Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   weißer hintergrund nach start (https://www.trojaner-board.de/123561-weisser-hintergrund-start.html)

cosinus 11.09.2012 23:00
Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix
  • Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.
  • Starte combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
    Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.
  • Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.
Wichtiger Hinweis:
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.

Nashoa 12.09.2012 16:16
Code:
ComboFix 12-09-12.02 - Nashoa 12.09.2012  17:03:35.1.4 - x64
Microsoft Windows 7 Ultimate  6.1.7601.1.1252.49.1031.18.16367.14084 [GMT 2:00]
ausgeführt von:: c:\users\Nashoa\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((((((((((((((((  Weitere Löschungen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\xp-AntiSpy
c:\program files (x86)\xp-AntiSpy\Uninstall.exe
c:\program files (x86)\xp-AntiSpy\xp-AntiSpy.chm
c:\program files (x86)\xp-AntiSpy\xp-AntiSpy.exe
c:\program files (x86)\xp-AntiSpy\xp-AntiSpy.url
c:\users\Nashoa\AppData\Roaming\Microsoft\Windows\Templates\StuffItExpander2010.exe
c:\users\Nashoa\AppData\Roaming\msconfig.ini
c:\users\Nashoa\Desktop\Setup.exe
c:\users\Nashoa\icons.dll
c:\users\Nashoa\icons_original.dll
c:\users\Public\301.42-notebook-win7-winvista-64bit-international-whql.exe
c:\windows\SysWow64\wpcap.dll
.
----- Datei Replikatoren -----
.
c:\program files (x86)\Git\libexec\git-core\git-add.exe
c:\program files (x86)\Git\libexec\git-core\git-annotate.exe
c:\program files (x86)\Git\libexec\git-core\git-apply.exe
c:\program files (x86)\Git\libexec\git-core\git-archive.exe
c:\program files (x86)\Git\libexec\git-core\git-bisect--helper.exe
c:\program files (x86)\Git\libexec\git-core\git-blame.exe
c:\program files (x86)\Git\libexec\git-core\git-branch.exe
c:\program files (x86)\Git\libexec\git-core\git-bundle.exe
c:\program files (x86)\Git\libexec\git-core\git-cat-file.exe
c:\program files (x86)\Git\libexec\git-core\git-check-attr.exe
c:\program files (x86)\Git\libexec\git-core\git-check-ref-format.exe
c:\program files (x86)\Git\libexec\git-core\git-checkout-index.exe
c:\program files (x86)\Git\libexec\git-core\git-checkout.exe
c:\program files (x86)\Git\libexec\git-core\git-cherry-pick.exe
c:\program files (x86)\Git\libexec\git-core\git-cherry.exe
c:\program files (x86)\Git\libexec\git-core\git-clean.exe
c:\program files (x86)\Git\libexec\git-core\git-clone.exe
c:\program files (x86)\Git\libexec\git-core\git-commit-tree.exe
c:\program files (x86)\Git\libexec\git-core\git-commit.exe
c:\program files (x86)\Git\libexec\git-core\git-config.exe
c:\program files (x86)\Git\libexec\git-core\git-count-objects.exe
c:\program files (x86)\Git\libexec\git-core\git-describe.exe
c:\program files (x86)\Git\libexec\git-core\git-diff-files.exe
c:\program files (x86)\Git\libexec\git-core\git-diff-index.exe
c:\program files (x86)\Git\libexec\git-core\git-diff-tree.exe
c:\program files (x86)\Git\libexec\git-core\git-diff.exe
c:\program files (x86)\Git\libexec\git-core\git-fast-export.exe
c:\program files (x86)\Git\libexec\git-core\git-fetch-pack.exe
c:\program files (x86)\Git\libexec\git-core\git-fetch.exe
c:\program files (x86)\Git\libexec\git-core\git-fmt-merge-msg.exe
c:\program files (x86)\Git\libexec\git-core\git-for-each-ref.exe
c:\program files (x86)\Git\libexec\git-core\git-format-patch.exe
c:\program files (x86)\Git\libexec\git-core\git-fsck-objects.exe
c:\program files (x86)\Git\libexec\git-core\git-fsck.exe
c:\program files (x86)\Git\libexec\git-core\git-gc.exe
c:\program files (x86)\Git\libexec\git-core\git-get-tar-commit-id.exe
c:\program files (x86)\Git\libexec\git-core\git-grep.exe
c:\program files (x86)\Git\libexec\git-core\git-hash-object.exe
c:\program files (x86)\Git\libexec\git-core\git-help.exe
c:\program files (x86)\Git\libexec\git-core\git-index-pack.exe
c:\program files (x86)\Git\libexec\git-core\git-init-db.exe
c:\program files (x86)\Git\libexec\git-core\git-init.exe
c:\program files (x86)\Git\libexec\git-core\git-log.exe
c:\program files (x86)\Git\libexec\git-core\git-ls-files.exe
c:\program files (x86)\Git\libexec\git-core\git-ls-remote.exe
c:\program files (x86)\Git\libexec\git-core\git-ls-tree.exe
c:\program files (x86)\Git\libexec\git-core\git-mailinfo.exe
c:\program files (x86)\Git\libexec\git-core\git-mailsplit.exe
c:\program files (x86)\Git\libexec\git-core\git-merge-base.exe
c:\program files (x86)\Git\libexec\git-core\git-merge-file.exe
c:\program files (x86)\Git\libexec\git-core\git-merge-index.exe
c:\program files (x86)\Git\libexec\git-core\git-merge-ours.exe
c:\program files (x86)\Git\libexec\git-core\git-merge-recursive.exe
c:\program files (x86)\Git\libexec\git-core\git-merge-subtree.exe
c:\program files (x86)\Git\libexec\git-core\git-merge-tree.exe
c:\program files (x86)\Git\libexec\git-core\git-merge.exe
c:\program files (x86)\Git\libexec\git-core\git-mktag.exe
c:\program files (x86)\Git\libexec\git-core\git-mktree.exe
c:\program files (x86)\Git\libexec\git-core\git-mv.exe
c:\program files (x86)\Git\libexec\git-core\git-name-rev.exe
c:\program files (x86)\Git\libexec\git-core\git-notes.exe
c:\program files (x86)\Git\libexec\git-core\git-pack-objects.exe
c:\program files (x86)\Git\libexec\git-core\git-pack-redundant.exe
c:\program files (x86)\Git\libexec\git-core\git-pack-refs.exe
c:\program files (x86)\Git\libexec\git-core\git-patch-id.exe
c:\program files (x86)\Git\libexec\git-core\git-peek-remote.exe
c:\program files (x86)\Git\libexec\git-core\git-prune-packed.exe
c:\program files (x86)\Git\libexec\git-core\git-prune.exe
c:\program files (x86)\Git\libexec\git-core\git-push.exe
c:\program files (x86)\Git\libexec\git-core\git-read-tree.exe
c:\program files (x86)\Git\libexec\git-core\git-receive-pack.exe
c:\program files (x86)\Git\libexec\git-core\git-reflog.exe
c:\program files (x86)\Git\libexec\git-core\git-remote-ext.exe
c:\program files (x86)\Git\libexec\git-core\git-remote-fd.exe
c:\program files (x86)\Git\libexec\git-core\git-remote.exe
c:\program files (x86)\Git\libexec\git-core\git-replace.exe
c:\program files (x86)\Git\libexec\git-core\git-repo-config.exe
c:\program files (x86)\Git\libexec\git-core\git-rerere.exe
c:\program files (x86)\Git\libexec\git-core\git-reset.exe
c:\program files (x86)\Git\libexec\git-core\git-rev-list.exe
c:\program files (x86)\Git\libexec\git-core\git-rev-parse.exe
c:\program files (x86)\Git\libexec\git-core\git-revert.exe
c:\program files (x86)\Git\libexec\git-core\git-rm.exe
c:\program files (x86)\Git\libexec\git-core\git-send-pack.exe
c:\program files (x86)\Git\libexec\git-core\git-shortlog.exe
c:\program files (x86)\Git\libexec\git-core\git-show-branch.exe
c:\program files (x86)\Git\libexec\git-core\git-show-ref.exe
c:\program files (x86)\Git\libexec\git-core\git-show.exe
c:\program files (x86)\Git\libexec\git-core\git-stage.exe
c:\program files (x86)\Git\libexec\git-core\git-status.exe
c:\program files (x86)\Git\libexec\git-core\git-stripspace.exe
c:\program files (x86)\Git\libexec\git-core\git-symbolic-ref.exe
c:\program files (x86)\Git\libexec\git-core\git-tag.exe
c:\program files (x86)\Git\libexec\git-core\git-tar-tree.exe
c:\program files (x86)\Git\libexec\git-core\git-unpack-file.exe
c:\program files (x86)\Git\libexec\git-core\git-unpack-objects.exe
c:\program files (x86)\Git\libexec\git-core\git-update-index.exe
c:\program files (x86)\Git\libexec\git-core\git-update-ref.exe
c:\program files (x86)\Git\libexec\git-core\git-update-server-info.exe
c:\program files (x86)\Git\libexec\git-core\git-upload-archive.exe
c:\program files (x86)\Git\libexec\git-core\git-var.exe
c:\program files (x86)\Git\libexec\git-core\git-verify-pack.exe
c:\program files (x86)\Git\libexec\git-core\git-verify-tag.exe
c:\program files (x86)\Git\libexec\git-core\git-whatchanged.exe
c:\program files (x86)\Git\libexec\git-core\git-write-tree.exe
c:\program files (x86)\Git\libexec\git-core\git.exe
c:\users\Nashoa\AppData\Roaming\Microsoft\Installer\{0309F85C-B1CC-DA9F-D184-FE93CCF08E1D}\ARPPRODUCTICON.exe
c:\windows\Installer\{0BD776F3-057D-4C11-020C-4FA9B13D04F9}\NewShortcut2_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{0BD776F3-057D-4C11-020C-4FA9B13D04F9}\NewShortcut3_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{0BD776F3-057D-4C11-020C-4FA9B13D04F9}\NewShortcut4_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{0BD776F3-057D-4C11-020C-4FA9B13D04F9}\NewShortcut5_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{119B2F5A-2A06-DB96-FF28-992EC2A10BDF}\ARPPRODUCTICON.exe
c:\windows\Installer\{19D614EB-D62A-AEE7-2391-E74126601D59}\ARPPRODUCTICON.exe
c:\windows\Installer\{1C373820-B9C8-0F7F-8F84-FC1B76A85F27}\ARPPRODUCTICON.exe
c:\windows\Installer\{2D35BC33-7D08-D529-DF91-8A15FBF2600E}\ARPPRODUCTICON.exe
c:\windows\Installer\{2E8D6204-D656-8355-1ED3-2988AC52EB0F}\ARPPRODUCTICON.exe
c:\windows\Installer\{337788D1-43D1-9A0F-9787-DD00DB512D41}\ARPPRODUCTICON.exe
c:\windows\Installer\{4725833D-4325-5C34-57D4-1FE23E5AE578}\ARPPRODUCTICON.exe
c:\windows\Installer\{4B271648-43CB-DD31-FF24-E7B06D3EE72A}\ARPPRODUCTICON.exe
c:\windows\Installer\{4D533F05-A3F6-F8A9-F1F6-FA6812089D36}\ARPPRODUCTICON.exe
c:\windows\Installer\{4DC37F33-7AEC-A4CB-56B1-69A402828763}\ARPPRODUCTICON.exe
c:\windows\Installer\{5710DAC2-8F2A-503C-CFC2-A973ADE0EA4C}\ARPPRODUCTICON.exe
c:\windows\Installer\{5831C6D6-309D-DBB5-14F7-FEE57086CEE7}\ARPPRODUCTICON.exe
c:\windows\Installer\{5831C6D6-309D-DBB5-14F7-FEE57086CEE7}\NewShortcut2_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{5831C6D6-309D-DBB5-14F7-FEE57086CEE7}\NewShortcut3_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{5831C6D6-309D-DBB5-14F7-FEE57086CEE7}\NewShortcut4_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{5831C6D6-309D-DBB5-14F7-FEE57086CEE7}\NewShortcut5_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{5C763682-4C40-86DA-9C46-31924D7D2C34}\ARPPRODUCTICON.exe
