Windows 8: Hilfeseiten von Windows, Thunderbirg, Firefox etc. öffnen sich dauernd von selbst.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-02-2014
Ran by Juga (administrator) on LAPTOP on 19-02-2014 18:18:52
Running from C:\Users\Juga\Desktop
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(REINER SCT) C:\Windows\SysWOW64\cjpcsc.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
() C:\Windows\system32\DptfParticipantProcessorService.exe
() C:\Windows\system32\DptfPolicyConfigTDPService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Star Finanz-Software Entwicklung und Vertriebs GmbH) C:\Program Files (x86)\StarMoney 9.0\ouservice\StarMoneyOnlineUpdate.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\LiveComm.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
() C:\Users\Juga\Desktop\Defogger.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-08-30] (Realtek Semiconductor)
HKLM\...\Run: [ASUSQuickGesture(x86)] - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe [20352 2012-09-11] (ASUSTeK Computer Inc.)
HKLM\...\Run: [ASUSTPLoader(x64)] - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe [169856 2012-09-11] (AsusTek)
HKLM\...\Run: [ASUSQuickGesture(x64)] - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe [22400 2012-09-11] (ASUSTeK Computer Inc.)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] - C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [21888 2012-07-30] ()
HKLM\...\Run: [ACMON] - C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192 2012-08-24] (ASUS)
HKLM\...\Run: [Bdagent] - C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe [1575192 2013-10-25] (Bitdefender)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7818040 2013-09-19] (Motorola Solutions, Inc.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [ASUSWebStorage] - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe [3417984 2012-08-28] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Reader Application Helper] - C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [899400 2013-11-27] (Sony Corporation)
HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2258056 2013-09-22] (Microsoft Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [] - [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-12-10] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-12-10] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/foto/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = 
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS
SearchScopes: HKCU - DefaultScope {A8687284-3697-4655-BE2B-AA9ECF2FE73E} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dsites0103&cd=2XzuyEtN2Y1L1Qzu0CyEzzyDtDzzyE0D0AtByBzz0CyD0C0DtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=732592644&ir=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=4241C485084DA275&affID=120008&tsp=5024
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=4241c5cd000000000000c485084da275&r=953
SearchScopes: HKCU - {A8687284-3697-4655-BE2B-AA9ECF2FE73E} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dsites0103&cd=2XzuyEtN2Y1L1Qzu0CyEzzyDtDzzyE0D0AtByBzz0CyD0C0DtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=732592644&ir=
SearchScopes: HKCU - {E77F2311-3431-4099-BACD-C4E2DD35C235} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^DE&apn_uid=847AF034-5453-4ABB-85F8-1DDFEE1375A3&apn_sauid=CC3463C2-6F6A-4E54-A5E5-F50EE66883CA
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: ASUS Browser Extension x64 - {78234974-0C4B-4111-BDEB-D9A104418772} - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x64\BrowserExtension64.dll (ASUSTeK Computer Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: ASUS Browser Extension x86 - {78234974-0C4B-4111-BDEB-D9A104418771} - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x86\BrowserExtension.dll (ASUSTeK Computer Inc.)
BHO-x32: ividi Helper Object - {8B8B2E80-1444-451D-AC8E-EB9A847F3887} - C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\bh\ividi.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll (Softonic.com)
BHO-x32: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicTlbr.dll (Softonic.com)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll (pdfforge GmbH)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{AEFBB86E-3140-48A0-A253-9D902613CC85}: [NameServer]139.7.30.126 139.7.30.125

FireFox:
========
FF ProfilePath: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox
FF user.js: detected! => C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\user.js
FF DefaultSearchEngine: Mysearchdial
FF NetworkProxy: "ftp", "127.0.0.1"
FF NetworkProxy: "ftp_port", 4001
FF NetworkProxy: "gopher", "127.0.0.1"
FF NetworkProxy: "gopher_port", 4001
FF NetworkProxy: "http", "127.0.0.1"
FF NetworkProxy: "http_port", 4001
FF NetworkProxy: "socks_remote_dns", true
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 4001
FF NetworkProxy: "type", 1
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @ei.FromDocToPDF_65.com/Plugin - C:\Program Files (x86)\FromDocToPDF_65EI\Installr\1.bin\NP65EISB.dll (FromDocToPDF)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @sony.com/ReaderDesktop - C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll (Sony Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\duckduckgo-ssl-javascript-free.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\google-de-ssl.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\google-encrypted-no-personalization.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ixquick---deutsch.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ixquick-ssl-pictures---deutsch.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ixquick-ssl-pictures---english.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ixquick.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\leo-eng-ger.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\leo-esp-ale.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\leo-fra-all.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\metager2.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\Mysearchdial.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\softonic.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ssl-wikipedia-deutsch.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ssl-wikipedia-english.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\startpage-https---deutsch.xml
FF SearchPlugin: C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\startpage-https.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Amazon-Icon - C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\amazon-icon@giga.de [2014-02-13]
FF Extension: HTTPS-Everywhere - C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\https-everywhere@eff.org [2013-10-20]
FF Extension: Spartipps von SparPilot.com - C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\sparpilot@sparpilot.com [2014-02-13]
FF Extension: No Name - C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\staged [2014-02-19]
FF Extension: Cookie Monster - C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{45d8ff86-d909-11db-9705-005056c00008} [2013-10-20]
FF Extension: UnPlug - C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\unplug@compunach.xpi [2013-08-06]
FF Extension: JonDoFox - C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{437be45a-4114-11dd-b9ab-71d256d89593}.xpi [2013-09-18]
FF Extension: NoScript - C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-09-17]
FF Extension: Adblock Plus - C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-08-06]
FF Extension: ProfileSwitcher - C:\Users\Juga\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{fa8476cf-a98c-4e08-99b4-65a69cb4b7d4}.xpi [2013-08-06]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext
FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2013-06-30]
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013-10-21]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext
FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2013-06-30]

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Softonic Chrome Toolbar) - C:\Users\Juga\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf [2013-10-21]
CHR HKLM-x32\...\Chrome\Extension: [aaaaojmikegpiepcfdkkjaplodkpfmlo] - C:\Users\Juga\AppData\Local\APN\GoogleCRXs\apnorjtoolbar.crx [2013-10-21]
CHR HKLM-x32\...\Chrome\Extension: [elchiiiejkobdbblfejjkbphbddgmljf] - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\Softonic.crx [2013-06-11]
CHR HKLM-x32\...\Chrome\Extension: [mkcedibhemacmilmkpndpkoidlnmgngg] - C:\Users\Juga\ChromeExtensions\mkcedibhemacmilmkpndpkoidlnmgngg\amazon.crx [2014-02-13]

