Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows 7: Internet funktionieren nach CCleaner nich mehr

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 30.10.2014, 10:48   #1
Iraklis
 
Windows 7: Internet funktionieren nach CCleaner nich mehr - Standard

Windows 7: Internet funktionieren nach CCleaner nich mehr



Guten Tag,

bei den Versuch meinen Asus Notebook (Windows 7) aufzuräumen, habe ich wahrscheinlich etwas gelöscht bzw. verstellt.

Egal ob man mit Chrome, Safari, Firefox oder Iexplorer versucht eine Seite zu öffnen schlägt es fehl. Bei Chrome steht unten "Host auflösen" und anschließend kommt die Fehlermeldung "Diese Website ist nicht verfügbar".

Das Wlan funtioniert teils einwandfrei teils erscheint ein Ausrufezeichen. Das Internet funktioniert ohne Probleme über das Ipad, Iphone und anderen Notebook mit Windows 8.

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-10-2014
Ran by Konstantinos Tzontas at 2014-10-30 11:33:18
Running from C:\Users\Konstantinos Tzontas\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3monkey (HKCU\...\7202e20a3ee22bab) (Version: 1.0.0.4 - 3monkey.me)
64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.6.0.393 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.3 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.9.900.117 - Adobe Systems Incorporated)
Adobe InCopy CC (HKLM-x32\...\{2606D96F-C1A3-1014-9A8F-E3561A1AC78D}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe InDesign CC (HKLM-x32\...\{BC448016-6F11-1014-B0EA-97CEE6E26CB6}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}) (Version: 11.0 - Adobe Systems, Inc.)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
AMPLUS Vokabel-Trainer 1.2 (HKLM-x32\...\AMPLUS Vokabel-Trainer 1.2) (Version:  - )
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
B110 (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
calibre (HKLM-x32\...\{A2A971DE-C864-4CF0-8FCA-FF7F569D8476}) (Version: 1.43.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.1.4003 - CDBurnerXP)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.41 - DivX, LLC)
Elevated Installer (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.1.13904 - Landesfinanzdirektion Thüringen)
ESET Smart Security (HKLM\...\{F5A3E880-A737-48F2-A124-6F5D4CEA6AB4}) (Version: 7.0.302.26 - ESET, spol s r. o.)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Football Manager 2014 (HKLM-x32\...\Steam App 231670) (Version:  - Sports Interactive)
Free ISO Create Wizard 6.0.7 (HKLM-x32\...\Free ISO Create Wizard_is1) (Version:  - FreeAudioVideoSoftTech, Inc.)
Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version:  - )
Free YouTube to MP3 Converter version 3.12.46.923 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.46.923 - DVDVideoSoft Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin with myGarmin Agent (HKLM-x32\...\{92A70E71-4F0E-4C05-A777-16424E89F162}) (Version: 2.9.2 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{b43ffffb-1adc-4bcb-b277-7844ebff94da}) (Version: 3.2.17.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel PROSet Wireless (x32 Version:  - ) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{3C41721F-AF0F-4086-AA1C-4C7F29076228}) (Version: 14.01.1000 - Intel Corporation)
Intel(R) Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.400.4 - Intel)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM-x32\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Shutdown4U (HKLM-x32\...\Shutdown4U) (Version:  - )
SolutionCenter (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.17.0 - Synaptics Incorporated)
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
System Requirements Lab CYRI (64-bit) (HKLM\...\{15AD6738-23E8-4AE6-93E9-434E717EECB2}) (Version: 4.5.1.0 - Husdawg, LLC)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Unlocker 1.9.1-x64 (HKLM\...\Unlocker) (Version: 1.9.1 - Cedrick Collomb)
USB Safely Remove 5.2 (HKLM-x32\...\USB Safely Remove_is1) (Version:  - SafelyRemove.com)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtua Tennis 4 (x32 Version: 1.0.0001.130 - Sega) Hidden
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 3.6 - Bazis)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)

==================== Restore Points  =========================

29-10-2014 23:08:24 Installed Rosetta Stone TOTALe

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-09-06 09:56 - 2014-09-18 18:16 - 00000000 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00115E0E-E600-458A-BD95-77DF42AFCABC} - System32\Tasks\{13920426-8421-44B0-A012-30BC09F29C47} => C:\Program Files (x86)\Garmin\Express\Express.exe
Task: {04F7608B-393D-4072-AB70-81F7BD2F07E1} - System32\Tasks\{55619592-4FD9-4558-AAE0-58DF071A7F8B} => C:\Users\Konstantinos Tzontas\Downloads\FileFormatConverters (2).exe
Task: {2FC8D407-727C-434D-AA03-30AEAB73C763} - System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {33D04F6C-C7D6-423A-A9F9-1AFFFB6DD9E4} - System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {36418EFA-2350-47B7-B11A-306DE675131B} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-KONSTANTINOSTZO => C:\Windows\ehome\McxTask.exe [2009-07-14] (Microsoft Corporation)
Task: {39B24B34-D5EF-4668-A2F2-C23ED6650C8C} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {3FFB913A-5FC1-4B01-B255-555F7A7F3016} - System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {44E3FD51-3D3C-48F8-8765-91CF8548DF31} - System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {47EB376D-703D-4040-A24D-7168172FA8D1} - System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {4A2C04C4-092F-4FB6-9E1D-63C3F2F25504} - System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {586A8884-CAB5-41CA-A6E2-B92036545416} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS)
Task: {5AF39471-8B18-44ED-A697-9824FF6C2167} - System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {6418B7BD-1E71-4D08-B196-B6F86BE89901} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-30] (Adobe Systems Incorporated)
Task: {6E7D8AE9-C4FC-4979-A75A-18A9CFF903D4} - System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {816DBEAA-A770-41BC-A9E9-9A058C81C0AD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {853C9EE0-7B2E-44F5-BCB1-4F3933E7E2FE} - \Express FilesUpdate No Task File <==== ATTENTION
Task: {8BA604DF-7EA1-45DA-A322-CB66520A93B5} - System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {922C5FD8-CA79-406F-9565-C6DB0FE9F3D6} - System32\Tasks\Rocket Updater => C:\Users\Konstantinos Tzontas\AppData\Roaming\RocketUpdater\UpdateProc\UpdateTask.exe [2013-04-12] ()
Task: {983A1A1E-B681-440E-A4E8-53C65D93468D} - System32\Tasks\GarminUpdaterTask => D:\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-08-07] ()
Task: {9CB1000D-B3A7-45C7-B375-5045EE6DD826} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {9E913592-CF76-47D1-8B8E-BDCF53413BC7} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.)
Task: {A4FD6F60-56A7-4570-A75D-F1F3274A0998} - System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {A804DBE7-30ED-4752-8275-408542907BD0} - System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4} => C:\Users\Konstantinos Tzontas\Desktop\Rosetta.Stone.TOTALe.v4.1.15.1\Rosetta Stone V4.1.10.exe
Task: {AD791F25-ACEA-44B1-AB36-4D199CCF3AC8} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {B42406A0-0510-4619-A737-55587556012B} - System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {B8183F47-2B43-4015-9456-EA267E2E949A} - System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653} => D:\Roseta Stones\Rosetta Stone TOTALe v 4.1.15 Windows\update.exe [2013-02-18] (Rosetta Stone, Ltd.)
Task: {BF4344DE-FE65-4BC8-994A-05087127ECE6} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {C73BCC69-90CB-4993-8480-EA429F741280} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {C9F173F3-9640-43DB-90F5-3795F8576D27} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-28] (Google Inc.)
Task: {E986BE8F-0B3C-4D8A-9F0E-4220FC8899BF} - System32\Tasks\AdobeAAMUpdater-1.0-KonstantinosTzo-Konstantinos Tzontas => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {F43261AA-FAE7-4FF4-B3D2-9EDA81433EC1} - System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {F592EE46-D815-46C9-91D2-56A1B63D4A76} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)
Task: {FCA08906-2160-4164-A4EC-4EF46645C134} - \dsmonitor No Task File <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002Core.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002UA.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Rocket Updater.job => C:\Users\KONSTA~1\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-05-23 01:10 - 2014-05-23 01:10 - 00671904 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2010-07-15 05:44 - 2010-07-15 05:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2010-07-15 00:11 - 2010-07-15 00:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll
2010-04-03 03:21 - 2008-10-01 07:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2011-07-07 07:10 - 2013-04-14 15:22 - 00057640 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
2011-07-07 07:12 - 2011-01-27 01:11 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-08-21 18:49 - 2014-08-21 18:49 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2014-10-30 10:14 - 2014-09-25 17:07 - 00020288 _____ () C:\Program Files\CCleaner\branding.dll
2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-14 00:51 - 2013-09-14 00:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 00:50 - 2013-09-14 00:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2014-10-29 11:14 - 2014-10-29 11:14 - 00380416 _____ () C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (DOS).EML:OECustomProperty
AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (Windows).EML:OECustomProperty

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk => C:\Windows\pss\FancyStart daemon.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Versandhelfer.lnk => C:\Windows\pss\Versandhelfer.lnk.Startup
MSCONFIG\startupreg: 118CF3A891E607F144F4054B8F0D96A24F7C1710._service_run => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: ASUSPRP => "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: BingDesktop => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
MSCONFIG\startupreg: ccleaner => "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
MSCONFIG\startupreg: chromium => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: com.apple.dav.bookmarks.daemon => C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
MSCONFIG\startupreg: DATAMNGR => C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: egui => "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
MSCONFIG\startupreg: Garmin Lifetime Updater => C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82 => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: ISUSPM => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: MyGarminAgent => C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe
MSCONFIG\startupreg: Nuance PDF Reader-reminder => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RapidDrive => C:\Program Files (x86)\RAPIDSHARE AG\RapidDrive\VirtualDrive.exe -autostart
MSCONFIG\startupreg: Setwallpaper => c:\programdata\SetWallpaper.cmd
MSCONFIG\startupreg: SonicMasterTray => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: Trend Micro Titanium => C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none"
MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
MSCONFIG\startupreg: VideoDownloadConverter Home Page Guard 64 bit => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\AppIntegrator64.exe"
MSCONFIG\startupreg: VideoDownloadConverter Search Scope Monitor => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
MSCONFIG\startupreg: VizorHtmlDialog.exe => "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF"
MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun

========================= Accounts: ==========================

Administrator (S-1-5-21-2101622981-3415369606-3063477934-500 - Administrator - Disabled)
Gast (S-1-5-21-2101622981-3415369606-3063477934-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2101622981-3415369606-3063477934-1005 - Limited - Enabled)
Konstantinos Tzontas (S-1-5-21-2101622981-3415369606-3063477934-1002 - Administrator - Enabled) => C:\Users\Konstantinos Tzontas
Mcx1-KONSTANTINOSTZO (S-1-5-21-2101622981-3415369606-3063477934-1010 - Limited - Enabled) => C:\Users\Mcx1-KONSTANTINOSTZO
UpdatusUser (S-1-5-21-2101622981-3415369606-3063477934-1000 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Faulty Device Manager Devices =============

Name: Microsoft-Adapter für Miniports virtueller WiFis
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-07-18 22:04:25.422
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.391
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.251
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.204
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.998
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.977
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.895
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.849
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-06-23 16:26:49.699
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-06-23 16:26:49.529
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Percentage of memory in use: 24%
Total physical RAM: 8102.7 MB
Available physical RAM: 6146.3 MB
Total Pagefile: 16203.57 MB
Available Pagefile: 14191.73 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:195.35 GB) (Free:60.8 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:245.41 GB) (Free:99.29 GB) NTFS
Drive f: () (Removable) (Total:7.45 GB) (Free:7.45 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 496B9619)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=195.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=245.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 7.5 GB) (Disk ID: 41A39127)
Partition 1: (Not Active) - (Size=7.5 GB) - (Type=0B)

