Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   C:\ProgramData\BitGuard\2.7.1832.68\...,ßoader.dll (https://www.trojaner-board.de/145534-c-programdata-bitguard-2-7-1832-68-ssoader-dll.html)

isabella0701 03.12.2013 11:43
C:\ProgramData\BitGuard\2.7.1832.68\...,ßoader.dll
 
Hilfe, ich kenn mich nicht mehr aus, hab ein bissl mitgelesen, hab auch das Problem mit avira aber was soll ich jetzt tun

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-12-2013
Ran by isabella (administrator) on ISABELLA-LAPTOP on 03-12-2013 11:27:31
Running from C:\Users\isabella\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\3DataManager\WTGService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
() C:\Program Files\ASUS\ASUS Secure Delete\ADDEL.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
() C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Sentelic Corporation) C:\Program Files\FSP\FspUip.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(AsusTek) C:\Program Files\FSP\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files\FSP\QuickGesture\x64\QuickGesture64.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(syncables, LLC) C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
() C:\Program Files (x86)\3DataManager\3DataManager_Launcher.exe
(Dropbox, Inc.) C:\Users\isabella\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Facebook) C:\Users\isabella\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(syncables, LLC) C:\Program Files (x86)\syncables\syncables desktop\syncablesMAPI.exe
(ASUS) C:\Windows\AsScrPro.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Windows (R) Win 7 DDK provider) C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(ParetoLogic, Inc.) C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\agent.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [fspuip] - C:\Program Files\FSP\FspUip.exe [4420976 2011-10-14] (Sentelic Corporation)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452456 2012-02-21] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [961184 2011-08-02] (Atheros Communications)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [798880 2011-08-02] (Atheros Commnucations)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-29] ()
HKLM\...\Run: [Setwallpaper] - c:\programdata\SetWallpaper.cmd
HKLM\...\Run: [qgesture32] - C:\Program Files\FSP\QuickGesture\x86\QuickGesture.exe [19824 2011-10-14] (AsusTek)
HKLM\...\Run: [qgesture64] - C:\Program Files\FSP\QuickGesture\x64\QuickGesture64.exe [21360 2011-10-14] (AsusTek)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE [2779024 2011-03-14] (CANON INC.)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Syncables] - C:\Program Files (x86)\syncables\syncables desktop\syncables.exe [370480 2010-07-19] (syncables, LLC)
HKCU\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-02-16] (Google Inc.)
HKCU\...\Run: [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-06] (Acresso Corporation)
HKCU\...\Run: [Facebook Update] - C:\Users\isabella\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-13] (Facebook Inc.)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-09-04] (Samsung)
HKCU\...\Run: [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [578560 2013-04-18] (Samsung Electronics)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
HKCU\...\Run: [GoogleChromeAutoLaunch_472D4B6D0323DDC174046419E7E91FC1] - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863184 2013-11-14] (Google Inc.)
MountPoints2: D - D:\.\Autorun.exe AUTORUN=1
MountPoints2: E - E:\.\Autorun.exe AUTORUN=1
MountPoints2: {264687cd-bec6-11e1-9382-742f68cc8657} - D:\.\Autorun.exe AUTORUN=1
HKLM-x32\...\Run: [ASUSPRP] - C:\Program Files (x86)\ASUS\APRP\aprp.exe [2018032 2011-04-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] - C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [731472 2011-02-23] (ecareme)
HKLM-x32\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3058304 2011-10-23] (ASUS)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1568976 2012-06-20] (Ask)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-09-04] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1611160 2011-03-28] (CANON INC.)
HKLM-x32\...\Run: [ATKOSD2] - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-24] (ASUS)
HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [FLxHCIm64] - C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe [48128 2012-01-16] (Windows (R) Win 7 DDK provider)
HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-02] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
AppInit_DLLs: C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll [1958880 2013-11-18] ()
Startup: C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\isabella\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
ShortcutTarget: Facebook Messenger.lnk -> C:\Users\isabella\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe (Facebook)
Startup: C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=1C1F162F68CBFAF3&affID=125036&tsp=5037
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=1C1F162F68CBFAF3&affID=125036&tsp=5037
URLSearchHook: HKLM-x32 - Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files (x86)\Winload\prxtbWinl.dll (Conduit Ltd.)
URLSearchHook: HKCU - Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files (x86)\Winload\prxtbWinl.dll (Conduit Ltd.)
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=1C1F162F68CBFAF3&affID=125036&tsp=5037
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: No Name - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -  No File
BHO-x32: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files (x86)\Winload\prxtbWinl.dll (Conduit Ltd.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -  No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files (x86)\Winload\prxtbWinl.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21
Tcpip\..\Interfaces\{75B9DF25-D0F9-4FA5-B15B-65674403A875}: [NameServer]213.33.99.70,80.120.17.70

Chrome:
=======
CHR HomePage: https://www.google.at/
CHR RestoreOnStartup: "https://www.google.at/"
CHR DefaultSearchURL: (Google) - hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_deAT468
CHR DefaultSuggestURL: (Google) -      "suggest_url": "",
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility for IJ) - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U33) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.330.3) - C:\Windows\SysWOW64\npdeployJava1.dll No File
CHR Plugin: (Zeon Plus) - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Facebook Desktop) - C:\Users\isabella\AppData\Local\Facebook\Messenger\2.1.4570.0\npFbDesktopPlugin.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Extension: (DealPly) - C:\Users\isabella\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.5.3.0_0
CHR Extension: (Google Wallet) - C:\Users\isabella\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR HKLM-x32\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files (x86)\DealPly\DealPly.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-02-16] (ASUS)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-08-02] (Atheros)
R2 BitGuard; C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [3780064 2013-11-18] ()
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [138192 2011-02-07] ()
R2 WTGService; C:\Program Files (x86)\3DataManager\WTGService.exe [333264 2010-07-08] ()

