Ordner auf USB-Sticks werden nur als Verknüpfung dargestellt

cosinus · 07.10.2011, 22:07

Bitte nun dieses Tool von Kaspersky ausführen und das Log posten => http://www.trojaner-board.de/82358-t...entfernen.html

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.

Falls du durch die Infektion auf deine Dokumente/Eigenen Dateien nicht zugreifen kannst, Verknüpfungen auf dem Desktop oder im Startmenü unter "alle Programme" fehlen, bitte unhide ausführen:
Downloade dir bitte unhide.exe und speichere diese Datei auf deinem Desktop.
Starte das Tool und es sollten alle Dateien und Ordner wieder sichtbar sein. ( Könnte eine Weile dauern )

Windows-Vista und Windows-7-User müssen das Tool per Rechtsklick als Administrator ausführen!

löschel · 07.10.2011, 22:25

Hallo Arne,

der Report lautet wie folgt:

Zitat:

23:19:30.0700 3108 TDSS rootkit removing tool 2.6.6.0 Oct 7 2011 12:45:24
23:19:30.0965 3108 ============================================================
23:19:30.0965 3108 Current date / time: 2011/10/07 23:19:30.0965
23:19:30.0965 3108 SystemInfo:
23:19:30.0965 3108
23:19:30.0965 3108 OS Version: 6.1.7601 ServicePack: 1.0
23:19:30.0965 3108 Product type: Workstation
23:19:30.0965 3108 ComputerName: DABUSRECHNER
23:19:30.0965 3108 UserName: Dabu
23:19:30.0965 3108 Windows directory: C:\Windows
23:19:30.0965 3108 System windows directory: C:\Windows
23:19:30.0965 3108 Processor architecture: Intel x86
23:19:30.0965 3108 Number of processors: 2
23:19:30.0965 3108 Page size: 0x1000
23:19:30.0965 3108 Boot type: Normal boot
23:19:30.0965 3108 ============================================================
23:19:32.0198 3108 Initialize success
23:20:54.0550 3284 ============================================================
23:20:54.0566 3284 Scan started
23:20:54.0566 3284 Mode: Manual; SigCheck; TDLFS;
23:20:54.0566 3284 ============================================================
23:20:55.0096 3284 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
23:20:55.0174 3284 1394ohci - ok
23:20:55.0236 3284 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
23:20:55.0252 3284 ACPI - ok
23:20:55.0299 3284 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
23:20:55.0330 3284 AcpiPmi - ok
23:20:55.0392 3284 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
23:20:55.0424 3284 adp94xx - ok
23:20:55.0439 3284 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
23:20:55.0439 3284 adpahci - ok
23:20:55.0455 3284 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
23:20:55.0470 3284 adpu320 - ok
23:20:55.0533 3284 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
23:20:55.0595 3284 AFD - ok
23:20:55.0611 3284 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
23:20:55.0626 3284 agp440 - ok
23:20:55.0642 3284 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
23:20:55.0658 3284 aic78xx - ok
23:20:55.0689 3284 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
23:20:55.0704 3284 aliide - ok
23:20:55.0720 3284 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
23:20:55.0736 3284 amdagp - ok
23:20:55.0751 3284 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
23:20:55.0751 3284 amdide - ok
23:20:55.0767 3284 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
23:20:55.0814 3284 AmdK8 - ok
23:20:55.0829 3284 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
23:20:55.0876 3284 AmdPPM - ok
23:20:55.0923 3284 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
23:20:55.0938 3284 amdsata - ok
23:20:55.0954 3284 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
23:20:55.0985 3284 amdsbs - ok
23:20:56.0001 3284 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
23:20:56.0016 3284 amdxata - ok
23:20:56.0110 3284 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
23:20:56.0157 3284 AppID - ok
23:20:56.0204 3284 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
23:20:56.0219 3284 arc - ok
23:20:56.0235 3284 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
23:20:56.0250 3284 arcsas - ok
23:20:56.0250 3284 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
23:20:56.0297 3284 AsyncMac - ok
23:20:56.0328 3284 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
23:20:56.0328 3284 atapi - ok
23:20:56.0375 3284 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys
23:20:56.0391 3284 avgntflt - ok
23:20:56.0438 3284 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys
23:20:56.0453 3284 avipbb - ok
23:20:56.0484 3284 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
23:20:56.0531 3284 b06bdrv - ok
23:20:56.0547 3284 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
23:20:56.0562 3284 b57nd60x - ok
23:20:56.0578 3284 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
23:20:56.0640 3284 Beep - ok
23:20:56.0672 3284 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
23:20:56.0703 3284 blbdrive - ok
23:20:56.0718 3284 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
23:20:56.0750 3284 bowser - ok
23:20:56.0781 3284 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:20:56.0812 3284 BrFiltLo - ok
23:20:56.0828 3284 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:20:56.0874 3284 BrFiltUp - ok
23:20:56.0906 3284 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
23:20:56.0937 3284 Brserid - ok
23:20:56.0952 3284 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
23:20:56.0984 3284 BrSerWdm - ok
23:20:56.0999 3284 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
23:20:57.0015 3284 BrUsbMdm - ok
23:20:57.0046 3284 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
23:20:57.0077 3284 BrUsbSer - ok
23:20:57.0077 3284 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
23:20:57.0108 3284 BTHMODEM - ok
23:20:57.0155 3284 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
23:20:57.0186 3284 cdfs - ok
23:20:57.0249 3284 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
23:20:57.0280 3284 cdrom - ok
23:20:57.0311 3284 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
23:20:57.0327 3284 circlass - ok
23:20:57.0358 3284 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
23:20:57.0374 3284 CLFS - ok
23:20:57.0405 3284 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
23:20:57.0420 3284 CmBatt - ok
23:20:57.0452 3284 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
23:20:57.0467 3284 cmdide - ok
23:20:57.0483 3284 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
23:20:57.0498 3284 CNG - ok
23:20:57.0514 3284 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
23:20:57.0530 3284 Compbatt - ok
23:20:57.0561 3284 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
23:20:57.0576 3284 CompositeBus - ok
23:20:57.0592 3284 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
23:20:57.0608 3284 crcdisk - ok
23:20:57.0670 3284 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
23:20:57.0701 3284 CSC - ok
23:20:57.0764 3284 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
23:20:57.0795 3284 DfsC - ok
23:20:57.0826 3284 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
23:20:57.0857 3284 discache - ok
23:20:57.0904 3284 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
23:20:57.0920 3284 Disk - ok
23:20:57.0966 3284 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
23:20:57.0998 3284 drmkaud - ok
23:20:58.0060 3284 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
23:20:58.0091 3284 DXGKrnl - ok
23:20:58.0169 3284 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
23:20:58.0278 3284 ebdrv - ok
23:20:58.0325 3284 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
23:20:58.0341 3284 elxstor - ok
23:20:58.0372 3284 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
23:20:58.0403 3284 ErrDev - ok
23:20:58.0434 3284 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
23:20:58.0481 3284 exfat - ok
23:20:58.0497 3284 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
23:20:58.0559 3284 fastfat - ok
23:20:58.0575 3284 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
23:20:58.0606 3284 fdc - ok
23:20:58.0637 3284 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
23:20:58.0637 3284 FileInfo - ok
23:20:58.0653 3284 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
23:20:58.0731 3284 Filetrace - ok
23:20:58.0762 3284 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
23:20:58.0778 3284 flpydisk - ok
23:20:58.0809 3284 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
23:20:58.0809 3284 FltMgr - ok
23:20:58.0840 3284 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
23:20:58.0856 3284 FsDepends - ok
23:20:58.0887 3284 FsUsbExDisk (cbe5f69a5e5b918225f420ba748f3742) C:\Windows\system32\FsUsbExDisk.SYS
23:20:58.0918 3284 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
23:20:58.0918 3284 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
23:20:58.0949 3284 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
23:20:58.0965 3284 Fs_Rec - ok
23:20:59.0012 3284 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
23:20:59.0027 3284 fvevol - ok
23:20:59.0058 3284 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
23:20:59.0074 3284 gagp30kx - ok
23:20:59.0121 3284 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
23:20:59.0136 3284 hcw85cir - ok
23:20:59.0199 3284 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
23:20:59.0230 3284 HdAudAddService - ok
23:20:59.0246 3284 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
23:20:59.0277 3284 HDAudBus - ok
23:20:59.0292 3284 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
23:20:59.0308 3284 HidBatt - ok
23:20:59.0339 3284 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
23:20:59.0355 3284 HidBth - ok
23:20:59.0386 3284 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
23:20:59.0417 3284 HidIr - ok
23:20:59.0464 3284 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
23:20:59.0464 3284 HidUsb - ok
23:20:59.0495 3284 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
23:20:59.0511 3284 HpSAMD - ok
23:20:59.0558 3284 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
23:20:59.0604 3284 HTTP - ok
23:20:59.0651 3284 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
23:20:59.0667 3284 hwpolicy - ok
