| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Nach neuem Trojaner alle Dateien verschlüsselt!Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
02.06.2012, 19:57
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Nach neuem Trojaner alle Dateien verschlüsselt! Das wurde oben erklärt und die CODE-Tas wurden auch nochmal verlinkt. Einfach das lesen, was soll das es nochmal hier rein zu schreiben...
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
02.06.2012, 20:11
| #17 |
 | Nach neuem Trojaner alle Dateien verschlüsselt!Code:
ATTFilter hier steht das Log
C:\Program Files (x86)\Conduit\Community Alerts folder moved successfully. C:\Program Files (x86)\Conduit folder moved successfully. C:\found.000\dir0000.chk folder moved successfully. C:\found.000 folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\x64 folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\components folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\scripts folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\chrome\skin folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\chrome\content\modules folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\chrome\content folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\chrome folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\FirefoxExtension\content folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\FirefoxExtension\components folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr\FirefoxExtension folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar\Datamngr folder moved successfully. C:\Program Files (x86)\Searchqu Toolbar folder moved successfully. C:\Users\henaaa\AppData\Roaming\BabylonToolbar\Shared folder moved successfully. C:\Users\henaaa\AppData\Roaming\BabylonToolbar\IE folder moved successfully. C:\Users\henaaa\AppData\Roaming\BabylonToolbar\FF folder moved successfully. C:\Users\henaaa\AppData\Roaming\BabylonToolbar\CR folder moved successfully. C:\Users\henaaa\AppData\Roaming\BabylonToolbar folder moved successfully. C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh folder moved successfully. C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17 folder moved successfully. C:\Program Files (x86)\BabylonToolbar\BabylonToolbar folder moved successfully. C:\Program Files (x86)\BabylonToolbar folder moved successfully. C:\Users\henaaa\AppData\Local\Babylon\Setup\HtmlScreens folder moved successfully. C:\Users\henaaa\AppData\Local\Babylon\Setup folder moved successfully. C:\Users\henaaa\AppData\Local\Babylon folder moved successfully. C:\ProgramData\Babylon folder moved successfully. C:\Users\henaaa\AppData\Roaming\Babylon folder moved successfully. C:\Windows\SysWow64\decoder_del.2.bat moved successfully. C:\Windows\SysWow64\decoder_del.1.bat moved successfully. C:\Windows\SysWow64\decoder_del.bat moved successfully. C:\Windows\SysWow64\winsh320 moved successfully. C:\Windows\SysWow64\winsh321 moved successfully. C:\Windows\SysWow64\winsh322 moved successfully. C:\Windows\SysWow64\winsh323 moved successfully. C:\Windows\SysWow64\winsh324 moved successfully. C:\Windows\SysWow64\winsh325 moved successfully. C:\user.js moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: AppData User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: henaaa ->Temp folder emptied: 579253296 bytes ->Temporary Internet Files folder emptied: 82453909 bytes ->FireFox cache emptied: 182917970 bytes ->Google Chrome cache emptied: 275986692 bytes ->Flash cache emptied: 32933964 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 365237681 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 36028471 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 1.483,00 mb [EMPTYFLASH] User: All Users User: AppData User: Default User: Default User User: henaaa ->Flash cache emptied: 0 bytes User: Public Total Flash Files Cleaned = 0,00 mb C:\Windows\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully OTL by OldTimer - Version 3.2.45.0 log created on 06022012_210308 Files\Folders moved on Reboot... File move failed. E:\AutoRun.exe scheduled to be moved on reboot. File move failed. E:\autorun.inf scheduled to be moved on reboot. File move failed. E:\AutoRunGUI.dll scheduled to be moved on reboot. C:\Users\henaaa\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. Registry entries deleted on Reboot... |
|
03.06.2012, 12:53
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Nach neuem Trojaner alle Dateien verschlüsselt! Schon wieder falsch! Kopier doch einfach das Log hier rein, dann markierst du alles und klickst oben bei den Symbolen zur Formatierung den Button der mit # beschriftet ist!
__________________
__________________ |
|
03.06.2012, 14:59
| #19 |
| | Nach neuem Trojaner alle Dateien verschlüsselt! das ist doch das log oder nicht ??? ich habe es doch komplett so wie es gesagt wurde hier eingefügt ?? was soll ich den noch machen ?? ich kämpfe jetzt schon seit tagen ?? kann es mir nicht jemand nochmal ganz ihn ruhe erklären was zutun ist und wie es zutun ist ?? ich bin nicht der helste hier gerade was computer-technik betrifft.. danke für eure geduld..... All processes killed ========== OTL ========== Registry key HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found. Registry key HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found. Registry key HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C04B7D22-5AEC-4561-8F49-27F6269208F6}\ not found. 64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}\ not found. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D717F81-9148-4f12-8568-69135F087DB0}\ not found. File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\BrowserConnection.dll not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found. File C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}\ not found. File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D717F81-9148-4f12-8568-69135F087DB0}\ not found. File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\BrowserConnection.dll not found. 64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ not found. File C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{99079a25-328f-4bd4-be04-00955acaa0a7} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}\ not found. File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 not found. Registry value HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found. Registry value HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{872B5B88-9DB5-4310-BDD0-AC189557E5F5} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DATAMNGR not found. File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\datamngrUI.exe not found. Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin not found. Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ConsentPromptBehaviorAdmin not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ConsentPromptBehaviorUser not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\EnableLUA not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\PromptOnSecureDesktop not found. Registry value HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun not found. Registry value HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ not found. 64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll deleted successfully. File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\datamngr.dll not found. 64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll deleted successfully. File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\IEBHO.dll not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~2\SEARCH~1\Datamngr\datamngr.dll deleted successfully. File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\datamngr.dll not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~2\SEARCH~1\Datamngr\IEBHO.dll deleted successfully. File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\IEBHO.dll not found. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully! File not found. File move failed. E:\AutoRun.exe scheduled to be moved on reboot. File move failed. E:\autorun.inf scheduled to be moved on reboot. File move failed. E:\AutoRunGUI.dll scheduled to be moved on reboot. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79cd06c5-b907-11e0-814f-001d7239d9a5}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79cd06c5-b907-11e0-814f-001d7239d9a5}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79cd06c5-b907-11e0-814f-001d7239d9a5}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79cd06c5-b907-11e0-814f-001d7239d9a5}\ not found. File F:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79cd06da-b907-11e0-814f-001d7239d9a5}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79cd06da-b907-11e0-814f-001d7239d9a5}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79cd06da-b907-11e0-814f-001d7239d9a5}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79cd06da-b907-11e0-814f-001d7239d9a5}\ not found. File F:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7dd6caa9-68f6-11df-886e-806e6f6e6963}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7dd6caa9-68f6-11df-886e-806e6f6e6963}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7dd6caa9-68f6-11df-886e-806e6f6e6963}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7dd6caa9-68f6-11df-886e-806e6f6e6963}\ not found. File move failed. E:\AutoRun.exe scheduled to be moved on reboot. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3a06491-dea2-11e0-a1da-001e101f21c1}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b3a06491-dea2-11e0-a1da-001e101f21c1}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3a06491-dea2-11e0-a1da-001e101f21c1}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b3a06491-dea2-11e0-a1da-001e101f21c1}\ not found. File F:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e48f5919-5e11-11e1-bb3a-001d7239d9a5}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e48f5919-5e11-11e1-bb3a-001d7239d9a5}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e48f5919-5e11-11e1-bb3a-001d7239d9a5}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e48f5919-5e11-11e1-bb3a-001d7239d9a5}\ not found. File F:\LaunchU3.exe -a not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ not found. File F:\LaunchU3.exe -a not found. ========== FILES ========== File\Folder C:\Program Files (x86)\Conduit not found. File\Folder C:\found.000 not found. File\Folder C:\Program Files (x86)\Searchqu Toolbar not found. File\Folder C:\Users\henaaa\AppData\Roaming\BabylonToolbar not found. File\Folder C:\Program Files (x86)\BabylonToolbar not found. File\Folder C:\Users\henaaa\AppData\Local\Babylon not found. File\Folder C:\ProgramData\Babylon not found. File\Folder C:\Users\henaaa\AppData\Roaming\Babylon not found. File\Folder C:\Windows\SysWow64\decoder_del.2.bat not found. File\Folder C:\Windows\SysWow64\decoder_del.1.bat not found. File\Folder C:\Windows\SysWow64\decoder_del.bat not found. File\Folder C:\Windows\SysWow64\winsh32? not found. File\Folder C:\user.js not found. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: AppData User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: henaaa ->Temp folder emptied: 1042 bytes ->Temporary Internet Files folder emptied: 1303227 bytes ->FireFox cache emptied: 56794361 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 675 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 2402 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes RecycleBin emptied: 2251820 bytes Total Files Cleaned = 58,00 mb [EMPTYFLASH] User: All Users User: AppData User: Default User: Default User User: henaaa ->Flash cache emptied: 0 bytes User: Public Total Flash Files Cleaned = 0,00 mb C:\Windows\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully OTL by OldTimer - Version 3.2.45.0 log created on 06032012_160035 Files\Folders moved on Reboot... File move failed. E:\AutoRun.exe scheduled to be moved on reboot. File move failed. E:\autorun.inf scheduled to be moved on reboot. File move failed. E:\AutoRunGUI.dll scheduled to be moved on reboot. C:\Users\henaaa\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. Registry entries deleted on Reboot... |
|
03.06.2012, 16:31
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Nach neuem Trojaner alle Dateien verschlüsselt! nochmal, du schreibst erst [code] dann kommt das log, und am ende des Logs schreibst du [/code] - das kann doch nicht so schwierig sein!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.06.2012, 16:34
| #21 |
| | Nach neuem Trojaner alle Dateien verschlüsselt!Code:
ATTFilter All processes killed
========== OTL ==========
Registry key HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
Registry key HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
Registry key HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C04B7D22-5AEC-4561-8F49-27F6269208F6}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D717F81-9148-4f12-8568-69135F087DB0}\ not found.
File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\BrowserConnection.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
File C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}\ not found.
File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D717F81-9148-4f12-8568-69135F087DB0}\ not found.
File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\BrowserConnection.dll not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ not found.
File C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{99079a25-328f-4bd4-be04-00955acaa0a7} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}\ not found.
File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 not found.
Registry value HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{872B5B88-9DB5-4310-BDD0-AC189557E5F5} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DATAMNGR not found.
File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\datamngrUI.exe not found.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin not found.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ConsentPromptBehaviorAdmin not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ConsentPromptBehaviorUser not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\EnableLUA not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\PromptOnSecureDesktop not found.
Registry value HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun not found.
Registry value HKEY_USERS\S-1-5-21-4016670111-3217699212-128667199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll deleted successfully.
File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\datamngr.dll not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll deleted successfully.
File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\IEBHO.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~2\SEARCH~1\Datamngr\datamngr.dll deleted successfully.
File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\datamngr.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~2\SEARCH~1\Datamngr\IEBHO.dll deleted successfully.
File C:\Program Files (x86)\Searchqu Toolbar\Datamngr\IEBHO.dll not found.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
File not found.
File move failed. E:\AutoRun.exe scheduled to be moved on reboot.
File move failed. E:\autorun.inf scheduled to be moved on reboot.
File move failed. E:\AutoRunGUI.dll scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79cd06c5-b907-11e0-814f-001d7239d9a5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79cd06c5-b907-11e0-814f-001d7239d9a5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79cd06c5-b907-11e0-814f-001d7239d9a5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79cd06c5-b907-11e0-814f-001d7239d9a5}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79cd06da-b907-11e0-814f-001d7239d9a5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79cd06da-b907-11e0-814f-001d7239d9a5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79cd06da-b907-11e0-814f-001d7239d9a5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{79cd06da-b907-11e0-814f-001d7239d9a5}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7dd6caa9-68f6-11df-886e-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7dd6caa9-68f6-11df-886e-806e6f6e6963}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7dd6caa9-68f6-11df-886e-806e6f6e6963}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7dd6caa9-68f6-11df-886e-806e6f6e6963}\ not found.