==================== Drivers (Whitelisted) ====================

R3 AiCharger; C:\Windows\SysWow64\DRIVERS\AiCharger.sys [17152 2012-01-30] (ASUSTek Computer Inc.)
R0 assd; C:\Windows\System32\Drivers\assd.sys [27056 2011-10-28] (ASUS Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [106904 2013-11-26] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-11-26] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
S3 AX88772B; C:\Windows\System32\DRIVERS\ax88772b.sys [98816 2010-12-31] (ASIX Electronics Corp.)
R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [65024 2012-01-10] (Fresco Logic)
R3 fspad_win764; C:\Windows\System32\DRIVERS\fspad_win764.sys [69488 2011-10-14] (Sentelic Corporation)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-03 11:27 - 2013-12-03 11:28 - 00021893 _____ C:\Users\isabella\Downloads\FRST.txt
2013-12-03 11:27 - 2013-12-03 11:27 - 00000000 ____D C:\FRST
2013-12-03 11:26 - 2013-12-03 11:27 - 01959434 _____ (Farbar) C:\Users\isabella\Downloads\FRST64.exe
2013-12-03 11:20 - 2013-12-03 11:20 - 05249448 _____ (ParetoLogic Inc.) C:\Users\isabella\Downloads\ParetoLogic PC Health Advisor_de.exe
2013-12-03 11:20 - 2013-12-03 11:20 - 00003308 _____ C:\Windows\System32\Tasks\PC Health Advisor
2013-12-03 11:20 - 2013-12-03 11:20 - 00003288 _____ C:\Windows\System32\Tasks\PC Health Advisor Defrag
2013-12-03 11:20 - 2013-12-03 11:20 - 00003270 _____ C:\Windows\System32\Tasks\ParetoLogic Update Version3
2013-12-03 11:20 - 2013-12-03 11:20 - 00003144 _____ C:\Windows\System32\Tasks\ParetoLogic Registration3
2013-12-03 11:20 - 2013-12-03 11:20 - 00001103 _____ C:\Users\isabella\Desktop\ParetoLogic PC Health Advisor.lnk
2013-12-03 11:20 - 2013-12-03 11:20 - 00000474 _____ C:\Windows\Tasks\ParetoLogic Registration3.job
2013-12-03 11:20 - 2013-12-03 11:20 - 00000448 _____ C:\Windows\Tasks\ParetoLogic Update Version3.job
2013-12-03 11:20 - 2013-12-03 11:20 - 00000406 _____ C:\Windows\Tasks\PC Health Advisor Defrag.job
2013-12-03 11:20 - 2013-12-03 11:20 - 00000388 _____ C:\Windows\Tasks\PC Health Advisor.job
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\DriverCure
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\ProgramData\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Program Files (x86)\ParetoLogic
2013-12-03 11:15 - 2013-12-03 11:15 - 00003420 _____ C:\Windows\System32\Tasks\BitGuard
2013-12-03 08:44 - 2013-12-03 08:44 - 00262144 _____ C:\Windows\Minidump\120313-7051-01.dmp
2013-12-03 08:44 - 2013-12-03 08:44 - 00000000 ____D C:\Windows\Minidump
2013-12-02 20:43 - 2013-12-02 20:43 - 00003029 _____ C:\Users\isabella\Desktop\Microsoft Word 2010.lnk
2013-12-02 20:41 - 2013-12-02 20:41 - 00000000 ____D C:\Users\isabella\AppData\Local\{EF277263-4909-48E4-898E-7200219F6C0B}
2013-12-02 07:46 - 2013-12-02 07:46 - 00000000 ____D C:\Users\isabella\AppData\Local\{46636894-A7D6-4603-981E-0B991CA7B1A0}
2013-12-01 22:24 - 2013-12-01 22:24 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-12-01 22:18 - 2013-12-01 22:19 - 49847296 _____ C:\Users\isabella\Downloads\VO 1815_Handout 9.ppt
2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Users\isabella\AppData\Local\{099D6794-1593-419D-97A2-783E7CE0C03C}
2013-11-30 11:02 - 2013-11-30 11:02 - 00000000 ____D C:\Users\isabella\AppData\Local\{DBEE5C73-4181-485E-B01B-E83B7D102788}
2013-11-29 20:38 - 2013-11-29 20:38 - 00000000 ____D C:\Users\isabella\AppData\Local\{7FE91EA1-603E-4A6F-B1E7-3F914F2E73B6}
2013-11-28 18:51 - 2013-11-28 18:51 - 00000000 ____D C:\Users\isabella\AppData\Local\{9E529A81-E2D2-4A48-8324-9E7DB11BCEF5}
2013-11-27 21:57 - 2013-11-27 21:57 - 00000000 ____D C:\Users\isabella\AppData\Local\{5A3FA798-E5FB-4531-92FC-255BA21515CB}
2013-11-27 08:57 - 2013-11-27 08:57 - 00000000 ____D C:\Users\isabella\AppData\Local\{976132AF-09FF-4205-9DC2-BB1AC70218C5}
2013-11-26 13:33 - 2013-11-26 13:34 - 00000000 ____D C:\Users\isabella\AppData\Local\{746C9AC0-5A23-411F-9F24-27B090DB0087}
2013-11-25 21:49 - 2013-12-02 10:24 - 00112128 ___SH C:\Users\isabella\Thumbs.db
2013-11-25 20:46 - 2013-11-25 20:46 - 00000000 ____D C:\Users\isabella\AppData\Local\{BE16B712-811A-4376-8208-4360EE6F6ED4}
2013-11-25 20:44 - 2013-11-25 20:44 - 00000000 ____D C:\Users\isabella\AppData\Local\{28340B2C-4688-49B5-A55B-B60516AE53A3}
2013-11-25 09:14 - 2013-11-25 09:14 - 66112000 _____ C:\Users\isabella\Downloads\VO 1815_Handout 8.ppt
2013-11-25 08:20 - 2013-11-25 08:21 - 00000000 ____D C:\Users\isabella\AppData\Local\{584097FE-112E-43B6-BE35-7817BFDC808B}
2013-11-24 22:24 - 2013-11-24 22:24 - 00000000 ____D C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-11-24 14:46 - 2013-11-24 15:57 - 00000000 ____D C:\Users\isabella\Documents\SelfMV
2013-11-24 11:29 - 2013-11-24 11:29 - 00000000 ____D C:\Users\isabella\AppData\Local\{B5145A5D-16F7-4788-8775-64AA52D414C8}
2013-11-23 13:29 - 2013-11-23 13:29 - 00000000 ____D C:\Users\isabella\AppData\Local\{8CCBBC97-3034-42A1-8EBA-99D95D88599E}
2013-11-23 13:29 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-11-22 11:04 - 2013-11-22 11:04 - 00000000 ____D C:\Users\isabella\AppData\Local\{265EADE8-528E-415A-926B-F88D4B117736}
2013-11-22 10:56 - 2013-11-22 10:56 - 00000000 ____D C:\Users\isabella\AppData\Local\{9ACD9298-C8D4-455A-9B68-768903116E63}
2013-11-19 21:09 - 2013-11-19 21:09 - 00000000 ____D C:\Users\isabella\AppData\Local\{E37BF6E1-191C-4B5C-9D18-469742129299}
2013-11-19 11:36 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-19 11:33 - 2013-11-19 11:33 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-19 11:33 - 2013-11-19 11:33 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-19 11:33 - 2013-11-19 11:33 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-19 11:33 - 2013-11-19 11:33 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-19 11:33 - 2013-11-19 11:33 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-19 11:33 - 2013-11-19 11:33 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-19 11:33 - 2013-11-19 11:33 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-19 11:33 - 2013-11-19 11:33 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-19 11:33 - 2013-11-19 11:33 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-19 11:33 - 2013-11-19 11:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-19 11:32 - 2013-11-19 11:32 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 11:31 - 2013-11-19 11:36 - 00010074 _____ C:\Windows\IE11_main.log
2013-11-19 08:15 - 2013-11-19 08:15 - 00000000 ____D C:\Users\isabella\AppData\Local\{A17C9FF6-9321-4887-8BB9-996DD64FF695}
2013-11-18 18:37 - 2013-11-18 18:37 - 00000000 ____D C:\Users\isabella\AppData\Local\{C480A6D6-4EE3-4805-9F65-ABF02E97CDFB}
2013-11-18 09:47 - 2013-11-18 09:47 - 00000000 ____D C:\Users\isabella\AppData\Local\{746990C3-A3E7-441D-833B-CE432048B5E6}
2013-11-18 09:44 - 2013-11-18 09:45 - 15083520 _____ C:\Users\isabella\Downloads\VO 1815_Handout 7.ppt
2013-11-18 07:25 - 2013-11-18 07:25 - 00000000 ____D C:\Users\isabella\AppData\Local\{D38DE526-A028-4E80-9B65-983EB3C06828}
2013-11-17 20:16 - 2013-11-17 20:16 - 06346514 _____ C:\Users\isabella\Documents\19 Empty Chairs At Empty Tables.m4a
2013-11-17 20:16 - 2013-11-17 20:16 - 00004440 _____ C:\Users\isabella\Documents\facebook_ringtone_pop.m4a
2013-11-17 20:15 - 2013-11-17 20:15 - 08876731 _____ C:\Users\isabella\Documents\04 At The End Of The Day.m4a
2013-11-17 20:15 - 2013-11-17 20:15 - 08575688 _____ C:\Users\isabella\Documents\11 ABC Cafe _ Red And Black.m4a
2013-11-17 20:12 - 2013-11-17 20:12 - 00096828 _____ C:\Users\isabella\Documents\Bild 2013-07-21 1.jpeg
2013-11-17 20:11 - 2013-11-17 20:11 - 00000843 _____ C:\Users\isabella\Downloads\sd.jnlp
2013-11-17 19:20 - 2013-11-26 08:12 - 00030720 ___SH C:\Users\isabella\Desktop\Thumbs.db
2013-11-17 18:41 - 2013-11-17 18:41 - 02520576 _____ C:\Users\isabella\Downloads\Stress Endfassung.ppt
2013-11-17 18:39 - 2013-11-17 18:40 - 02668544 _____ C:\Users\isabella\Downloads\Stress (3).ppt
2013-11-17 18:12 - 2013-11-17 18:12 - 00000000 ____D C:\Users\isabella\AppData\Local\{50B4E92E-523E-419A-8263-B781BE7B7889}
2013-11-14 10:30 - 2013-11-14 10:30 - 00000000 ____D C:\Users\isabella\AppData\Local\{1D474733-BDDA-4C56-951E-91469E795EFF}
2013-11-14 08:24 - 2013-11-14 08:24 - 00000000 ____D C:\Users\isabella\AppData\Local\{D66B127E-13B6-4BF8-928A-7B57CC386391}
2013-11-14 08:23 - 2013-11-14 08:23 - 00000000 ____D C:\Users\isabella\AppData\Local\{F49E5FE7-F19B-49EC-991D-4E64344B12B1}
2013-11-14 08:20 - 2013-11-14 08:20 - 00000000 ____D C:\Users\isabella\AppData\Local\{C5F3CEB6-A4FC-422A-AAA1-DEF42CBC5F83}
2013-11-13 12:49 - 2013-11-13 12:49 - 00001931 _____ C:\Users\isabella\Desktop\SharedDocs (TMHAUSER) - Verknüpfung.lnk
2013-11-13 12:49 - 2013-11-13 12:49 - 00001586 _____ C:\Users\isabella\Desktop\TMHAUSER - Verknüpfung.lnk
2013-11-13 11:12 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 11:12 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 11:12 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 11:12 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 11:12 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 11:12 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 11:12 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 11:12 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 11:12 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 11:12 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 11:12 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 11:12 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 11:12 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 11:12 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 11:12 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 11:12 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 11:12 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 11:12 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 11:12 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 11:12 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 11:12 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 11:12 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 11:12 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 11:12 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 11:12 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 11:12 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 11:12 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 11:12 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 11:12 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 11:12 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 11:06 - 2013-11-13 11:07 - 00000000 ____D C:\Users\isabella\AppData\Local\{128F5ADF-F3DB-47F8-A0FA-4E7A57F53FD0}
2013-11-12 15:17 - 2013-11-12 15:17 - 00000000 ____D C:\Users\isabella\AppData\Local\{C931B94B-5A68-4225-BCC8-4817CA6DF65E}
2013-11-11 21:51 - 2013-11-11 21:51 - 02015744 _____ C:\Users\isabella\Downloads\Stress (2) (2).ppt
2013-11-11 20:51 - 2013-11-11 20:51 - 02015744 _____ C:\Users\isabella\Downloads\Stress (2) (1).ppt
2013-11-11 20:40 - 2013-11-11 20:40 - 02240512 _____ C:\Users\isabella\Downloads\Stress (2).ppt
2013-11-11 10:49 - 2013-11-11 10:49 - 00000000 ____D C:\Users\isabella\AppData\Local\{E9797154-C802-4C64-8E1C-9B0D84A6BC32}
2013-11-11 09:48 - 2013-11-11 09:49 - 31172096 _____ C:\Users\isabella\Downloads\VO 1815_Handout 6.ppt
2013-11-10 21:47 - 2013-11-10 21:47 - 00000000 ____D C:\Users\isabella\AppData\Local\{CDA072FF-1A5C-4025-9BA8-28A7CC3A3611}
2013-11-10 08:56 - 2013-11-10 08:57 - 00000000 ____D C:\Users\isabella\AppData\Local\{50090820-2732-40E3-BB43-27FD4BF39033}
2013-11-08 10:07 - 2013-11-08 10:07 - 00000000 ____D C:\Users\isabella\AppData\Local\{DFDC5E00-7D56-4240-BBC5-79B8D4DF4A68}
2013-11-07 07:30 - 2013-11-07 07:31 - 00000000 ____D C:\Users\isabella\AppData\Local\{ED923DEF-92EB-4704-826C-D3CAAAAC0748}
2013-11-06 18:52 - 2013-11-06 18:52 - 00000000 ____D C:\Users\isabella\AppData\Local\{7567AD67-CAA6-40EE-884E-CD39278328DB}
2013-11-05 09:19 - 2013-11-05 09:19 - 00000000 ____D C:\Users\isabella\AppData\Local\{46F98E1F-3AA9-4FB7-8B62-AB289EA7F790}
2013-11-04 20:26 - 2013-11-04 20:26 - 00000000 ____D C:\Users\isabella\AppData\Local\{C75AB8AA-0341-45D6-8120-22CB91879743}
2013-11-04 09:02 - 2013-11-04 09:02 - 04520960 _____ C:\Users\isabella\Downloads\VO 1815_Handout 4.ppt
2013-11-04 09:01 - 2013-11-04 09:01 - 10590208 _____ C:\Users\isabella\Downloads\VO 1815_Handout 5.ppt
2013-11-04 08:25 - 2013-11-04 08:25 - 00000000 ____D C:\Users\isabella\AppData\Local\{2B8AC3AB-4462-4A84-A6ED-19ED6191D763}
2013-11-03 18:16 - 2013-11-03 18:17 - 00000000 ____D C:\Users\isabella\AppData\Local\{859D5E4B-AE3B-4A3E-8381-B29C9643AA8F}
2013-11-03 15:11 - 2013-11-03 15:11 - 02166272 _____ C:\Users\isabella\Downloads\Stress (1).ppt
2013-11-03 10:29 - 2013-11-03 10:29 - 02291200 _____ C:\Users\isabella\Downloads\Stress.ppt