c:\windows\Installer\{60E5022D-FA4B-C6A2-1E80-B46EC39096F3}\ARPPRODUCTICON.exe
c:\windows\Installer\{60F34FDF-267C-408F-290E-EC90D841C8CB}\ARPPRODUCTICON.exe
c:\windows\Installer\{63CE6C32-1EB3-4C51-89FC-9FD96A661A9C}\ARPPRODUCTICON.exe
c:\windows\Installer\{66B79AE1-C6E2-B958-689C-D0812DE86BAB}\ARPPRODUCTICON.exe
c:\windows\Installer\{6B39BE0F-0F5E-A8FA-33E4-8481AE39D96C}\ARPPRODUCTICON.exe
c:\windows\Installer\{741CC1C6-6DCC-4A40-2C3B-B93C7CFEA9C2}\ARPPRODUCTICON.exe
c:\windows\Installer\{8E19F2AF-7145-51DE-E395-7729A9374973}\ARPPRODUCTICON.exe
c:\windows\Installer\{91CB5B8B-4EC8-DBA1-A88D-99FD480567B0}\ARPPRODUCTICON.exe
c:\windows\Installer\{924FBAC4-60D2-7981-3C3E-979DF9CBB346}\ARPPRODUCTICON.exe
c:\windows\Installer\{95CFD910-D7FD-1C12-9715-320D9894277D}\NewShortcut2_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{95CFD910-D7FD-1C12-9715-320D9894277D}\NewShortcut3_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{95CFD910-D7FD-1C12-9715-320D9894277D}\NewShortcut4_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{95CFD910-D7FD-1C12-9715-320D9894277D}\NewShortcut5_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{9DC939DC-B7A4-D0E2-C582-A442DF1B3EBE}\ARPPRODUCTICON.exe
c:\windows\Installer\{A1BD938B-F006-6E6D-70B2-47E1DD56F7DE}\ARPPRODUCTICON.exe
c:\windows\Installer\{BABF7852-C2DD-6A8A-9956-101720C715C7}\ARPPRODUCTICON.exe
c:\windows\Installer\{BB7C2A56-9706-43B8-5A8C-210AF5816106}\ARPPRODUCTICON.exe
c:\windows\Installer\{BE882A12-5A45-3DFF-9FD0-306DE65EB8A5}\NewShortcut2_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{BE882A12-5A45-3DFF-9FD0-306DE65EB8A5}\NewShortcut3_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{BE882A12-5A45-3DFF-9FD0-306DE65EB8A5}\NewShortcut4_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{BE882A12-5A45-3DFF-9FD0-306DE65EB8A5}\NewShortcut5_3B1A0823966A48909E77539C330FBF6E.exe
c:\windows\Installer\{CFC2CB60-5654-05A7-4D30-C661800A3A92}\ARPPRODUCTICON.exe
c:\windows\Installer\{D04CE005-D1D2-80F3-84C8-B3524FCD39C3}\ARPPRODUCTICON.exe
c:\windows\Installer\{D544AE4C-4152-225B-A897-6756C8986B14}\ARPPRODUCTICON.exe
c:\windows\Installer\{D81E9069-3CCC-4405-3751-71E4AFEACC52}\ARPPRODUCTICON.exe
c:\windows\Installer\{E93FF166-DF14-2537-8FB4-96BB5810A96C}\ARPPRODUCTICON.exe
c:\windows\Installer\{FA9827E1-8A8E-C176-4923-0840A67ED4DE}\ARPPRODUCTICON.exe
d:\ssd\Users\Nashoa\AppData\Roaming\Microsoft\Installer\{10EBB586-D21E-60CA-0856-AA753EBE1F16}\ARPPRODUCTICON.exe
d:\ssd\Users\Nashoa\AppData\Roaming\Microsoft\Installer\{93DF9F1F-17EB-82C0-F82B-9ABC230D6DE5}\ARPPRODUCTICON.exe
d:\ssd\Users\Nashoa\AppData\Roaming\Microsoft\Installer\{C496ED25-F3EC-0CBC-37DB-B31C6E6592C9}\ARPPRODUCTICON.exe
.
.
(((((((((((((((((((((((  Dateien erstellt von 2012-08-12 bis 2012-09-12  ))))))))))))))))))))))))))))))
.
.
2012-09-12 15:07 . 2012-09-12 15:07        --------        d-----w-        c:\users\Default\AppData\Local\temp
2012-09-10 21:42 . 2012-09-10 21:42        --------        d-----w-        C:\_OTL
2012-09-08 11:33 . 2012-09-08 11:33        95208        ----a-w-        c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-09-08 08:16 . 2012-09-08 08:16        73696        ----a-w-        c:\program files (x86)\Mozilla Firefox\breakpadinjector.dll
2012-09-06 15:43 . 2012-09-06 15:43        --------        d-----w-        c:\program files (x86)\ESET
2012-09-05 15:59 . 2012-09-05 15:59        --------        d-----w-        c:\users\Nashoa\AppData\Roaming\Malwarebytes
2012-09-05 15:59 . 2012-09-05 15:59        --------        d-----w-        c:\programdata\Malwarebytes
2012-09-05 15:59 . 2012-09-05 15:59        --------        d-----w-        c:\program files (x86)\Malwarebytes' Anti-Malware
2012-09-05 15:59 . 2012-07-03 11:46        24904        ----a-w-        c:\windows\system32\drivers\mbam.sys
2012-09-04 16:33 . 2012-09-05 15:34        --------        d-----w-        c:\program files (x86)\OpenVPN
2012-08-31 20:44 . 2012-08-31 20:44        --------        d-----w-        c:\users\Nashoa\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2012-08-29 17:11 . 2012-08-29 17:13        --------        d-----w-        c:\program files (x86)\Subtitle Workshop
2012-08-26 20:51 . 2012-08-20 15:23        224088        ----a-w-        c:\windows\system32\drivers\VBoxDrv.sys
2012-08-26 20:51 . 2012-08-20 15:23        130904        ----a-w-        c:\windows\system32\drivers\VBoxUSBMon.sys
2012-08-26 20:51 . 2012-08-26 20:51        --------        d-----w-        c:\program files\Oracle
2012-08-20 15:23 . 2012-08-20 15:23        166232        ----a-w-        c:\windows\system32\drivers\VBoxNetFlt.sys
2012-08-20 15:23 . 2012-08-20 15:23        147288        ----a-w-        c:\windows\system32\drivers\VBoxNetAdp.sys
2012-08-20 15:23 . 2012-08-20 15:23        117080        ----a-w-        c:\windows\system32\drivers\VBoxUSB.sys
2012-08-20 15:23 . 2012-08-20 15:23        320856        ----a-w-        c:\windows\system32\VBoxNetFltNobj.dll
2012-08-19 11:02 . 2012-08-19 11:02        --------        d-----w-        c:\program files\7-Zip
2012-08-18 08:38 . 2012-08-18 08:38        --------        d-----w-        c:\program files (x86)\Common Files\Java
2012-08-18 08:38 . 2012-09-08 11:33        821736        ----a-w-        c:\windows\SysWow64\npDeployJava1.dll
2012-08-18 08:37 . 2012-09-08 11:33        --------        d-----w-        c:\program files (x86)\Java
2012-08-18 08:36 . 2012-08-18 08:36        --------        d-----w-        C:\Intel
2012-08-17 20:36 . 2012-08-17 20:37        --------        d-----w-        c:\users\Nashoa\AppData\Roaming\.minecraft1
2012-08-17 20:21 . 2012-08-17 20:21        289768        ----a-w-        c:\windows\system32\javaws.exe
2012-08-17 20:21 . 2012-08-17 20:21        189416        ----a-w-        c:\windows\system32\javaw.exe
2012-08-17 20:21 . 2012-08-17 20:21        188904        ----a-w-        c:\windows\system32\java.exe
2012-08-17 20:21 . 2012-08-17 20:21        108008        ----a-w-        c:\windows\system32\WindowsAccessBridge-64.dll
2012-08-17 12:11 . 2009-06-02 16:00        58368        ----a-w-        c:\windows\system32\drivers\CH341S64.SYS
2012-08-15 09:11 . 2012-05-05 08:36        503808        ----a-w-        c:\windows\system32\srcore.dll
2012-08-15 09:11 . 2012-05-05 07:46        43008        ----a-w-        c:\windows\SysWow64\srclient.dll
2012-08-15 09:11 . 2012-02-11 06:43        751104        ----a-w-        c:\windows\system32\win32spl.dll
2012-08-15 09:11 . 2012-02-11 06:36        559104        ----a-w-        c:\windows\system32\spoolsv.exe
2012-08-15 09:11 . 2012-02-11 06:36        67072        ----a-w-        c:\windows\splwow64.exe
2012-08-15 09:11 . 2012-02-11 05:43        492032        ----a-w-        c:\windows\SysWow64\win32spl.dll
2012-08-15 09:11 . 2012-05-14 05:26        956928        ----a-w-        c:\windows\system32\localspl.dll
2012-08-15 09:11 . 2012-07-18 18:15        3148800        ----a-w-        c:\windows\system32\win32k.sys
2012-08-15 09:11 . 2012-07-04 22:16        73216        ----a-w-        c:\windows\system32\netapi32.dll
2012-08-15 09:11 . 2012-07-04 22:13        59392        ----a-w-        c:\windows\system32\browcli.dll
2012-08-15 09:11 . 2012-07-04 22:13        136704        ----a-w-        c:\windows\system32\browser.dll
2012-08-15 09:11 . 2012-07-04 21:14        41984        ----a-w-        c:\windows\SysWow64\browcli.dll
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-11 17:48 . 2011-12-28 22:10        283304        ----a-w-        c:\windows\SysWow64\PnkBstrB.xtr
2012-09-11 17:48 . 2011-12-27 20:11        283304        ----a-w-        c:\windows\SysWow64\PnkBstrB.exe
2012-09-11 17:05 . 2011-12-27 20:11        283304        ----a-w-        c:\windows\SysWow64\PnkBstrB.ex0
2012-09-08 11:33 . 2012-03-03 20:01        746984        ----a-w-        c:\windows\SysWow64\deployJava1.dll
2012-08-28 14:53 . 2012-04-07 11:43        696520        ----a-w-        c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-28 14:53 . 2011-12-27 15:42        73416        ----a-w-        c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-17 20:21 . 2012-05-24 15:30        916456        ----a-w-        c:\windows\system32\deployJava1.dll
2012-08-17 20:21 . 2012-05-24 15:30        1034216        ----a-w-        c:\windows\system32\npDeployJava1.dll
2012-08-15 09:12 . 2009-10-14 05:12        62134624        ----a-w-        c:\windows\system32\MRT.exe
2012-07-31 20:55 . 2011-03-28 16:36        19720        ----a-w-        c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-07-13 22:10 . 2011-12-28 18:00        18960        ----a-w-        c:\windows\system32\drivers\LNonPnP.sys
2012-06-15 14:14 . 2012-06-15 14:14        525792        ----a-w-        c:\windows\DIFxAPI.dll
2012-06-15 14:12 . 2012-06-15 14:12        2416744        ----a-w-        c:\windows\system32\RtPgEx64.dll
2012-06-14 16:04 . 2011-12-27 20:11        76888        ----a-w-        c:\windows\SysWow64\PnkBstrA.exe
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"NetLimiter"="c:\program files\NetLimiter 3\NLClientApp.exe" [2011-03-21 2910208]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-07-13 17418928]
"TrafficMonitor"="c:\progra~2\TRAFFI~1\TRAFFICMONITOR.EXE" [2012-04-16 5278576]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
"WLSync"="c:\program files (x86)\Windows Live\Mesh\WLSync.exe" [2012-03-08 1449824]
"Infium"="c:\program files (x86)\QIP 2012\qip.exe" [2012-03-23 7351760]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-12-15 258512]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2011-08-15 1955208]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 641664]