File move failed. E:\AutoRun.exe scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3a06491-dea2-11e0-a1da-001e101f21c1}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b3a06491-dea2-11e0-a1da-001e101f21c1}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3a06491-dea2-11e0-a1da-001e101f21c1}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b3a06491-dea2-11e0-a1da-001e101f21c1}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e48f5919-5e11-11e1-bb3a-001d7239d9a5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e48f5919-5e11-11e1-bb3a-001d7239d9a5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e48f5919-5e11-11e1-bb3a-001d7239d9a5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e48f5919-5e11-11e1-bb3a-001d7239d9a5}\ not found.
File F:\LaunchU3.exe -a not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ not found.
File F:\LaunchU3.exe -a not found.
========== FILES ==========
File\Folder C:\Program Files (x86)\Conduit not found.
File\Folder C:\found.000 not found.
File\Folder C:\Program Files (x86)\Searchqu Toolbar not found.
File\Folder C:\Users\henaaa\AppData\Roaming\BabylonToolbar not found.
File\Folder C:\Program Files (x86)\BabylonToolbar not found.
File\Folder C:\Users\henaaa\AppData\Local\Babylon not found.
File\Folder C:\ProgramData\Babylon not found.
File\Folder C:\Users\henaaa\AppData\Roaming\Babylon not found.
File\Folder C:\Windows\SysWow64\decoder_del.2.bat not found.
File\Folder C:\Windows\SysWow64\decoder_del.1.bat not found.
File\Folder C:\Windows\SysWow64\decoder_del.bat not found.
File\Folder C:\Windows\SysWow64\winsh32? not found.
File\Folder C:\user.js not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: AppData
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: henaaa
->Temp folder emptied: 1042 bytes
->Temporary Internet Files folder emptied: 1303227 bytes
->FireFox cache emptied: 56794361 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 675 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2402 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 2251820 bytes
Total Files Cleaned = 58,00 mb
[EMPTYFLASH]
User: All Users
User: AppData
User: Default
User: Default User
User: henaaa
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.45.0 log created on 06032012_160035
Files\Folders moved on Reboot...
File move failed. E:\AutoRun.exe scheduled to be moved on reboot.
File move failed. E:\autorun.inf scheduled to be moved on reboot.
File move failed. E:\AutoRunGUI.dll scheduled to be moved on reboot.
C:\Users\henaaa\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot...
|
|
03.06.2012, 17:52
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Nach neuem Trojaner alle Dateien verschlüsselt! War das jetzt so schwierig?  Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.06.2012, 18:03
| #23 |
| | Nach neuem Trojaner alle Dateien verschlüsselt!Code:
ATTFilter 18:58:34.0432 1832 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
18:58:34.0993 1832 ============================================================
18:58:34.0993 1832 Current date / time: 2012/06/03 18:58:34.0993
18:58:34.0993 1832 SystemInfo:
18:58:34.0993 1832
18:58:34.0993 1832 OS Version: 6.1.7600 ServicePack: 0.0
18:58:34.0993 1832 Product type: Workstation
18:58:34.0993 1832 ComputerName: HENAAA-PC
18:58:34.0994 1832 UserName: henaaa
18:58:34.0994 1832 Windows directory: C:\Windows
18:58:34.0994 1832 System windows directory: C:\Windows
18:58:34.0994 1832 Running under WOW64
18:58:34.0994 1832 Processor architecture: Intel x64
18:58:34.0994 1832 Number of processors: 2
18:58:34.0994 1832 Page size: 0x1000
18:58:34.0994 1832 Boot type: Normal boot
18:58:34.0994 1832 ============================================================
18:58:37.0311 1832 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:58:37.0380 1832 Drive \Device\Harddisk1\DR1 - Size: 0xEC400000 (3.69 Gb), SectorSize: 0x200, Cylinders: 0x3C0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x80, Type 'W'
18:58:37.0389 1832 ============================================================
18:58:37.0389 1832 \Device\Harddisk0\DR0:
18:58:37.0389 1832 MBR partitions:
18:58:37.0390 1832 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0x8B4A800
18:58:37.0390 1832 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x9ED3000, BlocksNum 0x8B46000
18:58:37.0390 1832 \Device\Harddisk1\DR1:
18:58:37.0390 1832 MBR partitions:
18:58:37.0390 1832 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x760C00
18:58:37.0390 1832 ============================================================
18:58:37.0474 1832 C: <-> \Device\Harddisk0\DR0\Partition0
18:58:37.0572 1832 D: <-> \Device\Harddisk0\DR0\Partition1
18:58:37.0724 1832 ============================================================
18:58:37.0724 1832 Initialize success
18:58:37.0725 1832 ============================================================
18:59:11.0264 1048 ============================================================
18:59:11.0264 1048 Scan started
18:59:11.0264 1048 Mode: Manual; SigCheck; TDLFS;
18:59:11.0264 1048 ============================================================
18:59:12.0558 1048 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
18:59:12.0886 1048 1394ohci - ok
18:59:13.0058 1048 ABBYY.Licensing.FineReader.Sprint.9.0 (b33cf4de909a5b30f526d82053a63c8e) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
18:59:13.0136 1048 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
18:59:13.0182 1048 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
18:59:13.0214 1048 ACPI - ok
18:59:13.0229 1048 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
18:59:13.0338 1048 AcpiPmi - ok
18:59:13.0432 1048 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:59:13.0479 1048 adp94xx - ok
18:59:13.0526 1048 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:59:13.0557 1048 adpahci - ok
18:59:13.0604 1048 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:59:13.0635 1048 adpu320 - ok
18:59:13.0682 1048 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:59:13.0900 1048 AeLookupSvc - ok
18:59:14.0150 1048 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
18:59:14.0290 1048 AFD - ok
18:59:14.0337 1048 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
18:59:14.0352 1048 agp440 - ok
18:59:14.0384 1048 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:59:14.0493 1048 ALG - ok
18:59:14.0524 1048 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
18:59:14.0540 1048 aliide - ok
18:59:14.0555 1048 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
18:59:14.0586 1048 amdide - ok
18:59:14.0618 1048 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:59:14.0696 1048 AmdK8 - ok
18:59:14.0727 1048 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:59:14.0789 1048 AmdPPM - ok
18:59:14.0852 1048 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
18:59:14.0867 1048 amdsata - ok
18:59:14.0914 1048 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:59:14.0945 1048 amdsbs - ok
18:59:14.0961 1048 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
18:59:14.0992 1048 amdxata - ok
18:59:15.0023 1048 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
18:59:15.0164 1048 AppID - ok
18:59:15.0179 1048 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:59:15.0242 1048 AppIDSvc - ok
18:59:15.0273 1048 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
18:59:15.0382 1048 Appinfo - ok
18:59:15.0507 1048 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:59:15.0538 1048 Apple Mobile Device - ok
18:59:15.0647 1048 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
18:59:15.0772 1048 AppMgmt - ok
18:59:15.0819 1048 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:59:15.0866 1048 arc - ok
18:59:15.0897 1048 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:59:15.0928 1048 arcsas - ok
18:59:15.0959 1048 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:59:16.0053 1048 AsyncMac - ok
18:59:16.0068 1048 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
18:59:16.0084 1048 atapi - ok
18:59:16.0193 1048 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
18:59:16.0271 1048 athr - ok
18:59:16.0443 1048 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
18:59:16.0552 1048 AudioEndpointBuilder - ok
18:59:16.0568 1048 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
18:59:16.0614 1048 AudioSrv - ok
18:59:16.0661 1048 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
18:59:16.0817 1048 AxInstSV - ok
18:59:16.0895 1048 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:59:16.0973 1048 b06bdrv - ok
18:59:17.0020 1048 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:59:17.0082 1048 b57nd60a - ok
18:59:17.0129 1048 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:59:17.0254 1048 BDESVC - ok
18:59:17.0301 1048 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:59:17.0394 1048 Beep - ok
18:59:17.0504 1048 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
18:59:17.0582 1048 BFE - ok
18:59:17.0940 1048 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\BASHDefs\20120517.001\BHDrvx64.sys
18:59:18.0128 1048 BHDrvx64 - ok
18:59:18.0346 1048 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
18:59:18.0455 1048 BITS - ok
18:59:18.0533 1048 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:59:18.0580 1048 blbdrive - ok
18:59:18.0705 1048 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
18:59:18.0736 1048 Bonjour Service - ok
18:59:18.0798 1048 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
18:59:18.0908 1048 bowser - ok
18:59:18.0954 1048 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:59:19.0001 1048 BrFiltLo - ok
18:59:19.0001 1048 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:59:19.0032 1048 BrFiltUp - ok
18:59:19.0079 1048 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
18:59:19.0126 1048 Browser - ok
18:59:19.0157 1048 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:59:19.0251 1048 Brserid - ok
18:59:19.0266 1048 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:59:19.0313 1048 BrSerWdm - ok
18:59:19.0329 1048 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:59:19.0376 1048 BrUsbMdm - ok
18:59:19.0391 1048 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:59:19.0438 1048 BrUsbSer - ok
18:59:19.0454 1048 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:59:19.0485 1048 BTHMODEM - ok
18:59:19.0516 1048 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:59:19.0578 1048 bthserv - ok
18:59:19.0672 1048 ccSet_NIS (a8ad33c9dd88c810cac00acc7f4329fb) C:\Windows\system32\drivers\NISx64\1301010.003\ccSetx64.sys
18:59:19.0703 1048 ccSet_NIS - ok
18:59:19.0734 1048 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:59:19.0797 1048 cdfs - ok
18:59:19.0844 1048 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
18:59:19.0937 1048 cdrom - ok
18:59:20.0000 1048 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
18:59:20.0109 1048 CertPropSvc - ok
18:59:20.0140 1048 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:59:20.0156 1048 circlass - ok
18:59:20.0187 1048 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:59:20.0218 1048 CLFS - ok
18:59:20.0296 1048 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:59:20.0343 1048 clr_optimization_v2.0.50727_32 - ok
18:59:20.0405 1048 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:59:20.0436 1048 clr_optimization_v2.0.50727_64 - ok
18:59:20.0546 1048 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:59:20.0608 1048 clr_optimization_v4.0.30319_32 - ok
18:59:20.0702 1048 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:59:20.0733 1048 clr_optimization_v4.0.30319_64 - ok
18:59:20.0780 1048 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:59:20.0811 1048 CmBatt - ok
18:59:20.0842 1048 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
18:59:20.0858 1048 cmdide - ok
18:59:20.0920 1048 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
18:59:20.0967 1048 CNG - ok
18:59:20.0982 1048 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:59:20.0998 1048 Compbatt - ok
18:59:21.0029 1048 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
18:59:21.0076 1048 CompositeBus - ok
18:59:21.0092 1048 COMSysApp - ok
18:59:21.0123 1048 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:59:21.0138 1048 crcdisk - ok
18:59:21.0185 1048 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
18:59:21.0248 1048 CryptSvc - ok
18:59:21.0310 1048 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
18:59:21.0388 1048 CSC - ok
18:59:21.0435 1048 CscService (873fbf927c06e5cee04dec617502f8fd) C:\Windows\System32\cscsvc.dll
18:59:21.0513 1048 CscService - ok
18:59:21.0591 1048 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
18:59:21.0669 1048 DcomLaunch - ok
18:59:21.0731 1048 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:59:21.0794 1048 defragsvc - ok
18:59:21.0872 1048 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
18:59:21.0950 1048 DfsC - ok
18:59:21.0996 1048 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
18:59:22.0106 1048 Dhcp - ok
18:59:22.0137 1048 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:59:22.0230 1048 discache - ok
18:59:22.0293 1048 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:59:22.0340 1048 Disk - ok
18:59:22.0371 1048 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
18:59:22.0464 1048 Dnscache - ok
18:59:22.0511 1048 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
18:59:22.0589 1048 dot3svc - ok