==================== One Month Modified Files and Folders =======

2013-12-03 17:36 - 2013-03-30 14:50 - 00000000 ____D C:\Users\privat
2013-12-03 17:36 - 2012-04-20 09:03 - 00000000 ____D C:\ProgramData\P4G
2013-12-03 17:36 - 2012-01-21 13:29 - 00000000 ____D C:\Users\isabella\AppData\Local\ASUS
2013-12-03 17:36 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-12-03 11:28 - 2013-12-03 11:27 - 00021893 _____ C:\Users\isabella\Downloads\FRST.txt
2013-12-03 11:27 - 2013-12-03 11:27 - 00000000 ____D C:\FRST
2013-12-03 11:27 - 2013-12-03 11:26 - 01959434 _____ (Farbar) C:\Users\isabella\Downloads\FRST64.exe
2013-12-03 11:25 - 2012-04-05 12:58 - 00000000 ___RD C:\Users\isabella\Dropbox
2013-12-03 11:25 - 2012-04-05 12:56 - 00000000 ____D C:\Users\isabella\AppData\Roaming\Dropbox
2013-12-03 11:23 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-03 11:23 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-03 11:20 - 2013-12-03 11:20 - 05249448 _____ (ParetoLogic Inc.) C:\Users\isabella\Downloads\ParetoLogic PC Health Advisor_de.exe
2013-12-03 11:20 - 2013-12-03 11:20 - 00003308 _____ C:\Windows\System32\Tasks\PC Health Advisor
2013-12-03 11:20 - 2013-12-03 11:20 - 00003288 _____ C:\Windows\System32\Tasks\PC Health Advisor Defrag
2013-12-03 11:20 - 2013-12-03 11:20 - 00003270 _____ C:\Windows\System32\Tasks\ParetoLogic Update Version3
2013-12-03 11:20 - 2013-12-03 11:20 - 00003144 _____ C:\Windows\System32\Tasks\ParetoLogic Registration3
2013-12-03 11:20 - 2013-12-03 11:20 - 00001103 _____ C:\Users\isabella\Desktop\ParetoLogic PC Health Advisor.lnk
2013-12-03 11:20 - 2013-12-03 11:20 - 00000474 _____ C:\Windows\Tasks\ParetoLogic Registration3.job
2013-12-03 11:20 - 2013-12-03 11:20 - 00000448 _____ C:\Windows\Tasks\ParetoLogic Update Version3.job
2013-12-03 11:20 - 2013-12-03 11:20 - 00000406 _____ C:\Windows\Tasks\PC Health Advisor Defrag.job
2013-12-03 11:20 - 2013-12-03 11:20 - 00000388 _____ C:\Windows\Tasks\PC Health Advisor.job
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\DriverCure
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\ProgramData\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Program Files (x86)\ParetoLogic
2013-12-03 11:20 - 2011-10-23 23:36 - 02026592 _____ C:\Windows\WindowsUpdate.log
2013-12-03 11:20 - 2011-02-19 05:24 - 00669360 _____ C:\Windows\system32\perfh007.dat
2013-12-03 11:20 - 2011-02-19 05:24 - 00135040 _____ C:\Windows\system32\perfc007.dat
2013-12-03 11:20 - 2009-07-14 06:13 - 01538262 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-03 11:19 - 2012-01-26 20:22 - 00001114 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-03 11:17 - 2013-02-15 10:09 - 00271360 _____ C:\Users\isabella\Documents\isabella@hauser-tischler.at.pst
2013-12-03 11:16 - 2012-01-23 18:13 - 00000374 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2013-12-03 11:15 - 2013-12-03 11:15 - 00003420 _____ C:\Windows\System32\Tasks\BitGuard
2013-12-03 11:15 - 2012-01-26 20:22 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-03 11:15 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-03 11:15 - 2009-07-14 05:51 - 00138034 _____ C:\Windows\setupact.log
2013-12-03 10:45 - 2012-04-14 15:19 - 00001150 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1556147371-2361165161-3185572558-1000UA.job
2013-12-03 10:45 - 2012-04-14 15:19 - 00001128 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1556147371-2361165161-3185572558-1000Core.job
2013-12-03 10:45 - 2012-04-05 17:19 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-03 08:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2013-12-03 08:44 - 2013-12-03 08:44 - 00262144 _____ C:\Windows\Minidump\120313-7051-01.dmp
2013-12-03 08:44 - 2013-12-03 08:44 - 00000000 ____D C:\Windows\Minidump
2013-12-03 08:44 - 2012-01-21 13:29 - 00000000 ____D C:\Users\isabella
2013-12-03 08:43 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-02 22:31 - 2012-02-22 19:03 - 00000000 ____D C:\ProgramData\CanonIJPLM
2013-12-02 22:01 - 2013-04-06 18:55 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E0E09D29-A834-46F0-A1D1-B8D2DFE2FE75}
2013-12-02 20:43 - 2013-12-02 20:43 - 00003029 _____ C:\Users\isabella\Desktop\Microsoft Word 2010.lnk
2013-12-02 20:41 - 2013-12-02 20:41 - 00000000 ____D C:\Users\isabella\AppData\Local\{EF277263-4909-48E4-898E-7200219F6C0B}
2013-12-02 10:24 - 2013-11-25 21:49 - 00112128 ___SH C:\Users\isabella\Thumbs.db
2013-12-02 09:40 - 2012-08-30 19:40 - 00000000 ____D C:\Users\isabella\Desktop\Uni Wien
2013-12-02 07:46 - 2013-12-02 07:46 - 00000000 ____D C:\Users\isabella\AppData\Local\{46636894-A7D6-4603-981E-0B991CA7B1A0}
2013-12-01 22:24 - 2013-12-01 22:24 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-12-01 22:19 - 2013-12-01 22:18 - 49847296 _____ C:\Users\isabella\Downloads\VO 1815_Handout 9.ppt
2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Users\isabella\AppData\Local\{099D6794-1593-419D-97A2-783E7CE0C03C}
2013-11-30 11:02 - 2013-11-30 11:02 - 00000000 ____D C:\Users\isabella\AppData\Local\{DBEE5C73-4181-485E-B01B-E83B7D102788}
2013-11-30 10:02 - 2013-10-10 11:11 - 00000000 ____D C:\Users\isabella\Desktop\GR Mittelalter Quellen
2013-11-29 20:38 - 2013-11-29 20:38 - 00000000 ____D C:\Users\isabella\AppData\Local\{7FE91EA1-603E-4A6F-B1E7-3F914F2E73B6}
2013-11-28 18:51 - 2013-11-28 18:51 - 00000000 ____D C:\Users\isabella\AppData\Local\{9E529A81-E2D2-4A48-8324-9E7DB11BCEF5}
2013-11-28 09:55 - 2012-06-08 18:45 - 00000000 ____D C:\Users\isabella\Desktop\MDW
2013-11-27 21:57 - 2013-11-27 21:57 - 00000000 ____D C:\Users\isabella\AppData\Local\{5A3FA798-E5FB-4531-92FC-255BA21515CB}
2013-11-27 08:57 - 2013-11-27 08:57 - 00000000 ____D C:\Users\isabella\AppData\Local\{976132AF-09FF-4205-9DC2-BB1AC70218C5}
2013-11-26 13:34 - 2013-11-26 13:33 - 00000000 ____D C:\Users\isabella\AppData\Local\{746C9AC0-5A23-411F-9F24-27B090DB0087}
2013-11-26 08:14 - 2013-03-30 14:44 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-26 08:14 - 2013-03-30 14:44 - 00106904 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-11-26 08:12 - 2013-11-17 19:20 - 00030720 ___SH C:\Users\isabella\Desktop\Thumbs.db
2013-11-25 20:46 - 2013-11-25 20:46 - 00000000 ____D C:\Users\isabella\AppData\Local\{BE16B712-811A-4376-8208-4360EE6F6ED4}
2013-11-25 20:44 - 2013-11-25 20:44 - 00000000 ____D C:\Users\isabella\AppData\Local\{28340B2C-4688-49B5-A55B-B60516AE53A3}
2013-11-25 09:14 - 2013-11-25 09:14 - 66112000 _____ C:\Users\isabella\Downloads\VO 1815_Handout 8.ppt
2013-11-25 08:35 - 2011-04-13 02:39 - 00295210 _____ C:\Windows\PFRO.log
2013-11-25 08:21 - 2013-11-25 08:20 - 00000000 ____D C:\Users\isabella\AppData\Local\{584097FE-112E-43B6-BE35-7817BFDC808B}
2013-11-25 08:19 - 2013-10-16 07:25 - 00000000 ____D C:\ProgramData\BitGuard
2013-11-24 22:24 - 2013-11-24 22:24 - 00000000 ____D C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-11-24 17:48 - 2012-01-21 13:29 - 00000000 ___RD C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-24 15:57 - 2013-11-24 14:46 - 00000000 ____D C:\Users\isabella\Documents\SelfMV
2013-11-24 11:29 - 2013-11-24 11:29 - 00000000 ____D C:\Users\isabella\AppData\Local\{B5145A5D-16F7-4788-8775-64AA52D414C8}
2013-11-23 13:29 - 2013-11-23 13:29 - 00000000 ____D C:\Users\isabella\AppData\Local\{8CCBBC97-3034-42A1-8EBA-99D95D88599E}
2013-11-22 11:04 - 2013-11-22 11:04 - 00000000 ____D C:\Users\isabella\AppData\Local\{265EADE8-528E-415A-926B-F88D4B117736}
2013-11-22 10:56 - 2013-11-22 10:56 - 00000000 ____D C:\Users\isabella\AppData\Local\{9ACD9298-C8D4-455A-9B68-768903116E63}
2013-11-19 21:09 - 2013-11-19 21:09 - 00000000 ____D C:\Users\isabella\AppData\Local\{E37BF6E1-191C-4B5C-9D18-469742129299}
2013-11-19 13:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-19 11:38 - 2012-01-21 13:29 - 00001427 _____ C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-19 11:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-19 11:36 - 2013-11-19 11:31 - 00010074 _____ C:\Windows\IE11_main.log
2013-11-19 11:33 - 2013-11-19 11:33 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-19 11:33 - 2013-11-19 11:33 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-19 11:33 - 2013-11-19 11:33 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-19 11:33 - 2013-11-19 11:33 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-19 11:33 - 2013-11-19 11:33 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-19 11:33 - 2013-11-19 11:33 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-19 11:33 - 2013-11-19 11:33 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-19 11:33 - 2013-11-19 11:33 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-19 11:33 - 2013-11-19 11:33 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-19 11:33 - 2013-11-19 11:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-19 11:32 - 2013-11-19 11:32 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 11:31 - 2012-01-21 14:06 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-19 11:31 - 2009-07-14 03:34 - 00000478 _____ C:\Windows\win.ini
2013-11-19 08:15 - 2013-11-19 08:15 - 00000000 ____D C:\Users\isabella\AppData\Local\{A17C9FF6-9321-4887-8BB9-996DD64FF695}
2013-11-18 18:37 - 2013-11-18 18:37 - 00000000 ____D C:\Users\isabella\AppData\Local\{C480A6D6-4EE3-4805-9F65-ABF02E97CDFB}
2013-11-18 09:47 - 2013-11-18 09:47 - 00000000 ____D C:\Users\isabella\AppData\Local\{746990C3-A3E7-441D-833B-CE432048B5E6}
2013-11-18 09:45 - 2013-11-18 09:44 - 15083520 _____ C:\Users\isabella\Downloads\VO 1815_Handout 7.ppt
2013-11-18 07:25 - 2013-11-18 07:25 - 00000000 ____D C:\Users\isabella\AppData\Local\{D38DE526-A028-4E80-9B65-983EB3C06828}
2013-11-17 20:49 - 2012-02-02 11:26 - 00000000 ____D C:\Users\isabella\Desktop\Brassessoires
2013-11-17 20:16 - 2013-11-17 20:16 - 06346514 _____ C:\Users\isabella\Documents\19 Empty Chairs At Empty Tables.m4a
2013-11-17 20:16 - 2013-11-17 20:16 - 00004440 _____ C:\Users\isabella\Documents\facebook_ringtone_pop.m4a
2013-11-17 20:15 - 2013-11-17 20:15 - 08876731 _____ C:\Users\isabella\Documents\04 At The End Of The Day.m4a
2013-11-17 20:15 - 2013-11-17 20:15 - 08575688 _____ C:\Users\isabella\Documents\11 ABC Cafe _ Red And Black.m4a
2013-11-17 20:12 - 2013-11-17 20:12 - 00096828 _____ C:\Users\isabella\Documents\Bild 2013-07-21 1.jpeg
2013-11-17 20:11 - 2013-11-17 20:11 - 00000843 _____ C:\Users\isabella\Downloads\sd.jnlp
2013-11-17 18:41 - 2013-11-17 18:41 - 02520576 _____ C:\Users\isabella\Downloads\Stress Endfassung.ppt
2013-11-17 18:40 - 2013-11-17 18:39 - 02668544 _____ C:\Users\isabella\Downloads\Stress (3).ppt
2013-11-17 18:25 - 2012-07-13 12:41 - 00002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-17 18:12 - 2013-11-17 18:12 - 00000000 ____D C:\Users\isabella\AppData\Local\{50B4E92E-523E-419A-8263-B781BE7B7889}
2013-11-14 10:30 - 2013-11-14 10:30 - 00000000 ____D C:\Users\isabella\AppData\Local\{1D474733-BDDA-4C56-951E-91469E795EFF}
2013-11-14 08:24 - 2013-11-14 08:24 - 00000000 ____D C:\Users\isabella\AppData\Local\{D66B127E-13B6-4BF8-928A-7B57CC386391}
2013-11-14 08:23 - 2013-11-14 08:23 - 00000000 ____D C:\Users\isabella\AppData\Local\{F49E5FE7-F19B-49EC-991D-4E64344B12B1}
2013-11-14 08:20 - 2013-11-14 08:20 - 00000000 ____D C:\Users\isabella\AppData\Local\{C5F3CEB6-A4FC-422A-AAA1-DEF42CBC5F83}
2013-11-13 13:17 - 2013-07-14 22:05 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 13:15 - 2012-01-24 17:26 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 12:49 - 2013-11-13 12:49 - 00001931 _____ C:\Users\isabella\Desktop\SharedDocs (TMHAUSER) - Verknüpfung.lnk
2013-11-13 12:49 - 2013-11-13 12:49 - 00001586 _____ C:\Users\isabella\Desktop\TMHAUSER - Verknüpfung.lnk
2013-11-13 12:46 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-11-13 11:07 - 2013-11-13 11:06 - 00000000 ____D C:\Users\isabella\AppData\Local\{128F5ADF-F3DB-47F8-A0FA-4E7A57F53FD0}
2013-11-12 15:17 - 2013-11-12 15:17 - 00000000 ____D C:\Users\isabella\AppData\Local\{C931B94B-5A68-4225-BCC8-4817CA6DF65E}
2013-11-11 21:51 - 2013-11-11 21:51 - 02015744 _____ C:\Users\isabella\Downloads\Stress (2) (2).ppt
2013-11-11 20:51 - 2013-11-11 20:51 - 02015744 _____ C:\Users\isabella\Downloads\Stress (2) (1).ppt
2013-11-11 20:40 - 2013-11-11 20:40 - 02240512 _____ C:\Users\isabella\Downloads\Stress (2).ppt
2013-11-11 10:49 - 2013-11-11 10:49 - 00000000 ____D C:\Users\isabella\AppData\Local\{E9797154-C802-4C64-8E1C-9B0D84A6BC32}
2013-11-11 09:56 - 2012-01-21 14:06 - 00000000 ____D C:\Users\isabella\AppData\Local\Microsoft Help
2013-11-11 09:49 - 2013-11-11 09:48 - 31172096 _____ C:\Users\isabella\Downloads\VO 1815_Handout 6.ppt
2013-11-11 05:50 - 2012-01-21 14:06 - 00267936 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-10 21:47 - 2013-11-10 21:47 - 00000000 ____D C:\Users\isabella\AppData\Local\{CDA072FF-1A5C-4025-9BA8-28A7CC3A3611}
2013-11-10 08:57 - 2013-11-10 08:56 - 00000000 ____D C:\Users\isabella\AppData\Local\{50090820-2732-40E3-BB43-27FD4BF39033}
2013-11-08 10:07 - 2013-11-08 10:07 - 00000000 ____D C:\Users\isabella\AppData\Local\{DFDC5E00-7D56-4240-BBC5-79B8D4DF4A68}
2013-11-07 07:31 - 2013-11-07 07:30 - 00000000 ____D C:\Users\isabella\AppData\Local\{ED923DEF-92EB-4704-826C-D3CAAAAC0748}
2013-11-06 18:52 - 2013-11-06 18:52 - 00000000 ____D C:\Users\isabella\AppData\Local\{7567AD67-CAA6-40EE-884E-CD39278328DB}
2013-11-05 09:19 - 2013-11-05 09:19 - 00000000 ____D C:\Users\isabella\AppData\Local\{46F98E1F-3AA9-4FB7-8B62-AB289EA7F790}
2013-11-04 20:26 - 2013-11-04 20:26 - 00000000 ____D C:\Users\isabella\AppData\Local\{C75AB8AA-0341-45D6-8120-22CB91879743}
2013-11-04 09:02 - 2013-11-04 09:02 - 04520960 _____ C:\Users\isabella\Downloads\VO 1815_Handout 4.ppt
2013-11-04 09:01 - 2013-11-04 09:01 - 10590208 _____ C:\Users\isabella\Downloads\VO 1815_Handout 5.ppt
2013-11-04 08:25 - 2013-11-04 08:25 - 00000000 ____D C:\Users\isabella\AppData\Local\{2B8AC3AB-4462-4A84-A6ED-19ED6191D763}
2013-11-03 18:17 - 2013-11-03 18:16 - 00000000 ____D C:\Users\isabella\AppData\Local\{859D5E4B-AE3B-4A3E-8381-B29C9643AA8F}
2013-11-03 15:11 - 2013-11-03 15:11 - 02166272 _____ C:\Users\isabella\Downloads\Stress (1).ppt
2013-11-03 10:29 - 2013-11-03 10:29 - 02291200 _____ C:\Users\isabella\Downloads\Stress.ppt