"vmware-tray"="c:\program files (x86)\VMware\VMware Workstation\vmware-tray.exe" [2012-04-30 103536]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-30 59280]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-06-07 421776]
"AsioThk32Reg"="CTASIO.DLL" [2010-03-18 47104]
"CTHelper"="CTHELPER.EXE" [2010-03-18 19456]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\users\Nashoa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
2x Monitor.lnk - c:\users\Nashoa\AppData\Roaming\Realtime Soft\UltraMon\3.1.0\Profiles\2x Monitor.umprofile [2012-1-21 133]
Microsoft Outlook 2010.lnk - c:\windows\Installer\{90140000-003D-0000-1000-0000000FF1CE}\outicon.exe [2011-12-27 303456]
TeamSpeak 3 Client.lnk - c:\program files\TeamSpeak 3 Client\ts3client_win64.exe [2011-11-16 12752880]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
UltraMon.lnk - c:\windows\Installer\{537056B7-32A4-4408-9B54-0341963C7C9C}\IcoUltraMon.ico [2011-12-27 29310]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages        REG_MULTI_SZ          kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update-Dienst (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-31 116648]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
R2 otshot;otshot;c:\program files\otshot\ZalmanUpdateService.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-06-07 160944]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-28 250568]
R3 CH341SER_A64;CH341SER_A64;c:\windows\system32\Drivers\CH341S64.SYS [2009-06-02 58368]
R3 COMMONFX;COMMONFX;c:\windows\system32\drivers\COMMONFX.SYS [2010-03-18 158808]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2012-01-18 79360]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2012-08-17 79360]
R3 CTAUDFX;CTAUDFX;c:\windows\system32\drivers\CTAUDFX.SYS [2010-03-18 706648]
R3 CTERFXFX.SYS;CTERFXFX.SYS;c:\windows\System32\drivers\CTERFXFX.SYS [2010-03-18 141912]
R3 CTERFXFX;CTERFXFX;c:\windows\system32\drivers\CTERFXFX.SYS [2010-03-18 141912]
R3 CTSBLFX;CTSBLFX;c:\windows\system32\drivers\CTSBLFX.SYS [2010-03-18 681048]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-31 116648]
R3 HSPADataCardusbmdm;HSPADataCard Proprietary USB Driver;c:\windows\system32\DRIVERS\HSPADataCardusbmdm.sys [x]
R3 HSPADataCardusbnmea;HSPADataCard NMEA Port;c:\windows\system32\DRIVERS\HSPADataCardusbnmea.sys [x]
R3 HSPADataCardusbser;HSPADataCard Diagnostic Port;c:\windows\system32\DRIVERS\HSPADataCardusbser.sys [x]
R3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-08-23 317440]
R3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-08 114144]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link der Serie 5000 Adaptertreiber für Windows 7 64-Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]
R3 NLNdisPT;NetLimiter Ndis Protocol Service;c:\windows\system32\DRIVERS\nlndis.sys [2011-03-21 33416]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 PORTMON;PORTMON;c:\users\Nashoa\Desktop\SysinternalsSuite\PORTMSYS.SYS [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992]
R3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\DRIVERS\s0016bus.sys [2008-05-16 115240]
R3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 19496]
R3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 158760]
R3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 137256]
R3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 34344]
R3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0016obex.sys [2008-05-16 136744]
R3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\DRIVERS\s0016unic.sys [2008-05-16 151592]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 tap0801;TAP-Win32 Adapter V8;c:\windows\system32\DRIVERS\tap0801.sys [2005-04-13 30720]
R3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\DRIVERS\tapoas.sys [2011-08-19 30720]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys [2012-08-20 117080]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 wod0205;WeOnlyDo Network Adapter 2.5;c:\windows\system32\DRIVERS\wod0205.sys [2011-04-23 33160]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-05-15 28992]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [2011-08-08 116336]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-12-15 27760]
S1 nltdi;nltdi;c:\program files\NetLimiter 3\nltdi.sys [2011-03-21 88200]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2012-08-20 224088]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2012-08-20 130904]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-04-06 236544]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-12-15 86224]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2011-08-15 2329480]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-06-25 35344]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-07-16 2673064]
S2 TMPService;TrafficMonitor Packettreiber Initialisierung;c:\program files (x86)\TrafficMonitor\TMPacketServiceInit.exe [2012-04-16 692808]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-01-23 92592]
S2 UltraMonUtility;UltraMon Utility Driver;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [2008-11-14 20512]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2011-08-29 846448]
S2 VMwareHostd;VMware Workstation Server;c:\program files (x86)\VMware\VMware Workstation\vmware-hostd.exe [2012-04-30 11839488]
S2 vstor2-mntapi10-shared;Vstor2 MntApi 1.0 Driver (shared);SysWOW64\drivers\vstor2-mntapi10-shared.sys [x]
S2 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S2 WTGService;WTGService;c:\program files (x86)\XSManager\WTGService.exe [2012-01-14 327392]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2012-04-06 11174400]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2012-04-06 343040]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
S3 avmaudio;AVM Audio;c:\windows\system32\DRIVERS\avmaudio.sys [2012-04-23 116096]
S3 cmntnet;Wireless Data Device USB Ethernet Driver;c:\windows\system32\DRIVERS\cmntnet.sys [2012-05-07 141824]
S3 cmnuusbser;Mobile Connector USB Device for Serial Communication Device;c:\windows\system32\DRIVERS\cmnuusbser.sys [2012-05-07 123904]
S3 COMMONFX.SYS;COMMONFX.SYS;c:\windows\System32\drivers\COMMONFX.SYS [2010-03-18 158808]
S3 CTAUDFX.SYS;CTAUDFX.SYS;c:\windows\System32\drivers\CTAUDFX.SYS [2010-03-18 706648]
S3 ctgame;Game Port;c:\windows\system32\DRIVERS\ctgame.sys [2008-08-21 26264]
S3 CTSBLFX.SYS;CTSBLFX.SYS;c:\windows\System32\drivers\CTSBLFX.SYS [2010-03-18 681048]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [2011-02-08 39936]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [2011-02-08 64512]
S3 MEIx64;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
S3 MonitorFunction;Driver for Monitor;c:\windows\system32\DRIVERS\TVMonitor.sys [2011-12-16 16376]
S3 NLNdisMP;NLNdisMP;c:\windows\system32\DRIVERS\nlndis.sys [2011-03-21 33416]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 RDPDISPM;RDPDISPM;c:\windows\system32\DRIVERS\rdpdispm.sys [2010-08-31 10752]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2012-08-20 147288]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2012-08-20 166232]
.
.
Inhalt des "geplante Tasks" Ordners
.
2012-09-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-07 14:53]
.
2012-09-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-31 10:07]
.
2012-09-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-31 10:07]
.
2012-09-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2620911757-4132591521-1881684151-1000Core.job
- c:\users\Nashoa\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-17 10:39]
.
2012-09-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2620911757-4132591521-1881684151-1000UA.job
- c:\users\Nashoa\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-17 10:39]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2011-10-07 1744152]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-06-24 11895400]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-03-15 499608]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://alliances.commandandconquer.com/de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Web-Suche - c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
LSP: %SystemRoot%\system32\vsocklib.dll
TCP: Interfaces\{41DC8ECF-B7D2-4FFE-867D-F71811CE2C2E}: NameServer = 192.168.2.1
TCP: Interfaces\{989D2529-7371-44A7-BC93-2B1BF2ED44B9}: NameServer = 192.168.2.1
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
FF - ProfilePath - c:\users\Nashoa\AppData\Roaming\Mozilla\Firefox\Profiles\s1rgrvyq.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.startup.homepage - hxxp://google.de
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKLM-Run-UnlockerAssistant - c:\program files (x86)\Unlocker\UnlockerAssistant.exe
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
AddRemove-Fraps - d:\fraps\uninstall.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_bc2.exe
AddRemove-xp-AntiSpy - c:\program files (x86)\xp-AntiSpy\Uninstall.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-2620911757-4132591521-1881684151-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{1430CBCF-99B2-8639-A25C-ED24828A2BD2}*]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-2620911757-4132591521-1881684151-1000\Software\SecuROM\License information*]
"datasecu"=hex:06,54,a5,27,57,89,bf,21,83,6a,a4,1c,92,cd,66,ff,9f,b9,e5,77,07,
  3e,fb,6e,ae,e4,a6,af,60,2d,84,e4,23,e5,1a,87,62,d1,8f,ef,f9,29,74,79,92,c6,\
"rkeysecu"=hex:1c,0f,6a,ed,19,29,31,a0,2b,b8,77,35,7e,c7,6e,20
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-09-12  17:09:32
ComboFix-quarantined-files.txt  2012-09-12 15:09
.
Vor Suchlauf: 8 Verzeichnis(se), 27.115.794.432 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 26.792.525.824 Bytes frei
.
- - End Of File - - 6EFB152FA1002F60AC7B14921B17C6E0