18:59:22.0620 1048 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
18:59:22.0698 1048 DPS - ok
18:59:22.0730 1048 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:59:22.0776 1048 drmkaud - ok
18:59:22.0901 1048 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
18:59:22.0948 1048 DXGKrnl - ok
18:59:22.0995 1048 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:59:23.0073 1048 EapHost - ok
18:59:23.0338 1048 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:59:23.0447 1048 ebdrv - ok
18:59:23.0572 1048 eeCtrl (ba6420c1f7070ed8f1ba372844f3e1ec) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:59:23.0619 1048 eeCtrl - ok
18:59:23.0775 1048 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
18:59:23.0868 1048 EFS - ok
18:59:23.0993 1048 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
18:59:24.0087 1048 ehRecvr - ok
18:59:24.0134 1048 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:59:24.0212 1048 ehSched - ok
18:59:24.0305 1048 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:59:24.0352 1048 elxstor - ok
18:59:24.0477 1048 EpsonBidirectionalService (abdd5ad016affd34ad40e944ce94bf59) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
18:59:24.0508 1048 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - warning
18:59:24.0508 1048 EpsonBidirectionalService - detected UnsignedFile.Multi.Generic (1)
18:59:24.0664 1048 EPSON_EB_RPCV4_01 (b5581646636759d0dafa8b008881c079) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
18:59:24.0742 1048 EPSON_EB_RPCV4_01 - ok
18:59:24.0773 1048 EPSON_PM_RPCV4_01 (1e345f2a2d95da3190596e691cde9342) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
18:59:24.0836 1048 EPSON_PM_RPCV4_01 - ok
18:59:24.0929 1048 EraserUtilRebootDrv (1343df3451bc0c442dc69837c6fba21b) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:59:24.0960 1048 EraserUtilRebootDrv - ok
18:59:25.0007 1048 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
18:59:25.0038 1048 ErrDev - ok
18:59:25.0116 1048 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:59:25.0194 1048 EventSystem - ok
18:59:25.0210 1048 ewusbnet - ok
18:59:25.0241 1048 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:59:25.0319 1048 exfat - ok
18:59:25.0350 1048 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:59:25.0428 1048 fastfat - ok
18:59:25.0553 1048 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
18:59:25.0647 1048 Fax - ok
18:59:25.0678 1048 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:59:25.0709 1048 fdc - ok
18:59:25.0740 1048 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:59:25.0818 1048 fdPHost - ok
18:59:25.0834 1048 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:59:25.0896 1048 FDResPub - ok
18:59:25.0928 1048 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:59:25.0943 1048 FileInfo - ok
18:59:25.0959 1048 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:59:26.0006 1048 Filetrace - ok
18:59:26.0021 1048 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:59:26.0068 1048 flpydisk - ok
18:59:26.0115 1048 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
18:59:26.0146 1048 FltMgr - ok
18:59:26.0271 1048 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
18:59:26.0349 1048 FontCache - ok
18:59:26.0442 1048 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:59:26.0474 1048 FontCache3.0.0.0 - ok
18:59:26.0520 1048 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:59:26.0552 1048 FsDepends - ok
18:59:26.0598 1048 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
18:59:26.0630 1048 Fs_Rec - ok
18:59:26.0692 1048 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:59:26.0723 1048 fvevol - ok
18:59:26.0770 1048 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:59:26.0832 1048 gagp30kx - ok
18:59:26.0864 1048 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:59:26.0879 1048 GEARAspiWDM - ok
18:59:26.0957 1048 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
18:59:27.0020 1048 gpsvc - ok
18:59:27.0191 1048 gupdate (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:59:27.0222 1048 gupdate - ok
18:59:27.0269 1048 gupdatem (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:59:27.0285 1048 gupdatem - ok
18:59:27.0316 1048 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:59:27.0378 1048 hcw85cir - ok
18:59:27.0441 1048 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
18:59:27.0488 1048 HdAudAddService - ok
18:59:27.0534 1048 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:59:27.0566 1048 HDAudBus - ok
18:59:27.0597 1048 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:59:27.0628 1048 HidBatt - ok
18:59:27.0659 1048 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:59:27.0706 1048 HidBth - ok
18:59:27.0722 1048 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:59:27.0768 1048 HidIr - ok
18:59:27.0800 1048 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:59:27.0878 1048 hidserv - ok
18:59:27.0924 1048 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
18:59:27.0956 1048 HidUsb - ok
18:59:28.0002 1048 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
18:59:28.0065 1048 hkmsvc - ok
18:59:28.0096 1048 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
18:59:28.0190 1048 HomeGroupListener - ok
18:59:28.0221 1048 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
18:59:28.0268 1048 HomeGroupProvider - ok
18:59:28.0314 1048 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
18:59:28.0361 1048 HpSAMD - ok
18:59:28.0439 1048 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
18:59:28.0517 1048 HTTP - ok
18:59:28.0548 1048 hwdatacard - ok
18:59:28.0580 1048 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
18:59:28.0595 1048 hwpolicy - ok
18:59:28.0611 1048 hwusbdev - ok
18:59:28.0642 1048 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
18:59:28.0673 1048 i8042prt - ok
18:59:28.0782 1048 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
18:59:28.0829 1048 iaStorV - ok
18:59:28.0985 1048 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:59:29.0032 1048 idsvc - ok
18:59:29.0406 1048 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\IPSDefs\20120601.001\IDSvia64.sys
18:59:29.0453 1048 IDSVia64 - ok
18:59:30.0015 1048 igfx (24cc43ecdeefd4c19fbbee4951b647f1) C:\Windows\system32\DRIVERS\igdkmd64.sys
18:59:30.0342 1048 igfx - ok
18:59:30.0514 1048 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:59:30.0561 1048 iirsp - ok
18:59:30.0654 1048 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
18:59:30.0732 1048 IKEEXT - ok
18:59:30.0748 1048 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
18:59:30.0779 1048 intelide - ok
18:59:30.0810 1048 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:59:30.0842 1048 intelppm - ok
18:59:30.0888 1048 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:59:30.0966 1048 IPBusEnum - ok
18:59:30.0998 1048 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:59:31.0044 1048 IpFilterDriver - ok
18:59:31.0122 1048 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
18:59:31.0200 1048 iphlpsvc - ok
18:59:31.0216 1048 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
18:59:31.0263 1048 IPMIDRV - ok
18:59:31.0294 1048 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:59:31.0356 1048 IPNAT - ok
18:59:31.0419 1048 irda (05360b1ea5a2abf620d1d96ebd8bd8f1) C:\Windows\system32\DRIVERS\irda.sys
18:59:31.0466 1048 irda - ok
18:59:31.0512 1048 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:59:31.0544 1048 IRENUM - ok
18:59:31.0606 1048 Irmon (3848384ab383f0a8f506c4370635c1f9) C:\Windows\System32\irmon.dll
18:59:31.0668 1048 Irmon - ok
18:59:31.0762 1048 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
18:59:31.0793 1048 isapnp - ok
18:59:31.0840 1048 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
18:59:31.0871 1048 iScsiPrt - ok
18:59:31.0887 1048 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:59:31.0902 1048 kbdclass - ok
18:59:31.0934 1048 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
18:59:31.0980 1048 kbdhid - ok
18:59:32.0012 1048 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
18:59:32.0043 1048 KeyIso - ok
18:59:32.0058 1048 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
18:59:32.0074 1048 KSecDD - ok
18:59:32.0105 1048 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
18:59:32.0121 1048 KSecPkg - ok
18:59:32.0136 1048 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:59:32.0214 1048 ksthunk - ok
18:59:32.0261 1048 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:59:32.0339 1048 KtmRm - ok
18:59:32.0448 1048 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
18:59:32.0511 1048 LanmanServer - ok
18:59:32.0589 1048 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
18:59:32.0667 1048 LanmanWorkstation - ok
18:59:32.0760 1048 Lexware_Datenbank_Plus - ok
18:59:32.0823 1048 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:59:32.0932 1048 lltdio - ok
18:59:33.0010 1048 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:59:33.0057 1048 lltdsvc - ok
18:59:33.0072 1048 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:59:33.0119 1048 lmhosts - ok
18:59:33.0166 1048 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:59:33.0197 1048 LSI_FC - ok
18:59:33.0213 1048 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:59:33.0244 1048 LSI_SAS - ok
18:59:33.0260 1048 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:59:33.0275 1048 LSI_SAS2 - ok
18:59:33.0322 1048 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:59:33.0338 1048 LSI_SCSI - ok
18:59:33.0384 1048 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:59:33.0447 1048 luafv - ok
18:59:33.0478 1048 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
18:59:33.0494 1048 MBAMProtector - ok
18:59:33.0665 1048 MBAMService (ba400ed640bca1eae5c727ae17c10207) D:\Malwarebytes' Anti-Malware\mbamservice.exe
18:59:33.0696 1048 MBAMService - ok
18:59:33.0806 1048 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
18:59:33.0821 1048 McComponentHostService - ok
18:59:33.0852 1048 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
18:59:33.0915 1048 Mcx2Svc - ok
18:59:34.0055 1048 MDM (7cf1b716372b89568ae4c0fe769f5869) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
18:59:34.0086 1048 MDM ( UnsignedFile.Multi.Generic ) - warning
18:59:34.0086 1048 MDM - detected UnsignedFile.Multi.Generic (1)
18:59:34.0133 1048 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:59:34.0164 1048 megasas - ok
18:59:34.0196 1048 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:59:34.0227 1048 MegaSR - ok
18:59:34.0289 1048 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) D:\Programme\Microsoft Office\Office12\GrooveAuditService.exe
18:59:34.0336 1048 Microsoft Office Groove Audit Service - ok
18:59:34.0383 1048 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:59:34.0445 1048 MMCSS - ok
18:59:34.0476 1048 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:59:34.0539 1048 Modem - ok
18:59:34.0570 1048 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:59:34.0617 1048 monitor - ok
18:59:34.0648 1048 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:59:34.0679 1048 mouclass - ok
18:59:34.0695 1048 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:59:34.0742 1048 mouhid - ok
18:59:34.0773 1048 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
18:59:34.0788 1048 mountmgr - ok
18:59:34.0882 1048 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:59:34.0913 1048 MozillaMaintenance - ok
18:59:34.0944 1048 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
18:59:34.0960 1048 mpio - ok
18:59:34.0991 1048 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:59:35.0054 1048 mpsdrv - ok
18:59:35.0147 1048 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
18:59:35.0241 1048 MpsSvc - ok
18:59:35.0256 1048 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
18:59:35.0303 1048 MRxDAV - ok
18:59:35.0350 1048 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:59:35.0397 1048 mrxsmb - ok
18:59:35.0459 1048 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:59:35.0475 1048 mrxsmb10 - ok
18:59:35.0522 1048 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:59:35.0568 1048 mrxsmb20 - ok
18:59:35.0600 1048 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
18:59:35.0631 1048 msahci - ok
18:59:35.0646 1048 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
18:59:35.0678 1048 msdsm - ok
18:59:35.0709 1048 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:59:35.0756 1048 MSDTC - ok
18:59:35.0787 1048 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:59:35.0834 1048 Msfs - ok
18:59:35.0849 1048 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:59:35.0927 1048 mshidkmdf - ok
18:59:35.0943 1048 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
18:59:35.0958 1048 msisadrv - ok
18:59:36.0021 1048 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:59:36.0099 1048 MSiSCSI - ok
18:59:36.0099 1048 msiserver - ok
18:59:36.0146 1048 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:59:36.0224 1048 MSKSSRV - ok
18:59:36.0239 1048 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:59:36.0302 1048 MSPCLOCK - ok
18:59:36.0302 1048 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:59:36.0364 1048 MSPQM - ok
18:59:36.0411 1048 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
18:59:36.0458 1048 MsRPC - ok
18:59:36.0489 1048 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
18:59:36.0504 1048 mssmbios - ok