==================== Services (Whitelisted) =================

R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe [69392 2013-10-25] (Bitdefender)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-09-22] (Microsoft Corp.)
R2 cjpcsc; C:\Windows\SysWOW64\cjpcsc.exe [515632 2013-05-21] (REINER SCT)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [218112 2013-05-28] ()
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [29056 2012-07-30] ()
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [30592 2012-07-30] ()
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [339456 2010-11-16] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S2 Mobile Partner. RunOuc; c:\program files (x86)\mobile partner\updatedog\ouc.exe [218624 2013-05-09] ()
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-28] ()
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
S2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [95184 2012-06-25] (Bitdefender)
R2 StarMoney 9.0 OnlineUpdate; C:\Program Files (x86)\StarMoney 9.0\ouservice\StarMoneyOnlineUpdate.exe [663184 2014-01-27] (Star Finanz-Software Entwicklung und Vertriebs GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe [67320 2013-10-25] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe [1645256 2013-10-25] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-28] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [56704 2012-09-11] (ASUS Corporation)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [727592 2013-10-25] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [601360 2013-10-25] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23456 2012-07-11] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-10-25] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-10-25] (BitDefender LLC)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-10-25] (BitDefender SRL)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [79192 2013-10-25] (BitDefender)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-09-05] (Motorola Solutions, Inc.)
S3 cjusb; C:\Windows\system32\DRIVERS\cjusb.sys [35192 2012-09-04] (REINER SCT)
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [107328 2012-07-13] (Intel Corporation)
R3 DptfDevFan; C:\Windows\system32\DRIVERS\DptfDevFan.sys [42816 2012-07-13] (Intel Corporation)
R3 DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [64832 2012-07-13] (Intel Corporation)
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [96064 2012-07-13] (Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [228672 2012-07-13] (Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [361792 2012-07-13] (Intel Corporation)
S3 ewusbnet; C:\Windows\system32\DRIVERS\ewusbnet.sys [256000 2013-05-09] (Huawei Technologies Co., Ltd.)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-10-25] (BitDefender LLC)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-10-08] (Intel Corporation)
R3 SensorsAlsDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
R2 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2013-10-25] (BitDefender S.R.L.)
S3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [48096 2012-08-09] (Windows (R) Win 7 DDK provider)
S3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188384 2012-08-09] (Windows (R) Win 7 DDK provider)
U0 msahci; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-19 18:18 - 2014-02-19 18:18 - 00027249 _____ () C:\Users\Juga\Desktop\FRST.txt
2014-02-19 18:18 - 2014-02-19 18:18 - 00000470 _____ () C:\Users\Juga\Desktop\defogger_disable.log
2014-02-19 18:04 - 2014-02-19 18:04 - 00000022 _____ () C:\Windows\S.dirmngr
2014-02-19 17:09 - 2014-02-19 17:09 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Juga\Downloads\mbam-consumer.exe
2014-02-19 16:48 - 2014-02-19 16:48 - 00000172 _____ () C:\Windows\AsCDProc.log
2014-02-19 16:30 - 2014-02-19 16:30 - 00001071 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-19 16:30 - 2014-02-19 16:30 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\Malwarebytes
2014-02-19 16:30 - 2014-02-19 16:30 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-19 16:30 - 2014-02-19 16:30 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-19 16:30 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-19 16:29 - 2014-02-19 16:29 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Juga\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-19 16:19 - 2014-02-19 15:42 - 00029451 _____ () C:\Users\Juga\Desktop\Addition.txt
2014-02-19 16:03 - 2014-02-19 16:03 - 00000470 _____ () C:\Windows\SysWOW64\defogger_disable.log
2014-02-19 15:51 - 2014-02-19 15:51 - 00296784 _____ () C:\Windows\Minidump\021914-7562-01.dmp
2014-02-19 15:44 - 2014-02-19 15:44 - 00299816 _____ () C:\Windows\Minidump\021914-7718-01.dmp
2014-02-19 15:43 - 2014-02-19 15:43 - 00380416 _____ () C:\Users\Juga\Desktop\Gmer-19357.exe
2014-02-19 15:41 - 2014-02-19 18:18 - 00000000 ____D () C:\FRST
2014-02-19 12:49 - 2014-02-19 12:49 - 02153472 _____ (Farbar) C:\Users\Juga\Desktop\FRST64.exe
2014-02-19 12:46 - 2014-02-19 12:46 - 01141248 _____ (Farbar) C:\Users\Juga\Downloads\FRST.exe
2014-02-19 12:46 - 2014-02-19 12:46 - 00000470 _____ () C:\Users\Juga\Downloads\defogger_disable.log
2014-02-19 12:46 - 2014-02-19 12:46 - 00000000 _____ () C:\Users\Juga\defogger_reenable
2014-02-19 12:45 - 2014-02-19 12:45 - 00050477 _____ () C:\Users\Juga\Desktop\Defogger.exe
2014-02-19 12:43 - 2014-02-19 12:57 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\systweak
2014-02-19 12:43 - 2014-02-19 12:43 - 00003012 _____ () C:\Windows\System32\Tasks\RegClean Pro_UPDATES
2014-02-19 12:43 - 2014-02-19 12:43 - 00002856 _____ () C:\Windows\System32\Tasks\RegClean Pro_DEFAULT
2014-02-19 12:43 - 2014-02-19 12:43 - 00002640 _____ () C:\Windows\System32\Tasks\MySearchDial
2014-02-19 12:43 - 2014-02-19 12:43 - 00002640 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-02-19 12:43 - 2014-02-19 12:43 - 00000302 _____ () C:\Windows\Tasks\MySearchDial.job
2014-02-19 12:43 - 2014-02-19 12:43 - 00000302 _____ () C:\Windows\Tasks\Digital Sites.job
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\DigitalSites
2014-02-19 12:43 - 2014-01-21 17:28 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot64.exe
2014-02-19 10:15 - 2014-02-19 17:58 - 00003586 _____ () C:\Windows\System32\Tasks\Bitdefender Auto-Scan
2014-02-18 08:48 - 2014-02-18 08:48 - 00003142 _____ () C:\Windows\System32\Tasks\{CEEC242F-CB31-4B7C-BA41-759D23FC22A4}
2014-02-18 08:48 - 2014-02-18 08:48 - 00000000 ____D () C:\Users\Juga\AppData\Local\Skype
2014-02-18 08:47 - 2014-02-18 08:47 - 01659552 _____ (Skype Technologies S.A.) C:\Users\Juga\Downloads\SkypeSetup(1).exe
2014-02-18 08:42 - 2014-02-19 17:46 - 00017418 _____ () C:\Windows\PFRO.log
2014-02-17 20:40 - 2014-02-17 20:40 - 01816433 _____ () C:\Users\Juga\Downloads\tools_v6.0.8.zip
2014-02-17 20:29 - 2014-02-17 20:29 - 09954793 _____ () C:\Users\Juga\Downloads\Ultimate-DRM-Removal-last.zip
2014-02-17 09:23 - 2014-02-17 09:25 - 88898427 _____ () C:\Users\Juga\Desktop\Tumblr_Video.mp4
