Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Virus verwandelt Ordner externer Datenträger in Verknüpfungen! (https://www.trojaner-board.de/111384-virus-verwandelt-ordner-externer-datentraeger-verknuepfungen.html)

Steffchen 21.03.2012 16:29
Huhu, hier ist der Log von ComboFix!

Code:
ComboFix 12-03-21.01 - Broiler-bunny 21.03.2012  16:00:42.1.2 - x64
Microsoft® Windows Vista™ Home Premium  6.0.6001.1.1252.49.1031.18.4060.2575 [GMT 1:00]
ausgeführt von:: c:\users\Broiler-bunny\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: McAfee VirusScan *Disabled/Outdated* {86355677-4064-3EA7-ABB3-1B136EB04637}
FW: McAfee Personal Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: McAfee VirusScan *Disabled/Outdated* {3D54B793-665E-3129-9103-206115370C8A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((((((((((((((((  Weitere Löschungen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\program files (x86)\LP
c:\users\Broiler-bunny\AppData\Roaming\chrtmp
c:\windows\system32\drivers\etc\hosts.ics
c:\windows\SysWow64\muzapp.exe
D:\Autorun.inf
.
.
(((((((((((((((((((((((  Dateien erstellt von 2012-02-21 bis 2012-03-21  ))))))))))))))))))))))))))))))
.
.
2012-03-21 15:15 . 2012-03-21 15:18        --------        d-----w-        c:\users\Broiler-bunny\AppData\Local\temp
2012-03-21 15:15 . 2012-03-21 15:15        --------        d-----w-        c:\users\Default\AppData\Local\temp
2012-03-18 02:26 . 2012-03-18 02:26        --------        d-----w-        C:\_OTL
2012-03-15 13:59 . 2012-03-15 13:59        --------        d-----w-        c:\program files (x86)\Esl
2012-03-15 13:57 . 2012-03-15 13:57        --------        d-----w-        c:\users\Broiler-bunny\AppData\Local\Solid State Networks
2012-03-15 11:12 . 2012-03-15 11:12        --------        d-----w-        c:\program files (x86)\FPDFC
2012-03-15 11:10 . 2011-03-25 20:42        338432        ----a-w-        c:\windows\SysWow64\sqlite36_engine.dll
2012-03-15 11:10 . 2011-05-13 12:16        493056        ----a-w-        c:\windows\SysWow64\dhRichClient3.dll
2012-03-15 10:54 . 2005-03-12 00:07        87040        ----a-w-        c:\windows\system32\pdfcmnnt.dll
2012-03-15 10:54 . 1998-06-23 23:00        137000        ----a-w-        c:\windows\SysWow64\MSMAPI32.OCX
2012-03-15 10:54 . 1998-07-06 16:55        28672        ----a-w-        c:\windows\SysWow64\CMCT3DE.DLL
2012-03-15 10:54 . 2010-07-20 01:39        389120        ----a-w-        c:\windows\SysWow64\actskn43.ocx
2012-03-15 10:54 . 1998-07-06 00:00        23552        ----a-w-        c:\windows\SysWow64\MSMPIDE.DLL
2012-03-15 10:54 . 2012-03-15 10:55        --------        d-----w-        c:\program files (x86)\ExceltoPdfConverter
2012-03-13 12:01 . 2012-03-13 12:01        --------        d-----w-        c:\program files (x86)\ESET
2012-03-13 09:45 . 2012-03-13 09:45        --------        d-----w-        c:\users\Broiler-bunny\AppData\Roaming\Malwarebytes
2012-03-13 09:44 . 2012-03-13 09:44        --------        d-----w-        c:\programdata\Malwarebytes
2012-03-13 09:44 . 2012-03-13 09:44        --------        d-----w-        c:\program files (x86)\Malwarebytes' Anti-Malware
2012-03-13 09:44 . 2011-12-10 14:24        23152        ----a-w-        c:\windows\system32\drivers\mbam.sys
2012-02-24 10:41 . 2012-02-24 10:41        --------        d-----w-        c:\users\Broiler-bunny\AppData\Roaming\Avira
2012-02-24 10:39 . 2012-03-15 10:27        132320        ----a-w-        c:\windows\system32\drivers\avipbb.sys
2012-02-24 10:39 . 2011-09-15 22:55        97312        ----a-w-        c:\windows\system32\drivers\avgntflt.sys
2012-02-24 10:39 . 2011-09-15 22:55        27760        ----a-w-        c:\windows\system32\drivers\avkmgr.sys
2012-02-24 10:39 . 2012-02-24 10:39        --------        d-----w-        c:\programdata\Avira
2012-02-24 10:39 . 2012-02-24 10:39        --------        d-----w-        c:\program files (x86)\Avira
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-21 1555968]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2010-05-13 26192168]
"ICQ"="c:\program files (x86)\ICQ7.2\ICQ.exe" [2011-01-05 133432]
"studNET-Autologin"="c:\windows\SysWOW64\studnet\studnet.exe" [2007-09-26 245760]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-29 61440]
"Dell DataSafe Online"="c:\program files (x86)\Dell DataSafe Online\DataSafeOnline.exe" [2009-07-07 1779952]
"PDVDDXSrv"="c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2008-05-23 128296]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"fsi"="c:\program files (x86)\Phoenix Technologies Ltd\FailSafe\FailSafeLauncher.exe" [2009-07-20 9216]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2009-06-24 409744]