18:59:36.0520 1048 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:59:36.0582 1048 MSTEE - ok
18:59:36.0614 1048 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:59:36.0660 1048 MTConfig - ok
18:59:36.0692 1048 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:59:36.0707 1048 Mup - ok
18:59:36.0770 1048 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
18:59:36.0848 1048 napagent - ok
18:59:36.0894 1048 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:59:36.0941 1048 NativeWifiP - ok
18:59:37.0144 1048 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20120602.009\ENG64.SYS
18:59:37.0175 1048 NAVENG - ok
18:59:37.0425 1048 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20120602.009\EX64.SYS
18:59:37.0487 1048 NAVEX15 - ok
18:59:37.0737 1048 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
18:59:37.0784 1048 NDIS - ok
18:59:37.0830 1048 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:59:37.0893 1048 NdisCap - ok
18:59:37.0924 1048 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:59:37.0986 1048 NdisTapi - ok
18:59:38.0033 1048 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
18:59:38.0111 1048 Ndisuio - ok
18:59:38.0142 1048 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
18:59:38.0189 1048 NdisWan - ok
18:59:38.0205 1048 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
18:59:38.0267 1048 NDProxy - ok
18:59:38.0298 1048 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:59:38.0361 1048 NetBIOS - ok
18:59:38.0408 1048 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
18:59:38.0454 1048 NetBT - ok
18:59:38.0501 1048 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
18:59:38.0517 1048 Netlogon - ok
18:59:38.0610 1048 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:59:38.0704 1048 Netman - ok
18:59:38.0751 1048 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:59:38.0829 1048 netprofm - ok
18:59:38.0922 1048 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:59:38.0954 1048 NetTcpPortSharing - ok
18:59:39.0032 1048 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:59:39.0063 1048 nfrd960 - ok
18:59:39.0234 1048 NIS (e127420b7feb65c7f279eaac183bbc0e) C:\Program Files (x86)\Norton Internet Security\Engine\19.1.1.3\ccSvcHst.exe
18:59:39.0266 1048 NIS - ok
18:59:39.0328 1048 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
18:59:39.0390 1048 NlaSvc - ok
18:59:39.0422 1048 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:59:39.0500 1048 Npfs - ok
18:59:39.0562 1048 NSCIRDA (228c7cf50a584dd58e72fcefac7d8914) C:\Windows\system32\DRIVERS\nscirda.sys
18:59:39.0656 1048 NSCIRDA - ok
18:59:39.0687 1048 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:59:39.0749 1048 nsi - ok
18:59:39.0843 1048 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:59:39.0968 1048 nsiproxy - ok
18:59:40.0108 1048 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
18:59:40.0170 1048 Ntfs - ok
18:59:40.0295 1048 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:59:40.0358 1048 Null - ok
18:59:40.0420 1048 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
18:59:40.0451 1048 nvraid - ok
18:59:40.0498 1048 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
18:59:40.0514 1048 nvstor - ok
18:59:40.0560 1048 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
18:59:40.0576 1048 nv_agp - ok
18:59:40.0701 1048 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:59:40.0748 1048 odserv - ok
18:59:40.0779 1048 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
18:59:40.0826 1048 ohci1394 - ok
18:59:40.0872 1048 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:59:40.0904 1048 ose - ok
18:59:40.0966 1048 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:59:41.0044 1048 p2pimsvc - ok
18:59:41.0075 1048 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:59:41.0106 1048 p2psvc - ok
18:59:41.0138 1048 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:59:41.0169 1048 Parport - ok
18:59:41.0216 1048 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
18:59:41.0231 1048 partmgr - ok
18:59:41.0262 1048 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:59:41.0325 1048 PcaSvc - ok
18:59:41.0340 1048 pccsmcfd (81b5e63131090879ad6ef9f32109b88d) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
18:59:41.0403 1048 pccsmcfd - ok
18:59:41.0418 1048 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
18:59:41.0434 1048 pci - ok
18:59:41.0450 1048 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
18:59:41.0481 1048 pciide - ok
18:59:41.0528 1048 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:59:41.0543 1048 pcmcia - ok
18:59:41.0559 1048 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:59:41.0574 1048 pcw - ok
18:59:41.0621 1048 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:59:41.0699 1048 PEAUTH - ok
18:59:41.0793 1048 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
18:59:41.0902 1048 PeerDistSvc - ok
18:59:41.0980 1048 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:59:42.0011 1048 PerfHost - ok
18:59:42.0167 1048 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
18:59:42.0261 1048 pla - ok
18:59:42.0354 1048 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
18:59:42.0432 1048 PlugPlay - ok
18:59:42.0464 1048 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:59:42.0479 1048 PNRPAutoReg - ok
18:59:42.0526 1048 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:59:42.0542 1048 PNRPsvc - ok
18:59:42.0588 1048 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
18:59:42.0635 1048 PolicyAgent - ok
18:59:42.0682 1048 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:59:42.0744 1048 Power - ok
18:59:42.0854 1048 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
18:59:42.0932 1048 PptpMiniport - ok
18:59:42.0963 1048 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:59:42.0994 1048 Processor - ok
18:59:43.0056 1048 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
18:59:43.0150 1048 ProfSvc - ok
18:59:43.0197 1048 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
18:59:43.0228 1048 ProtectedStorage - ok
18:59:43.0275 1048 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
18:59:43.0353 1048 Psched - ok
18:59:43.0478 1048 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:59:43.0540 1048 ql2300 - ok
18:59:43.0727 1048 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:59:43.0758 1048 ql40xx - ok
18:59:43.0805 1048 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:59:43.0836 1048 QWAVE - ok
18:59:43.0852 1048 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:59:43.0899 1048 QWAVEdrv - ok
18:59:43.0930 1048 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:59:43.0992 1048 RasAcd - ok
18:59:44.0055 1048 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:59:44.0117 1048 RasAgileVpn - ok
18:59:44.0133 1048 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:59:44.0195 1048 RasAuto - ok
18:59:44.0226 1048 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:59:44.0304 1048 Rasl2tp - ok
18:59:44.0367 1048 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
18:59:44.0460 1048 RasMan - ok
18:59:44.0492 1048 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:59:44.0538 1048 RasPppoe - ok
18:59:44.0554 1048 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:59:44.0632 1048 RasSstp - ok
18:59:44.0679 1048 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
18:59:44.0757 1048 rdbss - ok
18:59:44.0788 1048 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:59:44.0819 1048 rdpbus - ok
18:59:44.0835 1048 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:59:44.0882 1048 RDPCDD - ok
18:59:44.0928 1048 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
18:59:44.0991 1048 RDPDR - ok
18:59:45.0022 1048 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:59:45.0100 1048 RDPENCDD - ok
18:59:45.0116 1048 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:59:45.0194 1048 RDPREFMP - ok
18:59:45.0225 1048 RDPWD (074ac702d8b8b660b0e1371555995386) C:\Windows\system32\drivers\RDPWD.sys
18:59:45.0350 1048 RDPWD - ok
18:59:45.0396 1048 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
18:59:45.0428 1048 rdyboost - ok
18:59:45.0459 1048 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:59:45.0537 1048 RemoteAccess - ok
18:59:45.0584 1048 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:59:45.0662 1048 RemoteRegistry - ok
18:59:45.0708 1048 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:59:45.0771 1048 RpcEptMapper - ok
18:59:45.0802 1048 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:59:45.0849 1048 RpcLocator - ok
18:59:45.0896 1048 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
18:59:45.0958 1048 RpcSs - ok
18:59:46.0005 1048 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:59:46.0067 1048 rspndr - ok
18:59:46.0083 1048 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys
18:59:46.0130 1048 s3cap - ok
18:59:46.0161 1048 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
18:59:46.0176 1048 SamSs - ok
18:59:46.0208 1048 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
18:59:46.0223 1048 sbp2port - ok
18:59:46.0270 1048 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:59:46.0348 1048 SCardSvr - ok
18:59:46.0379 1048 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
18:59:46.0457 1048 scfilter - ok
18:59:46.0535 1048 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
18:59:46.0598 1048 Schedule - ok
18:59:46.0613 1048 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
18:59:46.0660 1048 SCPolicySvc - ok
18:59:46.0691 1048 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\Windows\system32\DRIVERS\sdbus.sys
18:59:46.0738 1048 sdbus - ok
18:59:46.0785 1048 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
18:59:46.0863 1048 SDRSVC - ok
18:59:47.0019 1048 SeaPort (3e0cff5f0a9d23e327703d72cea5253f) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
18:59:47.0034 1048 SeaPort - ok
18:59:47.0066 1048 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:59:47.0128 1048 secdrv - ok
18:59:47.0175 1048 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
18:59:47.0253 1048 seclogon - ok
18:59:47.0284 1048 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:59:47.0346 1048 SENS - ok
18:59:47.0378 1048 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:59:47.0456 1048 SensrSvc - ok
18:59:47.0471 1048 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:59:47.0502 1048 Serenum - ok
18:59:47.0534 1048 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:59:47.0565 1048 Serial - ok
18:59:47.0580 1048 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:59:47.0596 1048 sermouse - ok
18:59:47.0721 1048 ServiceLayer (9d38320bb32230349379df5ddbbf7fce) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
18:59:47.0768 1048 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
18:59:47.0768 1048 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
18:59:47.0814 1048 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
18:59:47.0877 1048 SessionEnv - ok
18:59:47.0908 1048 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
18:59:47.0955 1048 sffdisk - ok
18:59:47.0986 1048 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
18:59:48.0017 1048 sffp_mmc - ok
18:59:48.0048 1048 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
18:59:48.0080 1048 sffp_sd - ok
18:59:48.0080 1048 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:59:48.0111 1048 sfloppy - ok
18:59:48.0158 1048 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:59:48.0236 1048 SharedAccess - ok
18:59:48.0298 1048 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
18:59:48.0345 1048 ShellHWDetection - ok
18:59:48.0407 1048 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:59:48.0423 1048 SiSRaid2 - ok
18:59:48.0454 1048 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:59:48.0470 1048 SiSRaid4 - ok
18:59:48.0626 1048 SkypeUpdate (579ba0a911ff5ea70cb604cd3b744b0a) C:\Program Files (x86)\Skype\Updater\Updater.exe
18:59:48.0641 1048 SkypeUpdate - ok
18:59:48.0688 1048 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:59:48.0750 1048 Smb - ok
18:59:48.0813 1048 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:59:48.0860 1048 SNMPTRAP - ok
18:59:48.0891 1048 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:59:48.0922 1048 spldr - ok
18:59:49.0000 1048 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
18:59:49.0094 1048 Spooler - ok
18:59:49.0359 1048 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
18:59:49.0468 1048 sppsvc - ok
18:59:49.0593 1048 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:59:49.0686 1048 sppuinotify - ok
18:59:49.0889 1048 SRTSP (1321a6c3c92bbd3f3bbe1292cff8e91a) C:\Windows\system32\drivers\NISx64\1301010.003\SRTSP64.SYS
18:59:49.0936 1048 SRTSP - ok
18:59:49.0952 1048 SRTSPX (bd129c22c3b8c2e584227269dfa77b09) C:\Windows\system32\drivers\NISx64\1301010.003\SRTSPX64.SYS
18:59:49.0967 1048 SRTSPX - ok
18:59:50.0045 1048 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
18:59:50.0108 1048 srv - ok
18:59:50.0170 1048 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
18:59:50.0217 1048 srv2 - ok
18:59:50.0295 1048 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:59:50.0326 1048 SrvHsfHDA - ok
18:59:50.0435 1048 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:59:50.0498 1048 SrvHsfV92 - ok
18:59:50.0700 1048 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:59:50.0747 1048 SrvHsfWinac - ok
18:59:50.0794 1048 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