==================== End Of Log ============================
         

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-10-2014
Ran by Konstantinos Tzontas (administrator) on KONSTANTINOSTZO on 30-10-2014 11:29:30
Running from C:\Users\Konstantinos Tzontas\Downloads
Loaded Profile: Konstantinos Tzontas (Available profiles: UpdatusUser & Konstantinos Tzontas & Mcx1-KONSTANTINOSTZO)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSRService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Garmin Ltd or its subsidiaries) D:\Garmin\Express Tray\ExpressTray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
(Farbar) C:\Users\Konstantinos Tzontas\Downloads\FRST64 (1).exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2816808 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-02] (Intel(R) Corporation)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [98088 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191312 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [GarminExpressTrayApp] => D:\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6462744 2014-08-21] (Piriform Ltd)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82] => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\MountPoints2: {d842016a-97d6-11e2-9017-50465de1d8c8} - F:\AutoRun.exe
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: ,C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
SSODL: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.babylon.com/?babsrc=HP_ss&mntrId=2089dd9000000000000000ffb1fa234f&tlver=1.4.19.19&affID=16553
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = 
SearchScopes: HKLM - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=4805876640124690&q={searchTerms}
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = 
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKLM-x32 - {686AA630-8AA4-DFDA-9B6F-4E87A3269C04} URL = hxxp://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10053&barid={2F80D314-011A-11E3-9D76-50465DE1D8C8}
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=58&CUI=&UM=6&UP=SP6003E2BB-4B7E-4949-AB8B-41840FC79D75&q={searchTerms}&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=58&CUI=&UM=6&UP=SP6003E2BB-4B7E-4949-AB8B-41840FC79D75&q={searchTerms}&SSPV=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL = 
SearchScopes: HKCU - {1F096B29-E9DA-4D64-8D63-936BE7762CC5} URL = hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=2089dd9000000000000000ffb1fa234f&tlver=1.4.19.19&affID=16553
SearchScopes: HKCU - {900C6BAE-AEC8-40E9-BA9F-6F9D5981B598} URL = hxxp://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_ir_14_27_ch&cd=2XzuyEtN2Y1L1QzuyBzzzytBzy0CyEyDtBtA0Azy0D0DzytDtN0D0Tzu0SzytCzztN1L2XzutBtFtBtCtFtCyEtFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyD0FyCyCyDyEyEtBtG0ByDtCtAtGtCzytAyBtGyB0BtBzytGtAtCyB0ByDtA0EtDyC0ByCtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzy0E0Fzy0A0F0BtG0E0A0E0FtGzzyEtC0BtGtDtCtA0DtGyD0C0DtDyE0Dzzzy0Ezz0Bzz2Q&cr=264594833&ir=
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=o0&geo=DE&ver=21&locale=de_DE&gct=kwd&qsrc=2869
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: NetCrawl -> {0916584a-ee96-4386-bdbf-b66197b080e4} ->  No File
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{3397BB0D-EE26-42CB-9BEB-420E9F33ECF6}: [NameServer] 198.18.0.1,198.18.0.2

FireFox:
========
FF ProfilePath: C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default
FF DefaultSearchUrl: 
FF Homepage: hxxp://wmportal.wmkat.de/
FF NetworkProxy: "gopher", ""
FF NetworkProxy: "gopher_port", 0
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "type", 0
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll No File
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF user.js: detected! => C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Download videos and MP3s from YouTube - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} [2014-10-07]
FF Extension: Rocket New Tab - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\{ecaa9181-d92a-47b9-8e14-bef9680f204b} [2014-07-17]
FF Extension: NetCrawl - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\firefox@netcrawl.info.xpi [2014-07-03]
FF Extension: Real Hide IP - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\support@real-hide-ip.com.xpi [2014-07-17]
FF Extension: Babylon - C:\Program Files (x86)\Mozilla Firefox\extensions\ffxtlbr@babylon.com [2014-10-29]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-02-27]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-05-26]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-10-07]
FF Extension: No Name - C:\Program Files (x86)\IObit Apps Toolbar\FF [Not Found]
FF Extension: No Name - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\extensions\iobitascsurfingprotection@iobit.com [Not Found]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV="
CHR Profile: C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-12]
CHR Extension: (MindMeister) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2013-11-29]
CHR Extension: (iCloud) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdilfkhpgihcibbahmoggdaeciachopd [2014-02-26]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-06]
CHR Extension: (YouTube) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-12]
CHR Extension: (Adblock Plus) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-28]
CHR Extension: (Google-Suche) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-12]
CHR Extension: (Search by Image (by Google)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-11-29]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2013-04-12]
CHR Extension: (Google Play Music) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2014-06-13]
CHR Extension: (iCloud-Lesezeichen) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2014-07-09]
CHR Extension: (Rechtschreibprüfung) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gehceilhofkogkifpjmgdhciddpbcboo [2013-04-12]
CHR Extension: (Vimeo Couch Mode) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjkdhkejcnlmkfdodbkdkelefnkobfif [2013-04-12]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-04-17]
CHR Extension: (Rocket New Tab) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibnjmihbbanannlbobkbmnmckjnmdnom [2014-07-06]
CHR Extension: (Finanzen100) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpobenbpfkbhiccbdifogbiachenpie [2013-04-12]
CHR Extension: (WEB.DE MailCheck) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaogepninmlbinccpbiakcgiolijlllo [2014-09-14]
CHR Extension: (Autodesk Homestyler) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2013-11-29]
CHR Extension: (Google Maps) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2013-04-12]
CHR Extension: (Der Planer der Räume) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2013-11-29]
CHR Extension: (Google Wallet) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-06]
CHR Extension: (Click&Clean App) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2013-11-29]
CHR Extension: (Google Mail) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-12]
CHR HKLM-x32\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbar.crx []
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
CHR StartMenuInternet: Google Chrome - chrome.exe

