| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: http://www.searchqu.com/406Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
11.11.2011, 13:40
| #1 |
| |  http://www.searchqu.com/406 Hallo, ich habe seit ein paar Tagen das oben genannte Problem, dass hxxp://www.searchqu.com/406 statt Google Chrome als Startseite angezeigt wird. Ich kenne mich nicht gut mit Computern aus und hoffe, dass ich alles richtig befolgt habe. Vielen Dank vorab schon mal für Eure Mühe! Neon Code:
ATTFilter OTL logfile created on: 10.11.2011 15:48:47 - Run 2 OTL by OldTimer - Version 3.2.31.0 Folder = E:\ Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 1,75 Gb Total Physical Memory | 1,04 Gb Available Physical Memory | 59,77% Memory free 7,57 Gb Paging File | 6,57 Gb Available in Paging File | 86,83% Paging File free Paging file location(s): c:\pagefile.sys 6000 6000 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 146,49 Gb Total Space | 81,12 Gb Free Space | 55,37% Space Free | Partition Type: NTFS Drive E: | 97,65 Gb Total Space | 68,46 Gb Free Space | 70,10% Space Free | Partition Type: NTFS Drive F: | 160,16 Gb Total Space | 84,18 Gb Free Space | 52,56% Space Free | Partition Type: NTFS Drive G: | 61,46 Gb Total Space | 21,66 Gb Free Space | 35,24% Space Free | Partition Type: NTFS Computer Name: LULU-PC | User Name: lulu | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011.11.10 15:36:25 | 000,584,192 | ---- | M] (OldTimer Tools) -- E:\OTL.exe PRC - [2011.11.02 11:07:18 | 001,694,096 | ---- | M] (Bandoo Media, inc) -- C:\Programme\Windows iLivid Toolbar\Datamngr\datamngrUI.exe PRC - [2011.10.17 18:18:23 | 004,615,552 | ---- | M] (SUPERAntiSpyware.com) -- E:\SuperAnti Spyware\SUPERAntiSpyware.exe PRC - [2011.08.12 00:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- E:\SuperAnti Spyware\SASCore.exe PRC - [2011.08.02 08:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd) -- C:\Programme\DAEMON Tools Lite\DTLite.exe PRC - [2011.06.15 14:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft Security Client\msseces.exe PRC - [2011.06.06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2011.04.27 14:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) -- c:\Programme\Microsoft Security Client\Antimalware\NisSrv.exe PRC - [2011.04.27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Programme\Microsoft Security Client\Antimalware\MsMpEng.exe PRC - [2011.03.30 08:12:18 | 000,310,944 | ---- | M] (Adobe Systems Incorporated) -- C:\Programme\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe PRC - [2010.06.29 14:15:18 | 000,073,728 | ---- | M] (Software 2000 Limited) -- C:\Windows\System32\spool\drivers\w32x86\3\HP1006MC.EXE PRC - [2009.04.10 22:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2008.01.18 22:33:40 | 000,896,512 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe PRC - [2008.01.18 22:33:40 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnscfg.exe PRC - [2006.10.05 16:10:12 | 000,009,216 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe ========== Modules (No Company Name) ========== MOD - [2011.11.10 15:32:49 | 000,063,488 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll MOD - [2011.11.10 15:32:49 | 000,052,736 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll MOD - [2011.11.08 08:16:33 | 000,117,760 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL MOD - [2011.11.08 08:16:33 | 000,052,224 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll MOD - [2007.01.18 22:54:48 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll ========== Win32 Services (SafeList) ========== SRV - [2011.08.12 00:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- E:\SuperAnti Spyware\SASCORE.EXE -- (!SASCORE) SRV - [2011.06.06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2011.04.27 14:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv) SRV - [2011.04.27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc) SRV - [2010.02.19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2008.01.18 22:38:26 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2006.10.05 16:10:12 | 000,009,216 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio) ========== Driver Services (SafeList) ========== DRV - [2011.11.10 15:31:10 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{24C6437D-1BAE-426C-AE81-AA012B33468B}\MpKsl3d205333.sys -- (MpKsl3d205333) DRV - [2011.09.23 10:45:19 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2011.07.22 17:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- E:\SuperAnti Spyware\sasdifsv.sys -- (SASDIFSV) DRV - [2011.07.12 22:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- E:\SuperAnti Spyware\SASKUTIL.SYS -- (SASKUTIL) DRV - [2011.04.27 14:25:24 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv) DRV - [2011.04.18 12:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon) DRV - [2011.03.24 09:57:54 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\epmntdrv.sys -- (epmntdrv) DRV - [2011.03.24 09:57:54 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\EuGdiDrv.sys -- (EuGdiDrv) DRV - [2009.12.17 15:02:20 | 001,203,712 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr) DRV - [2007.01.18 23:03:24 | 002,314,752 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300) DRV - [2006.11.28 19:11:00 | 001,161,888 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.searchqu.com/406 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E9 5D 5E 8C 3B 3B CC 01 [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.selectedEngine: "Search Results" FF - prefs.js..browser.search.defaultenginename: "Search Results" FF - prefs.js..browser.search.order.1: "Search Results" FF - prefs.js..keyword.URL: "hxxp://dts.search-results.com/sr?src=ffb&appid=119&systemid=406&sr=0&q=" FF - prefs.js..browser.startup.homepage: "hxxp://www.searchqu.com/406" FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\lulu\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\lulu\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.07.05 15:34:29 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.11.07 22:09:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lulu\AppData\Roaming\mozilla\Extensions [2011.11.07 22:08:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lulu\AppData\Roaming\mozilla\Firefox\Profiles\7vns9mm9.default\extensions [2011.11.07 22:08:58 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Users\lulu\AppData\Roaming\mozilla\Firefox\Profiles\7vns9mm9.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7} [2011.11.07 22:08:50 | 000,002,519 | ---- | M] () -- C:\Users\lulu\AppData\Roaming\Mozilla\Firefox\Profiles\7vns9mm9.default\searchplugins\SearchResults.xml [2011.11.07 22:09:04 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions [2011.07.05 18:52:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} [2011.07.05 18:52:45 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} [2011.07.05 14:29:21 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [2011.06.16 05:33:48 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2010.01.01 09:00:00 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml [2010.01.01 09:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2010.01.01 09:00:00 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml [2010.01.01 09:00:00 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml [2011.11.07 22:08:50 | 000,002,519 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SearchResults.xml [2010.01.01 09:00:00 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml [2010.01.01 09:00:00 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml ========== Chrome ========== CHR - default_search_provider: Search Results (Enabled) CHR - default_search_provider: search_url = hxxp://dts.search-results.com/sr?src=crb&appid=119&systemid=406&sr=0&q={searchTerms} CHR - default_search_provider: suggest_url = CHR - plugin: Shockwave Flash (Enabled) = C:\Users\lulu\AppData\Local\Google\Chrome\Application\15.0.874.106\gcswf32.dll CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\lulu\AppData\Local\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\lulu\AppData\Local\Google\Chrome\Application\15.0.874.106\pdf.dll CHR - plugin: Google Update (Enabled) = C:\Users\lulu\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin O1 HOSTS File: ([2011.09.25 20:43:49 | 000,000,859 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O1 - Hosts: 127.0.0.1 activate.adobe.com O1 - Hosts: 127.0.0.1 practivate.adobe.com O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Programme\Windows iLivid Toolbar\Datamngr\ToolBar\searchqudtx.dll () O2 - BHO: (DataMngr) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Programme\Windows iLivid Toolbar\Datamngr\BrowserConnection.dll (Bandoo Media, inc) O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Programme\Windows iLivid Toolbar\Datamngr\ToolBar\searchqudtx.dll () O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [DATAMNGR] C:\Programme\Windows iLivid Toolbar\Datamngr\datamngrUI.exe (Bandoo Media, inc) O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] E:\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [SwitchBoard] C:\Programme\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent File not found O4 - HKCU..\Run: [SUPERAntiSpyware] E:\SuperAnti Spyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com) O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - E:\ICQ\ICQ7.5\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - E:\ICQ\ICQ7.5\ICQ.exe (ICQ, LLC.) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3B660F5D-83F7-4B4A-8007-DF1856FEBF0C}: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C48D1866-6407-480C-BBD8-58D0C8FC0237}: DhcpNameServer = 192.168.178.1 O20 - AppInit_DLLs: (C:\PROGRA~1\WI371A~1\Datamngr\datamngr.dll) -C:\Programme\Windows iLivid Toolbar\Datamngr\datamngr.dll (Bandoo Media, inc) O20 - AppInit_DLLs: (C:\PROGRA~1\WI371A~1\Datamngr\IEBHO.dll) -C:\Programme\Windows iLivid Toolbar\Datamngr\IEBHO.dll (Bandoo Media, inc) O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\!SASWinLogon: DllName - (E:\SuperAnti Spyware\SASWINLO.DLL) - E:\SuperAnti Spyware\SASWINLO.DLL (SUPERAntiSpyware.com) O24 - Desktop WallPaper: F:\***\Leben\2011\Trampolin be Mms Abiball\IMG_9655.JPG O24 - Desktop BackupWallPaper: F:\***\Leben\2011\Trampolin be Mms Abiball\IMG_9655.JPG O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - E:\SuperAnti Spyware\SASSEH.DLL (SuperAdBlocker.com) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{771a1e4e-e73d-11e0-8651-0013779e54ae}\Shell - "" = AutoRun O33 - MountPoints2\{771a1e4e-e73d-11e0-8651-0013779e54ae}\Shell\AutoRun\command - "" = K:\LaunchU3.exe -a O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2011.11.08 08:16:15 | 000,000,000 | ---D | C] -- C:\Users\lulu\AppData\Roaming\SUPERAntiSpyware.com [2011.11.08 08:15:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware [2011.11.08 08:15:15 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com [2011.11.08 08:14:53 | 000,000,000 | ---D | C] -- C:\Users\lulu\Neuer Ordner [2011.11.08 08:11:40 | 000,000,000 | ---D | C] -- C:\Users\lulu\AppData\Roaming\Malwarebytes [2011.11.08 