18:59:50.0841 1048 srvnet - ok
18:59:50.0888 1048 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:59:50.0966 1048 SSDPSRV - ok
18:59:50.0997 1048 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:59:51.0059 1048 SstpSvc - ok
18:59:51.0090 1048 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:59:51.0106 1048 stexstor - ok
18:59:51.0200 1048 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
18:59:51.0246 1048 stisvc - ok
18:59:51.0278 1048 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys
18:59:51.0324 1048 storflt - ok
18:59:51.0356 1048 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
18:59:51.0449 1048 StorSvc - ok
18:59:51.0480 1048 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys
18:59:51.0512 1048 storvsc - ok
18:59:51.0543 1048 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
18:59:51.0558 1048 swenum - ok
18:59:51.0636 1048 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:59:51.0699 1048 swprv - ok
18:59:51.0808 1048 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1301010.003\SYMDS64.SYS
18:59:51.0855 1048 SymDS - ok
18:59:51.0980 1048 SymEFA (fe29b18bf86ffcd55d8733c9b01e5042) C:\Windows\system32\drivers\NISx64\1301010.003\SYMEFA64.SYS
18:59:52.0073 1048 SymEFA - ok
18:59:52.0151 1048 SymEvent (36b77f5c9e21f88a8c8ec67ad5415819) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:59:52.0167 1048 SymEvent - ok
18:59:52.0229 1048 SymIRON (dd70da422460fded831d211df151d560) C:\Windows\system32\drivers\NISx64\1301010.003\Ironx64.SYS
18:59:52.0245 1048 SymIRON - ok
18:59:52.0292 1048 SymNetS (bce4eb2eef05e388959b46fd21388c2d) C:\Windows\system32\drivers\NISx64\1301010.003\SYMNETS.SYS
18:59:52.0323 1048 SymNetS - ok
18:59:52.0463 1048 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
18:59:52.0541 1048 SysMain - ok
18:59:52.0682 1048 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
18:59:52.0760 1048 TabletInputService - ok
18:59:52.0806 1048 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
18:59:52.0869 1048 TapiSrv - ok
18:59:52.0916 1048 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:59:52.0978 1048 TBS - ok
18:59:53.0228 1048 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
18:59:53.0306 1048 Tcpip - ok
18:59:53.0664 1048 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
18:59:53.0727 1048 TCPIP6 - ok
18:59:53.0898 1048 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
18:59:53.0961 1048 tcpipreg - ok
18:59:53.0992 1048 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:59:54.0023 1048 TDPIPE - ok
18:59:54.0070 1048 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
18:59:54.0132 1048 TDTCP - ok
18:59:54.0179 1048 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
18:59:54.0242 1048 tdx - ok
18:59:54.0273 1048 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
18:59:54.0288 1048 TermDD - ok
18:59:54.0382 1048 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
18:59:54.0460 1048 TermService - ok
18:59:54.0476 1048 TFsExDisk - ok
18:59:54.0507 1048 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:59:54.0554 1048 Themes - ok
18:59:54.0600 1048 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:59:54.0647 1048 THREADORDER - ok
18:59:54.0710 1048 tifm21 (7e673a9711c616d63c33247a51e4c3f7) C:\Windows\system32\drivers\tifm21.sys
18:59:54.0772 1048 tifm21 - ok
18:59:54.0819 1048 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:59:54.0912 1048 TrkWks - ok
18:59:54.0990 1048 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
18:59:55.0037 1048 TrustedInstaller - ok
18:59:55.0068 1048 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:59:55.0146 1048 tssecsrv - ok
18:59:55.0178 1048 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
18:59:55.0240 1048 tunnel - ok
18:59:55.0271 1048 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:59:55.0334 1048 uagp35 - ok
18:59:55.0380 1048 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
18:59:55.0443 1048 udfs - ok
18:59:55.0505 1048 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:59:55.0521 1048 UI0Detect - ok
18:59:55.0568 1048 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
18:59:55.0583 1048 uliagpkx - ok
18:59:55.0630 1048 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
18:59:55.0692 1048 umbus - ok
18:59:55.0692 1048 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:59:55.0724 1048 UmPass - ok
18:59:55.0770 1048 UmRdpService (af0ac98ee5077eb844413eb54287fde3) C:\Windows\System32\umrdp.dll
18:59:55.0802 1048 UmRdpService - ok
18:59:55.0864 1048 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:59:55.0926 1048 upnphost - ok
18:59:56.0004 1048 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\Windows\system32\Drivers\usbaapl64.sys
18:59:56.0082 1048 USBAAPL64 - ok
18:59:56.0129 1048 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
18:59:56.0207 1048 usbccgp - ok
18:59:56.0270 1048 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
18:59:56.0316 1048 usbcir - ok
18:59:56.0348 1048 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
18:59:56.0379 1048 usbehci - ok
18:59:56.0441 1048 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
18:59:56.0488 1048 usbhub - ok
18:59:56.0519 1048 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
18:59:56.0550 1048 usbohci - ok
18:59:56.0597 1048 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:59:56.0628 1048 usbprint - ok
18:59:56.0660 1048 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
18:59:56.0691 1048 usbscan - ok
18:59:56.0738 1048 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:59:56.0831 1048 USBSTOR - ok
18:59:56.0862 1048 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
18:59:56.0909 1048 usbuhci - ok
18:59:56.0940 1048 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:59:57.0018 1048 UxSms - ok
18:59:57.0065 1048 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
18:59:57.0081 1048 VaultSvc - ok
18:59:57.0128 1048 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
18:59:57.0143 1048 vdrvroot - ok
18:59:57.0221 1048 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
18:59:57.0252 1048 vds - ok
18:59:57.0284 1048 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:59:57.0315 1048 vga - ok
18:59:57.0330 1048 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:59:57.0408 1048 VgaSave - ok
18:59:57.0440 1048 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
18:59:57.0486 1048 vhdmp - ok
18:59:57.0502 1048 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
18:59:57.0518 1048 viaide - ok
18:59:57.0564 1048 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys
18:59:57.0596 1048 vmbus - ok
18:59:57.0611 1048 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys
18:59:57.0642 1048 VMBusHID - ok
18:59:57.0689 1048 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
18:59:57.0705 1048 volmgr - ok
18:59:57.0752 1048 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
18:59:57.0767 1048 volmgrx - ok
18:59:57.0814 1048 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
18:59:57.0830 1048 volsnap - ok
18:59:57.0876 1048 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:59:57.0892 1048 vsmraid - ok
18:59:58.0032 1048 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
18:59:58.0110 1048 VSS - ok
18:59:58.0282 1048 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:59:58.0313 1048 vwifibus - ok
18:59:58.0344 1048 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:59:58.0422 1048 vwififlt - ok
18:59:58.0500 1048 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:59:58.0578 1048 W32Time - ok
18:59:58.0610 1048 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:59:58.0641 1048 WacomPen - ok
18:59:58.0688 1048 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
18:59:58.0750 1048 WANARP - ok
18:59:58.0750 1048 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
18:59:58.0812 1048 Wanarpv6 - ok
18:59:58.0922 1048 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
18:59:59.0062 1048 wbengine - ok
18:59:59.0187 1048 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:59:59.0218 1048 WbioSrvc - ok
18:59:59.0280 1048 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
18:59:59.0312 1048 wcncsvc - ok
18:59:59.0343 1048 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:59:59.0421 1048 WcsPlugInService - ok
18:59:59.0483 1048 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:59:59.0499 1048 Wd - ok
18:59:59.0577 1048 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:59:59.0608 1048 Wdf01000 - ok
18:59:59.0624 1048 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:59:59.0655 1048 WdiServiceHost - ok
18:59:59.0655 1048 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:59:59.0686 1048 WdiSystemHost - ok
18:59:59.0764 1048 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
18:59:59.0858 1048 WebClient - ok
18:59:59.0904 1048 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:59:59.0967 1048 Wecsvc - ok
19:00:00.0014 1048 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
19:00:00.0060 1048 wercplsupport - ok
19:00:00.0092 1048 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
19:00:00.0170 1048 WerSvc - ok
19:00:00.0232 1048 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:00:00.0279 1048 WfpLwf - ok
19:00:00.0310 1048 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:00:00.0326 1048 WIMMount - ok
19:00:00.0341 1048 WinDefend - ok
19:00:00.0357 1048 WinHttpAutoProxySvc - ok
19:00:00.0450 1048 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
19:00:00.0513 1048 Winmgmt - ok
19:00:00.0684 1048 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
19:00:00.0794 1048 WinRM - ok
19:00:00.0950 1048 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
19:00:00.0996 1048 WinUsb - ok
19:00:01.0090 1048 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
19:00:01.0152 1048 Wlansvc - ok
19:00:01.0496 1048 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:00:01.0574 1048 wlidsvc - ok
19:00:01.0714 1048 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:00:01.0761 1048 WmiAcpi - ok
19:00:01.0854 1048 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
19:00:01.0932 1048 wmiApSrv - ok
19:00:01.0995 1048 WMPNetworkSvc - ok
19:00:02.0026 1048 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
19:00:02.0073 1048 WPCSvc - ok
19:00:02.0104 1048 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
19:00:02.0166 1048 WPDBusEnum - ok
19:00:02.0213 1048 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:00:02.0307 1048 ws2ifsl - ok
19:00:02.0354 1048 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
19:00:02.0447 1048 wscsvc - ok
19:00:02.0478 1048 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
19:00:02.0525 1048 WSDPrintDevice - ok
19:00:02.0556 1048 WSDScan (4a2a5c50dd1a63577d3aca94269fbc7f) C:\Windows\system32\DRIVERS\WSDScan.sys
19:00:02.0588 1048 WSDScan - ok
19:00:02.0588 1048 WSearch - ok
19:00:02.0790 1048 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
19:00:02.0900 1048 wuauserv - ok
19:00:03.0024 1048 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
19:00:03.0087 1048 WudfPf - ok
19:00:03.0134 1048 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:00:03.0180 1048 WUDFRd - ok
19:00:03.0227 1048 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
19:00:03.0290 1048 wudfsvc - ok
19:00:03.0336 1048 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
19:00:03.0383 1048 WwanSvc - ok
19:00:03.0414 1048 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
19:00:03.0898 1048 \Device\Harddisk0\DR0 - ok
19:00:03.0914 1048 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
19:00:04.0007 1048 \Device\Harddisk1\DR1 - ok
19:00:04.0007 1048 Boot (0x1200) (8ec82f3697388f26ac0ab6015a6accfb) \Device\Harddisk0\DR0\Partition0
19:00:04.0023 1048 \Device\Harddisk0\DR0\Partition0 - ok
19:00:04.0038 1048 Boot (0x1200) (6b2bc948b47099692723a2cef80f74ed) \Device\Harddisk0\DR0\Partition1
19:00:04.0038 1048 \Device\Harddisk0\DR0\Partition1 - ok
19:00:04.0054 1048 Boot (0x1200) (d29f6dc4502b4b4c4b23dd1f4878110c) \Device\Harddisk1\DR1\Partition0
19:00:04.0054 1048 \Device\Harddisk1\DR1\Partition0 - ok
19:00:04.0054 1048 ============================================================
19:00:04.0054 1048 Scan finished
19:00:04.0054 1048 ============================================================
19:00:04.0116 4892 Detected object count: 3
19:00:04.0116 4892 Actual detected object count: 3
19:01:32.0086 4892 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - skipped by user
19:01:32.0086 4892 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:01:32.0086 4892 MDM ( UnsignedFile.Multi.Generic ) - skipped by user
19:01:32.0086 4892 MDM ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:01:32.0086 4892 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
19:01:32.0086 4892 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
03.06.2012, 18:25
| #24 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Nach neuem Trojaner alle Dateien verschlüsselt! Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.06.2012, 19:08
| #25 |
| | Nach neuem Trojaner alle Dateien verschlüsselt! Combofix Logfile: Code:
ATTFilter ComboFix 12-06-03.01 - henaaa 03.06.2012 19:52:18.1.2 - x64
Microsoft Windows 7 Professional 6.1.7600.0.1252.49.1031.18.2038.1151 [GMT 2:00]
ausgeführt von:: c:\users\henaaa\Downloads\ComboFix.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-05-03 bis 2012-06-03 ))))))))))))))))))))))))))))))
.
.
