Trojaner-Board - Virenbefall: Live Security Platinum Virus

Trojaner-Board (https://www.trojaner-board.de/)

- Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)

- - Virenbefall: Live Security Platinum Virus (https://www.trojaner-board.de/121546-virenbefall-live-security-platinum-virus.html)

Code:

 All processes killed

========== OTL ==========

Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\ not found.

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.

Registry value HKEY_USERS\S-1-5-21-413260923-1584583347-2878145964-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!

C:\autoexec.bat moved successfully.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e925371b-f804-11df-b546-904ce5e0a042}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e925371b-f804-11df-b546-904ce5e0a042}\ not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e925371b-f804-11df-b546-904ce5e0a042}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e925371b-f804-11df-b546-904ce5e0a042}\ not found.

File E:\AutoRun.exe not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e925372a-f804-11df-b546-904ce5e0a042}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e925372a-f804-11df-b546-904ce5e0a042}\ not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e925372a-f804-11df-b546-904ce5e0a042}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e925372a-f804-11df-b546-904ce5e0a042}\ not found.

File E:\AutoRun.exe not found.

========== FILES ==========

C:\Users\Daniel Kort\AppData\Local\{7c9c6958-a65d-e6bc-5848-15b770ab5998}\U folder moved successfully.

C:\Users\Daniel Kort\AppData\Local\{7c9c6958-a65d-e6bc-5848-15b770ab5998}\L folder moved successfully.

C:\Users\Daniel Kort\AppData\Local\{7c9c6958-a65d-e6bc-5848-15b770ab5998} folder moved successfully.
 < ipconfig /flushdns /c >

Windows-IP-Konfiguration

Der DNS-Aufl”sungscache wurde geleert.

C:\Users\Daniel Kort\Downloads\cmd.bat deleted successfully.

C:\Users\Daniel Kort\Downloads\cmd.txt deleted successfully.

========== COMMANDS ==========

 

[EMPTYTEMP]

 

User: All Users

 

User: Bewerber

->Temp folder emptied: 45426 bytes

->Temporary Internet Files folder emptied: 2094961 bytes

->Flash cache emptied: 405 bytes

 

User: Daniel Kort

->Temp folder emptied: 79674983 bytes

->Temporary Internet Files folder emptied: 1740404159 bytes

->Java cache emptied: 5531997 bytes

->FireFox cache emptied: 1116988910 bytes

->Google Chrome cache emptied: 5177696 bytes

->Flash cache emptied: 5425486 bytes

 

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 33170 bytes

 

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

 

User: Public

 

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 2692234 bytes

RecycleBin emptied: 1214826686 bytes

 

Total Files Cleaned = 3.980,00 mb

 

C:\Windows\System32\drivers\etc\Hosts moved successfully.

HOSTS file reset successfully

 

OTL by OldTimer - Version 3.2.61.3 log created on 09122012_091307
 

Files\Folders moved on Reboot...
 

PendingFileRenameOperations files...
 

Registry entries deleted on Reboot...

Hi Cosinus,

jetzt hat er schon wieder einiges gelöscht. Ich hätte nicht gedacht, dass so viele Dateien betroffen sind. Könnte immer noch was drauf sein?

:dankeschoen:

Viele Grüße
Daniel

Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.

Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

http://saved.im/mtg4nzy0ywy5/settings_2012-09-04.png

Hallo Cosinus,

zwei Dateien hat er wieder gefunden. Bisher habe ich nur den Scan durchgeführt.

:dankeschoen:

Irgendwie ist das Log unvollständig - die untere Zusammenfassung was gefunden wurde fehlt, da steht nur dass zwei Elemente gefunden wurden :wtf:

Hallo Cosinus,

ich habe die Orginaldatei noch einmal gezippt. Jetzt müsste es passen.

Beste Grüße
Daniel

Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix

Lade dir ComboFix hier herunter auf deinen Desktop.

Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.

Starte combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.

Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.

Wichtiger Hinweis:

Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.

Hallo Cosinus,

anbei findest du das Log.

Code:

ComboFix 12-09-20.01 - Daniel Kort 20.09.2012  18:01:08.1.2 - x86

Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.3067.1566 [GMT 2:00]

ausgeführt von:: c:\users\Daniel Kort\Downloads\ComboFix.exe

AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

 * Neuer Wiederherstellungspunkt wurde erstellt

.

.

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Live Security Platinum

c:\users\Daniel Kort\g2mdlhlpx.exe

.

.

(((((((((((((((((((((((   Dateien erstellt von 2012-08-20 bis 2012-09-20  ))))))))))))))))))))))))))))))

.

.

2012-09-20 16:10 . 2012-09-20 16:10        --------        d-----w-        c:\users\Default\AppData\Local\temp

2012-09-20 16:10 . 2012-09-20 16:10        --------        d-----w-        c:\users\Bewerber\AppData\Local\temp

2012-09-20 10:32 . 2012-09-20 10:32        56200        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{906DA589-204C-4F9B-9500-C37432BE97CE}\offreg.dll

2012-09-18 07:02 . 2012-08-23 07:15        7022536        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{906DA589-204C-4F9B-9500-C37432BE97CE}\mpengine.dll

2012-09-12 12:34 . 2012-08-22 17:16        1292144        ----a-w-        c:\windows\system32\drivers\tcpip.sys

2012-09-12 12:34 . 2012-08-22 17:16        712048        ----a-w-        c:\windows\system32\drivers\ndis.sys

2012-09-12 12:34 . 2012-08-22 17:16        240496        ----a-w-        c:\windows\system32\drivers\netio.sys

2012-09-12 12:34 . 2012-08-22 17:16        187760        ----a-w-        c:\windows\system32\drivers\FWPKCLNT.SYS

2012-09-12 12:34 . 2012-07-04 19:45        33280        ----a-w-        c:\windows\system32\drivers\RNDISMP.sys

2012-09-12 12:34 . 2012-08-02 16:57        490496        ----a-w-        c:\windows\system32\d3d10level9.dll

2012-09-12 07:13 . 2012-09-12 07:13        --------        d-----w-        C:\_OTL

.

.

.