Some content of TEMP:
====================
C:\Users\isabella\AppData\Local\Temp\AskSLib.dll
C:\Users\isabella\AppData\Local\Temp\avgnt.exe
C:\Users\isabella\AppData\Local\Temp\conduitinstaller.exe
C:\Users\isabella\AppData\Local\Temp\dpae5pbw.dll
C:\Users\isabella\AppData\Local\Temp\ICReinstall_Facemoods.exe
C:\Users\isabella\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\isabella\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-6u39-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\m02hp2xp.dll
C:\Users\isabella\AppData\Local\Temp\mgsqlite3.dll
C:\Users\isabella\AppData\Local\Temp\MouseKeyboardCenterx64_1031.exe
C:\Users\isabella\AppData\Local\Temp\MSETUP4.EXE
C:\Users\isabella\AppData\Local\Temp\ose00000.exe
C:\Users\isabella\AppData\Local\Temp\setup.exe
C:\Users\isabella\AppData\Local\Temp\Shortcut_sweetimsetup.exe
C:\Users\isabella\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\isabella\AppData\Local\Temp\SkypeSetup.exe
C:\Users\isabella\AppData\Local\Temp\SymcPCCUInstaller.exe
C:\Users\isabella\AppData\Local\Temp\uninst1.exe
C:\Users\isabella\AppData\Local\Temp\xu5fblzw.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-28 08:41

==================== End Of Log ============================
--- --- ---
Teil 2FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-12-2013
Ran by isabella at 2013-12-03 11:31:19
Running from C:\Users\isabella\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

3DataManager (x32 Version: 3.0)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Reader X (10.1.8) - Deutsch (x32 Version: 10.1.8)
Apple Application Support (x32 Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (x32 Version: 2.1.3.127)
Ask Toolbar (x32 Version: 1.15.18.0)
Ask Toolbar Updater (HKCU Version: 1.3.0.23930)
ASUS AI Recovery (x32 Version: 1.0.24)
ASUS FaceLogon (x32 Version: 1.0.0014)
ASUS LifeFrame3 (x32 Version: 3.0.20)
ASUS Live Update (x32 Version: 3.1.7)
ASUS Power4Gear Hybrid (Version: 1.2.1)
ASUS PWR Option (x32 Version: 1.0.9)
ASUS Secure Delete (Version: 1.00.0009)
ASUS USB Charger Plus (x32 Version: 2.0.8)
ASUS Virtual Camera (x32 Version: 1.0.23)
ASUS WebStorage (x32 Version: 3.0.84.161)
AsusScr_ZENBOOK_V2_EN (x32 Version: 1.0.0002)
AsusScr_ZENBOOK21_EN (x32 Version: 1.0.0002)
AsusVibe2.0 (x32 Version: 2.0.9.157)
ATK Package (x32 Version: 1.0.0015)
Audacity 2.0 (x32)
Avira Free Antivirus (x32 Version: 14.0.1.749)
AX88772B Windows 7 Drivers (x32 Version: 1.0.1.1)
Babylon toolbar on IE (x32)
BestPractice (remove only) (x32)
Bing Bar (x32 Version: 7.0.610.0)
BitGuard (x32)
Bluetooth Win7 Suite (64) (Version: 7.4.0.90)
Bonjour (Version: 3.0.0.10)
Bookworm Deluxe (x32)
Canon Easy-PhotoPrint EX (x32)
Canon Easy-WebPrint EX (x32)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (x32)
Canon MG2100 series Benutzerregistrierung (x32)
Canon MG2100 series MP Drivers
Canon MG2100 series On-screen Manual (x32)
Canon MP Navigator EX 5.0 (x32)
Canon My Printer (x32)
Canon Solution Menu EX (x32)
Control ActiveX de Windows Live Mesh para conexiones remotas (x32 Version: 15.4.5722.2)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (x32 Version: 15.4.5722.2)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (x32 Version: 15.4.5722.2)
Cooking Dash (x32)
D3DX10 (x32 Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Driver Whiz (x32 Version: 8.0.1)
Dropbox (HKCU Version: 2.4.6)
Facebook Messenger 2.1.4814.0 (x32 Version: 2.1.4814.0)
Finale Reader 2011 (x32 Version: 2011..r2.1)
Finger Sensing Pad Driver (Version: 9.1.7.7)
Free YouTube to MP3 Converter version 3.12.13.925 (x32 Version: 3.12.13.925)
Fresco Logic USB3.0 Host Controller (Version: 3.5.30.0)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922)
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922)
Game Park Console (x32 Version: 6.2.1.1)
Google Chrome (x32 Version: 31.0.1650.57)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4601.54)
Google Update Helper (x32 Version: 1.3.21.165)
Governor of Poker (x32)
Hotel Dash Suite Success (x32)
InstantOn for NB (x32 Version: 2.2.0)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144)
Intel(R) Processor Graphics (x32 Version: 8.15.10.2559)
Intel(R) Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
iTunes (Version: 11.0.5.5)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Jewel Quest 3 (x32)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
Luxor 3 (x32)
Mahjongg dimensions (x32)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Home and Student 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Silverlight (x32 Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MuseScore 1.2 MuseScore score typesetter (x32 Version: 1.2.0)
MyFreeCodec (HKCU)
Nuance PDF Reader (x32 Version: 6.00.0041)
ParetoLogic PC Health Advisor (x32 Version: 3.1.0.0)
Plants vs Zombies (x32)
Qualcomm Atheros WiFi Driver Installation (x32 Version: 9.2)
QuickTime (x32 Version: 7.74.80.86)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6577)
Samsung Kies (x32 Version: 2.1.1.11124_17)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.27.0)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Skype Click to Call (x32 Version: 5.9.9216)
Skype™ 6.6 (x32 Version: 6.6.106)
syncables desktop SE (x32 Version: 5.5.746.11492)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.89)
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.2013.181)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2494150) (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition (x32)
VLC media player 1.1.11 (x32 Version: 1.1.11)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (x32 Version: 15.4.5722.2)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Windows Live 影像中心 (x32 Version: 15.4.3502.0922)
Windows Live 程式集 (x32 Version: 15.4.3502.0922)
WinFlash (x32 Version: 2.41.0)
Winload Toolbar (x32 Version: 6.9.0.16)
Wireless Console 3 (x32 Version: 3.0.27)
World of Goo (x32)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (x32 Version: 15.4.5722.2)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922)
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922)
Почта Windows Live (x32 Version: 15.4.3502.0922)
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922)
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (x32 Version: 15.4.5722.2)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922)
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (x32 Version: 15.4.5722.2)
بريد Windows Live (x32 Version: 15.4.3502.0922)
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (x32 Version: 15.4.5722.2)
معرض صور Windows Live (x32 Version: 15.4.3502.0922)
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (x32 Version: 15.4.5722.2)

==================== Restore Points  =========================

26-11-2013 22:52:26 Windows Update
03-12-2013 07:09:13 Windows Update
03-12-2013 07:28:29 Avira Free Antivirus - 03.12.2013 08:28
03-12-2013 07:33:02 Wiederherstellungsvorgang

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1539D9E5-8C66-409E-89B4-13FB903D869F} - System32\Tasks\{798BF461-A172-4FB0-B411-A2E3F090274A} => C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe [2009-03-27] (ASUS)
Task: {18F12F86-1806-41AC-BF10-E650DBCC9184} - System32\Tasks\Secure Delete => C:\Program Files\ASUS\ASUS Secure Delete\ADDEL.exe [2011-11-28] ()
Task: {1C6BD4C0-4C0C-4FB5-8BF1-6EF81D14B11E} - System32\Tasks\AIRecoveryRemind => C:\Program Files (x86)\ASUS\AI Recovery\AIRecoveryRemind.exe [2012-03-09] (ASUSTek Computer Inc.)
Task: {1C95D3D1-A3A9-4C42-AF2E-41B5FB247943} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-01-30] (ASUSTek Computer Inc.)
Task: {271021DE-9A70-416A-A9E7-4F08B28D02CD} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1556147371-2361165161-3185572558-1000UA => C:\Users\isabella\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13] (Facebook Inc.)
Task: {2CB9708C-2EEC-46E0-B7A8-22639B908644} - \DealPlyUpdate No Task File
Task: {383F6550-7C27-4503-91DA-349014CBAD16} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1556147371-2361165161-3185572558-1000Core => C:\Users\isabella\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13] (Facebook Inc.)
Task: {3D231026-81DE-4478-944E-81DA122B3B7F} - System32\Tasks\{291DF4EF-5F8D-41AD-A31A-EB3EC0F82A81} => C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe [2009-03-27] (ASUS)
Task: {528D67F7-1BD6-4C45-96A5-9026126486E9} - System32\Tasks\{0BF953C9-CB57-4A3B-90FB-DEF44A955A2E} => Chrome.exe Skype auf Ihren Computer herunterladen ? Mac, Windows, Linux*?*Skype
Task: {58231655-0403-407A-BA9C-E518E8B421FD} - System32\Tasks\{D9B68924-0BA4-4B4C-872D-4604D3CF2E1B} => C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe [2009-03-27] (ASUS)
Task: {5DEA544D-5D62-4877-8706-68D977CA206B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-01-26] (Google Inc.)
Task: {65A007BB-608F-4C58-8990-57322697C55A} - System32\Tasks\BitGuard => Sc.exe start BitGuard
Task: {6EC83650-6BB9-4093-B4C5-144ECB27246A} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-12-22] (ASUSTek Computer Inc.)
Task: {840F710F-53EC-41DB-841C-D1081CAFA0F8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-08] (Adobe Systems Incorporated)
Task: {8F05DD6F-41CD-4A06-8E90-7FABDF634CEF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-01-26] (Google Inc.)
Task: {973BC70E-8DB0-4F23-82FE-3C372C78DB8A} - System32\Tasks\PC Health Advisor Defrag => C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe [2011-03-30] (ParetoLogic, Inc.)
Task: {984F6E6C-1CB9-4C94-88F3-95807547A18D} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2013-02-08] ()
Task: {A4FB5054-082F-48A8-A76E-F197912499AA} - System32\Tasks\ParetoLogic Registration3 => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\UUS3.dll [2011-03-30] ()
Task: {B33A3AB1-2C3A-438C-BF9E-0CB262F2655E} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe [2012-02-16] (ASUSTek Computer Inc.)
Task: {B516CB6B-0E3D-4BC4-9694-EE4014EBC0CE} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-02-15] (ASUS)
Task: {BC8426B3-A22F-4ADF-BDC6-57B89C2FD46F} - System32\Tasks\{9FD6AB9E-050A-4AFB-BE34-5EE7566747D2} => C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe [2009-03-27] (ASUS)
Task: {DFBB8CD0-91B1-4875-8353-E83DA27FB893} - System32\Tasks\ParetoLogic Update Version3 => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2011-03-30] (ParetoLogic Inc.)
Task: {F3EF44CE-E9C7-45C1-8555-BC900A81FE8E} - System32\Tasks\PC Health Advisor => C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe [2011-03-30] (ParetoLogic, Inc.)
Task: {FAF369F4-C409-4615-A969-008B2E084D0E} - System32\Tasks\{32A81588-0751-4567-86C2-491F291AC4D1} => C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe [2009-03-27] (ASUS)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1556147371-2361165161-3185572558-1000Core.job => C:\Users\isabella\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1556147371-2361165161-3185572558-1000UA.job => C:\Users\isabella\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ParetoLogic Registration3.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\UUS3.dll
Task: C:\Windows\Tasks\ParetoLogic Update Version3.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: C:\Windows\Tasks\PC Health Advisor Defrag.job => C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe
Task: C:\Windows\Tasks\PC Health Advisor.job => C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe

==================== Loaded Modules (whitelisted) =============

2013-11-24 22:24 - 2013-11-18 15:32 - 01958880 _____ () C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll
2010-07-14 15:11 - 2010-07-14 15:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2011-10-14 17:21 - 2011-10-14 17:21 - 00053104 _____ () C:\Program Files\FSP\KbdHook.dll
2011-10-14 17:21 - 2011-10-14 17:21 - 00081264 _____ () C:\Program Files\FSP\FspLib.dll
2011-09-26 04:09 - 2011-09-16 04:35 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-10-18 21:10 - 2012-09-19 18:17 - 00397088 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2011-11-01 23:26 - 2011-11-01 23:26 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-11-01 23:26 - 2011-11-01 23:26 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-08-23 20:01 - 2013-08-23 20:01 - 25100288 _____ () C:\Users\isabella\AppData\Roaming\Dropbox\bin\libcef.dll
2013-03-07 21:32 - 2013-03-07 21:32 - 00292272 _____ () C:\Users\isabella\AppData\Local\Facebook\Messenger\2.1.4814.0\CefSharp.dll
2013-03-07 21:32 - 2013-03-07 21:32 - 21014960 _____ () C:\Users\isabella\AppData\Local\Facebook\Messenger\2.1.4814.0\libcef.dll
2013-03-07 21:32 - 2013-03-07 21:32 - 00179632 _____ () C:\Users\isabella\AppData\Local\Facebook\Messenger\2.1.4814.0\CefSharp.WinForms.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2012-01-31 08:25 - 2012-01-31 08:25 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
2013-11-17 18:25 - 2013-11-14 12:28 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\libglesv2.dll
2013-11-17 18:25 - 2013-11-14 12:28 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\libegl.dll
2013-11-17 18:25 - 2013-11-14 12:29 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll
2013-11-17 18:25 - 2013-11-14 12:29 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll
2013-11-17 18:25 - 2013-11-14 12:28 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ffmpegsumo.dll
2011-03-30 00:13 - 2011-03-30 00:13 - 00526336 _____ () C:\Program Files (x86)\ParetoLogic\PCHA\7ZipDLL.dll
2011-01-24 22:04 - 2011-01-24 22:04 - 00040448 _____ () C:\Program Files (x86)\ParetoLogic\PCHA\LiteZip.dll
2011-03-30 00:12 - 2011-03-30 00:12 - 00107520 _____ () C:\Program Files (x86)\ParetoLogic\PCHA\ExtensionManager.dll
2011-03-30 00:16 - 2011-03-30 00:16 - 00180224 _____ () C:\Program Files (x86)\ParetoLogic\PCHA\CommonLoggingExtension.pxt
2011-03-30 00:14 - 2011-03-30 00:14 - 00210432 _____ () C:\Program Files (x86)\ParetoLogic\PCHA\CommonSpecialist.pxt
2011-03-30 00:11 - 2011-03-30 00:11 - 00176640 _____ () C:\Program Files (x86)\ParetoLogic\PCHA\RegHookSpecialist.pxt
2011-03-30 00:12 - 2011-03-30 00:12 - 01047040 _____ () C:\Program Files (x86)\ParetoLogic\PCHA\Utility.pxt
2011-01-24 22:04 - 2011-01-24 22:04 - 00048128 _____ () C:\Program Files (x86)\ParetoLogic\PCHA\LiteUnzip.dll
2013-11-17 18:25 - 2013-11-14 12:29 - 13582800 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:3AE22B1A
AlternateDataStreams: C:\ProgramData\TEMP:981884E7

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/03/2013 10:45:54 AM) (Source: Google Update) (User: isabella-laptop)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (12/03/2013 10:45:41 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5601200

Error: (12/03/2013 10:45:41 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5601200

Error: (12/03/2013 10:45:41 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/03/2013 10:45:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5599422

Error: (12/03/2013 10:45:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5599422

Error: (12/03/2013 10:45:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/03/2013 10:45:38 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5598330

Error: (12/03/2013 10:45:38 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5598330

Error: (12/03/2013 10:45:38 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (12/03/2013 11:17:19 AM) (Source: ipnathlp) (User: )
Description: 0

Error: (12/03/2013 11:16:50 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom

Error: (12/03/2013 08:45:16 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom

Error: (12/03/2013 08:44:10 AM) (Source: BugCheck) (User: )
Description: 0x000000f4 (0x0000000000000003, 0xfffffa8006921b30, 0xfffffa8006921e10, 0xfffff800035937b0)C:\Windows\MEMORY.DMP120313-7051-01

Error: (12/03/2013 08:44:09 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎03.‎12.‎2013 um 08:43:04 unerwartet heruntergefahren.

Error: (12/03/2013 08:40:44 AM) (Source: ipnathlp) (User: )
Description: 0

Error: (12/03/2013 08:38:09 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom

Error: (12/03/2013 08:31:30 AM) (Source: ipnathlp) (User: )
Description: 0

Error: (12/03/2013 08:31:28 AM) (Source: ipnathlp) (User: )
Description: 0

Error: (12/03/2013 08:31:19 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom


Microsoft Office Sessions:
=========================
Error: (12/03/2013 10:45:54 AM) (Source: Google Update)(User: isabella-laptop)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (12/03/2013 10:45:41 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5601200

Error: (12/03/2013 10:45:41 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5601200

Error: (12/03/2013 10:45:41 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/03/2013 10:45:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5599422

Error: (12/03/2013 10:45:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5599422

Error: (12/03/2013 10:45:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/03/2013 10:45:38 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5598330

Error: (12/03/2013 10:45:38 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5598330

Error: (12/03/2013 10:45:38 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


CodeIntegrity Errors:
===================================
  Date: 2013-02-15 12:52:56.019
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-15 12:52:55.926
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-15 12:52:53.829
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-15 12:52:53.721
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-15 12:52:51.616
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-15 12:52:51.503
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-15 12:52:49.387
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-15 12:52:49.314
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-15 12:52:47.230
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-15 12:52:47.150
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info ===========================

Percentage of memory in use: 64%
Total physical RAM: 3998.72 MB
Available physical RAM: 1399.68 MB
Total Pagefile: 7995.62 MB
Available Pagefile: 4971.15 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:103.79 GB) (Free:13.51 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: EA30DB6B)
Partition 1: (Active) - (Size=104 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=8 GB) - (Type=1C)

==================== End Of Log ============================
--- --- ---

cosinus 03.12.2013 11:55
Hallo und :hallo:

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

isabella0701 03.12.2013 12:04
FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-12-2013
Ran by isabella (administrator) on ISABELLA-LAPTOP on 03-12-2013 12:00:29
Running from C:\Users\isabella\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\3DataManager\WTGService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
() C:\Program Files\ASUS\ASUS Secure Delete\ADDEL.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
() C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Sentelic Corporation) C:\Program Files\FSP\FspUip.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(AsusTek) C:\Program Files\FSP\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files\FSP\QuickGesture\x64\QuickGesture64.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(syncables, LLC) C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
() C:\Program Files (x86)\3DataManager\3DataManager_Launcher.exe
(Dropbox, Inc.) C:\Users\isabella\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Facebook) C:\Users\isabella\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(syncables, LLC) C:\Program Files (x86)\syncables\syncables desktop\syncablesMAPI.exe
(ASUS) C:\Windows\AsScrPro.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Windows (R) Win 7 DDK provider) C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [fspuip] - C:\Program Files\FSP\FspUip.exe [4420976 2011-10-14] (Sentelic Corporation)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452456 2012-02-21] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [961184 2011-08-02] (Atheros Communications)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [798880 2011-08-02] (Atheros Commnucations)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-29] ()
HKLM\...\Run: [Setwallpaper] - c:\programdata\SetWallpaper.cmd
HKLM\...\Run: [qgesture32] - C:\Program Files\FSP\QuickGesture\x86\QuickGesture.exe [19824 2011-10-14] (AsusTek)
HKLM\...\Run: [qgesture64] - C:\Program Files\FSP\QuickGesture\x64\QuickGesture64.exe [21360 2011-10-14] (AsusTek)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE [2779024 2011-03-14] (CANON INC.)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Syncables] - C:\Program Files (x86)\syncables\syncables desktop\syncables.exe [370480 2010-07-19] (syncables, LLC)
HKCU\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-02-16] (Google Inc.)
HKCU\...\Run: [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-06] (Acresso Corporation)
HKCU\...\Run: [Facebook Update] - C:\Users\isabella\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-13] (Facebook Inc.)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-09-04] (Samsung)
HKCU\...\Run: [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [578560 2013-04-18] (Samsung Electronics)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
HKCU\...\Run: [GoogleChromeAutoLaunch_472D4B6D0323DDC174046419E7E91FC1] - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863184 2013-11-14] (Google Inc.)
MountPoints2: D - D:\.\Autorun.exe AUTORUN=1
MountPoints2: E - E:\.\Autorun.exe AUTORUN=1
MountPoints2: {264687cd-bec6-11e1-9382-742f68cc8657} - D:\.\Autorun.exe AUTORUN=1
HKLM-x32\...\Run: [ASUSPRP] - C:\Program Files (x86)\ASUS\APRP\aprp.exe [2018032 2011-04-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] - C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [731472 2011-02-23] (ecareme)
HKLM-x32\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3058304 2011-10-23] (ASUS)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1568976 2012-06-20] (Ask)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-09-04] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1611160 2011-03-28] (CANON INC.)
HKLM-x32\...\Run: [ATKOSD2] - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-24] (ASUS)
HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [FLxHCIm64] - C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe [48128 2012-01-16] (Windows (R) Win 7 DDK provider)
HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-02] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
AppInit_DLLs: C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll [1958880 2013-11-18] ()
Startup: C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\isabella\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
ShortcutTarget: Facebook Messenger.lnk -> C:\Users\isabella\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe (Facebook)
Startup: C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=1C1F162F68CBFAF3&affID=125036&tsp=5037
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=1C1F162F68CBFAF3&affID=125036&tsp=5037
URLSearchHook: HKLM-x32 - Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files (x86)\Winload\prxtbWinl.dll (Conduit Ltd.)
URLSearchHook: HKCU - Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files (x86)\Winload\prxtbWinl.dll (Conduit Ltd.)
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=1C1F162F68CBFAF3&affID=125036&tsp=5037
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: No Name - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -  No File
BHO-x32: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files (x86)\Winload\prxtbWinl.dll (Conduit Ltd.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -  No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files (x86)\Winload\prxtbWinl.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21
Tcpip\..\Interfaces\{75B9DF25-D0F9-4FA5-B15B-65674403A875}: [NameServer]213.33.99.70,80.120.17.70

Chrome:
=======
CHR HomePage: https://www.google.at/
CHR RestoreOnStartup: "https://www.google.at/"
CHR DefaultSearchURL: (Google) - hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_deAT468
CHR DefaultSuggestURL: (Google) -      "suggest_url": "",
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility for IJ) - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U33) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.330.3) - C:\Windows\SysWOW64\npdeployJava1.dll No File
CHR Plugin: (Zeon Plus) - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Facebook Desktop) - C:\Users\isabella\AppData\Local\Facebook\Messenger\2.1.4570.0\npFbDesktopPlugin.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Extension: (DealPly) - C:\Users\isabella\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.5.3.0_0
CHR Extension: (Google Wallet) - C:\Users\isabella\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR HKLM-x32\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files (x86)\DealPly\DealPly.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-02-16] (ASUS)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-08-02] (Atheros)
R2 BitGuard; C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [3780064 2013-11-18] ()
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [138192 2011-02-07] ()
R2 WTGService; C:\Program Files (x86)\3DataManager\WTGService.exe [333264 2010-07-08] ()