23:20:59.0714 3284 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
23:20:59.0745 3284 i8042prt - ok
23:20:59.0792 3284 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
23:20:59.0807 3284 iaStorV - ok
23:20:59.0838 3284 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
23:20:59.0854 3284 iirsp - ok
23:20:59.0854 3284 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
23:20:59.0870 3284 intelide - ok
23:20:59.0885 3284 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
23:20:59.0901 3284 intelppm - ok
23:20:59.0916 3284 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:20:59.0948 3284 IpFilterDriver - ok
23:20:59.0979 3284 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
23:21:00.0010 3284 IPMIDRV - ok
23:21:00.0041 3284 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
23:21:00.0072 3284 IPNAT - ok
23:21:00.0119 3284 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
23:21:00.0135 3284 IRENUM - ok
23:21:00.0150 3284 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
23:21:00.0166 3284 isapnp - ok
23:21:00.0182 3284 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
23:21:00.0197 3284 iScsiPrt - ok
23:21:00.0228 3284 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
23:21:00.0228 3284 kbdclass - ok
23:21:00.0244 3284 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
23:21:00.0260 3284 kbdhid - ok
23:21:00.0306 3284 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys
23:21:00.0306 3284 KSecDD - ok
23:21:00.0322 3284 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
23:21:00.0338 3284 KSecPkg - ok
23:21:00.0353 3284 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
23:21:00.0400 3284 lltdio - ok
23:21:00.0431 3284 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
23:21:00.0447 3284 LSI_FC - ok
23:21:00.0462 3284 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
23:21:00.0478 3284 LSI_SAS - ok
23:21:00.0494 3284 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:21:00.0494 3284 LSI_SAS2 - ok
23:21:00.0509 3284 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:21:00.0509 3284 LSI_SCSI - ok
23:21:00.0525 3284 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
23:21:00.0572 3284 luafv - ok
23:21:00.0743 3284 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\Windows\system32\drivers\mbam.sys
23:21:00.0759 3284 MBAMProtector - ok
23:21:00.0790 3284 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
23:21:00.0806 3284 megasas - ok
23:21:00.0821 3284 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
23:21:00.0837 3284 MegaSR - ok
23:21:00.0884 3284 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
23:21:00.0946 3284 Modem - ok
23:21:00.0977 3284 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
23:21:01.0008 3284 monitor - ok
23:21:01.0055 3284 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
23:21:01.0071 3284 mouclass - ok
23:21:01.0102 3284 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
23:21:01.0133 3284 mouhid - ok
23:21:01.0164 3284 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
23:21:01.0164 3284 mountmgr - ok
23:21:01.0211 3284 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
23:21:01.0227 3284 mpio - ok
23:21:01.0227 3284 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
23:21:01.0289 3284 mpsdrv - ok
23:21:01.0336 3284 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
23:21:01.0398 3284 MRxDAV - ok
23:21:01.0445 3284 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:21:01.0476 3284 mrxsmb - ok
23:21:01.0523 3284 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:21:01.0554 3284 mrxsmb10 - ok
23:21:01.0586 3284 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:21:01.0617 3284 mrxsmb20 - ok
23:21:01.0632 3284 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
23:21:01.0648 3284 msahci - ok
23:21:01.0664 3284 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
23:21:01.0679 3284 msdsm - ok
23:21:01.0710 3284 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
23:21:01.0742 3284 Msfs - ok
23:21:01.0757 3284 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
23:21:01.0773 3284 mshidkmdf - ok
23:21:01.0820 3284 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
23:21:01.0820 3284 msisadrv - ok
23:21:01.0851 3284 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
23:21:01.0898 3284 MSKSSRV - ok
23:21:01.0913 3284 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
23:21:01.0944 3284 MSPCLOCK - ok
23:21:01.0960 3284 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
23:21:01.0991 3284 MSPQM - ok
23:21:02.0007 3284 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
23:21:02.0022 3284 MsRPC - ok
23:21:02.0038 3284 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
23:21:02.0038 3284 mssmbios - ok
23:21:02.0054 3284 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
23:21:02.0100 3284 MSTEE - ok
23:21:02.0132 3284 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
23:21:02.0132 3284 MTConfig - ok
23:21:02.0147 3284 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
23:21:02.0163 3284 Mup - ok
23:21:02.0194 3284 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
23:21:02.0210 3284 NativeWifiP - ok
23:21:02.0288 3284 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
23:21:02.0319 3284 NDIS - ok
23:21:02.0334 3284 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
23:21:02.0366 3284 NdisCap - ok
23:21:02.0397 3284 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
23:21:02.0428 3284 NdisTapi - ok
23:21:02.0490 3284 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
23:21:02.0522 3284 Ndisuio - ok
23:21:02.0537 3284 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
23:21:02.0584 3284 NdisWan - ok
23:21:02.0615 3284 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
23:21:02.0646 3284 NDProxy - ok
23:21:02.0693 3284 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
23:21:02.0740 3284 NetBIOS - ok
23:21:02.0771 3284 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
23:21:02.0818 3284 NetBT - ok
23:21:02.0880 3284 netr28u (27ee4b406e2f26f6117a9a420bd4cb65) C:\Windows\system32\DRIVERS\netr28u.sys
23:21:02.0943 3284 netr28u - ok
23:21:02.0974 3284 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
23:21:02.0990 3284 nfrd960 - ok
23:21:03.0021 3284 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
23:21:03.0068 3284 Npfs - ok
23:21:03.0099 3284 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
23:21:03.0146 3284 nsiproxy - ok
23:21:03.0192 3284 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
23:21:03.0239 3284 Ntfs - ok
23:21:03.0255 3284 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
23:21:03.0270 3284 Null - ok
23:21:03.0317 3284 NVENETFD (b5e37e31c053bc9950455a257526514b) C:\Windows\system32\DRIVERS\nvm62x32.sys
23:21:03.0348 3284 NVENETFD - ok
23:21:03.0567 3284 nvlddmkm (e572ebf0a86a76e7cfcaab00648f0f83) C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:21:03.0832 3284 nvlddmkm - ok
23:21:03.0879 3284 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
23:21:03.0894 3284 nvraid - ok
23:21:03.0941 3284 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
23:21:03.0941 3284 nvstor - ok
23:21:03.0972 3284 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
23:21:03.0988 3284 nv_agp - ok
23:21:04.0019 3284 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
23:21:04.0050 3284 ohci1394 - ok
23:21:04.0097 3284 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
23:21:04.0128 3284 Parport - ok
23:21:04.0160 3284 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
23:21:04.0175 3284 partmgr - ok
23:21:04.0191 3284 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
23:21:04.0222 3284 Parvdm - ok
23:21:04.0238 3284 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
23:21:04.0253 3284 pci - ok
23:21:04.0269 3284 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
23:21:04.0284 3284 pciide - ok
23:21:04.0300 3284 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
23:21:04.0316 3284 pcmcia - ok
23:21:04.0331 3284 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
23:21:04.0331 3284 pcw - ok
23:21:04.0362 3284 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
23:21:04.0394 3284 PEAUTH - ok
23:21:04.0472 3284 Ph3xIB32 (8b7aec0aba77de5d2feac1824c15a3fa) C:\Windows\system32\DRIVERS\Ph3xIB32.sys
23:21:04.0550 3284 Ph3xIB32 - ok
23:21:04.0596 3284 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
23:21:04.0659 3284 PptpMiniport - ok
23:21:04.0674 3284 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
23:21:04.0690 3284 Processor - ok
23:21:04.0752 3284 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
23:21:04.0815 3284 Psched - ok
23:21:04.0971 3284 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
23:21:05.0033 3284 ql2300 - ok
23:21:05.0049 3284 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
23:21:05.0064 3284 ql40xx - ok
23:21:05.0080 3284 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
23:21:05.0111 3284 QWAVEdrv - ok
23:21:05.0127 3284 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
23:21:05.0174 3284 RasAcd - ok
23:21:05.0205 3284 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
23:21:05.0252 3284 RasAgileVpn - ok
23:21:05.0283 3284 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:21:05.0330 3284 Rasl2tp - ok
23:21:05.0361 3284 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
23:21:05.0392 3284 RasPppoe - ok
23:21:05.0423 3284 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
23:21:05.0454 3284 RasSstp - ok
23:21:05.0501 3284 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
23:21:05.0532 3284 rdbss - ok
23:21:05.0564 3284 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
23:21:05.0579 3284 rdpbus - ok
23:21:05.0626 3284 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:21:05.0657 3284 RDPCDD - ok
23:21:05.0688 3284 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
23:21:05.0720 3284 RDPDR - ok
23:21:05.0766 3284 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
23:21:05.0813 3284 RDPENCDD - ok
23:21:05.0844 3284 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
23:21:05.0876 3284 RDPREFMP - ok
23:21:05.0922 3284 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