"mcagent_exe"="c:\program files (x86)\McAfee.com\Agent\mcagent.exe" [2009-09-17 645328]
"DellSupportCenter"="c:\program files (x86)\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2009-09-05 417792]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2009-09-21 305440]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2011-03-24 49208]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 460872]
.
c:\users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Tintenwarnungen überwachen - HP Deskjet 3070 B611 series.lnk - c:\windows\system32\RunDll32.exe [2006-11-2 46592]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AutoCAD-Startbeschleuniger.lnk - c:\program files (x86)\Common Files\Autodesk Shared\acstart16.exe [2005-3-5 10872]
Internet - Verknüpfung.lnk -  [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2012-03-21 c:\windows\Tasks\HP Photo Creations Messager.job
- c:\programdata\HP Photo Creations\MessageCheck.exe [2011-02-15 10:11]
.
2012-03-21 c:\windows\Tasks\User_Feed_Synchronization-{8E49CD4F-3F0B-439F-A746-0363456D1BF6}.job
- c:\windows\system32\msfeedssync.exe [2008-01-21 02:50]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-11-25 1657128]
"QuickSet"="c:\program files\Dell\QuickSet\QuickSet.exe" [2008-09-26 2041112]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page =
mLocal Page =
IE: &Citavi Picker... - file://c:\program files (x86)\Internet Explorer\PLUGINS\Citavi Picker\ShowContextMenu.html
IE: Free YouTube to MP3 Converter - c:\users\Broiler-bunny\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 163.139.230.165 163.139.230.164
CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll
FF - ProfilePath - c:\users\Broiler-bunny\AppData\Roaming\Mozilla\Firefox\Profiles\cz3mvs74.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Citavi Picker: {8AA36F4F-6DC7-4c06-77AF-5035170634FE} - c:\program files (x86)\Mozilla Firefox\extensions\{8AA36F4F-6DC7-4c06-77AF-5035170634FE}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: Rikaichan: {0AA9101C-D3C1-4129-A9B7-D778C6A17F82} - %profile%\extensions\{0AA9101C-D3C1-4129-A9B7-D778C6A17F82}
FF - Ext: Rikaichan Japanese-English Dictionary File: rikaichan-jpen@polarcloud.com - %profile%\extensions\rikaichan-jpen@polarcloud.com
FF - Ext: Rikaichan Japanese-German Dictionary File: rikaichan-jpde@polarcloud.com - %profile%\extensions\rikaichan-jpde@polarcloud.com
FF - Ext: Rikaichan Japanese Names Dictionary File: rikaichan-jpnames@polarcloud.com - %profile%\extensions\rikaichan-jpnames@polarcloud.com
FF - Ext: Shopping-preise.de: mail@shopping-preise.de - %profile%\extensions\mail@shopping-preise.de
FF - Ext: Shopping-preise.de: mail@shopping-preise.de - c:\users\Broiler-bunny\AppData\Roaming\Mozilla\Firefox\Profiles\cz3mvs74.default\extensions\mail@shopping-preise.de
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-WMPNSCFG - c:\program files (x86)\Windows Media Player\WMPNSCFG.exe
HKLM-Run-Windows Defender - c:\program files (x86)\Windows Defender\MSASCui.exe
HKLM-Run-SysTrayApp - c:\program files (x86)\IDT\WDM\sttray64.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10b.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10b.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10b.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10b.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10b.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10b.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
@Denied: (A 2) (Everyone)
@="IFlashBroker2"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
  00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\Dell\DellDock\DockLogin.exe
c:\program files (x86)\Avira\AntiVir Desktop\sched.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\progra~2\COMMON~1\McAfee\McProxy\McProxy.exe
c:\program files (x86)\McAfee\MPF\MPFSrv.exe
c:\program files (x86)\McAfee\MSK\MskSrver.exe
c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE
c:\progra~2\McAfee\MSC\mcmscsvc.exe
c:\progra~2\mcafee.com\agent\mcagent.exe
c:\program files (x86)\Common Files\mcafee\mna\mcnasvc.exe
c:\program files (x86)\avira\antivir desktop\ipmGui.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
c:\program files (x86)\Dell Support Center\bin\sprtsvc.exe
c:\program files (x86)\Skype\Plugin Manager\skypePM.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-03-21  16:25:42 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2012-03-21 15:25
.
Vor Suchlauf: 10 Verzeichnis(se), 311.664.513.024 Bytes frei
Nach Suchlauf: 15 Verzeichnis(se), 311.220.498.432 Bytes frei
.
- - End Of File - - 4262FF7196523DBD0F4C9741EA342A84