((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-09-20 06:32 . 2012-03-30 06:14        696240        ----a-w-        c:\windows\system32\FlashPlayerApp.exe

2012-09-20 06:32 . 2011-05-18 06:41        73136        ----a-w-        c:\windows\system32\FlashPlayerCPLApp.cpl

2012-07-18 17:47 . 2012-08-15 06:49        2345984        ----a-w-        c:\windows\system32\win32k.sys

2012-07-06 19:23 . 2012-08-15 16:09        393728        ----a-w-        c:\windows\system32\drivers\bthport.sys

2012-07-04 21:14 . 2012-08-15 06:49        41984        ----a-w-        c:\windows\system32\browcli.dll

2012-07-04 21:14 . 2012-08-15 06:49        102912        ----a-w-        c:\windows\system32\browser.dll

2012-06-27 05:53 . 2012-08-15 06:49        981504        ----a-w-        c:\windows\system32\wininet.dll

2012-06-27 04:10 . 2012-08-15 06:49        1638912        ----a-w-        c:\windows\system32\mshtml.tlb

2010-05-12 14:42 . 2012-09-07 09:51        124344        ----a-w-        c:\program files\mozilla firefox\plugins\CCMSDK.dll

2010-05-12 15:22 . 2012-09-07 09:51        13240        ----a-w-        c:\program files\mozilla firefox\plugins\cgpcfg.dll

2010-05-12 14:43 . 2012-09-07 09:51        70592        ----a-w-        c:\program files\mozilla firefox\plugins\CgpCore.dll

2010-05-12 14:42 . 2012-09-07 09:51        91576        ----a-w-        c:\program files\mozilla firefox\plugins\confmgr.dll

2010-05-12 14:42 . 2012-09-07 09:51        22464        ----a-w-        c:\program files\mozilla firefox\plugins\ctxlogging.dll

2010-05-12 14:41 . 2012-09-07 09:51        255416        ----a-w-        c:\program files\mozilla firefox\plugins\ctxmui.dll

2010-05-12 14:42 . 2012-09-07 09:51        31160        ----a-w-        c:\program files\mozilla firefox\plugins\icafile.dll

2010-05-12 14:42 . 2012-09-07 09:51        40384        ----a-w-        c:\program files\mozilla firefox\plugins\icalogon.dll

2010-04-14 11:55 . 2012-09-07 09:52        652640        ----a-w-        c:\program files\mozilla firefox\plugins\sslsdk_b.dll

2010-05-12 14:43 . 2012-09-07 09:52        24000        ----a-w-        c:\program files\mozilla firefox\plugins\TcpPServ.dll

2012-09-07 09:52 . 2012-09-07 09:51        266720        ----a-w-        c:\program files\mozilla firefox\components\browsercomps.dll

.

.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))

.

.

*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"DKab1err"="c:\program files\Dell\Printer Software\ErrorApp\DKab1err.exe" [2009-06-09 582896]

"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-07-13 17418928]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Apoint"="c:\program files\DellTPad\Apoint.exe" [2009-06-29 217088]

"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2009-07-15 458844]

"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-06-11 13789728]

"NVHotkey"="c:\windows\system32\nvHotkey.dll" [2009-06-11 92704]

"Broadcom Wireless Manager UI"="c:\program files\Dell\Dell Wireless WLAN Card\WLTRAY.exe" [2009-07-17 4562944]

"PDVDDXSrv"="c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2009-06-25 140520]

"OEM13Mon.exe"="c:\windows\OEM13Mon.exe" [2008-01-07 36864]

"DBRMTray"="c:\dell\DBRM\Reminder\DbrmTrayIcon.exe" [2009-11-12 203776]

"ConnectionCenter"="c:\program files\Citrix\ICA Client\concentr.exe" [2010-05-12 300472]

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]

"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-08-10 348664]

"FreePDF Assistant"="c:\program files\FreePDF_XP\fpassist.exe" [2011-02-23 371200]

"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-18 421888]

"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"DBRMTray"="c:\dell\DBRM\Reminder\TrayApp.exe" [2009-10-17 7168]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

Google Calendar Sync.lnk - c:\program files\Google\Google Calendar Sync\GoogleCalendarSync.exe [2011-4-8 542264]

McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.0.207\SSScheduler.exe [2011-6-17 272528]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"mixer"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

@="Driver"

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]

"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"

.

R2 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [x]

R2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [x]

R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]

R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]

R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]

R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.0.207\McCHSvc.exe [x]

R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]

R3 WSDPrintDevice;WSD-Druckunterstützung durch UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [x]

S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]

S1 ctxusbm;Citrix USB Monitor Driver;c:\windows\system32\DRIVERS\ctxusbm.sys [x]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]

S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]

S2 AntiVirMailService;Avira Email Schutz;c:\program files\Avira\AntiVir Desktop\avmailc.exe [x]

S2 AntiVirSchedulerService;Avira Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [x]

S2 AntiVirWebService;Avira Browser Schutz;c:\program files\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]

S2 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\SeaPort.EXE [x]

S2 dkab_device;dkab_device;c:\windows\system32\DKabcoms.exe [x]

S3 O2MDGRDR;O2MDGRDR;c:\windows\system32\DRIVERS\o2mdg.sys [x]

S3 O2SDGRDR;O2SDGRDR;c:\windows\system32\DRIVERS\o2sdg.sys [x]

S3 OEM13Vfx;Creative Camera OEM013 Video VFX Driver;c:\windows\system32\DRIVERS\OEM13Vfx.sys [x]

S3 OEM13Vid;Creative Camera OEM013 Driver;c:\windows\system32\DRIVERS\OEM13Vid.sys [x]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]

S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

HPZ12        REG_MULTI_SZ           Pml Driver HPZ12 Net Driver HPZ12

.

Inhalt des "geplante Tasks" Ordners

.

2012-09-20 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 06:32]

.

.

------- Zusätzlicher Suchlauf -------

.

uStart Page = about:blank

IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000

LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll

TCP: DhcpNameServer = 192.168.2.1

FF - ProfilePath - c:\users\Daniel Kort\AppData\Roaming\Mozilla\Firefox\Profiles\powom3zm.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig

.

- - - - Entfernte verwaiste Registrierungseinträge - - - -

.

HKCU-Run-Remote Control Editor - c:\program files\Common Files\TerraTec\Remote\TTTvRc.exe

HKCU-Run-Unified Remote v2 - c:\program files\Unified Remote\RemoteServer.exe

HKLM-Run-DivXUpdate - c:\program files\DivX\DivX Update\DivXUpdate.exe

.

.

.

--------------------- Gesperrte Registrierungsschluessel ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Zeit der Fertigstellung: 2012-09-20  18:18:56

ComboFix-quarantined-files.txt  2012-09-20 16:18

.

Vor Suchlauf: 11 Verzeichnis(se), 248.342.691.840 Bytes frei

Nach Suchlauf: 14 Verzeichnis(se), 248.136.314.880 Bytes frei

.

- - End Of File - - A8144EE2681B99D8793DAD3076D42376

Bitte nun Logs mit GMER und OSAM erstellen und posten.
GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen.
Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst.

Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM!

Downloade dir bitte

aswMBR.exe und speichere die Datei auf deinem Desktop.

Starte die aswMBR.exe - (aswMBR.exe Anleitung)
Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten".
Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen )
Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
Klicke auf Scan.
Warte bitte bis Scan finished successfully im DOS-Fenster steht.
Drücke auf Save Log und speichere diese auf dem Desktop.

Poste mir die aswMBR.txt in deiner nächsten Antwort.

Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung

Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).

Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.