2014-02-17 09:03 - 2014-02-17 09:03 - 00000852 _____ () C:\Windows\setupact.log
2014-02-17 09:03 - 2014-02-17 09:03 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-16 22:29 - 2014-02-16 22:29 - 00323576 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-16 22:06 - 2014-02-16 22:06 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-02-16 22:06 - 2014-02-16 22:06 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-16 22:06 - 2014-02-16 22:06 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-16 22:05 - 2014-02-16 22:06 - 03645064 _____ (Piriform Ltd) C:\Users\Juga\Downloads\ccsetup410_slim.exe
2014-02-16 17:50 - 2014-02-16 17:50 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-02-16 17:50 - 2014-02-16 17:50 - 00000000 ____D () C:\Windows\system32\NV
2014-02-16 12:58 - 2014-02-16 12:59 - 54537728 _____ () C:\Users\Juga\Downloads\calibre-1.24.0.msi
2014-02-16 06:31 - 2013-12-07 07:36 - 19751936 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-02-16 06:31 - 2013-12-07 06:15 - 17560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-02-15 20:17 - 2014-02-15 20:17 - 24490112 _____ (Mozilla) C:\Users\Juga\Downloads\Firefox Setup 27.0.1.exe
2014-02-15 00:23 - 2014-02-15 00:49 - 130171322 _____ () C:\Users\Juga\Desktop\1103195_white_ass_slut_fucked_twice_bare_creamed_huge_black_.flv
2014-02-14 10:11 - 2014-02-15 20:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-13 22:28 - 2013-12-05 00:43 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-13 22:28 - 2013-12-05 00:37 - 00451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-13 22:04 - 2013-11-01 06:53 - 02232664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-02-13 22:03 - 2014-02-01 10:20 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-13 22:03 - 2014-02-01 10:19 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-13 22:03 - 2014-02-01 10:19 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-13 22:03 - 2014-02-01 10:19 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-02-13 22:03 - 2014-02-01 10:19 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-02-13 22:03 - 2014-02-01 10:18 - 19274240 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-13 22:03 - 2014-02-01 10:18 - 15403520 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-13 22:03 - 2014-02-01 10:18 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-13 22:03 - 2014-02-01 10:18 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-13 22:03 - 2014-02-01 10:18 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-13 22:03 - 2014-02-01 10:18 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-13 22:03 - 2014-02-01 10:18 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-13 22:03 - 2014-02-01 10:18 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-13 22:03 - 2014-02-01 10:18 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-13 22:03 - 2014-02-01 08:58 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-13 22:03 - 2014-02-01 08:58 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-13 22:03 - 2014-02-01 08:58 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-02-13 22:03 - 2014-02-01 08:57 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-13 22:03 - 2014-02-01 08:57 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-13 22:03 - 2014-02-01 08:57 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-13 22:03 - 2014-02-01 08:57 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-13 22:03 - 2014-02-01 08:57 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-13 22:03 - 2014-02-01 08:57 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-13 22:03 - 2014-02-01 08:57 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-13 22:03 - 2014-02-01 08:40 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-13 22:03 - 2014-02-01 08:34 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-13 22:03 - 2014-02-01 06:08 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-02-13 22:03 - 2013-12-09 01:45 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-13 22:03 - 2013-12-09 00:59 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-13 22:03 - 2013-12-05 00:43 - 01845248 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-13 22:03 - 2013-12-05 00:37 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-13 22:03 - 2013-11-27 01:19 - 00385614 _____ () C:\Windows\system32\ApnDatabase.xml
2014-02-13 22:03 - 2013-11-26 00:17 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-02-13 22:02 - 2014-02-01 10:18 - 03960320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-13 22:02 - 2014-02-01 10:18 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-13 22:02 - 2014-02-01 08:57 - 14359040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-13 22:02 - 2014-02-01 08:57 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-13 22:02 - 2014-02-01 08:57 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-13 22:02 - 2014-02-01 08:57 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-13 09:58 - 2014-02-13 09:58 - 00000000 ____D () C:\Users\Juga\AppData\Local\Tempfeb52be43e051bfaf4839a6935e00e42
2014-02-13 09:58 - 2014-02-13 09:58 - 00000000 ____D () C:\Users\Juga\AppData\Local\Temp12e72473eede95c369de200ff0f01ceb
2014-02-13 09:57 - 2014-02-13 09:57 - 00000000 ____D () C:\Users\Juga\Downloads\Steganos-SpurenVernichter
2014-02-13 09:57 - 2014-02-13 09:57 - 00000000 ____D () C:\Users\Juga\ChromeExtensions
2014-02-13 09:57 - 2014-02-13 09:57 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\NVIDIA
2014-02-13 09:57 - 2014-02-13 09:57 - 00000000 ____D () C:\Users\Juga\AppData\Local\Temp14b5077f6956a3517aafd12a4b0ddc8f
2014-02-13 09:56 - 2014-02-13 09:56 - 01059584 _____ () C:\Users\Juga\Downloads\Steganos-SpurenVernichter-Setup.exe
2014-02-13 06:43 - 2014-02-13 06:43 - 00001237 _____ () C:\Users\Juga\Downloads\URLLink(6).acsm
2014-02-12 11:28 - 2014-01-13 00:30 - 02238976 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 11:28 - 2014-01-13 00:30 - 02032640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 11:28 - 2013-11-20 01:15 - 03842560 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-12 11:28 - 2013-11-20 00:57 - 03288576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-08 11:19 - 2014-02-08 11:19 - 00003576 _____ () C:\Users\Juga\Desktop\anschreibenMBWK.tex
2014-02-05 13:45 - 2014-02-07 08:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-02 12:22 - 2014-02-02 12:22 - 00007374 _____ () C:\Users\Juga\Desktop\Preisinformation zum 1. März 2014.eml
2014-01-26 10:21 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-26 10:21 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-26 10:21 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-26 10:21 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-26 10:15 - 2014-01-26 10:15 - 00921000 _____ (Oracle Corporation) C:\Users\Juga\Downloads\jxpiinstall.exe
2014-01-23 15:04 - 2014-01-23 15:04 - 00010723 _____ () C:\Users\Juga\Documents\Kopie von abrechnung-1-14.xlsx