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 Garmin Core Update Service; D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [253568 2009-11-18] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [137344 2009-11-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2282272 2014-08-19] (IObit)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-02] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [569024 2014-02-08] (Valve Corporation) [File not signed]
R2 USBSafelyRemoveService; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [1522488 2014-03-25] (Crystal Rich Ltd)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
R1 cbfs4-0; C:\Program Files (x86)\Common Files\CBFS\cbfs4.sys [385728 2013-03-01] (EldoS Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2011-10-24] (TCT International Mobile Ltd) [File not signed]
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2014-10-10] (Intel Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-09-04] (Synaptics Incorporated)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [868848 2014-07-09] (Duplex Secure Ltd.)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
U3 axqoqpob; \??\C:\Users\KONSTA~1\AppData\Local\Temp\axqoqpob.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-30 11:29 - 2014-10-30 11:32 - 00030776 _____ () C:\Users\Konstantinos Tzontas\Downloads\FRST.txt
2014-10-30 11:29 - 2014-10-30 11:30 - 00000000 ____D () C:\FRST
2014-10-30 11:24 - 2014-10-30 11:24 - 00000020 _____ () C:\Users\Konstantinos Tzontas\defogger_reenable
2014-10-30 11:19 - 2014-10-30 11:19 - 00265863 _____ () C:\Users\Konstantinos Tzontas\Desktop\Windows Netzwerkdiagnose.xps
2014-10-30 11:19 - 2014-10-30 11:19 - 00010568 _____ () C:\Users\Konstantinos Tzontas\Desktop\Windows Netzwerkdiagnose.txt
2014-10-30 10:26 - 2014-10-30 10:26 - 00002358 _____ () C:\Windows\System32\Tasks\CCleanerClean
2014-10-30 10:26 - 2014-10-30 10:26 - 00000258 _____ () C:\Windows\Tasks\CCleanerClean.job
2014-10-30 10:10 - 2014-10-30 10:16 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-30 10:10 - 2014-10-30 10:12 - 00000784 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-10-30 10:10 - 2014-10-30 10:10 - 00002802 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-30 10:10 - 2014-10-30 10:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-30 10:10 - 2014-09-25 17:08 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Desktop\CCleaner Pro & Business v4.17.4808
2014-10-30 10:09 - 2014-10-30 10:09 - 10956458 _____ () C:\Users\Konstantinos Tzontas\Downloads\CCleaner Pro & Business v4.17.4808.rar
2014-10-30 09:58 - 2014-10-30 09:58 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\CrashDumps
2014-10-30 09:38 - 2014-10-30 09:38 - 02113536 _____ (Farbar) C:\Users\Konstantinos Tzontas\Downloads\FRST64 (1).exe
2014-10-30 09:38 - 2014-10-30 09:38 - 01998336 _____ () C:\Users\Konstantinos Tzontas\Downloads\AdwCleaner_4.002.exe
2014-10-30 09:38 - 2014-10-30 09:38 - 01706144 _____ (Thisisu) C:\Users\Konstantinos Tzontas\Downloads\JRT.exe
2014-10-30 09:32 - 2014-10-30 09:32 - 00090239 _____ () C:\Users\Konstantinos Tzontas\Downloads\Eset.zip
2014-10-30 09:32 - 2014-10-30 09:32 - 00090239 _____ () C:\Users\Konstantinos Tzontas\Downloads\Eset (1).zip
2014-10-30 09:27 - 2014-10-30 09:27 - 00048403 _____ () C:\Users\Konstantinos Tzontas\Downloads\ Malwarebytes Anti-Malware .txt
2014-10-30 09:26 - 2014-10-30 09:26 - 00012756 _____ () C:\Users\Konstantinos Tzontas\Downloads\JRT.txt
2014-10-30 09:25 - 2014-10-30 09:25 - 00033939 _____ () C:\Users\Konstantinos Tzontas\Downloads\Combofix.txt
2014-10-30 00:08 - 2014-10-30 00:08 - 00001121 _____ () C:\Users\Public\Desktop\Rosetta Stone TOTALe.lnk
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone Backups
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\Rosetta Stone
2014-10-29 20:34 - 2014-10-29 20:39 - 00000000 ____D () C:\Program Files (x86)\CAO-Faktura
2014-10-29 20:32 - 2014-10-29 20:33 - 22974052 _____ () C:\Users\Konstantinos Tzontas\Downloads\cao_faktura_f_setup_1_4.zip
2014-10-29 20:24 - 2014-10-29 20:25 - 05745152 _____ () C:\Users\Konstantinos Tzontas\Downloads\archpr_5455setup_en.msi
2014-10-29 20:22 - 2014-10-29 20:22 - 05208701 _____ () C:\Users\Konstantinos Tzontas\Downloads\Dometrix KFZ Werkstatt v3.5.1.0.zip
2014-10-29 20:20 - 2014-10-29 20:20 - 00393072 _____ (Softonic ) C:\Users\Konstantinos Tzontas\Downloads\SoftonicDownloader_fuer_dometrix-kfz-werkstatt.exe
2014-10-29 16:57 - 2014-10-29 16:57 - 00001111 _____ () C:\Users\Public\Desktop\USB Safely Remove.lnk
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\USBSRService
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Safely Remove
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\Program Files (x86)\USB Safely Remove
2014-10-29 16:56 - 2014-10-29 16:56 - 06002584 _____ (SafelyRemove.com ) C:\Users\Konstantinos Tzontas\Downloads\usbsafelyremovesetup_5-2-3.exe
2014-10-29 16:56 - 2014-10-29 16:56 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-10-29 16:55 - 2014-10-29 16:55 - 01681749 _____ () C:\Users\Konstantinos Tzontas\Downloads\unlocker_25947.exe
2014-10-29 16:43 - 2014-10-29 16:43 - 00059865 _____ () C:\Users\Konstantinos Tzontas\Downloads\29775_kme20beta2.zip
2014-10-29 14:58 - 2014-10-30 11:24 - 00000612 _____ () C:\Users\Konstantinos Tzontas\Desktop\defogger_disable.log
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\Program Files\7-Zip
2014-10-29 14:54 - 2014-10-29 14:54 - 01376768 _____ () C:\Users\Konstantinos Tzontas\Downloads\7z920-x64.msi
2014-10-29 13:12 - 2014-10-29 13:12 - 00002260 _____ () C:\Users\Konstantinos Tzontas\Desktop\JDownloader 2.lnk
2014-10-29 13:12 - 2014-10-29 13:12 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-10-29 13:07 - 2014-10-29 19:14 - 00000000 ____D () C:\ProgramData\Norton
2014-10-29 13:04 - 2014-10-29 14:44 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\JDownloader v2.0
2014-10-29 12:18 - 2014-10-29 12:18 - 00452384 _____ () C:\Users\Konstantinos Tzontas\Downloads\DLG_free_driver_scout_chip_default.exe
2014-10-29 11:18 - 2014-10-29 11:18 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Konstantinos Tzontas\Downloads\mbam-setup-2.0.3.1025.exe
2014-10-29 11:14 - 2014-10-29 11:14 - 02113536 _____ (Farbar) C:\Users\Konstantinos Tzontas\Downloads\FRST64.exe
2014-10-29 11:14 - 2014-10-29 11:14 - 00380416 _____ () C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe
2014-10-29 11:13 - 2014-10-29 11:13 - 00050477 _____ () C:\Users\Konstantinos Tzontas\Downloads\Defogger.exe
2014-10-28 20:38 - 2014-10-28 21:04 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\dvdcss
2014-10-28 20:19 - 2014-10-28 20:19 - 00000000 ____D () C:\ProgramData\IObit
2014-10-28 13:20 - 2014-10-28 13:22 - 17398460 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part2.rar
2014-10-28 12:35 - 2014-10-28 13:10 - 110000000 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part1.rar
2014-10-28 12:31 - 2014-10-28 12:44 - 256441633 _____ () C:\Users\Konstantinos Tzontas\Downloads\toRo.setup.win.rar
2014-10-28 12:30 - 2014-10-30 00:12 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-10-28 12:02 - 2014-10-28 12:02 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\NoVirusThanks
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files\iTunes
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-10-28 12:01 - 2014-10-28 12:01 - 00000000 ____D () C:\Program Files\iPod
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files\Bonjour
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-10-28 11:38 - 2014-10-28 11:39 - 122418480 _____ (Apple Inc.) C:\Users\Konstantinos Tzontas\Downloads\iTunes64Setup.exe
2014-10-28 11:28 - 2014-10-28 11:28 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\ProductData
2014-10-28 11:26 - 2014-10-28 11:30 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-28 11:26 - 2014-10-28 11:26 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-10-27 19:51 - 2014-10-27 19:51 - 00369152 _____ () C:\Users\Konstantinos Tzontas\Downloads\Präsentation2.ppt
2014-10-18 23:33 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-18 23:33 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-18 23:33 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-18 23:33 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-18 23:33 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-18 23:33 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-18 23:33 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-18 23:33 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-18 23:33 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-18 23:33 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-18 23:33 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-18 23:33 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-18 23:33 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-18 23:33 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-18 23:33 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-18 23:33 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-18 23:33 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-18 23:33 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-18 23:33 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-18 23:33 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-18 23:33 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-18 23:33 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-18 23:33 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-18 23:33 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-18 23:33 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-18 23:33 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-18 23:32 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-18 23:32 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-18 23:32 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-18 23:32 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-18 23:32 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-18 23:32 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-18 23:32 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-18 23:32 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-18 23:32 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-18 23:32 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00941272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-10 20:24 - 2014-10-10 20:24 - 11527888 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwsw00.sys
2014-10-10 20:22 - 2014-10-28 11:27 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\IObit
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sports Interactive
2014-10-10 19:37 - 2014-10-10 19:37 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-10 19:12 - 2014-10-30 09:52 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-10 19:12 - 2014-10-10 19:12 - 00000969 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-10-10 19:12 - 2014-10-10 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-07 23:11 - 2014-10-29 16:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-07 19:55 - 2014-10-07 19:55 - 00001538 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-10-07 19:55 - 2014-10-07 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-10-07 19:54 - 2014-10-07 19:55 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour-Druckdienste
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\Program Files\Bonjour Print Services
2014-10-03 13:29 - 2014-10-03 13:29 - 00002503 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
2014-10-03 13:29 - 2014-10-03 13:29 - 00002491 _____ () C:\Users\Public\Desktop\Safari.lnk
2014-10-03 13:29 - 2014-10-03 13:29 - 00000000 ____D () C:\Program Files (x86)\Safari
2014-10-01 20:04 - 2014-10-01 20:04 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\PDF24
2014-10-01 19:32 - 2014-10-01 19:33 - 16319576 _____ (Geek Software GmbH ) C:\Users\Konstantinos Tzontas\Downloads\pdf24-creator-6.7.0.exe
2014-10-01 18:30 - 2014-09-25 03:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-01 18:30 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-30 11:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2014-10-30 11:27 - 2013-01-11 17:26 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-10-30 11:26 - 2014-06-24 20:30 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job
2014-10-30 11:25 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-30 11:24 - 2012-06-22 02:38 - 00000000 ____D () C:\Users\Konstantinos Tzontas
2014-10-30 11:00 - 2012-04-12 15:13 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-30 10:56 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-30 10:56 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-30 10:52 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-30 10:47 - 2014-07-06 17:07 - 00000328 _____ () C:\Windows\Tasks\Rocket Updater.job
2014-10-30 10:47 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Apps\2.0
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0}
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD}
2014-10-30 10:23 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4}
2014-10-30 10:23 - 2014-02-27 14:36 - 00003100 _____ () C:\Windows\System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003042 _____ () C:\Windows\System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653}
2014-10-30 10:22 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B}
2014-10-30 10:21 - 2014-07-06 17:07 - 00003314 _____ () C:\Windows\System32\Tasks\Rocket Updater
2014-10-30 10:21 - 2012-04-12 15:13 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-10-30 09:50 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Deployment
2014-10-30 00:21 - 2011-02-19 05:24 - 00743788 _____ () C:\Windows\system32\perfh007.dat
2014-10-30 00:21 - 2011-02-19 05:24 - 00164270 _____ () C:\Windows\system32\perfc007.dat
2014-10-30 00:21 - 2009-07-14 06:13 - 01725322 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-30 00:04 - 2014-08-01 14:07 - 00000097 _____ () C:\Users\Konstantinos Tzontas\AppData\Roaming\WB.CFG
2014-10-29 16:56 - 2012-06-23 16:56 - 00000000 ____D () C:\Program Files\Unlocker
2014-10-29 12:16 - 2012-07-15 18:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\vlc
2014-10-28 14:22 - 2012-06-25 18:17 - 00001957 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-28 12:30 - 2012-07-14 17:25 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-10-28 12:01 - 2012-07-19 18:19 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-10-28 11:38 - 2014-06-24 20:30 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9
2014-10-28 11:27 - 2014-08-14 20:38 - 00000000 ____D () C:\Users\Mcx1-KONSTANTINOSTZO
2014-10-23 18:44 - 2013-11-26 17:39 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\F975D96A-6135-4CEB-8114-9FB82F8FD83E.aplzod
2014-10-19 03:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-10-19 02:23 - 2014-05-08 02:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-19 02:04 - 2013-08-15 21:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-19 02:00 - 2011-12-05 16:46 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-10 20:26 - 2012-06-20 21:55 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-10-08 21:31 - 2014-04-13 18:25 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-10-08 20:53 - 2011-12-04 02:38 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-10-07 19:57 - 2012-07-21 23:33 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\DVDVideoSoft
2014-10-05 18:36 - 2010-05-25 23:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sonstiges
2014-10-03 13:35 - 2012-10-03 18:46 - 00140380 ____H () C:\Windows\SysWOW64\mlfcache.dat
2014-10-02 22:15 - 2012-06-23 16:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-10-02 22:15 - 2012-06-22 22:11 - 00000000 ____D () C:\Program Files (x86)\HP
2014-10-02 22:10 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-02 22:04 - 2014-08-10 21:17 - 00000590 _____ () C:\Windows\wiso.ini
2014-10-02 22:04 - 2014-08-10 21:15 - 00000000 ____D () C:\Program Files (x86)\WISO
2014-10-02 22:04 - 2014-07-18 21:16 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-02 22:03 - 2014-06-30 20:50 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Dropbox
2014-10-02 20:27 - 2014-06-30 20:52 - 00000000 ___RD () C:\Users\Konstantinos Tzontas\Dropbox
2014-10-02 14:53 - 2011-12-23 15:50 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\130590578440535138.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\13059057846203636831.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\130590581423595760.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\13059058144102675774.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\MyBabylonTB.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\proxy_vole2104173749344083710.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-16 20:14

==================== End Of Log ============================
         
--- --- ---


Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 11:24 on 30/10/2014 (Konstantinos Tzontas)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...
SPTD -> Disabled (Service running -> reboot required)


-=E.O.F=-
         

Geändert von Iraklis (30.10.2014 um 10:49 Uhr) Grund: verschrieben

Alt 30.10.2014, 11:35   #2
Iraklis
 
Windows 7: Internet funktionieren nach CCleaner nich mehr - Standard

Windows 7: Internet funktionieren nach CCleaner nich mehr



Code:
ATTFilter
Start ups

Ja	HKLM:Run	SynTPEnh	Synaptics Incorporated	Alle Benutzer	%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
Ja	HKLM:Run	SynAsusAcpi	Synaptics Incorporated	Alle Benutzer	%ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
Ja	HKLM:Run	RtHDVCpl	Realtek Semiconductor	Alle Benutzer	C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
Ja	HKLM:Run	RtHDVBg	Realtek Semiconductor	Alle Benutzer	C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SF3 
Ja	HKLM:Run	Persistence	Intel Corporation	Alle Benutzer	"C:\Windows\system32\igfxpers.exe"
Ja	HKLM:Run	iTunesHelper	Apple Inc.	Alle Benutzer	"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
Ja	HKLM:Run	IntelTBRunOnce	Microsoft Corporation	Alle Benutzer	wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
Ja	HKLM:Run	IntelPAN	Intel(R) Corporation	Alle Benutzer	"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray                                                                                                                                                                                     
Ja	HKLM:Run	IgfxTray	Intel Corporation	Alle Benutzer	"C:\Windows\system32\igfxtray.exe"
Ja	HKLM:Run	HotKeysCmds	Intel Corporation	Alle Benutzer	"C:\Windows\system32\hkcmd.exe"
Ja	HKLM:Run	HControlUser	ASUS	Alle Benutzer	C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
Ja	HKLM:Run	egui	ESET	Alle Benutzer	"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
Ja	HKLM:Run	ATKOSD2	ASUSTek Computer Inc.	Alle Benutzer	C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
Ja	HKLM:Run	ATKMEDIA	ASUSTek Computer Inc.	Alle Benutzer	C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
Ja	HKCU:Run	iCloudServices	Apple Inc.	Konstantinos Tzontas	C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
Ja	HKCU:Run	GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82	Google Inc.	Konstantinos Tzontas	"C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
Ja	HKCU:Run	GarminExpressTrayApp	Garmin Ltd or its subsidiaries	Konstantinos Tzontas	"D:\Garmin\Express Tray\ExpressTray.exe"
Ja	HKCU:Run	CCleaner Monitoring	Piriform Ltd	Konstantinos Tzontas	"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Ja	HKCU:Run	ApplePhotoStreams	Apple Inc.	Konstantinos Tzontas	C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
Nein	Startup User	Versandhelfer.lnk		Konstantinos Tzontas	C:\PROGRA~2\VERSAN~1\VERSAN~1.EXE 
Nein	Startup User	Dropbox.lnk		Konstantinos Tzontas	C:\Users\KONSTA~1\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup
Nein	Startup Common	HP Digital Imaging Monitor.lnk	Hewlett-Packard Co.	Alle Benutzer	C:\PROGRA~2\HP\DIGITA~1\bin\hpqtra08.exe 
Nein	Startup Common	FancyStart daemon.lnk		Alle Benutzer	C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe -d
Nein	Startup Common	AsusVibeLauncher.lnk	ASUSTeK Computer Inc.	Alle Benutzer	C:\PROGRA~2\ASUS\AsusVibe\ASUSVI~2.EXE /start
Nein	HKLM:Run	XboxStat	Microsoft Corporation	Alle Benutzer	"C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
Nein	HKLM:Run	VizorHtmlDialog.exe		Alle Benutzer	"C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF"
Nein	HKLM:Run	VideoDownloadConverter Search Scope Monitor		Alle Benutzer	"C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
Nein	HKLM:Run	VideoDownloadConverter Home Page Guard 64 bit		Alle Benutzer	"C:\PROGRA~2\VIDEOD~2\bar\1.bin\AppIntegrator64.exe"
Nein	HKLM:Run	UpdateP2GoShortCut		Alle Benutzer	"C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
Nein	HKLM:Run	UpdateLBPShortCut		Alle Benutzer	"C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
Nein	HKLM:Run	Trend Micro Titanium		Alle Benutzer	C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none"
Nein	HKLM:Run	SwitchBoard		Alle Benutzer	C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
Nein	HKLM:Run	SunJavaUpdateSched	Oracle Corporation	Alle Benutzer	"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Nein	HKLM:Run	SonicMasterTray	Virage Logic Corporation / Sonic Focus	Alle Benutzer	C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
Nein	HKLM:Run	Setwallpaper		Alle Benutzer	c:\programdata\SetWallpaper.cmd
Nein	HKLM:Run	QuickTime Task	Apple Inc.	Alle Benutzer	"C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
Nein	HKLM:Run	Nuance PDF Reader-reminder	Nuance Communications, Inc.	Alle Benutzer	"C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
Nein	HKLM:Run	MyGarminAgent	Garmin International	Alle Benutzer	C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe
Nein	HKLM:Run	HP Software Update		Alle Benutzer	C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
Nein	HKLM:Run	Garmin Lifetime Updater		Alle Benutzer	C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized
Nein	HKLM:Run	DivXUpdate	DivX, LLC	Alle Benutzer	"C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
Nein	HKLM:Run	DivXMediaServer	DivX, LLC	Alle Benutzer	C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
Nein	HKLM:Run	DATAMNGR		Alle Benutzer	C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE
Nein	HKLM:Run	CLMLServer		Alle Benutzer	"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
Nein	HKLM:Run	BingDesktop		Alle Benutzer	C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
Nein	HKLM:Run	BCSSync		Alle Benutzer	"C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
Nein	HKLM:Run	ASUSWebStorage		Alle Benutzer	C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
Nein	HKLM:Run	ASUSPRP	ASUSTek Computer Inc.	Alle Benutzer	"C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
Nein	HKLM:Run	APSDaemon	Apple Inc.	Alle Benutzer	"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Nein	HKLM:Run	AdobeCS6ServiceManager		Alle Benutzer	"C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
Nein	HKLM:Run	AdobeAAMUpdater-1.0	Adobe Systems Incorporated	Alle Benutzer	"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
Nein	HKLM:Run	Adobe Creative Cloud	Adobe Systems Incorporated	Alle Benutzer	"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
Nein	HKLM:Run	Adobe ARM	Adobe Systems Incorporated	Alle Benutzer	"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Nein	HKCU:Run	Steam	Valve Corporation	Alle Benutzer	"C:\Program Files (x86)\Steam\steam.exe" -silent
Nein	HKCU:Run	RapidDrive		Alle Benutzer	C:\Program Files (x86)\RAPIDSHARE AG\RapidDrive\VirtualDrive.exe -autostart
Nein	HKCU:Run	ISUSPM		Alle Benutzer	C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
Nein	HKCU:Run	iCloudServices	Apple Inc.	Alle Benutzer	C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
Nein	HKCU:Run	Google Update	Google Inc.	Konstantinos Tzontas	"C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
Nein	HKCU:Run	GarminExpressTrayApp		Alle Benutzer	"C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
Nein	HKCU:Run	com.apple.dav.bookmarks.daemon		Alle Benutzer	C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
Nein	HKCU:Run	chromium	Google Inc.	Konstantinos Tzontas	C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window
Nein	HKCU:Run	ccleaner	Piriform Ltd	Alle Benutzer	"C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
Nein	HKCU:Run	ApplePhotoStreams	Apple Inc.	Alle Benutzer	C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
Nein	HKCU:Run	118CF3A891E607F144F4054B8F0D96A24F7C1710._service_run	Google Inc.	Konstantinos Tzontas	"C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
         
