 4856  BDESVC - ok
16:26:49.0041 4856  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:26:49.0103 4856  Beep - ok
16:26:49.0119 4856  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
16:26:49.0181 4856  BFE - ok
16:26:49.0212 4856  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
16:26:49.0275 4856  BITS - ok
16:26:49.0306 4856  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:26:49.0321 4856  blbdrive - ok
16:26:49.0384 4856  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:26:49.0415 4856  Bonjour Service - ok
16:26:49.0431 4856  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:26:49.0493 4856  bowser - ok
16:26:49.0509 4856  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
16:26:49.0540 4856  BrFiltLo - ok
16:26:49.0540 4856  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
16:26:49.0555 4856  BrFiltUp - ok
16:26:49.0587 4856  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
16:26:49.0633 4856  Browser - ok
16:26:49.0633 4856  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:26:49.0665 4856  Brserid - ok
16:26:49.0680 4856  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:26:49.0711 4856  BrSerWdm - ok
16:26:49.0711 4856  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:26:49.0743 4856  BrUsbMdm - ok
16:26:49.0758 4856  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:26:49.0789 4856  BrUsbSer - ok
16:26:49.0789 4856  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:26:49.0821 4856  BTHMODEM - ok
16:26:49.0852 4856  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
16:26:49.0930 4856  bthserv - ok
16:26:49.0945 4856  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:26:49.0977 4856  cdfs - ok
16:26:50.0008 4856  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:26:50.0055 4856  cdrom - ok
16:26:50.0086 4856  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
16:26:50.0133 4856  CertPropSvc - ok
16:26:50.0148 4856  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
16:26:50.0179 4856  circlass - ok
16:26:50.0195 4856  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
16:26:50.0226 4856  CLFS - ok
16:26:50.0304 4856  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:26:50.0335 4856  clr_optimization_v2.0.50727_32 - ok
16:26:50.0367 4856  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:26:50.0398 4856  clr_optimization_v2.0.50727_64 - ok
16:26:50.0460 4856  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:26:50.0476 4856  clr_optimization_v4.0.30319_32 - ok
16:26:50.0507 4856  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:26:50.0507 4856  clr_optimization_v4.0.30319_64 - ok
16:26:50.0538 4856  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:26:50.0569 4856  CmBatt - ok
16:26:50.0585 4856  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:26:50.0601 4856  cmdide - ok
16:26:50.0632 4856  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
16:26:50.0663 4856  CNG - ok
16:26:50.0679 4856  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:26:50.0694 4856  Compbatt - ok
16:26:50.0710 4856  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
16:26:50.0741 4856  CompositeBus - ok
16:26:50.0741 4856  COMSysApp - ok
16:26:50.0757 4856  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:26:50.0772 4856  crcdisk - ok
16:26:50.0819 4856  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:26:50.0866 4856  CryptSvc - ok
16:26:50.0881 4856  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
16:26:50.0944 4856  CSC - ok
16:26:50.0975 4856  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
16:26:50.0991 4856  CscService - ok
16:26:51.0037 4856  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:26:51.0100 4856  DcomLaunch - ok
16:26:51.0131 4856  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
16:26:51.0178 4856  defragsvc - ok
16:26:51.0193 4856  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:26:51.0240 4856  DfsC - ok
16:26:51.0271 4856  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:26:51.0318 4856  Dhcp - ok
16:26:51.0349 4856  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
16:26:51.0412 4856  discache - ok
16:26:51.0427 4856  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
16:26:51.0443 4856  Disk - ok
16:26:51.0490 4856  [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
16:26:51.0537 4856  dmvsc - ok
16:26:51.0568 4856  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:26:51.0630 4856  Dnscache - ok
16:26:51.0661 4856  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:26:51.0724 4856  dot3svc - ok
16:26:51.0739 4856  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
16:26:51.0786 4856  DPS - ok
16:26:51.0817 4856  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:26:51.0833 4856  drmkaud - ok
16:26:51.0880 4856  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:26:51.0911 4856  DXGKrnl - ok
16:26:51.0942 4856  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
16:26:52.0020 4856  EapHost - ok
16:26:52.0098 4856  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
16:26:52.0145 4856  ebdrv - ok
16:26:52.0176 4856  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
16:26:52.0223 4856  EFS - ok
16:26:52.0301 4856  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:26:52.0348 4856  ehRecvr - ok
16:26:52.0348 4856  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
16:26:52.0379 4856  ehSched - ok
16:26:52.0426 4856  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:26:52.0441 4856  elxstor - ok
16:26:52.0473 4856  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:26:52.0488 4856  ErrDev - ok
16:26:52.0535 4856  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
16:26:52.0597 4856  EventSystem - ok
16:26:52.0629 4856  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
16:26:52.0675 4856  exfat - ok
16:26:52.0691 4856  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:26:52.0753 4856  fastfat - ok
16:26:52.0785 4856  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
16:26:52.0863 4856  Fax - ok
16:26:52.0909 4856  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
16:26:52.0941 4856  fdc - ok
16:26:53.0019 4856  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
16:26:53.0065 4856  fdPHost - ok
16:26:53.0081 4856  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:26:53.0112 4856  FDResPub - ok
16:26:53.0143 4856  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:26:53.0143 4856  FileInfo - ok
16:26:53.0175 4856  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:26:53.0221 4856  Filetrace - ok
16:26:53.0237 4856  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
16:26:53.0253 4856  flpydisk - ok
16:26:53.0268 4856  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:26:53.0284 4856  FltMgr - ok
16:26:53.0331 4856  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
16:26:53.0377 4856  FontCache - ok
16:26:53.0424 4856  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:26:53.0440 4856  FontCache3.0.0.0 - ok
16:26:53.0627 4856  [ 701C9023D8B5B18C9E08C27D4D1B5617 ] FreemiumSelfUpdateService C:\Program Files (x86)\Freetec\SystemStore\Freemium.SelfUpdate.exe
16:26:53.0736 4856  FreemiumSelfUpdateService ( UnsignedFile.Multi.Generic ) - warning
16:26:53.0736 4856  FreemiumSelfUpdateService - detected UnsignedFile.Multi.Generic (1)
16:26:53.0767 4856  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:26:53.0767 4856  FsDepends - ok
16:26:53.0799 4856  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:26:53.0814 4856  Fs_Rec - ok
16:26:53.0830 4856  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:26:53.0845 4856  fvevol - ok
16:26:53.0861 4856  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:26:53.0877 4856  gagp30kx - ok
16:26:53.0908 4856  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:26:53.0923 4856  GEARAspiWDM - ok
16:26:53.0955 4856  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
16:26:54.0001 4856  gpsvc - ok
16:26:54.0017 4856  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:26:54.0048 4856  hcw85cir - ok
16:26:54.0079 4856  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:26:54.0126 4856  HdAudAddService - ok
16:26:54.0142 4856  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:26:54.0173 4856  HDAudBus - ok
16:26:54.0189 4856  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
16:26:54.0204 4856  HidBatt - ok
16:26:54.0220 4856  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:26:54.0235 4856  HidBth - ok
16:26:54.0235 4856  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:26:54.0251 4856  HidIr - ok
16:26:54.0282 4856  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
16:26:54.0329 4856  hidserv - ok
16:26:54.0345 4856  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:26:54.0360 4856  HidUsb - ok
16:26:54.0391 4856  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:26:54.0438 4856  hkmsvc - ok
16:26:54.0454 4856  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:26:54.0501 4856  HomeGroupListener - ok
16:26:54.0532 4856  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:26:54.0547 4856  HomeGroupProvider - ok
16:26:54.0579 4856  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:26:54.0594 4856  HpSAMD - ok
16:26:54.0625 4856  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:26:54.0672 4856  HTTP - ok
16:26:54.0703 4856  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:26:54.0719 4856  hwpolicy - ok
16:26:54.0735 4856  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
16:26:54.0750 4856  i8042prt - ok
16:26:54.0781 4856  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:26:54.0797 4856  iaStorV - ok
16:26:54.0859 4856  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
16:26:54.0875 4856  IDriverT ( UnsignedFile.Multi.Generic ) - warning
16:26:54.0875 4856  IDriverT - detected UnsignedFile.Multi.Generic (1)
16:26:54.0953 4856  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:26:54.0969 4856  idsvc - ok
16:26:55.0234 4856  [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
16:26:55.0374 4856  igfx - ok
16:26:55.0421 4856  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:26:55.0421 4856  iirsp - ok
16:26:55.0468 4856  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
16:26:55.0530 4856  IKEEXT - ok
16:26:55.0561 4856  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
16:26:55.0561 4856  intelide - ok
16:26:55.0593 4856  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:26:55.0608 4856  intelppm - ok
16:26:55.0639 4856  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:26:55.0686 4856  IPBusEnum - ok
16:26:55.0717 4856  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:26:55.0764 4856  IpFilterDriver - ok
16:26:55.0795 4856  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:26:55.0858 4856  iphlpsvc - ok
16:26:55.0873 4856  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:26:55.0889 4856  IPMIDRV - ok
16:26:55.0905 4856  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT

Lauraaaa · 18.10.2012, 15:30

Code:

ATTFilter

 C:\Windows\system32\drivers\ipnat.sys
16:26:55.0951 4856  IPNAT - ok
16:26:55.0998 4856  [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:26:56.0029 4856  iPod Service - ok
16:26:56.0045 4856  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:26:56.0092 4856  IRENUM - ok
16:26:56.0107 4856  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:26:56.0123 4856  isapnp - ok
16:26:56.0139 4856  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:26:56.0170 4856  iScsiPrt - ok
16:26:56.0170 4856  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:26:56.0185 4856  kbdclass - ok
16:26:56.0201 4856  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
16:26:56.0232 4856  kbdhid - ok
16:26:56.0248 4856  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
16:26:56.0263 4856  KeyIso - ok
16:26:56.0279 4856  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:26:56.0295 4856  KSecDD - ok
16:26:56.0326 4856  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:26:56.0326 4856  KSecPkg - ok
16:26:56.0373 4856  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:26:56.0404 4856  ksthunk - ok
16:26:56.0451 4856  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:26:56.0497 4856  KtmRm - ok
16:26:56.0529 4856  [ 32980B4E711D2EF7128C44DC2CF85706 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
16:26:56.0544 4856  L1C - ok
16:26:56.0575 4856  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:26:56.0622 4856  LanmanServer - ok
16:26:56.0653 4856  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:26:56.0700 4856  LanmanWorkstation - ok
16:26:56.0731 4856  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:26:56.0778 4856  lltdio - ok
16:26:56.0809 4856  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:26:56.0887 4856  lltdsvc - ok
16:26:56.0903 4856  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:26:56.0934 4856  lmhosts - ok
16:26:56.0965 4856  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:26:56.0965 4856  LSI_FC - ok
16:26:57.0012 4856  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:26:57.0012 4856  LSI_SAS - ok
16:26:57.0028 4856  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:26:57.0043 4856  LSI_SAS2 - ok
16:26:57.0059 4856  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:26:57.0075 4856  LSI_SCSI - ok
16:26:57.0090 4856  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
16:26:57.0137 4856  luafv - ok
16:26:57.0153 4856  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:26:57.0184 4856  Mcx2Svc - ok
16:26:57.0199 4856  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:26:57.0215 4856  megasas - ok
16:26:57.0246 4856  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
16:26:57.0262 4856  MegaSR - ok
16:26:57.0309 4856  Microsoft SharePoint Workspace Audit Service - ok
16:26:57.0355 4856  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
16:26:57.0433 4856  MMCSS - ok
16:26:57.0465 4856  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
16:26:57.0527 4856  Modem - ok
16:26:57.0543 4856  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:26:57.0574 4856  monitor - ok
16:26:57.0589 4856  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:26:57.0605 4856  mouclass - ok
16:26:57.0621 4856  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:26:57.0636 4856  mouhid - ok
16:26:57.0652 4856  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:26:57.0667 4856  mountmgr - ok
16:26:57.0714 4856  [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:26:57.0730 4856  MozillaMaintenance - ok
16:26:57.0745 4856  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:26:57.0761 4856  mpio - ok
16:26:57.0777 4856  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:26:57.0808 4856  mpsdrv - ok
16:26:57.0855 4856  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:26:57.0917 4856  MpsSvc - ok
16:26:57.0917 4856  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:26:57.0948 4856  MRxDAV - ok
16:26:57.0995 4856  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:26:58.0042 4856  mrxsmb - ok
16:26:58.0057 4856  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:26:58.0073 4856  mrxsmb10 - ok
16:26:58.0089 4856  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:26:58.0104 4856  mrxsmb20 - ok
16:26:58.0120 4856  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:26:58.0135 4856  msahci - ok
16:26:58.0167 4856  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:26:58.0182 4856  msdsm - ok
16:26:58.0213 4856  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
16:26:58.0245 4856  MSDTC - ok
16:26:58.0276 4856  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:26:58.0307 4856  Msfs - ok
16:26:58.0323 4856  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:26:58.0369 4856  mshidkmdf - ok
16:26:58.0385 4856  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:26:58.0385 4856  msisadrv - ok
16:26:58.0432 4856  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:26:58.0510 4856  MSiSCSI - ok
16:26:58.0510 4856  msiserver - ok
16:26:58.0541 4856  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:26:58.0572 4856  MSKSSRV - ok
16:26:58.0603 4856  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:26:58.0635 4856  MSPCLOCK - ok
16:26:58.0635 4856  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:26:58.0681 4856  MSPQM - ok
16:26:58.0697 4856  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:26:58.0728 4856  MsRPC - ok
16:26:58.0728 4856  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:26:58.0744 4856  mssmbios - ok
16:26:58.0759 4856  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:26:58.0806 4856  MSTEE - ok
16:26:58.0806 4856  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
16:26:58.0822 4856  MTConfig - ok
16:26:58.0837 4856  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
16:26:58.0853 4856  Mup - ok
16:26:58.0884 4856  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
16:26:58.0931 4856  napagent - ok
16:26:58.0947 4856  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:26:58.0978 4856  NativeWifiP - ok
16:26:59.0025 4856  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:26:59.0040 4856  NDIS - ok
16:26:59.0071 4856  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:26:59.0118 4856  NdisCap - ok
16:26:59.0134 4856  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:26:59.0165 4856  NdisTapi - ok
16:26:59.0181 4856  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:26:59.0227 4856  Ndisuio - ok
16:26:59.0243 4856  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:26:59.0290 4856  NdisWan - ok
16:26:59.0305 4856  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:26:59.0352 4856  NDProxy - ok
16:26:59.0368 4856  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:26:59.0415 4856  NetBIOS - ok
16:26:59.0446 4856  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:26:59.0477 4856  NetBT - ok
16:26:59.0493 4856  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
16:26:59.0508 4856  Netlogon - ok
16:26:59.0539 4856  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
16:26:59.0586 4856  Netman - ok
16:26:59.0602 4856  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
16:26:59.0649 4856  netprofm - ok
16:26:59.0680 4856  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:26:59.0680 4856  NetTcpPortSharing - ok
16:26:59.0727 4856  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:26:59.0742 4856  nfrd960 - ok
16:26:59.0773 4856  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:26:59.0820 4856  NlaSvc - ok
16:26:59.0836 4856  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:26:59.0883 4856  Npfs - ok
16:26:59.0883 4856  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
16:26:59.0929 4856  nsi - ok
16:26:59.0961 4856  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:27:00.0023 4856  nsiproxy - ok
16:27:00.0085 4856  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:27:00.0132 4856  Ntfs - ok
16:27:00.0148 4856  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
16:27:00.0195 4856  Null - ok
16:27:00.0210 4856  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:27:00.0226 4856  nvraid - ok
16:27:00.0257 4856  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:27:00.0273 4856  nvstor - ok
16:27:00.0288 4856  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:27:00.0304 4856  nv_agp - ok
16:27:00.0319 4856  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:27:00.0335 4856  ohci1394 - ok
16:27:00.0382 4856  [ 4965B005492CBA7719E82B71E3245495 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:27:00.0397 4856  ose64 - ok
16:27:00.0585 4856  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:27:00.0678 4856  osppsvc - ok
16:27:00.0725 4856  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:27:00.0772 4856  p2pimsvc - ok
16:27:00.0819 4856  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:27:00.0850 4856  p2psvc - ok
16:27:00.0881 4856  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
16:27:00.0897 4856  Parport - ok
16:27:00.0928 4856  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:27:00.0943 4856  partmgr - ok
16:27:01.0021 4856  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:27:01.0084 4856  PcaSvc - ok
16:27:01.0115 4856  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
16:27:01.0131 4856  pci - ok
16:27:01.0146 4856  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
16:27:01.0162 4856  pciide - ok
16:27:01.0177 4856  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:27:01.0193 4856  pcmcia - ok
16:27:01.0209 4856  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:27:01.0224 4856  pcw - ok
16:27:01.0240 4856  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:27:01.0271 4856  PEAUTH - ok
16:27:01.0333 4856  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:27:01.0380 4856  PeerDistSvc - ok
16:27:01.0458 4856  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:27:01.0505 4856  PerfHost - ok
16:27:01.0583 4856  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
16:27:01.0645 4856  pla - ok
16:27:01.0692 4856  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:27:01.0739 4856  PlugPlay - ok
16:27:01.0770 4856  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:27:01.0801 4856  PNRPAutoReg - ok
16:27:01.0833 4856  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:27:01.0848 4856  PNRPsvc - ok
16:27:01.0879 4856  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:27:01.0926 4856  PolicyAgent - ok
16:27:01.0957 4856  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
16:27:02.0004 4856  Power - ok
16:27:02.0020 4856  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:27:02.0067 4856  PptpMiniport - ok
16:27:02.0082 4856  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
16:27:02.0098 4856  Processor - ok
16:27:02.0145 4856  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:27:02.0192 4856  ProfSvc - ok
16:27:02.0207 4856  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:27:02.0223 4856  ProtectedStorage - ok
16:27:02.0238 4856  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:27:02.0301 4856  Psched - ok
16:27:02.0332 4856  [ A6BF0A9B5A30D743623CA0D3BE35DF05 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
16:27:02.0332 4856  PxHlpa64 - ok
16:27:02.0379 4856  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:27:02.0426 4856  ql2300 - ok
16:27:02.0441 4856  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:27:02.0472 4856  ql40xx - ok
16:27:02.0504 4856  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
16:27:02.0535 4856  QWAVE - ok
16:27:02.0550 4856  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:27:02.0582 4856  QWAVEdrv - ok
16:27:02.0582 4856  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:27:02.0628 4856  RasAcd - ok
16:27:02.0660 4856  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:27:02.0691 4856  RasAgileVpn - ok
16:27:02.0722 4856  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
16:27:02.0784 4856  RasAuto - ok
16:27:02.0800 4856  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:27:02.0847 4856  Rasl2tp - ok
16:27:02.0878 4856  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
16:27:02.0909 4856  RasMan - ok
16:27:02.0925 4856  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:27:02.0972 4856  RasPppoe - ok
16:27:02.0987 4856  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:27:03.0050 4856  RasSstp - ok
16:27:03.0081 4856  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:27:03.0128 4856  rdbss - ok
16:27:03.0143 4856  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:27:03.0159 4856  rdpbus - ok
16:27:03.0174 4856  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:27:03.0237 4856  RDPCDD - ok
16:27:03.0268 4856  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:27:03.0299 4856  RDPDR - ok
16:27:03.0315 4856  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:27:03.0377 4856  RDPENCDD - ok
16:27:03.0393 4856  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:27:03.0424 4856  RDPREFMP - ok
16:27:03.0455 4856  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:27:03.0502 4856  RDPWD - ok
16:27:03.0518 4856  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:27:03.0533 4856  rdyboost - ok
16:27:03.0564 4856  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:27:03.0611 4856  RemoteAccess - ok
16:27:03.0642 4856  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:27:03.0689 4856  RemoteRegistry - ok
16:27:03.0720 4856  [ AD42432D22940B4215177BE113E4919C ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
16:27:03.0736 4856  RimUsb - ok
16:27:03.0767 4856  [ C903D49655B4AAE46673F0AAA6BE0F58 ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
16:27:03.0798 4856  RimVSerPort - ok
16:27:03.0830 4856  [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
16:27:03.0892 4856  ROOTMODEM - ok
16:27:03.0954 4856  [ AFD61A7C48A3E15C86A6FADF0B69A2E4 ] Roxio UPnP Renderer 9 C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
16:27:03.0970 4856  Roxio UPnP Renderer 9 - ok
16:27:04.0001 4856  [ EFBB36E2BB02169D26E9980778FC20D3 ] Roxio Upnp Server 9 C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe
16:27:04.0032 4856  Roxio Upnp Server 9 - ok
16:27:04.0126 4856  [ E06224CF971D33A680E852DFA212A8AB ] RoxLiveShare9   C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
16:27:04.0142 4856  RoxLiveShare9 - ok
16:27:04.0188 4856  [ FB68FD9505AB89416D70A0E8A5C49E45 ] RoxMediaDB9     C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
16:27:04.0220 4856  RoxMediaDB9 - ok
16:27:04.0251 4856  [ D6BDB50D2A28FF70CE60B4D995F0143A ] RoxWatch9       C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
16:27:04.0266 4856  RoxWatch9 - ok
16:27:04.0282 4856  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:27:04.0329 4856  RpcEptMapper - ok
16:27:04.0360 4856  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
16:27:04.0376 4856  RpcLocator - ok
16:27:04.0391 4856  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
16:27:04.0438 4856  RpcSs - ok
16:27:04.0454 4856  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:27:04.0485 4856  rspndr - ok
16:27:04.0516 4856  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
16:27:04.0532 4856  s3cap - ok
16:27:04.0563 4856  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
16:27:04.0578 4856  SamSs - ok
16:27:04.0594 4856  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:27:04.0610 4856  sbp2port - ok
16:27:04.0641 4856  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:27:04.0672 4856  SCardSvr - ok
16:27:04.0688 4856  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:27:04.0750 4856  scfilter - ok