==================== One Month Modified Files and Folders =======

2014-02-19 18:19 - 2014-02-19 18:18 - 00027249 _____ () C:\Users\Juga\Desktop\FRST.txt
2014-02-19 18:18 - 2014-02-19 18:18 - 00000470 _____ () C:\Users\Juga\Desktop\defogger_disable.log
2014-02-19 18:18 - 2014-02-19 15:41 - 00000000 ____D () C:\FRST
2014-02-19 18:13 - 2012-08-03 00:02 - 00761598 _____ () C:\Windows\system32\perfh007.dat
2014-02-19 18:13 - 2012-08-03 00:02 - 00159306 _____ () C:\Windows\system32\perfc007.dat
2014-02-19 18:13 - 2012-07-26 08:28 - 01748838 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-19 18:10 - 2013-05-07 18:30 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3203196741-1805427045-687499267-1002
2014-02-19 18:05 - 2013-05-06 18:53 - 00000500 _____ () C:\Users\Juga\AppData\Roaming\sp_data.sys
2014-02-19 18:04 - 2014-02-19 18:04 - 00000022 _____ () C:\Windows\S.dirmngr
2014-02-19 18:04 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-19 18:03 - 2012-11-15 19:50 - 01801426 _____ () C:\Windows\WindowsUpdate.log
2014-02-19 18:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-02-19 17:59 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-02-19 17:58 - 2014-02-19 10:15 - 00003586 _____ () C:\Windows\System32\Tasks\Bitdefender Auto-Scan
2014-02-19 17:53 - 2014-01-08 10:52 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\ClassicShell
2014-02-19 17:46 - 2014-02-18 08:42 - 00017418 _____ () C:\Windows\PFRO.log
2014-02-19 17:12 - 2013-05-09 10:31 - 00000121 _____ () C:\Users\Public\LMDebug.log
2014-02-19 17:09 - 2014-02-19 17:09 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Juga\Downloads\mbam-consumer.exe
2014-02-19 17:06 - 2012-07-26 06:26 - 00524288 ___SH () C:\Windows\system32\config\BBI
2014-02-19 17:05 - 2013-10-03 13:28 - 00000000 ____D () C:\ProgramData\DSearchLink
2014-02-19 17:05 - 2013-10-03 12:01 - 00000000 ____D () C:\Program Files (x86)\Unitech LLC
2014-02-19 16:48 - 2014-02-19 16:48 - 00000172 _____ () C:\Windows\AsCDProc.log
2014-02-19 16:30 - 2014-02-19 16:30 - 00001071 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-19 16:30 - 2014-02-19 16:30 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\Malwarebytes
2014-02-19 16:30 - 2014-02-19 16:30 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-19 16:30 - 2014-02-19 16:30 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-19 16:29 - 2014-02-19 16:29 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Juga\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-19 16:26 - 2013-04-02 14:25 - 00000000 ____D () C:\Users\Juga\AppData\Local\Packages
2014-02-19 16:03 - 2014-02-19 16:03 - 00000470 _____ () C:\Windows\SysWOW64\defogger_disable.log
2014-02-19 15:51 - 2014-02-19 15:51 - 00296784 _____ () C:\Windows\Minidump\021914-7562-01.dmp
2014-02-19 15:51 - 2013-05-24 05:45 - 00000000 ____D () C:\Windows\Minidump
2014-02-19 15:44 - 2014-02-19 15:44 - 00299816 _____ () C:\Windows\Minidump\021914-7718-01.dmp
2014-02-19 15:43 - 2014-02-19 15:43 - 00380416 _____ () C:\Users\Juga\Desktop\Gmer-19357.exe
2014-02-19 15:42 - 2014-02-19 16:19 - 00029451 _____ () C:\Users\Juga\Desktop\Addition.txt
2014-02-19 13:04 - 2013-05-09 10:21 - 00000000 ____D () C:\ProgramData\Skype
2014-02-19 12:57 - 2014-02-19 12:43 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\systweak
2014-02-19 12:49 - 2014-02-19 12:49 - 02153472 _____ (Farbar) C:\Users\Juga\Desktop\FRST64.exe
2014-02-19 12:46 - 2014-02-19 12:46 - 01141248 _____ (Farbar) C:\Users\Juga\Downloads\FRST.exe
2014-02-19 12:46 - 2014-02-19 12:46 - 00000470 _____ () C:\Users\Juga\Downloads\defogger_disable.log
2014-02-19 12:46 - 2014-02-19 12:46 - 00000000 _____ () C:\Users\Juga\defogger_reenable
2014-02-19 12:46 - 2013-05-06 18:50 - 00000000 ____D () C:\Users\Juga
2014-02-19 12:45 - 2014-02-19 12:45 - 00050477 _____ () C:\Users\Juga\Desktop\Defogger.exe
2014-02-19 12:43 - 2014-02-19 12:43 - 00003012 _____ () C:\Windows\System32\Tasks\RegClean Pro_UPDATES
2014-02-19 12:43 - 2014-02-19 12:43 - 00002856 _____ () C:\Windows\System32\Tasks\RegClean Pro_DEFAULT
2014-02-19 12:43 - 2014-02-19 12:43 - 00002640 _____ () C:\Windows\System32\Tasks\MySearchDial
2014-02-19 12:43 - 2014-02-19 12:43 - 00002640 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-02-19 12:43 - 2014-02-19 12:43 - 00000302 _____ () C:\Windows\Tasks\MySearchDial.job
2014-02-19 12:43 - 2014-02-19 12:43 - 00000302 _____ () C:\Windows\Tasks\Digital Sites.job
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\DigitalSites
2014-02-19 12:43 - 2013-07-26 23:49 - 00000101 _____ () C:\Users\Juga\AppData\Roaming\WB.CFG
2014-02-19 12:20 - 2013-08-09 17:51 - 00000000 ____D () C:\Program Files (x86)\StarMoney 9.0
2014-02-19 12:06 - 2013-06-30 21:58 - 524288512 _____ () C:\Users\Juga\Desktop\Datentresor - Ruppert.bvd
2014-02-19 12:02 - 2013-05-09 10:21 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\Skype
2014-02-19 11:47 - 2013-05-06 21:41 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-19 10:15 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-02-18 23:21 - 2013-05-11 16:41 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\vlc
2014-02-18 08:48 - 2014-02-18 08:48 - 00003142 _____ () C:\Windows\System32\Tasks\{CEEC242F-CB31-4B7C-BA41-759D23FC22A4}
2014-02-18 08:48 - 2014-02-18 08:48 - 00000000 ____D () C:\Users\Juga\AppData\Local\Skype
2014-02-18 08:47 - 2014-02-18 08:47 - 01659552 _____ (Skype Technologies S.A.) C:\Users\Juga\Downloads\SkypeSetup(1).exe
2014-02-17 20:42 - 2013-09-14 22:45 - 00000000 ____D () C:\Users\Juga\Documents\Calibre-Bibliothek
2014-02-17 20:40 - 2014-02-17 20:40 - 01816433 _____ () C:\Users\Juga\Downloads\tools_v6.0.8.zip
2014-02-17 20:29 - 2014-02-17 20:29 - 09954793 _____ () C:\Users\Juga\Downloads\Ultimate-DRM-Removal-last.zip
2014-02-17 09:59 - 2012-11-15 19:35 - 00000000 ____D () C:\Intel
2014-02-17 09:25 - 2014-02-17 09:23 - 88898427 _____ () C:\Users\Juga\Desktop\Tumblr_Video.mp4
2014-02-17 09:03 - 2014-02-17 09:03 - 00000852 _____ () C:\Windows\setupact.log
2014-02-17 09:03 - 2014-02-17 09:03 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-17 09:03 - 2013-11-02 21:16 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-17 09:03 - 2013-08-18 10:30 - 00008129 _____ () C:\Windows\system32\lvcoinst.log
2014-02-17 09:03 - 2012-11-15 19:35 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-02-16 22:29 - 2014-02-16 22:29 - 00323576 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-16 22:20 - 2013-05-06 18:51 - 00000000 ____D () C:\Users\Juga\AppData\Local\VirtualStore
2014-02-16 22:08 - 2013-05-16 23:12 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-02-16 22:08 - 2012-08-02 23:24 - 00000000 ____D () C:\Windows\Panther