cosinus 12.09.2012 19:42
Bitte nun Logs mit GMER und OSAM erstellen und posten.
GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen.
Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst.

Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM!

Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
  • Starte die aswMBR.exe - (aswMBR.exe Anleitung)
    Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten".
  • Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen )
    Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
  • Klicke auf Scan.
  • Warte bitte bis Scan finished successfully im DOS-Fenster steht.
  • Drücke auf Save Log und speichere diese auf dem Desktop.
Poste mir die aswMBR.txt in deiner nächsten Antwort.

Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung

Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).



Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.

Nashoa 12.09.2012 20:47
das programm GMER gab bei mir nur zwei fehlermeldungen aus, dass dateien grade benutzt werden (siehe bilder)
http://1.1.1.3/bmi/img707.imageshack.../935/gmer1.jpg
http://1.1.1.4/bmi/img585.imageshack...5104/gmer2.jpg

hier aber das log von OSAM
Code:
Report of OSAM: Autorun Manager v5.0.11926.0
hxxp://www.online-solutions.ru/en/
Saved at 21:38:04 on 12.09.2012

OS: Windows 7 Ultimate Edition Service Pack 1 (Build 7601), 64-bit
Default Browser: Mozilla Corporation Firefox 15.0.1

Scanner Settings
[x] Rootkits detection (hidden registry)
[x] Rootkits detection (hidden files)
[x] Retrieve files information
[x] Check Microsoft signatures

Filters
[ ] Trusted entries
[ ] Empty entries
[x] Hidden registry entries (rootkit activity)
[x] Exclusively opened files
[x] Not found files
[x] Files without detailed information
[x] Existing files
[ ] Non-startable services
[ ] Non-startable drivers
[x] Active entries
[x] Disabled entries


[Common]
-----( %SystemRoot%\Tasks )-----
"GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"GoogleUpdateTaskUserS-1-5-21-2620911757-4132591521-1881684151-1000Core.job" - "Google Inc." - C:\Users\Nashoa\AppData\Local\Google\Update\GoogleUpdate.exe
"GoogleUpdateTaskUserS-1-5-21-2620911757-4132591521-1881684151-1000UA.job" - "Google Inc." - C:\Users\Nashoa\AppData\Local\Google\Update\GoogleUpdate.exe
"Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

[Control Panel Objects]
-----( %SystemRoot%\system32 )-----
"igfxcpl.cpl" - "Intel Corporation" - C:\Windows\system32\igfxcpl.cpl

[Drivers]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"@%SystemRoot%\system32\drivers\tsusbhub.sys,-1" (tsusbhub) - ? - C:\Windows\System32\drivers\tsusbhub.sys  (File not found)
"aaz1qv5j" (aaz1qv5j) - "Advanced Micro Devices" - C:\Windows\system32\drivers\aaz1qv5j.sys  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"avgntflt" (avgntflt) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avgntflt.sys
"avipbb" (avipbb) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avipbb.sys
"avkmgr" (avkmgr) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avkmgr.sys
"catchme" (catchme) - ? - C:\ComboFix\catchme.sys  (File not found)
"Hamachi Network Interface" (hamachi) - "LogMeIn, Inc." - C:\Windows\System32\DRIVERS\hamachi.sys
"HSPADataCard Diagnostic Port" (HSPADataCardusbser) - ? - C:\Windows\System32\DRIVERS\HSPADataCardusbser.sys  (File not found)
"HSPADataCard NMEA Port" (HSPADataCardusbnmea) - ? - C:\Windows\System32\DRIVERS\HSPADataCardusbnmea.sys  (File not found)
"HSPADataCard Proprietary USB Driver" (HSPADataCardusbmdm) - ? - C:\Windows\System32\DRIVERS\HSPADataCardusbmdm.sys  (File not found)
"igfx" (igfx) - "Intel Corporation" - C:\Windows\System32\DRIVERS\igdkmd64.sys
"Intel(R) Display-Audio" (IntcDAud) - "Intel(R) Corporation" - C:\Windows\System32\DRIVERS\IntcDAud.sys
"Mass Storage Filter Driver" (massfilter) - ? - C:\Windows\System32\drivers\massfilter.sys  (File not found)
"NetGroup Packet Filter Driver" (NPF) - "CACE Technologies, Inc." - C:\Windows\System32\drivers\npf.sys
"nltdi" (nltdi) - "Locktime Software" - C:\Program Files\NetLimiter 3\nltdi.sys
"PORTMON" (PORTMON) - ? - C:\Users\Nashoa\Desktop\SysinternalsSuite\PORTMSYS.SYS  (File not found)
"speedfan" (speedfan) - "Almico Software" - C:\Windows\SysWOW64\speedfan.sys
"sptd" (sptd) - "Duplex Secure Ltd." - C:\Windows\System32\Drivers\sptd.sys  (File is exclusively opened, access blocked)
"Synth3dVsc" (Synth3dVsc) - ? - C:\Windows\System32\drivers\synth3dvsc.sys  (File not found)
"TAP-Win32 Adapter V8" (tap0801) - "The OpenVPN Project" - C:\Windows\System32\DRIVERS\tap0801.sys
"truecrypt" (truecrypt) - "TrueCrypt Foundation" - C:\Windows\System32\drivers\truecrypt.sys
"UltraMon Utility Driver" (UltraMonUtility) - "Realtime Soft Ltd" - C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys
"VGPU" (VGPU) - ? - C:\Windows\System32\drivers\rdvgkmd.sys  (File not found)
"VMware hcmon" (hcmon) - "VMware, Inc." - C:\Windows\system32\drivers\hcmon.sys
"VMware kbd" (vmkbd) - "VMware, Inc." - C:\Windows\system32\drivers\VMkbd.sys
"VMware Network Application Interface" (VMnetuserif) - "VMware, Inc." - C:\Windows\system32\drivers\vmnetuserif.sys
"VMware vmx86" (vmx86) - "VMware, Inc." - C:\Windows\system32\drivers\vmx86.sys
"Vstor2 MntApi 1.0 Driver (shared)" (vstor2-mntapi10-shared) - "VMware, Inc." - C:\Windows\SysWOW64\drivers\vstor2-mntapi10-shared.sys
"___ Intel(R) Wireless WiFi Link der Serie 5000 Adaptertreiber für Windows 7 64-Bit" (NETwNs64) - ? - C:\Windows\System32\DRIVERS\NETwNs64.sys  (File not found)

[Explorer]
-----( HKCU\Software\Classes\Folder\shellex\ColumnHandlers )-----
{ca586c80-7c84-4b88-8537-726724df6929} "{ca586c80-7c84-4b88-8537-726724df6929}" - ? -  (File not found | COM-object registry key not found)
-----( HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )-----
{ca586c80-7c84-4b88-8537-726724df6929} "Git-Cheetah" - ? -  (File not found | COM-object registry key not found)
-----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )-----
{F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
-----( HKLM\Software\Classes\Protocols\Filter )-----
{807573E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
-----( HKLM\Software\Classes\Protocols\Handler )-----
{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} "Album Download IE Asynchronous Pluggable Protocol Interface" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
{314111c7-a502-11d2-bbca-00c04f8ec294} "ms-help" - ? -  (File not found | COM-object registry key not found)
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )-----
{1F77B17B-F531-44DB-ACA4-76ABB5010A28} "AIMP ShellExt Unit" - "AIMP DevTeam" - C:\Program Files (x86)\AIMP3\Modules\aimp_menu32.dll
{B6FC6FB4-0937-473D-8ECE-3DA66B383A3B} "AnyShellExt" - "CrystalIDEA Software" - C:\Program Files (x86)\AnyToISO\anyshellext_x86.dll
{5E2121EE-0300-11D4-8D3B-444553540000} "Catalyst Context Menu extension" - ? -  (File not found | COM-object registry key not found)
{7CCA70DB-DE7A-4FB7-9B2B-52E2335A3B5A} "Enterprise-Projekte" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office14\NAMEEXT.DLL
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\msoshext.dll
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\msoshext.dll
{0006F045-0000-0000-C000-000000000046} "Microsoft Outlook Custom Icon Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Office\Office14\OLKFSTUB.DLL
{2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} "Windows Live Photo Gallery Autoplay Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
{00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} "Windows Live Photo Gallery Editor Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
{00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} "Windows Live Photo Gallery Editor Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
{00F30F90-3E96-453B-AFCD-D71989ECC2C7} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
{00F33137-EE26-412F-8D71-F84E4C2C6625} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
{00F374B7-B390-4884-B372-2FC349F2172B} "Windows Live Photo Gallery Viewer Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
{00F346CB-35A4-465B-8B8F-65A29DBAB1F6} "Windows Live Photo Gallery Viewer Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
{06A2568A-CED6-4187-BB20-400B8C02BE5A} "{06A2568A-CED6-4187-BB20-400B8C02BE5A}" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe

[Internet Explorer]
-----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )-----
ITBar7Height "ITBar7Height" - ? -  (File not found | COM-object registry key not found)
<binary data> "ITBar7Layout" - ? -  (File not found | COM-object registry key not found)
-----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )-----
{E705A591-DA3C-4228-B0D5-A356DBA42FBF} "Creative Software AutoUpdate 2" - "Creative Technology Ltd" - C:\PROGRA~2\Creative\SHARED~1\SOFTWA~1\CTSUEng.ocx / hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
{F6ACF75C-C32C-447B-9BEF-46B766368D29} "Creative Software AutoUpdate Support Package" - "Creative Technology Ltd" - C:\PROGRA~2\Creative\SHARED~1\SOFTWA~1\CTPID.ocx / hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
{D4B68B83-8710-488B-A692-D74B50BA558E} "Creative Software AutoUpdate Support Package 2" - "Creative Technology Ltd" - C:\Windows\DOWNLO~1\CTPIDPDE.ocx / hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
{5AE58FCF-6F6A-49B2-B064-02492C66E3F4} "MUCatalogWebControl Class" - "Microsoft Corporation" - C:\Windows\SysWow64\MicrosoftUpdateCatalogWebControl.dll / hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1330723242427
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )-----
{53707962-6F74-2D53-2644-206D7942484F} "ClsidExtension" - "Safer Networking Limited" - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )-----
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
{DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Oracle Corporation" - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "Java(tm) Plug-In SSV Helper" - "Oracle Corporation" - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
{B4F3A835-0E21-4959-BA22-42B3008E02FF} "Office Document Cache Handler" - "Microsoft Corporation" - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
{53707962-6F74-2D53-2644-206D7942484F} "Spybot-S&D IE Protection" - "Safer Networking Limited" - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
{9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live ID-Anmelde-Hilfsprogramm" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

[LSA Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Control\Lsa )-----
"Security Packages" - "Microsoft Corp." - C:\Windows\system32\livessp.dll

[Logon]
-----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"2x Monitor.lnk" - ? - C:\Users\Nashoa\AppData\Roaming\Realtime Soft\UltraMon\3.1.0\Profiles\2x Monitor.umprofile  (Shortcut exists | File exists)
"desktop.ini" - ? - C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
"Microsoft Outlook 2010.lnk" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE  (Shortcut exists | File exists)
"TeamSpeak 3 Client.lnk" - "TeamSpeak Systems GmbH" - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe  (Shortcut exists | File exists)
-----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
"UltraMon.lnk" - "Realtime Soft Ltd" - C:\Program Files\UltraMon\UltraMon.exe  (Shortcut exists | File exists)
-----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )-----
"DAEMON Tools Lite" - "DT Soft Ltd" - "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"Infium" - "QIP" - "C:\Program Files (x86)\QIP 2012\qip.exe" /autorun
"NetLimiter" - "Locktime Software" - C:\Program Files\NetLimiter 3\NLClientApp.exe /tray
"Skype" - "Skype Technologies S.A." - "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"TrafficMonitor" - "Mirko Böer" - C:\PROGRA~2\TRAFFI~1\TRAFFICMONITOR.EXE
"WLSync" - "Microsoft Corporation" - "C:\Program Files (x86)\Windows Live\Mesh\WLSync.exe" /background
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )-----
"Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"AdobeCS5.5ServiceManager" - "Adobe Systems Incorporated" - "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
"AdobeCS5ServiceManager" - "Adobe Systems Incorporated" - "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
"APSDaemon" - "Apple Inc." - "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"avgnt" - "Avira Operations GmbH & Co. KG" - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"CTHelper" - ? - CTHELPER.EXE  (File not found)
"iTunesHelper" - "Apple Inc." - "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"LogMeIn Hamachi Ui" - "LogMeIn Inc." - "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"StartCCC" - "Advanced Micro Devices, Inc." - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
"SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"SwitchBoard" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
"vmware-tray" - "VMware, Inc." - "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