23:21:05.0938 3284 RDPWD - ok
23:21:05.0969 3284 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
23:21:05.0985 3284 rdyboost - ok
23:21:06.0000 3284 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
23:21:06.0032 3284 rspndr - ok
23:21:06.0063 3284 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
23:21:06.0078 3284 s3cap - ok
23:21:06.0125 3284 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
23:21:06.0141 3284 sbp2port - ok
23:21:06.0156 3284 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
23:21:06.0188 3284 scfilter - ok
23:21:06.0234 3284 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
23:21:06.0266 3284 secdrv - ok
23:21:06.0297 3284 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
23:21:06.0328 3284 Serenum - ok
23:21:06.0359 3284 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
23:21:06.0406 3284 Serial - ok
23:21:06.0437 3284 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
23:21:06.0468 3284 sermouse - ok
23:21:06.0515 3284 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
23:21:06.0546 3284 sffdisk - ok
23:21:06.0562 3284 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
23:21:06.0578 3284 sffp_mmc - ok
23:21:06.0593 3284 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
23:21:06.0624 3284 sffp_sd - ok
23:21:06.0640 3284 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
23:21:06.0656 3284 sfloppy - ok
23:21:06.0687 3284 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
23:21:06.0702 3284 sisagp - ok
23:21:06.0718 3284 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:21:06.0718 3284 SiSRaid2 - ok
23:21:06.0734 3284 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
23:21:06.0749 3284 SiSRaid4 - ok
23:21:06.0765 3284 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
23:21:06.0796 3284 Smb - ok
23:21:06.0827 3284 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
23:21:06.0843 3284 spldr - ok
23:21:06.0890 3284 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
23:21:06.0921 3284 srv - ok
23:21:06.0968 3284 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
23:21:06.0999 3284 srv2 - ok
23:21:07.0030 3284 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
23:21:07.0061 3284 srvnet - ok
23:21:07.0124 3284 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
23:21:07.0139 3284 ssmdrv - ok
23:21:07.0186 3284 ss_bus (54946449a0eb74915a4bb34f7ee51a5a) C:\Windows\system32\DRIVERS\ss_bus.sys
23:21:07.0202 3284 ss_bus - ok
23:21:07.0202 3284 ss_mdfl (4450bc0b2e9d7d9b90e3c3de4ea00a78) C:\Windows\system32\DRIVERS\ss_mdfl.sys
23:21:07.0217 3284 ss_mdfl - ok
23:21:07.0233 3284 ss_mdm (30b8d0dd01ead1243f329caf7d7d1517) C:\Windows\system32\DRIVERS\ss_mdm.sys
23:21:07.0233 3284 ss_mdm - ok
23:21:07.0264 3284 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
23:21:07.0264 3284 stexstor - ok
23:21:07.0311 3284 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
23:21:07.0326 3284 storflt - ok
23:21:07.0342 3284 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
23:21:07.0358 3284 storvsc - ok
23:21:07.0373 3284 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
23:21:07.0389 3284 swenum - ok
23:21:07.0451 3284 Tcpip (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\drivers\tcpip.sys
23:21:07.0514 3284 Tcpip - ok
23:21:07.0545 3284 TCPIP6 (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\DRIVERS\tcpip.sys
23:21:07.0576 3284 TCPIP6 - ok
23:21:07.0607 3284 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
23:21:07.0654 3284 tcpipreg - ok
23:21:07.0685 3284 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
23:21:07.0732 3284 TDPIPE - ok
23:21:07.0748 3284 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
23:21:07.0779 3284 TDTCP - ok
23:21:07.0810 3284 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
23:21:07.0857 3284 tdx - ok
23:21:07.0888 3284 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
23:21:07.0904 3284 TermDD - ok
23:21:07.0950 3284 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:21:07.0982 3284 tssecsrv - ok
23:21:08.0044 3284 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
23:21:08.0091 3284 TsUsbFlt - ok
23:21:08.0122 3284 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
23:21:08.0169 3284 tunnel - ok
23:21:08.0200 3284 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
23:21:08.0216 3284 uagp35 - ok
23:21:08.0247 3284 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
23:21:08.0262 3284 udfs - ok
23:21:08.0309 3284 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
23:21:08.0325 3284 uliagpkx - ok
23:21:08.0372 3284 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
23:21:08.0387 3284 umbus - ok
23:21:08.0418 3284 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
23:21:08.0434 3284 UmPass - ok
23:21:08.0496 3284 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys
23:21:08.0528 3284 usbaudio - ok
23:21:08.0543 3284 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
23:21:08.0590 3284 usbccgp - ok
23:21:08.0621 3284 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
23:21:08.0652 3284 usbcir - ok
23:21:08.0668 3284 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
23:21:08.0699 3284 usbehci - ok
23:21:08.0730 3284 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
23:21:08.0762 3284 usbhub - ok
23:21:08.0777 3284 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
23:21:08.0808 3284 usbohci - ok
23:21:08.0840 3284 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
23:21:08.0871 3284 usbprint - ok
23:21:08.0933 3284 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
23:21:08.0964 3284 usbscan - ok
23:21:08.0996 3284 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\drivers\USBSTOR.SYS
23:21:09.0027 3284 USBSTOR - ok
23:21:09.0058 3284 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
23:21:09.0089 3284 usbuhci - ok
23:21:09.0120 3284 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
23:21:09.0136 3284 vdrvroot - ok
23:21:09.0152 3284 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
23:21:09.0167 3284 vga - ok
23:21:09.0183 3284 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
23:21:09.0214 3284 VgaSave - ok
23:21:09.0214 3284 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
23:21:09.0230 3284 vhdmp - ok
23:21:09.0261 3284 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
23:21:09.0261 3284 viaagp - ok
23:21:09.0276 3284 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
23:21:09.0308 3284 ViaC7 - ok
23:21:09.0339 3284 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
23:21:09.0339 3284 viaide - ok
23:21:09.0354 3284 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
23:21:09.0370 3284 vmbus - ok
23:21:09.0386 3284 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
23:21:09.0417 3284 VMBusHID - ok
23:21:09.0417 3284 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
23:21:09.0432 3284 volmgr - ok
23:21:09.0464 3284 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
23:21:09.0479 3284 volmgrx - ok
23:21:09.0495 3284 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
23:21:09.0510 3284 volsnap - ok
23:21:09.0542 3284 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
23:21:09.0557 3284 vsmraid - ok
23:21:09.0573 3284 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
23:21:09.0604 3284 vwifibus - ok
23:21:09.0620 3284 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
23:21:09.0635 3284 vwififlt - ok
23:21:09.0651 3284 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
23:21:09.0666 3284 WacomPen - ok
23:21:09.0713 3284 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
23:21:09.0760 3284 WANARP - ok
23:21:09.0760 3284 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
23:21:09.0791 3284 Wanarpv6 - ok
23:21:09.0822 3284 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
23:21:09.0822 3284 Wd - ok
23:21:09.0854 3284 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
23:21:09.0869 3284 Wdf01000 - ok
23:21:09.0916 3284 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
23:21:09.0963 3284 WfpLwf - ok
23:21:09.0963 3284 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
23:21:09.0978 3284 WIMMount - ok
23:21:10.0025 3284 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
23:21:10.0041 3284 WmiAcpi - ok
23:21:10.0072 3284 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
23:21:10.0103 3284 ws2ifsl - ok
23:21:10.0150 3284 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
23:21:10.0181 3284 WudfPf - ok
23:21:10.0228 3284 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:21:10.0259 3284 WUDFRd - ok
23:21:10.0290 3284 XUIF (6bbf7a3bab8ffdccf82057fa2aae2b7b) C:\Windows\system32\Drivers\x10ufx2.sys
23:21:10.0290 3284 XUIF - ok
23:21:10.0306 3284 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
23:21:10.0353 3284 \Device\Harddisk0\DR0 - ok
23:21:10.0368 3284 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
23:21:11.0024 3284 \Device\Harddisk1\DR1 - ok
23:21:11.0039 3284 MBR (0x1B8) (65e858a8a0293be11a920b0bc99d695e) \Device\Harddisk2\DR2
23:21:12.0053 3284 \Device\Harddisk2\DR2 - ok
23:21:12.0053 3284 Boot (0x1200) (c741b7f6afc31868e3a6fc3c1a4eb2a6) \Device\Harddisk0\DR0\Partition0
23:21:12.0053 3284 \Device\Harddisk0\DR0\Partition0 - ok
23:21:12.0084 3284 Boot (0x1200) (7ed8ffd53bf4afa8f8fd72d62bdca3ac) \Device\Harddisk0\DR0\Partition1
23:21:12.0084 3284 \Device\Harddisk0\DR0\Partition1 - ok
23:21:12.0100 3284 Boot (0x1200) (fcd1496769d4a78dcb02e917c5b71e34) \Device\Harddisk1\DR1\Partition0
23:21:12.0100 3284 \Device\Harddisk1\DR1\Partition0 - ok
23:21:12.0100 3284 Boot (0x1200) (390872a3132a3e61d713214e71c2e89f) \Device\Harddisk2\DR2\Partition0
23:21:12.0100 3284 \Device\Harddisk2\DR2\Partition0 - ok
23:21:12.0100 3284 ============================================================
23:21:12.0100 3284 Scan finished
23:21:12.0100 3284 ============================================================
23:21:12.0116 0200 Detected object count: 1
23:21:12.0116 0200 Actual detected object count: 1
23:23:18.0694 0200 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
23:23:18.0694 0200 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip

Bei dem einen gefundenen Thread war ich mir nicht sicher, ob ich die Einstellung bei Skip belassen soll, oder ob ich auf Quarantäne bzw. Löschen klicken soll. Ich hoffe, dass war nicht entscheidend.

Gruß Löschel

cosinus · 07.10.2011, 22:28

Das ist ein Fehalarm, kannst so lassen, skip war richtig.

Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix

Lade dir ComboFix hier herunter auf deinen Desktop.

Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.

Starte cofi.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.

Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.

Wichtiger Hinweis:

Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.

löschel · 07.10.2011, 22:50

Hallo Arne,

die Datei lautet:
Combofix Logfile:

Code:

ATTFilter

ComboFix 11-10-07.04 - Dabu 07.10.2011  23:38:54.1.2 - x86
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.2047.1216 [GMT 2:00]
ausgeführt von:: c:\users\Dabu\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Dabu\agsetup183se.exe
c:\users\Dabu\AppData\Roaming\0D34.7D2
c:\users\Dabu\pci_filerecovery.exe
c:\windows\IsUn0407.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2011-09-07 bis 2011-10-07  ))))))))))))))))))))))))))))))
.
.
2011-10-07 21:43 . 2011-10-07 21:43	--------	d-----w-	c:\users\Default\AppData\Local\temp
2011-10-07 20:42 . 2011-10-07 20:42	--------	d-----w-	C:\_OTL
2011-10-07 01:02 . 2011-10-07 01:02	--------	d-----w-	c:\users\Default\AppData\Local\Microsoft Help
2011-09-29 11:04 . 2011-10-01 18:15	--------	d-----w-	c:\users\Dabu\AppData\Roaming\Skype
2011-09-29 11:04 . 2011-09-29 11:04	--------	d-----r-	c:\program files\Skype
2011-09-29 11:04 . 2011-09-29 11:04	--------	d-----w-	c:\programdata\Skype
2011-09-27 06:12 . 2011-07-22 02:44	2382848	----a-w-	c:\windows\system32\mshtml.tlb
2011-09-27 06:12 . 2011-07-22 03:00	141104	----a-w-	c:\program files\Internet Explorer\sqmapi.dll
2011-09-27 06:11 . 2011-07-22 02:54	1797632	----a-w-	c:\windows\system32\jscript9.dll
2011-09-27 06:11 . 2011-07-22 02:46	194048	----a-w-	c:\program files\Internet Explorer\IEShims.dll
2011-09-27 06:11 . 2011-07-22 02:48	1126912	----a-w-	c:\windows\system32\wininet.dll
2011-09-25 21:22 . 2011-09-25 21:22	--------	d-----w-	c:\windows\system32\wbem\en-US
2011-09-25 18:48 . 2011-09-25 18:48	--------	d-----w-	c:\program files\ESET
2011-09-25 18:13 . 2011-09-25 18:13	--------	d-----w-	c:\users\Dabu\AppData\Roaming\Malwarebytes
2011-09-25 18:13 . 2011-09-25 18:13	--------	d-----w-	c:\programdata\Malwarebytes
2011-09-25 18:13 . 2011-09-25 18:13	--------	d-----w-	c:\program files\Malwarebytes' Anti-Malware
2011-09-25 18:13 . 2011-08-31 15:00	22216	----a-w-	c:\windows\system32\drivers\mbam.sys
2011-09-25 07:46 . 2011-09-25 07:46	--------	d-----w-	c:\users\Dabu\AppData\Roaming\Avira
2011-09-25 07:37 . 2011-07-21 10:11	138192	----a-w-	c:\windows\system32\drivers\avipbb.sys
2011-09-25 07:37 . 2011-07-21 10:11	66616	----a-w-	c:\windows\system32\drivers\avgntflt.sys
2011-09-25 07:37 . 2011-09-25 07:37	--------	d-----w-	c:\programdata\Avira
2011-09-25 07:37 . 2011-09-25 07:37	--------	d-----w-	c:\program files\Avira
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-07 19:28 . 2010-10-31 11:08	1092400	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-08-19 18:32 . 2011-05-22 09:57	404640	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2011-08-02 08:22 . 2009-07-14 02:05	152576	----a-w-	c:\windows\system32\msclmd.dll
2011-07-29 11:37 . 2011-07-29 11:37	2451576	----a-w-	c:\users\Dabu\rcsetup140.exe
2011-07-29 10:50 . 2011-07-29 10:50	3862976	----a-w-	c:\users\Dabu\undeleteplus_setup.exe
2011-07-16 04:27 . 2011-08-12 04:40	290816	----a-w-	c:\windows\system32\KernelBase.dll
2011-07-16 04:15 . 2011-08-12 04:40	4096	---ha-w-	c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	4096	---ha-w-	c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	5120	---ha-w-	c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	4608	---ha-w-	c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	4096	---ha-w-	c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	4096	---ha-w-	c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	4096	---ha-w-	c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-07-16 04:15 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-07-16 02:17 . 2011-08-12 04:40	6144	---ha-w-	c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:17 . 2011-08-12 04:40	4608	---ha-w-	c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:17 . 2011-08-12 04:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:17 . 2011-08-12 04:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-04-14 16:40 . 2011-05-10 15:59	142296	----a-w-	c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoftAuto.exe"="c:\program files\Creative\Software Update 3\SoftAuto.exe" [2008-08-13 405504]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe" [2007-12-13 103720]
"dradio-RecorderTimer"="c:\program files\dradio-Recorder\phonostarTimer.exe" [2011-06-20 40960]
"AutoStartNPSAgent"="c:\program files\Samsung\Samsung New PC Studio\NPSAgent.exe" [2010-07-04 95576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-06-08 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-12-03 2213160]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-04-21 281768]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.exe.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2010-10-12 110592]
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2010-10-12 110592]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-12-18 136176]
R3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-12-18 136176]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AntiVirSchedulerService;Avira AntiVir Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-04-21 136360]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2010-07-04 238952]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2010-06-14 36608]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216]
S3 netr28u;RT2870-USB-Drahtlos-LAN-Kartentreiber für Vista;c:\windows\system32\DRIVERS\netr28u.sys [2009-07-13 657408]
S3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB32.sys [2009-07-13 1311232]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 73005179
*Deregistered* - 73005179
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12	REG_MULTI_SZ   	Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
.
Inhalt des "geplante Tasks" Ordners
.
2011-10-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-18 19:28]
.
2011-10-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-18 19:28]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = 
IE: An OneNote s&enden - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 255.0.0.0
FF - ProfilePath - c:\users\Dabu\AppData\Roaming\Mozilla\Firefox\Profiles\ixbr23yw.default\
FF - user.js: general.useragent.extra.zencast - Creative ZENcast v2.01.01
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-Adobe Photoshop 6.0 - c:\windows\ISUN0407.EXE
AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-05_Sloan - c:\program files\Samsung\USB Drivers\05_Sloan\Uninstall.exe
AddRemove-06_Spencer - c:\program files\Samsung\USB Drivers\06_Spencer\Uninstall.exe
AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-08_EMPChipset - c:\program files\Samsung\USB Drivers\08_EMPChipset\Uninstall.exe
AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-17_EMP_Chipset2 - c:\program files\Samsung\USB Drivers\17_EMP_Chipset2\Uninstall.exe
AddRemove-18_Zinia_Serial_Driver - c:\program files\Samsung\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe
AddRemove-19_VIA_driver - c:\program files\Samsung\USB Drivers\19_VIA_driver\Uninstall.exe
AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-21_Searsburg - c:\program files\Samsung\USB Drivers\21_Searsburg\Uninstall.exe
AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2011-10-07  23:45:25
ComboFix-quarantined-files.txt  2011-10-07 21:45
.
Vor Suchlauf: 10 Verzeichnis(se), 320.173.625.344 Bytes frei
Nach Suchlauf: 16 Verzeichnis(se), 320.078.786.560 Bytes frei
.
- - End Of File - - 436C3B95D459B4CBD28F07EFA3C8B2A8

--- --- ---

Beim Durchlauf ging es glatt, ich hab natürlich gleich mal geschaut, ob die Ordner auf den Sticks schon wieder da sind, aber so weit ist es offenbar noch nicht. Das wäre natürlich stark, wenn wir das heute noch schaffen würden.

Nochmals Danke und Gruß Löschel

cosinus · 07.10.2011, 23:44

Ok. Bitte nun Logs mit GMER und OSAM erstellen und posten.
GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen.
Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst.

Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM!

Downloade dir bitte

aswMBR.exe und speichere die Datei auf deinem Desktop.

Starte die aswMBR.exe - (aswMBR.exe Anleitung)
Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten".
Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen )
Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
Klicke auf Scan.
Warte bitte bis Scan finished successfully im DOS-Fenster steht.
Drücke auf Save Log und speichere diese auf dem Desktop.

Poste mir die aswMBR.txt in deiner nächsten Antwort.

Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung

Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).

löschel · 08.10.2011, 02:07

Hallo Arne, mit einer Antwort hatte ich zu dieser späten Stunde nicht mehr gerechnet, Wahnsinn.

Die logs lauten:
GMER Logfile:

Code:

ATTFilter

GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2011-10-08 01:17:22
Windows 6.1.7601 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-4 WDC_WD5000AACS-00ZUB0 rev.01.01B01
Running: mlqynm12.exe; Driver: C:\Users\Dabu\AppData\Local\Temp\fxdoapoc.sys


---- System - GMER 1.0.15 ----

SSDT            8F44877E                                                                                           ZwCreateSection
SSDT            8F448783                                                                                           ZwSetContextThread
SSDT            8F44871F                                                                                           ZwTerminateProcess

---- Kernel code sections - GMER 1.0.15 ----

.text           ntkrnlpa.exe!ZwSaveKey + 13D1                                                                      82A8A349 1 Byte  [06]
.text           ntkrnlpa.exe!KiDispatchInterrupt + 5A2                                                             82AC3D52 19 Bytes  [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text           ntkrnlpa.exe!KeRemoveQueueEx + 11F7                                                                82ACAEAC 4 Bytes  [7E, 87, 44, 8F]
.text           ntkrnlpa.exe!KeRemoveQueueEx + 1597                                                                82ACB24C 4 Bytes  [83, 87, 44, 8F]
.text           ntkrnlpa.exe!KeRemoveQueueEx + 166F                                                                82ACB324 4 Bytes  [1F, 87, 44, 8F]

---- Devices - GMER 1.0.15 ----

Device          \Driver\ACPI_HAL \Device\00000049                                                                  halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)

AttachedDevice  \Driver\volmgr \Device\HarddiskVolume1                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume2                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume3                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume4                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume5                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume6                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \FileSystem\fastfat \Fat                                                                           fltmgr.sys (Microsoft Dateisystem-Filter-Manager/Microsoft Corporation)

---- Registry - GMER 1.0.15 ----

Reg             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Deskjet D2300 series@ChangeID  894930

---- EOF - GMER 1.0.15 ----

--- --- ---

OSAM Logfile:

Code:

ATTFilter

Report of OSAM: Autorun Manager v5.0.11926.0
hxxp://www.online-solutions.ru/en/
Saved at 01:23:30 on 08.10.2011

OS: Windows 7  Service Pack 1 (Build 7601), 32-bit
Default Browser: Mozilla Corporation Firefox 4.0.1

Scanner Settings
[x] Rootkits detection (hidden registry)
[x] Rootkits detection (hidden files)
[x] Retrieve files information
[x] Check Microsoft signatures

Filters
[ ] Trusted entries
[ ] Empty entries
[x] Hidden registry entries (rootkit activity)
[x] Exclusively opened files
[x] Not found files
[x] Files without detailed information
[x] Existing files
[ ] Non-startable services
[ ] Non-startable drivers
[x] Active entries
[x] Disabled entries


[Common]
-----( %SystemRoot%\Tasks )-----
"GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe
"GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe

[Control Panel Objects]
-----( %SystemRoot%\system32 )-----
"FlashPlayerCPLApp.cpl" - "Adobe Systems Incorporated" - C:\Windows\system32\FlashPlayerCPLApp.cpl
"nvcpl.cpl" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.cpl
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )-----
"AdobeGamma" - ? - %CommonFiles%\Adobe\Callibration\Adobe Gamma.cpl  (File not found)
"mlcfg32.cpl" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\MLCFG32.CPL
"Nero BurnRights" - "Nero AG" - C:\Program Files\Nero\Nero8\Nero Toolkit\NeroBurnRights.cpl
"QuickTime" - "Apple Inc." - C:\Program Files\QuickTime\QTSystem\QuickTime.cpl

[Drivers]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"avgntflt" (avgntflt) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avgntflt.sys
"avipbb" (avipbb) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avipbb.sys
"catchme" (catchme) - ? - C:\Users\Dabu\AppData\Local\Temp\catchme.sys  (File not found)
"FsUsbExDisk" (FsUsbExDisk) - ? - C:\Windows\system32\FsUsbExDisk.SYS  (File found, but it contains no detailed information)
"fxdoapoc" (fxdoapoc) - ? - C:\Users\Dabu\AppData\Local\Temp\fxdoapoc.sys  (Hidden registry entry, rootkit activity | File not found)
"MBAMProtector" (MBAMProtector) - "Malwarebytes Corporation" - C:\Windows\system32\drivers\mbam.sys
"ssmdrv" (ssmdrv) - "Avira GmbH" - C:\Windows\System32\DRIVERS\ssmdrv.sys

[Explorer]
-----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )-----
{0561EC90-CE54-4f0c-9C55-E226110A740C} "Haali Column Provider" - ? - C:\Windows\system32\mmfinfo.dll  (File found, but it contains no detailed information)
{7D4D6379-F301-4311-BEBA-E26EB0561882} "NeroDigitalColumnHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll
{F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
-----( HKLM\Software\Classes\Protocols\Filter )-----
{807573E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
-----( HKLM\Software\Classes\Protocols\Handler )-----
{314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks )-----
{B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )-----
{3D60EDA7-9AB4-4DA8-864C-D9B5F2E7281D} "Arbeitsbereiche" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{D66DC78C-4F61-447F-942B-3FB6980118CF} "CInfoTipShellExt Class" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office14\VISSHE.DLL
{A70C977A-BF00-412C-90B7-034C51DA2439} "DesktopContext Class" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.dll
{99FD978C-D287-4F50-827F-B2C658EDA8E7} "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} "Groove Explorer Icon Overlay 2 (GFS Stub)" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{920E6DB1-9907-4370-B3A0-BAFC03D81399} "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{16F3DD56-1AF5-4347-846D-7C10C4192619} "Groove Explorer Icon Overlay 3 (GFS Folder)" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{2916C86E-86A6-43FE-8112-43ABE6BF8DCC} "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{2A541AE1-5BF6-4665-A8A3-CFA9672E4291} "Groove Folder Synchronization" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{6C467336-8281-4E60-8204-430CED96822D} "Groove GFS Context Menu Handler" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{A449600E-1DC6-4232-B948-9BD794D62056} "Groove GFS Stub Icon Handler" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{387E725D-DC16-4D76-B310-2C93ED4752A0} "Groove XML Icon Handler" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{0561EC90-CE54-4f0c-9C55-E226110A740C} "Haali Column Provider" - ? - C:\Windows\system32\mmfinfo.dll  (File found, but it contains no detailed information)
{5574006C-28F5-4a65-A28C-74DE6BFBE0BB} "Haali Matroska Shell Property Page" - ? - C:\Windows\system32\mmfinfo.dll  (File found, but it contains no detailed information)
{327669A0-59A7-4be9-B99E-1C9F3A57611A} "Haali Matroska Thumbnail Extractor" - ? - C:\Windows\system32\mmfinfo.dll  (File found, but it contains no detailed information)
{506F4668-F13E-4AA1-BB04-B43203AB3CC0} "ImageExtractorShellExt Class" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office14\VISSHE.DLL
{42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office14\msohevi.dll
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll
{0875DCB6-C686-4243-9432-ADCCF0B9F2D7} "Microsoft OneNote Namespace Extension for Windows Desktop Search" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office14\ONFILTER.DLL
{00020D75-0000-0000-C000-000000000046} "Microsoft Outlook" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\MLSHEXT.DLL
{97F68CE3-7146-45FF-BE24-D9A7DD7CB8A2} "NeroCoverEdLiveIcons Class" - "Nero AG" - C:\Program Files\Nero\Nero8\Nero CoverDesigner\CoverEdExtension.dll
{B327765E-D724-4347-8B16-78AE18552FC3} "NeroDigitalIconHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll
{7F1CF152-04F8-453A-B34C-E609530A9DC8} "NeroDigitalPropSheetHandler Class" - "Nero AG" - C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll
{3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} "NVIDIA CPL Context Menu Extension" - "NVIDIA Corporation" - C:\Windows\system32\nvshext.dll
{FFB699E0-306A-11d3-8BD1-00104B6F7516} "NVIDIA CPL Extension" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.dll
{0006F045-0000-0000-C000-000000000046} "Outlook File Icon Extension" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office14\OLKFSTUB.DLL
{45AC2688-0253-4ED8-97DE-B5370FA7D48A} "Shell Extension for Malware scanning" - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\shlext.dll
{B41DB860-8EE4-11D2-9906-E49FADC173CA} "WinRAR" - "Alexander Roshal" - C:\Program Files\WinRAR\rarext.dll