2014-02-16 22:06 - 2014-02-16 22:06 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-02-16 22:06 - 2014-02-16 22:06 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-16 22:06 - 2014-02-16 22:06 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-16 22:06 - 2014-02-16 22:05 - 03645064 _____ (Piriform Ltd) C:\Users\Juga\Downloads\ccsetup410_slim.exe
2014-02-16 20:42 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache
2014-02-16 17:50 - 2014-02-16 17:50 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-02-16 17:50 - 2014-02-16 17:50 - 00000000 ____D () C:\Windows\system32\NV
2014-02-16 17:50 - 2013-05-06 18:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-16 17:50 - 2012-11-15 19:39 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-16 17:49 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData
2014-02-16 12:59 - 2014-02-16 12:58 - 54537728 _____ () C:\Users\Juga\Downloads\calibre-1.24.0.msi
2014-02-16 07:33 - 2013-06-22 06:43 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\gnupg
2014-02-16 06:34 - 2012-11-15 19:39 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-02-15 20:19 - 2014-02-14 10:11 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-15 20:19 - 2013-11-02 21:49 - 00001109 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-15 20:17 - 2014-02-15 20:17 - 24490112 _____ (Mozilla) C:\Users\Juga\Downloads\Firefox Setup 27.0.1.exe
2014-02-15 20:14 - 2013-05-06 18:52 - 00000000 ___RD () C:\Users\Juga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-15 15:28 - 2013-07-11 10:30 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-15 15:27 - 2013-05-06 19:57 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-15 00:49 - 2014-02-15 00:23 - 130171322 _____ () C:\Users\Juga\Desktop\1103195_white_ass_slut_fucked_twice_bare_creamed_huge_black_.flv
2014-02-14 20:26 - 2014-01-03 16:19 - 00000000 ____D () C:\Users\Juga\Desktop\pics
2014-02-13 09:58 - 2014-02-13 09:58 - 00000000 ____D () C:\Users\Juga\AppData\Local\Tempfeb52be43e051bfaf4839a6935e00e42
2014-02-13 09:58 - 2014-02-13 09:58 - 00000000 ____D () C:\Users\Juga\AppData\Local\Temp12e72473eede95c369de200ff0f01ceb
2014-02-13 09:57 - 2014-02-13 09:57 - 00000000 ____D () C:\Users\Juga\Downloads\Steganos-SpurenVernichter
2014-02-13 09:57 - 2014-02-13 09:57 - 00000000 ____D () C:\Users\Juga\ChromeExtensions
2014-02-13 09:57 - 2014-02-13 09:57 - 00000000 ____D () C:\Users\Juga\AppData\Roaming\NVIDIA
2014-02-13 09:57 - 2014-02-13 09:57 - 00000000 ____D () C:\Users\Juga\AppData\Local\Temp14b5077f6956a3517aafd12a4b0ddc8f
2014-02-13 09:56 - 2014-02-13 09:56 - 01059584 _____ () C:\Users\Juga\Downloads\Steganos-SpurenVernichter-Setup.exe
2014-02-13 06:43 - 2014-02-13 06:43 - 00001237 _____ () C:\Users\Juga\Downloads\URLLink(6).acsm
2014-02-09 15:20 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-08 11:19 - 2014-02-08 11:19 - 00003576 _____ () C:\Users\Juga\Desktop\anschreibenMBWK.tex
2014-02-07 08:14 - 2014-02-05 13:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-04 21:48 - 2013-05-06 21:41 - 00003772 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-02 12:22 - 2014-02-02 12:22 - 00007374 _____ () C:\Users\Juga\Desktop\Preisinformation zum 1. März 2014.eml
2014-02-01 10:20 - 2014-02-13 22:03 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-01 10:19 - 2014-02-13 22:03 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-01 10:19 - 2014-02-13 22:03 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-01 10:19 - 2014-02-13 22:03 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-02-01 10:19 - 2014-02-13 22:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-02-01 10:18 - 2014-02-13 22:03 - 19274240 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-01 10:18 - 2014-02-13 22:03 - 15403520 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-01 10:18 - 2014-02-13 22:03 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-01 10:18 - 2014-02-13 22:03 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-01 10:18 - 2014-02-13 22:03 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-01 10:18 - 2014-02-13 22:03 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-01 10:18 - 2014-02-13 22:03 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-01 10:18 - 2014-02-13 22:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-01 10:18 - 2014-02-13 22:03 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-01 10:18 - 2014-02-13 22:02 - 03960320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-01 10:18 - 2014-02-13 22:02 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-01 08:58 - 2014-02-13 22:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-01 08:58 - 2014-02-13 22:03 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-01 08:58 - 2014-02-13 22:03 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-02-01 08:57 - 2014-02-13 22:03 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-01 08:57 - 2014-02-13 22:03 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-01 08:57 - 2014-02-13 22:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-01 08:57 - 2014-02-13 22:03 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-01 08:57 - 2014-02-13 22:03 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-01 08:57 - 2014-02-13 22:03 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-01 08:57 - 2014-02-13 22:03 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-01 08:57 - 2014-02-13 22:02 - 14359040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-01 08:57 - 2014-02-13 22:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-01 08:57 - 2014-02-13 22:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-01 08:57 - 2014-02-13 22:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-01 08:40 - 2014-02-13 22:03 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-01 08:34 - 2014-02-13 22:03 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-01 06:08 - 2014-02-13 22:03 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-01-30 22:10 - 2012-07-26 09:14 - 00694240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-30 22:10 - 2012-07-26 09:14 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-26 10:21 - 2013-11-02 21:48 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-26 10:21 - 2013-05-10 20:39 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-26 10:15 - 2014-01-26 10:15 - 00921000 _____ (Oracle Corporation) C:\Users\Juga\Downloads\jxpiinstall.exe
2014-01-23 15:04 - 2014-01-23 15:04 - 00010723 _____ () C:\Users\Juga\Documents\Kopie von abrechnung-1-14.xlsx
2014-01-21 17:28 - 2014-02-19 12:43 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot64.exe