16:27:04.0781 4856  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
16:27:04.0828 4856  Schedule - ok
16:27:04.0859 4856  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:27:04.0890 4856  SCPolicySvc - ok
16:27:04.0922 4856  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:27:04.0953 4856  SDRSVC - ok
16:27:04.0984 4856  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:27:05.0031 4856  secdrv - ok
16:27:05.0046 4856  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
16:27:05.0078 4856  seclogon - ok
16:27:05.0093 4856  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
16:27:05.0124 4856  SENS - ok
16:27:05.0156 4856  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:27:05.0202 4856  SensrSvc - ok
16:27:05.0218 4856  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
16:27:05.0249 4856  Serenum - ok
16:27:05.0265 4856  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
16:27:05.0296 4856  Serial - ok
16:27:05.0296 4856  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:27:05.0327 4856  sermouse - ok
16:27:05.0358 4856  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:27:05.0405 4856  SessionEnv - ok
16:27:05.0421 4856  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:27:05.0452 4856  sffdisk - ok
16:27:05.0452 4856  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:27:05.0468 4856  sffp_mmc - ok
16:27:05.0483 4856  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:27:05.0499 4856  sffp_sd - ok
16:27:05.0514 4856  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:27:05.0530 4856  sfloppy - ok
16:27:05.0546 4856  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:27:05.0592 4856  SharedAccess - ok
16:27:05.0639 4856  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:27:05.0717 4856  ShellHWDetection - ok
16:27:05.0733 4856  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:27:05.0748 4856  SiSRaid2 - ok
16:27:05.0764 4856  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:27:05.0780 4856  SiSRaid4 - ok
16:27:05.0795 4856  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
16:27:05.0811 4856  SkypeUpdate - ok
16:27:05.0826 4856  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:27:05.0873 4856  Smb - ok
16:27:05.0904 4856  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:27:05.0920 4856  SNMPTRAP - ok
16:27:05.0951 4856  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:27:05.0951 4856  spldr - ok
16:27:05.0998 4856  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
16:27:06.0014 4856  Spooler - ok
16:27:06.0107 4856  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
16:27:06.0185 4856  sppsvc - ok
16:27:06.0201 4856  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:27:06.0248 4856  sppuinotify - ok
16:27:06.0279 4856  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:27:06.0310 4856  srv - ok
16:27:06.0341 4856  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:27:06.0372 4856  srv2 - ok
16:27:06.0404 4856  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:27:06.0404 4856  srvnet - ok
16:27:06.0450 4856  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:27:06.0482 4856  SSDPSRV - ok
16:27:06.0482 4856  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:27:06.0528 4856  SstpSvc - ok
16:27:06.0560 4856  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:27:06.0575 4856  stexstor - ok
16:27:06.0606 4856  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
16:27:06.0622 4856  stisvc - ok
16:27:06.0653 4856  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
16:27:06.0669 4856  storflt - ok
16:27:06.0684 4856  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
16:27:06.0731 4856  StorSvc - ok
16:27:06.0747 4856  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:27:06.0762 4856  storvsc - ok
16:27:06.0778 4856  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:27:06.0794 4856  swenum - ok
16:27:06.0825 4856  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
16:27:06.0887 4856  swprv - ok
16:27:06.0918 4856  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
16:27:06.0981 4856  SysMain - ok
16:27:07.0199 4856  [ 1D7B1AD1AEB2B7CBDFF28DA4D132E07F ] SystemStoreService C:\Program Files (x86)\Freetec\SystemStore\SystemStore.exe
16:27:07.0340 4856  SystemStoreService ( UnsignedFile.Multi.Generic ) - warning
16:27:07.0340 4856  SystemStoreService - detected UnsignedFile.Multi.Generic (1)
16:27:07.0386 4856  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:27:07.0418 4856  TabletInputService - ok
16:27:07.0418 4856  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:27:07.0464 4856  TapiSrv - ok
16:27:07.0480 4856  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
16:27:07.0511 4856  TBS - ok
16:27:07.0589 4856  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:27:07.0636 4856  Tcpip - ok
16:27:07.0683 4856  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:27:07.0730 4856  TCPIP6 - ok
16:27:07.0761 4856  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:27:07.0823 4856  tcpipreg - ok
16:27:07.0839 4856  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:27:07.0886 4856  TDPIPE - ok
16:27:07.0917 4856  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:27:07.0948 4856  TDTCP - ok
16:27:07.0964 4856  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:27:08.0010 4856  tdx - ok
16:27:08.0026 4856  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:27:08.0042 4856  TermDD - ok
16:27:08.0057 4856  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
16:27:08.0104 4856  TermService - ok
16:27:08.0120 4856  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
16:27:08.0135 4856  Themes - ok
16:27:08.0151 4856  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
16:27:08.0198 4856  THREADORDER - ok
16:27:08.0244 4856  [ 0407143F2BBC1A5DD5B518AC0704FCBF ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
16:27:08.0260 4856  TomTomHOMEService - ok
16:27:08.0291 4856  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
16:27:08.0354 4856  TrkWks - ok
16:27:08.0400 4856  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:27:08.0463 4856  TrustedInstaller - ok
16:27:08.0478 4856  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:27:08.0525 4856  tssecsrv - ok
16:27:08.0541 4856  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:27:08.0556 4856  TsUsbFlt - ok
16:27:08.0572 4856  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
16:27:08.0588 4856  TsUsbGD - ok
16:27:08.0603 4856  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:27:08.0650 4856  tunnel - ok
16:27:08.0666 4856  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:27:08.0681 4856  uagp35 - ok
16:27:08.0681 4856  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:27:08.0744 4856  udfs - ok
16:27:08.0775 4856  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:27:08.0790 4856  UI0Detect - ok
16:27:08.0837 4856  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:27:08.0837 4856  uliagpkx - ok
16:27:08.0853 4856  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:27:08.0884 4856  umbus - ok
16:27:08.0900 4856  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
16:27:08.0931 4856  UmPass - ok
16:27:08.0962 4856  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
16:27:08.0993 4856  UmRdpService - ok
16:27:09.0024 4856  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
16:27:09.0102 4856  upnphost - ok
16:27:09.0134 4856  [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
16:27:09.0165 4856  USBAAPL64 - ok
16:27:09.0196 4856  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:27:09.0243 4856  usbccgp - ok
16:27:09.0290 4856  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:27:09.0305 4856  usbcir - ok
16:27:09.0336 4856  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:27:09.0368 4856  usbehci - ok
16:27:09.0399 4856  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:27:09.0414 4856  usbhub - ok
16:27:09.0446 4856  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:27:09.0461 4856  usbohci - ok
16:27:09.0492 4856  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:27:09.0524 4856  usbprint - ok
16:27:09.0539 4856  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:27:09.0570 4856  USBSTOR - ok
16:27:09.0602 4856  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
16:27:09.0633 4856  usbuhci - ok
16:27:09.0648 4856  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
16:27:09.0664 4856  usbvideo - ok
16:27:09.0695 4856  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
16:27:09.0773 4856  UxSms - ok
16:27:09.0773 4856  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
16:27:09.0789 4856  VaultSvc - ok
16:27:09.0820 4856  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:27:09.0836 4856  vdrvroot - ok
16:27:09.0851 4856  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
16:27:09.0898 4856  vds - ok
16:27:09.0914 4856  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:27:09.0929 4856  vga - ok
16:27:09.0945 4856  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:27:10.0007 4856  VgaSave - ok
16:27:10.0007 4856  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:27:10.0023 4856  vhdmp - ok
16:27:10.0054 4856  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:27:10.0054 4856  viaide - ok
16:27:10.0101 4856  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:27:10.0116 4856  vmbus - ok
16:27:10.0132 4856  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
16:27:10.0163 4856  VMBusHID - ok
16:27:10.0179 4856  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:27:10.0194 4856  volmgr - ok
16:27:10.0210 4856  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:27:10.0241 4856  volmgrx - ok
16:27:10.0241 4856  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:27:10.0257 4856  volsnap - ok
16:27:10.0288 4856  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:27:10.0288 4856  vsmraid - ok
16:27:10.0350 4856  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
16:27:10.0428 4856  VSS - ok
16:27:10.0444 4856  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
16:27:10.0491 4856  vwifibus - ok
16:27:10.0506 4856  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:27:10.0522 4856  vwififlt - ok
16:27:10.0553 4856  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
16:27:10.0569 4856  vwifimp - ok
16:27:10.0600 4856  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
16:27:10.0631 4856  W32Time - ok
16:27:10.0662 4856  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:27:10.0694 4856  WacomPen - ok
16:27:10.0709 4856  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:27:10.0756 4856  WANARP - ok
16:27:10.0772 4856  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:27:10.0803 4856  Wanarpv6 - ok
16:27:10.0865 4856  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
16:27:10.0912 4856  wbengine - ok
16:27:10.0943 4856  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:27:10.0959 4856  WbioSrvc - ok
16:27:10.0974 4856  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:27:11.0006 4856  wcncsvc - ok
16:27:11.0021 4856  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:27:11.0052 4856  WcsPlugInService - ok
16:27:11.0084 4856  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
16:27:11.0099 4856  Wd - ok
16:27:11.0130 4856  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:27:11.0146 4856  Wdf01000 - ok
16:27:11.0162 4856  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:27:11.0240 4856  WdiServiceHost - ok
16:27:11.0255 4856  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:27:11.0271 4856  WdiSystemHost - ok
16:27:11.0302 4856  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
16:27:11.0349 4856  WebClient - ok
16:27:11.0364 4856  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:27:11.0427 4856  Wecsvc - ok
16:27:11.0442 4856  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:27:11.0474 4856  wercplsupport - ok
16:27:11.0505 4856  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:27:11.0536 4856  WerSvc - ok
16:27:11.0552 4856  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:27:11.0583 4856  WfpLwf - ok
16:27:11.0598 4856  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:27:11.0614 4856  WIMMount - ok
16:27:11.0630 4856  WinDefend - ok
16:27:11.0645 4856  WinHttpAutoProxySvc - ok
16:27:11.0692 4856  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:27:11.0739 4856  Winmgmt - ok
16:27:11.0801 4856  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
16:27:11.0864 4856  WinRM - ok
16:27:11.0910 4856  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:27:11.0957 4856  Wlansvc - ok
16:27:11.0973 4856  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
16:27:12.0005 4856  WmiAcpi - ok
16:27:12.0036 4856  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:27:12.0067 4856  wmiApSrv - ok
16:27:12.0083 4856  WMPNetworkSvc - ok
16:27:12.0114 4856  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:27:12.0145 4856  WPCSvc - ok
16:27:12.0177 4856  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:27:12.0192 4856  WPDBusEnum - ok
16:27:12.0223 4856  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:27:12.0255 4856  ws2ifsl - ok
16:27:12.0301 4856  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
16:27:12.0333 4856  wscsvc - ok
16:27:12.0348 4856  WSearch - ok
16:27:12.0457 4856  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:27:12.0504 4856  wuauserv - ok
16:27:12.0535 4856  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:27:12.0582 4856  WudfPf - ok
16:27:12.0598 4856  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:27:12.0645 4856  WUDFRd - ok
16:27:12.0660 4856  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:27:12.0691 4856  wudfsvc - ok
16:27:12.0723 4856  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:27:12.0738 4856  WwanSvc - ok
16:27:12.0754 4856  ================ Scan global ===============================
16:27:12.0785 4856  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:27:12.0816 4856  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:27:12.0832 4856  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:27:12.0847 4856  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:27:12.0879 4856  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:27:12.0894 4856  [Global] - ok
16:27:12.0894 4856  ================ Scan MBR ==================================
16:27:12.0910 4856  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:27:13.0284 4856  \Device\Harddisk0\DR0 - ok
16:27:13.0284 4856  ================ Scan VBR ==================================
16:27:13.0284 4856  [ DE4CFC9A6BCEAC4DB23F9F39B2598578 ] \Device\Harddisk0\DR0\Partition1
16:27:13.0284 4856  \Device\Harddisk0\DR0\Partition1 - ok
16:27:13.0331 4856  [ 4877E31D8B4A2E9EC34AA16BAF3F4D5F ] \Device\Harddisk0\DR0\Partition2
16:27:13.0331 4856  \Device\Harddisk0\DR0\Partition2 - ok
16:27:13.0331 4856  ============================================================
16:27:13.0331 4856  Scan finished
16:27:13.0331 4856  ============================================================
16:27:13.0347 4952  Detected object count: 3
16:27:13.0347 4952  Actual detected object count: 3
16:27:16.0498 4952  FreemiumSelfUpdateService ( UnsignedFile.Multi.Generic ) - skipped by user
16:27:16.0498 4952  FreemiumSelfUpdateService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:27:16.0498 4952  IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
16:27:16.0498 4952  IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:27:16.0513 4952  SystemStoreService ( UnsignedFile.Multi.Generic ) - skipped by user
16:27:16.0513 4952  SystemStoreService ( UnsignedFile.Multi.Generic ) - User select action: Skip