08:11:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2011.11.08 08:11:23 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2011.11.07 22:12:46 | 000,000,000 | ---D | C] -- C:\Users\lulu\AppData\Local\Ilivid Player [2011.11.07 22:09:22 | 000,000,000 | -H-D | C] -- C:\ProgramData\{08E30618-5D06-461B-BBD3-4ADFB0810824} [2011.11.07 22:09:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLivid [2011.11.07 22:07:45 | 000,000,000 | ---D | C] -- C:\Users\lulu\Ilivid Youtube [2011.11.07 22:06:47 | 000,000,000 | ---D | C] -- C:\Program Files\iLivid [2011.11.07 22:06:20 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess [2011.11.07 22:06:19 | 000,000,000 | ---D | C] -- C:\Program Files\Windows iLivid Toolbar [2011.11.07 22:05:51 | 000,000,000 | ---D | C] -- C:\Users\lulu\AppData\Local\PackageAware [2011.11.06 17:51:53 | 000,000,000 | ---D | C] -- C:\Users\lulu\Desktop\Film [2011.11.06 17:35:51 | 000,000,000 | ---D | C] -- C:\Users\lulu\Desktop\Papiere die ich ständig benötige [2011.11.05 13:02:19 | 000,000,000 | ---D | C] -- C:\ProgramData\PlayFirst [2011.11.05 10:17:20 | 000,000,000 | ---D | C] -- C:\Users\lulu\Desktop\downloads [2011.11.05 08:03:36 | 000,000,000 | ---D | C] -- C:\Users\lulu\Desktop\*** Fotos [2011.10.31 10:11:45 | 000,000,000 | ---D | C] -- C:\Users\lulu\Desktop\Gedanken [2011.10.24 22:23:28 | 000,000,000 | ---D | C] -- C:\Users\lulu\Documents\ICQ [2011.10.23 14:41:12 | 000,000,000 | ---D | C] -- C:\Users\lulu\Desktop\Schauspiel Unis [2011.10.23 12:00:44 | 000,000,000 | RH-D | C] -- C:\Users\lulu\AppData\Roaming\SecuROM [2011.10.23 11:42:02 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Core [2011.10.23 11:12:01 | 000,000,000 | ---D | C] -- C:\Users\lulu\AppData\Roaming\Origin [2011.10.23 11:11:59 | 000,000,000 | ---D | C] -- C:\Users\lulu\AppData\Local\Origin [2011.10.23 11:11:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin [2011.10.23 11:11:45 | 000,000,000 | ---D | C] -- C:\Program Files\Origin Games [2011.10.23 11:11:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin [2011.10.23 11:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\Origin [2011.10.21 08:09:06 | 000,000,000 | ---D | C] -- C:\Users\lulu\Documents\GameFools [2011.10.18 10:40:32 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP [2011.10.18 10:40:32 | 000,000,000 | ---D | C] -- C:\Users\lulu\AppData\Local\MLS2 [2011.10.17 19:23:02 | 000,000,000 | ---D | C] -- C:\Users\lulu\Desktop\Origami [2011.10.17 16:58:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Oberon Games [2011.10.14 21:29:41 | 000,139,264 | ---- | C] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe [2011.10.14 08:33:26 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011.10.14 08:33:23 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011.10.14 08:33:22 | 001,798,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2011.10.14 08:33:21 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2011.10.14 08:33:20 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2011.10.13 21:38:45 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll [2011.10.13 21:38:45 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax [2011.10.13 21:38:45 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax [2011.10.13 21:38:44 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax [2011.10.13 21:38:43 | 002,043,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2011.10.13 21:38:31 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll [2011.10.13 21:38:31 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll ========== Files - Modified Within 30 Days ========== [2011.11.10 15:35:24 | 000,630,842 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2011.11.10 15:35:24 | 000,598,096 