Hallo Cosinus,

zwei Logs habe ich Dir angehängt. Bei Osam erhalte ich folgendes Log:

Code:

 Report of OSAM: Autorun Manager v5.0.11926.0

hxxp://www.online-solutions.ru/en/

Saved at 12:14:23 on 22.10.2012

OS: Windows 7 Service Pack 1 (Build 7601), 32-bit

Default Browser: Mozilla Corporation Firefox 15.0.1
 

Scanner Settings

Rootkits detection (hidden registry)

Rootkits detection (hidden files)

Retrieve files information

Check Microsoft signatures
 

Filters

Trusted entries

Empty entries

Hidden registry entries (rootkit activity)

Exclusively opened files

Not found files

Files without detailed information

Existing files

Non-startable services

Non-startable drivers

Active entries

Disabled entries
 

          Risk         Name         Publisher         Full Path         Status

Common

%SystemRoot%\Tasks

        ||||||         "Adobe Flash Player Updater.job"         "Adobe Systems Incorporated"         C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe         File exists

Control Panel Objects

%SystemRoot%\system32

        ||||||         "BCMWLCPL.CPL"         "Dell Inc."         C:\Windows\system32\BCMWLCPL.CPL         File exists

        ||||||         "DivXControlPanelApplet.cpl"         "DivX, Inc."         C:\Windows\system32\DivXControlPanelApplet.cpl         File exists

                       "FlashPlayerCPLApp.cpl"         "Adobe Systems Incorporated"         C:\Windows\system32\FlashPlayerCPLApp.cpl         File exists

        ||||||         "nvcpl.cpl"         "NVIDIA Corporation"         C:\Windows\system32\nvcpl.cpl         File exists

HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls

        ||||||         "bcmwlcpl.cpl"         "Dell Inc."         C:\Windows\System32\bcmwlcpl.cpl         File exists

        ||||||         "mlcfg32.cpl"         "Microsoft Corporation"         C:\PROGRA~1\MICROS~1\Office12\MLCFG32.CPL         File exists

                       "QuickTime"         "Apple Inc."         C:\Program Files\QuickTime\QTSystem\QuickTime.cpl         File exists

Drivers

HKLM\SYSTEM\CurrentControlSet\Services

                       "aswMBR" (aswMBR)                 C:\Users\DANIEL~1\AppData\Local\Temp\aswMBR.sys         Hidden registry entry, rootkit activity | File not found

                       "avgntflt" (avgntflt)         "Avira GmbH"         C:\Windows\System32\DRIVERS\avgntflt.sys         File exists

                       "avipbb" (avipbb)         "Avira GmbH"         C:\Windows\System32\DRIVERS\avipbb.sys         File exists

        ||||||         "avkmgr" (avkmgr)         "Avira GmbH"         C:\Windows\System32\DRIVERS\avkmgr.sys         File exists

        ||||||         "BCM42RLY" (BCM42RLY)         "Broadcom Corporation"         C:\Windows\System32\drivers\BCM42RLY.sys         File exists

                       "catchme" (catchme)                 C:\Users\DANIEL~1\AppData\Local\Temp\catchme.sys         File not found

        ||||||         "Citrix USB Monitor Driver" (ctxusbm)         "Citrix Systems, Inc."         C:\Windows\System32\DRIVERS\ctxusbm.sys         File exists

                       "Huawei DataCard USB Modem and USB Serial" (hwdatacard)                 C:\Windows\System32\DRIVERS\ewusbmdm.sys         File not found

                       "Huawei DataCard USB PNP Device" (hwusbdev)                 C:\Windows\System32\DRIVERS\ewusbdev.sys         File not found

                       "kgddypoc" (kgddypoc)         "GMER"         C:\kgddypoc.sys         Hidden registry entry, rootkit activity

        ||||||         "PxHelp20" (PxHelp20)         "Sonic Solutions"         C:\Windows\System32\Drivers\PxHelp20.sys         File exists

        ||||||         "ssmdrv" (ssmdrv)         "Avira GmbH"         C:\Windows\System32\DRIVERS\ssmdrv.sys         File exists

Explorer

HKLM\Software\Classes\Folder\shellex\ColumnHandlers

        ||||||         {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension"         "Adobe Systems, Inc."         C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll         File exists

HKLM\Software\Classes\Protocols\Filter

        ||||||         {CFB6322E-CC85-4d1b-82C7-893888A236BC} "IcaMimeFilterPP Class"         "Citrix Systems, Inc."         C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll         File exists

        ||||||         {CFB6322E-CC85-4d1b-82C7-893888A236BC} "IcaMimeFilterPP Class"         "Citrix Systems, Inc."         C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll         File exists

        ||||||         {807563E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter"         "Microsoft Corporation"         C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL         File exists

HKLM\Software\Classes\Protocols\Handler

        ||||||         {32505114-5902-49B2-880A-1F7738E5A384} "Data Page Plugable Protocal mso-offdap11 Handler"         "Microsoft Corporation"         C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL         File exists

        ||||||         {314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class"         "Microsoft Corporation"         C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll         File exists

        ||||||         {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class"         "Skype Technologies"         C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL         File exists

        ||||           {91774881-D725-4E58-B298-07617B9B86A8} "Skype IE add-on Pluggable Protocol"         "Skype Technologies S.A."         C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll         File exists

        ||||||         {03C514A3-1EFB-4856-9F99-10D7BE1653C0} "Windows Live Mail HTML Asynchronous Pluggable Protocol Handler"         "Microsoft Corporation"         C:\Program Files\Windows Live\Mail\mailcomm.dll         File exists

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved

        ||||||         {0563DB41-F538-4B37-A92D-4659049B7766} "CLSID_WLMCMimeFilter"         "Microsoft Corporation"         C:\Program Files\Windows Live\Mail\mailcomm.dll         File exists

        ||||||         {A70C977A-BF00-412C-90B7-034C51DA2439} "DesktopContext Class"         "NVIDIA Corporation"         C:\Windows\system32\nvcpl.dll         File exists

        ||             {D8D1CE8C-B1EB-4E95-B63B-1531BA60E992} "DivX Property Handler"         "DivX, Inc."         C:\Program Files\DivX\DivX Plus Media Foundation Components\DivXPropertyHandler.dll         File exists

        ||             {83238FAE-D346-4E12-8734-D42F7554B3E6} "DivX Thumbnail Provider"         "DivX, Inc."         C:\Program Files\DivX\DivX Plus Media Foundation Components\DivXThumbnailProvider.dll         File exists

        ||||||         {42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler"         "Microsoft Corporation"         C:\Program Files\Microsoft Office\Office12\msohevi.dll         File exists

        ||||||         {993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler"         "Microsoft Corporation"         C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll         File exists

        ||||||         {00020D75-0000-0000-C000-000000000046} "Microsoft Office Outlook"         "Microsoft Corporation"         C:\PROGRA~1\MICROS~1\Office12\MLSHEXT.DLL         File exists

        ||||||         {C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler"         "Microsoft Corporation"         C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll         File exists

        ||||||         {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} "NVIDIA CPL Context Menu Extension"         "NVIDIA Corporation"         C:\Windows\system32\nvshext.dll         File exists

        ||||||         {FFB699E0-306A-11d3-8BD1-00104B6F7516} "NVIDIA CPL Extension"         "NVIDIA Corporation"         C:\Windows\system32\nvcpl.dll         File exists