cosinus 21.03.2012 17:07
Zitat:
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: McAfee VirusScan *Disabled/Outdated* {86355677-4064-3EA7-ABB3-1B136EB04637}
Oh nee hast du tatsächlich McAfee und AntiVir gleichzeitig installiert? :balla:

Steffchen 21.03.2012 17:40
Hä? Also Entschuldigung :confused:
Ich dachte ich hätte alles deaktivert, war aber noch nicht ganz. Also hab ich nochmal neu begonnen. Aber ich versteh nicht so richtig. Gibt es jetzt ein Problem?

cosinus 21.03.2012 18:15
Es geht nicht darum ob deaktiviert!! Ich will wissen ob du wirklich McAfee und AntiVir installiert hast!
Wenn ja, sowas geht nicht! Man sollte nicht zwei Virenscanner wie McAfee und AntiVir zusammen/gleichzeitig installiert haben!"

Steffchen 21.03.2012 18:30
Achso. Ja doch. Ich hab Avira dann zusätzlich zu dem Afee installiert gehabt, bevor ich mich hier angemeldet habe. War wahrscheinlich eher sinnfrei. Kann ja eins wieder deinstallieren. Aber wirkt sich das irgendwie auf den Virus aus?

cosinus 21.03.2012 18:35
Ja deinstalliere bitte JETZT eins der beiden!

Steffchen 21.03.2012 18:40
Oki, schon geschehen.

cosinus 21.03.2012 20:50
Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.

Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehalalrm!
  • Starte die aswMBR.exe Vista und Win7 User aswMBR per Rechtsklick "als Administrator ausführen"
  • Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen) Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
  • Klicke auf Scan.
  • Warte bitte bis Scan finished successfully im DOS Fenster steht.
  • Drücke auf Save Log und speichere diese auf dem Desktop.
Poste mir die aswMBR.txt in deiner nächsten Antwort. Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte es erneut nicht klappen teile mir das bitte mit.

Steffchen 22.03.2012 06:05
Hier kommt der Avast Log:

Code:
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-03-22 05:34:51
-----------------------------
05:34:51.085    OS Version: Windows x64 6.0.6001 Service Pack 1
05:34:51.085    Number of processors: 2 586 0x170A
05:34:51.085    ComputerName: PUPSISPC  UserName:
05:34:53.285    Initialize success
05:37:21.003    AVAST engine defs: 12032000
05:39:22.278    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
05:39:22.278    Disk 0 Vendor: WDC_WD5000BEVT-75ZAT0 01.01A01 Size: 476940MB BusType: 3
05:39:22.293    Disk 0 MBR read successfully
05:39:22.309    Disk 0 MBR scan
05:39:22.309    Disk 0 Windows VISTA default MBR code
05:39:22.324    Disk 0 Partition 1 00    DE Dell Utility Dell 8.0      39 MB offset 63
05:39:22.340    Disk 0 Partition 2 00    07    HPFS/NTFS NTFS        15000 MB offset 80325
05:39:22.356    Disk 0 Partition 3 80 (A) 07    HPFS/NTFS NTFS      461899 MB offset 30800325
05:39:22.402    Disk 0 scanning C:\Windows\system32\drivers
05:39:42.199    Service scanning
05:40:10.216    Modules scanning
05:40:10.216    Disk 0 trace - called modules:
05:40:10.263    ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
05:40:10.279    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80061e9790]
05:40:10.279    3 CLASSPNP.SYS[fffffa6000b9db3a] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004bca060]
05:40:12.104    AVAST engine scan C:\Windows
05:40:23.086    AVAST engine scan C:\Windows\system32
05:46:35.911    AVAST engine scan C:\Windows\system32\drivers
05:46:54.100    AVAST engine scan C:\Users\Broiler-bunny
05:59:04.992    AVAST engine scan C:\ProgramData
06:02:15.187    Scan finished successfully
06:03:30.426    Disk 0 MBR has been saved successfully to "C:\Users\Broiler-bunny\Desktop\MBR.dat"
06:03:30.441    The log file has been saved successfully to "C:\Users\Broiler-bunny\Desktop\aswMBR.txt"