cosinus · 18.10.2012, 16:10

Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix

Lade dir ComboFix hier herunter auf deinen Desktop.

Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.

Starte combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.

Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.

Wichtiger Hinweis:

Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.

Lauraaaa · 18.10.2012, 16:47

Combofix Logfile:

Code:

ATTFilter

ComboFix 12-10-18.03 - Laura 18.10.2012  17:38:57.1.2 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.4058.2817 [GMT 2:00]
ausgeführt von:: c:\users\Laura\Desktop\ComboFix.exe
AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\xp-AntiSpy
c:\program files (x86)\xp-AntiSpy\Uninstall.exe
c:\program files (x86)\xp-AntiSpy\xp-AntiSpy.chm
c:\program files (x86)\xp-AntiSpy\xp-AntiSpy.exe
c:\program files (x86)\xp-AntiSpy\xp-AntiSpy.url
c:\windows\SysWow64\FlashPlayerInstaller.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2012-09-18 bis 2012-10-18  ))))))))))))))))))))))))))))))
.
.
2012-10-18 15:44 . 2012-10-18 15:44	--------	d-----w-	c:\users\Default\AppData\Local\temp
2012-10-17 18:02 . 2012-10-17 18:02	--------	d-----w-	C:\_OTL
2012-10-17 14:05 . 2012-09-24 21:16	95208	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-17 13:44 . 2012-10-17 13:44	916456	----a-w-	c:\windows\system32\deployJava1.dll
2012-10-17 13:44 . 2012-10-17 13:44	289768	----a-w-	c:\windows\system32\javaws.exe
2012-10-17 13:44 . 2012-10-17 13:44	1034216	----a-w-	c:\windows\system32\npDeployJava1.dll
2012-10-17 13:44 . 2012-10-17 13:44	108008	----a-w-	c:\windows\system32\WindowsAccessBridge-64.dll
2012-10-17 13:44 . 2012-10-17 13:44	189416	----a-w-	c:\windows\system32\javaw.exe
2012-10-17 13:44 . 2012-10-17 13:44	188904	----a-w-	c:\windows\system32\java.exe
2012-10-17 13:44 . 2012-10-17 13:44	--------	d-----w-	c:\program files\Java
2012-10-14 15:59 . 2012-10-14 15:59	--------	d-----w-	c:\program files (x86)\ESET
2012-10-13 10:34 . 2012-10-17 12:08	--------	d-----w-	c:\program files (x86)\Emsisoft Anti-Malware
2012-10-13 09:27 . 2012-10-13 09:27	--------	d-----w-	c:\users\Laura\AppData\Roaming\Malwarebytes
2012-10-13 09:27 . 2012-10-13 09:27	--------	d-----w-	c:\programdata\Malwarebytes
2012-10-12 15:28 . 2012-10-12 15:28	98304	--sha-r-	c:\windows\SysWow64\dmviewk.dll
2012-10-10 11:34 . 2012-08-31 18:19	1659760	----a-w-	c:\windows\system32\drivers\ntfs.sys
2012-10-10 11:34 . 2012-08-30 18:03	5559664	----a-w-	c:\windows\system32\ntoskrnl.exe
2012-10-10 11:34 . 2012-08-30 17:12	3968880	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2012-10-10 11:34 . 2012-08-30 17:12	3914096	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2012-10-05 10:15 . 2012-10-05 10:15	--------	d-----w-	c:\program files\Common Files\Canon
2012-10-05 09:56 . 2012-10-05 09:56	--------	d--h--w-	c:\programdata\CanonBJ
2012-10-05 09:56 . 2009-07-14 01:40	83968	----a-w-	c:\windows\system32\Spool\prtprocs\x64\CNBPP3.DLL
2012-09-27 14:32 . 2012-09-27 14:32	--------	d-----w-	c:\programdata\TomTom
2012-09-27 14:32 . 2012-09-27 14:32	--------	d-----w-	c:\users\Laura\AppData\Roaming\TomTom
2012-09-27 14:32 . 2012-09-27 14:32	--------	d-----w-	c:\users\Laura\AppData\Local\TomTom
2012-09-27 14:32 . 2012-09-27 14:32	--------	d-----w-	c:\program files (x86)\TomTom HOME 2
2012-09-27 14:31 . 2012-09-27 14:31	--------	d-----w-	c:\program files (x86)\TomTom International B.V
2012-09-26 13:25 . 2012-09-26 13:26	--------	d-----w-	c:\users\Laura\AppData\Local\Akamai
2012-09-26 11:08 . 2012-08-21 21:01	245760	----a-w-	c:\windows\system32\OxpsConverter.exe
2012-09-22 11:44 . 2012-08-21 11:01	33240	----a-w-	c:\windows\system32\drivers\GEARAspiWDM.sys
2012-09-22 11:43 . 2012-09-22 11:44	--------	d-----w-	c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-09-22 11:43 . 2012-09-22 11:44	--------	d-----w-	c:\program files\iTunes
2012-09-22 11:43 . 2012-09-22 11:44	--------	d-----w-	c:\program files (x86)\iTunes
2012-09-22 11:43 . 2012-09-22 11:43	--------	d-----w-	c:\program files\iPod
2012-09-22 08:36 . 2012-09-22 08:36	--------	d-----w-	c:\program files (x86)\ClipGrab
2012-09-22 08:22 . 2012-09-22 08:22	--------	d-----w-	c:\users\Laura\AppData\Local\TubeBox
2012-09-22 08:17 . 2012-09-22 08:17	--------	d-----w-	c:\users\Laura\AppData\Local\Freetec
2012-09-22 08:16 . 2012-09-22 08:16	--------	d-----w-	c:\program files (x86)\Freetec
2012-09-22 08:16 . 2012-09-22 08:16	--------	d-----w-	c:\programdata\Package Cache
2012-09-19 18:53 . 2012-09-22 08:38	--------	d-----w-	c:\users\Laura\AppData\Roaming\vlc
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-10 13:49 . 2012-08-02 17:53	65309168	----a-w-	c:\windows\system32\MRT.exe
2012-10-09 08:34 . 2012-08-03 09:25	73656	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-09 08:34 . 2012-08-03 09:25	696760	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2012-09-14 13:01 . 2012-09-14 13:01	53248	----a-r-	c:\users\Laura\AppData\Roaming\Microsoft\Installer\{9064317A-39C7-40D5-8CF5-04A254747B88}\ARPPRODUCTICON.exe
2012-09-02 08:41 . 2012-08-03 09:21	821736	----a-w-	c:\windows\SysWow64\npDeployJava1.dll
2012-09-02 08:41 . 2012-08-03 09:21	746984	----a-w-	c:\windows\SysWow64\deployJava1.dll
2012-08-22 18:12 . 2012-09-12 12:55	1913200	----a-w-	c:\windows\system32\drivers\tcpip.sys
2012-08-22 18:12 . 2012-09-12 12:56	950128	----a-w-	c:\windows\system32\drivers\ndis.sys
2012-08-22 18:12 . 2012-09-12 12:55	376688	----a-w-	c:\windows\system32\drivers\netio.sys
2012-08-22 18:12 . 2012-09-12 12:55	288624	----a-w-	c:\windows\system32\drivers\FWPKCLNT.SYS
2012-08-21 11:01 . 2012-08-04 18:22	125872	----a-w-	c:\windows\system32\GEARAspi64.dll
2012-08-21 11:01 . 2012-08-04 18:22	106928	----a-w-	c:\windows\SysWow64\GEARAspi.dll
2012-08-20 17:38 . 2012-10-10 11:33	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2012-08-05 10:31 . 2012-08-05 10:31	45056	----a-r-	c:\users\Laura\AppData\Roaming\Microsoft\Installer\{42929F0F-CE14-47AF-9FC7-FF297A603021}\NewShortcut1_42929F0FCE1447AF9FC7FF297A603021_1.exe
2012-08-02 17:58 . 2012-09-12 12:55	574464	----a-w-	c:\windows\system32\d3d10level9.dll
2012-08-02 17:56 . 2012-08-02 17:56	91648	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2012-08-02 17:56 . 2012-08-02 17:56	89088	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2012-08-02 17:56 . 2012-08-02 17:56	89088	----a-w-	c:\windows\system32\ie4uinit.exe
2012-08-02 17:56 . 2012-08-02 17:56	86528	----a-w-	c:\windows\SysWow64\iesysprep.dll
2012-08-02 17:56 . 2012-08-02 17:56	85504	----a-w-	c:\windows\system32\iesetup.dll
2012-08-02 17:56 . 2012-08-02 17:56	82432	----a-w-	c:\windows\system32\icardie.dll
2012-08-02 17:56 . 2012-08-02 17:56	76800	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2012-08-02 17:56 . 2012-08-02 17:56	76800	----a-w-	c:\windows\system32\tdc.ocx
2012-08-02 17:56 . 2012-08-02 17:56	74752	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-08-02 17:56 . 2012-08-02 17:56	74752	----a-w-	c:\windows\SysWow64\iesetup.dll
2012-08-02 17:56 . 2012-08-02 17:56	65024	----a-w-	c:\windows\system32\pngfilt.dll
2012-08-02 17:56 . 2012-08-02 17:56	63488	----a-w-	c:\windows\SysWow64\tdc.ocx
2012-08-02 17:56 . 2012-08-02 17:56	55296	----a-w-	c:\windows\system32\msfeedsbs.dll
2012-08-02 17:56 . 2012-08-02 17:56	534528	----a-w-	c:\windows\system32\ieapfltr.dll
2012-08-02 17:56 . 2012-08-02 17:56	49664	----a-w-	c:\windows\system32\imgutil.dll
2012-08-02 17:56 . 2012-08-02 17:56	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2012-08-02 17:56 . 2012-08-02 17:56	48640	----a-w-	c:\windows\system32\mshtmler.dll
2012-08-02 17:56 . 2012-08-02 17:56	452608	----a-w-	c:\windows\system32\dxtmsft.dll
2012-08-02 17:56 . 2012-08-02 17:56	448512	----a-w-	c:\windows\system32\html.iec
2012-08-02 17:56 . 2012-08-02 17:56	403248	----a-w-	c:\windows\system32\iedkcs32.dll
2012-08-02 17:56 . 2012-08-02 17:56	39936	----a-w-	c:\windows\system32\iernonce.dll
2012-08-02 17:56 . 2012-08-02 17:56	3695416	----a-w-	c:\windows\system32\ieapfltr.dat
2012-08-02 17:56 . 2012-08-02 17:56	367104	----a-w-	c:\windows\SysWow64\html.iec
2012-08-02 17:56 . 2012-08-02 17:56	35840	----a-w-	c:\windows\SysWow64\imgutil.dll
2012-08-02 17:56 . 2012-08-02 17:56	30720	----a-w-	c:\windows\system32\licmgr10.dll
2012-08-02 17:56 . 2012-08-02 17:56	282112	----a-w-	c:\windows\system32\dxtrans.dll
2012-08-02 17:56 . 2012-08-02 17:56	267776	----a-w-	c:\windows\system32\ieaksie.dll
2012-08-02 17:56 . 2012-08-02 17:56	249344	----a-w-	c:\windows\system32\webcheck.dll
2012-08-02 17:56 . 2012-08-02 17:56	23552	----a-w-	c:\windows\SysWow64\licmgr10.dll
2012-08-02 17:56 . 2012-08-02 17:56	222208	----a-w-	c:\windows\system32\msls31.dll
2012-08-02 17:56 . 2012-08-02 17:56	197120	----a-w-	c:\windows\system32\msrating.dll
2012-08-02 17:56 . 2012-08-02 17:56	165888	----a-w-	c:\windows\system32\iexpress.exe
2012-08-02 17:56 . 2012-08-02 17:56	163840	----a-w-	c:\windows\system32\ieakui.dll
2012-08-02 17:56 . 2012-08-02 17:56	161792	----a-w-	c:\windows\SysWow64\msls31.dll
2012-08-02 17:56 . 2012-08-02 17:56	160256	----a-w-	c:\windows\system32\wextract.exe
2012-08-02 17:56 . 2012-08-02 17:56	160256	----a-w-	c:\windows\system32\ieakeng.dll
2012-08-02 17:56 . 2012-08-02 17:56	152064	----a-w-	c:\windows\SysWow64\wextract.exe
2012-08-02 17:56 . 2012-08-02 17:56	150528	----a-w-	c:\windows\SysWow64\iexpress.exe
2012-08-02 17:56 . 2012-08-02 17:56	149504	----a-w-	c:\windows\system32\occache.dll
2012-08-02 17:56 . 2012-08-02 17:56	145920	----a-w-	c:\windows\system32\iepeers.dll
2012-08-02 17:56 . 2012-08-02 17:56	135168	----a-w-	c:\windows\system32\IEAdvpack.dll
2012-08-02 17:56 . 2012-08-02 17:56	12288	----a-w-	c:\windows\system32\mshta.exe
2012-08-02 17:56 . 2012-08-02 17:56	11776	----a-w-	c:\windows\SysWow64\mshta.exe
2012-08-02 17:56 . 2012-08-02 17:56	114176	----a-w-	c:\windows\system32\admparse.dll
2012-08-02 17:56 . 2012-08-02 17:56	111616	----a-w-	c:\windows\system32\iesysprep.dll
2012-08-02 17:56 . 2012-08-02 17:56	110592	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2012-08-02 17:56 . 2012-08-02 17:56	10752	----a-w-	c:\windows\system32\msfeedssync.exe
2012-08-02 17:56 . 2012-08-02 17:56	103936	----a-w-	c:\windows\system32\inseng.dll
2012-08-02 17:56 . 2012-08-02 17:56	101888	----a-w-	c:\windows\SysWow64\admparse.dll
2012-08-02 16:57 . 2012-09-12 12:55	490496	----a-w-	c:\windows\SysWow64\d3d10level9.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"ISUSPM"="c:\program files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2008-10-24 206112]
"Akamai NetSession Interface"="c:\users\Laura\AppData\Local\Akamai\netsession_win.exe" [2012-08-10 4440896]
"TomTomHOME.exe"="c:\program files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [2012-08-28 247768]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-07-18 348664]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-27 59280]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"DELL Webcam Manager"="c:\program files (x86)\Dell\Dell Webcam Manager\DellWMgr.exe" [2007-07-27 118784]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"BlackBerryAutoUpdate"="c:\program files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe" [2009-07-01 623960]
"RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [2009-04-11 236016]
"RIMBBLaunchAgent.exe"="c:\program files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-11-02 90448]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-09 421776]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R2 SystemStoreService;System Store Service;c:\program files (x86)\Freetec\SystemStore\SystemStore.exe  -displayname System Store Service -servicename:SystemStoreService [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-12-27 51727736]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-10-13 115168]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-07-09 52736]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2007-05-01 52856]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2012-07-18 27760]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-07-18 86224]
S2 FreemiumSelfUpdateService;Freemium Self Update Service;c:\program files (x86)\Freetec\SystemStore\Freemium.SelfUpdate.exe [2012-09-20 5686272]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-08-28 92632]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-06-25 76912]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-11 162328]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-11 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 417304]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2010-06-04 392048]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local;<local>
uSearchAssistant = hxxp://www.google.com
IE: An OneNote s&enden - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files (x86)\ICQ7M\ICQ.exe
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\Laura\AppData\Roaming\Mozilla\Firefox\Profiles\vk64fhu3.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-xp-AntiSpy - c:\program files (x86)\xp-AntiSpy\Uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SystemStoreService]
"ImagePath"="\"c:\program files (x86)\Freetec\SystemStore\SystemStore.exe\"  -displayname \"System Store Service\" -servicename:SystemStoreService"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-10-18  17:46:46
ComboFix-quarantined-files.txt  2012-10-18 15:46
.
Vor Suchlauf: 9 Verzeichnis(se), 422.709.153.792 Bytes frei
Nach Suchlauf: 13 Verzeichnis(se), 422.338.875.392 Bytes frei
.
- - End Of File - - F327E03D3E70199C64E702E5F6D4FAAF

[/CODE]
--- --- ---

cosinus · 18.10.2012, 19:19

Bitte nun Logs mit GMER und OSAM erstellen und posten.
GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen.
Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst.

Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM!

Downloade dir bitte

aswMBR.exe und speichere die Datei auf deinem Desktop.

Starte die aswMBR.exe - (aswMBR.exe Anleitung)
Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten".
Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen )
Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
Klicke auf Scan.
Warte bitte bis Scan finished successfully im DOS-Fenster steht.
Drücke auf Save Log und speichere diese auf dem Desktop.

Poste mir die aswMBR.txt in deiner nächsten Antwort.

Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung

Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).

Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.

Lauraaaa · 18.10.2012, 21:01

GMER Logfile:

Code:

ATTFilter

GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2012-10-18 21:35:48
Windows 6.1.7601 Service Pack 1 
Running: fjoewtd4.exe


---- Registry - GMER 1.0.15 ----

Reg  HKLM\SYSTEM\CurrentControlSet\Control\Session Manager@PendingFileRenameOperations  ???T?????????????U???U????Zisatap.{31E7D6FB-7549-4FA6-A28E-E43EBF28AA5F}-98ED-140DCDDDC211}?????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????0Microsoft-ISATAP-Adapter??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Reg  HKLM\SYSTEM\ControlSet002\Control\Session Manager@PendingFileRenameOperations      ???_?????????????U?U?U?U?U?U?U?U?U?U?U?U?U?_????????????????????????????????????*PNP0600????%SystemRoot%\system32\cmd.exe????????/???????????????????`??????????????Universal Serial Bus controllers????? ???????_???????????_?,??????????.?&???????????????????????CD-ROM Drive????? ???????_???????????_?,??????????/?&????????????????????????????_??????DiskDrive????_??? ???????_???????????_?,????????@?0?&?????????????????????????@??_??????Standard floppy disk controller??????_??? ???????_???????????_?,??????????1?&????????????????????????????_??????Hdc??????_??? ???????_???????????_?,??????????2?&????????????????????????????_??????Keyboard?????_??? ???????_???????????_?,??????????3?&????????????????????????????_??????Mouse????_??? ???????_???????????_?,???????? ?4?&????????????????????????? ??_??????PCMCIA Adapters??????_??? ???????_???????????_?,??????????5?&????????????????????????????_??????SCSIAdapter??????_??? ???????_???????????_?,??????????6?&????????????????????????????_??????System???????_??? ???????_?????

---- EOF - GMER 1.0.15 ----

--- --- ---
OSAM Logfile:

Code:

ATTFilter

Report of OSAM: Autorun Manager v5.0.11926.0
hxxp://www.online-solutions.ru/en/
Saved at 22:00:52 on 18.10.2012

OS: Windows 7  Service Pack 1 (Build 7601), 64-bit
Default Browser: Mozilla Corporation Firefox 16.0.1

Scanner Settings
[x] Rootkits detection (hidden registry)
[x] Rootkits detection (hidden files)
[x] Retrieve files information
[x] Check Microsoft signatures

Filters
[ ] Trusted entries
[ ] Empty entries
[x] Hidden registry entries (rootkit activity)
[x] Exclusively opened files
[x] Not found files
[x] Files without detailed information
[x] Existing files
[ ] Non-startable services
[ ] Non-startable drivers
[x] Active entries
[x] Disabled entries


[Drivers]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"aswMBR" (aswMBR) - ? - C:\Users\Laura\AppData\Local\Temp\aswMBR.sys  (Hidden registry entry, rootkit activity | File not found)
"avgntflt" (avgntflt) - "Avira Operations GmbH & Co. KG" - C:\Windows\System32\DRIVERS\avgntflt.sys
"avipbb" (avipbb) - "Avira Operations GmbH & Co. KG" - C:\Windows\System32\DRIVERS\avipbb.sys
"avkmgr" (avkmgr) - "Avira Operations GmbH & Co. KG" - C:\Windows\System32\DRIVERS\avkmgr.sys
"catchme" (catchme) - ? - C:\ComboFix\catchme.sys  (File not found)
"PxHlpa64" (PxHlpa64) - "Sonic Solutions" - C:\Windows\System32\Drivers\PxHlpa64.sys

[Explorer]
-----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )-----
{F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
-----( HKLM\Software\Classes\Protocols\Filter )-----
{807573E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
-----( HKLM\Software\Classes\Protocols\Handler )-----
{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
{314111c7-a502-11d2-bbca-00c04f8ec294} "ms-help" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks )-----
{B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )-----
{3D60EDA7-9AB4-4DA8-864C-D9B5F2E7281D} "Arbeitsbereiche" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{7CCA70DB-DE7A-4FB7-9B2B-52E2335A3B5A} "Enterprise-Projekte" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office14\NAMEEXT.DLL
{99FD978C-D287-4F50-827F-B2C658EDA8E7} "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} "Groove Explorer Icon Overlay 2 (GFS Stub)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{920E6DB1-9907-4370-B3A0-BAFC03D81399} "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{16F3DD56-1AF5-4347-846D-7C10C4192619} "Groove Explorer Icon Overlay 3 (GFS Folder)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{2916C86E-86A6-43FE-8112-43ABE6BF8DCC} "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{2A541AE1-5BF6-4665-A8A3-CFA9672E4291} "Groove Folder Synchronization" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{6C467336-8281-4E60-8204-430CED96822D} "Groove GFS Context Menu Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{A449600E-1DC6-4232-B948-9BD794D62056} "Groove GFS Stub Icon Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{387E725D-DC16-4D76-B310-2C93ED4752A0} "Groove XML Icon Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\msoshext.dll
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\msoshext.dll
{0006F045-0000-0000-C000-000000000046} "Microsoft Outlook Custom Icon Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office14\OLKFSTUB.DLL
{E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad )-----
{E6FB5E20-DE35-11CF-9C87-00AA005127ED} "WebCheck" - ? -   (File not found | COM-object registry key not found)

[Internet Explorer]
-----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )-----
ITBar7Height "ITBar7Height" - ? -   (File not found | COM-object registry key not found)
ITBar7Height64 "ITBar7Height64" - ? -   (File not found | COM-object registry key not found)
<binary data> "ITBar7Layout" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )-----
{48E73304-E1D6-4330-914C-F5F514E3486C} "An OneNote senden" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
"ICQ7M" - "ICQ, LLC." - C:\Program Files (x86)\ICQ7M\ICQ.exe
{FFFDC614-B694-4AE6-AB38-5D6374584B52} "Verknüpfte &OneNote-Notizen" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )-----
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Oracle Corporation" - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "Java(tm) Plug-In SSV Helper" - "Oracle Corporation" - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
{B4F3A835-0E21-4959-BA22-42B3008E02FF} "Office Document Cache Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

[Logon]
-----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )-----
"Akamai NetSession Interface" - "Akamai Technologies, Inc." - "C:\Users\Laura\AppData\Local\Akamai\netsession_win.exe"
"ISUSPM" - "Macrovision Corporation" - "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
"TomTomHOME.exe" - "TomTom" - "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )-----
"Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"APSDaemon" - "Apple Inc." - "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"avgnt" - "Avira Operations GmbH & Co. KG" - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"BlackBerryAutoUpdate" - "Research In Motion Limited" - C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe /background
"DELL Webcam Manager" - "Creative Technology Ltd." - "C:\Program Files (x86)\Dell\Dell Webcam Manager\DellWMgr.exe" /s
"iTunesHelper" - "Apple Inc." - "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"RIMBBLaunchAgent.exe" - "Research In Motion Limited" - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
"RoxWatchTray" - "Sonic Solutions" - "C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
"SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[Services]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe"  (File not found)
"Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
"Apple Mobile Device" (Apple Mobile Device) - "Apple Inc." - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
"Avira Echtzeit-Scanner" (AntiVirService) - "Avira Operations GmbH & Co. KG" - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
"Avira Planer" (AntiVirSchedulerService) - "Avira Operations GmbH & Co. KG" - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
"Dienst "Bonjour"" (Bonjour Service) - "Apple Inc." - C:\Program Files\Bonjour\mDNSResponder.exe
"Freemium Self Update Service" (FreemiumSelfUpdateService) - ? - C:\Program Files (x86)\Freetec\SystemStore\Freemium.SelfUpdate.exe
"InstallDriver Table Manager" (IDriverT) - "Macrovision Corporation" - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
"iPod-Dienst" (iPod Service) - "Apple Inc." - C:\Program Files\iPod\bin\iPodService.exe
"LiveShare P2P Server 9" (RoxLiveShare9) - "Sonic Solutions" - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
"Microsoft .NET Framework NGEN v4.0.30319_X64" (clr_optimization_v4.0.30319_64) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"Microsoft SharePoint Workspace Audit Service" (Microsoft SharePoint Workspace Audit Service) - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
"Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
"Office 64 Source Engine" (ose64) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
"Office Software Protection Platform" (osppsvc) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
"Roxio Hard Drive Watcher 9" (RoxWatch9) - "Sonic Solutions" - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
"Roxio UPnP Renderer 9" (Roxio UPnP Renderer 9) - "Sonic Solutions" - C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
"Roxio Upnp Server 9" (Roxio Upnp Server 9) - "Sonic Solutions" - C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe
"RoxMediaDB9" (RoxMediaDB9) - "Sonic Solutions" - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
"Skype Updater" (SkypeUpdate) - "Skype Technologies" - C:\Program Files (x86)\Skype\Updater\Updater.exe
"System Store Service" (SystemStoreService) - ? - C:\Program Files (x86)\Freetec\SystemStore\SystemStore.exe
"TomTomHOMEService" (TomTomHOMEService) - "TomTom" - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