Code:
ATTFilter
Geplante Aufträge

Ja	Task	Adobe Flash Player Updater	Adobe Systems Incorporated	Alle Benutzer	C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Nein	Task	AdobeAAMUpdater-1.0-KonstantinosTzo-Konstantinos Tzontas	Adobe Systems Incorporated	Konstantinos Tzontas	C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
Ja	Task	Apple Diagnostics	Apple Inc.	Konstantinos Tzontas	C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Ja	Task	ASUS Live Update	ASUSTeK Computer Inc.	Administratoren	C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
Ja	Task	CCleanerClean	Piriform Ltd	Konstantinos Tzontas	C:\Program Files\CCleaner\CCleaner.exe /AUTO
Ja	Task	CCleanerSkipUAC	Piriform Ltd	Konstantinos Tzontas	"C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Ja	Task	GarminUpdaterTask	Garmin International, Inc.	Alle Benutzer	D:\Garmin\Express Self Updater\ExpressSelfUpdater.exe
Ja	Task	GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9	Google Inc.	Alle Benutzer	C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Nein	Task	Rocket Updater		Konstantinos Tzontas	C:\Users\KONSTA~1\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE /Check
Ja	Task	{13920426-8421-44B0-A012-30BC09F29C47}		Konstantinos Tzontas	C:\Program Files (x86)\Garmin\Express\Express.exe
Nein	Task	{30BCE388-8E53-4FCC-AF97-BDE23401A653}	Rosetta Stone, Ltd.	Konstantinos Tzontas	D:\Roseta Stones\Rosetta Stone TOTALe v 4.1.15 Windows\update.exe
Ja	Task	{55619592-4FD9-4558-AAE0-58DF071A7F8B}		Konstantinos Tzontas	C:\Users\Konstantinos Tzontas\Downloads\FileFormatConverters (2).exe
Nein	Task	{5D5B944F-8084-42CF-B890-B81904544AB4}		Konstantinos Tzontas	C:\Users\Konstantinos Tzontas\Desktop\Rosetta.Stone.TOTALe.v4.1.15.1\Rosetta Stone V4.1.10.exe
Nein	Task	{694E8CCD-50F9-4834-8E96-EE78E59B82E2}	Rosetta Stone Ltd.	Konstantinos Tzontas	C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein	Task	{6ADAF23E-B677-49F3-9B04-2FCA1181B30D}	Rosetta Stone Ltd.	Konstantinos Tzontas	C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein	Task	{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B}	Rosetta Stone Ltd.	Konstantinos Tzontas	C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein	Task	{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC}	Rosetta Stone Ltd.	Konstantinos Tzontas	C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein	Task	{7EC83B54-EA03-4126-9481-B7EB33069936}	Rosetta Stone Ltd.	Konstantinos Tzontas	C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein	Task	{93EFF320-D6AC-42AB-882B-0550380DFDA5}		Konstantinos Tzontas	D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Nein	Task	{A126F916-BC71-4EF7-8EB5-28D246A7061A}	Rosetta Stone Ltd.	Konstantinos Tzontas	C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein	Task	{A1ACADF2-8BB4-426A-83A2-99905DE229A7}	Rosetta Stone Ltd.	Konstantinos Tzontas	C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein	Task	{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0}		Konstantinos Tzontas	D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Nein	Task	{CD92F89F-6D26-42B4-904A-94FC273D87CD}	Rosetta Stone Ltd.	Konstantinos Tzontas	C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Ja	Task	{D294A0E7-752B-4174-981D-62E011EE89B8}	Microsoft Corporation	Konstantinos Tzontas	C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Downloader\Downloader.exe" -d "C:\Program Files (x86)\Downloader\lang"
Nein	Task	{E966EC84-A555-40E9-8760-C1CE4AE6E3F4}	Rosetta Stone Ltd.	Konstantinos Tzontas	C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Ja	Task	{F0D118FC-544D-4E5E-95C5-8B6B75862A81}	Microsoft Corporation	Konstantinos Tzontas	C:\Windows\system32\pcalua.exe -a "C:\Users\Konstantinos Tzontas\Downloads\fsh106-pshare.exe" -d "C:\Users\Konstantinos Tzontas\Downloads"
Nein	Task	{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E}	Rosetta Stone Ltd.	Konstantinos Tzontas	C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
         
Code:
ATTFilter
Windows Netzwerkdiagnose

DruckenWindows-Netzwerkdiagnose Herausgeberdetails 

Gefundene Probleme 
Es ist keine Kommunikation mit dem Gerät bzw. der Ressource (primärer DNS-Server) möglich.Es ist keine Kommunikation mit dem Gerät bzw. der Ressource (primärer DNS-Server) möglich.
Das Gerät bzw. die Ressource antwortet nicht auf Anforderungen. Ermittelt Ermittelt 
Wenden Sie sich an den Netzwerkadministrator oder Internetdienstanbieter (Internet Service Provider, ISP). Abgeschlossen 
 

Gefundene Probleme Erkennungsdetails 

6 Es ist keine Kommunikation mit dem Gerät bzw. der Ressource (primärer DNS-Server) möglich. Ermittelt Ermittelt 
 
Das Gerät bzw. die Ressource antwortet nicht auf Anforderungen. 
Wenden Sie sich an den Netzwerkadministrator oder Internetdienstanbieter (Internet Service Provider, ISP). Abgeschlossen 
 
Es ist keine Kommunikation mit dem Gerät bzw. der Ressource (primärer DNS-Server) möglich. Wenn Sie zuhause sind, wenden Sie sich an den Internetdienstanbieter. Wenden Sie sich andernfalls an den Netzwerkadministrator, um Hilfe zu erhalten. 
 

Erkennungsdetails Erweitern 

InformationenDiagnoseinformationen (Netzwerkadapter) 
Details zu Netzwerkadapter Diagnose: 

Treiberinformationen für Netzwerkadapter Drahtlosnetzwerkverbindung:

   Beschreibung . . . . . . . . . . : Intel(R) Centrino(R) Wireless-N 100
   Hersteller  . . . . . . . . . : Intel Corporation
   Anbieter  . . . . . . . . . . . : Intel
   Version   . . . . . . . . . . . : 14.1.1.3
   INF-Dateiname . . . . . . . . . : C:\Windows\INF\oem22.inf
   INF-Dateidatum . . . . . . . . . : Sonntag, 1. Mai 2011  12:00:24
   Abschnittsname  . . . . . . . . . : Install_MPCIEX_GEN_0100_BGN_1x1_HMC_WIN7_64_BGN
   Hardware-ID . . . . . . . . . . : pci\ven_8086&dev_08ae&subsys_10058086
   Instanzstatusflags . . . . . : 0x180200a
   Geräte-Manager-Statuscode  . . : 0
   Schnittstellentyp  . . . . . . . . . . . . : 71
   Typ des physikalischen Mediums . . . . . . : 9

 
 
InformationenDiagnoseinformationen (Drahtloskonnektivität) 
Details zu Drahtloskonnektivität Diagnose: 

Informationen zur Verbindung, die momentan diagnostiziert wird
 Schnittstellen-GUID: 3397bb0d-ee26-42cb-9beb-420e9f33ecf6
 Schnittstellenname: Intel(R) Centrino(R) Wireless-N 100
 Schnittstellentyp: Systemeigenes WiFi

Es wurde eine Verbindungsstörung diagnostiziert.
 ID für die automatische Konfiguration 1
 Verbindungs-ID 1

Zusammenfassung für den Verbindungsstatus
 Verbindung wurde gestartet um: 2014-10-30 10:47:02-160
 Profilübereinstimmung: Erfolg
 Präzuordnung: Erfolg
 Zuordnung: Erfolg
 Sicherheit und Authentifizierung: Erfolg

Liste der sichtbaren Zugriffspunkte: 6 Element(e) insgesamt, 6 Element(e) angezeigt
        BSSID		BSS-Typ PHY	Signal(dB)	Kan./Freq.    SSID
-------------------------------------------------------------------------
00-1A-4F-37-07-83	Infra	 g	-86		11	 WLAN-001A4F370783
34-08-04-25-E2-70	Infra	 g	-82		13	 ESRA
34-31-C4-69-C0-DC	Infra	 <unbekannt>	-56		1	 FRITZ!Box Fon WLAN 7390
08-96-D7-A9-8D-AD	Infra	 <unbekannt>	-85		1	 FRITZ!Box Fon WLAN 7360
9C-C7-A6-8E-22-24	Infra	 <unbekannt>	-85		1	 FRITZ!Box 7312
50-7E-5D-57-26-E8	Infra	 g	-87		9	 jungfrau