cosinus 22.03.2012 12:33
Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SASW und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!

Steffchen 22.03.2012 16:38
Huhu, zuerst der Log von MalwareBytes:

Code:
Malwarebytes Anti-Malware (Test) 1.60.1.1000
www.malwarebytes.org

Datenbank Version: v2012.03.22.02

Windows Vista Service Pack 1 x64 NTFS
Internet Explorer 7.0.6001.18000
Broiler-bunny :: PUPSISPC [Administrator]

Schutz: Aktiviert

22.03.2012 14:43:03
mbam-log-2012-03-22 (14-43-03).txt

Art des Suchlaufs: Vollständiger Suchlauf
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 376931
Laufzeit: 1 Stunde(n), 36 Minute(n), 14 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 1
C:\Users\Broiler-bunny\M-1-52-5782-8752-5245 (Trojan.Agent.Gen) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
Hier der Log von SuperAntiSpyware. Da wurde sehr viel gefunden. Finde das bisschen gruselig... Wie geht es weiter? Und soll ich die gefundenen Dateien eigentlich löschen? Sind halt so verdammt viele :confused:

Code:
SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 03/22/2012 at 07:22 PM

Application Version : 5.0.1146

Core Rules Database Version : 8365
Trace Rules Database Version: 6177

Scan type      : Complete Scan
Total Scan Time : 02:26:54

Operating System Information
Windows Vista Home Premium 64-bit, Service Pack 1 (Build 6.00.6001)
UAC On - Limited User

Memory items scanned      : 661
Memory threats detected  : 0
Registry items scanned    : 66060
Registry threats detected : 0
File items scanned        : 190670
File threats detected    : 368