==================== Drivers (Whitelisted) ====================

R3 AiCharger; C:\Windows\SysWow64\DRIVERS\AiCharger.sys [17152 2012-01-30] (ASUSTek Computer Inc.)
R0 assd; C:\Windows\System32\Drivers\assd.sys [27056 2011-10-28] (ASUS Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [106904 2013-11-26] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-11-26] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
S3 AX88772B; C:\Windows\System32\DRIVERS\ax88772b.sys [98816 2010-12-31] (ASIX Electronics Corp.)
R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [65024 2012-01-10] (Fresco Logic)
R3 fspad_win764; C:\Windows\System32\DRIVERS\fspad_win764.sys [69488 2011-10-14] (Sentelic Corporation)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-03 11:50 - 2013-12-03 11:50 - 00262144 _____ C:\Windows\Minidump\120313-6973-01.dmp
2013-12-03 11:31 - 2013-12-03 11:32 - 00033401 _____ C:\Users\isabella\Downloads\Addition.txt
2013-12-03 11:27 - 2013-12-03 12:00 - 00021885 _____ C:\Users\isabella\Downloads\FRST.txt
2013-12-03 11:27 - 2013-12-03 11:27 - 00000000 ____D C:\FRST
2013-12-03 11:26 - 2013-12-03 11:27 - 01959434 _____ (Farbar) C:\Users\isabella\Downloads\FRST64.exe
2013-12-03 11:20 - 2013-12-03 11:50 - 00000474 _____ C:\Windows\Tasks\ParetoLogic Registration3.job
2013-12-03 11:20 - 2013-12-03 11:50 - 00000448 _____ C:\Windows\Tasks\ParetoLogic Update Version3.job
2013-12-03 11:20 - 2013-12-03 11:50 - 00000406 _____ C:\Windows\Tasks\PC Health Advisor Defrag.job
2013-12-03 11:20 - 2013-12-03 11:50 - 00000388 _____ C:\Windows\Tasks\PC Health Advisor.job
2013-12-03 11:20 - 2013-12-03 11:20 - 05249448 _____ (ParetoLogic Inc.) C:\Users\isabella\Downloads\ParetoLogic PC Health Advisor_de.exe
2013-12-03 11:20 - 2013-12-03 11:20 - 00003308 _____ C:\Windows\System32\Tasks\PC Health Advisor
2013-12-03 11:20 - 2013-12-03 11:20 - 00003288 _____ C:\Windows\System32\Tasks\PC Health Advisor Defrag
2013-12-03 11:20 - 2013-12-03 11:20 - 00003270 _____ C:\Windows\System32\Tasks\ParetoLogic Update Version3
2013-12-03 11:20 - 2013-12-03 11:20 - 00003144 _____ C:\Windows\System32\Tasks\ParetoLogic Registration3
2013-12-03 11:20 - 2013-12-03 11:20 - 00001103 _____ C:\Users\isabella\Desktop\ParetoLogic PC Health Advisor.lnk
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\DriverCure
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\ProgramData\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Program Files (x86)\ParetoLogic
2013-12-03 11:15 - 2013-12-03 11:50 - 00003420 _____ C:\Windows\System32\Tasks\BitGuard
2013-12-03 08:44 - 2013-12-03 11:50 - 00000000 ____D C:\Windows\Minidump
2013-12-03 08:44 - 2013-12-03 08:44 - 00262144 _____ C:\Windows\Minidump\120313-7051-01.dmp
2013-12-02 20:43 - 2013-12-02 20:43 - 00003029 _____ C:\Users\isabella\Desktop\Microsoft Word 2010.lnk
2013-12-02 20:41 - 2013-12-02 20:41 - 00000000 ____D C:\Users\isabella\AppData\Local\{EF277263-4909-48E4-898E-7200219F6C0B}
2013-12-02 07:46 - 2013-12-02 07:46 - 00000000 ____D C:\Users\isabella\AppData\Local\{46636894-A7D6-4603-981E-0B991CA7B1A0}
2013-12-01 22:24 - 2013-12-01 22:24 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-12-01 22:18 - 2013-12-01 22:19 - 49847296 _____ C:\Users\isabella\Downloads\VO 1815_Handout 9.ppt
2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Users\isabella\AppData\Local\{099D6794-1593-419D-97A2-783E7CE0C03C}
2013-11-30 11:02 - 2013-11-30 11:02 - 00000000 ____D C:\Users\isabella\AppData\Local\{DBEE5C73-4181-485E-B01B-E83B7D102788}
2013-11-29 20:38 - 2013-11-29 20:38 - 00000000 ____D C:\Users\isabella\AppData\Local\{7FE91EA1-603E-4A6F-B1E7-3F914F2E73B6}
2013-11-28 18:51 - 2013-11-28 18:51 - 00000000 ____D C:\Users\isabella\AppData\Local\{9E529A81-E2D2-4A48-8324-9E7DB11BCEF5}
2013-11-27 21:57 - 2013-11-27 21:57 - 00000000 ____D C:\Users\isabella\AppData\Local\{5A3FA798-E5FB-4531-92FC-255BA21515CB}
2013-11-27 08:57 - 2013-11-27 08:57 - 00000000 ____D C:\Users\isabella\AppData\Local\{976132AF-09FF-4205-9DC2-BB1AC70218C5}
2013-11-26 13:33 - 2013-11-26 13:34 - 00000000 ____D C:\Users\isabella\AppData\Local\{746C9AC0-5A23-411F-9F24-27B090DB0087}
2013-11-25 21:49 - 2013-12-02 10:24 - 00112128 ___SH C:\Users\isabella\Thumbs.db
2013-11-25 20:46 - 2013-11-25 20:46 - 00000000 ____D C:\Users\isabella\AppData\Local\{BE16B712-811A-4376-8208-4360EE6F6ED4}
2013-11-25 20:44 - 2013-11-25 20:44 - 00000000 ____D C:\Users\isabella\AppData\Local\{28340B2C-4688-49B5-A55B-B60516AE53A3}
2013-11-25 09:14 - 2013-11-25 09:14 - 66112000 _____ C:\Users\isabella\Downloads\VO 1815_Handout 8.ppt
2013-11-25 08:20 - 2013-11-25 08:21 - 00000000 ____D C:\Users\isabella\AppData\Local\{584097FE-112E-43B6-BE35-7817BFDC808B}
2013-11-24 22:24 - 2013-11-24 22:24 - 00000000 ____D C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-11-24 14:46 - 2013-11-24 15:57 - 00000000 ____D C:\Users\isabella\Documents\SelfMV
2013-11-24 11:29 - 2013-11-24 11:29 - 00000000 ____D C:\Users\isabella\AppData\Local\{B5145A5D-16F7-4788-8775-64AA52D414C8}
2013-11-23 13:29 - 2013-11-23 13:29 - 00000000 ____D C:\Users\isabella\AppData\Local\{8CCBBC97-3034-42A1-8EBA-99D95D88599E}
2013-11-23 13:29 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-11-23 13:29 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-11-22 11:04 - 2013-11-22 11:04 - 00000000 ____D C:\Users\isabella\AppData\Local\{265EADE8-528E-415A-926B-F88D4B117736}
2013-11-22 10:56 - 2013-11-22 10:56 - 00000000 ____D C:\Users\isabella\AppData\Local\{9ACD9298-C8D4-455A-9B68-768903116E63}
2013-11-19 21:09 - 2013-11-19 21:09 - 00000000 ____D C:\Users\isabella\AppData\Local\{E37BF6E1-191C-4B5C-9D18-469742129299}
2013-11-19 11:36 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-19 11:33 - 2013-11-19 11:33 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-19 11:33 - 2013-11-19 11:33 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-19 11:33 - 2013-11-19 11:33 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-19 11:33 - 2013-11-19 11:33 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-19 11:33 - 2013-11-19 11:33 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-19 11:33 - 2013-11-19 11:33 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-19 11:33 - 2013-11-19 11:33 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-19 11:33 - 2013-11-19 11:33 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-19 11:33 - 2013-11-19 11:33 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-19 11:33 - 2013-11-19 11:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-19 11:32 - 2013-11-19 11:32 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 11:31 - 2013-11-19 11:36 - 00010074 _____ C:\Windows\IE11_main.log
2013-11-19 08:15 - 2013-11-19 08:15 - 00000000 ____D C:\Users\isabella\AppData\Local\{A17C9FF6-9321-4887-8BB9-996DD64FF695}
2013-11-18 18:37 - 2013-11-18 18:37 - 00000000 ____D C:\Users\isabella\AppData\Local\{C480A6D6-4EE3-4805-9F65-ABF02E97CDFB}
2013-11-18 09:47 - 2013-11-18 09:47 - 00000000 ____D C:\Users\isabella\AppData\Local\{746990C3-A3E7-441D-833B-CE432048B5E6}
2013-11-18 09:44 - 2013-11-18 09:45 - 15083520 _____ C:\Users\isabella\Downloads\VO 1815_Handout 7.ppt
2013-11-18 07:25 - 2013-11-18 07:25 - 00000000 ____D C:\Users\isabella\AppData\Local\{D38DE526-A028-4E80-9B65-983EB3C06828}
2013-11-17 20:16 - 2013-11-17 20:16 - 06346514 _____ C:\Users\isabella\Documents\19 Empty Chairs At Empty Tables.m4a
2013-11-17 20:16 - 2013-11-17 20:16 - 00004440 _____ C:\Users\isabella\Documents\facebook_ringtone_pop.m4a
2013-11-17 20:15 - 2013-11-17 20:15 - 08876731 _____ C:\Users\isabella\Documents\04 At The End Of The Day.m4a
2013-11-17 20:15 - 2013-11-17 20:15 - 08575688 _____ C:\Users\isabella\Documents\11 ABC Cafe _ Red And Black.m4a
2013-11-17 20:12 - 2013-11-17 20:12 - 00096828 _____ C:\Users\isabella\Documents\Bild 2013-07-21 1.jpeg
2013-11-17 20:11 - 2013-11-17 20:11 - 00000843 _____ C:\Users\isabella\Downloads\sd.jnlp
2013-11-17 19:20 - 2013-11-26 08:12 - 00030720 ___SH C:\Users\isabella\Desktop\Thumbs.db
2013-11-17 18:41 - 2013-11-17 18:41 - 02520576 _____ C:\Users\isabella\Downloads\Stress Endfassung.ppt
2013-11-17 18:39 - 2013-11-17 18:40 - 02668544 _____ C:\Users\isabella\Downloads\Stress (3).ppt
2013-11-17 18:12 - 2013-11-17 18:12 - 00000000 ____D C:\Users\isabella\AppData\Local\{50B4E92E-523E-419A-8263-B781BE7B7889}
2013-11-14 10:30 - 2013-11-14 10:30 - 00000000 ____D C:\Users\isabella\AppData\Local\{1D474733-BDDA-4C56-951E-91469E795EFF}
2013-11-14 08:24 - 2013-11-14 08:24 - 00000000 ____D C:\Users\isabella\AppData\Local\{D66B127E-13B6-4BF8-928A-7B57CC386391}
2013-11-14 08:23 - 2013-11-14 08:23 - 00000000 ____D C:\Users\isabella\AppData\Local\{F49E5FE7-F19B-49EC-991D-4E64344B12B1}
2013-11-14 08:20 - 2013-11-14 08:20 - 00000000 ____D C:\Users\isabella\AppData\Local\{C5F3CEB6-A4FC-422A-AAA1-DEF42CBC5F83}
2013-11-13 12:49 - 2013-11-13 12:49 - 00001931 _____ C:\Users\isabella\Desktop\SharedDocs (TMHAUSER) - Verknüpfung.lnk
2013-11-13 12:49 - 2013-11-13 12:49 - 00001586 _____ C:\Users\isabella\Desktop\TMHAUSER - Verknüpfung.lnk
2013-11-13 11:12 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 11:12 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 11:12 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 11:12 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 11:12 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 11:12 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 11:12 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 11:12 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 11:12 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 11:12 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 11:12 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 11:12 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 11:12 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 11:12 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 11:12 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 11:12 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 11:12 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 11:12 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 11:12 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 11:12 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 11:12 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 11:12 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 11:12 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 11:12 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 11:12 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 11:12 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 11:12 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 11:12 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 11:12 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 11:12 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 11:06 - 2013-11-13 11:07 - 00000000 ____D C:\Users\isabella\AppData\Local\{128F5ADF-F3DB-47F8-A0FA-4E7A57F53FD0}
2013-11-12 15:17 - 2013-11-12 15:17 - 00000000 ____D C:\Users\isabella\AppData\Local\{C931B94B-5A68-4225-BCC8-4817CA6DF65E}
2013-11-11 21:51 - 2013-11-11 21:51 - 02015744 _____ C:\Users\isabella\Downloads\Stress (2) (2).ppt
2013-11-11 20:51 - 2013-11-11 20:51 - 02015744 _____ C:\Users\isabella\Downloads\Stress (2) (1).ppt
2013-11-11 20:40 - 2013-11-11 20:40 - 02240512 _____ C:\Users\isabella\Downloads\Stress (2).ppt
2013-11-11 10:49 - 2013-11-11 10:49 - 00000000 ____D C:\Users\isabella\AppData\Local\{E9797154-C802-4C64-8E1C-9B0D84A6BC32}
2013-11-11 09:48 - 2013-11-11 09:49 - 31172096 _____ C:\Users\isabella\Downloads\VO 1815_Handout 6.ppt
2013-11-10 21:47 - 2013-11-10 21:47 - 00000000 ____D C:\Users\isabella\AppData\Local\{CDA072FF-1A5C-4025-9BA8-28A7CC3A3611}
2013-11-10 08:56 - 2013-11-10 08:57 - 00000000 ____D C:\Users\isabella\AppData\Local\{50090820-2732-40E3-BB43-27FD4BF39033}
2013-11-08 10:07 - 2013-11-08 10:07 - 00000000 ____D C:\Users\isabella\AppData\Local\{DFDC5E00-7D56-4240-BBC5-79B8D4DF4A68}
2013-11-07 07:30 - 2013-11-07 07:31 - 00000000 ____D C:\Users\isabella\AppData\Local\{ED923DEF-92EB-4704-826C-D3CAAAAC0748}
2013-11-06 18:52 - 2013-11-06 18:52 - 00000000 ____D C:\Users\isabella\AppData\Local\{7567AD67-CAA6-40EE-884E-CD39278328DB}
2013-11-05 09:19 - 2013-11-05 09:19 - 00000000 ____D C:\Users\isabella\AppData\Local\{46F98E1F-3AA9-4FB7-8B62-AB289EA7F790}
2013-11-04 20:26 - 2013-11-04 20:26 - 00000000 ____D C:\Users\isabella\AppData\Local\{C75AB8AA-0341-45D6-8120-22CB91879743}
2013-11-04 09:02 - 2013-11-04 09:02 - 04520960 _____ C:\Users\isabella\Downloads\VO 1815_Handout 4.ppt
2013-11-04 09:01 - 2013-11-04 09:01 - 10590208 _____ C:\Users\isabella\Downloads\VO 1815_Handout 5.ppt
2013-11-04 08:25 - 2013-11-04 08:25 - 00000000 ____D C:\Users\isabella\AppData\Local\{2B8AC3AB-4462-4A84-A6ED-19ED6191D763}
2013-11-03 18:16 - 2013-11-03 18:17 - 00000000 ____D C:\Users\isabella\AppData\Local\{859D5E4B-AE3B-4A3E-8381-B29C9643AA8F}
2013-11-03 15:11 - 2013-11-03 15:11 - 02166272 _____ C:\Users\isabella\Downloads\Stress (1).ppt
2013-11-03 10:29 - 2013-11-03 10:29 - 02291200 _____ C:\Users\isabella\Downloads\Stress.ppt