Verbindungsverlauf

 Informationen zur ID für die automatische Konfiguration 1

  Liste der sichtbaren Netzwerke: 6 Element(e) insgesamt, 6 Element(e) angezeigt
  BSS-Typ PHY	Sicherheit	Signal(RSSI)	Kompatibel	SSID
  ------------------------------------------------------------------------------
  Infra	 g	Ja		23	Ja		WLAN-001A4F370783
  Infra	 g	Ja		21	Ja		ESRA
  Infra	 <unbekannt>	Ja		99	Ja		FRITZ!Box Fon WLAN 7390
  Infra	 <unbekannt>	Ja		23	Ja		FRITZ!Box Fon WLAN 7360
  Infra	 <unbekannt>	Ja		25	Ja		FRITZ!Box 7312
  Infra	 <unbekannt>	Ja		18	Ja		belkin.32ce

  Liste der bevorzugten Netzwerke: 11 Element(e)
   Profil: WLAN-09F940
    SSID: WLAN-09F940
    SSID-Länge: 11
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Nein
     Ursache: 0x00028002
   Profil: FRITZ!Box Fon WLAN 7390
    SSID: FRITZ!Box Fon WLAN 7390
    SSID-Länge: 23
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Ja
   Profil: WLAN-6AE086
    SSID: WLAN-6AE086
    SSID-Länge: 11
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Nein
     Ursache: 0x00028002
   Profil: Sdf
    SSID: Sdf
    SSID-Länge: 3
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Nein
     Ursache: 0x00028002
   Profil: WLAN-49DE84
    SSID: WLAN-49DE84
    SSID-Länge: 11
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Nein
     Ursache: 0x00028002
   Profil: WLAN-818076
    SSID: WLAN-818076
    SSID-Länge: 11
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Nein
     Ursache: 0x00028002
   Profil: WLAN-AFE100
    SSID: WLAN-AFE100
    SSID-Länge: 11
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Nein
     Ursache: 0x00028002
   Profil: IraklisGate10’s iPhone
    SSID: IraklisGate10’s iPhone
    SSID-Länge: 24
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Nein
     Ursache: 0x00028002
   Profil: WLAN-Kostas
    SSID: WLAN-Kostas
    SSID-Länge: 11
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Nein
     Ursache: 0x00028002
   Profil: FRITZ!Box 7330 SL
    SSID: FRITZ!Box 7330 SL
    SSID-Länge: 17
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Nein
     Ursache: 0x00028002
   Profil: WLAN-AA0118
    SSID: WLAN-AA0118
    SSID-Länge: 11
    Verbindungsmodus: Infra
    Sicherheit: Ja
    Nach Gruppenrichtlinie festlegen: Nein
    Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
    Verbindbar: Nein
     Ursache: 0x00028002

 Informationen zur Verbindungs-ID 1
 Verbindung wurde gestartet um: 2014-10-30 10:47:02-160
  ID für die automatische Konfiguration 1
  Profil: FRITZ!Box Fon WLAN 7390
  SSID: FRITZ!Box Fon WLAN 7390
  SSID-Länge: 23
  Verbindungsmodus: Infra
  Sicherheit: Ja
  Vorzuordnung und Zuordnung
   Die vom Hardwarehersteller bereitgestellten Konnektivitätseinstellungen (IHV): Nein
   Die vom Hardwarehersteller bereitgestellten Sicherheitseinstellungen (IHV): Nein
   Das Profil entspricht den Netzwerkanforderungen: Erfolg
   Vorzuordnungsstatus: Erfolg
   Zuordnungsstatus: Erfolg
    Letzter Zugriffspunkt:  34-31-c4-69-c0-dc
  Sicherheit und Authentifizierung
   Konfigurierter Sicherheitstyp: WPA2-PSK
   Konfigurierter Verschlüsselungstyp: CCMP(AES)
   802.1X-Protokoll: Nein
   Der Schlüsselaustausch wurde initiiert: Ja
    Unicastschlüssel empfangen. Ja
    Multicastschlüssel empfangen: Ja
   Anzahl von empfangenen Sicherheitspaketen: 0
   Anzahl von gesendeten Sicherheitspaketen: 0
   Status des Sicherheitsversuch: Erfolg
 Konnektivität
   Paketstatistiken
    Ndis Rx: 387
    Ndis Tx: 1866
    Erfolg bei Unicastentschlüsselung: 21
    Erfolg bei Multicastentschlüsselung: 0
    Fehler bei Unicastentschlüsselung: 0
    Fehler bei Multicastentschlüsselung: 0
    Rx-Erfolg: 605
    Rx-Fehler: 0
    Tx-Erfolg: 378
    Tx-Fehler: 0
    Tx-Wiederholung: 0
    Tx-Mehrfachwiederholung: 0
    Tx: maximale Gültigkeitsdauer überschritten: 0
    Tx-Bestätigungsfehler: 0
   Verlauf der Serverspeicherung: 0 Element(e)


 
 
InformationenDiagnoseinformationen (Drahtloskonnektivität) 
Details zu Drahtloskonnektivität Diagnose: 

Vollständige Informationen zu dieser Sitzung finden Sie im Drahtloskonnektivitäts-Informationsereignis.

Hilfsprogrammklasse: Automatische Konfiguration
 Initialisierungsstatus: Erfolg

Informationen zur Verbindung, die momentan diagnostiziert wird
 Schnittstellen-GUID: 3397bb0d-ee26-42cb-9beb-420e9f33ecf6
 Schnittstellenname: Intel(R) Centrino(R) Wireless-N 100
 Schnittstellentyp: Systemeigenes WiFi

Ergebnis der Diagnose: Möglicherweise besteht ein Problem.




 
 
InformationenDiagnoseinformationen (Drahtlosnetzwerkadapter) 
Details zu Drahtlosnetzwerkadapter Diagnose: 

Vollständige Informationen zu dieser Sitzung finden Sie im Drahtloskonnektivitäts-Informationsereignis.

Hilfsprogrammklasse: Systemeigene WiFi-MSM
 Initialisierungsstatus: Erfolg

Informationen zur Verbindung, die momentan diagnostiziert wird
 Schnittstellen-GUID: 3397bb0d-ee26-42cb-9beb-420e9f33ecf6
 Schnittstellenname: Intel(R) Centrino(R) Wireless-N 100
 Schnittstellentyp: Systemeigenes WiFi
 Profil: FRITZ!Box Fon WLAN 7390
 SSID: FRITZ!Box Fon WLAN 7390
 SSID-Länge: 23
 Verbindungsmodus: Infra
 Sicherheit: Ja
 Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein

Ergebnis der Diagnose: Möglicherweise besteht ein Problem.




 
 
InformationenNetzwerkdiagnoseprotokoll 
Dateiname:  CA2A99B4-C5B3-4B31-AB47-30B53617F83B.Diagnose.Admin.0.etl 
 
InformationenAndere Netzwerkkonfiguration und Protokolle 
Dateiname:  NetworkConfiguration.cab 
 
Sammlungsinformationen 
Computername:  KONSTANTINOSTZO 
Windows-Version: 6.1 
Architektur: amd64 
Zeit: Donnerstag, 30. Oktober 2014 10:50:52 

Herausgeberdetails Erweitern 

Windows-Netzwerkdiagnose 
Ermittelt Probleme mit der Netzwerkkonnektivität. 
Paketversion: 1.0 
Herausgeber: Microsoft Windows
         
Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-10-30 12:34:03
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD50 rev.01.0 465,76GB
Running: Gmer-19357.exe; Driver: C:\Users\KONSTA~1\AppData\Local\Temp\axqoqpob.sys