Adware.Tracking Cookie
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@2o7[1].txt [ /2o7 ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@ad.adc-serv[1].txt [ /ad.adc-serv ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@ad.adition[2].txt [ /ad.adition ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@ad.adnet[2].txt [ /ad.adnet ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@ad.yieldmanager[1].txt [ /ad.yieldmanager ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@ad.zanox[2].txt [ /ad.zanox ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@ad2.adfarm1.adition[2].txt [ /ad2.adfarm1.adition ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@ad3.adfarm1.adition[2].txt [ /ad3.adfarm1.adition ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@ad4.adfarm1.adition[1].txt [ /ad4.adfarm1.adition ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@adfarm1.adition[2].txt [ /adfarm1.adition ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@adform[1].txt [ /adform ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@ads.creative-serving[2].txt [ /ads.creative-serving ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@adserver.traffictrack[2].txt [ /adserver.traffictrack ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@advertising[2].txt [ /advertising ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@apmebf[2].txt [ /apmebf ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@ar.atwola[1].txt [ /ar.atwola ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@at.atwola[2].txt [ /at.atwola ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@atdmt[2].txt [ /atdmt ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@atwola[1].txt [ /atwola ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@bs.serving-sys[2].txt [ /bs.serving-sys ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@content.yieldmanager[1].txt [ /content.yieldmanager ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@content.yieldmanager[3].txt [ /content.yieldmanager ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@doubleclick[1].txt [ /doubleclick ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@eas.apm.emediate[2].txt [ /eas.apm.emediate ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@eyewonder[2].txt [ /eyewonder ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@googleads.g.doubleclick[1].txt [ /googleads.g.doubleclick ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@imrworldwide[2].txt [ /imrworldwide ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@mediaplex[2].txt [ /mediaplex ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@serving-sys[1].txt [ /serving-sys ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@sevenoneintermedia.112.2o7[1].txt [ /sevenoneintermedia.112.2o7 ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@smartadserver[2].txt [ /smartadserver ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@statcounter[1].txt [ /statcounter ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@statse.webtrendslive[2].txt [ /statse.webtrendslive ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@tacoda[2].txt [ /tacoda ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@track.adform[2].txt [ /track.adform ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@tracking.3gnet[1].txt [ /tracking.3gnet ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@tracking.hannoversche[1].txt [ /tracking.hannoversche ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@tracking.mindshare[1].txt [ /tracking.mindshare ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@tracking.quisma[2].txt [ /tracking.quisma ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@tradedoubler[1].txt [ /tradedoubler ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@traffictrack[2].txt [ /traffictrack ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@unitymedia[1].txt [ /unitymedia ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@webmasterplan[1].txt [ /webmasterplan ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@www.zanox-affiliate[1].txt [ /www.zanox-affiliate ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@zanox-affiliate[2].txt [ /zanox-affiliate ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@zanox[1].txt [ /zanox ]
        C:\Users\Broiler-bunny\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@zbox.zanox[2].txt [ /zbox.zanox ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\broiler-bunny@adsonar[2].txt [ Cookie:broiler-bunny@adsonar.com/adserving ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@tacoda[1].txt [ Cookie:broiler-bunny@tacoda.net/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@atwola[1].txt [ Cookie:broiler-bunny@atwola.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@unitymedia[2].txt [ Cookie:broiler-bunny@unitymedia.de/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@im.banner.t-online[2].txt [ Cookie:broiler-bunny@im.banner.t-online.de/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@www.etracker[1].txt [ Cookie:broiler-bunny@www.etracker.de/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@apmebf[1].txt [ Cookie:broiler-bunny@apmebf.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@track.effiliation[1].txt [ Cookie:broiler-bunny@track.effiliation.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@bs.serving-sys[1].txt [ Cookie:broiler-bunny@bs.serving-sys.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@zanox[1].txt [ Cookie:broiler-bunny@zanox.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@tracking.mindshare[2].txt [ Cookie:broiler-bunny@tracking.mindshare.de/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@advertising[2].txt [ Cookie:broiler-bunny@advertising.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@smartadserver[1].txt [ Cookie:broiler-bunny@smartadserver.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@www.googleadservices[2].txt [ Cookie:broiler-bunny@www.googleadservices.com/pagead/conversion/1035834180/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@content.yieldmanager[2].txt [ Cookie:broiler-bunny@content.yieldmanager.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@mediaplex[1].txt [ Cookie:broiler-bunny@mediaplex.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@msnportal.112.2o7[1].txt [ Cookie:broiler-bunny@msnportal.112.2o7.net/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@atdmt[2].txt [ Cookie:broiler-bunny@atdmt.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@www.netdebit-counter[2].txt [ Cookie:broiler-bunny@www.netdebit-counter.de/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@fastclick[1].txt [ Cookie:broiler-bunny@fastclick.net/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@adcolo[1].txt [ Cookie:broiler-bunny@adcolo.com/ad/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@partygaming.122.2o7[1].txt [ Cookie:broiler-bunny@partygaming.122.2o7.net/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@tracking.quisma[1].txt [ Cookie:broiler-bunny@tracking.quisma.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@dc.tremormedia[1].txt [ Cookie:broiler-bunny@dc.tremormedia.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@adviva[1].txt [ Cookie:broiler-bunny@adviva.net/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@adtech[1].txt [ Cookie:broiler-bunny@adtech.de/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@at.atwola[2].txt [ Cookie:broiler-bunny@at.atwola.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@de.sitestat[1].txt [ Cookie:broiler-bunny@de.sitestat.com/sueddeutsche/sueddeutsche/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@sevenoneintermedia.112.2o7[1].txt [ Cookie:broiler-bunny@sevenoneintermedia.112.2o7.net/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@ad.yieldmanager[1].txt [ Cookie:broiler-bunny@ad.yieldmanager.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@rotator.adjuggler[2].txt [ Cookie:broiler-bunny@rotator.adjuggler.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@tracking.hannoversche[1].txt [ Cookie:broiler-bunny@tracking.hannoversche.de/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@vodafonegroup.122.2o7[1].txt [ Cookie:broiler-bunny@vodafonegroup.122.2o7.net/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@adserver.adtechus[1].txt [ Cookie:broiler-bunny@adserver.adtechus.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@himedia.individuad[2].txt [ Cookie:broiler-bunny@himedia.individuad.net/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@adfarm1.adition[1].txt [ Cookie:broiler-bunny@adfarm1.adition.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@2o7[2].txt [ Cookie:broiler-bunny@2o7.net/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@ads.mikinimedia[2].txt [ Cookie:broiler-bunny@ads.mikinimedia.de/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@questionmarket[2].txt [ Cookie:broiler-bunny@questionmarket.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@statcounter[2].txt [ Cookie:broiler-bunny@statcounter.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@traffictrack[1].txt [ Cookie:broiler-bunny@traffictrack.de/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@yadro[1].txt [ Cookie:broiler-bunny@yadro.ru/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@zedo[1].txt [ Cookie:broiler-bunny@zedo.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@specificclick[2].txt [ Cookie:broiler-bunny@specificclick.net/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@overture[2].txt [ Cookie:broiler-bunny@overture.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@serving-sys[2].txt [ Cookie:broiler-bunny@serving-sys.com/ ]