==================== One Month Modified Files and Folders =======

2013-12-03 17:36 - 2012-04-20 09:03 - 00000000 ____D C:\ProgramData\P4G
2013-12-03 17:36 - 2012-01-21 13:29 - 00000000 ____D C:\Users\isabella\AppData\Local\ASUS
2013-12-03 17:36 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-12-03 12:01 - 2013-12-03 11:27 - 00021885 _____ C:\Users\isabella\Downloads\FRST.txt
2013-12-03 12:00 - 2013-03-30 14:50 - 00000000 ____D C:\Users\privat
2013-12-03 12:00 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-12-03 11:58 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-03 11:58 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-03 11:55 - 2011-02-19 05:24 - 00669360 _____ C:\Windows\system32\perfh007.dat
2013-12-03 11:55 - 2011-02-19 05:24 - 00135040 _____ C:\Windows\system32\perfc007.dat
2013-12-03 11:55 - 2009-07-14 06:13 - 01538262 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-03 11:52 - 2013-02-15 10:09 - 00271360 _____ C:\Users\isabella\Documents\isabella@hauser-tischler.at.pst
2013-12-03 11:52 - 2012-04-05 12:58 - 00000000 ___RD C:\Users\isabella\Dropbox
2013-12-03 11:52 - 2012-04-05 12:56 - 00000000 ____D C:\Users\isabella\AppData\Roaming\Dropbox
2013-12-03 11:51 - 2012-01-23 18:13 - 00000374 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2013-12-03 11:51 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2013-12-03 11:50 - 2013-12-03 11:50 - 00262144 _____ C:\Windows\Minidump\120313-6973-01.dmp
2013-12-03 11:50 - 2013-12-03 11:20 - 00000474 _____ C:\Windows\Tasks\ParetoLogic Registration3.job
2013-12-03 11:50 - 2013-12-03 11:20 - 00000448 _____ C:\Windows\Tasks\ParetoLogic Update Version3.job
2013-12-03 11:50 - 2013-12-03 11:20 - 00000406 _____ C:\Windows\Tasks\PC Health Advisor Defrag.job
2013-12-03 11:50 - 2013-12-03 11:20 - 00000388 _____ C:\Windows\Tasks\PC Health Advisor.job
2013-12-03 11:50 - 2013-12-03 11:15 - 00003420 _____ C:\Windows\System32\Tasks\BitGuard
2013-12-03 11:50 - 2013-12-03 08:44 - 00000000 ____D C:\Windows\Minidump
2013-12-03 11:50 - 2012-01-26 20:22 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-03 11:50 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-03 11:50 - 2009-07-14 05:51 - 00138090 _____ C:\Windows\setupact.log
2013-12-03 11:49 - 2009-07-14 06:08 - 00032764 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-03 11:32 - 2013-12-03 11:31 - 00033401 _____ C:\Users\isabella\Downloads\Addition.txt
2013-12-03 11:27 - 2013-12-03 11:27 - 00000000 ____D C:\FRST
2013-12-03 11:27 - 2013-12-03 11:26 - 01959434 _____ (Farbar) C:\Users\isabella\Downloads\FRST64.exe
2013-12-03 11:20 - 2013-12-03 11:20 - 05249448 _____ (ParetoLogic Inc.) C:\Users\isabella\Downloads\ParetoLogic PC Health Advisor_de.exe
2013-12-03 11:20 - 2013-12-03 11:20 - 00003308 _____ C:\Windows\System32\Tasks\PC Health Advisor
2013-12-03 11:20 - 2013-12-03 11:20 - 00003288 _____ C:\Windows\System32\Tasks\PC Health Advisor Defrag
2013-12-03 11:20 - 2013-12-03 11:20 - 00003270 _____ C:\Windows\System32\Tasks\ParetoLogic Update Version3
2013-12-03 11:20 - 2013-12-03 11:20 - 00003144 _____ C:\Windows\System32\Tasks\ParetoLogic Registration3
2013-12-03 11:20 - 2013-12-03 11:20 - 00001103 _____ C:\Users\isabella\Desktop\ParetoLogic PC Health Advisor.lnk
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Users\isabella\AppData\Roaming\DriverCure
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\ProgramData\ParetoLogic
2013-12-03 11:20 - 2013-12-03 11:20 - 00000000 ____D C:\Program Files (x86)\ParetoLogic
2013-12-03 11:20 - 2011-10-23 23:36 - 02032211 _____ C:\Windows\WindowsUpdate.log
2013-12-03 11:19 - 2012-01-26 20:22 - 00001114 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-03 10:45 - 2012-04-14 15:19 - 00001150 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1556147371-2361165161-3185572558-1000UA.job
2013-12-03 10:45 - 2012-04-14 15:19 - 00001128 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1556147371-2361165161-3185572558-1000Core.job
2013-12-03 10:45 - 2012-04-05 17:19 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-03 08:44 - 2013-12-03 08:44 - 00262144 _____ C:\Windows\Minidump\120313-7051-01.dmp
2013-12-03 08:44 - 2012-01-21 13:29 - 00000000 ____D C:\Users\isabella
2013-12-02 22:31 - 2012-02-22 19:03 - 00000000 ____D C:\ProgramData\CanonIJPLM
2013-12-02 22:01 - 2013-04-06 18:55 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E0E09D29-A834-46F0-A1D1-B8D2DFE2FE75}
2013-12-02 20:43 - 2013-12-02 20:43 - 00003029 _____ C:\Users\isabella\Desktop\Microsoft Word 2010.lnk
2013-12-02 20:41 - 2013-12-02 20:41 - 00000000 ____D C:\Users\isabella\AppData\Local\{EF277263-4909-48E4-898E-7200219F6C0B}
2013-12-02 10:24 - 2013-11-25 21:49 - 00112128 ___SH C:\Users\isabella\Thumbs.db
2013-12-02 09:40 - 2012-08-30 19:40 - 00000000 ____D C:\Users\isabella\Desktop\Uni Wien
2013-12-02 07:46 - 2013-12-02 07:46 - 00000000 ____D C:\Users\isabella\AppData\Local\{46636894-A7D6-4603-981E-0B991CA7B1A0}
2013-12-01 22:24 - 2013-12-01 22:24 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-12-01 22:19 - 2013-12-01 22:18 - 49847296 _____ C:\Users\isabella\Downloads\VO 1815_Handout 9.ppt
2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Users\isabella\AppData\Local\{099D6794-1593-419D-97A2-783E7CE0C03C}
2013-11-30 11:02 - 2013-11-30 11:02 - 00000000 ____D C:\Users\isabella\AppData\Local\{DBEE5C73-4181-485E-B01B-E83B7D102788}
2013-11-30 10:02 - 2013-10-10 11:11 - 00000000 ____D C:\Users\isabella\Desktop\GR Mittelalter Quellen
2013-11-29 20:38 - 2013-11-29 20:38 - 00000000 ____D C:\Users\isabella\AppData\Local\{7FE91EA1-603E-4A6F-B1E7-3F914F2E73B6}
2013-11-28 18:51 - 2013-11-28 18:51 - 00000000 ____D C:\Users\isabella\AppData\Local\{9E529A81-E2D2-4A48-8324-9E7DB11BCEF5}
2013-11-28 09:55 - 2012-06-08 18:45 - 00000000 ____D C:\Users\isabella\Desktop\MDW
2013-11-27 21:57 - 2013-11-27 21:57 - 00000000 ____D C:\Users\isabella\AppData\Local\{5A3FA798-E5FB-4531-92FC-255BA21515CB}
2013-11-27 08:57 - 2013-11-27 08:57 - 00000000 ____D C:\Users\isabella\AppData\Local\{976132AF-09FF-4205-9DC2-BB1AC70218C5}
2013-11-26 13:34 - 2013-11-26 13:33 - 00000000 ____D C:\Users\isabella\AppData\Local\{746C9AC0-5A23-411F-9F24-27B090DB0087}
2013-11-26 08:14 - 2013-03-30 14:44 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-26 08:14 - 2013-03-30 14:44 - 00106904 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-11-26 08:12 - 2013-11-17 19:20 - 00030720 ___SH C:\Users\isabella\Desktop\Thumbs.db
2013-11-25 20:46 - 2013-11-25 20:46 - 00000000 ____D C:\Users\isabella\AppData\Local\{BE16B712-811A-4376-8208-4360EE6F6ED4}
2013-11-25 20:44 - 2013-11-25 20:44 - 00000000 ____D C:\Users\isabella\AppData\Local\{28340B2C-4688-49B5-A55B-B60516AE53A3}
2013-11-25 09:14 - 2013-11-25 09:14 - 66112000 _____ C:\Users\isabella\Downloads\VO 1815_Handout 8.ppt
2013-11-25 08:35 - 2011-04-13 02:39 - 00295210 _____ C:\Windows\PFRO.log
2013-11-25 08:21 - 2013-11-25 08:20 - 00000000 ____D C:\Users\isabella\AppData\Local\{584097FE-112E-43B6-BE35-7817BFDC808B}
2013-11-25 08:19 - 2013-10-16 07:25 - 00000000 ____D C:\ProgramData\BitGuard
2013-11-24 22:24 - 2013-11-24 22:24 - 00000000 ____D C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-11-24 17:48 - 2012-01-21 13:29 - 00000000 ___RD C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-24 15:57 - 2013-11-24 14:46 - 00000000 ____D C:\Users\isabella\Documents\SelfMV
2013-11-24 11:29 - 2013-11-24 11:29 - 00000000 ____D C:\Users\isabella\AppData\Local\{B5145A5D-16F7-4788-8775-64AA52D414C8}
2013-11-23 13:29 - 2013-11-23 13:29 - 00000000 ____D C:\Users\isabella\AppData\Local\{8CCBBC97-3034-42A1-8EBA-99D95D88599E}
2013-11-22 11:04 - 2013-11-22 11:04 - 00000000 ____D C:\Users\isabella\AppData\Local\{265EADE8-528E-415A-926B-F88D4B117736}
2013-11-22 10:56 - 2013-11-22 10:56 - 00000000 ____D C:\Users\isabella\AppData\Local\{9ACD9298-C8D4-455A-9B68-768903116E63}
2013-11-19 21:09 - 2013-11-19 21:09 - 00000000 ____D C:\Users\isabella\AppData\Local\{E37BF6E1-191C-4B5C-9D18-469742129299}
2013-11-19 13:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-19 11:38 - 2012-01-21 13:29 - 00001427 _____ C:\Users\isabella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-19 11:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-19 11:36 - 2013-11-19 11:31 - 00010074 _____ C:\Windows\IE11_main.log