2012-06-03 18:01 . 2012-06-03 18:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-01 17:59 . 2012-06-01 17:59 -------- d-----w- C:\_OTL
2012-05-31 17:41 . 2012-05-31 17:41 -------- d-----w- c:\program files (x86)\ESET
2012-05-28 14:02 . 2012-05-28 14:02 -------- d-----w- C:\Log
2012-05-28 14:02 . 2012-05-29 07:02 -------- d-----w- c:\program files (x86)\Stellar Phoenix Windows Data Recovery - Home
2012-05-28 14:02 . 2012-05-28 14:02 -------- d-----w- c:\users\henaaa\AppData\Local\CRE
2012-05-26 12:01 . 2012-05-26 12:01 -------- d-----w- c:\users\henaaa\AppData\Roaming\DataDesign
2012-05-25 18:32 . 2012-05-25 18:32 -------- d-----w- c:\users\henaaa\AppData\Roaming\www.shadowexplorer.com
2012-05-24 16:59 . 2012-05-24 16:59 -------- d-----w- c:\users\henaaa\AppData\Roaming\Malwarebytes
2012-05-24 16:59 . 2012-05-24 16:59 -------- d-----w- c:\programdata\Malwarebytes
2012-05-24 16:59 . 2012-04-04 13:56 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-05-23 18:45 . 2012-05-29 07:02 -------- d-----w- c:\users\henaaa\AppData\Local\CrashDumps
2012-05-23 18:22 . 2012-06-03 17:46 -------- d-----w- c:\program files (x86)\Common Files\Symantec Shared
2012-05-23 18:17 . 2012-06-03 17:47 -------- d-----w- c:\programdata\Norton
2012-05-23 17:53 . 2012-05-23 17:53 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2012-05-22 16:12 . 2012-05-08 17:02 8955792 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5DE53855-56FA-4A03-8620-EC7B630AF77E}\mpengine.dll
2012-05-20 18:40 . 2012-05-23 17:27 -------- d-----w- c:\users\henaaa\AppData\Local\Ilivid Player
2012-05-20 18:39 . 2012-05-20 18:57 -------- d-----w- c:\programdata\boost_interprocess
2012-05-20 10:07 . 2012-05-20 10:07 -------- d-----r- c:\program files (x86)\Skype
2012-05-20 10:07 . 2012-05-20 10:07 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-05-14 12:05 . 2012-05-14 12:05 -------- d-----w- c:\users\henaaa\AppData\Roaming\U3
2012-05-12 16:27 . 2012-03-03 06:29 1541120 ----a-w- c:\windows\system32\DWrite.dll
2012-05-12 16:27 . 2012-03-03 05:40 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2012-05-12 16:27 . 2012-03-03 06:29 320512 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-05-12 16:27 . 2012-03-03 06:29 1837568 ----a-w- c:\windows\system32\d3d10warp.dll
2012-05-12 16:27 . 2012-03-03 06:29 902656 ----a-w- c:\windows\system32\d2d1.dll
2012-05-12 16:27 . 2012-03-03 05:40 1170944 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2012-05-12 16:27 . 2012-03-03 05:40 218624 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2012-05-12 16:27 . 2012-03-03 06:29 197120 ----a-w- c:\windows\system32\d3d10_1.dll
2012-05-12 16:27 . 2012-03-03 05:40 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2012-05-12 16:27 . 2012-03-03 05:40 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2012-05-12 16:26 . 2012-04-02 05:34 5504880 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-12 16:26 . 2012-04-02 04:46 3902320 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-05-12 16:26 . 2012-04-02 03:01 3143680 ----a-w- c:\windows\system32\win32k.sys
2012-05-12 16:26 . 2012-04-02 04:46 3958128 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-05-12 16:26 . 2012-03-17 07:55 75632 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-05-12 16:26 . 2012-03-30 11:09 1895280 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-05-12 16:26 . 2012-04-02 05:26 1732096 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2012-05-12 16:26 . 2012-04-02 05:24 1367552 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2012-05-12 16:26 . 2012-04-02 05:24 1393664 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2012-05-12 16:26 . 2012-04-02 04:40 936960 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2012-05-12 16:26 . 2012-04-02 05:24 1402880 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2012-05-11 18:59 . 2012-05-11 18:59 -------- d-----w- c:\program files (x86)\Video Codec
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-19 17:12 . 2012-04-19 17:13 423656 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-03-15 21:26 . 2012-03-15 21:26 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2012-03-15 21:26 . 2012-03-15 21:26 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2012-03-15 21:26 . 2012-03-15 21:26 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-03-15 21:26 . 2012-03-15 21:26 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2012-03-15 21:26 . 2012-03-15 21:26 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2012-03-15 21:26 . 2012-03-15 21:26 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2012-03-15 21:26 . 2012-03-15 21:26 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-03-15 21:26 . 2012-03-15 21:26 367104 ----a-w- c:\windows\SysWow64\html.iec
2012-03-15 21:26 . 2012-03-15 21:26 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2012-03-15 21:26 . 2012-03-15 21:26 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2012-03-15 21:26 . 2012-03-15 21:26 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2012-03-15 21:26 . 2012-03-15 21:26 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2012-03-15 21:26 . 2012-03-15 21:26 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-03-15 21:26 . 2012-03-15 21:26 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2012-03-15 21:26 . 2012-03-15 21:26 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2012-03-15 21:26 . 2012-03-15 21:26 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-03-15 21:26 . 2012-03-15 21:26 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-03-15 21:26 . 2012-03-15 21:26 85504 ----a-w- c:\windows\system32\iesetup.dll
2012-03-15 21:26 . 2012-03-15 21:26 76800 ----a-w- c:\windows\system32\tdc.ocx
2012-03-15 21:26 . 2012-03-15 21:26 603648 ----a-w- c:\windows\system32\vbscript.dll
2012-03-15 21:26 . 2012-03-15 21:26 49664 ----a-w- c:\windows\system32\imgutil.dll
2012-03-15 21:26 . 2012-03-15 21:26 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-03-15 21:26 . 2012-03-15 21:26 448512 ----a-w- c:\windows\system32\html.iec
2012-03-15 21:26 . 2012-03-15 21:26 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2012-03-15 21:26 . 2012-03-15 21:26 30720 ----a-w- c:\windows\system32\licmgr10.dll
2012-03-15 21:26 . 2012-03-15 21:26 222208 ----a-w- c:\windows\system32\msls31.dll
2012-03-15 21:26 . 2012-03-15 21:26 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-03-15 21:26 . 2012-03-15 21:26 165888 ----a-w- c:\windows\system32\iexpress.exe
2012-03-15 21:26 . 2012-03-15 21:26 160256 ----a-w- c:\windows\system32\wextract.exe
2012-03-15 21:26 . 2012-03-15 21:26 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-03-15 21:26 . 2012-03-15 21:26 12288 ----a-w- c:\windows\system32\mshta.exe
2012-03-15 21:26 . 2012-03-15 21:26 114176 ----a-w- c:\windows\system32\admparse.dll
2012-03-15 21:26 . 2012-03-15 21:26 111616 ----a-w- c:\windows\system32\iesysprep.dll
2012-03-15 21:26 . 2012-03-15 21:26 101888 ----a-w- c:\windows\SysWow64\admparse.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spiele Post"="c:\program files (x86)\OXXOGames\GPlayer\GameCenterNotifier.exe" [2012-04-10 479984]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-05-03 17355912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="d:\programme\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-03-18 421888]
"AppleSyncNotifier"="c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-07-13 47904]
"Bing Bar"="c:\program files (x86)\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe" [2010-04-27 243544]
"EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe" [2010-10-12 979328]
"LexwareInfoService"="c:\program files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe" [2011-07-31 189808]
"Malwarebytes' Anti-Malware"="d:\malwarebytes' anti-malware\mbamgui.exe" [2012-04-04 462408]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update-Dienst (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-05-15 116648]
R2 Lexware_Datenbank_Plus;Lexware Datenbank Plus;c:\program files (x86)\Sybase\SQL Anywhere 9\win32\dbsrv9.exe [2011-06-29 83248]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-05-03 158856]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [x]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-05-15 116648]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-04-21 129976]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
S2 MBAMService;MBAMService;d:\malwarebytes' anti-malware\mbamservice.exe [2012-04-04 654408]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
S3 WSDPrintDevice;WSD-Druckunterstützung durch UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [x]
S3 WSDScan;WSD-Scanunterstützung durch UMB;c:\windows\system32\DRIVERS\WSDScan.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2012-06-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-05-15 11:24]
.
2012-06-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-05-15 11:24]
.
2012-06-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4016670111-3217699212-128667199-1000Core.job
- c:\users\henaaa\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-03 18:21]
.
2012-06-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4016670111-3217699212-128667199-1000UA.job
- c:\users\henaaa\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-03 18:21]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 165912]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 385560]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 363544]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.inbox.com/homepage.aspx?tbid=80772&lng=de
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: Nach Microsoft E&xel exportieren - d:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\henaaa\AppData\Roaming\Mozilla\Firefox\Profiles\ulxl2n1s.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3196716&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - WiseConvert Customized Web Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3196716&SearchSource=2&q=
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-BabylonToolbar - c:\program files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\uninstall.exe
AddRemove-Searchqu Toolbar - c:\program files (x86)\Searchqu Toolbar\uninstall.exe
AddRemove-{6E7DD182-9FC6-4651-0095-2E666CC6AF35} - d:\die sims 2\EAUninstall.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10h.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10h.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10h.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10h.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
@Denied: (A 2) (Everyone)
@="IFlashBroker"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-06-03 20:06:32
ComboFix-quarantined-files.txt 2012-06-03 18:06
.
Vor Suchlauf: 9 Verzeichnis(se), 14.045.478.912 Bytes frei
Nach Suchlauf: 12 Verzeichnis(se), 13.887.733.760 Bytes frei
.
- - End Of File - - C24D6BA4F0DC00DA233FCCA6A17F053D
|
|
03.06.2012, 19:20
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Nach neuem Trojaner alle Dateien verschlüsselt! Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop. Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehalalrm!
Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.06.2012, 19:45
| #27 |
| | Nach neuem Trojaner alle Dateien verschlüsselt!Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-03 20:23:12
-----------------------------
20:23:12.376 OS Version: Windows x64 6.1.7600
20:23:12.376 Number of processors: 2 586 0xF0D
20:23:12.378 ComputerName: HENAAA-PC UserName: henaaa
20:23:14.000 Initialize success
20:25:29.130 AVAST engine defs: 12060301
20:29:17.685 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-3
20:29:17.691 Disk 0 Vendor: TOSHIBA_MK1646GSX LB113J Size: 152627MB BusType: 3
20:29:17.710 Disk 0 MBR read successfully
20:29:17.717 Disk 0 MBR scan
20:29:17.729 Disk 0 Windows 7 default MBR code
20:29:17.740 Disk 0 Partition 1 00 27 Hidden NTFS WinRE MSDOS5.0 10000 MB offset 2048
20:29:17.759 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 71317 MB offset 20482048
20:29:17.784 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 71308 MB offset 166539264
20:29:17.821 Disk 0 scanning C:\Windows\system32\drivers
20:29:29.880 Service scanning
20:30:06.612 Modules scanning
20:30:06.634 Disk 0 trace - called modules:
20:30:06.647
20:30:07.640 AVAST engine scan C:\Windows
20:30:10.167 AVAST engine scan C:\Windows\system32
20:34:25.102 AVAST engine scan C:\Windows\system32\drivers
20:34:37.376 AVAST engine scan C:\Users\henaaa
20:41:39.953 AVAST engine scan C:\ProgramData
20:43:25.109 Scan finished successfully
20:43:42.511 Disk 0 MBR has been saved successfully to "C:\Users\henaaa\Desktop\MBR.dat"
20:43:42.519 The log file has been saved successfully to "C:\Users\henaaa\Desktop\aswMBR.txt"
|
|
03.06.2012, 21:01
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Nach neuem Trojaner alle Dateien verschlüsselt! Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.06.2012, 11:54
| #29 |
| | Nach neuem Trojaner alle Dateien verschlüsselt!Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.61.0.1400 www.malwarebytes.org Datenbank Version: v2012.06.04.02 Windows 7 x64 NTFS Internet Explorer 9.0.8112.16421 henaaa :: HENAAA-PC [Administrator] Schutz: Aktiviert 04.06.2012 11:21:00 mbam-log-2012-06-04 (11-21-00).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 385226 Laufzeit: 1 Stunde(n), 2 Minute(n), 51 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 06/04/2012 at 03:23 PM
Application Version : 5.0.1150
Core Rules Database Version : 8675
Trace Rules Database Version: 6487
Scan type : Complete Scan
Total Scan Time : 02:13:17
Operating System Information
Windows 7 Professional 64-bit (Build 6.01.7600)
UAC On - Limited User
Memory items scanned : 523
Memory threats detected : 0
Registry items scanned : 66732
Registry threats detected : 0
File items scanned : 178787
File threats detected : 868
Adware.Tracking Cookie
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\henaaa@ad.adc-serv[2].txt [ /ad.adc-serv ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\henaaa@ads.immobilienscout24[1].txt [ /ads.immobilienscout24 ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\1P6ZKXMO.txt [ /zanox-affiliate.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\REEFQ662.txt [ /ads.brandwire.tv ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\UW4H0SPW.txt [ /ads.urlfan.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\WPVPP326.txt [ /unitymedia.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\CAUT9FPB.txt [ /webmasterplan.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\01OMTQP2.txt [ /ads20.wwe-media.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\8O4XORIK.txt [ /ad.adserver01.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\2XXTWTR9.txt [ /de.sitestat.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\FS9Z9YY1.txt [ /media6degrees.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\D8B11U4J.txt [ /de.sitestat.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\JUCHQ0OF.txt [ /imrworldwide.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\1JR1SA30.txt [ /ads.creative-serving.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\YF7444DN.txt [ /media.funpic.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\77UCI1ED.txt [ /sexystring.net ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\7KGRZXSD.txt [ /adserver.gs ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\7C27EMH6.txt [ /banner.testberichte.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\PP7JU1TF.txt [ /eas4.emediate.eu ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\T1P88FG4.txt [ /www.active-tracking.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\SDTRWATN.txt [ /invitemedia.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\F94IFQJI.txt [ /www.sexarena.tv ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\SJ4MXSPT.txt [ /tracking.quisma.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\NH9PEMS2.txt [ /atdmt.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\UQC67MYJ.txt [ /im.banner.t-online.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\YAYQ7L25.txt [ /a.revenuemax.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\Y5R72HFN.txt [ /77tracking.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\3FC25MJM.txt [ /clickfuse.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\QUGQHFKS.txt [ /urbia.wwe-media.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\8Z51O97Y.txt [ /ad.ad-srv.net ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\9PR1CMWT.txt [ /sexarena.tv ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\5YZOO7KP.txt [ /fr.sitestat.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\RNIN0G37.txt [ /www.googleadservices.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\9KN2NI3Q.txt [ /ad.adnet.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\4S1VWX19.txt [ /traffictrack.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\J7ZM9C3Y.txt [ /eas.apm.emediate.eu ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\henaaa@de.sitestat[1].txt [ /de.sitestat.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\XYV1L96C.txt [ /in.getclicky.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\O9E0CP4P.txt [ /unister-adservices.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\3BGZ2HKS.txt [ /de.sitestat.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\HMTZQH2U.txt [ /adserver.ep-solutions.org ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\HMZH7OBC.txt [ /ads.tgramedia.de ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\ZUABK5QA.txt [ /c.atdmt.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\GF167S0C.txt [ /www.googleadservices.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\VF5WXN1G.txt [ /ads.jinkads.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\3XGWXXBJ.txt [ /tracking.localperformance.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\ADGSG0YZ.txt [ /zanox.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\KEYLANNP.txt [ /fr.sitestat.com ]
C:\Users\henaaa\AppData\Roaming\Microsoft\Windows\Cookies\2K8LUCIY.txt [ /forum.usenext.de ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\XRTUXMIZ.txt [ Cookie:henaaa@my.brandwire.tv/Brandwire/deliverAd/flashBannerXml/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\ECTHXRWN.txt [ Cookie:henaaa@ich.adscale.de/adserver-ich/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@zanox-affiliate[2].txt [ Cookie:henaaa@zanox-affiliate.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wfmycgd5cap.stats.esomniture[2].txt [ Cookie:henaaa@e-2dj6wfmycgd5cap.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wmk4cnd5ico.stats.esomniture[2].txt [ Cookie:henaaa@e-2dj6wmk4cnd5ico.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@track.webtrekk[2].txt [ Cookie:henaaa@track.webtrekk.de/941170258163492/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@webmasterplan[2].txt [ Cookie:henaaa@webmasterplan.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@tracking.mindshare[2].txt [ Cookie:henaaa@tracking.mindshare.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@de.sitestat[3].txt [ Cookie:henaaa@de.sitestat.com/otto-de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@go.dynamic-tracking[2].txt [ Cookie:henaaa@go.dynamic-tracking.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@collective-media[1].txt [ Cookie:henaaa@collective-media.net/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@eyewonder[1].txt [ Cookie:henaaa@eyewonder.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@elitepartner.tt.omtrdc[2].txt [ Cookie:henaaa@elitepartner.tt.omtrdc.net/m2/elitepartner ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@track.effiliation[1].txt [ Cookie:henaaa@track.effiliation.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@zbox.zanox[1].txt [ Cookie:henaaa@zbox.zanox.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@www.elitepartner[1].txt [ Cookie:henaaa@www.elitepartner.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@generaltracking[1].txt [ Cookie:henaaa@generaltracking.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@count.asnetworks[1].txt [ Cookie:henaaa@count.asnetworks.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wcliwicjgap.stats.esomniture[2].txt [ Cookie:henaaa@e-2dj6wcliwicjgap.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@www.zanox-affiliate[1].txt [ Cookie:henaaa@www.zanox-affiliate.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wdloolazicp.stats.esomniture[2].txt [ Cookie:henaaa@e-2dj6wdloolazicp.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@tracking.hannoversche[2].txt [ Cookie:henaaa@tracking.hannoversche.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wnkichdzabo.stats.esomniture[2].txt [ Cookie:henaaa@e-2dj6wnkichdzabo.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@nutrition-discount[2].txt [ Cookie:henaaa@nutrition-discount.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wfliqmajsfp.stats.esomniture[2].txt [ Cookie:henaaa@e-2dj6wfliqmajsfp.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@im.banner.t-online[2].txt [ Cookie:henaaa@im.banner.t-online.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wjmiwpdzsho.stats.esomniture[2].txt [ Cookie:henaaa@e-2dj6wjmiwpdzsho.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wfk4ooazsep.stats.esomniture[2].txt [ Cookie:henaaa@e-2dj6wfk4ooazsep.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wjk4snczmdo.stats.esomniture[1].txt [ Cookie:henaaa@e-2dj6wjk4snczmdo.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@dealtime[1].txt [ Cookie:henaaa@dealtime.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@traffictrack[1].txt [ Cookie:henaaa@traffictrack.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@elitepartner[1].txt [ Cookie:henaaa@elitepartner.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@bizrate[2].txt [ Cookie:henaaa@bizrate.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@eas.apm.emediate[2].txt [ Cookie:henaaa@eas.apm.emediate.eu/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@de.sitestat[1].txt [ Cookie:henaaa@de.sitestat.com/is24/is24/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@www.ebuero[2].txt [ Cookie:henaaa@www.ebuero.de/tracker/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@ad.adserver01[1].txt [ Cookie:henaaa@ad.adserver01.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@rgadvert[2].txt [ Cookie:henaaa@rgadvert.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@4stats[2].txt [ Cookie:henaaa@4stats.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@www.usenext[2].txt [ Cookie:henaaa@www.usenext.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@stats.portalis[2].txt [ Cookie:henaaa@stats.portalis.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@track.webtrekk[1].txt [ Cookie:henaaa@track.webtrekk.de/416287921006680/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@tracking.onmarketing[1].txt [ Cookie:henaaa@tracking.onmarketing.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@interclick[1].txt [ Cookie:henaaa@interclick.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@de.sitestat[8].txt [ Cookie:henaaa@de.sitestat.com/hamburg/hamburg/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@like.fakeaccount[2].txt [ Cookie:henaaa@like.fakeaccount.net/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@lfstmedia[1].txt [ Cookie:henaaa@lfstmedia.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@landing.hitfarm[1].txt [ Cookie:henaaa@landing.hitfarm.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@track.webtrekk[3].txt [ Cookie:henaaa@track.webtrekk.de/390100023909110/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wjligldzacq.stats.esomniture[2].txt [ Cookie:henaaa@e-2dj6wjligldzacq.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@eas4.emediate[1].txt [ Cookie:henaaa@eas4.emediate.eu/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@de.sitestat[4].txt [ Cookie:henaaa@de.sitestat.com/karstadt-de/karstadt/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@www.googleadservices[2].txt [ Cookie:henaaa@www.googleadservices.com/pagead/conversion/1062871977/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@www1.euro.dell[7].txt [ Cookie:henaaa@www1.euro.dell.com/de/de/home/fasttrack_laptop/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@77tracking[1].txt [ Cookie:henaaa@77tracking.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@de.sitestat[6].txt [ Cookie:henaaa@de.sitestat.com/hk/dihk/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@e-2dj6wjkoojc5ahq.stats.esomniture[2].txt [ Cookie:henaaa@e-2dj6wjkoojc5ahq.stats.esomniture.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@ad.dyntracker[1].txt [ Cookie:henaaa@ad.dyntracker.com/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@adserver.traffictrack[1].txt [ Cookie:henaaa@adserver.traffictrack.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@tracking.3gnet[1].txt [ Cookie:henaaa@tracking.3gnet.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@de.sitestat[7].txt [ Cookie:henaaa@de.sitestat.com/krombacher/krombacher/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@stats.csl-computer[1].txt [ Cookie:henaaa@stats.csl-computer.com/piwik/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@de.sitestat[9].txt [ Cookie:henaaa@de.sitestat.com/hamburg/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@track.webtrekk[4].txt [ Cookie:henaaa@track.webtrekk.de/471497967328727/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@adt.traffictrack[2].txt [ Cookie:henaaa@adt.traffictrack.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@telfish.mediamarkt[2].txt [ Cookie:henaaa@telfish.mediamarkt.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@de.sitestat[10].txt [ Cookie:henaaa@de.sitestat.com/idgcom-de/pcwelt/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@banner.testberichte[2].txt [ Cookie:henaaa@banner.testberichte.de/ ]
C:\USERS\HENAAA\AppData\Roaming\Microsoft\Windows\Cookies\Low\henaaa@www.active-tracking[1].txt [ Cookie:henaaa@www.active-tracking.de/ ]
C:\USERS\HENAAA\Cookies\1P6ZKXMO.txt [ Cookie:henaaa@zanox-affiliate.de/ ]
C:\USERS\HENAAA\Cookies\CAUT9FPB.txt [ Cookie:henaaa@webmasterplan.com/ ]
C:\USERS\HENAAA\Cookies\01OMTQP2.txt [ Cookie:henaaa@ads20.wwe-media.de/ ]
C:\USERS\HENAAA\Cookies\8O4XORIK.txt [ Cookie:henaaa@ad.adserver01.de/ ]
C:\USERS\HENAAA\Cookies\2XXTWTR9.txt [ Cookie:henaaa@de.sitestat.com/ndr/ ]
C:\USERS\HENAAA\Cookies\77UCI1ED.txt [ Cookie:henaaa@sexystring.net/ ]
C:\USERS\HENAAA\Cookies\7KGRZXSD.txt [ Cookie:henaaa@adserver.gs/ ]
C:\USERS\HENAAA\Cookies\XRTUXMIZ.txt [ Cookie:henaaa@my.brandwire.tv/Brandwire/deliverAd/flashBannerXml/ ]
C:\USERS\HENAAA\Cookies\ECTHXRWN.txt [ Cookie:henaaa@ich.adscale.de/adserver-ich/ ]
C:\USERS\HENAAA\Cookies\7C27EMH6.txt [ Cookie:henaaa@banner.testberichte.de/ ]
C:\USERS\HENAAA\Cookies\PP7JU1TF.txt [ Cookie:henaaa@eas4.emediate.eu/ ]
C:\USERS\HENAAA\Cookies\T1P88FG4.txt [ Cookie:henaaa@www.active-tracking.de/ ]
C:\USERS\HENAAA\Cookies\UQC67MYJ.txt [ Cookie:henaaa@im.banner.t-online.de/ ]
C:\USERS\HENAAA\Cookies\YAYQ7L25.txt [ Cookie:henaaa@a.revenuemax.de/ ]
C:\USERS\HENAAA\Cookies\Y5R72HFN.txt [ Cookie:henaaa@77tracking.com/ ]
C:\USERS\HENAAA\Cookies\3FC25MJM.txt [ Cookie:henaaa@clickfuse.com/ ]
C:\USERS\HENAAA\Cookies\QUGQHFKS.txt [ Cookie:henaaa@urbia.wwe-media.de/ ]
C:\USERS\HENAAA\Cookies\9PR1CMWT.txt [ Cookie:henaaa@sexarena.tv/ ]
C:\USERS\HENAAA\Cookies\5YZOO7KP.txt [ Cookie:henaaa@fr.sitestat.com/europcar/europcar-de/ ]
C:\USERS\HENAAA\Cookies\RNIN0G37.txt [ Cookie:henaaa@www.googleadservices.com/pagead/conversion/1036176466/ ]
C:\USERS\HENAAA\Cookies\4S1VWX19.txt [ Cookie:henaaa@traffictrack.de/ ]
C:\USERS\HENAAA\Cookies\J7ZM9C3Y.txt [ Cookie:henaaa@eas.apm.emediate.eu/ ]
C:\USERS\HENAAA\Cookies\henaaa@de.sitestat[1].txt [ Cookie:henaaa@de.sitestat.com/is24/is24/ ]
C:\USERS\HENAAA\Cookies\O9E0CP4P.txt [ Cookie:henaaa@unister-adservices.com/ ]
C:\USERS\HENAAA\Cookies\3BGZ2HKS.txt [ Cookie:henaaa@de.sitestat.com/ndr/ts/ ]
C:\USERS\HENAAA\Cookies\HMTZQH2U.txt [ Cookie:henaaa@adserver.ep-solutions.org/ ]
C:\USERS\HENAAA\Cookies\HMZH7OBC.txt [ Cookie:henaaa@ads.tgramedia.de/ ]
C:\USERS\HENAAA\Cookies\ZUABK5QA.txt [ Cookie:henaaa@c.atdmt.com/ ]
C:\USERS\HENAAA\Cookies\GF167S0C.txt [ Cookie:henaaa@www.googleadservices.com/pagead/conversion/1072512058/ ]
C:\USERS\HENAAA\Cookies\3XGWXXBJ.txt [ Cookie:henaaa@tracking.localperformance.com/ ]
C:\USERS\HENAAA\Cookies\KEYLANNP.txt [ Cookie:henaaa@fr.sitestat.com/europcar/ ]
C:\USERS\HENAAA\Cookies\2K8LUCIY.txt [ Cookie:henaaa@forum.usenext.de/ ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.vinvest.122.2o7.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.quartermedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.quartermedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.quartermedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.quartermedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.effiliation.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adxpose.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.apmebf.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ad.adnet.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
m1.webstats.motigo.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.komtrack.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.komtrack.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.msnportal.112.2o7.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lfstmedia.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.www.burstnet.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adultshop.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adultshop.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.adultshop.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.adultshop.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.adultshop.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adultshop.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.youporn.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.youporn.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.youporn.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.porno.youporn.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.porno.youporn.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.porno.youporn.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ero-advertising.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sexofporn.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pornme.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pornme.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pornme.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.pornme.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sexofporn.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adxpansion.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tracking.mindshare.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tracking.hannoversche.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.usenext.122.2o7.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.2o7.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.whirlpool-discount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.whirlpool-discount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.whirlpool-discount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.usenext.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.usenext.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tracking.keywordmax.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.liveperson.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