Files to move or delete:
====================
C:\Users\Juga\AppData\Roaming\Camdata.ini
C:\Users\Juga\AppData\Roaming\CamLayout.ini
C:\Users\Juga\AppData\Roaming\CamShapes.ini
C:\Users\Juga\AppData\Roaming\CamStudio.Producer.Data.ini
C:\ProgramData\SetStretch.exe


Some content of TEMP:
====================
C:\Users\Juga\AppData\Local\Temp\321.8936981092533_Update.exe
C:\Users\Juga\AppData\Local\Temp\3976uninstall.exe
C:\Users\Juga\AppData\Local\Temp\Sqlite3.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-17 09:01

==================== End Of Log ============================
         

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-02-2014
Ran by Juga at 2014-02-19 15:42:14
Running from C:\Users\Juga\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Virenschutz (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09}
FW: Bitdefender Firewall (Enabled) {A364D236-8096-DCCF-EF3F-4E4DBCD170CF}

==================== Installed Programs ======================

2007 Microsoft Office Suite Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
7-Zip 9.20 (x32 Version:  - )
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
ASUS Instant Connect (x32 Version: 1.2.8 - ASUS)
ASUS InstantOn (x32 Version: 3.0.2 - ASUS)
ASUS LifeFrame3 (x32 Version: 3.1.5 - ASUS)
ASUS Live Update (x32 Version: 3.1.9 - ASUS)
ASUS Power4Gear Hybrid (Version: 2.0.4 - ASUS)
ASUS Smart Gesture (x32 Version: 1.0.32 - ASUS)
ASUS Splendid Video Enhancement Technology (x32 Version: 1.03.0004 - ASUS)
ASUS Tutor (x32 Version: 1.0.7 - ASUS)
ASUS USB Charger Plus (x32 Version: 2.1.4 - ASUS)
ASUS WebStorage Sync Agent (x32 Version: 1.1.9.120 - ASUS Cloud Corporation)
AsusVibe2.0 (x32 Version: 2.0.10.168 - ASUSTEK)
ATK Package (x32 Version: 1.0.0022 - ASUS)
AudibleManager (x32 Version: 1963274756.1637916.1637768.1963183295 - Audible, Inc.)
Audiograbber 1.83 SE  (x32 Version: 1.83 SE  - Audiograbber)
Bing-Desktop (x32 Version: 1.3.322.0 - Microsoft Corporation)
Bitdefender Total Security 2013 (Version: 16.29.0.1830 - Bitdefender)
calibre (x32 Version: 1.12.0 - Kovid Goyal)
CamStudio Lossless Codec v1.5 (x32 Version: 1.5 - CamStudio)
CCleaner (Version: 4.10 - Piriform)
Classic Shell (Version: 4.0.2 - IvoSoft)
cyberJack Base Components (x32 Version: 6.10.7 - REINER SCT)
Delta Chrome Toolbar (x32 Version:  - Visual Tools) <==== ATTENTION
Deutsche Post E-Porto (x32 Version: 2.3.0 - Deutsche Post AG)
FLV Player 2.0 (build 25) (x32 Version: 2.0 (build 25) - Martijn de Visser)
GIMP 2.8.6 (Version: 2.8.6 - The GIMP Team)
GnuWin32: sed-4.2.1 (x32 Version: 4.2.1 - GnuWin)
Google Update Helper (x32 Version: 1.3.23.0 - DealPly Technologies Ltd) Hidden <==== ATTENTION
Gpg4win (2.1.1) (x32 Version: 2.1.1 - The Gpg4win Project)
GPL Ghostscript (Version: 9.07 - Artifex Software Inc.)
GSview 5.0 (Version: 5.0 - Ghostgum Software Pty Ltd)
Intel(R) Control Center (x32 Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (x32 Version: 6.0.5.1080 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252 - Intel Corporation)
Intel(R) PRO/Wireless Driver (Version: 16.01.5000.0577 - Intel Corporation) Hidden
Intel(R) Processor Graphics (x32 Version: 9.17.10.2843 - Intel Corporation)
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (Version: 15.5.0.0344 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) Rapid Storage Technology (x32 Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (Version: 3.5.34.0 - Intel Corporation)
Intel® PROSet/Wireless Software (x32 Version: 16.1.5 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (Version: 16.01.5000.0269 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
Java 7 Update 45 (64-bit) (Version: 7.0.450 - Oracle)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JonDo (x32 Version:  - )
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
MiKTeX 2.9 (x32 Version: 2.9 - MiKTeX.org)
Mobile Partner (x32 Version: 21.005.11.01.858 - Huawei Technologies Co.,Ltd)
Mozilla Firefox 27.0.1 (x86 de) (x32 Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (x32 Version: 27.0.1 - Mozilla)
Mozilla Thunderbird 24.3.0 (x86 de) (x32 Version: 24.3.0 - Mozilla)
MyFreeCodec (HKCU Version:  - )
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.11.3 (Version: 1.11.3 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.0613 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.12.0613 (Version: 9.12.0613 - NVIDIA Corporation)
NVIDIA Systemsteuerung 331.65 (Version: 331.65 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
Open It! (x32 Version: 1.1.1 - OpenIt)
PDF Architect (x32 Version: 1.1.83.9982 - pdfforge GmbH)
PDFCreator (x32 Version: 1.7.1 - pdfforge)
pdfforge Images2PDF 0.9.6.930 (Version: 0.9.6.930 - pdfforge GbR)
Reader for PC (x32 Version: 2.2.00.11270 - Sony Corporation)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6722 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.23.0 - SAMSUNG Electronics Co., Ltd.)
Scan2PDF 1.6 (x32 Version:  - Koma-Code)
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Softonic toolbar  on IE and Chrome (x32 Version: 1.8.21.14 - Softonic) <==== ATTENTION
StarMoney (x32 Version: 4.0.1.51 - StarFinanz) Hidden
StarMoney 9.0  (x32 Version: 9.0 - Star Finanz GmbH)
StreamTransport version: 1.0.2.2171 (x32 Version:  - )
Texmaker (x32 Version:  - )
Tor 0.2.3.25 (x32 Version:  - )
Total Commander 64-bit (Remove or Repair) (Version: 8.50 beta 4 - Ghisler Software GmbH)
Unitech LLC toolbar   (x32 Version: 1.8.23.0 - Unitech LLC)
Update for 2007 Microsoft Office System (KB967642) (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
Vidalia 0.2.21 (x32 Version:  - )
VLC media player 2.1.2 (x32 Version: 2.1.2 - VideoLAN)
wGet 1.11.4 (Installer 1.3) (x32 Version: 1.11.0004 - )
WinDjView 2.0.2 (Version: 2.0.2 - Andrew Zhezherun)
Windows Driver Package - ASUS (ATP) Mouse  (08/27/2012 1.0.0.125) (Version: 08/27/2012 1.0.0.125 - ASUS)
WinFlash (x32 Version: 2.41.1 - ASUS)
Zip Opener Packages (HKCU Version:  - ) <==== ATTENTION

==================== Restore Points  =========================

26-01-2014 09:20:20 Installed Java 7 Update 51
05-02-2014 12:22:53 Windows Update
12-02-2014 10:49:08 Windows Update
15-02-2014 14:26:47 Windows Update
17-02-2014 08:03:15 Intel® PROSet/Wireless Software
19-02-2014 11:44:45 RegClean Pro Mi, Feb 19, 14  12:44

==================== Hosts content: ==========================

2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {080D78EB-969A-46DB-BBA7-82CC16534CFF} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {29BDECA1-8667-4968-ACF3-F01321C48124} - System32\Tasks\RegClean Pro_UPDATES => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe <==== ATTENTION
Task: {3A6A4771-AC83-496C-B358-A0CE5EF755D2} - System32\Tasks\YourFile DownloaderUpdate => C:\Program Files (x86)\YourFileDownloader\YourFileUpdater.exe <==== ATTENTION
Task: {526F8EC5-1FDC-45B2-A4E9-97A0DD815878} - System32\Tasks\RegClean Pro_DEFAULT => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe <==== ATTENTION
Task: {5637C8AE-B863-4A40-AC49-2F13E021EDA2} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-07-24] (ASUSTek Computer Inc.)
Task: {5DBC8207-58D2-4A13-86C3-283F08D8061E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: {6EE883C0-5EDB-46E3-B3E7-DE5263FE0834} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)
Task: {7474E9DA-9A67-4148-A89C-1B7388CF769B} - System32\Tasks\{CEEC242F-CB31-4B7C-BA41-759D23FC22A4} => Firefox.exe hxxp://ui.skype.com/ui/0/6.13.0.104/de/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {748F09CF-A0BB-4471-B1A4-4FF092FA452E} - System32\Tasks\{F36EC44A-5CED-4E9F-9496-C8FC49C7B30C} => Firefox.exe hxxp://ui.skype.com/ui/0/6.10.0.104/de/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {871D39AB-DE84-4C1D-9C7B-4C3D2A3E8524} - System32\Tasks\{A294FC20-BEC6-4BBE-8B7A-6BB590A396C0} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.0.105/de/abandoninstall?source=lightinstaller&amp;page=tsProgressBar
Task: {96FE9537-E2FC-49B4-8B7E-A2646A9B32CE} - System32\Tasks\MySearchDial => C:\Users\Juga\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {A443FA76-908A-44E3-ADBD-C72CEED15761} - System32\Tasks\Microsoft\Windows\Setup\Windows Upgrade Notification Task => C:\Windows\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {AE793DA3-1FA0-4135-9EFC-057DD50F2FA3} - System32\Tasks\Bitdefender Auto-Scan => C:\Program Files\Bitdefender\Bitdefender 2013\mtasklaunch.exe [2013-10-25] (Bitdefender)
Task: {B725CF68-ECC4-4AF0-B71E-5FAE8A4EB23F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {CD7127DD-1ECF-451E-8F76-ADC0F4331D6F} - System32\Tasks\Digital Sites => C:\Users\Juga\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {E4B23B20-9C3F-42CA-9D8C-8AB452D9620E} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-08-22] (ASUSTeK Computer Inc.)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {F70AA432-AED4-45EF-8B3A-CBE41754484F} - System32\Tasks\ASUS InstantOn Config => C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2012-08-06] (ASUS)
Task: {FB4612AF-3E7B-4C0C-B710-07484DA334F8} - \DSite No Task File
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\Digital Sites.job => ?
Task: C:\Windows\Tasks\MySearchDial.job => ? <==== ATTENTION
Task: C:\Windows\Tasks\RegClean Pro_DEFAULT.job => ?
Task: C:\Windows\Tasks\RegClean Pro_UPDATES.job => ?