        C:\USERS\BROILER-BUNNY\AppData\Roaming\Microsoft\Windows\Cookies\Low\broiler-bunny@adsrv.admediate[2].txt [ Cookie:broiler-bunny@adsrv.admediate.net/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@atwola[1].txt [ Cookie:broiler-bunny@atwola.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@tacoda[2].txt [ Cookie:broiler-bunny@tacoda.net/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@unitymedia[1].txt [ Cookie:broiler-bunny@unitymedia.de/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@ar.atwola[1].txt [ Cookie:broiler-bunny@ar.atwola.com/html ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@ad.adition[2].txt [ Cookie:broiler-bunny@ad.adition.net/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@apmebf[2].txt [ Cookie:broiler-bunny@apmebf.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@adform[1].txt [ Cookie:broiler-bunny@adform.net/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@bs.serving-sys[2].txt [ Cookie:broiler-bunny@bs.serving-sys.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@zanox[1].txt [ Cookie:broiler-bunny@zanox.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@tracking.mindshare[1].txt [ Cookie:broiler-bunny@tracking.mindshare.de/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@adsonar[2].txt [ Cookie:broiler-bunny@adsonar.com/adserving ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@advertising[2].txt [ Cookie:broiler-bunny@advertising.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@adserver.traffictrack[2].txt [ Cookie:broiler-bunny@adserver.traffictrack.de/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@statse.webtrendslive[2].txt [ Cookie:broiler-bunny@statse.webtrendslive.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@googleads.g.doubleclick[1].txt [ Cookie:broiler-bunny@googleads.g.doubleclick.net/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@smartadserver[2].txt [ Cookie:broiler-bunny@smartadserver.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@track.adform[2].txt [ Cookie:broiler-bunny@track.adform.net/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@content.yieldmanager[1].txt [ Cookie:broiler-bunny@content.yieldmanager.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@mediaplex[2].txt [ Cookie:broiler-bunny@mediaplex.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@atdmt[2].txt [ Cookie:broiler-bunny@atdmt.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@tracking.quisma[2].txt [ Cookie:broiler-bunny@tracking.quisma.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@imrworldwide[2].txt [ Cookie:broiler-bunny@imrworldwide.com/cgi-bin ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@ad3.adfarm1.adition[2].txt [ Cookie:broiler-bunny@ad3.adfarm1.adition.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@ad.adnet[2].txt [ Cookie:broiler-bunny@ad.adnet.de/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@eyewonder[2].txt [ Cookie:broiler-bunny@eyewonder.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@at.atwola[2].txt [ Cookie:broiler-bunny@at.atwola.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@sevenoneintermedia.112.2o7[1].txt [ Cookie:broiler-bunny@sevenoneintermedia.112.2o7.net/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@ad.yieldmanager[1].txt [ Cookie:broiler-bunny@ad.yieldmanager.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@tracking.hannoversche[1].txt [ Cookie:broiler-bunny@tracking.hannoversche.de/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@ad2.adfarm1.adition[2].txt [ Cookie:broiler-bunny@ad2.adfarm1.adition.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@eas.apm.emediate[2].txt [ Cookie:broiler-bunny@eas.apm.emediate.eu/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@adfarm1.adition[2].txt [ Cookie:broiler-bunny@adfarm1.adition.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@2o7[1].txt [ Cookie:broiler-bunny@2o7.net/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@statcounter[1].txt [ Cookie:broiler-bunny@statcounter.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@traffictrack[2].txt [ Cookie:broiler-bunny@traffictrack.de/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@serving-sys[1].txt [ Cookie:broiler-bunny@serving-sys.com/ ]
        C:\USERS\BROILER-BUNNY\Cookies\broiler-bunny@zbox.zanox[2].txt [ Cookie:broiler-bunny@zbox.zanox.com/ ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@AD.ZANOX[1].TXT [ /AD.ZANOX ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@CDN.AT.ATWOLA[1].TXT [ /CDN.AT.ATWOLA ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@LIBRI.112.2O7[1].TXT [ /LIBRI.112.2O7 ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@ADS.FAMDIREKT[2].TXT [ /ADS.FAMDIREKT ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@WWW.GOOGLEADSERVICES[1].TXT [ /WWW.GOOGLEADSERVICES ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@WWW.GOOGLEADSERVICES[3].TXT [ /WWW.GOOGLEADSERVICES ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@AD.ADC-SERV[1].TXT [ /AD.ADC-SERV ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@DOUBLECLICK[1].TXT [ /DOUBLECLICK ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@WEBMASTERPLAN[2].TXT [ /WEBMASTERPLAN ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@ADS.MASTERWEB.MACH3[2].TXT [ /ADS.MASTERWEB.MACH3 ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@TRADEDOUBLER[2].TXT [ /TRADEDOUBLER ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@AD.AD-SRV[1].TXT [ /AD.AD-SRV ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@ZANOX-AFFILIATE[2].TXT [ /ZANOX-AFFILIATE ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@EUROS4CLICK[2].TXT [ /EUROS4CLICK ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@CDN5.SPECIFICCLICK[1].TXT [ /CDN5.SPECIFICCLICK ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@TTO2.TRAFFICTRACK[1].TXT [ /TTO2.TRAFFICTRACK ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@EAS4.EMEDIATE[2].TXT [ /EAS4.EMEDIATE ]
        C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\BROILER-BUNNY@TRACK.EFFILIATION[3].TXT [ /TRACK.EFFILIATION ]
        .statcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .divx.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .bs.serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .ad.adnet.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .ad.adnet.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .ice.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .overture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .overture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        rotator.adjuggler.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        rotator.adjuggler.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .adviva.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .imrworldwide.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wcloonazwho.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        adsrv.admediate.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        adsrv.admediate.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .xiti.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .moviepilot.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .autoscout24.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .agofev.122.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .partygaming.122.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        statse.webtrendslive.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .adbrite.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .apmebf.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .adviva.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        rotator.adjuggler.