[Internet Explorer]
-----( HKCU\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars )-----
{555D4D79-4BD2-4094-A395-CFC534424A05} "HP Smart Web Printing" - "Hewlett-Packard Co." - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
-----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )-----
ITBar7Height "ITBar7Height" - ? -   (File not found | COM-object registry key not found)
<binary data> "ITBar7Layout" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )-----
{8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_26" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} "Java Plug-in 1.6.0_26" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_26" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\npjpi160_26.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )-----
{48E73304-E1D6-4330-914C-F5F514E3486C} "An OneNote senden" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
{DDE87865-83C5-48c4-8357-2F5B1AA84522} "HP Smart Web Printing ein- oder ausblenden" - "Hewlett-Packard Co." - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
{FFFDC614-B694-4AE6-AB38-5D6374584B52} "Verknüpfte &OneNote-Notizen" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )-----
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
{0347C33E-8762-4905-BF09-768834316C61} "HP Print Enhancer" - "Hewlett-Packard Co." - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} "HP Smart BHO Class" - "Hewlett-Packard Co." - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
{DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2ssv.dll
{B4F3A835-0E21-4959-BA22-42B3008E02FF} "Office Document Cache Handler" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL

[Logon]
-----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\Users\Dabu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"Adobe Gamma Loader.exe.lnk" - "Adobe Systems, Inc." - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe  (Shortcut exists | File exists)
"Adobe Gamma Loader.lnk" - "Adobe Systems, Inc." - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe  (Shortcut exists | File exists)
"desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
"HP Digital Imaging Monitor.lnk" - "Hewlett-Packard Co." - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe  (Shortcut exists | File exists)
-----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )-----
"AutoStartNPSAgent" - "Samsung Electronics Co., Ltd." - C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" - "Nero AG" - "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
"dradio-RecorderTimer" - ? - C:\Program Files\dradio-Recorder\phonostarTimer.exe  (File found, but it contains no detailed information)
"SoftAuto.exe" - "Creative Technology Ltd" - "C:\Program Files\Creative\Software Update 3\SoftAuto.exe"
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )-----
"Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Adobe Reader Speed Launcher" - "Adobe Systems Incorporated" - "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"avgnt" - "Avira GmbH" - "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
"BCSSync" - "Microsoft Corporation" - "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
"HP Software Update" - "Hewlett-Packard" - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
"Malwarebytes' Anti-Malware" - "Malwarebytes Corporation" - "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
"Malwarebytes' Anti-Malware (reboot)" - "Malwarebytes Corporation" - "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
"NBKeyScan" - "Nero AG" - "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
"NeroFilterCheck" - "Nero AG" - C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
"QuickTime Task" - "Apple Inc." - "C:\Program Files\QuickTime\QTTask.exe" -atboottime
"SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

[Services]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"Avira AntiVir Guard" (AntiVirService) - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
"Avira AntiVir Planer" (AntiVirSchedulerService) - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\sched.exe
"Creative Centrale Media Server" (CTUPnPSv) - "Creative Technology Ltd" - C:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe
"CT Device Query service" (CTDevice_Srv) - "Creative Technology Ltd" - C:\Program Files\Creative\Shared Files\CTDevSrv.exe
"FsUsbExService" (FsUsbExService) - "Teruten" - C:\Windows\system32\FsUsbExService.Exe
"Google Update Service (gupdate)" (gupdate) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe
"Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe
"HP CUE DeviceDiscovery Service" (hpqddsvc) - "Hewlett-Packard Co." - C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
"hpqcxs08" (hpqcxs08) - "Hewlett-Packard Co." - C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
"MBAMService" (MBAMService) - "Malwarebytes Corporation" - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
"Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"Microsoft SharePoint Workspace Audit Service" (Microsoft SharePoint Workspace Audit Service) - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
"Nero BackItUp Scheduler 3" (Nero BackItUp Scheduler 3) - "Nero AG" - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
"Net Driver HPZ12" (Net Driver HPZ12) - "Hewlett-Packard" - C:\Windows\system32\HPZinw12.dll
"NMIndexingService" (NMIndexingService) - "Nero AG" - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
"NVIDIA Display Driver Service" (nvsvc) - "NVIDIA Corporation" - C:\Windows\system32\nvvsvc.exe
"Office  Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
"Office Software Protection Platform" (osppsvc) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
"Pml Driver HPZ12" (Pml Driver HPZ12) - "Hewlett-Packard" - C:\Windows\system32\HPZipm12.dll

===[ Logfile end ]=========================================[ Logfile end ]===

--- --- ---

If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru[/QUOTE]

Zitat:

aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software
Run date: 2011-10-08 01:24:19
-----------------------------
01:24:19.504 OS Version: Windows 6.1.7601 Service Pack 1
01:24:19.504 Number of processors: 2 586 0xF0B
01:24:19.504 ComputerName: DABUSRECHNER UserName: Dabu
01:24:20.502 Initialize success
01:24:25.244 AVAST engine defs: 11100701
01:24:48.301 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-4
01:24:48.301 Disk 0 Vendor: WDC_WD5000AACS-00ZUB0 01.01B01 Size: 476940MB BusType: 11
01:24:50.485 Disk 0 MBR read successfully
01:24:50.485 Disk 0 MBR scan
01:24:50.485 Disk 0 Windows 7 default MBR code
01:24:50.641 Disk 0 scanning sectors +976768065
01:24:51.078 Disk 0 scanning C:\Windows\system32\drivers
01:26:18.142 Service scanning
01:26:19.202 Modules scanning
01:28:24.673 Disk 0 trace - called modules:
01:28:24.751 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS PCIIDEX.SYS msahci.sys
01:28:24.751 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8567c030]
01:28:24.767 3 CLASSPNP.SYS[88ddd59e] -> nt!IofCallDriver -> [0x85581c10]
01:28:25.266 5 ACPI.sys[888a83d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-4[0x851a4908]
01:28:26.233 AVAST engine scan C:\Windows
01:30:53.279 AVAST engine scan C:\Windows\system32
01:47:18.216 AVAST engine scan C:\Windows\system32\drivers
01:52:56.159 AVAST engine scan C:\Users\Dabu
02:48:46.087 AVAST engine scan C:\ProgramData
03:00:09.757 Scan finished successfully
03:02:32.528 Disk 0 MBR has been saved successfully to "C:\Users\Dabu\Desktop\MBR.dat"
03:02:32.528 The log file has been saved successfully to "C:\Users\Dabu\Desktop\aswMBR.txt"

Gruß Löschel

löschel · 08.10.2011, 09:32

Hallo Arne,

ich danke dir ganz herzlich für die große Hilfe bis jetzt

. Dummerweise bin ich für eine Woche nicht im Lande (was andererseits auch ganz schön ist). Ich hoffe einfach mal, dass ich in diesem Thema einfach nächsten Samstag bzw. Sonntag noch einmal anfragen kann, ob wir weitermachen können. Dafür wäre ich dir natürlich sehr dankbar.
Der Rechner bleibt so lange ungenutzt, es sollte also nichts weiter passieren. Zum letzten Stand: auf den beiden Sticks sind die Ordner weiterhin nur als Verknüpfung zu sehen, auffällig ist vielleicht noch, dass sich regelmäßig Malwarebytes mit der folgenden Meldung meldet (s. Bild).

Also nochmals ganz, ganz herzlichen Dank und (hoffentlich) bis Sonntag in einer Woche,

Viele Grüße Löschel

cosinus · 08.10.2011, 16:45

Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!

Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt:

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

löschel · 16.10.2011, 12:40

Hallo Arne,

ichbin wieder im Lande und habe nun die Scans durchgeführt. Sowohl bei SUPERAntiSpyware als auch bei Eset kam noch einmal etwas heraus

.
Dann verstehe ich noch nicht, wie es mit den Ordnern auf den Sticks aussieht, diese sind immer noch nur als nicht zu öffnendes Verzeichnis vorhanden.
Ich hoffe mal wieder, du kannst mir helfen

.

Viele Grüße Löschel

Zitat:

ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=461a45aad7b74346a3d029d3b64b48d8
# end=stopped
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-10-06 01:36:39
# local_time=2011-10-06 03:36:39 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=1797 16775165 100 94 353 54440062 0 0
# compatibility_mode=5893 16776574 100 94 5634486 69539390 0 0
# compatibility_mode=8192 67108863 100 0 931672 931672 0 0
# scanned=673
# found=0
# cleaned=0
# scan_time=14
ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=461a45aad7b74346a3d029d3b64b48d8
# end=stopped
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-10-06 01:38:25
# local_time=2011-10-06 03:38:25 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=1797 16775165 100 94 456 54440165 0 0
# compatibility_mode=5893 16776574 100 94 5634589 69539493 0 0
# compatibility_mode=8192 67108863 100 0 931775 931775 0 0
# scanned=1764
# found=0
# cleaned=0
# scan_time=23
ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=461a45aad7b74346a3d029d3b64b48d8
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-10-06 04:17:26
# local_time=2011-10-06 06:17:26 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=1797 16775165 100 94 517 54440226 0 0
# compatibility_mode=5893 16776574 100 94 5634650 69539554 0 0
# compatibility_mode=8192 67108863 100 0 931836 931836 0 0
# scanned=372368
# found=11
# cleaned=0
# scan_time=9503
C:\Users\Dabu\Anwendungen\Nero8.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YROP3LQH\gz[1].exe.vir a variant of Win32/Kryptik.TFW trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\jar_cache371817357073548465.tmp J2ME/TrojanDownloader.Agent.AA trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\jar_cache4259694252015864589.tmp a variant of J2ME/Agent.AA trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\jar_cache8778161085807541534.tmp a variant of J2ME/Agent.AA trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\jar_cache938169595681903036.tmp J2ME/TrojanDownloader.Agent.AC trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\NERO13904\Toolbar.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\NERO14397\Toolbar.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\166fe47e-73080682 a variant of Java/TrojanDownloader.OpenStream.AF trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\System32\WNVENCOD.DLL a variant of Win32/Spy.Agent.NTN trojan (unable to clean) 00000000000000000000000000000000 I
D:\TOOLS\Nero Burning ROM 8 Update\Nero-8.2.8.0_deu_update.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=461a45aad7b74346a3d029d3b64b48d8
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-10-07 11:15:04
# local_time=2011-10-07 01:15:04 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=1797 16775165 100 94 7246 54508643 0 0
# compatibility_mode=5893 16776574 100 94 5703067 69607971 0 0
# compatibility_mode=8192 67108863 100 0 1000253 1000253 0 0
# scanned=376217
# found=10
# cleaned=0
# scan_time=9344
C:\Users\Dabu\Anwendungen\Nero8.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\jar_cache371817357073548465.tmp J2ME/TrojanDownloader.Agent.AA trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\jar_cache4259694252015864589.tmp a variant of J2ME/Agent.AA trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\jar_cache8778161085807541534.tmp a variant of J2ME/Agent.AA trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\jar_cache938169595681903036.tmp J2ME/TrojanDownloader.Agent.AC trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\NERO13904\Toolbar.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\Local\Temp\NERO14397\Toolbar.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Dabu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\166fe47e-73080682 a variant of Java/TrojanDownloader.OpenStream.AF trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\System32\WNVENCOD.DLL a variant of Win32/Spy.Agent.NTN trojan (unable to clean) 00000000000000000000000000000000 I
D:\TOOLS\Nero Burning ROM 8 Update\Nero-8.2.8.0_deu_update.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=461a45aad7b74346a3d029d3b64b48d8
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-10-16 11:19:04
# local_time=2011-10-16 01:19:04 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=1797 16775165 100 94 40861 55288157 34530 0
# compatibility_mode=5893 16776574 100 94 6482581 70387485 0 0
# compatibility_mode=8192 67108863 100 0 1779767 1779767 0 0
# scanned=320692
# found=3
# cleaned=0
# scan_time=7671
C:\Users\Dabu\Anwendungen\Nero8.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
C:\Windows\System32\WNVENCOD.DLL a variant of Win32/Spy.Agent.NTN trojan (unable to clean) 00000000000000000000000000000000 I
D:\TOOLS\Nero Burning ROM 8 Update\Nero-8.2.8.0_deu_update.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I

Zitat:

SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 10/16/2011 at 10:41 AM

Application Version : 5.0.1132

Core Rules Database Version : 7801
Trace Rules Database Version: 5613

Scan type : Complete Scan
Total Scan Time : 02:13:48

Operating System Information
Windows 7 Professional 32-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Administrator

Memory items scanned : 704
Memory threats detected : 0
Registry items scanned : 39073
Registry threats detected : 0
File items scanned : 279831
File threats detected : 715

Adware.Tracking Cookie
C:\Users\Dabu\AppData\Roaming\Microsoft\Windows\Cookies\dabu@ad.yieldmanager[1].txt [ /ad.yieldmanager ]
C:\Users\Dabu\AppData\Roaming\Microsoft\Windows\Cookies\dabu@content.yieldmanager[1].txt [ /content.yieldmanager ]
C:\Users\Dabu\AppData\Roaming\Microsoft\Windows\Cookies\dabu@doubleclick[2].txt [ /doubleclick ]
C:\Users\Dabu\AppData\Roaming\Microsoft\Windows\Cookies\dabu@media-player-codec-pack.softonic[2].txt [ /media-player-codec-pack.softonic ]
C:\Users\Dabu\AppData\Roaming\Microsoft\Windows\Cookies\dabu@smartadserver[2].txt [ /smartadserver ]
C:\Users\Dabu\AppData\Roaming\Microsoft\Windows\Cookies\XO2GGVL9.txt [ /atdmt.com ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\MV75UI8V.txt [ Cookie:dabu@clkads.com/adServe/banners ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\LZJJP6VH.txt [ Cookie:dabu@clkads.com/adServe/static/ ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\dabu@clkads[2].txt [ Cookie:dabu@clkads.com/adServe/ ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\Low\HWLKZF11.txt [ Cookie:dabu@clkads.com/adServe/banners ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\Low\dabu@ad.yieldmanager[2].txt [ Cookie:dabu@ad.yieldmanager.com/ ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\Low\dabu@msnportal.112.2o7[1].txt [ Cookie:dabu@msnportal.112.2o7.net/ ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\Low\dabu@fastclick[1].txt [ Cookie:dabu@fastclick.net/ ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\Low\M7WGZ52C.txt [ Cookie:dabu@clkads.com/adServe/static/ ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\Low\dabu@interclick[1].txt [ Cookie:dabu@interclick.com/ ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\Low\V1JC0YA4.txt [ Cookie:dabu@www.googleadservices.com/pagead/conversion/967749191/ ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\Low\dabu@bs.serving-sys[2].txt [ Cookie:dabu@bs.serving-sys.com/ ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\Low\dabu@serving-sys[1].txt [ Cookie:dabu@serving-sys.com/ ]
C:\USERS\DABU\AppData\Roaming\Microsoft\Windows\Cookies\Low\3V0NXH6U.txt [ Cookie:dabu@clkads.com/adServe/ ]
C:\USERS\DABU\Cookies\MV75UI8V.txt [ Cookie:dabu@clkads.com/adServe/banners ]
C:\USERS\DABU\Cookies\dabu@ad.yieldmanager[1].txt [ Cookie:dabu@ad.yieldmanager.com/ ]
C:\USERS\DABU\Cookies\dabu@media-player-codec-pack.softonic[2].txt [ Cookie:dabu@media-player-codec-pack.softonic.de/ ]
C:\USERS\DABU\Cookies\LZJJP6VH.txt [ Cookie:dabu@clkads.com/adServe/static/ ]
C:\USERS\DABU\Cookies\dabu@content.yieldmanager[1].txt [ Cookie:dabu@content.yieldmanager.com/ ]
C:\USERS\DABU\Cookies\dabu@clkads[2].txt [ Cookie:dabu@clkads.com/adServe/ ]
C:\USERS\DABU\Cookies\dabu@smartadserver[2].txt [ Cookie:dabu@smartadserver.com/ ]
C:\USERS\DABU\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\DABU@ATDMT[2].TXT [ /ATDMT ]
track.webtrekk.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
track.webtrekk.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.himedia.individuad.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.bizrate.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.bizrate.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
in.getclicky.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.vodafonegroup.122.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.a.revenuemax.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.guj.122.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.edumedia-sciences.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.paypal.112.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.szmstat.sueddeutsche.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
szmstat.sueddeutsche.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ads.quartermedia.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ads.quartermedia.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ads.quartermedia.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ice.112.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.harrenmedianetwork.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
tracking.adjug.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
tracking.adjug.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
tracking.adjug.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.belstat.be [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
postadserver.anschlusstor.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.yieldmanager.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.s0.2mdn.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.libri.112.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ads.quartermedia.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ad2.billboard.cz [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjk4ugcpscq.stats.esomniture.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
labelfinder.gq-magazin.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.labelfinder.gq-magazin.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
track.webtrekk.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adserver.kino-zeit.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adserver.doccheck.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
stat.itwissen.info [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
stat.heimat.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.ultimedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ultimedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.dmtracker.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
user.lucidmedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
track.webtrekk.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.suunto.122.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adserver2.clipkit.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.horyzon-media.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.horyzon-media.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.horyzon-media.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.horyzon-media.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adserver.futura-sciences.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.bravenet.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
1ro.cqcounter.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
eas4.emediate.eu [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.rambler.ru [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.szmstat.sueddeutsche.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.klicktrack.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adserver.adtechus.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
eas4.emediate.eu [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adxpose.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adserver3.openadex.dk [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.e-2dj6aek4eocjgkp.stats.esomniture.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.estat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
wstat.wibiya.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tacoda.at.atwola.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ssl-account.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.luftballons-discount.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.luftballons-discount.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.myhammer.122.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.4stats.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.4stats.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adserver.planetoutdoor.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adcentriconline.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.thenakedscientists.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.thenakedscientists.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
flagcounter.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.conrad.122.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.opodo.122.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
audit.median.hu [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adverticum.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adverticum.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
s1.trafficmaxx.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adserver.sevenload.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ehg-sz.hitbox.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.ehg-sz.hitbox.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.liveperson.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.liveperson.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.nextag.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.secmedia.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
stat.onestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
stat.onestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.mm.chitika.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.cheaptickets.122.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.verticaltechmedia.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.euros4click.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.shinystat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.liveperson.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.mediamarkt.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www3.addfreestats.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tripod.lycos.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ads.247activemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adsrv1.admediate.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.burstnet.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.burstnet.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
zbox.zanox.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.wissende.122.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.box1.counter-service.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.deutschepostag.112.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.track.webgains.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.fileuploadx.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.fileuploadx.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.pictureuploadx.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.pictureuploadx.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adserver.gs [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
studivz.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
keyword-advertising.gmx.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.find-fast-answers.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.advertise.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.compluscommediaads.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.compluscommediaads.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.compluscommediaads.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.eset-online-scanner.software.informer.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.eset-online-scanner.software.informer.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tracking.mindshare.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.eset.122.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.wetterstationen.meteomedia.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.wetterstationen.meteomedia.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.kantarmedia.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.content.yieldmanager.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad1.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.active-tracking.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.active-tracking.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.active-tracking.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ww251.smartadserver.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IXBR23YW.DEFAULT\COOKIES.SQLITE ]
cdn5.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WUZ26G7G ]
ia.media-imdb.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WUZ26G7G ]
media.zedmobil.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WUZ26G7G ]
mi.adinterax.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WUZ26G7G ]
s0.2mdn.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WUZ26G7G ]
www.naiadsystems.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WUZ26G7G ]
www.pornstarnetwork.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WUZ26G7G ]
www.sexkiste.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WUZ26G7G ]
C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\DABU@AD.YIELDMANAGER[1].TXT [ /AD.YIELDMANAGER ]
C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\DABU@CONTENT.YIELDMANAGER[1].TXT [ /CONTENT.YIELDMANAGER ]
C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\DABU@DOUBLECLICK[1].TXT [ /DOUBLECLICK ]
C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\DABU@MEDIACENTER.SF[2].TXT [ /MEDIACENTER.SF ]
C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\DABU@STATSE.WEBTRENDSLIVE[1].TXT [ /STATSE.WEBTRENDSLIVE ]
C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\DABU@TRADEDOUBLER[1].TXT [ /TRADEDOUBLER ]
C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\DABU@STATSE.WEBTRENDSLIVE[2].TXT [ /STATSE.WEBTRENDSLIVE ]
statse.webtrendslive.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.webtrekk.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.webtrekk.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adserver1.mokono.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
fl01.ct2.comclick.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.trvlnet.adbureau.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.trvlnet.adbureau.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.bluestreak.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ehg-iaaf.hitbox.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.hitbox.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tracking.hannoversche.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
cdn5.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
cdn5.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
banner.testberichte.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
rotator.adjuggler.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
rotator.adjuggler.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adsrv.admediate.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adsrv.admediate.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.opodo.122.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.agofev.122.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www3.addfreestats.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.himedia.individuad.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
zbox.zanox.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
tracking.hifi-agent.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adserver.naaptol.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
clicks.pangora.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
clicks.pangora.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
clicks.pangora.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
stat.dealtime.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.shopping.112.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adserver.adtechus.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tacoda.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tacoda.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tacoda.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adserver.traffictrack.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ad.de.doubleclick.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.thefind.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.thefind.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.thefind.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.thefind.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.thefind.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.bizrate.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.bizrate.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.pointroll.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.pointroll.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.bizrate.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tripod.lycos.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
delivery.ads.coupling-media.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.fujifilm.112.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
in.getclicky.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
go.dynamic-tracking.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
server.lon.liveperson.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
server.lon.liveperson.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
keyword-advertising.gmx.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
keyword-advertising.gmx.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
keyword-advertising.gmx.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.4stats.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adserver.kajak-channel.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adserver.kajak-channel.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adserver.kajak-channel.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
webcount.finn.no [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.vodafonegroup.122.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
my.adservinginternational.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
mediatotal.ads.visionweb.no [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tracking.mindshare.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ads20.wwe-media.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ww251.smartadserver.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.videoegg.adbureau.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.a.revenuemax.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.guj.122.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
tracking.bmbfcluster.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.edumedia-sciences.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.edumedia-sciences.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tripod.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.paypal.112.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.trackmatics.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.szmstat.sueddeutsche.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.szmstat.sueddeutsche.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
szmstat.sueddeutsche.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.dealtime.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.tns-counter.ru [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
adserver.piqs.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.wlw.122.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad1.adfarm1.adition.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
livestat.derstandard.at [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ads.quartermedia.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ads.quartermedia.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ads.quartermedia.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
delivery.atkmedia.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.terra.112.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.ice.112.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.chitika.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad1.emediate.dk [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad1.emediate.dk [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.ad-track.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
tracking.tchibo.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.active-tracking.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.www.active-tracking.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.www.active-tracking.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.content.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
www.rapidmedia.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.content.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\WINDOWS.OLD\USERS\DABU\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S117O4ZY.DEFAULT\COOKIES.SQLITE ]