2013-11-19 11:33 - 2013-11-19 11:33 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-19 11:33 - 2013-11-19 11:33 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-19 11:33 - 2013-11-19 11:33 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-19 11:33 - 2013-11-19 11:33 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-19 11:33 - 2013-11-19 11:33 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-19 11:33 - 2013-11-19 11:33 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-19 11:33 - 2013-11-19 11:33 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-19 11:33 - 2013-11-19 11:33 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-19 11:33 - 2013-11-19 11:33 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-19 11:33 - 2013-11-19 11:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-19 11:33 - 2013-11-19 11:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-19 11:33 - 2013-11-19 11:33 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-19 11:32 - 2013-11-19 11:32 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-19 11:32 - 2013-11-19 11:32 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-19 11:32 - 2013-11-19 11:32 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 11:31 - 2012-01-21 14:06 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-19 11:31 - 2009-07-14 03:34 - 00000478 _____ C:\Windows\win.ini
2013-11-19 08:15 - 2013-11-19 08:15 - 00000000 ____D C:\Users\isabella\AppData\Local\{A17C9FF6-9321-4887-8BB9-996DD64FF695}
2013-11-18 18:37 - 2013-11-18 18:37 - 00000000 ____D C:\Users\isabella\AppData\Local\{C480A6D6-4EE3-4805-9F65-ABF02E97CDFB}
2013-11-18 09:47 - 2013-11-18 09:47 - 00000000 ____D C:\Users\isabella\AppData\Local\{746990C3-A3E7-441D-833B-CE432048B5E6}
2013-11-18 09:45 - 2013-11-18 09:44 - 15083520 _____ C:\Users\isabella\Downloads\VO 1815_Handout 7.ppt
2013-11-18 07:25 - 2013-11-18 07:25 - 00000000 ____D C:\Users\isabella\AppData\Local\{D38DE526-A028-4E80-9B65-983EB3C06828}
2013-11-17 20:49 - 2012-02-02 11:26 - 00000000 ____D C:\Users\isabella\Desktop\Brassessoires
2013-11-17 20:16 - 2013-11-17 20:16 - 06346514 _____ C:\Users\isabella\Documents\19 Empty Chairs At Empty Tables.m4a
2013-11-17 20:16 - 2013-11-17 20:16 - 00004440 _____ C:\Users\isabella\Documents\facebook_ringtone_pop.m4a
2013-11-17 20:15 - 2013-11-17 20:15 - 08876731 _____ C:\Users\isabella\Documents\04 At The End Of The Day.m4a
2013-11-17 20:15 - 2013-11-17 20:15 - 08575688 _____ C:\Users\isabella\Documents\11 ABC Cafe _ Red And Black.m4a
2013-11-17 20:12 - 2013-11-17 20:12 - 00096828 _____ C:\Users\isabella\Documents\Bild 2013-07-21 1.jpeg
2013-11-17 20:11 - 2013-11-17 20:11 - 00000843 _____ C:\Users\isabella\Downloads\sd.jnlp
2013-11-17 18:41 - 2013-11-17 18:41 - 02520576 _____ C:\Users\isabella\Downloads\Stress Endfassung.ppt
2013-11-17 18:40 - 2013-11-17 18:39 - 02668544 _____ C:\Users\isabella\Downloads\Stress (3).ppt
2013-11-17 18:25 - 2012-07-13 12:41 - 00002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-17 18:12 - 2013-11-17 18:12 - 00000000 ____D C:\Users\isabella\AppData\Local\{50B4E92E-523E-419A-8263-B781BE7B7889}
2013-11-14 10:30 - 2013-11-14 10:30 - 00000000 ____D C:\Users\isabella\AppData\Local\{1D474733-BDDA-4C56-951E-91469E795EFF}
2013-11-14 08:24 - 2013-11-14 08:24 - 00000000 ____D C:\Users\isabella\AppData\Local\{D66B127E-13B6-4BF8-928A-7B57CC386391}
2013-11-14 08:23 - 2013-11-14 08:23 - 00000000 ____D C:\Users\isabella\AppData\Local\{F49E5FE7-F19B-49EC-991D-4E64344B12B1}
2013-11-14 08:20 - 2013-11-14 08:20 - 00000000 ____D C:\Users\isabella\AppData\Local\{C5F3CEB6-A4FC-422A-AAA1-DEF42CBC5F83}
2013-11-13 13:17 - 2013-07-14 22:05 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 13:15 - 2012-01-24 17:26 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 12:49 - 2013-11-13 12:49 - 00001931 _____ C:\Users\isabella\Desktop\SharedDocs (TMHAUSER) - Verknüpfung.lnk
2013-11-13 12:49 - 2013-11-13 12:49 - 00001586 _____ C:\Users\isabella\Desktop\TMHAUSER - Verknüpfung.lnk
2013-11-13 12:46 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-11-13 11:07 - 2013-11-13 11:06 - 00000000 ____D C:\Users\isabella\AppData\Local\{128F5ADF-F3DB-47F8-A0FA-4E7A57F53FD0}
2013-11-12 15:17 - 2013-11-12 15:17 - 00000000 ____D C:\Users\isabella\AppData\Local\{C931B94B-5A68-4225-BCC8-4817CA6DF65E}
2013-11-11 21:51 - 2013-11-11 21:51 - 02015744 _____ C:\Users\isabella\Downloads\Stress (2) (2).ppt
2013-11-11 20:51 - 2013-11-11 20:51 - 02015744 _____ C:\Users\isabella\Downloads\Stress (2) (1).ppt
2013-11-11 20:40 - 2013-11-11 20:40 - 02240512 _____ C:\Users\isabella\Downloads\Stress (2).ppt
2013-11-11 10:49 - 2013-11-11 10:49 - 00000000 ____D C:\Users\isabella\AppData\Local\{E9797154-C802-4C64-8E1C-9B0D84A6BC32}
2013-11-11 09:56 - 2012-01-21 14:06 - 00000000 ____D C:\Users\isabella\AppData\Local\Microsoft Help
2013-11-11 09:49 - 2013-11-11 09:48 - 31172096 _____ C:\Users\isabella\Downloads\VO 1815_Handout 6.ppt
2013-11-11 05:50 - 2012-01-21 14:06 - 00267936 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-10 21:47 - 2013-11-10 21:47 - 00000000 ____D C:\Users\isabella\AppData\Local\{CDA072FF-1A5C-4025-9BA8-28A7CC3A3611}
2013-11-10 08:57 - 2013-11-10 08:56 - 00000000 ____D C:\Users\isabella\AppData\Local\{50090820-2732-40E3-BB43-27FD4BF39033}
2013-11-08 10:07 - 2013-11-08 10:07 - 00000000 ____D C:\Users\isabella\AppData\Local\{DFDC5E00-7D56-4240-BBC5-79B8D4DF4A68}
2013-11-07 07:31 - 2013-11-07 07:30 - 00000000 ____D C:\Users\isabella\AppData\Local\{ED923DEF-92EB-4704-826C-D3CAAAAC0748}
2013-11-06 18:52 - 2013-11-06 18:52 - 00000000 ____D C:\Users\isabella\AppData\Local\{7567AD67-CAA6-40EE-884E-CD39278328DB}
2013-11-05 09:19 - 2013-11-05 09:19 - 00000000 ____D C:\Users\isabella\AppData\Local\{46F98E1F-3AA9-4FB7-8B62-AB289EA7F790}
2013-11-04 20:26 - 2013-11-04 20:26 - 00000000 ____D C:\Users\isabella\AppData\Local\{C75AB8AA-0341-45D6-8120-22CB91879743}
2013-11-04 09:02 - 2013-11-04 09:02 - 04520960 _____ C:\Users\isabella\Downloads\VO 1815_Handout 4.ppt
2013-11-04 09:01 - 2013-11-04 09:01 - 10590208 _____ C:\Users\isabella\Downloads\VO 1815_Handout 5.ppt
2013-11-04 08:25 - 2013-11-04 08:25 - 00000000 ____D C:\Users\isabella\AppData\Local\{2B8AC3AB-4462-4A84-A6ED-19ED6191D763}
2013-11-03 18:17 - 2013-11-03 18:16 - 00000000 ____D C:\Users\isabella\AppData\Local\{859D5E4B-AE3B-4A3E-8381-B29C9643AA8F}
2013-11-03 15:11 - 2013-11-03 15:11 - 02166272 _____ C:\Users\isabella\Downloads\Stress (1).ppt
2013-11-03 10:29 - 2013-11-03 10:29 - 02291200 _____ C:\Users\isabella\Downloads\Stress.ppt

Some content of TEMP:
====================
C:\Users\isabella\AppData\Local\Temp\AskSLib.dll
C:\Users\isabella\AppData\Local\Temp\avgnt.exe
C:\Users\isabella\AppData\Local\Temp\conduitinstaller.exe
C:\Users\isabella\AppData\Local\Temp\dpae5pbw.dll
C:\Users\isabella\AppData\Local\Temp\ICReinstall_Facemoods.exe
C:\Users\isabella\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\isabella\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-6u39-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\isabella\AppData\Local\Temp\m02hp2xp.dll
C:\Users\isabella\AppData\Local\Temp\mgsqlite3.dll
C:\Users\isabella\AppData\Local\Temp\MouseKeyboardCenterx64_1031.exe
C:\Users\isabella\AppData\Local\Temp\MSETUP4.EXE
C:\Users\isabella\AppData\Local\Temp\ose00000.exe
C:\Users\isabella\AppData\Local\Temp\setup.exe
C:\Users\isabella\AppData\Local\Temp\Shortcut_sweetimsetup.exe
C:\Users\isabella\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\isabella\AppData\Local\Temp\SkypeSetup.exe
C:\Users\isabella\AppData\Local\Temp\SymcPCCUInstaller.exe
C:\Users\isabella\AppData\Local\Temp\uninst1.exe
C:\Users\isabella\AppData\Local\Temp\xu5fblzw.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-28 08:41

==================== End Of Log ============================
--- --- ---

--- --- ---


das hab ich jetzt bekommen, als ich den scan nochmal drüber geschickt hab

cosinus 03.12.2013 12:20
Meinen Beitrag nicht gelesen?
Ich frage nach Logs von Virenscannern, aber danke fürs das FRST Log

isabella0701 03.12.2013 14:24
wenn du mir sagen kannst wie ich das bekomme. mir sagt log nix. sorry. ich bin da wirklich dumm...

cosinus 03.12.2013 14:36
Wozu hab ich einen Artikel in meiner ersten Antwort verlinkt? :pfeiff:


Alle Zeitangaben in WEZ +1. Es ist jetzt 22:01 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131