[Print Monitors]
-----( HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors )-----
"PDFCreator" - ? - C:\Windows\system32\pdfcmnnt.dll  (File found, but it contains no detailed information)

[Services]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103" (WinDefend) - ? - C:\Program Files (x86)\Windows Defender\mpsvc.dll  (File not found)
"@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe"  (File not found)
"Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
"Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
"Apple Mobile Device" (Apple Mobile Device) - "Apple Inc." - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
"Avira Echtzeit Scanner" (AntiVirService) - "Avira Operations GmbH & Co. KG" - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
"Avira Planer" (AntiVirSchedulerService) - "Avira Operations GmbH & Co. KG" - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
"Creative ALchemy AL6 Licensing Service" (Creative ALchemy AL6 Licensing Service) - "Creative Labs" - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
"Creative Audio Engine Licensing Service" (Creative Audio Engine Licensing Service) - "Creative Labs" - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
"Creative Audio Service" (CTAudSvcService) - "Creative Technology Ltd" - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
"Dienst "Bonjour"" (Bonjour Service) - "Apple Inc." - C:\Program Files\Bonjour\mDNSResponder.exe
"Google Update-Dienst (gupdate)" (gupdate) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"Google Update-Dienst (gupdatem)" (gupdatem) - "Google Inc." - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
"iPod-Dienst" (iPod Service) - "Apple Inc." - C:\Program Files\iPod\bin\iPodService.exe
"Logitech Bluetooth Service" (LBTServ) - "Logitech, Inc." - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
"LogMeIn Hamachi Tunneling Engine" (Hamachi2Svc) - "LogMeIn Inc." - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
"Lookout Citadel Server" (LkCitadelServer) - "National Instruments, Inc." - C:\Windows\SysWOW64\lkcitdl.exe
"Microsoft .NET Framework NGEN v4.0.30319_X64" (clr_optimization_v4.0.30319_64) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
"National Instruments Domain Service" (NIDomainService) - "National Instruments Corporation" - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
"National Instruments PSP Server Locator" (lkClassAds) - "National Instruments Corporation" - C:\Windows\SysWOW64\lkads.exe
"National Instruments Time Synchronization" (lkTimeSync) - "National Instruments Corporation" - C:\Windows\SysWOW64\lktsrv.exe
"NetLimiter 3 Service" (nlsvc) - "Locktime Software" - C:\Program Files\NetLimiter 3\nlsvc.exe
"NI Service Locator" (niSvcLoc) - "National Instruments Corporation" - C:\Windows\SysWOW64\nisvcloc.exe
"NVIDIA Display Driver Service" (nvsvc) - "NVIDIA Corporation" - C:\Windows\system32\nvvsvc.exe
"NVIDIA Update Service Daemon" (nvUpdatusService) - "NVIDIA Corporation" - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
"Office 64 Source Engine" (ose64) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
"Office Software Protection Platform" (osppsvc) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
"otshot" (otshot) - ? - C:\program files\otshot\ZalmanUpdateService.exe  (File not found)
"PnkBstrA" (PnkBstrA) - ? - C:\Windows\system32\PnkBstrA.exe  (File not found)
"Remote Packet Capture Protocol v.0 (experimental)" (rpcapd) - "CACE Technologies, Inc." - C:\Program Files (x86)\WinPcap\rpcapd.exe
"SBSD Security Center Service" (SBSDWSCService) - "Safer Networking Ltd." - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
"Skype Updater" (SkypeUpdate) - "Skype Technologies" - C:\Program Files (x86)\Skype\Updater\Updater.exe
"SwitchBoard" (SwitchBoard) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
"TeamViewer 7" (TeamViewer7) - "TeamViewer GmbH" - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
"TomTomHOMEService" (TomTomHOMEService) - "TomTom" - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
"TrafficMonitor Packettreiber Initialisierung" (TMPService) - "Mirko Böer" - C:\Program Files (x86)\TrafficMonitor\TMPacketServiceInit.exe
"VMware Authorization Service" (VMAuthdService) - "VMware, Inc." - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
"VMware DHCP Service" (VMnetDHCP) - ? - C:\Windows\system32\vmnetdhcp.exe  (File not found)
"VMware NAT Service" (VMware NAT Service) - ? - C:\Windows\system32\vmnat.exe  (File not found)
"VMware USB Arbitration Service" (VMUSBArbService) - "VMware, Inc." - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
"VMware Workstation Server" (VMwareHostd) - ? - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe  (File found, but it contains no detailed information)
"Windows Live ID Sign-in Assistant" (wlidsvc) - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
"Windows Live Mesh remote connections service" (wlcrasvc) - "Microsoft Corporation" - C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
"WTGService" (WTGService) - ? - C:\Program Files (x86)\XSManager\WTGService.exe  (File found, but it contains no detailed information)

[Winsock Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )-----
"mdnsNSP" - "Apple Inc." - C:\Program Files (x86)\Bonjour\mdnsNSP.dll
"WindowsLive Local NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
"WindowsLive NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
-----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries )-----
"VMCI sockets DGRAM" - "VMware, Inc." - C:\Windows\system32\vsocklib.dll
"VMCI sockets STREAM" - "VMware, Inc." - C:\Windows\system32\vsocklib.dll

===[ Logfile end ]=========================================[ Logfile end ]===

If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru

cosinus 13.09.2012 14:10
Welche Bilder? Was ist mit aswMBR?

Nashoa 13.09.2012 14:59
die beiden bilder sind doch direckt unter der zeile wo "(siehe bilder)" steht?!
naja, hier halt noch nur die links zu den bildern:
hxxp://img707.imageshack.us/img707/935/gmer1.jpg
hxxp://img585.imageshack.us/img585/5104/gmer2.jpg

das aswMBR hatte ich ganz vergessen
Code:
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-09-13 15:49:43
-----------------------------
15:49:43.371    OS Version: Windows x64 6.1.7601 Service Pack 1
15:49:43.371    Number of processors: 4 586 0x2A07
15:49:43.371    ComputerName: NASHOA-PC  UserName: Nashoa
15:49:43.388    Initialze error 1
15:55:12.779    AVAST engine defs: 12091300
15:57:57.220    Disk 0  \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T0L0-4
15:57:57.223    Disk 0 Vendor: WDC_WD5000AAKS-00A7B2 01.03B01 Size: 476940MB BusType: 11
15:57:57.225    Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T0L0-0
15:57:57.228    Disk 1 Vendor: Corsair_Force_3_SSD 5.02 Size: 228936MB BusType: 11
15:57:57.231    Disk 2  \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP3T0L0-3
15:57:57.234    Disk 2 Vendor: ST3500320AS SD15 Size: 476940MB BusType: 11
15:57:57.238    Disk 1 MBR read successfully
15:57:57.241    Disk 1 MBR scan
15:57:57.246    Disk 1 unknown MBR code
15:57:57.249    Disk 1 Partition 1 00    EE          GPT          2097151 MB offset 1
15:57:57.255    Disk 1 scanning C:\Windows\system32\drivers
15:57:57.258    Service scanning
15:57:58.026    Modules scanning
15:57:58.033    Disk 1 trace - called modules:
15:57:58.042    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa800cd412c0]<<sptd.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
15:57:58.047    1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0xfffffa800d614060]
15:57:58.051    3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> [0xfffffa800d3e9520]
15:57:58.055    5 ACPI.sys[fffff8800100b7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa800d3e5680]
15:57:58.059    \Driver\atapi[0xfffffa800d39fd30] -> IRP_MJ_CREATE -> 0xfffffa800cd412c0
15:57:58.064    AVAST engine scan C:\Windows
15:57:58.068    AVAST engine scan C:\Windows\system32
15:57:58.072    AVAST engine scan C:\Windows\system32\drivers
15:57:58.077    AVAST engine scan C:\Users\Nashoa
15:57:58.080    AVAST engine scan C:\ProgramData
15:57:58.083    Scan finished successfully
15:58:23.647    Disk 1 MBR has been saved successfully to "C:\Users\Nashoa\Desktop\MBR.dat"
15:58:23.649    The log file has been saved successfully to "C:\Users\Nashoa\Desktop\aswMBR.txt"

cosinus 13.09.2012 21:20
Code:
Disk 1 Partition 1 00    EE          GPT          2097151 MB offset 1
Kann schonmal mit GMER passieren...
aber hey du hast ja eine GPT auf deiner Festplatte - ungewöhnlich! Braucht man erst ab 2,0 TiB (~2200 GB)

Nashoa 15.09.2012 12:47
die GPT hat windows beim installieren selber erstellt(habe selber keine partitionen auf der ssd erstellt, nur die festplatte an sich zum installieren ausgewählt), soweit ich weiß liegt das an meinem UEFI system

cosinus 16.09.2012 14:07
Achso du hast UEFI, ja dann muss AFAIK auch GPT her

Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SASW und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!

Nashoa 16.09.2012 18:24
so, hier die beiden logs, SUPERAntiSpyware hat zwar einiges an cookies gefunden aber cookies sind doch glaub ich nicht so schlimm oder?

edit: habe grade gesehen, dass ich die sucheinstellung garnicht ganz richtig hatte, mache einen neuen log mit SUPERAntiSpyware. habe auch die ganzen cookies von meinen backups gelöscht
Code:
Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Datenbank Version: v2012.09.16.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Nashoa :: NASHOA-PC [Administrator]

16.09.2012 15:19:28
mbam-log-2012-09-16 (15-19-28).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 400135
Laufzeit: 20 Minute(n), 6 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
Code:
SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 09/16/2012 at 06:50 PM

Application Version : 5.5.1016

Core Rules Database Version : 9236
Trace Rules Database Version: 7048

Scan type      : Complete Scan
Total Scan Time : 00:29:56

Operating System Information
Windows 7 Ultimate 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned      : 916
Memory threats detected  : 0
Registry items scanned    : 69460
Registry threats detected : 0
File items scanned        : 83438
File threats detected    : 489