---- User code sections - GMER 2.1 ----

.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                                       00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                         00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                         00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                        00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                                00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                                0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                                0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                                  00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2                              0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                     00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                                   00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                       00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                          00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                          00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                      0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                      000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                               0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                                  0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                                    0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                         0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                          0000000075f79d0b 5 bytes JMP 00000001724f1217
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                             00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                               00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                               00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                              00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                      00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                      0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                      0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                        00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2                    0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                           00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                         00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                             00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                            0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                            000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                     0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                        0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                          0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                               0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                0000000075f79d0b 5 bytes JMP 00000001724f1217
.text   C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                    000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text   C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                               000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text   C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text   C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                             000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text   C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                              000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text   C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                            000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text   C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\dxgi.dll!CreateDXGIFactory                                                                    000007fef849dc88 5 bytes JMP 000007fff84700d8
.text   C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\dxgi.dll!CreateDXGIFactory1                                                                   000007fef849de10 5 bytes JMP 000007fff8470110
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                               00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                 00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                        00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                        0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                        0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                          00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2                      0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                             00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                           00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                               00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                  00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                  00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                              0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                              000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                       0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                          0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                            0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                  0000000075f79d0b 5 bytes JMP 00000001724f1217
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                              00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                               00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                       00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                       0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                       0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                         00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2                     0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                            00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                          00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                              00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                 00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                 00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                             0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                             000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                      0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                         0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                           0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                                   00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                     00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                     00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                    00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                            00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                            0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                            0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                              00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2                          0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                               00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                   00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                      00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                      00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                  0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                  000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                           0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                              0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                                0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                     0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                      0000000075f79d0b 5 bytes JMP 00000001724f1217
.text   C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text   C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                           000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text   C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                             000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text   C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                         000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text   C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                          000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text   C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                        000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text   C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\ole32.dll!CoCreateInstance                                                                000007fefdd97490 11 bytes JMP 000007fffcad0228
.text   C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                               000007fefddabf00 7 bytes JMP 000007fffcad0260
.text   C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[1048] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter                           00000000766d8791 4 bytes [C2, 04, 00, 00]
.text   C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[1048] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69                                00000000760e1465 2 bytes [0E, 76]
.text   C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[1048] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155                               00000000760e14bb 2 bytes [0E, 76]
.text   ...                                                                                                                                                 * 2
.text   C:\Program Files\P4G\BatteryLife.exe[1184] C:\Windows\system32\ole32.dll!CoCreateInstance                                                           000007fefdd97490 11 bytes JMP 000007fffcad0228
.text   C:\Program Files\P4G\BatteryLife.exe[1184] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                          000007fefddabf00 7 bytes JMP 000007fffcad0260
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!RegQueryValueExW                                 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExW                                   00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExA                                   00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!RegDeleteValueW                                  00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleFileNameExW                          00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!K32EnumProcessModulesEx                          0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleInformation                          0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW                            00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW + 2                        0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                    00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                         0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!RegSetValueExW                                            0000000076b9a400 7 bytes JMP 000000016fff0260
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                          0000000076ba3f20 5 bytes JMP 000000016fff01b8
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                           0000000076bbffb0 5 bytes JMP 000000016fff01f0
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                     0000000076bcf2e0 5 bytes JMP 000000016fff0148
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                   0000000076bf9a30 7 bytes JMP 000000016fff00d8
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                   0000000076c094c0 5 bytes JMP 000000016fff0180
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                   0000000076c09630 5 bytes JMP 000000016fff0110
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!RegSetValueExA                                            0000000076c287e0 7 bytes JMP 000000016fff0228
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                             000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                        000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                          000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                      000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                       000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                     000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\ole32.dll!CoCreateInstance                                             000007fefdd97490 11 bytes JMP 000007fffcad0228
.text   C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                            000007fefddabf00 7 bytes JMP 000007fffcad0260
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!RegSetValueExW                                                 0000000076b9a400 7 bytes JMP 000000016fff0260
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                               0000000076ba3f20 5 bytes JMP 000000016fff01b8
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                                0000000076bbffb0 5 bytes JMP 000000016fff01f0
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                          0000000076bcf2e0 5 bytes JMP 000000016fff0148
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                        0000000076bf9a30 7 bytes JMP 000000016fff00d8
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                        0000000076c094c0 5 bytes JMP 000000016fff0180
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                        0000000076c09630 5 bytes JMP 000000016fff0110
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!RegSetValueExA                                                 0000000076c287e0 7 bytes JMP 000000016fff0228
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                  000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                             000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                               000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                           000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                            000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                          000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\ole32.dll!CoCreateInstance                                                  000007fefdd97490 11 bytes JMP 000007fffcad0228
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                 000007fefddabf00 7 bytes JMP 000007fffcad0260
.text   C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                               000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text   C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                          000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text   C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                            000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text   C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                        000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text   C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                         000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text   C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                       000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text   C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                               000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text   C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                          000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text   C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                            000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text   C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                        000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text   C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                         000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text   C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                       000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text   C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\ole32.dll!CoCreateInstance                                                               000007fefdd97490 11 bytes JMP 000007fffcad0228
.text   C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                              000007fefddabf00 7 bytes JMP 000007fffcad0260
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!RegSetValueExW                                               0000000076b9a400 7 bytes JMP 000000016fff0260
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                             0000000076ba3f20 5 bytes JMP 000000016fff01b8
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                              0000000076bbffb0 5 bytes JMP 000000016fff01f0
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                        0000000076bcf2e0 5 bytes JMP 000000016fff0148
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                      0000000076bf9a30 7 bytes JMP 000000016fff00d8
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                      0000000076c094c0 5 bytes JMP 000000016fff0180
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                      0000000076c09630 5 bytes JMP 000000016fff0110
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!RegSetValueExA                                               0000000076c287e0 7 bytes JMP 000000016fff0228
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                           000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                             000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                         000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                          000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                        000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\ole32.dll!CoCreateInstance                                                000007fefdd97490 11 bytes JMP 000007fffcad0228
.text   C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                               000007fefddabf00 7 bytes JMP 000007fffcad0260
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!RegSetValueExW                                                0000000076b9a400 7 bytes JMP 000000016fff0260
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                              0000000076ba3f20 5 bytes JMP 000000016fff01b8
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                               0000000076bbffb0 5 bytes JMP 000000016fff01f0
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                         0000000076bcf2e0 5 bytes JMP 000000016fff0148
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                       0000000076bf9a30 7 bytes JMP 000000016fff00d8
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                       0000000076c094c0 5 bytes JMP 000000016fff0180
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                       0000000076c09630 5 bytes JMP 000000016fff0110
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!RegSetValueExA                                                0000000076c287e0 7 bytes JMP 000000016fff0228
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                            000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                              000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                          000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\ole32.dll!CoCreateInstance                                                 000007fefdd97490 11 bytes JMP 000007fffcad0228
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                000007fefddabf00 7 bytes JMP 000007fffcad0260
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                           000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text   C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                         000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW           00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!RegSetValueExW             00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!RegSetValueExA             00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW            00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW    00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx    0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation    0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW      00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2  0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW         00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW       00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW           00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary              00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList      0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo        0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\USER32.dll!CreateWindowExW              00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA          0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW          000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo   0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket             0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\ole32.dll!CoCreateInstance              0000000075f79d0b 5 bytes JMP 00000001724f1217
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69     00000000760e1465 2 bytes [0E, 76]
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155    00000000760e14bb 2 bytes [0E, 76]
.text   ...                                                                                                                                                 * 2
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!RegSetValueExW                                                        0000000076b9a400 7 bytes JMP 000000016fff0260
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!RegQueryValueExW                                                      0000000076ba3f20 5 bytes JMP 000000016fff01b8
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!RegDeleteValueW                                                       0000000076bbffb0 5 bytes JMP 000000016fff01f0
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!K32GetMappedFileNameW                                                 0000000076bcf2e0 5 bytes JMP 000000016fff0148
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!K32EnumProcessModulesEx                                               0000000076bf9a30 7 bytes JMP 000000016fff00d8
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!K32GetModuleInformation                                               0000000076c094c0 5 bytes JMP 000000016fff0180
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!K32GetModuleFileNameExW                                               0000000076c09630 5 bytes JMP 000000016fff0110
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!RegSetValueExA                                                        0000000076c287e0 7 bytes JMP 000000016fff0228
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                         000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                    000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                      000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                  000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                   000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text   D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                                00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                  00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                  00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                 00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                         00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                         0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                         0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                           00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2                       0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                              00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                            00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                   00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                   00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                               0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                               000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                        0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                           0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                             0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                  0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                   0000000075f79d0b 5 bytes JMP 00000001724f1217
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                         00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                           00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                           00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                          00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                  00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                  0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                  0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                    00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2                0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                       00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                     00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                         00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                            00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\USER32.dll!CreateWindowExW                            00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                        0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                        000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                    0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                      0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                           0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\ole32.dll!CoCreateInstance                            0000000075f79d0b 5 bytes JMP 00000001724f1217
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                                              00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                                00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                                00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                               00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                                       00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                                       0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                                       0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                                         00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2                                     0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                            00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                                          00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                              00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                                 00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                                         0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                                           0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                                 00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                             0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                             000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                                      0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                                0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                                 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text   C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                               000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text   C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                          000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text   C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                            000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text   C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                        000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text   C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                         000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text   C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                       000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text   C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\ole32.dll!CoCreateInstance                                                               000007fefdd97490 11 bytes JMP 000007fffcad0228
.text   C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                              000007fefddabf00 7 bytes JMP 000007fffcad0260
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                   00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                     00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                     00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                    00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW            00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx            0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation            0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW              00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2          0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW               00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                   00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                      00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList              0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\USER32.dll!CreateWindowExW                      00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                  0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                  000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo           0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                     0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\ole32.dll!CoCreateInstance                      0000000075f79d0b 5 bytes JMP 00000001724f1217
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69             00000000760e1465 2 bytes [0E, 76]
.text   C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155            00000000760e14bb 2 bytes [0E, 76]
.text   ...                                                                                                                                                 * 2
.text   D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe[5732] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69            00000000760e1465 2 bytes [0E, 76]
.text   D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe[5732] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155           00000000760e14bb 2 bytes [0E, 76]
.text   ...                                                                                                                                                 * 2
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                                      00000000766d1f0e 7 bytes JMP 00000001724f168b
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                        00000000766d5bad 7 bytes JMP 00000001724f11a4
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                        00000000766e1409 7 bytes JMP 00000001724f1280
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                       00000000766eea45 7 bytes JMP 00000001724f123a
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                               00000000766fb21b 5 bytes JMP 00000001724f15a0
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                               0000000076778e24 7 bytes JMP 00000001724f132f
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                               0000000076778ea9 5 bytes JMP 00000001724f16cc
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                                 00000000767791ff 1 byte JMP 00000001724f1703
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2                             0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                    00000000760a1d29 5 bytes JMP 00000001724f11bd
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                                  00000000760a1dd7 5 bytes JMP 00000001724f1014
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                      00000000760a2ab1 5 bytes JMP 00000001724f154b
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                         00000000760a2d17 5 bytes JMP 00000001724f1267
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                                 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                                   0000000074e7eba5 5 bytes JMP 00000001724f1181
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                         00000000751f8a29 5 bytes JMP 00000001724f171c
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                     0000000075204572 5 bytes JMP 00000001724f10a0
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                     000000007521e567 5 bytes JMP 00000001724f140b
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                              0000000075257a5c 5 bytes JMP 00000001724f15c8
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                        0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text   C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                         0000000075f79d0b 5 bytes JMP 00000001724f1217

---- Threads - GMER 2.1 ----

Thread  C:\Program Files\Windows Media Player\wmpnetwk.exe [4336:4476]                                                                                      000007fefa8c2bf8
Thread  C:\Program Files\Windows Media Player\wmpnetwk.exe [4336:5356]                                                                                      000007fee54a4830
Thread  C:\Program Files\Windows Media Player\wmpnetwk.exe [4336:5488]                                                                                      000007fefb0d5124
Thread  C:\Windows\System32\svchost.exe [5828:4552]                                                                                                         000007fedf569688

---- Registry - GMER 2.1 ----

Reg     HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\0025d3b2962e                                                                         
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04                                                                    
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0                                                                 0
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew                                                              0x93 0x55 0xA8 0x0E ...
Reg     HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\0025d3b2962e (not active ControlSet)                                                     
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)                                                
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0                                                                     0
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew                                                                  0x93 0x55 0xA8 0x0E ...

---- EOF - GMER 2.1 ----
         
__________________


Alt 31.10.2014, 10:35   #3
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7: Internet funktionieren nach CCleaner nich mehr - Standard

Windows 7: Internet funktionieren nach CCleaner nich mehr



hi,

Downloade dir bitte Farbar's MiniToolBox auf deinen Desktop und starte das Tool

Setze einen Haken bei folgenden Einträgen
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset IE Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
  • List Minidump Files
Klicke Go und poste den Inhalt der Result.txt.
__________________
__________________

Alt 31.10.2014, 16:46   #4
Iraklis
 
Windows 7: Internet funktionieren nach CCleaner nich mehr - Standard

Windows 7: Internet funktionieren nach CCleaner nich mehr



Code:
ATTFilter
MiniToolBox by Farbar  Version: 21-07-2014
Ran by Konstantinos Tzontas (administrator) on 31-10-2014 at 17:42:45
Running from "C:\Users\Konstantinos Tzontas\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows-IP-Konfiguration

Der DNS-Aufl�sungscache wurde geleert.

========================= IE Proxy Settings: ============================== 

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ============================== 

"network.proxy.gopher", ""
"network.proxy.gopher_port", 0
"network.proxy.share_proxy_settings", true
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


========================= IP Configuration: ================================

Intel(R) Centrino(R) Wireless-N 100 = Drahtlosnetzwerkverbindung (Connected)
Microsoft Virtual WiFi Miniport Adapter = Drahtlosnetzwerkverbindung 2 (Hardware not present)
Realtek PCIe GBE Family Controller = LAN-Verbindung (Media disconnected)
TAP-Win32 Adapter V9 = LAN-Verbindung 3 (Media disconnected)


# ----------------------------------
# IPv4-Konfiguration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# Ende der IPv4-Konfiguration



Windows-IP-Konfiguration

   Hostname  . . . . . . . . . . . . : KonstantinosTzo
   Prim�res DNS-Suffix . . . . . . . : 
   Knotentyp . . . . . . . . . . . . : Hybrid
   IP-Routing aktiviert  . . . . . . : Nein
   WINS-Proxy aktiviert  . . . . . . : Nein
   DNS-Suffixsuchliste . . . . . . . : fritz.box

Ethernet-Adapter LAN-Verbindung 3:

   Medienstatus. . . . . . . . . . . : Medium getrennt
   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : TAP-Win32 Adapter V9
   Physikalische Adresse . . . . . . : 00-FF-B1-FA-23-4F
   DHCP aktiviert. . . . . . . . . . : Ja
   Autokonfiguration aktiviert . . . : Ja

Drahtlos-LAN-Adapter Drahtlosnetzwerkverbindung:

   Verbindungsspezifisches DNS-Suffix: fritz.box
   Beschreibung. . . . . . . . . . . : Intel(R) Centrino(R) Wireless-N 100
   Physikalische Adresse . . . . . . : 78-92-9C-45-23-A8
   DHCP aktiviert. . . . . . . . . . : Ja
   Autokonfiguration aktiviert . . . : Ja
   Verbindungslokale IPv6-Adresse  . : fe80::6c0b:883:3fe0:6a3c%12(Bevorzugt) 
   IPv4-Adresse  . . . . . . . . . . : 192.168.178.24(Bevorzugt) 
   Subnetzmaske  . . . . . . . . . . : 255.255.255.0
   Lease erhalten. . . . . . . . . . : Freitag, 31. Oktober 2014 16:49:38
   Lease l�uft ab. . . . . . . . . . : Montag, 10. November 2014 17:40:40
   Standardgateway . . . . . . . . . : 192.168.178.1
   DHCP-Server . . . . . . . . . . . : 192.168.178.1
   DHCPv6-IAID . . . . . . . . . . . : 309891740
   DHCPv6-Client-DUID. . . . . . . . : 00-01-00-01-18-AE-78-8D-50-46-5D-E1-D8-C8
   DNS-Server  . . . . . . . . . . . : fe80::1%12
                                       198.18.0.1
                                       198.18.0.2
   NetBIOS �ber TCP/IP . . . . . . . : Aktiviert

Ethernet-Adapter LAN-Verbindung:

   Medienstatus. . . . . . . . . . . : Medium getrennt
   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physikalische Adresse . . . . . . : 50-46-5D-E1-D8-C8
   DHCP aktiviert. . . . . . . . . . : Ja
   Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 3:

   Medienstatus. . . . . . . . . . . : Medium getrennt
   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiviert. . . . . . . . . . : Nein
   Autokonfiguration aktiviert . . . : Ja

Tunneladapter isatap.{B1FA234F-FD20-4968-8046-DBDC70C762C3}:

   Medienstatus. . . . . . . . . . . : Medium getrennt
   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter #2
   Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiviert. . . . . . . . . . : Nein
   Autokonfiguration aktiviert . . . : Ja

Tunneladapter Reusable ISATAP Interface {7192C78D-DE42-40EA-8DEF-2390009E2EA8}:

   Medienstatus. . . . . . . . . . . : Medium getrennt
   Verbindungsspezifisches DNS-Suffix: fritz.box
   Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter #4
   Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiviert. . . . . . . . . . : Nein
   Autokonfiguration aktiviert . . . : Ja

Tunneladapter isatap.{70F80DF2-E91A-461D-B6C7-AEF1D9FCC421}:

   Medienstatus. . . . . . . . . . . : Medium getrennt
   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter #5
   Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiviert. . . . . . . . . . : Nein
   Autokonfiguration aktiviert . . . : Ja
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  fe80::1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Ping-Anforderung konnte Host "google.com" nicht finden. �berpr�fen Sie den Namen, und versuchen Sie es erneut.
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  fe80::1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Ping-Anforderung konnte Host "yahoo.com" nicht finden. �berpr�fen Sie den Namen, und versuchen Sie es erneut.