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        adsrv.admediate.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        adsrv.admediate.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .webmasterplan.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .bs.serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .lfstmedia.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .bluestreak.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .smartadserver.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .lfstmedia.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .bluestreak.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        track.effiliation.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .valueclick.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        eas.apm.emediate.eu [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .mediaplex.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .overture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .overture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .bs.serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .serving-sys.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .zedo.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .adfarm1.adition.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .frontlinegmbh.122.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .brownshoe.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .shopping.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        caloriecount.about.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        caloriecount.about.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        ad.yieldmanager.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wcligjdpilp.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wclyskdzgbp.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjnygodpodq.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .paypal.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .mediafire.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .media.photobucket.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        track.webtrekk.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .finanzportal20.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjlyqoajkdq.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .partypoker.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.partypoker.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .3pagen.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        track.webtrekk.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wak4apd5egp.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .sevenoneintermedia.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjkocpazggo.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .myhammer.122.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        audit.median.hu [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .deutschepostag.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .zieltrack.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wgmiggcpmho.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .msnportal.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .wissende.122.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .guj.122.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .simyo.122.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .warnerbros.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        track.webtrekk.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6aekyooazaep.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wgkoajcpwep.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjlochcjmeq.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        tracking.dc-storm.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .tjx.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        track.webtrekk.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        tracking.bmbfcluster.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wnmiclcpsgo.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wcliqnd5ehp.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        tracking.dc-storm.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .stepstone.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        track.webtrekk.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wmliagazgep.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .statcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .yadro.ru [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .cdn.adxmedia.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .1stat.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjlicmajmlo.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .archive.dyestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .samsungfunclub.122.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .libri.112.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        xxx-blog.to [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        stat.server5210.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        stats.o2more.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        stats.o2more.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        stats.kvis.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .tripod.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        www5.addfreestats.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .viewablemedia.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        in.getclicky.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .revsci.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        fr.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        fr.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .tokyoroomfinder.blogspot.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .olympiaverlag.122.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .4fuckr.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .nextag.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .nextag.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .nextag.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6whkyuhdpmeo.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6aekoukcjwbq.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .teen-blog.us [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .webstats4u.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .legolas-media.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .legolas-media.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .tracking.quisma.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .adultswim.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        s06.flagcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .invitemedia.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        de.sitestat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .c.gigcount.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        spenden.wikimedia.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        spenden.wikimedia.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        www.etracker.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .estat.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .cunda.122.2o7.net [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjl4ejdjahp.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .ero-advertising.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .getclicky.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .static.getclicky.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        tracking.sim-technik.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        tracking.klicktel.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        tracking.klicktel.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .e-2dj6wjlocpc5oep.stats.esomniture.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .stat.youku.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        accounts.google.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .mediabiz.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .mediabiz.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        .mediabiz.de [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        cogniviewsystems.smartertrack.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        wstat.wibiya.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]
        s07.flagcounter.com [ C:\USERS\BROILER-BUNNY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CZ3MVS74.DEFAULT\COOKIES.SQLITE ]