Adware.Tracking Cookie
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@advertising[2].txt [ /advertising ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@ar.atwola[1].txt [ /ar.atwola ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@atwola[2].txt [ /atwola ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@tacoda.at.atwola[1].txt [ /tacoda.at.atwola ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\5A1WZ0ZN.txt [ /ad1.adfarm1.adition.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\IV6XOOR9.txt [ /revsci.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\L1FAOBTA.txt [ /interclick.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\TG8Y0VA3.txt [ /collective-media.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\20P4B137.txt [ /ad.zanox.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\53YP1SOQ.txt [ /specificclick.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\9Z1C7C9J.txt [ /2o7.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\V52W2PGK.txt [ /unitymedia.de ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\OZ6268TY.txt [ /dyntracker.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\NNDAVDYZ.txt [ /at.atwola.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\XXWR3FYL.txt [ /invitemedia.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\3YD1T4TY.txt [ /tracking.quisma.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\J5R1VXBN.txt [ /zanox.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\JDSJVKZA.txt [ /yadro.ru ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\Z28ZCXFJ.txt [ /ad3.adfarm1.adition.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\BUE6P91L.txt [ /track.adform.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\XF9T3KU6.txt [ /smartadserver.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\Y7BZ4FOI.txt [ /adfarm1.adition.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\VW1Z02VI.txt [ /zanox-affiliate.de ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\NZZAMBEF.txt [ /imrworldwide.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\09NXRRGN.txt [ /serving-sys.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\K1X0NISH.txt [ /adserver.adtechus.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\A45IECHB.txt [ /www.zanox-affiliate.de ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\LGPQT9P5.txt [ /adform.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\U1025CUL.txt [ /mediainfo.sourceforge.net ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\LPPDD6GW.txt [ Cookie:nashoa@clkads.com/adServe/banners ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@specificclick[1].txt [ Cookie:nashoa@specificclick.net/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@2o7[1].txt [ Cookie:nashoa@2o7.net/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\O22FNI0A.txt [ Cookie:nashoa@ad.yieldmanager.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\XUZ6UE2M.txt [ Cookie:nashoa@apmebf.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\FJKK6BEQ.txt [ Cookie:nashoa@atdmt.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@in.getclicky[1].txt [ Cookie:nashoa@in.getclicky.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@bs.serving-sys[1].txt [ Cookie:nashoa@bs.serving-sys.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\QT2IW851.txt [ Cookie:nashoa@adfarm1.adition.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@imrworldwide[2].txt [ Cookie:nashoa@imrworldwide.com/cgi-bin ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@ad2.adfarm1.adition[1].txt [ Cookie:nashoa@ad2.adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\5A1WZ0ZN.txt [ Cookie:nashoa@ad1.adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\IV6XOOR9.txt [ Cookie:nashoa@revsci.net/ ]
        C:\USERS\NASHOA\Cookies\L1FAOBTA.txt [ Cookie:nashoa@interclick.com/ ]
        C:\USERS\NASHOA\Cookies\20P4B137.txt [ Cookie:nashoa@ad.zanox.com/ ]
        C:\USERS\NASHOA\Cookies\53YP1SOQ.txt [ Cookie:nashoa@specificclick.net/ ]
        C:\USERS\NASHOA\Cookies\9Z1C7C9J.txt [ Cookie:nashoa@2o7.net/ ]
        C:\USERS\NASHOA\Cookies\V52W2PGK.txt [ Cookie:nashoa@unitymedia.de/ ]
        C:\USERS\NASHOA\Cookies\NNDAVDYZ.txt [ Cookie:nashoa@at.atwola.com/ ]
        C:\USERS\NASHOA\Cookies\LPPDD6GW.txt [ Cookie:nashoa@clkads.com/adServe/banners ]
        C:\USERS\NASHOA\Cookies\XXWR3FYL.txt [ Cookie:nashoa@invitemedia.com/ ]
        C:\USERS\NASHOA\Cookies\J5R1VXBN.txt [ Cookie:nashoa@zanox.com/ ]
        C:\USERS\NASHOA\Cookies\Z28ZCXFJ.txt [ Cookie:nashoa@ad3.adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\BUE6P91L.txt [ Cookie:nashoa@track.adform.net/ ]
        C:\USERS\NASHOA\Cookies\XF9T3KU6.txt [ Cookie:nashoa@smartadserver.com/ ]
        C:\USERS\NASHOA\Cookies\Y7BZ4FOI.txt [ Cookie:nashoa@adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\nashoa@atwola[2].txt [ Cookie:nashoa@atwola.com/ ]
        C:\USERS\NASHOA\Cookies\VW1Z02VI.txt [ Cookie:nashoa@zanox-affiliate.de/ ]
        C:\USERS\NASHOA\Cookies\NZZAMBEF.txt [ Cookie:nashoa@imrworldwide.com/cgi-bin ]
        C:\USERS\NASHOA\Cookies\K1X0NISH.txt [ Cookie:nashoa@adserver.adtechus.com/ ]
        C:\USERS\NASHOA\Cookies\U1025CUL.txt [ Cookie:nashoa@mediainfo.sourceforge.net/ ]
        C:\USERS\NASHOA\Cookies\nashoa@tacoda.at.atwola[1].txt [ Cookie:nashoa@tacoda.at.atwola.com/ ]
        files.youporn.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\9BQ45AZ8 ]
        media1.break.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\9BQ45AZ8 ]
        secure-us.imrworldwide.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\9BQ45AZ8 ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADX.CHIP[2].TXT [ /ADX.CHIP ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ANRTX.TACODA[1].TXT [ /ANRTX.TACODA ]
        .doubleclick.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .content.yieldmanager.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .harrenmedianetwork.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .myroitracking.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .apmebf.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        tracking.mlsat02.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.usenext.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .fastclick.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .fastclick.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .zanox.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .traffictrack.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .youporn.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .youporn.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .youporn.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .mediafire.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .paypal.112.2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .microsoftwindows.112.2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .dmtracker.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .microsoftsto.112.2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        uk.sitestat.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        uk.sitestat.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .bookofsex.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .bookofsex.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .bookofsex.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .bookofsex.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .bookofsex.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .bookofsex.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .bookofsex.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .conrad.122.2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .deutschepostag.112.2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .naked.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .naked.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .naked.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.sexkiste.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.sexkiste.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .adultfriendfinder.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www3.addfreestats.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        sexuria.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        sexuria.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www7.addfreestats.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        logging.ourstats.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        logging.ourstats.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.tracklead.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        tracker1.dr.mo-collective.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        tracker1.dr.mo-collective.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .premium-accounts.eu [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        premium-accounts.eu [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .eaeacom.112.2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .xiti.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .gametracker.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        count.rbc.ru [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .tns-counter.ru [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .medialand.ru [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .userporn.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .userporn.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        statse.webtrendslive.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .stats.paypal.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .yadro.ru [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        auth.breakmedia.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .viewablemedia.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        www.discounto.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        topmedia.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        stats.computecmedia.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wnmiukcpslp.stats.esomniture.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .4stats.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .4stats.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .4stats.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        stats.computecmedia.de [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        .account.swtor.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WYMPDRLV.DEFAULT\COOKIES.SQLITE ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@2O7[1].TXT [ /2O7 ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@2O7[1].TXT [ /2O7 ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@AD.YIELDMANAGER[1].TXT [ /AD.YIELDMANAGER ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ATDMT[1].TXT [ /ATDMT ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@SMARTADSERVER[1].TXT [ /SMARTADSERVER ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@CONTENT.YIELDMANAGER[2].TXT [ /CONTENT.YIELDMANAGER ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@CONTENT.YIELDMANAGER[3].TXT [ /CONTENT.YIELDMANAGER ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@DOUBLECLICK[2].TXT [ /DOUBLECLICK ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@FASTCLICK[1].TXT [ /FASTCLICK ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@YADRO[2].TXT [ /YADRO ]
        eu.media.blizzard.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\T5WQWSK4 ]
        .invitemedia.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .doubleclick.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .microsoftwindows.112.2o7.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        ww251.smartadserver.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .fastclick.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .fastclick.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .fastclick.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .insightexpressai.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .insightexpressai.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .insightexpressai.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .insightexpressai.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .insightexpressai.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .insightexpressai.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        ad2.adfarm1.adition.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .collective-media.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .collective-media.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .collective-media.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .collective-media.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .collective-media.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .collective-media.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adviva.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .microsoftsto.112.2o7.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adtech.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .zanox-affiliate.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .traffictrack.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .apmebf.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        track.adform.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adform.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        adx.chip.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        adx.chip.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .content.yieldmanager.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .harrenmedianetwork.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .myroitracking.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .clicksor.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        adfarm1.adition.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        ad1.adfarm1.adition.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .zanox.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        www.active-tracking.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        www.active-tracking.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        www.active-tracking.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        www6.addfreestats.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        hu.2.cqcounter.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        logging.ourstats.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .stats.paypal.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .tns-counter.ru [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        count.rbc.ru [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .yadro.ru [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .medialand.relax.ru [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .medialand.relax.ru [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        logging.ourstats.de [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        porn-traffic.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .paypal.112.2o7.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .toplist.cz [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .toplist.eu [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .toplist.sk [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ D:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3ZFBEE7D.DEFAULT\COOKIES.SQLITE ]
        static.youporn.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WL8BF958 ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@18EIGHTEEN[2].TXT [ /18EIGHTEEN ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@AD-HOC-NEWS[2].TXT [ /AD-HOC-NEWS ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@AD.DKB[1].TXT [ /AD.DKB ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@AD.YIELDMANAGER[2].TXT [ /AD.YIELDMANAGER ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADVERTISING[2].TXT [ /ADVERTISING ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADBUREAU[1].TXT [ /ADBUREAU ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADTECH[1].TXT [ /ADTECH ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADVERTISING[1].TXT [ /ADVERTISING ]
        .adtech.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        a3.adserver01.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .apmebf.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .apmebf.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .doubleclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .atdmt.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .zanox.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .game-advertising-online.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        zbox.zanox.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        www.zanox-affiliate.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        adserver.seedpeer.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .xiti.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        date.ventivmedia.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        date.ventivmedia.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        date.ventivmedia.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        date.ventivmedia.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        date.ventivmedia.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        date.ventivmedia.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        date.ventivmedia.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        clicktorrent.info [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        ad.trackbar.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .tradedoubler.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        tracking.quisma.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .tribalfusion.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .fastclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .fastclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .videoegg.adbureau.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .komtrack.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .specificclick.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .adviva.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .advertising.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .im.banner.t-online.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        www8.addfreestats.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .webpower.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .cgm.adbureau.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        s2.trafficmaxx.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .mediafire.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .burstnet.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        www.trafficrank.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .bs.serving-sys.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .cgm.adbureau.net [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .tns-counter.ru [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        count.rbc.ru [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .estat.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        activehitz.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        statse.webtrendslive.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        tracking.interaktivfabrik.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .yadro.ru [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .yadro.ru [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .content.yieldmanager.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .zedo.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .zedo.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        www2.online-media24.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        rts.pgmediaserve.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        rts.pgmediaserve.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        rts.pgmediaserve.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        rts.pgmediaserve.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .adlegend.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .adlegend.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .de.at.atwola.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .shinystat.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .ddl-warez.org [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .ddl-warez.org [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        stat.aldi.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        ads.discounto.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        www.zanox-affiliate.de [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LUA7OJUV.DEFAULT\COOKIES.SQLITE ]
hier der das neue log
Code:
SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 09/16/2012 at 09:16 PM

Application Version : 5.5.1016

Core Rules Database Version : 9236
Trace Rules Database Version: 7048

Scan type      : Complete Scan
Total Scan Time : 01:39:28

Operating System Information
Windows 7 Ultimate 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned      : 918
Memory threats detected  : 0
Registry items scanned    : 69460
Registry threats detected : 0
File items scanned        : 386623
File threats detected    : 311