[Winsock Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )-----
"mdnsNSP" - "Apple Inc." - C:\Program Files (x86)\Bonjour\mdnsNSP.dll

===[ Logfile end ]=========================================[ Logfile end ]===

--- --- ---

Code:

ATTFilter

 If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru 

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-18 21:54:23
-----------------------------
21:54:23.637    OS Version: Windows x64 6.1.7601 Service Pack 1
21:54:23.637    Number of processors: 2 586 0x170A
21:54:23.637    ComputerName: LAURA-PC  UserName: Laura
21:54:26.449    Initialize success
21:54:33.619    AVAST engine defs: 12101801
21:54:46.402    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
21:54:46.402    Disk 0 Vendor: WDC_WD5000BEVT-75A0RT0 01.01A01 Size: 476940MB BusType: 11
21:54:46.452    Disk 0 MBR read successfully
21:54:46.462    Disk 0 MBR scan
21:54:46.472    Disk 0 Windows 7 default MBR code
21:54:46.512    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS        15000 MB offset 206848
21:54:46.542    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       461838 MB offset 30926848
21:54:46.572    Disk 0 scanning C:\Windows\system32\drivers
21:55:01.677    Service scanning
21:55:49.178    Modules scanning
21:55:49.188    Disk 0 trace - called modules:
21:55:49.198    
21:55:49.208    Scan finished successfully
21:56:12.740    Disk 0 MBR has been saved successfully to "C:\Users\Laura\Desktop\MBR.dat"
21:56:12.740    The log file has been saved successfully to "C:\Users\Laura\Desktop\aswMBR.txt"

cosinus · 18.10.2012, 21:15

Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!

Lauraaaa · 19.10.2012, 15:19

Code:

ATTFilter

 Malwarebytes Anti-Malware  (Test) 1.65.1.1000
www.malwarebytes.org

Datenbank Version: v2012.10.19.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Laura :: LAURA-PC [Administrator]

Schutz: Deaktiviert

19.10.2012 14:23:54
mbam-log-2012-10-19 (14-23-54).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 203927
Laufzeit: 3 Minute(n), 28 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

Code:

ATTFilter

 SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 10/19/2012 at 04:16 PM

Application Version : 5.6.1012

Core Rules Database Version : 9436
Trace Rules Database Version: 7248

Scan type       : Complete Scan
Total Scan Time : 01:36:41

Operating System Information
Windows 7 Professional 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned      : 525
Memory threats detected   : 0
Registry items scanned    : 72909
Registry threats detected : 0
File items scanned        : 118385
File threats detected     : 564