cosinus 23.03.2012 20:32
Nur ein Überrest und ne Menge Cookies.

Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie )

Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?

Steffchen 24.03.2012 10:02
Hallo, also vielen vielen Dank erstmal!!!! Mein PC scheint wieder sauber zu sein. Meine Frage wäre jetzt nur noch, ob ich bedenkenlos meine infizierte SD-Karte anstecken kann? Würde die Fotos gerne retten. USB-Stick und iPod könnte ich auch formatieren. Aber die Fotos sind mir sehr wichtig.
Grüße, Steffi

cosinus 24.03.2012 18:32
Es gibt keine infizierten Laufwerke! Wenn überhaupt sind Dateien oder andere Objekte infiziert, aber Laufwerke selbst infizieren geht so nicht!

Deaktiviere die automatische Wiedergabe komplett, dann löscht du alles an unnötigen Dateien; v.a. die autorun.inf, lass dir vor dem Löschen alle Dateien anzeigen => http://www.trojaner-board.de/59624-a...-sichtbar.html

Automatische Wiedergabe deaktivieren

Windows XP: Zur Vereinfachung hab ich mal die noautoplay.reg hochgeladen. Lad das auf dem Desktop herunter, führ die Datei aus und bestätige mit ja. Nach einem Neustart des Rechners ist die automatische Wiedergabe (von Datenträgern) auf allen Laufwerken deaktiviert, d.h. keine CD, kein Stick oder sonstwas startet nach dem Einstecken mehr automatisch.

Windows Vista/7: In der Systemsteuerung unter automatische Wiedergabe von CDs und anderen Medien alles deaktivieren. => siehe auch Einstellungen für automatische Wiedergabe ändern


Dann wären wir durch! :abklatsch:

Die Programme, die hier zum Einsatz kamen, können alle wieder runter. CF kann über Start, Ausführen mit combofix /uninstall entfernt werden. Melde dich falls es da Fehlermeldungen zu gibt.
Malwarebytes zu behalten ist kein Fehler. Kannst ja 1x im Monat damit scannen, aber immer vorher ans Update denken.

Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden.
Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern.


Microsoftupdate

Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren.

Windows Vista/7: Anleitung Windows-Update


PDF-Reader aktualisieren
Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast)

Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader.

Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers:

Adobe - Andere Version des Adobe Flash Player installieren

Notfalls kann man auch von Chip.de runterladen => http://filepony.de/?q=Flash+Player

Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind.


Java-Update
Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.

Steffchen 25.03.2012 15:22
Ok! Also Entschuldigung, dass ich mich manchmal ein bisschen doof angestellt habe. Aber bin heil froh, dass alles geklappt hat. Deswegen: Tausend Dank! Hätte das alleine ja niemals geschafft. Danke Danke Danke, bin jetzt endlich wieder glücklich :crazy:


Alle Zeitangaben in WEZ +1. Es ist jetzt 17:30 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131