                       {0006F045-0000-0000-C000-000000000046} "Outlook File Icon Extension"         "Microsoft Corporation"         C:\PROGRA~1\MICROS~1\Office12\OLKFSTUB.DLL         File exists

                       {1AC06E4B-5A0A-4B62-B24A-F48389402CCE} "PowerLame"                         File not found | COM-object registry key not found

                       {45AC2688-0253-4ED8-97DE-B5370FA7D48A} "Shell Extension for Malware scanning"         "Avira Operations GmbH & Co. KG"         C:\Program Files\Avira\AntiVir Desktop\shlext.dll         File exists

        ||||||         {2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} "Windows Live Photo Gallery Autoplay Drop Target"         "Microsoft Corporation"         C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe         File exists

        ||||||         {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} "Windows Live Photo Gallery Editor Drop Target"         "Microsoft Corporation"         C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe         File exists

        ||||||         {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} "Windows Live Photo Gallery Editor Shim"         "Microsoft Corporation"         C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll         File exists

        ||||||         {00F30F90-3E96-453B-AFCD-D71989ECC2C7} "Windows Live Photo Gallery Viewer Autoplay Shim"         "Microsoft Corporation"         C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll         File exists

        ||||||         {00F33137-EE26-412F-8D71-F84E4C2C6625} "Windows Live Photo Gallery Viewer Autoplay Shim"         "Microsoft Corporation"         C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll         File exists

        ||||||         {00F374B7-B390-4884-B372-2FC349F2172B} "Windows Live Photo Gallery Viewer Drop Target"         "Microsoft Corporation"         C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe         File exists

        ||||||         {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} "Windows Live Photo Gallery Viewer Shim"         "Microsoft Corporation"         C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll         File exists

                       {B41DB860-8EE4-11D2-9906-E49FADC173CA} "WinRAR"         "Alexander Roshal"         C:\Program Files\WinRAR\rarext.dll         File exists

        ||||||         {06A2568A-CED6-4187-BB20-400B8C02BE5A} "{06A2568A-CED6-4187-BB20-400B8C02BE5A}"         "Microsoft Corporation"         C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe         File exists

Internet Explorer

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser

                       ITBar7Height "ITBar7Height"                         File not found | COM-object registry key not found

                       "ITBar7Layout"                         File not found | COM-object registry key not found

HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions

        ||||           {5F7B1267-94A9-47F5-98DB-E99415F33AEC} "In Blog veröffentlichen"         "Microsoft Corporation"         C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll         File exists

        ||             {FF059E31-CC5A-4E2E-BF3B-96E929D65503} "Research"         "Microsoft Corporation"         C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL         File exists

        ||||           {898EA8C8-E7FF-479B-8935-AEC46303B9E5} "Skype Click to Call"         "Skype Technologies S.A."         C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll         File exists

HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar

        ||||           {8dcb7100-df86-4384-8842-8fa844297b3f} "Bing Bar"         "Microsoft Corporation."         C:\Program Files\Microsoft\BingBar\BingExt.dll         File exists

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects

        ||||||         {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper"         "Adobe Systems Incorporated"         C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll         File exists

        ||||           {d2ce3e00-f94a-4740-988e-03dc2f38c34f} "Bing Bar Helper"         "Microsoft Corporation."         C:\Program Files\Microsoft\BingBar\BingExt.dll         File exists

                       {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper"                 C:\Program Files\Java\jre6\bin\jp2ssv.dll         File not found

        ||||           {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} "Skype Browser Helper"         "Skype Technologies S.A."         C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll         File exists

                       {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"                         File not found | COM-object registry key not found

Logon

%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup

        ||||||         "desktop.ini"                 C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini         File exists

%AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup

        ||||||         "desktop.ini"                 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini         File exists

        ||||           "Google Calendar Sync.lnk"         "Google"         C:\Program Files\Google\Google Calendar Sync\GoogleCalendarSync.exe         Shortcut exists | File exists

                       "McAfee Security Scan Plus.lnk"         "McAfee, Inc."         C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe         Shortcut exists | File exists

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

                       "DKab1err"         "Dell, Inc."         C:\Program Files\Dell\Printer Software\ErrorApp\DKab1err.exe         File exists

        ||||           "Skype"         "Skype Technologies S.A."         "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun         File exists

HKLM\Software\Microsoft\Windows\CurrentVersion\Run

        ||||           "Adobe ARM"         "Adobe Systems Incorporated"         "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"         File exists

                       "APSDaemon"         "Apple Inc."         "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"         File exists

                       "avgnt"         "Avira Operations GmbH & Co. KG"         "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min         File exists

        ||||           "Broadcom Wireless Manager UI"         "Dell Inc."         C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe         File exists

        ||||           "ConnectionCenter"         "Citrix Systems, Inc."         "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup         File exists

                       "DBRMTray"         "Microsoft"         C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe         File exists

                       "FreePDF Assistant"         "shbox.de"         "C:\Program Files\FreePDF_XP\fpassist.exe"         File exists

        ||||||         "NvCplDaemon"         "NVIDIA Corporation"         RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup         File exists

                       "NVHotkey"         "NVIDIA Corporation"         rundll32.exe C:\Windows\system32\nvHotkey.dll,Start         File exists

        ||||           "PDVDDXSrv"         "CyberLink Corp."         "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"         File exists

                       "QuickTime Task"         "Apple Inc."         "C:\Program Files\QuickTime\QTTask.exe" -atboottime         File exists

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce

                       "DBRMTray"         "Microsoft"         C:\Dell\DBRM\Reminder\TrayApp.exe         File exists

Network Providers

HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order

        ||||||         "Dell Wireless WLAN Card Logon Provider"         "Dell Inc."         C:\Windows\System32\BCMLogon.dll         File exists

Print Monitors

HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors

                       "Dell Enhanced TCP/IP Port"         " "         C:\Windows\system32\dkablmpm.dll         File exists

        ||||||         "Redirected Port"                 C:\Windows\system32\redmonnt.dll         File found, but it contains no detailed information

Services

HKLM\SYSTEM\CurrentControlSet\Services

        ||             "Adobe Acrobat Update Service" (AdobeARMservice)         "Adobe Systems Incorporated"         C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe         File exists

        ||||||         "Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc)         "Adobe Systems Incorporated"         C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe         File exists

                       "Avira Browser Schutz" (AntiVirWebService)         "Avira Operations GmbH & Co. KG"         C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE         File exists

                       "Avira Echtzeit Scanner" (AntiVirService)         "Avira Operations GmbH & Co. KG"         C:\Program Files\Avira\AntiVir Desktop\avguard.exe         File exists