==================== Loaded Modules (whitelisted) =============

2013-06-30 18:20 - 2013-10-25 17:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2013\txmlutil.dll
2013-06-30 18:20 - 2013-10-25 17:32 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2013\UI\accessl.ui
2013-06-30 18:20 - 2011-11-14 19:17 - 00153680 _____ () C:\Program Files\Bitdefender\Bitdefender 2013\bdfwcore.dll
2013-06-30 18:20 - 2013-10-25 17:31 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender 2013\UI\IMSecurityAL.ui
2014-02-07 23:34 - 2014-02-07 23:34 - 00769256 _____ () C:\Program Files\Bitdefender\Bitdefender 2013\otengines_00035_011\ashttpbr.mdl
2014-02-07 23:34 - 2014-02-07 23:34 - 00567352 _____ () C:\Program Files\Bitdefender\Bitdefender 2013\otengines_00035_011\ashttpdsp.mdl
2014-02-07 23:34 - 2014-02-07 23:34 - 02585688 _____ () C:\Program Files\Bitdefender\Bitdefender 2013\otengines_00035_011\ashttpph.mdl
2014-02-07 23:34 - 2014-02-07 23:34 - 01313096 _____ () C:\Program Files\Bitdefender\Bitdefender 2013\otengines_00035_011\ashttprbl.mdl
2013-12-10 08:13 - 2013-12-10 08:13 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2012-11-15 19:39 - 2013-10-23 09:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2008-08-25 05:02 - 2008-08-25 05:02 - 00027648 _____ () C:\Windows\System32\DELG1L6.DLL
2013-05-28 17:50 - 2013-05-28 17:50 - 00218112 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
2012-09-17 07:53 - 2012-07-30 12:26 - 00029056 _____ () C:\Windows\system32\DptfParticipantProcessorService.exe
2012-09-17 07:53 - 2012-07-30 12:27 - 00030592 _____ () C:\Windows\system32\DptfPolicyConfigTDPService.exe
2010-11-16 14:38 - 2010-11-16 14:38 - 00339456 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2013-05-09 17:55 - 2013-05-09 17:55 - 00218624 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
2008-08-22 06:32 - 2008-08-22 06:32 - 00253440 _____ () C:\Windows\system32\ssminidriver.dll
2013-05-08 06:24 - 2012-06-21 13:01 - 01117480 ____N () C:\Program Files\Bitdefender\Bitdefender SafeBox\System.Data.SQLite.dll
2012-08-24 18:26 - 2012-08-24 18:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2013-04-02 17:44 - 2013-04-02 17:45 - 00176024 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2013-05-28 17:44 - 2013-05-28 17:44 - 00221184 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
2013-05-28 17:41 - 2013-05-28 17:41 - 00050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
2013-05-28 17:44 - 2013-05-28 17:44 - 00069632 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
2013-05-28 17:45 - 2013-05-28 17:45 - 00627712 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-11.dll
2013-05-28 17:42 - 2013-05-28 17:42 - 00037888 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
2013-05-09 17:55 - 2013-05-09 17:55 - 00011362 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\mingwm10.dll
2013-05-09 17:55 - 2013-05-09 17:55 - 00043008 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\libgcc_s_dw2-1.dll
2013-05-09 17:55 - 2013-05-09 17:55 - 02415104 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\QtCore4.dll
2013-05-09 17:55 - 2013-05-09 17:55 - 01148416 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\QtNetwork4.dll
2014-02-06 18:47 - 2011-01-13 10:44 - 00232800 _____ () C:\Program Files (x86)\StarMoney 9.0\ouservice\PATCHW32.dll
2012-08-24 18:17 - 2012-08-24 18:17 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2013-12-10 08:13 - 2013-12-10 08:13 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2013-11-27 20:48 - 2013-11-27 20:48 - 00880640 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\fsk.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00040264 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskMediaPlayers.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00239944 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\Fskin.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00026952 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskinLocalize.dll
2013-11-26 11:34 - 2013-11-26 11:34 - 00798720 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskSecurity.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00125256 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskDocumentViewer.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00016200 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskPower.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00024904 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskNetInterface.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00017224 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskMobileMediaDevice.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00015176 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskTimeHardware.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00034632 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ticket.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00018760 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ebookDeviceNotifier.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00092488 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ebookUsb.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00149832 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\readerAppHelper.dll
2013-11-27 20:49 - 2013-11-27 20:49 - 00178504 _____ () C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\USBDetector.dll
2014-02-15 13:03 - 2014-02-15 13:03 - 00017920 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\b7497ee745bead9869f53a314470edeb\PSIClient.ni.dll
2012-11-15 19:41 - 2012-06-25 11:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-02-05 13:45 - 2014-02-05 13:45 - 03019376 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2014-02-05 13:45 - 2014-02-05 13:45 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2014-02-05 13:45 - 2014-02-05 13:45 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
2014-02-14 10:11 - 2014-02-13 01:36 - 03578992 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Juga\Desktop\Asstel Ihre Nachricht zur Sachversicherung.eml:OECustomProperty
AlternateDataStreams: C:\Users\Juga\Desktop\Asstel Unser Vorschlag für eine Unfallversicherung .eml:OECustomProperty
AlternateDataStreams: C:\Users\Juga\Desktop\DER SPIEGEL digital-Ihr Abonnement.eml:OECustomProperty
AlternateDataStreams: C:\Users\Juga\Desktop\Dienstrecht - Info.eml:OECustomProperty
AlternateDataStreams: C:\Users\Juga\Desktop\Dr. Thomas Wurm.eml:OECustomProperty
AlternateDataStreams: C:\Users\Juga\Desktop\Ihre Bestellung bei found4you.eml:OECustomProperty
AlternateDataStreams: C:\Users\Juga\Desktop\Preise-Dreikönigshof1.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Juga\Desktop\Preise-Dreikönigshof1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\Juga\Desktop\Preisinformation zum 1. März 2014.eml:OECustomProperty
AlternateDataStreams: C:\Users\Juga\Desktop\RAe Ehlers und Feldmeier.eml:OECustomProperty
AlternateDataStreams: C:\Users\Juga\Desktop\Sie haben eine Zahlung an cadooz GmbH autorisiert.eml:OECustomProperty
AlternateDataStreams: C:\Users\Juga\Desktop\Versand Ihrer Bestellung 157857195567771_0.eml:OECustomProperty
AlternateDataStreams: C:\Users\Juga\Downloads\ActiveSetupN.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\basic-miktex-2.9.4813.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\ccsetup410_slim.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\ClassicShellSetup_4_0_2.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\Defogger.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\ep_ms_word_2007_addin_v2_3.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\Firefox Setup 27.0.1.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\Firefox Setup Stub 25.0.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\FRST.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\FRST64(1).exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\FRST64.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\gs907w64.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\gsv50w64.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\JonDoFox.paf.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\JonDoSetup.paf.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\jre-7u45-windows-x64.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\jxpiinstall.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\PDFCreator-1_7_1_setup.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\PDFCreatorSetup.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\pdfforge_Images2PDF-0_9_6-setup.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\PDF_Architect_Installer_1.1.83.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\sed-4.2.1-setup.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\Setup(1).exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\SkypeSetup(1).exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\SkypeSetup.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\Steganos-SpurenVernichter-Setup.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\tarifrechnersetup.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\texmakerwin32_install.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\tools v6.0.8.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\TrueCrypt Setup 7.1a.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\wget-installer.exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\ZipExtractorSetup(1).exe:BDU
AlternateDataStreams: C:\Users\Juga\Downloads\ZipExtractorSetup.exe:BDU

==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: USB-IF xHCI USB Host Controller
Description: USB-IF xHCI USB Host Controller
Class Guid: {8a2edc79-c759-46f2-88af-9d4efe3b5eee}
Manufacturer: Intel Corporation
Service: XHCIPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (02/19/2014 03:40:09 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: LAPTOP)
Description: Die App „microsoft.windowsphotos_8wekyb3d8bbwe!Microsoft.WindowsLive.ModernPhotos“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.