Ping wird ausgef�hrt f�r 127.0.0.1 mit 32 Bytes Daten:
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128

Ping-Statistik f�r 127.0.0.1:
    Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
    (0% Verlust),
Ca. Zeitangaben in Millisek.:
    Minimum = 0ms, Maximum = 0ms, Mittelwert = 0ms
===========================================================================
Schnittstellenliste
 19...00 ff b1 fa 23 4f ......TAP-Win32 Adapter V9
 12...78 92 9c 45 23 a8 ......Intel(R) Centrino(R) Wireless-N 100
 11...50 46 5d e1 d8 c8 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 20...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 22...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter #2
 24...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter #4
 23...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter #5
===========================================================================

IPv4-Routentabelle
===========================================================================
Aktive Routen:
     Netzwerkziel    Netzwerkmaske          Gateway    Schnittstelle Metrik
          0.0.0.0          0.0.0.0    192.168.178.1   192.168.178.24     25
        127.0.0.0        255.0.0.0   Auf Verbindung         127.0.0.1    306
        127.0.0.1  255.255.255.255   Auf Verbindung         127.0.0.1    306
  127.255.255.255  255.255.255.255   Auf Verbindung         127.0.0.1    306
    192.168.178.0    255.255.255.0   Auf Verbindung    192.168.178.24    281
   192.168.178.24  255.255.255.255   Auf Verbindung    192.168.178.24    281
  192.168.178.255  255.255.255.255   Auf Verbindung    192.168.178.24    281
        224.0.0.0        240.0.0.0   Auf Verbindung         127.0.0.1    306
        224.0.0.0        240.0.0.0   Auf Verbindung    192.168.178.24    281
  255.255.255.255  255.255.255.255   Auf Verbindung         127.0.0.1    306
  255.255.255.255  255.255.255.255   Auf Verbindung    192.168.178.24    281
===========================================================================
St�ndige Routen:
  Keine

IPv6-Routentabelle
===========================================================================
Aktive Routen:
 If Metrik Netzwerkziel             Gateway
  1    306 ::1/128                  Auf Verbindung
 12    281 fe80::/64                Auf Verbindung
 12    281 fe80::6c0b:883:3fe0:6a3c/128
                                    Auf Verbindung
  1    306 ff00::/8                 Auf Verbindung
 12    281 ff00::/8                 Auf Verbindung
===========================================================================
St�ndige Routen:
  Keine
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2090

Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2090

Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1014

Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1014

Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3089

Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3089

Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/31/2014 05:04:22 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2044


System errors:
=============
Error: (10/31/2014 04:53:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (10/31/2014 04:53:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (10/31/2014 04:50:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Garmin Core Update Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (10/31/2014 04:50:35 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Garmin Core Update Service erreicht.

Error: (10/31/2014 11:08:25 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (10/31/2014 11:08:25 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (10/31/2014 11:04:42 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Garmin Core Update Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (10/31/2014 11:04:42 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Garmin Core Update Service erreicht.

Error: (10/30/2014 00:58:56 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (10/30/2014 00:58:56 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).


Microsoft Office Sessions:
=========================
Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2090

Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2090

Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1014

Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1014

Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3089

Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3089

Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/31/2014 05:04:22 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2044


CodeIntegrity Errors:
===================================
  Date: 2014-07-18 22:04:25.422
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.391
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.251
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.204
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.998
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.977
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.895
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.849
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-06-23 16:26:49.699
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-06-23 16:26:49.529
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.



=========================== Installed Programs ============================
3monkey (HKCU\...\7202e20a3ee22bab) (Version: 1.0.0.4 - 3monkey.me)
64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.6.0.393 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.3 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.3 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.9.900.117 - Adobe Systems Incorporated)
Adobe InCopy CC (HKLM-x32\...\{2606D96F-C1A3-1014-9A8F-E3561A1AC78D}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe InDesign CC (HKLM-x32\...\{BC448016-6F11-1014-B0EA-97CEE6E26CB6}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}) (Version: 11.0 - Adobe Systems, Inc.)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
AMPLUS Vokabel-Trainer 1.2 (HKLM-x32\...\AMPLUS Vokabel-Trainer 1.2) (Version:  - )
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
B110 (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
calibre (HKLM-x32\...\{A2A971DE-C864-4CF0-8FCA-FF7F569D8476}) (Version: 1.43.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.1.4003 - CDBurnerXP)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.41 - DivX, LLC)
Elevated Installer (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.1.13904 - Landesfinanzdirektion Thüringen)
ESET Smart Security (HKLM\...\{F5A3E880-A737-48F2-A124-6F5D4CEA6AB4}) (Version: 7.0.302.26 - ESET, spol s r. o.)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Football Manager 2014 (HKLM-x32\...\Steam App 231670) (Version:  - Sports Interactive)
Free ISO Create Wizard 6.0.7 (HKLM-x32\...\Free ISO Create Wizard_is1) (Version:  - FreeAudioVideoSoftTech, Inc.)
Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version:  - )
Free YouTube to MP3 Converter version 3.12.46.923 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.46.923 - DVDVideoSoft Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin with myGarmin Agent (HKLM-x32\...\{92A70E71-4F0E-4C05-A777-16424E89F162}) (Version: 2.9.2 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{b43ffffb-1adc-4bcb-b277-7844ebff94da}) (Version: 3.2.17.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel PROSet Wireless (Version:  - ) Hidden
Intel PROSet Wireless (x32 Version:  - ) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{3C41721F-AF0F-4086-AA1C-4C7F29076228}) (Version: 14.01.1000 - Intel Corporation)
Intel(R) Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.400.4 - Intel)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NVIDIA Install Application (Version: 2.1002.130.849 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.11.3 (Version: 1.11.3 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Systemsteuerung 326.84 (Version: 326.84 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM-x32\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Shutdown4U (HKLM-x32\...\Shutdown4U) (Version:  - )
SolutionCenter (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.17.0 - Synaptics Incorporated)
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
System Requirements Lab CYRI (64-bit) (HKLM\...\{15AD6738-23E8-4AE6-93E9-434E717EECB2}) (Version: 4.5.1.0 - Husdawg, LLC)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Unlocker 1.9.1-x64 (HKLM\...\Unlocker) (Version: 1.9.1 - Cedrick Collomb)
USB Safely Remove 5.2 (HKLM-x32\...\USB Safely Remove_is1) (Version:  - SafelyRemove.com)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtua Tennis 4 (x32 Version: 1.0.0001.130 - Sega) Hidden
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 3.6 - Bazis)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - ?????????? ??????????) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ???? (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ??? (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se?? (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
S?????? f?t???af??? t?? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
???????? ?????????? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
????? Windows Live (x32 Version: 15.4.3502.0922 - ?????????? ??????????) Hidden
?????????? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
??????? ?????????? Windows Live Mesh ActiveX ??? ????????? ??????????? (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
?????? ??????? ?? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
??? ActiveX ?? Windows Live Mesh ???? ??????? ??????? (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
???? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ??????? (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
???? ??? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
??????? Windows Live Mesh ActiveX ??? (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)

========================= Memory info: ===================================

Percentage of memory in use: 26%
Total physical RAM: 8102.7 MB
Available physical RAM: 5985.66 MB
Total Pagefile: 16203.57 MB
Available Pagefile: 13735.93 MB
Total Virtual: 4095.88 MB
Available Virtual: 3978.55 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:195.35 GB) (Free:63.24 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:245.41 GB) (Free:99.29 GB) NTFS
4 Drive f: () (Removable) (Total:7.45 GB) (Free:7.43 GB) FAT32

========================= Users: ========================================

Benutzerkonten fr \\KONSTANTINOSTZO

Administrator            Gast                     Konstantinos Tzontas     
Mcx1-KONSTANTINOSTZO     UpdatusUser              
Der Befehl wurde erfolgreich ausgefhrt.

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
         

Alt 01.11.2014, 11:27   #5
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7: Internet funktionieren nach CCleaner nich mehr - Standard

Windows 7: Internet funktionieren nach CCleaner nich mehr



Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
Tcpip\..\Interfaces\{3397BB0D-EE26-42CB-9BEB-420E9F33ECF6}: [NameServer] 198.18.0.1,198.18.0.2
cmd: ipconfig /flushdns
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.





Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 02.11.2014, 10:06   #6
Iraklis
 
Windows 7: Internet funktionieren nach CCleaner nich mehr - Standard

Windows 7: Internet funktionieren nach CCleaner nich mehr



Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-11-2014
Ran by Konstantinos Tzontas at 2014-11-02 09:45:41 Run:1
Running from C:\Users\Konstantinos Tzontas\Desktop
Loaded Profile: Konstantinos Tzontas (Available profiles: UpdatusUser & Konstantinos Tzontas & Mcx1-KONSTANTINOSTZO)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Tcpip\..\Interfaces\{3397BB0D-EE26-42CB-9BEB-420E9F33ECF6}: [NameServer] 198.18.0.1,198.18.0.2
cmd: ipconfig /flushdns
*****************

HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{3397BB0D-EE26-42CB-9BEB-420E9F33ECF6}\\NameServer => value deleted successfully.

=========  ipconfig /flushdns =========


Windows-IP-Konfiguration

Der DNS-Aufl�sungscache wurde geleert.

========= End of CMD: =========


==== End of Fixlog ====
         
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org


Protection, 02.11.2014 09:49:02, SYSTEM, KONSTANTINOSTZO, Protection, Malware Protection, Starting, 
Protection, 02.11.2014 09:49:02, SYSTEM, KONSTANTINOSTZO, Protection, Malware Protection, Started, 
Protection, 02.11.2014 09:49:02, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Starting, 
Protection, 02.11.2014 09:49:04, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Started, 
Update, 02.11.2014 09:49:08, SYSTEM, KONSTANTINOSTZO, Manual, Rootkit Database, 2014.9.18.1, 2014.11.1.2, 
Update, 02.11.2014 09:49:15, SYSTEM, KONSTANTINOSTZO, Manual, Malware Database, 2014.9.19.5, 2014.11.2.3, 
Protection, 02.11.2014 09:49:15, SYSTEM, KONSTANTINOSTZO, Protection, Refresh, Starting, 
Protection, 02.11.2014 09:49:15, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Stopping, 
Protection, 02.11.2014 09:49:15, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Stopped, 
Protection, 02.11.2014 09:49:19, SYSTEM, KONSTANTINOSTZO, Protection, Refresh, Success, 
Protection, 02.11.2014 09:49:19, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Starting, 
Protection, 02.11.2014 09:49:20, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Started, 
Scan, 02.11.2014 10:34:02, SYSTEM, KONSTANTINOSTZO, Manual, Start: % 1 "% 2", Dauer: % 1 min 34 Sekunden, Bedrohungs-Suchlauf, Abgeschlossen, 0 Malwareerkennung, 1374-Malwareerkennung, 
Protection, 02.11.2014 10:37:28, SYSTEM, KONSTANTINOSTZO, Protection, Malware Protection, Starting, 
Protection, 02.11.2014 10:37:28, SYSTEM, KONSTANTINOSTZO, Protection, Malware Protection, Started, 
Protection, 02.11.2014 10:37:28, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Starting, 
Protection, 02.11.2014 10:39:15, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Started, 

(end)
         