                       "Avira Email Schutz" (AntiVirMailService)         "Avira Operations GmbH & Co. KG"         C:\Program Files\Avira\AntiVir Desktop\avmailc.exe         File exists

                       "Avira Planer" (AntiVirSchedulerService)         "Avira Operations GmbH & Co. KG"         C:\Program Files\Avira\AntiVir Desktop\sched.exe         File exists

        ||||||         "BBUpdate" (BBUpdate)         "Microsoft Corporation"         C:\Program Files\Microsoft\BingBar\SeaPort.EXE         File exists

        ||||           "Bing Bar Update Service" (BBSvc)         "Microsoft Corporation."         C:\Program Files\Microsoft\BingBar\BBSvc.EXE         File exists

        ||||||         "Dell Wireless WLAN Tray Service" (wltrysvc)                 C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE         File found, but it contains no detailed information

                       "dkab_device" (dkab_device)         " "         C:\Windows\system32\DKabcoms.exe         File exists

                       "Freemake Improver" (Freemake Improver)         "Freemake"         C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe         File exists

        ||||||         "McAfee Security Scan Component Host Service" (McComponentHostService)         "McAfee, Inc."         C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe         File exists

        ||||||         "Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32)         "Microsoft Corporation"         C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe         File exists

        ||||||         "Microsoft Office Diagnostics Service" (odserv)         "Microsoft Corporation"         C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE         File exists

                       "Mozilla Maintenance Service" (MozillaMaintenance)         "Mozilla Foundation"         C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe         File exists

        ||||||         "NVIDIA Display Driver Service" (nvsvc)         "NVIDIA Corporation"         C:\Windows\system32\nvvsvc.exe         File exists

        ||||||         "Office Source Engine" (ose)         "Microsoft Corporation"         C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE         File exists

        ||||||         "Skype Updater" (SkypeUpdate)         "Skype Technologies"         C:\Program Files\Skype\Updater\Updater.exe         File exists

        ||||||         "SQL Server (MSSMLBIZ)" (MSSQL$MSSMLBIZ)         "Microsoft Corporation"         c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe         File exists

        ||||||         "SQL Server VSS Writer" (SQLWriter)         "Microsoft Corporation"         c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe         File exists

        ||||||         "SQL Server-Browser" (SQLBrowser)         "Microsoft Corporation"         c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe         File exists

        ||||||         "SQL Server-Startdienst für Business Contact Manager" (BcmSqlStartupSvc)         "Microsoft Corporation"         C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe         File exists

        ||||||         "stllssvr" (stllssvr)         "MicroVision Development, Inc."         C:\Program Files\Common Files\SureThing Shared\stllssvr.exe         File exists

Winsock Providers

HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries

                       "AVSDA"         "Avira Operations GmbH & Co. KG"         C:\Program Files\Avira\AntiVir Desktop\avsda.dll         File exists
 

If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru

Dank Dir!

WArum denn jetzt im Anhang, poste bitte alle Log direkt und in CODE-Tags

Kein Problem. Hier kommt GMER:

Code:

GMER 1.0.15.15641 - hxxp://www.gmer.net

Rootkit scan 2012-10-22 11:10:24

Windows 6.1.7601 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 Hitachi_ rev.FC4O

Running: 3xbfbk21.exe; Driver: C:\Users\DANIEL~1\AppData\Local\Temp\kgddypoc.sys
 
 

---- System - GMER 1.0.15 ----
 

SSDT            914E2A26                                                                                                                       ZwCreateSection

SSDT            914E2A30                                                                                                                       ZwRequestWaitReplyPort

SSDT            914E2A2B                                                                                                                       ZwSetContextThread

SSDT            914E2A35                                                                                                                       ZwSetSecurityObject

SSDT            914E2A3A                                                                                                                       ZwSystemDebugControl

SSDT            914E29C7                                                                                                                       ZwTerminateProcess
 

---- Kernel code sections - GMER 1.0.15 ----
 

.text           ntkrnlpa.exe!ZwRollbackEnlistment + 140D                                                                                       82E76A49 1 Byte  [06]

.text           ntkrnlpa.exe!KiDispatchInterrupt + 5A2                                                                                         82EB04D2 19 Bytes  [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}

.text           ntkrnlpa.exe!KeRemoveQueueEx + 11F7                                                                                            82EB762C 4 Bytes  [26, 2A, 4E, 91] {SUB CL, ES:[ESI-0x6f]}

.text           ntkrnlpa.exe!KeRemoveQueueEx + 1553                                                                                            82EB7988 4 Bytes  [30, 2A, 4E, 91] {XOR [EDX], CH; DEC ESI; XCHG ECX, EAX}

.text           ntkrnlpa.exe!KeRemoveQueueEx + 1597                                                                                            82EB79CC 4 Bytes  [2B, 2A, 4E, 91] {SUB EBP, [EDX]; DEC ESI; XCHG ECX, EAX}

.text           ntkrnlpa.exe!KeRemoveQueueEx + 1613                                                                                            82EB7A48 4 Bytes  [35, 2A, 4E, 91]

.text           ntkrnlpa.exe!KeRemoveQueueEx + 1667                                                                                            82EB7A9C 4 Bytes  [3A, 2A, 4E, 91] {CMP CH, [EDX]; DEC ESI; XCHG ECX, EAX}

.text           ...                                                                                                                            

PAGE            spsys.sys!?SPRevision@@3PADA + 4F90                                                                                            A00E5000 290 Bytes  [8B, FF, 55, 8B, EC, 33, C0, ...]

PAGE            spsys.sys!?SPRevision@@3PADA + 50B3                                                                                            A00E5123 629 Bytes  [05, 0E, A0, FE, 05, 34, 05, ...]

PAGE            spsys.sys!?SPRevision@@3PADA + 5329                                                                                            A00E5399 101 Bytes  [6A, 28, 59, A5, 5E, C6, 03, ...]

PAGE            spsys.sys!?SPRevision@@3PADA + 538F                                                                                            A00E53FF 148 Bytes  [18, 5D, C2, 14, 00, 8B, FF, ...]

PAGE            spsys.sys!?SPRevision@@3PADA + 543B                                                                                            A00E54AB 2228 Bytes  [8B, FF, 55, 8B, EC, FF, 75, ...]