Error: (02/19/2014 00:58:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: LAPTOP)
Description: Die App „microsoft.windowsphotos_8wekyb3d8bbwe!Microsoft.WindowsLive.ModernPhotos“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.

Error: (02/19/2014 00:56:14 PM) (Source: MsiInstaller) (User: LAPTOP)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Mozilla Firefox

Error: (02/19/2014 00:56:12 PM) (Source: MsiInstaller) (User: LAPTOP)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Mozilla Firefox

Error: (02/19/2014 00:56:12 PM) (Source: MsiInstaller) (User: LAPTOP)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Mozilla Firefox

Error: (02/19/2014 00:56:12 PM) (Source: MsiInstaller) (User: LAPTOP)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Mozilla Firefox

Error: (02/19/2014 00:56:11 PM) (Source: MsiInstaller) (User: LAPTOP)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Mozilla Firefox

Error: (02/19/2014 00:56:11 PM) (Source: MsiInstaller) (User: LAPTOP)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Mozilla Firefox

Error: (02/19/2014 00:56:10 PM) (Source: MsiInstaller) (User: LAPTOP)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Mozilla Firefox

Error: (02/19/2014 00:10:36 PM) (Source: DptfPolicyLpmServiceHelper) (User: )
Description: DptfPolicyLpmServiceHelperWinMain:  CreateSharedMemory() failed.


System errors:
=============
Error: (02/19/2014 00:57:36 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Update FindRight" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (02/19/2014 00:12:14 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (02/19/2014 00:12:14 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (02/19/2014 00:10:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PDF Architect Service" wurde mit folgendem Fehler beendet: 
%%2147500037

Error: (02/19/2014 00:10:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Mobile Partner. OUC" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (02/19/2014 00:10:11 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Mobile Partner. OUC erreicht.

Error: (02/19/2014 00:06:14 PM) (Source: DCOM) (User: LAPTOP)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (02/18/2014 08:45:55 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (02/18/2014 08:45:55 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (02/18/2014 08:43:51 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PDF Architect Service" wurde mit folgendem Fehler beendet: 
%%2147500037


Microsoft Office Sessions:
=========================
Error: (07/04/2013 06:02:27 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 535 seconds with 0 seconds of active time.  This session ended with a crash.
         

defogger_disable by jpshortstuff (23.02.10.1)
Log created at 18:18 on 19/02/2014 (Juga)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
         

 Malwarebytes Anti-Malware  (PRO) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.02.19.08

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16798
Juga :: LAPTOP [Administrator]

Schutz: Aktiviert

19.02.2014 17:14:10
mbam-log-2014-02-19 (17-14-10).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 538471
Laufzeit: 30 Minute(n), 7 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 1
HKCU\Software\ividi\ividi (PUP.Optional.iVIDI.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 1
C:\Users\Juga\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VEWFXEL8\Setup[1].exe (PUP.Optional.FindRight.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         

 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.02.19.08

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16798
Juga :: LAPTOP [Administrator]

Schutz: Aktiviert

19.02.2014 17:07:16
mbam-log-2014-02-19 (17-07-16).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 262700
Laufzeit: 2 Minute(n), 56 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 1
HKCU\Software\ividi\ividi (PUP.Optional.iVIDI.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
         

 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.02.19.08

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16798
Juga :: LAPTOP [Administrator]

Schutz: Aktiviert

19.02.2014 17:00:10
mbam-log-2014-02-19 (17-00-10).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 263170
Laufzeit: 2 Minute(n), 8 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 25
HKCR\AppID\{685F23D9-FCFD-475C-B56A-362645945C5A} (PUP.Optional.iVIDI.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\esrv.ividiESrvc (PUP.Optional.iVIDI.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\esrv.ividiESrvc.1 (PUP.Optional.iVIDI.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\ividi.ividiappCore (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\ividi.ividiappCore.1 (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\DealPlyLive (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\Unitech LLC\ividi (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\iVIDI Plugin (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\mysearchdial.com (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\InstallCore\1I1T1Q1S (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\ividi\ividi (PUP.Optional.iVIDI.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\DealPlyLive (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Google\chrome\Extensions\kpdhgpkkloealnjnmepfhanpcleldbef (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Unitech LLC\ividi (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{211B330A-499B-415E-B1F1-B7132A8751D2} (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{D18734A5-B131-4335-A3E0-15FF90AC90EE} (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\i (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\TypeLib\{905E34C2-F4EB-49BE-A36B-47692CF957A8} (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ividi (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 1
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 0B1G1O1S0V1G1F -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 16
C:\ProgramData\DealPlyLive (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\DealPlyLive\Update (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\DealPlyLive\Update\Log (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\DealPlyLive (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\DealPlyLive\CrashReports (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Roaming\OpenCandy\4C3B8E690B2A4DB2B5E3798C99871212 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Roaming\OpenCandy\6E337B228F1A4183BD3974C21183AAF5 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Roaming\OpenCandy\E07E3A11429943D59E3492C2A8786C68 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\DealPlyLive (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\DealPlyLive\CrashReports (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\Unitech LLC\ividi (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0 (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\bh (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0 (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateien: 32
C:\ProgramData\DSearchLink\DSearchLink.exe (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Roaming\OpenCandy\4C3B8E690B2A4DB2B5E3798C99871212\dp.exe (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Temp\is1590112554\1909751_stp\Mysearchdial.exe (PUP.Optional.MySpeedDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Temp\is1590112554\1909754_stp\rcpsetup_adppi15_adppi15.exe (PUP.Optional.RegCleanPro) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Temp\is1590112554\1909794_stp\FindRightSetup.exe (PUP.Optional.FindRight.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\Downloads\Setup(1).exe (PUP.Optional.InstallCore) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\Downloads\tools v6.0.8.exe (PUP.Optional.InstalleRex) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\Downloads\ZipExtractorSetup(1).exe (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\Downloads\ZipExtractorSetup.exe (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows\Tasks\RegClean Pro_UPDATES.job (PUP.Optional.RegCleanerPro.J) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows\Tasks\RegClean Pro_DEFAULT.job (PUP.Optional.RegCleanPro.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\DealPlyLive\Update\Log\DealPlyLive.log (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Roaming\OpenCandy\6E337B228F1A4183BD3974C21183AAF5\Setupsft_chr_p1v5.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Roaming\OpenCandy\E07E3A11429943D59E3492C2A8786C68\TuneUpUtilities2013-2200217_de-DE.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividi.crx (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividiApp.dll (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividiEng.dll (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividisrv.exe (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\uninstall.exe (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\appCntrl.js (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\bg.html (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\bg.js (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\CrmAdpt.dll (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\ct.js (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\CTB.dll (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\dpk.js (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\hprtkMsg.htm (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\hprtkMsg.js (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\json2.min.js (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\logo.png (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\manifest.json (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Juga\AppData\Local\Google\Chrome\User Data\default\extensions\kpdhgpkkloealnjnmepfhanpcleldbef\1.0_0\pref.json (PUP.Optional.Ividi.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)