Trojan.Dropper/Win-NV
C:\WINDOWS.OLD\PROGRAM FILES\ELSTERFORMULAR\BIN\UPDATE.EXE

Trojan.Agent/Gen-Bancos
C:\WINDOWS.OLD\PROGRAM FILES\SCENEO\ABSOLUTTV\BDSUPDATE.DLL

Zitat:

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Datenbank Version: 7955

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

16.10.2011 00:36:16
mbam-log-2011-10-16 (00-36-16).txt

Art des Suchlaufs: Vollständiger Suchlauf (J:\|)
Durchsuchte Objekte: 170157
Laufzeit: 4 Minute(n), 50 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

Zitat:

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Datenbank Version: 7955

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

16.10.2011 00:39:01
mbam-log-2011-10-16 (00-39-01).txt

Art des Suchlaufs: Vollständiger Suchlauf (F:\|)
Durchsuchte Objekte: 163601
Laufzeit: 1 Minute(n), 22 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

Zitat:

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Datenbank Version: 7955

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

16.10.2011 01:40:39
mbam-log-2011-10-16 (01-40-39).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Durchsuchte Objekte: 392517
Laufzeit: 1 Stunde(n), 1 Minute(n), 0 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

cosinus · 16.10.2011, 13:45

Zitat:

C:\Windows\System32\WNVENCOD.DLL

Bitte diese Datei bei uns hochladen => http://www.trojaner-board.de/54791-a...ner-board.html

löschel · 16.10.2011, 21:38

Hallo Arne,

die Datei habe ich hochgeladen.

Danke und viele Grüße

Löschel

cosinus · 17.10.2011, 16:40

Sieht nach einem Überrest aus, der aber nur von ESET/NOD32 bislang erkannt wird.
Verschieb die Datei bitte nach C:\_OTL, dort ist sie isoliert und kann keinen Schaden anrichten, sofern sie wirklich schädlich ist.

Die anderen Funde können wir soweit vernachlässigen, Fehlalarme, hysterische Funde wegen Toolbars in den Setups und eine Menge Cookies.

Rechner sonst wieder soweit im Lot?

löschel · 17.10.2011, 19:15

Hallo Arne, wenn der Befall behoben wäre, wäre das super, ich selbst habe das ganze ja nur wegen der Ordner auf den Sticks bemerkt, die nur noch als Verknüpfung angezeigt werden (siehe Bild) und sich nicht öffnen lassen. Dieses Problem besteht leider weiterhin.
Weitere Probleme traten nur auf, als die merkwürdigen Dateien blass auf dem Desktop erschienen, die hast du aber wegbekommen.

Gibt es für die Stickordner noch eine Problemlösung?

Viele Grüße Löschel

cosinus · 18.10.2011, 18:23

Lass dir zuerst mal alle Dateien anzeigen => http://www.trojaner-board.de/59624-a...-sichtbar.html
Danach sollte auch alle Ordner wieder angezeigt werden - halbtransparent, da sie noch die Atrribute "versteckt" und "system" tragen

Starte anschließend die Eingabeaufforderung über Start, Alle Programme, Zubehör

Musst in der Eingabeauforderung jeweils für jeden versteckten Ordner diesen Befehl ausführen:

Code:

ATTFilter

attrib -s -h "x:\ordner" /s /d

x: => Muss angepasst werden, den passenden Buchstaben verwenden
"ordner" muss dann der jew. richtige Ordnername sein

Danach alle Verküpfungen auf Laufwerk F (das ist doch der Stick?) löschen, geht auch in der Eingabeaufforderung mit dem Befehl

Code:

ATTFilter

del f:\*.lnk

Vgl. diesen Strang => http://www.trojaner-board.de/102950-...traeger-2.html

löschel · 18.10.2011, 20:33

Hallo Arne,
ich komme da nicht recht weiter, den Link zu dem anderen Thema habe ich zur Kenntnis genommen, aber weder mit dem einen, noch mit dem anderen Befehl scheint sich irgentetwas zu tun. Ich habe mal einen sreenshot gemacht, ich hoffe der ist hilfreich, um das Problem noch genauer zu lokalisieren.

Viele Grüße Löschel

Ordner auf USB-Sticks werden nur als Verknüpfung dargestellt

Log-Analyse und Auswertung: Ordner auf USB-Sticks werden nur als Verknüpfung dargestellt