PAGE            ...                                                                                                                            
 

---- User code sections - GMER 1.0.15 ----
 

.text           C:\Program Files\Microsoft Office\Office12\WINWORD.EXE[2248] kernel32.dll!SetUnhandledExceptionFilter                          7637F4FB 5 Bytes  JMP 5F1450B8 C:\Program Files\Common Files\Microsoft Shared\office12\mso.dll (2007 Microsoft Office component/Microsoft Corporation)

.text           C:\Program Files\Microsoft Office\Office12\WINWORD.EXE[2248] ole32.dll!OleLoadFromStream                                       77206143 5 Bytes  JMP 5FC0E11A C:\Program Files\Common Files\Microsoft Shared\office12\mso.dll (2007 Microsoft Office component/Microsoft Corporation)

.text           C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE[4432] kernel32.dll!SetUnhandledExceptionFilter                          7637F4FB 5 Bytes  JMP 5F1450B8 C:\Program Files\Common Files\Microsoft Shared\office12\mso.dll (2007 Microsoft Office component/Microsoft Corporation)

.text           C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE[4432] ole32.dll!OleLoadFromStream                                       77206143 5 Bytes  JMP 5FC0E11A C:\Program Files\Common Files\Microsoft Shared\office12\mso.dll (2007 Microsoft Office component/Microsoft Corporation)
 

---- User IAT/EAT - GMER 1.0.15 ----
 

IAT             C:\Program Files\Microsoft Office\Office12\WINWORD.EXE[2248] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress]  [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\WINWORD.EXE[2248] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress]     [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\WINWORD.EXE[2248] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress]    [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\WINWORD.EXE[2248] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress]   [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\WINWORD.EXE[2248] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress]   [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc]                                                [746224CB] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup]                                           [7460562E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown]                                          [746056EC] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree]                                                 [74622546] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics]                                       [746185AA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage]                                         [74614D5E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth]                                        [74615105] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight]                                       [746151DA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromHBITMAP]                              [74616707] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC]                                        [74618301] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode]                                   [74618850] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode]                                 [746190B1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI]                                       [7461E254] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\Explorer.EXE[3692] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage]                                           [74614C90] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT             C:\Windows\System32\rundll32.exe[4064] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress]                          [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Windows\System32\rundll32.exe[4064] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress]                           [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Windows\System32\rundll32.exe[4064] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress]                        [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Windows\System32\rundll32.exe[4064] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress]                         [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE[4432] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress]  [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE[4432] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress]     [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE[4432] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress]    [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE[4432] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress]   [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE[4432] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress]   [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE[4432] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress]   [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)

IAT             C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE[4432] @ C:\Windows\system32\SECUR32.DLL [KERNEL32.dll!GetProcAddress]   [75B9FFF6] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
 

---- Devices - GMER 1.0.15 ----
 

AttachedDevice  \Driver\volmgr \Device\HarddiskVolume1                                                                                         fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

AttachedDevice  \Driver\volmgr \Device\HarddiskVolume1                                                                                         rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)

AttachedDevice  \Driver\volmgr \Device\HarddiskVolume2                                                                                         fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

AttachedDevice  \Driver\volmgr \Device\HarddiskVolume2                                                                                         rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)

AttachedDevice  \Driver\volmgr \Device\HarddiskVolume3                                                                                         fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

AttachedDevice  \Driver\volmgr \Device\HarddiskVolume3                                                                                         rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
 

Device          \Driver\BTHUSB \Device\00000078                                                                                                bthport.sys (Bluetooth-Bustreiber/Microsoft Corporation)

Device          \Driver\ACPI_HAL \Device\0000004d                                                                                              halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)

Device          \Driver\BTHUSB \Device\0000007a                                                                                                bthport.sys (Bluetooth-Bustreiber/Microsoft Corporation)
 

AttachedDevice  \FileSystem\fastfat \Fat                                                                                                       fltmgr.sys (Microsoft Dateisystem-Filter-Manager/Microsoft Corporation)

AttachedDevice  \FileSystem\fastfat \Fat                                                                                                       fltmgr.sys (Microsoft Dateisystem-Filter-Manager/Microsoft Corporation)
 

---- Threads - GMER 1.0.15 ----
 

Thread          System [4:6084]                                                                                                                A00F2F2E
 

---- Registry - GMER 1.0.15 ----
 

Reg             HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\904ce5e0a042                                                    

Reg             HKLM\SYSTEM\CurrentControlSet\services\iphlpsvc\Parameters\Isatap\{E9D31056-D588-4780-9B7E-9F6DC1857DFD}@InterfaceName         isatap.{E5C8C42F-560E-44DC-9ED7-EF3C023EC3F3}

Reg             HKLM\SYSTEM\CurrentControlSet\services\iphlpsvc\Parameters\Isatap\{E9D31056-D588-4780-9B7E-9F6DC1857DFD}@ReusableType          0

Reg             HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\904ce5e0a042 (not active ControlSet)                                
 

---- Files - GMER 1.0.15 ----
 

File            C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00F45.log                                                         1048576 bytes

File            C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00F46.log                                                         0 bytes

File            C:\Users\Daniel Kort\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\3AA9CA5C.dat                         0 bytes
 

---- EOF - GMER 1.0.15 ----

Und ASW:

Code:

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software

Run date: 2012-10-22 11:38:35

-----------------------------

11:38:35.604    OS Version: Windows 6.1.7601 Service Pack 1

11:38:35.604    Number of processors: 2 586 0x170A

11:38:35.606    ComputerName: DANIELKORTH-PC  UserName: Daniel Kort

11:38:36.931    Initialize success

11:38:51.108    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1

11:38:51.111    Disk 0 Vendor: Hitachi_ FC4O Size: 305245MB BusType: 3

11:38:51.199    Disk 0 MBR read successfully

11:38:51.207    Disk 0 MBR scan

11:38:51.214    Disk 0 Windows VISTA default MBR code

11:38:51.309    Disk 0 Partition 1 00     DE Dell Utility Dell 8.0       39 MB offset 63

11:38:51.366    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS        15000 MB offset 81920

11:38:51.396    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       290204 MB offset 30801920

11:38:51.435    Disk 0 scanning sectors +625140400

11:38:51.774    Disk 0 scanning C:\Windows\system32\drivers

11:40:09.976    Service scanning

11:40:27.108    Modules scanning

11:42:24.790    Disk 0 trace - called modules:

11:42:24.839    ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys halmacpi.dll 

11:42:24.841    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86d03718]

11:42:24.841    3 CLASSPNP.SYS[8b9c159e] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x862ba028]

11:42:24.842    Scan finished successfully

11:46:20.905    Disk 0 MBR has been saved successfully to "C:\Users\Daniel Kort\Desktop\MBR.dat"

11:46:20.911    The log file has been saved successfully to "C:\Users\Daniel Kort\Desktop\aswMBR.txt"

Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SASW und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!