Adware.Tracking Cookie
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\6P2PQ1RQ.txt [ /mediaplex.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\1XSFEV2R.txt [ /specificclick.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\Q80ZLQQT.txt [ /doubleclick.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\01RS2DUE.txt [ /questionmarket.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\8KULPQPP.txt [ /www.zanox-affiliate.de ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\FBQQJ7N7.txt [ /gostats.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\K763GX63.txt [ /im.banner.t-online.de ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\DUPI51UZ.txt [ /adformdsp.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\6IVL7OV6.txt [ /xiti.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\BW37AMS0.txt [ /sex-stories-sexgeschichten.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\MV6XWPZA.txt [ /conrad.122.2o7.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\PWTOB5KB.txt [ /www.sex-stories-sexgeschichten.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\BYOI0UIC.txt [ /ad.yieldmanager.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\JLNRV3WJ.txt [ /www.googleadservices.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\TGJ1XTXF.txt [ /server.adformdsp.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\0K7F5WBY.txt [ /zanox.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\0UBW0BHO.txt [ /www.youporn.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\2ECHQE8G.txt [ /serving-sys.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\WW693B95.txt [ /adtech.de ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\QT0KXT7L.txt [ /eas.apm.emediate.eu ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\Z71NNRQR.txt [ /2o7.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\H5444T42.txt [ /adx.chip.de ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\QXN3P1Z9.txt [ /urbia.wwe-media.de ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\86JAPYBY.txt [ /elitepartner.de ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\WBH2ER78.txt [ /youporn.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\1OEVQC1O.txt [ /counter2.sexmoney.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\RCCUZNLF.txt [ /zedo.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\IJGINF28.txt [ /tradedoubler.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\764RBVUS.txt [ /bdsm-geschichten.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\M5IILH8G.txt [ /zanox-affiliate.de ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\PX6HJ3WR.txt [ /www.erotik-sexgeschichten.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\053KQMKI.txt [ /adultfriendfinder.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\7SY3KH4E.txt [ /tracker.vinsight.de ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\6EKBBHG1.txt [ /www.etracker.de ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\B7U5BNZC.txt [ /www.googleadservices.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\X0WN0IIW.txt [ /rts.pgmediaserve.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\1S57ZU31.txt [ /adform.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\MDNNMHVL.txt [ /fastclick.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\KLNS9LGY.txt [ /inzestsexgeschichten.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\SGEAC7BV.txt [ /ads.crakmedia.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\2WC2E2FD.txt [ /stats-websites.enter-sol.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\KYWY4G0Z.txt [ /partypoker.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\MDVVWBDB.txt [ /www.googleadservices.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\VVO6WUA3.txt [ /track.adform.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\D5GJTURT.txt [ /webmasterplan.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\YWRULLDM.txt [ /ad.360yield.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\IYT4PLRI.txt [ /media.888.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\00PNV9AL.txt [ /ad.zanox.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\NX37C9OU.txt [ /imrworldwide.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\L2DI1FYU.txt [ /www.elitepartner.de ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\6RI3HB7R.txt [ /ad.ad-srv.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\FISI1XI6.txt [ /statcounter.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\90I105HM.txt [ /ads2.zeusclicks.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\7C4U8RTE.txt [ /bs.serving-sys.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\8YBGHHJP.txt [ /apmebf.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\CH7WK0KV.txt [ /ads.creative-serving.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\E1LS4918.txt [ /revsci.net ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\J3N18336.txt [ /invitemedia.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\8P26003M.txt [ /insightexpressai.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\F0Q2UYP6.txt [ /de.youporn.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\TQV813D3.txt [ /de.partypoker.com ]
	C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Cookies\CX5S58CH.txt [ /traffictrack.de ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\9LVHMTP5.txt [ Cookie:laura@mediaplex.com/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\L1L1TAE5.txt [ Cookie:laura@doubleclick.net/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\XDQ8YIQ7.txt [ Cookie:laura@zanox.com/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\1H93XCMY.txt [ Cookie:laura@ad.adnet.de/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\5WHECZWM.txt [ Cookie:laura@tradedoubler.com/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\GUM4P2Y8.txt [ Cookie:laura@www.googleadservices.com/pagead/conversion/1054790283/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\0OHYP61Z.txt [ Cookie:laura@adform.net/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\DXIKSUOC.txt [ Cookie:laura@atdmt.com/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\M8AIVM2K.txt [ Cookie:laura@track.adform.net/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\T1NS6O4S.txt [ Cookie:laura@tracking.quisma.com/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZDHIKT33.txt [ Cookie:laura@imrworldwide.com/cgi-bin ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\6VCHHM1D.txt [ Cookie:laura@adbrite.com/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\VSSNBD8T.txt [ Cookie:laura@apmebf.com/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\4Q3II2VB.txt [ Cookie:laura@invitemedia.com/ ]
	C:\USERS\LAURA\AppData\Roaming\Microsoft\Windows\Cookies\Low\MY28B5VD.txt [ Cookie:laura@traffictrack.de/ ]
	C:\USERS\LAURA\Cookies\6P2PQ1RQ.txt [ Cookie:laura@mediaplex.com/ ]
	C:\USERS\LAURA\Cookies\1XSFEV2R.txt [ Cookie:laura@specificclick.net/ ]
	C:\USERS\LAURA\Cookies\Q80ZLQQT.txt [ Cookie:laura@doubleclick.net/ ]
	C:\USERS\LAURA\Cookies\01RS2DUE.txt [ Cookie:laura@questionmarket.com/ ]
	C:\USERS\LAURA\Cookies\8KULPQPP.txt [ Cookie:laura@www.zanox-affiliate.de/ ]
	C:\USERS\LAURA\Cookies\FBQQJ7N7.txt [ Cookie:laura@gostats.com/ ]
	C:\USERS\LAURA\Cookies\K763GX63.txt [ Cookie:laura@im.banner.t-online.de/ ]
	C:\USERS\LAURA\Cookies\DUPI51UZ.txt [ Cookie:laura@adformdsp.net/ ]
	C:\USERS\LAURA\Cookies\6IVL7OV6.txt [ Cookie:laura@xiti.com/ ]
	C:\USERS\LAURA\Cookies\BW37AMS0.txt [ Cookie:laura@sex-stories-sexgeschichten.com/ ]
	C:\USERS\LAURA\Cookies\PWTOB5KB.txt [ Cookie:laura@www.sex-stories-sexgeschichten.com/ ]
	C:\USERS\LAURA\Cookies\0K7F5WBY.txt [ Cookie:laura@zanox.com/ ]
	C:\USERS\LAURA\Cookies\WW693B95.txt [ Cookie:laura@adtech.de/ ]
	C:\USERS\LAURA\Cookies\QT0KXT7L.txt [ Cookie:laura@eas.apm.emediate.eu/ ]
	C:\USERS\LAURA\Cookies\Z71NNRQR.txt [ Cookie:laura@2o7.net/ ]
	C:\USERS\LAURA\Cookies\H5444T42.txt [ Cookie:laura@adx.chip.de/ ]
	C:\USERS\LAURA\Cookies\86JAPYBY.txt [ Cookie:laura@elitepartner.de/ ]
	C:\USERS\LAURA\Cookies\WBH2ER78.txt [ Cookie:laura@youporn.com/ ]
	C:\USERS\LAURA\Cookies\IJGINF28.txt [ Cookie:laura@tradedoubler.com/ ]
	C:\USERS\LAURA\Cookies\764RBVUS.txt [ Cookie:laura@bdsm-geschichten.net/ ]
	C:\USERS\LAURA\Cookies\M5IILH8G.txt [ Cookie:laura@zanox-affiliate.de/ ]
	C:\USERS\LAURA\Cookies\PX6HJ3WR.txt [ Cookie:laura@www.erotik-sexgeschichten.net/ ]
	C:\USERS\LAURA\Cookies\053KQMKI.txt [ Cookie:laura@adultfriendfinder.com/ ]
	C:\USERS\LAURA\Cookies\7SY3KH4E.txt [ Cookie:laura@tracker.vinsight.de/ ]
	C:\USERS\LAURA\Cookies\6EKBBHG1.txt [ Cookie:laura@www.etracker.de/ ]
	C:\USERS\LAURA\Cookies\B7U5BNZC.txt [ Cookie:laura@www.googleadservices.com/pagead/conversion/999784935/ ]
	C:\USERS\LAURA\Cookies\X0WN0IIW.txt [ Cookie:laura@rts.pgmediaserve.com/ ]
	C:\USERS\LAURA\Cookies\1S57ZU31.txt [ Cookie:laura@adform.net/ ]
	C:\USERS\LAURA\Cookies\MDNNMHVL.txt [ Cookie:laura@fastclick.net/ ]
	C:\USERS\LAURA\Cookies\SGEAC7BV.txt [ Cookie:laura@ads.crakmedia.com/ ]
	C:\USERS\LAURA\Cookies\KYWY4G0Z.txt [ Cookie:laura@partypoker.com/ ]
	C:\USERS\LAURA\Cookies\MDVVWBDB.txt [ Cookie:laura@www.googleadservices.com/pagead/conversion/1071490405/ ]
	C:\USERS\LAURA\Cookies\VVO6WUA3.txt [ Cookie:laura@track.adform.net/ ]
	C:\USERS\LAURA\Cookies\NX37C9OU.txt [ Cookie:laura@imrworldwide.com/cgi-bin ]
	C:\USERS\LAURA\Cookies\L2DI1FYU.txt [ Cookie:laura@www.elitepartner.de/ ]
	C:\USERS\LAURA\Cookies\FISI1XI6.txt [ Cookie:laura@statcounter.com/ ]
	C:\USERS\LAURA\Cookies\90I105HM.txt [ Cookie:laura@ads2.zeusclicks.com/ ]
	C:\USERS\LAURA\Cookies\8YBGHHJP.txt [ Cookie:laura@apmebf.com/ ]
	C:\USERS\LAURA\Cookies\J3N18336.txt [ Cookie:laura@invitemedia.com/ ]
	C:\USERS\LAURA\Cookies\8P26003M.txt [ Cookie:laura@insightexpressai.com/ ]
	C:\USERS\LAURA\Cookies\F0Q2UYP6.txt [ Cookie:laura@de.youporn.com/ ]
	C:\USERS\LAURA\Cookies\TQV813D3.txt [ Cookie:laura@de.partypoker.com/ ]
	C:\USERS\LAURA\Cookies\CX5S58CH.txt [ Cookie:laura@traffictrack.de/ ]
	.xiti.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.amazon-adsystem.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.apmebf.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.atdmt.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.atdmt.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	7.rotator.trafficbee.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.a.revenuemax.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.enoratraffic.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adbrite.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.imrworldwide.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.imrworldwide.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	7.rotator.wigetmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.liveperson.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.specificclick.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.zalando.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	fr.sitestat.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	fr.sitestat.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.eyewonder.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.eyewonder.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.apmebf.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.amazon-adsystem.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.clickfuse.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.kontera.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	stat.dealtime.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adxpose.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.dealtime.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	rtbma.revenuemax.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zanox.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.zanox.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revenuemax.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adnetwork.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.zanox-affiliate.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zanox-affiliate.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.active-tracking.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.active-tracking.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.active-tracking.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.overture.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.overture.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	accounts.google.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	accounts.google.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adinterax.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.realmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.realmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.uk.at.atwola.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.at.atwola.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.at.atwola.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tacoda.at.atwola.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tacoda.at.atwola.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.at.atwola.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tacoda.at.atwola.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tacoda.at.atwola.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tacoda.at.atwola.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ar.atwola.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	7.rotator.trafficbee.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	in.getclicky.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.pro-market.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ads.gamersmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ads.gamersmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	de.sitestat.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.mywebsearch.