Adware.Tracking Cookie
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@advertising[2].txt [ /advertising ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@ar.atwola[1].txt [ /ar.atwola ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@atwola[2].txt [ /atwola ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@tacoda.at.atwola[1].txt [ /tacoda.at.atwola ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\5A1WZ0ZN.txt [ /ad1.adfarm1.adition.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\IV6XOOR9.txt [ /revsci.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\L1FAOBTA.txt [ /interclick.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\TG8Y0VA3.txt [ /collective-media.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\20P4B137.txt [ /ad.zanox.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\53YP1SOQ.txt [ /specificclick.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\9Z1C7C9J.txt [ /2o7.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\V52W2PGK.txt [ /unitymedia.de ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\OZ6268TY.txt [ /dyntracker.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\NNDAVDYZ.txt [ /at.atwola.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\XXWR3FYL.txt [ /invitemedia.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\3YD1T4TY.txt [ /tracking.quisma.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\J5R1VXBN.txt [ /zanox.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\JDSJVKZA.txt [ /yadro.ru ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\Z28ZCXFJ.txt [ /ad3.adfarm1.adition.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\BUE6P91L.txt [ /track.adform.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\XF9T3KU6.txt [ /smartadserver.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\Y7BZ4FOI.txt [ /adfarm1.adition.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\VW1Z02VI.txt [ /zanox-affiliate.de ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\NZZAMBEF.txt [ /imrworldwide.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\09NXRRGN.txt [ /serving-sys.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\K1X0NISH.txt [ /adserver.adtechus.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\A45IECHB.txt [ /www.zanox-affiliate.de ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\LGPQT9P5.txt [ /adform.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\U1025CUL.txt [ /mediainfo.sourceforge.net ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\LPPDD6GW.txt [ Cookie:nashoa@clkads.com/adServe/banners ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@specificclick[1].txt [ Cookie:nashoa@specificclick.net/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@2o7[1].txt [ Cookie:nashoa@2o7.net/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\O22FNI0A.txt [ Cookie:nashoa@ad.yieldmanager.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\XUZ6UE2M.txt [ Cookie:nashoa@apmebf.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\FJKK6BEQ.txt [ Cookie:nashoa@atdmt.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@in.getclicky[1].txt [ Cookie:nashoa@in.getclicky.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@bs.serving-sys[1].txt [ Cookie:nashoa@bs.serving-sys.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\QT2IW851.txt [ Cookie:nashoa@adfarm1.adition.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@imrworldwide[2].txt [ Cookie:nashoa@imrworldwide.com/cgi-bin ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@ad2.adfarm1.adition[1].txt [ Cookie:nashoa@ad2.adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\5A1WZ0ZN.txt [ Cookie:nashoa@ad1.adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\IV6XOOR9.txt [ Cookie:nashoa@revsci.net/ ]
        C:\USERS\NASHOA\Cookies\L1FAOBTA.txt [ Cookie:nashoa@interclick.com/ ]
        C:\USERS\NASHOA\Cookies\20P4B137.txt [ Cookie:nashoa@ad.zanox.com/ ]
        C:\USERS\NASHOA\Cookies\53YP1SOQ.txt [ Cookie:nashoa@specificclick.net/ ]
        C:\USERS\NASHOA\Cookies\9Z1C7C9J.txt [ Cookie:nashoa@2o7.net/ ]
        C:\USERS\NASHOA\Cookies\V52W2PGK.txt [ Cookie:nashoa@unitymedia.de/ ]
        C:\USERS\NASHOA\Cookies\NNDAVDYZ.txt [ Cookie:nashoa@at.atwola.com/ ]
        C:\USERS\NASHOA\Cookies\LPPDD6GW.txt [ Cookie:nashoa@clkads.com/adServe/banners ]
        C:\USERS\NASHOA\Cookies\XXWR3FYL.txt [ Cookie:nashoa@invitemedia.com/ ]
        C:\USERS\NASHOA\Cookies\J5R1VXBN.txt [ Cookie:nashoa@zanox.com/ ]
        C:\USERS\NASHOA\Cookies\Z28ZCXFJ.txt [ Cookie:nashoa@ad3.adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\BUE6P91L.txt [ Cookie:nashoa@track.adform.net/ ]
        C:\USERS\NASHOA\Cookies\XF9T3KU6.txt [ Cookie:nashoa@smartadserver.com/ ]
        C:\USERS\NASHOA\Cookies\Y7BZ4FOI.txt [ Cookie:nashoa@adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\nashoa@atwola[2].txt [ Cookie:nashoa@atwola.com/ ]
        C:\USERS\NASHOA\Cookies\VW1Z02VI.txt [ Cookie:nashoa@zanox-affiliate.de/ ]
        C:\USERS\NASHOA\Cookies\NZZAMBEF.txt [ Cookie:nashoa@imrworldwide.com/cgi-bin ]
        C:\USERS\NASHOA\Cookies\K1X0NISH.txt [ Cookie:nashoa@adserver.adtechus.com/ ]
        C:\USERS\NASHOA\Cookies\U1025CUL.txt [ Cookie:nashoa@mediainfo.sourceforge.net/ ]
        C:\USERS\NASHOA\Cookies\nashoa@tacoda.at.atwola[1].txt [ Cookie:nashoa@tacoda.at.atwola.com/ ]
        files.youporn.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\9BQ45AZ8 ]
        media1.break.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\9BQ45AZ8 ]
        secure-us.imrworldwide.com [ D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\9BQ45AZ8 ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@SMARTADSERVER[2].TXT [ /SMARTADSERVER ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADX.CHIP[2].TXT [ /ADX.CHIP ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@YADRO[2].TXT [ /YADRO ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ATDMT[1].TXT [ /ATDMT ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@DOUBLECLICK[2].TXT [ /DOUBLECLICK ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ANRTX.TACODA[1].TXT [ /ANRTX.TACODA ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@2O7[1].TXT [ /2O7 ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@2O7[1].TXT [ /2O7 ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@AD.YIELDMANAGER[1].TXT [ /AD.YIELDMANAGER ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ATDMT[1].TXT [ /ATDMT ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@SMARTADSERVER[1].TXT [ /SMARTADSERVER ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@CONTENT.YIELDMANAGER[2].TXT [ /CONTENT.YIELDMANAGER ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@CONTENT.YIELDMANAGER[3].TXT [ /CONTENT.YIELDMANAGER ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@DOUBLECLICK[2].TXT [ /DOUBLECLICK ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@FASTCLICK[1].TXT [ /FASTCLICK ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@YADRO[2].TXT [ /YADRO ]
        eu.media.blizzard.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\T5WQWSK4 ]
        static.youporn.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WL8BF958 ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@TRAFFICTRACK[2].TXT [ /TRAFFICTRACK ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@TEENSTARSONLY[2].TXT [ /TEENSTARSONLY ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@CONTENT.YIELDMANAGER[1].TXT [ /CONTENT.YIELDMANAGER ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@TTO2.TRAFFICTRACK[1].TXT [ /TTO2.TRAFFICTRACK ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@BS.SERVING-SYS[2].TXT [ /BS.SERVING-SYS ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@MICROSOFTINTERNETEXPLORER.112.2O7[1].TXT [ /MICROSOFTINTERNETEXPLORER.112.2O7 ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@ADS-DEV.YOUPORN[2].TXT [ /ADS-DEV.YOUPORN ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@GALLERIES.TEENSTARSONLY[2].TXT [ /GALLERIES.TEENSTARSONLY ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@DOUBLECLICK[1].TXT [ /DOUBLECLICK ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@SALES.LIVEPERSON[2].TXT [ /SALES.LIVEPERSON ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@MSNPORTAL.112.2O7[1].TXT [ /MSNPORTAL.112.2O7 ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@WWW.ETRACKER[1].TXT [ /WWW.ETRACKER ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@SERVING-SYS[2].TXT [ /SERVING-SYS ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@ATDMT[2].TXT [ /ATDMT ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@TRAFFICTRACK[2].TXT [ /TRAFFICTRACK ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@WWW.ZANOX-AFFILIATE[2].TXT [ /WWW.ZANOX-AFFILIATE ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@TRADEDOUBLER[1].TXT [ /TRADEDOUBLER ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@YOUPORN[2].TXT [ /YOUPORN ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@SALES.LIVEPERSON[3].TXT [ /SALES.LIVEPERSON ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@WEBMASTERPLAN[2].TXT [ /WEBMASTERPLAN ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@APMEBF[1].TXT [ /APMEBF ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@WWW.ADULTADVERTISING[1].TXT [ /WWW.ADULTADVERTISING ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@ADTECH[1].TXT [ /ADTECH ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@18EIGHTEEN[2].TXT [ /18EIGHTEEN ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@AD-HOC-NEWS[2].TXT [ /AD-HOC-NEWS ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@AD.DKB[1].TXT [ /AD.DKB ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@AD.YIELDMANAGER[2].TXT [ /AD.YIELDMANAGER ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@TTO2.TRAFFICTRACK[1].TXT [ /TTO2.TRAFFICTRACK ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@SMARTADSERVER[2].TXT [ /SMARTADSERVER ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@DOUBLECLICK[1].TXT [ /DOUBLECLICK ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@CGM.ADBUREAU[1].TXT [ /CGM.ADBUREAU ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ZANOX-AFFILIATE[1].TXT [ /ZANOX-AFFILIATE ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ATDMT[1].TXT [ /ATDMT ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADVERTISING[2].TXT [ /ADVERTISING ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ZANOX[2].TXT [ /ZANOX ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@TRADEDOUBLER[1].TXT [ /TRADEDOUBLER ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADBUREAU[1].TXT [ /ADBUREAU ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADTECH[1].TXT [ /ADTECH ]
        E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADVERTISING[1].TXT [ /ADVERTISING ]
        C:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@SERVING-SYS[1].TXT [ /SERVING-SYS ]
        .adfarm1.adition.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        ad2.adfarm1.adition.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .zanox.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .doubleclick.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        track.blogcounter.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .tns-counter.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        count.rbc.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .xiti.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .medialand.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .medialand.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .engine.mediamir.medialand.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .engine.mediamir.medialand.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .microsoftsto.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        s14.shinystat.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        s14.shinystat.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .shinystat.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        statse.webtrendslive.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .traffictrack.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .traffictrack.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .tto2.traffictrack.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        s03.flagcounter.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .conrad.122.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .getclicky.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .static.getclicky.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wglyuodpolo.stats.esomniture.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .backtrack-linux.org [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .www.backtrack-linux.org [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .sonyeurope.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .naked.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .naked.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .naked.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .microsoftwllivemkt.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        tracking.mlsat02.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .liveperson.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        stats.computecmedia.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        nova.rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .sexyblogtop.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .medialand.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.digital-eliteboard.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.digital-eliteboard.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        gamecrack.info [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        gamecrack.info [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        stats.computecmedia.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjmyuhdzchq.stats.esomniture.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        server.lon.liveperson.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .liveperson.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .lexmark.122.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .premierfarnell.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.swtor.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        tracking.klicktel.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        tracking.klicktel.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .countingdownto.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .gametracker.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        supertracking.com.balao.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        tracking.surveycheck.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .netgear.122.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .olympiaverlag.122.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        zz.2.cqcounter.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .deutschepostag.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .mediafire.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .hotlog.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .unitymediakabelbwforum.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .unitymediakabelbwforum.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .unitymediakabelbwforum.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.dyn.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        mediainfo.sourceforge.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .paypal.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        stats.computecmedia.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .oracle.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        stats.computecmedia.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .stats.paypal.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        account.dyn.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        account.dyn.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .yadro.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .dailymotionpoc.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .eaeacom.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]

cosinus 17.09.2012 09:40
Code:
UAC On - Limited User
Wie hast du sasw gestartet? Einfach per Doppelklick?