Code:

SUPERAntiSpyware Scan Log

hxxp://www.superantispyware.com
 

Generated 11/05/2012 at 05:38 PM
 

Application Version : 5.6.1014
 

Core Rules Database Version : 9529

Trace Rules Database Version: 7341
 

Scan type       : Quick Scan

Total Scan Time : 00:09:19
 

Operating System Information

Windows 7 Professional 32-bit, Service Pack 1 (Build 6.01.7601)

UAC On - Limited User
 

Memory items scanned      : 935

Memory threats detected   : 0

Registry items scanned    : 30602

Registry threats detected : 0

File items scanned        : 8195

File threats detected     : 604
 

Adware.Tracking Cookie

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\daniel_kort@adx.chip[2].txt [ /adx.chip ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\MXK51CNI.txt [ /questionmarket.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\MHWAYLTX.txt [ /atdmt.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\87Y02FYX.txt [ /adfarm1.adition.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\L2XZU31Y.txt [ /adform.net ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\YXJEIKPR.txt [ /bs.serving-sys.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\26L3USJR.txt [ /ad2.adfarm1.adition.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\VMYCPS90.txt [ /ads.creative-serving.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\DKVMJ4D3.txt [ /smartadserver.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\Z0DM1835.txt [ /ad.zanox.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\2JB17Q4E.txt [ /doubleclick.net ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\6ATJO5WC.txt [ /imrworldwide.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\GGU3Y3BJ.txt [ /eas.apm.emediate.eu ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\F3IQF87J.txt [ /dyntracker.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\V7DH8LWD.txt [ /invitemedia.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\OZCY2V3W.txt [ /serving-sys.com ]

        .invitemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\TL3OVYJR.txt [ /track.adform.net ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\IS5M5YU9.txt [ /c.atdmt.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\NQSZZI9F.txt [ /zanox.com ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\DJA8SI7F.txt [ /www.etracker.de ]

        C:\Users\Daniel Kort\AppData\Roaming\Microsoft\Windows\Cookies\GQH9JDTI.txt [ /2o7.net ]

        C:\USERS\BEWERBER\AppData\Roaming\Microsoft\Windows\Cookies\Low\bewerber@doubleclick[1].txt [ Cookie:bewerber@doubleclick.net/ ]

        C:\USERS\BEWERBER\AppData\Roaming\Microsoft\Windows\Cookies\Low\bewerber@msnportal.112.2o7[1].txt [ Cookie:bewerber@msnportal.112.2o7.net/ ]

        C:\USERS\BEWERBER\AppData\Roaming\Microsoft\Windows\Cookies\Low\bewerber@atdmt[1].txt [ Cookie:bewerber@atdmt.com/ ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .guj.122.2o7.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.gujmedia.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.gujmedia.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.gujmedia.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\219KE2C8.txt [ Cookie:daniel kort@wm.wiredminds.de/track/ ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .apmebf.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .mediaplex.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        tracking.mlsat02.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adtech.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\HG0HWJGH.txt [ Cookie:daniel kort@ad.yieldmanager.com/ ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@apmebf[1].txt [ Cookie:daniel kort@apmebf.com/ ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\YWVJLL0W.txt [ Cookie:daniel kort@clkads.com/adServe/banners ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\YL6LY0PY.txt [ Cookie:daniel kort@atdmt.com/ ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\TE4UXJOC.txt [ Cookie:daniel kort@adfarm1.adition.com/ ]

        .amazon-adsystem.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .amazon-adsystem.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@fastclick[1].txt [ Cookie:daniel kort@fastclick.net/ ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\2O5DRGDJ.txt [ Cookie:daniel kort@ad2.adfarm1.adition.com/ ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        eas.apm.emediate.eu [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@content.yieldmanager[2].txt [ Cookie:daniel kort@content.yieldmanager.com/ ]

        ad.yieldmanager.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad.yieldmanager.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .atdmt.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .im.banner.t-online.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tracking.quisma.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adbrite.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@smartadserver[1].txt [ Cookie:daniel kort@smartadserver.com/ ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\53PBZAID.txt [ Cookie:daniel kort@doubleclick.net/ ]

        .xiti.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@imrworldwide[2].txt [ Cookie:daniel kort@imrworldwide.com/cgi-bin ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@mediaplex[2].txt [ Cookie:daniel kort@mediaplex.com/ ]

        .postclicktracking.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\M7XFSKJJ.txt [ Cookie:daniel kort@wm.wiredminds.de/track/ ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\0TYXV83R.txt [ Cookie:daniel kort@stats.zmags.com/StatsCollector/ ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@msnportal.112.2o7[1].txt [ Cookie:daniel kort@msnportal.112.2o7.net/ ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@de.sitestat[1].txt [ Cookie:daniel kort@de.sitestat.com/idgcom-de/pcwelt/ ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\HFKQ75JA.txt [ Cookie:daniel kort@ad3.adfarm1.adition.com/ ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@invitemedia[1].txt [ Cookie:daniel kort@invitemedia.com/ ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@serving-sys[1].txt [ Cookie:daniel kort@serving-sys.com/ ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\F9WPKBDV.txt [ Cookie:daniel kort@c.atdmt.com/ ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\LOLDP55O.txt [ Cookie:daniel kort@www.etracker.de/ ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\AppData\Roaming\Microsoft\Windows\Cookies\Low\daniel_kort@2o7[1].txt [ Cookie:daniel kort@2o7.net/ ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .ad.adnet.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\Cookies\daniel_kort@adx.chip[2].txt [ Cookie:daniel kort@adx.chip.de/ ]

        C:\USERS\DANIEL KORT\Cookies\MHWAYLTX.txt [ Cookie:daniel kort@atdmt.com/ ]

        C:\USERS\DANIEL KORT\Cookies\87Y02FYX.txt [ Cookie:daniel kort@adfarm1.adition.com/ ]

        C:\USERS\DANIEL KORT\Cookies\L2XZU31Y.txt [ Cookie:daniel kort@adform.net/ ]

        .advertising.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .de.at.atwola.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\Cookies\26L3USJR.txt [ Cookie:daniel kort@ad2.adfarm1.adition.com/ ]

        .c.atdmt.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\Cookies\DKVMJ4D3.txt [ Cookie:daniel kort@smartadserver.com/ ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        C:\USERS\DANIEL KORT\Cookies\Z0DM1835.txt [ Cookie:daniel kort@ad.zanox.com/ ]

        C:\USERS\DANIEL KORT\Cookies\2JB17Q4E.txt [ Cookie:daniel kort@doubleclick.net/ ]

        C:\USERS\DANIEL KORT\Cookies\6ATJO5WC.txt [ Cookie:daniel kort@imrworldwide.com/cgi-bin ]

        C:\USERS\DANIEL KORT\Cookies\219KE2C8.txt [ Cookie:daniel kort@wm.wiredminds.de/track/ ]

        C:\USERS\DANIEL KORT\Cookies\GGU3Y3BJ.txt [ Cookie:daniel kort@eas.apm.emediate.eu/ ]

        C:\USERS\DANIEL KORT\Cookies\F3IQF87J.txt [ Cookie:daniel kort@dyntracker.com/ ]

        C:\USERS\DANIEL KORT\Cookies\V7DH8LWD.txt [ Cookie:daniel kort@invitemedia.com/ ]

        C:\USERS\DANIEL KORT\Cookies\OZCY2V3W.txt [ Cookie:daniel kort@serving-sys.com/ ]