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.histats.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.histats.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	vidasco.rotator.hadj7.adjuggler.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.histats.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	openx.overadmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ox-d.enveromedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.clicksor.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.clicksor.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.loyaltypartner.122.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.crackberry.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.guj.122.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ads20.wwe-media.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	zbox.zanox.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.urbia.wwe-media.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	media.gan-online.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.deutschepostag.112.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.insightexpressai.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.insightexpressai.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.insightexpressai.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.insightexpressai.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.insightexpressai.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.insightexpressai.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.insightexpressai.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.aunica.112.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ad.adnet.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	adx2.chip.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.estat.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.xm.xtendmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.fastclick.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	media.neodau.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	media.neodau.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	media.neodau.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tradetracker.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.mmotraffic.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.media6degrees.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.e-2dj6whkogmczwlp.stats.esomniture.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.paypal.112.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.aim4media.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	7.rotator.trafficbee.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	7.rotator.wigetmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	count.asnetworks.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.dream-multimedia-tv.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	de.sitestat.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	wstat.wibiya.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	de.sitestat.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.gostats.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adultfriendfinder.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.landing.sexkiste.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.landing.sexkiste.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.blogads.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.blogads.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.crackberry.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.crackberry.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.crackberry.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.crackberry.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.crackberry.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.forums.crackberry.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.forums.crackberry.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	forums.crackberry.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	forums.crackberry.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.de.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.atrack.allposters.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.cewecolor.112.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.clickaround.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.cunda.122.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.adserver01.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.partypoker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adbrite.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.casalemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.yieldmanager.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adinterax.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	clicks.pangora.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	clicks.pangora.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	clicks.pangora.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	partners.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adviva.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.rp.himediads.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.traffictrack.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.unister-adservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	de.sitestat.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.clickdealer.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.gofindtoday.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.gofindtoday.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.estat.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	rts.pgmediaserve.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	rts.pgmediaserve.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	rts.pgmediaserve.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.bwincom.122.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	aa.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.questionmarket.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.questionmarket.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.questionmarket.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tracking.mindshare.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.autoscout24.112.2o7.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	vidasco.rotator.hadj7.adjuggler.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.harrenmedianetwork.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adjuggler.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.lucidmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.doubleclick.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.effiliation.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	tomtailor.dyntracker.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.etracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tradedoubler.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tracking.quisma.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	tracking.affiliaxe.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	edates.traffective-tracking.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	edates.traffective-tracking.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	edates.traffective-tracking.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	edates.traffective-tracking.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.statcounter.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	adx.chip.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	adx.chip.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	adx.chip.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	adx.chip.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	adx.chip.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tracker.vinsight.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.invitemedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	xml.trafficno.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	xml.trafficno.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	xml.trafficno.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	xml.trafficno.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	server.adformdsp.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adformdsp.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adform.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ads.crakmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	statse.webtrendslive.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	7.rotator.wigetmedia.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.pornme.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.pornme.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.pornme.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad3.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.zanox.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.cdn-application.urlaubsexperte.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.cdn-application.urlaubsexperte.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.cdn-application.urlaubsexperte.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	click.primosearch.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	click.primosearch.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.apmebf.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adform.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.geoadserving.coffeetree.info [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.geoadserving.coffeetree.info [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.geoadserving.coffeetree.info [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.geoadserving.coffeetree.info [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.geoadserving.coffeetree.info [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.geoadserving.coffeetree.info [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.geoadserving.coffeetree.info [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.geoadserving.coffeetree.info [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.geoadserving.coffeetree.info [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.geoadserving.coffeetree.info [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.mmotraffic.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ru4.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zedo.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	tracking.affiliaxe.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	tracking.affiliaxe.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	xml.trafficno.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	xml.trafficno.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.tribalfusion.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.smartadserver.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.revsci.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad1.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	track.adform.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.clickfuse.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.mediaplex.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.adserver01.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad4.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.webmasterplan.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ww251.smartadserver.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.clickfuse.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	server.adform.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	server.adform.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adform.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adtech.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.im.banner.t-online.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	eas.apm.emediate.eu [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad2.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.doubleclick.net [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.yieldmanager.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.googleadservices.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.exoclick.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.exoclick.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.ero-advertising.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zanox-affiliate.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.zanox.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	www.zanox-affiliate.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.zanox.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	ad.dyntracker.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.quartermedia.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.quartermedia.de [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	.adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]
	adfarm1.adition.com [ C:\USERS\LAURA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VK64FHU3.DEFAULT\COOKIES.SQLITE ]

17.10.2012, 12:36	#18
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Firefox leitet auf andere Webseiten um Hm hat nichts mehr gefunden Code: ATTFilter PRC - [2012.10.06 18:01:48 \| 003,084,176 \| ---- \| M] (Emsisoft GmbH) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe Bitte Emsioft deinstallieren, du solltest es mit Virenscanner nicht übertreiben! Mach danach bitte wieder ein neues OTL-Log wie o.g. __________________ __________________

18.10.2012, 21:15	#29
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Firefox leitet auf andere Webseiten um Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!! __________________ Logfiles bitte immer in CODE-Tags posten

Firefox leitet auf andere Webseiten um

Plagegeister aller Art und deren Bekämpfung: Firefox leitet auf andere Webseiten um