Nashoa 19.09.2012 20:52
bei den ersten beiden logs bin ich mir nicht mehr sicher ob ich es da als administrator gestartet habe, habe es jetzt aber nochmal definitiv als administrator gestartet und und dem neuen log steht auch wieder "UAC On - Limited User"
ich könnte UAC aber auch mal ausstellen und neu scannen
hier auf jeden fall nochmal das log was definitiv als administrator gemacht wurde
Code:
SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 09/19/2012 at 07:54 PM

Application Version : 5.5.1016

Core Rules Database Version : 9236
Trace Rules Database Version: 7048

Scan type      : Complete Scan
Total Scan Time : 01:33:51

Operating System Information
Windows 7 Ultimate 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned      : 972
Memory threats detected  : 0
Registry items scanned    : 69475
Registry threats detected : 0
File items scanned        : 384336
File threats detected    : 260

Adware.Tracking Cookie
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@advertising[2].txt [ /advertising ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@ar.atwola[1].txt [ /ar.atwola ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@atwola[2].txt [ /atwola ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\nashoa@tacoda.at.atwola[1].txt [ /tacoda.at.atwola ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\5A1WZ0ZN.txt [ /ad1.adfarm1.adition.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\IV6XOOR9.txt [ /revsci.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\L1FAOBTA.txt [ /interclick.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\TG8Y0VA3.txt [ /collective-media.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\20P4B137.txt [ /ad.zanox.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\53YP1SOQ.txt [ /specificclick.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\9Z1C7C9J.txt [ /2o7.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\V52W2PGK.txt [ /unitymedia.de ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\OZ6268TY.txt [ /dyntracker.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\NNDAVDYZ.txt [ /at.atwola.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\XXWR3FYL.txt [ /invitemedia.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\3YD1T4TY.txt [ /tracking.quisma.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\J5R1VXBN.txt [ /zanox.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\JDSJVKZA.txt [ /yadro.ru ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\Z28ZCXFJ.txt [ /ad3.adfarm1.adition.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\BUE6P91L.txt [ /track.adform.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\XF9T3KU6.txt [ /smartadserver.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\Y7BZ4FOI.txt [ /adfarm1.adition.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\VW1Z02VI.txt [ /zanox-affiliate.de ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\NZZAMBEF.txt [ /imrworldwide.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\09NXRRGN.txt [ /serving-sys.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\K1X0NISH.txt [ /adserver.adtechus.com ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\A45IECHB.txt [ /www.zanox-affiliate.de ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\LGPQT9P5.txt [ /adform.net ]
        C:\Users\Nashoa\AppData\Roaming\Microsoft\Windows\Cookies\U1025CUL.txt [ /mediainfo.sourceforge.net ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\LPPDD6GW.txt [ Cookie:nashoa@clkads.com/adServe/banners ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@specificclick[1].txt [ Cookie:nashoa@specificclick.net/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@2o7[1].txt [ Cookie:nashoa@2o7.net/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\O22FNI0A.txt [ Cookie:nashoa@ad.yieldmanager.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\XUZ6UE2M.txt [ Cookie:nashoa@apmebf.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\FJKK6BEQ.txt [ Cookie:nashoa@atdmt.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@in.getclicky[1].txt [ Cookie:nashoa@in.getclicky.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@bs.serving-sys[1].txt [ Cookie:nashoa@bs.serving-sys.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\QT2IW851.txt [ Cookie:nashoa@adfarm1.adition.com/ ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@imrworldwide[2].txt [ Cookie:nashoa@imrworldwide.com/cgi-bin ]
        C:\USERS\NASHOA\AppData\Roaming\Microsoft\Windows\Cookies\Low\nashoa@ad2.adfarm1.adition[1].txt [ Cookie:nashoa@ad2.adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\5A1WZ0ZN.txt [ Cookie:nashoa@ad1.adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\IV6XOOR9.txt [ Cookie:nashoa@revsci.net/ ]
        C:\USERS\NASHOA\Cookies\L1FAOBTA.txt [ Cookie:nashoa@interclick.com/ ]
        C:\USERS\NASHOA\Cookies\20P4B137.txt [ Cookie:nashoa@ad.zanox.com/ ]
        C:\USERS\NASHOA\Cookies\53YP1SOQ.txt [ Cookie:nashoa@specificclick.net/ ]
        C:\USERS\NASHOA\Cookies\9Z1C7C9J.txt [ Cookie:nashoa@2o7.net/ ]
        C:\USERS\NASHOA\Cookies\V52W2PGK.txt [ Cookie:nashoa@unitymedia.de/ ]
        C:\USERS\NASHOA\Cookies\NNDAVDYZ.txt [ Cookie:nashoa@at.atwola.com/ ]
        C:\USERS\NASHOA\Cookies\LPPDD6GW.txt [ Cookie:nashoa@clkads.com/adServe/banners ]
        C:\USERS\NASHOA\Cookies\XXWR3FYL.txt [ Cookie:nashoa@invitemedia.com/ ]
        C:\USERS\NASHOA\Cookies\J5R1VXBN.txt [ Cookie:nashoa@zanox.com/ ]
        C:\USERS\NASHOA\Cookies\Z28ZCXFJ.txt [ Cookie:nashoa@ad3.adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\BUE6P91L.txt [ Cookie:nashoa@track.adform.net/ ]
        C:\USERS\NASHOA\Cookies\XF9T3KU6.txt [ Cookie:nashoa@smartadserver.com/ ]
        C:\USERS\NASHOA\Cookies\Y7BZ4FOI.txt [ Cookie:nashoa@adfarm1.adition.com/ ]
        C:\USERS\NASHOA\Cookies\nashoa@atwola[2].txt [ Cookie:nashoa@atwola.com/ ]
        C:\USERS\NASHOA\Cookies\VW1Z02VI.txt [ Cookie:nashoa@zanox-affiliate.de/ ]
        C:\USERS\NASHOA\Cookies\NZZAMBEF.txt [ Cookie:nashoa@imrworldwide.com/cgi-bin ]
        C:\USERS\NASHOA\Cookies\K1X0NISH.txt [ Cookie:nashoa@adserver.adtechus.com/ ]
        C:\USERS\NASHOA\Cookies\U1025CUL.txt [ Cookie:nashoa@mediainfo.sourceforge.net/ ]
        C:\USERS\NASHOA\Cookies\nashoa@tacoda.at.atwola[1].txt [ Cookie:nashoa@tacoda.at.atwola.com/ ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@SMARTADSERVER[2].TXT [ /SMARTADSERVER ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ADX.CHIP[2].TXT [ /ADX.CHIP ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@YADRO[2].TXT [ /YADRO ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ATDMT[1].TXT [ /ATDMT ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@DOUBLECLICK[2].TXT [ /DOUBLECLICK ]
        D:\SSD\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\NASHOA@ANRTX.TACODA[1].TXT [ /ANRTX.TACODA ]
        D:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@2O7[1].TXT [ /2O7 ]
        eu.media.blizzard.com [ D:\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\T5WQWSK4 ]
        static.youporn.com [ E:\BACKUPS\USERS\NASHOA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\WL8BF958 ]
        C:\USERS\NASHOA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\NASHOA@SERVING-SYS[1].TXT [ /SERVING-SYS ]
        .adfarm1.adition.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        ad2.adfarm1.adition.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .zanox.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .doubleclick.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        track.blogcounter.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .tns-counter.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        count.rbc.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .xiti.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .medialand.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .medialand.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .engine.mediamir.medialand.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .engine.mediamir.medialand.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .microsoftsto.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        s14.shinystat.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        s14.shinystat.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .shinystat.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        statse.webtrendslive.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        transporntube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .traffictrack.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .traffictrack.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .tto2.traffictrack.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        s03.flagcounter.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .conrad.122.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .getclicky.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .static.getclicky.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wglyuodpolo.stats.esomniture.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .backtrack-linux.org [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .www.backtrack-linux.org [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .sonyeurope.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .naked.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .naked.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .naked.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .microsoftwllivemkt.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        ad.zanox.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        tracking.mlsat02.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .liveperson.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        stats.computecmedia.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        nova.rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .sexyblogtop.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .medialand.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.digital-eliteboard.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.digital-eliteboard.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        gamecrack.info [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        gamecrack.info [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        stats.computecmedia.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjmyuhdzchq.stats.esomniture.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        server.lon.liveperson.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .liveperson.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .lexmark.122.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .premierfarnell.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.swtor.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .srv.resultsmedia.biz [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        tracking.klicktel.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        tracking.klicktel.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .countingdownto.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .gametracker.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        supertracking.com.balao.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        tracking.surveycheck.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .netgear.122.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .olympiaverlag.122.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        zz.2.cqcounter.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .deutschepostag.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .histats.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .mediafire.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .rambler.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .hotlog.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .unitymediakabelbwforum.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .unitymediakabelbwforum.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .unitymediakabelbwforum.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.dyn.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        mediainfo.sourceforge.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.elitepvpers.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .paypal.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        stats.computecmedia.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .oracle.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        stats.computecmedia.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .account.live.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .stats.paypal.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        account.dyn.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        account.dyn.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .yadro.ru [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .media6degrees.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.youtube.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .dailymotionpoc.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]
        .eaeacom.112.2o7.net [ C:\USERS\NASHOA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\S1RGRVYQ.DEFAULT\COOKIES.SQLITE ]

cosinus 20.09.2012 11:34
Nein, das ist wohl ein Bug von SASW das hab ich schon öfter gesehen

Sieht ok aus, da wurden nur Cookies gefunden, der angebliche Fund bei WinRAR ist ein Fehalarm.
Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie )


Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat.

Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/
Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird.

Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da.

Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?

Nashoa 20.09.2012 13:16
danke dir erstmal für die tipp mit MVPS Hosts File und CookieCuller, werde mir auf jeden fall beides mal ansehen.

andere funde hab ich keine, ich denke das sollte alles gewesen sein.

ich danke dir auf jeden fall für deine ganze hilfe :dankeschoen:

cosinus 20.09.2012 19:31
Dann wären wir durch! :abklatsch:

Die Programme, die hier zum Einsatz kamen, können alle wieder runter. Mit Hilfe von OTL kannst du auch viele Tools entfernen:

Starte bitte OTL und klicke auf Bereinigung.
Dies wird die meisten Tools entfernen, die wir zur Bereinigung benötigt haben. Sollte etwas bestehen bleiben, bitte mit Rechtsklick --> Löschen entfernen.


Malwarebytes zu behalten ist zu empfehlen. Kannst ja 1x im Monat damit einen Vollscan machen, aber immer vorher ans Update denken.


Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden.
Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern.


Microsoftupdate

Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren.

Windows Vista/7: Anleitung Windows-Update


PDF-Reader aktualisieren
Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast)

Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader.

Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers:
Prüfen => Adobe - Flash Player
Downloadlinks => Adobe Flash Player Distribution | Adobe

Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind.


Java-Update
Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.


Alle Zeitangaben in WEZ +1. Es ist jetzt 11:36 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19