        C:\USERS\DANIEL KORT\Cookies\TL3OVYJR.txt [ Cookie:daniel kort@track.adform.net/ ]

        C:\USERS\DANIEL KORT\Cookies\IS5M5YU9.txt [ Cookie:daniel kort@c.atdmt.com/ ]

        C:\USERS\DANIEL KORT\Cookies\DJA8SI7F.txt [ Cookie:daniel kort@www.etracker.de/ ]

        C:\USERS\DANIEL KORT\Cookies\GQH9JDTI.txt [ Cookie:daniel kort@2o7.net/ ]

        .adform.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tracking.quisma.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .deutschepostag.112.2o7.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.effiliation.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.effiliation.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.effiliation.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.effiliation.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.effiliation.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .doubleclick.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tracking.quisma.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .smartadserver.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        tomtailor.dyntracker.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .im.banner.t-online.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .unister-adservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        aimfar.solution.weborama.fr [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .weborama.fr [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .weborama.fr [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .weborama.fr [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .weboramapublishertrackinguk2.solution.weborama.fr [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .weboramapublishertrackinguk2.solution.weborama.fr [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .stats.paypal.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .mediaplex.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .mediaplex.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .im.banner.t-online.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        teufel-media.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .apmebf.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .imrworldwide.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .imrworldwide.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        int.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        int.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        int.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        server.adform.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .unister-adservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adtech.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .ad.adnet.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        server.adformdsp.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adformdsp.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adform.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        eas.apm.emediate.eu [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .stepstone.112.2o7.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .steelhousemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .px.steelhousemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .2o7.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.etracker.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .invitemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .im.banner.t-online.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .a.revenuemax.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adtech.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .im.banner.t-online.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .lfstmedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.etracker.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .ru4.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .media6degrees.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .media6degrees.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .media6degrees.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .lucidmedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        tracking.porsche.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        tracking.porsche.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .trackalyzer.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        t2.trackalyzer.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .statcounter.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        eas4.emediate.eu [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradetracker.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        adx.chip.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .eaeacom.112.2o7.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .mmotraffic.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .mmotraffic.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adtech.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adtech.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adtech.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .advertising.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        stats.vertriebsassistent.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .zanox.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad.zanox.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.etracker.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .ad.adnet.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.etracker.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .at.atwola.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tribalfusion.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .insightexpressai.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .insightexpressai.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .insightexpressai.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .insightexpressai.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .insightexpressai.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .insightexpressai.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .insightexpressai.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .insightexpressai.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .ad-emea.doubleclick.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .zanox-affiliate.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .smartadserver.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tracking.mindshare.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        stats.computecmedia.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        de.sitestat.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .fastclick.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradedoubler.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        banner.lv.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www2.forum-media.eu [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.effiliation.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.effiliation.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.effiliation.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.effiliation.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        in.getclicky.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adviva.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        adserver.mundo-service.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradedoubler.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .googleads.g.doubleclick.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .atdmt.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .c.atdmt.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .c.atdmt.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradetracker.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradetracker.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        media.neodau.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        media.neodau.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        media.neodau.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradetracker.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradetracker.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        edates.traffective-tracking.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        edates.traffective-tracking.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        edates.traffective-tracking.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        edates.traffective-tracking.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.etracker.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.etracker.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .www.burstnet.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adlegend.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .serving-sys.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradetracker.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradedoubler.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradedoubler.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradetracker.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradetracker.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.adcocktail.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradetracker.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        viewad.exchangecash.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .unitymedia.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .unitymedia.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tracking.quisma.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tracking.quisma.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        oasn04.247realmedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        media.nuclearblast.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .serving-sys.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad.yieldmanager.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .serving-sys.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .advertising.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .advertising.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad.yieldmanager.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.adform.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .quartermedia.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .quartermedia.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        server.adform.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .traffictrack.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .overture.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .invitemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .mosaiq-media.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .mosaiq-media.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .mosaiq-media.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .liveperson.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.etracker.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.etracker.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.googleadservices.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        statse.webtrendslive.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .specificclick.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .fr.at.atwola.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .liveperson.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        sales.liveperson.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.youtube.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .bs.serving-sys.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.zanox-affiliate.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad.dyntracker.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        track.adform.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adform.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        adserver.medialine.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.medialine.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.medialine.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad.yieldmanager.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad.yieldmanager.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad.yieldmanager.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad3.adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        eas4.emediate.eu [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .smartadserver.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .smartadserver.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .webmasterplan.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .smartadserver.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .smartadserver.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .smartadserver.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tracking.quisma.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad1.adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad.zanox.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad4.adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .invitemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .olympiaverlag.122.2o7.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .im.banner.t-online.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        www.etracker.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.google.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        accounts.google.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        adx.chip.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .questionmarket.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .questionmarket.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        adx2.chip.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradedoubler.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tradedoubler.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        adx.chip.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .mediaplex.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adbrite.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .casalemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .casalemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .casalemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .casalemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .casalemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .casalemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        eas.apm.emediate.eu [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ww251.smartadserver.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        eas.apm.emediate.eu [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .tracker.vinsight.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        adx.chip.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        adx.chip.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .zanox-affiliate.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .zanox.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        stats.computecmedia.de [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .revsci.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .serving-sys.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .serving-sys.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .invitemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .invitemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .invitemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .invitemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .invitemedia.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .serving-sys.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad.yieldmanager.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        ad2.adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .adfarm1.adition.com [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

        .doubleclick.net [ C:\USERS\DANIEL KORT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\POWOM3ZM.DEFAULT\COOKIES.SQLITE ]

Hallo Cosinus,

anbei findest Du den ersten Scan. Leider hat mir hier das Programm jeden Cookie als Fehler angezeigt. Mein MBAM-Logfile ist leider verschollen. Ich weiß nicht, wo es abgelegt wurde. Hier wurde aber nichts angezeigt.

Vielen Dank schon einmal für alles!!!

Viele Grüße
Daniel

Zitat:

Ich weiß nicht, wo es abgelegt wurde. Hier wurde aber nichts angezeigt.

Wird doch alles beschrieben! Hier zB => http://www.trojaner-board.de/125889-...tml#post941520

Hi Cosinus,

das Log hatte ja keine Funde ;-) Aber ich habe es gefunden. Dank Dir!

Code:

Malwarebytes Anti-Malware 1.65.1.1000

www.malwarebytes.org
 

Datenbank Version: v2012.11.05.04
 

Windows 7 Service Pack 1 x86 NTFS

Internet Explorer 8.0.7601.17514

Daniel Kort :: DANIELKORTH-PC [Administrator]
 

05.11.2012 16:19:05

mbam-log-2012-11-05 (16-19-05).txt
 

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 367469

Laufzeit: 1 Stunde(n), 7 Minute(n), 2 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungswerte: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateiobjekte der Registrierung: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Verzeichnisse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateien: 0

(Keine bösartigen Objekte gefunden)
 

(Ende)