server.iad.liveperson.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.dealtime.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
stat.dealtime.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.discount24.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.discount24.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.discount24.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.steelhousemedia.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.steelhousemedia.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.party-discount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.party-discount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.party-discount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.stepstone.112.2o7.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
counters.gigya.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.xiti.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.active-tracking.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.active-tracking.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.active-tracking.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
adserver2.clipkit.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
adserver1.mokono.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.im.banner.t-online.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.2o7.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.bs.serving-sys.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.secmedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.secmedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.secmedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
de.sitestat.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.traveladvertising.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.traveladvertising.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.quartermedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas4.emediate.eu [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.2o7.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sengmedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sengmedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sengmedia.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.statcounter.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.cunda.122.2o7.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.zanox-affiliate.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.guj.122.2o7.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
adserver.oktoberfest.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
adserver.oktoberfest.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
adserver.oktoberfest.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.roitracking.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.beiersdorf.122.2o7.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.traffictrack.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.dyntracker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.www.humidordiscount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.humidordiscount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.humidordiscount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.humidordiscount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.humidordiscount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.humidordiscount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.humidordiscount.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
zbox.zanox.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
de.sitestat.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adviva.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.specificclick.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.specificclick.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.specificclick.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.specificclick.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
tracking.9flats.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adviva.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.usenext.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
tracking.9flats.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.de.partypoker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.adserver01.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
partners.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.eyewonder.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.eyewonder.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.traffictrack.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
media.gan-online.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ad.adnet.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.elitepartner.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
de.sitestat.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.im.banner.t-online.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.im.banner.t-online.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.im.banner.t-online.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.bs.serving-sys.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.passende-gedichte-finden.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.passende-gedichte-finden.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.passende-gedichte-finden.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ad.adnet.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ad.adnet.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.yadro.ru [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.zanox.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
clicks.stylefruits.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
rts.pgmediaserve.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
rts.pgmediaserve.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
rts.pgmediaserve.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.de.partypoker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.de.partypoker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.de.partypoker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.de.partypoker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.im.banner.t-online.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.adform.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.adform.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adform.net [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zanox-affiliate.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ww251.smartadserver.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.zanox.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad3.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
statse.webtrendslive.com [ C:\USERS\HENAAA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
delivery.ibanner.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\F7X3ZJHZ ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@TRACK.EFFILIATION[2].TXT [ /TRACK.EFFILIATION ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.1A-INFOSYSTEME[2].TXT [ /ADS.1A-INFOSYSTEME ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@AD1.CHEFKOCH[1].TXT [ /AD1.CHEFKOCH ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@AD1.ADFARM.ADTELLIGENCE[2].TXT [ /AD1.ADFARM.ADTELLIGENCE ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@MEDIATHEK.DASERSTE[2].TXT [ /MEDIATHEK.DASERSTE ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@E-2DJ6AEKYSLCZEBP.STATS.ESOMNITURE[2].TXT [ /E-2DJ6AEKYSLCZEBP.STATS.ESOMNITURE ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ZANOX[1].TXT [ /ZANOX ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@AD.BOREUS[1].TXT [ /AD.BOREUS ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@AD.ADNET[1].TXT [ /AD.ADNET ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@IMRWORLDWIDE[2].TXT [ /IMRWORLDWIDE ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@PARTNERS.WEBMASTERPLAN[1].TXT [ /PARTNERS.WEBMASTERPLAN ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.CREATIVE-SERVING[2].TXT [ /ADS.CREATIVE-SERVING ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@UNITYMEDIA[2].TXT [ /UNITYMEDIA ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.SALZBURG[1].TXT [ /ADS.SALZBURG ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@CHITIKA[2].TXT [ /CHITIKA ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.WHALEADS[1].TXT [ /ADS.WHALEADS ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@AD.LOKALISTEN[1].TXT [ /AD.LOKALISTEN ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@TRACKER.ROITESTING[1].TXT [ /TRACKER.ROITESTING ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.AD4GAME[1].TXT [ /ADS.AD4GAME ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@SECMEDIA[2].TXT [ /SECMEDIA ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@HIMEDIA.INDIVIDUAD[2].TXT [ /HIMEDIA.INDIVIDUAD ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADX.CHIP[2].TXT [ /ADX.CHIP ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@TRACKING.QUISMA[1].TXT [ /TRACKING.QUISMA ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@STATS.BOOKLOOKER[2].TXT [ /STATS.BOOKLOOKER ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@USENEXT[2].TXT [ /USENEXT ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.IMMOBILIENSCOUT24[1].TXT [ /ADS.IMMOBILIENSCOUT24 ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@STATS.BMW[2].TXT [ /STATS.BMW ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.BRANDWIRE[1].TXT [ /ADS.BRANDWIRE ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.EASYAD[1].TXT [ /ADS.EASYAD ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@E-2DJ6WJLYGHCJOEP.STATS.ESOMNITURE[2].TXT [ /E-2DJ6WJLYGHCJOEP.STATS.ESOMNITURE ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADSRV.ADMEDIATE[2].TXT [ /ADSRV.ADMEDIATE ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@INVITEMEDIA[1].TXT [ /INVITEMEDIA ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@TRACKER.BIHK[2].TXT [ /TRACKER.BIHK ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.QUARTERMEDIA[1].TXT [ /ADS.QUARTERMEDIA ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.MEDIENHAUS[1].TXT [ /ADS.MEDIENHAUS ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@MEDIA6DEGREES[1].TXT [ /MEDIA6DEGREES ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@AD.ADC-SERV[1].TXT [ /AD.ADC-SERV ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@AD.AD-SRV[2].TXT [ /AD.AD-SRV ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@E-2DJ6WJLYCPCZCGQ.STATS.ESOMNITURE[2].TXT [ /E-2DJ6WJLYCPCZCGQ.STATS.ESOMNITURE ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@TRACK.WEBGAINS[2].TXT [ /TRACK.WEBGAINS ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@RTS.PGMEDIASERVE[2].TXT [ /RTS.PGMEDIASERVE ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.JINKADS[2].TXT [ /ADS.JINKADS ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@ADS.PUBMATIC[2].TXT [ /ADS.PUBMATIC ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@AD.TRIPLEMIND[1].TXT [ /AD.TRIPLEMIND ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@DELIVERY.ATKMEDIA[2].TXT [ /DELIVERY.ATKMEDIA ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@TRACKING.S24[1].TXT [ /TRACKING.S24 ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@IN.GETCLICKY[1].TXT [ /IN.GETCLICKY ]
C:\USERS\HENAAA\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HENAAA@MASCUS.ADSERVINGINTERNATIONAL[1].TXT [ /MASCUS.ADSERVINGINTERNATIONAL ]
.getclicky.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.static.getclicky.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
in.getclicky.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.a.revenuemax.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.stepstone.112.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.manpower.122.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
e2.emediate.se [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.ad-emea.doubleclick.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
tracking.tchibo.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
partners.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
partners.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.guj.122.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.urbia.wwe-media.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.ads20.wwe-media.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.elitepartner.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
7.rotator.wigetmedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.usenext.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.usenext.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
counter.hitslink.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.usenext.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.usenext.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.usenext.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.usenext.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.usenext.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.usenext.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.lfstmedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.ads20.wwe-media.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
zbox.zanox.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
stat.onestat.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
stat.onestat.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
eas4.emediate.eu [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
track.webtrekk.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.urbia.wwe-media.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adnetwork.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ext.trackingwiz.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ext.trackingwiz.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.yieldmanager.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.warnerbros.112.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
7.rotator.wigetmedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.secmedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.secmedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.toplist.cz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
keyword-advertising.web.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.srv.resultsmedia.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.unister-adservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.active-tracking.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.active-tracking.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.active-tracking.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
adserver.mediadomain-verlag.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.bannerreport.org [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.track.senzapudore.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.track.senzapudore.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.myroitracking.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.usenext.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.usenext.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.loveadvert.ru [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tns-counter.ru [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.openstat.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.loveadvert.ru [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.loveadvert.ru [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.moviepilot.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.moviepilot.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.etargetnet.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.kaspersky.122.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adviva.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.unrulymedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.rambler.ru [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.rambler.ru [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ads.metricsmedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ads.metricsmedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ads.metricsmedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.pornme.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.pornme.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.pornme.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.pornme.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.adition.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.adition.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
avanquest.upclick.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.upclick.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.upclick.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.upclick.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
tracking.mobile.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.traffictrack.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.at.atwola.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.conrad.122.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.kfz-multimedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.kfz-multimedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.e-2dj6wjk4kpajmlp.stats.esomniture.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.liveperson.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
tomtailor.dyntracker.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tracking.booming.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
tracking.booming.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
banner.slashcam.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
banner.slashcam.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
server.adform.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
server.adform.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
partners.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tradedoubler.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tedi-discount.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tedi-discount.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.adserver01.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.bluecounter.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ads7.wwe.biz [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.ads20.wwe-media.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.nextag.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
www.zanox-affiliate.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.dyntracker.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ww251.smartadserver.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adtech.de [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad1.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\HENAAA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ULXL2N1S.DEFAULT\COOKIES.SQLITE ]
|
|
04.06.2012, 16:10
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Nach neuem Trojaner alle Dateien verschlüsselt! Sieht ok aus, da wurden nur Cookies gefunden. Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat. Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/ Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Nach neuem Trojaner alle Dateien verschlüsselt! |
| allgemein, angemeldet, anhang, anhang geöffnet, brauche, dateien, daten, dringend, dringend hilfe gesucht dateien verschlüsselt, email, entschlüsseln, euro, festgestellt, geld, namen, neue, neuem, nichts, scanner, suche, systemwiederherstellung, tools, trojaner, viren, virenscan, virenscanner, wirklich |
Linear-Darstellung