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011.11.10 15:35:24 | 000,127,260 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2011.11.10 15:35:24 | 000,105,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011.11.10 15:31:13 | 000,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011.11.10 15:31:13 | 000,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011.11.10 15:31:03 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011.11.10 15:30:43 | 1877,131,264 | -HS- | M] () -- C:\hiberfil.sys [2011.11.10 15:10:00 | 000,001,116 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-962186711-3762864419-1631889991-1000UA.job [2011.11.09 05:23:13 | 000,022,537 | ---- | M] () -- C:\Users\lulu\Desktop\Breitz Notizen.odt [2011.11.09 04:45:08 | 001,134,426 | ---- | M] () -- C:\Users\lulu\Desktop\Candice Breitz.odp [2011.11.08 23:26:15 | 000,010,923 | ---- | M] () -- C:\Users\lulu\Desktop\teufel_pakt_fluch.gif [2011.11.08 23:23:40 | 000,582,392 | ---- | M] () -- C:\Users\lulu\Desktop\Brunnenvergiftung.jpg [2011.11.08 22:10:00 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-962186711-3762864419-1631889991-1000Core.job [2011.11.08 21:40:13 | 000,743,593 | ---- | M] () -- C:\Users\lulu\Desktop\Juden.odt [2011.11.08 10:02:35 | 000,112,658 | ---- | M] () -- C:\Users\lulu\Desktop\Versuch_Kugelschanze_Kurz.pdf [2011.11.08 08:15:27 | 000,000,660 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk [2011.11.07 22:19:26 | 000,012,288 | ---- | M] () -- C:\Users\lulu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.11.07 22:09:21 | 000,000,535 | ---- | M] () -- C:\Users\Public\Desktop\iLivid Download Manager.lnk [2011.11.07 19:25:36 | 000,486,942 | ---- | M] () -- C:\Users\lulu\Desktop\Einleitungsskript.pdf [2011.11.07 19:25:24 | 000,046,325 | ---- | M] () -- C:\Users\lulu\Desktop\Deixis 1 (Märländer, Person, Thierfelder).pdf [2011.11.07 19:25:14 | 000,137,274 | ---- | M] () -- C:\Users\lulu\Desktop\print.pdf [2011.11.06 17:50:05 | 000,891,567 | ---- | M] () -- C:\Users\lulu\Desktop\IMG_0879.jpg [2011.11.06 17:49:00 | 000,950,024 | ---- | M] () -- C:\Users\lulu\Desktop\DSC_7833.jpg [2011.11.06 17:48:11 | 001,255,049 | ---- | M] () -- C:\Users\lulu\Desktop\DSC_8312.jpg [2011.11.06 17:47:58 | 001,510,198 | ---- | M] () -- C:\Users\lulu\Desktop\DSC_8349.jpg [2011.11.06 17:47:23 | 001,670,767 | ---- | M] () -- C:\Users\lulu\Desktop\*** (278 von 996).jpg [2011.11.06 17:47:08 | 003,037,418 | ---- | M] () -- C:\Users\lulu\Desktop\*** (342 von 996).jpg [2011.11.06 17:46:51 | 001,688,215 | ---- | M] () -- C:\Users\lulu\Desktop\*** (511 von 996).jpg [2011.11.06 17:46:37 | 002,944,042 | ---- | M] () -- C:\Users\lulu\Desktop\*** (565 von 996).jpg [2011.11.06 17:46:11 | 001,905,957 | ---- | M] () -- C:\Users\lulu\Desktop\*** (607 von 996).jpg [2011.11.06 17:45:27 | 001,590,358 | ---- | M] () -- C:\Users\lulu\Desktop\*** (755 von 996).jpg [2011.11.06 17:16:09 | 000,145,744 | ---- | M] () -- C:\Users\lulu\Desktop\202904cfbb6ebd0d5156ee644fa60ba3126727760317988642 (1).jpg [2011.11.06 17:16:01 | 000,145,744 | ---- | M] () -- C:\Users\lulu\Desktop\202904cfbb6ebd0d5156ee644fa60ba3126727760317988642.jpg [2011.11.05 18:31:14 | 000,000,734 | ---- | M] () -- C:\Users\lulu\Desktop\81F.gif [2011.11.05 18:31:14 | 000,000,642 | ---- | M] () -- C:\Users\lulu\Desktop\B60.gif [2011.11.05 18:31:14 | 000,000,108 | ---- | M] () -- C:\Users\lulu\Desktop\4B0.gif [2011.11.05 17:21:01 | 000,019,146 | ---- | M] () -- C:\Users\lulu\Desktop\Unbenannt 1.odt [2011.11.05 14:41:48 | 001,111,474 | ---- | M] () -- C:\Users\lulu\Desktop\LogikundKonversation.pdf [2011.11.05 10:20:34 | 022,367,754 | ---- | M] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5 (5).zip [2011.11.05 10:19:57 | 009,608,300 | ---- | M] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5 (4).zip [2011.11.05 10:19:33 | 005,665,181 | ---- | M] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5 (3).zip [2011.11.05 10:19:03 | 005,500,573 | ---- | M] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5 (2).zip [2011.11.05 10:18:44 | 003,878,787 | ---- | M] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5 (1).zip [2011.11.05 10:18:12 | 021,771,789 | ---- | M] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5.zip [2011.11.05 08:51:20 | 005,022,579 | ---- | M] () -- C:\Users\lulu\Desktop\IMG_7909.JPG [2011.11.05 08:51:18 | 005,210,022 | ---- | M] () -- C:\Users\lulu\Desktop\IMG_7936.JPG [2011.11.05 08:49:46 | 000,069,388 | ---- | M] () -- C:\Users\lulu\Desktop\b5ce6e8d4b79a34af84fbc3faba4325b126918436983383475.jpg [2011.11.05 08:49:36 | 000,100,344 | ---- | M] () -- C:\Users\lulu\Desktop\121323692dbb6cda80ee739653d5e699126908570715175424.jpg [2011.11.05 08:49:16 | 000,063,129 | ---- | M] () -- C:\Users\lulu\Desktop\b244136bb8dff16d43ce9f81aebeadc3126933148078562750.jpg [2011.11.05 08:48:50 | 000,113,617 | ---- | M] () -- C:\Users\lulu\Desktop\e0165e55f75d9eca73e02503b1d4d45c127006316943486172.jpg [2011.11.05 08:46:41 | 000,151,791 | ---- | M] () -- C:\Users\lulu\Desktop\f85bb052d8934eccf1f5fd81fd378f63129339342012131702.jpg [2011.11.05 08:46:19 | 000,094,876 | ---- | M] () -- C:\Users\lulu\Desktop\9ab20919f4ceab2f353dafb77a643b32127124482953425653.jpg [2011.11.05 08:46:15 | 000,142,035 | ---- | M] () -- C:\Users\lulu\Desktop\b2ad0541f378835d9f507a43f3f0daf0127006355916485132.jpg [2011.11.05 08:46:10 | 000,159,426 | ---- | M] () -- C:\Users\lulu\Desktop\075f9c815579baed160304d76fc780a7128709169438097924.jpg [2011.11.05 08:45:50 | 000,084,944 | ---- | M] () -- C:\Users\lulu\Desktop\150e3ddf598ba7cc414427535ec4827e127133340786705684.jpg [2011.11.04 22:53:19 | 000,210,025 | ---- | M] () -- C:\Users\lulu\Desktop\ansp-2.jpg [2011.11.04 22:51:49 | 000,132,037 | ---- | M] () -- C:\Users\lulu\Desktop\anba.jpg [2011.11.04 20:45:14 | 000,000,806 | ---- | M] () -- C:\Users\lulu\Desktop\Die Sims 3 - Verknüpfung.lnk [2011.11.03 10:51:48 | 000,097,151 | ---- | M] () -- C:\Users\lulu\Desktop\wasp.pdf [2011.11.02 23:35:25 | 000,036,730 | ---- | M] () -- C:\Users\lulu\Desktop\OpenDocument Text (neu).odt [2011.10.23 17:56:45 | 000,279,295 | ---- | M] () -- C:\Users\lulu\Desktop\Fotografie Studieren.rtf [2011.10.17 19:52:59 | 000,025,852 | ---- | M] () -- C:\Users\lulu\Desktop\Böll - Ansichten eines Clowns.odt [2011.10.14 21:40:35 | 000,099,781 | ---- | M] () -- C:\Windows\War3Unin.dat [2011.10.14 21:33:17 | 000,139,264 | ---- | M] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe [2011.10.14 21:33:17 | 000,002,829 | ---- | M] () -- C:\Windows\War3Unin.pif [2011.10.14 12:57:44 | 003,614,792 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT ========== Files Created - No Company Name ========== [2011.11.09 04:51:40 | 000,022,537 | ---- | C] () -- C:\Users\lulu\Desktop\Breitz Notizen.odt [2011.11.09 03:05:19 | 001,134,426 | ---- | C] () -- C:\Users\lulu\Desktop\Candice Breitz.odp [2011.11.08 23:26:17 | 000,010,923 | ---- | C] () -- C:\Users\lulu\Desktop\teufel_pakt_fluch.gif [2011.11.08 23:23:51 | 000,582,392 | ---- | C] () -- C:\Users\lulu\Desktop\Brunnenvergiftung.jpg [2011.11.08 10:02:40 | 000,112,658 | ---- | C] () -- C:\Users\lulu\Desktop\Versuch_Kugelschanze_Kurz.pdf [2011.11.08 08:15:27 | 000,000,660 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk [2011.11.07 22:09:21 | 000,000,535 | ---- | C] () -- C:\Users\Public\Desktop\iLivid Download Manager.lnk [2011.11.07 21:39:35 | 000,743,593 | ---- | C] () -- C:\Users\lulu\Desktop\Juden.odt [2011.11.07 19:25:39 | 000,486,942 | ---- | C] () -- C:\Users\lulu\Desktop\Einleitungsskript.pdf [2011.11.07 19:25:27 | 000,046,325 | ---- | C] () -- C:\Users\lulu\Desktop\Deixis 1 (Märländer, Person, Thierfelder).pdf [2011.11.07 19:25:18 | 000,137,274 | ---- | C] () -- C:\Users\lulu\Desktop\print.pdf [2011.11.06 17:50:04 | 000,891,567 | ---- | C] () -- C:\Users\lulu\Desktop\IMG_0879.jpg [2011.11.06 17:48:57 | 000,950,024 | ---- | C] () -- C:\Users\lulu\Desktop\DSC_7833.jpg [2011.11.06 17:48:08 | 001,255,049 | ---- | C] () -- C:\Users\lulu\Desktop\DSC_8312.jpg [2011.11.06 17:47:55 | 001,510,198 | ---- | C] () -- C:\Users\lulu\Desktop\DSC_8349.jpg [2011.11.06 17:47:21 | 001,670,767 | ---- | C] () -- C:\Users\lulu\Desktop\*** (278 von 996).jpg [2011.11.06 17:47:06 | 003,037,418 | ---- | C] () -- C:\Users\lulu\Desktop\*** (342 von 996).jpg [2011.11.06 17:46:49 | 001,688,215 | ---- | C] () -- C:\Users\lulu\Desktop\*** (511 von 996).jpg [2011.11.06 17:46:35 | 002,944,042 | ---- | C] () -- C:\Users\lulu\Desktop\*** (565 von 996).jpg [2011.11.06 17:46:07 | 001,905,957 | ---- | C] () -- C:\Users\lulu\Desktop\*** (607 von 996).jpg [2011.11.06 17:45:25 | 001,590,358 | ---- | C] () -- C:\Users\lulu\Desktop\*** (755 von 996).jpg [2011.11.06 17:16:10 | 000,145,744 | ---- | C] () -- C:\Users\lulu\Desktop\202904cfbb6ebd0d5156ee644fa60ba3126727760317988642 (1).jpg [2011.11.06 17:16:04 | 000,145,744 | ---- | C] () -- C:\Users\lulu\Desktop\202904cfbb6ebd0d5156ee644fa60ba3126727760317988642.jpg [2011.11.05 19:31:37 | 000,000,734 | ---- | C] () -- C:\Users\lulu\Desktop\81F.gif [2011.11.05 19:31:37 | 000,000,642 | ---- | C] () -- C:\Users\lulu\Desktop\B60.gif [2011.11.05 19:31:37 | 000,000,108 | ---- | C] () -- C:\Users\lulu\Desktop\4B0.gif [2011.11.05 17:20:59 | 000,019,146 | ---- | C] () -- C:\Users\lulu\Desktop\Unbenannt 1.odt [2011.11.05 14:41:51 | 001,111,474 | ---- | C] () -- C:\Users\lulu\Desktop\LogikundKonversation.pdf [2011.11.05 10:20:20 | 022,367,754 | ---- | C] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5 (5).zip [2011.11.05 10:19:47 | 009,608,300 | ---- | C] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5 (4).zip [2011.11.05 10:19:27 | 005,665,181 | ---- | C] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5 (3).zip [2011.11.05 10:18:58 | 005,500,573 | ---- | C] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5 (2).zip [2011.11.05 10:18:40 | 003,878,787 | ---- | C] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5 (1).zip [2011.11.05 10:17:58 | 021,771,789 | ---- | C] () -- C:\Users\lulu\Desktop\Attachments_2011_11_5.zip [2011.11.05 09:53:38 | 005,022,579 | ---- | C] () -- C:\Users\lulu\Desktop\IMG_7909.JPG [2011.11.05 09:53:37 | 005,210,022 | ---- | C] () -- C:\Users\lulu\Desktop\IMG_7936.JPG [2011.11.05 08:49:47 | 000,069,388 | ---- | C] () -- C:\Users\lulu\Desktop\b5ce6e8d4b79a34af84fbc3faba4325b126918436983383475.jpg [2011.11.05 08:49:37 | 000,100,344 | ---- | C] () -- C:\Users\lulu\Desktop\121323692dbb6cda80ee739653d5e699126908570715175424.jpg [2011.11.05 08:49:17 | 000,063,129 | ---- | C] () -- C:\Users\lulu\Desktop\b244136bb8dff16d43ce9f81aebeadc3126933148078562750.jpg [2011.11.05 08:48:51 | 000,113,617 | ---- | C] () -- C:\Users\lulu\Desktop\e0165e55f75d9eca73e02503b1d4d45c127006316943486172.jpg [2011.11.05 08:46:42 | 000,151,791 | ---- | C] () -- C:\Users\lulu\Desktop\f85bb052d8934eccf1f5fd81fd378f63129339342012131702.jpg [2011.11.05 08:46:20 | 000,094,876 | ---- | C] () -- C:\Users\lulu\Desktop\9ab20919f4ceab2f353dafb77a643b32127124482953425653.jpg [2011.11.05 08:46:16 | 000,142,035 | ---- | C] () -- C:\Users\lulu\Desktop\b2ad0541f378835d9f507a43f3f0daf0127006355916485132.jpg [2011.11.05 08:46:11 | 000,159,426 | ---- | C] () -- C:\Users\lulu\Desktop\075f9c815579baed160304d76fc780a7128709169438097924.jpg [2011.11.05 08:45:56 | 000,084,944 | ---- | C] () -- C:\Users\lulu\Desktop\150e3ddf598ba7cc414427535ec4827e127133340786705684.jpg [2011.11.05 08:04:50 | 001,039,024 | ---- | C] () -- C:\Users\lulu\Desktop\*** (23 von 996).jpg [2011.11.04 22:53:20 | 000,210,025 | ---- | C] () -- C:\Users\lulu\Desktop\ansp-2.jpg [2011.11.04 22:51:54 | 000,132,037 | ---- | C] () -- C:\Users\lulu\Desktop\anba.jpg [2011.11.04 20:45:14 | 000,000,806 | ---- | C] () -- C:\Users\lulu\Desktop\Die Sims 3 - Verknüpfung.lnk [2011.11.03 10:51:54 | 000,097,151 | ---- | C] () -- C:\Users\lulu\Desktop\wasp.pdf [2011.11.03 00:13:26 | 000,066,459 | ---- | C] () -- C:\Users\lulu\Desktop\AB-Kirchner-Selbstbildnis.pdf [2011.11.03 00:13:26 | 000,029,630 | ---- | C] () -- C:\Users\lulu\Desktop\AB-Entartete Kunst.rtf [2011.11.02 21:58:19 | 000,036,730 | ---- | C] () -- C:\Users\lulu\Desktop\OpenDocument Text (neu).odt [2011.10.23 17:06:13 | 000,279,295 | ---- | C] () -- C:\Users\lulu\Desktop\Fotografie Studieren.rtf [2011.10.17 19:47:02 | 000,025,852 | ---- | C] () -- C:\Users\lulu\Desktop\Böll - Ansichten eines Clowns.odt [2011.10.14 21:29:41 | 000,099,781 | ---- | C] () -- C:\Windows\War3Unin.dat [2011.10.14 21:29:41 | 000,002,829 | ---- | C] () -- C:\Windows\War3Unin.pif [2011.07.08 20:00:10 | 000,018,048 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll [2011.07.08 20:00:09 | 002,340,992 | ---- | C] () -- C:\Windows\System32\BootMan.exe [2011.07.08 20:00:09 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe [2011.07.08 20:00:09 | 000,014,216 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys [2011.07.08 20:00:09 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys [2011.07.05 18:56:00 | 000,012,288 | ---- | C] () -- C:\Users\lulu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.07.05 17:12:36 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2011.07.05 17:12:01 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2011.07.05 17:12:01 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin [2011.07.05 11:35:23 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat [2010.01.13 11:42:06 | 000,065,536 | ---- | C] () -- C:\Windows\System32\HPPLVS.dll [2006.11.02 16:33:31 | 000,630,842 | ---- | C] () -- C:\Windows\System32\perfh007.dat [2006.11.02 16:33:31 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat [2006.11.02 16:33:31 | 000,127,260 | ---- | C] () -- C:\Windows\System32\perfc007.dat [2006.11.02 16:33:31 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat [2006.11.02 13:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2006.11.02 13:47:37 | 003,614,792 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006.11.02 11:33:01 | 000,598,096 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2006.11.02 11:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2006.11.02 11:33:01 | 000,105,070 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2006.11.02 11:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2006.11.02 11:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll [2006.11.02 11:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2006.11.02 09:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2006.11.02 09:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006.11.02 08:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat < End of report > |
| Themen zu http://www.searchqu.com/406 |
| adobe, autorun, bandoo, bho, computer, computern, defender, desktop, explorer, firefox, format, google, google chrome, home, icq, ilivid, langs, logfile, malwarebytes, microsoft, microsoft security, plug-in, problem, programme, registry, scan, searchqu toolbar, security, software, updates, vista, winlogon, wmp |
Baum-Darstellung