Code:
ATTFilter
# AdwCleaner v4.002 - Bericht erstellt am 02/11/2014 um 10:47:24
# DB v2014-10-26.6
# Aktualisiert 27/10/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Konstantinos Tzontas - KONSTANTINOSTZO
# Gestartet von : C:\Users\Konstantinos Tzontas\Downloads\AdwCleaner_4.002.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Users\Konstantinos Tzontas\AppData\Roaming\RocketUpdater
Ordner Gelöscht : C:\Program Files (x86)\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Ordner Gelöscht : C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm
Datei Gelöscht : C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\user.js

***** [ Tasks ] *****

Task Gelöscht : dsmonitor
Task Gelöscht : Express FilesUpdate
Task Gelöscht : Rocket Updater

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{78888F8B-D5E4-43CE-89F5-C8C18223AF64}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8B8558F6-DC26-4F39-8417-34B8934AA459}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9E393F82-2644-4AB6-B994-1AD39D6C59EE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A3A2A5C0-1306-4D1A-A093-9CECA4230002}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\Rocket Browser
Schlüssel Gelöscht : HKCU\Software\RocketUpdater
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17344

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]

-\\ Mozilla Firefox v32.0.3 (x86 de)


-\\ Google Chrome v


*************************

AdwCleaner[R3].txt - [5983 octets] - [02/11/2014 10:45:58]
AdwCleaner[S2].txt - [5140 octets] - [02/11/2014 10:47:24]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [5200 octets] ##########
         
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.5 (10.31.2014:1)
OS: Windows 7 Home Premium x64
Ran by Konstantinos Tzontas on 02.11.2014 at 10:56:57,84
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{900C6BAE-AEC8-40E9-BA9F-6F9D5981B598}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{686AA630-8AA4-DFDA-9B6F-4E87A3269C04}



~~~ Files

Successfully deleted: [File] C:\Windows\prefetch\DRIVERBOOSTER.EXE-51D78DCC.pf



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\free window registry repair"
Successfully deleted: [Folder] "C:\Users\Konstantinos Tzontas\AppData\Roaming\microsoft\windows\start menu\programs\free window registry repair"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\firefox\profiles\cror15bd.default\extensions\staged



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02.11.2014 at 11:00:57,78
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-11-2014
Ran by Konstantinos Tzontas (administrator) on KONSTANTINOSTZO on 02-11-2014 11:02:00
Running from C:\Users\Konstantinos Tzontas\Desktop
Loaded Profile: Konstantinos Tzontas (Available profiles: UpdatusUser & Konstantinos Tzontas & Mcx1-KONSTANTINOSTZO)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSRService.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Garmin Ltd or its subsidiaries) D:\Garmin\Express Tray\ExpressTray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Garmin Ltd or its subsidiaries) D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2816808 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-02] (Intel(R) Corporation)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [98088 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191312 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [GarminExpressTrayApp] => D:\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6462744 2014-08-21] (Piriform Ltd)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82] => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\MountPoints2: {d842016a-97d6-11e2-9017-50465de1d8c8} - F:\AutoRun.exe
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
SSODL: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=4805876640124690&q={searchTerms}
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKCU - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL = 
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default
FF DefaultSearchUrl: 
FF Homepage: hxxp://wmportal.wmkat.de/
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll No File
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Download videos and MP3s from YouTube - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} [2014-10-07]
FF Extension: Real Hide IP - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\support@real-hide-ip.com.xpi [2014-07-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-02-27]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-05-26]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-10-07]
FF Extension: No Name - C:\Program Files (x86)\IObit Apps Toolbar\FF [Not Found]
FF Extension: No Name - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\extensions\iobitascsurfingprotection@iobit.com [Not Found]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV="
CHR Profile: C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-12]
CHR Extension: (MindMeister) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2013-11-29]
CHR Extension: (iCloud) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdilfkhpgihcibbahmoggdaeciachopd [2014-02-26]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-06]
CHR Extension: (YouTube) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-12]
CHR Extension: (Adblock Plus) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-28]
CHR Extension: (Google-Suche) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-12]
CHR Extension: (Search by Image (by Google)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-11-29]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2013-04-12]
CHR Extension: (Google Play Music) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2014-06-13]
CHR Extension: (iCloud-Lesezeichen) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2014-07-09]
CHR Extension: (Rechtschreibprüfung) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gehceilhofkogkifpjmgdhciddpbcboo [2013-04-12]
CHR Extension: (Vimeo Couch Mode) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjkdhkejcnlmkfdodbkdkelefnkobfif [2013-04-12]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-04-17]
CHR Extension: (Finanzen100) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpobenbpfkbhiccbdifogbiachenpie [2013-04-12]
CHR Extension: (WEB.DE MailCheck) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaogepninmlbinccpbiakcgiolijlllo [2014-09-14]
CHR Extension: (Autodesk Homestyler) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2013-11-29]
CHR Extension: (Google Maps) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2013-04-12]
CHR Extension: (Der Planer der Räume) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2013-11-29]
CHR Extension: (Ghostery) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2014-11-02]
CHR Extension: (Google Wallet) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-06]
CHR Extension: (Click&Clean App) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2013-11-29]
CHR Extension: (Google Mail) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-12]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
CHR StartMenuInternet: Google Chrome - chrome.exe

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 Garmin Core Update Service; D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2282272 2014-08-19] (IObit)
S2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-02] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
R2 USBSafelyRemoveService; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [1522488 2014-03-25] (Crystal Rich Ltd)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
R1 cbfs4-0; C:\Program Files (x86)\Common Files\CBFS\cbfs4.sys [385728 2013-03-01] (EldoS Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2011-10-24] (TCT International Mobile Ltd) [File not signed]
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-10-01] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2014-10-10] (Intel Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-09-04] (Synaptics Incorporated)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [868848 2014-07-09] (Duplex Secure Ltd.)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-02 11:02 - 2014-11-02 11:02 - 00027334 _____ () C:\Users\Konstantinos Tzontas\Desktop\FRST.txt
2014-11-02 11:00 - 2014-11-02 11:00 - 00001505 _____ () C:\Users\Konstantinos Tzontas\Desktop\JRT.txt
2014-11-02 10:56 - 2014-11-02 10:56 - 00000000 ____D () C:\Windows\ERUNT
2014-11-02 10:53 - 2014-11-02 10:53 - 00005364 _____ () C:\Users\Konstantinos Tzontas\Desktop\AdwCleaner[S2].txt
2014-11-02 10:36 - 2014-11-02 10:48 - 00299640 _____ () C:\Windows\PFRO.log
2014-11-02 10:33 - 2014-11-02 10:42 - 00001942 _____ () C:\Users\Konstantinos Tzontas\Desktop\mbam.txt.txt
2014-11-02 09:58 - 2014-11-02 09:58 - 00858432 _____ (SlimWare Utilities, Inc.) C:\Users\Konstantinos Tzontas\Downloads\SlimDrivers-setup_32705.exe
2014-11-02 09:56 - 2014-11-02 10:41 - 00000000 ____D () C:\Program Files (x86)\FileHippo.com
2014-11-02 09:55 - 2014-11-02 09:55 - 00269490 _____ () C:\Users\Konstantinos Tzontas\Downloads\FHSetup41.exe
2014-11-02 09:49 - 2014-11-02 10:53 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-02 09:48 - 2014-11-02 09:48 - 01706359 _____ (Thisisu) C:\Users\Konstantinos Tzontas\Downloads\JRT.exe
2014-11-02 09:48 - 2014-11-02 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-11-02 09:48 - 2014-11-02 09:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-02 09:48 - 2014-11-02 09:48 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-11-02 09:48 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-02 09:48 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-02 09:48 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-11-02 09:47 - 2014-11-02 10:47 - 00000000 ____D () C:\AdwCleaner
2014-11-02 09:47 - 2014-11-02 09:47 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Konstantinos Tzontas\Downloads\mbam-setup-2.0.3.1025.exe
2014-11-02 09:47 - 2014-11-02 09:47 - 01998336 _____ () C:\Users\Konstantinos Tzontas\Downloads\AdwCleaner_4.002.exe
2014-11-02 09:45 - 2014-11-02 09:45 - 02114048 _____ (Farbar) C:\Users\Konstantinos Tzontas\Desktop\FRST64.exe
2014-10-30 11:57 - 2014-11-02 10:48 - 00000392 _____ () C:\Windows\setupact.log
2014-10-30 11:57 - 2014-10-30 11:59 - 00287280 _____ () C:\Windows\Minidump\103014-92040-01.dmp
2014-10-30 11:57 - 2014-10-30 11:57 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-30 11:56 - 2014-10-30 12:01 - 05106392 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-30 11:56 - 2014-10-30 11:56 - 702961335 _____ () C:\Windows\MEMORY.DMP
2014-10-30 11:33 - 2014-10-30 11:33 - 00110368 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-30 11:32 - 2014-11-02 10:55 - 00200350 _____ () C:\Windows\WindowsUpdate.log
2014-10-30 11:29 - 2014-11-02 11:02 - 00000000 ____D () C:\FRST
2014-10-30 11:24 - 2014-10-30 11:24 - 00000020 _____ () C:\Users\Konstantinos Tzontas\defogger_reenable
2014-10-30 10:26 - 2014-10-30 10:26 - 00002358 _____ () C:\Windows\System32\Tasks\CCleanerClean
2014-10-30 10:26 - 2014-10-30 10:26 - 00000258 _____ () C:\Windows\Tasks\CCleanerClean.job
2014-10-30 10:10 - 2014-10-30 10:16 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-30 10:10 - 2014-10-30 10:12 - 00000784 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-10-30 10:10 - 2014-10-30 10:10 - 00002802 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-30 10:10 - 2014-10-30 10:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-30 10:10 - 2014-09-25 17:08 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Downloads\CCleaner Pro & Business v4.17.4808
2014-10-30 10:09 - 2014-10-30 10:09 - 10956458 _____ () C:\Users\Konstantinos Tzontas\Downloads\CCleaner Pro & Business v4.17.4808.rar
2014-10-30 09:58 - 2014-10-30 09:58 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\CrashDumps
2014-10-30 09:32 - 2014-10-30 09:32 - 00090239 _____ () C:\Users\Konstantinos Tzontas\Downloads\Eset.zip
2014-10-30 00:08 - 2014-10-30 00:08 - 00001121 _____ () C:\Users\Public\Desktop\Rosetta Stone TOTALe.lnk
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone Backups
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\Rosetta Stone
2014-10-29 20:34 - 2014-10-29 20:39 - 00000000 ____D () C:\Program Files (x86)\CAO-Faktura
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\USBSRService
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Safely Remove
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\Program Files (x86)\USB Safely Remove
2014-10-29 16:56 - 2014-10-29 16:56 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\Program Files\7-Zip
2014-10-29 13:12 - 2014-10-29 13:12 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-10-29 13:07 - 2014-10-29 19:14 - 00000000 ____D () C:\ProgramData\Norton
2014-10-29 13:04 - 2014-10-29 14:44 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\JDownloader v2.0
2014-10-28 20:38 - 2014-10-28 21:04 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\dvdcss
2014-10-28 20:19 - 2014-10-28 20:19 - 00000000 ____D () C:\ProgramData\IObit
2014-10-28 13:20 - 2014-10-28 13:22 - 17398460 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part2.rar
2014-10-28 12:35 - 2014-10-28 13:10 - 110000000 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part1.rar
2014-10-28 12:31 - 2014-10-28 12:44 - 256441633 _____ () C:\Users\Konstantinos Tzontas\Downloads\toRo.setup.win.rar
2014-10-28 12:30 - 2014-10-30 00:12 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-10-28 12:02 - 2014-10-28 12:02 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\NoVirusThanks
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files\iTunes
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-10-28 12:01 - 2014-10-28 12:01 - 00000000 ____D () C:\Program Files\iPod
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files\Bonjour
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-10-28 11:38 - 2014-10-28 11:39 - 122418480 _____ (Apple Inc.) C:\Users\Konstantinos Tzontas\Downloads\iTunes64Setup.exe
2014-10-28 11:28 - 2014-10-28 11:28 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\ProductData
2014-10-28 11:26 - 2014-10-28 11:30 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-28 11:26 - 2014-10-28 11:26 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-10-27 19:51 - 2014-10-27 19:51 - 00369152 _____ () C:\Users\Konstantinos Tzontas\Downloads\Präsentation2.ppt
2014-10-18 23:33 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-18 23:33 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-18 23:33 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-18 23:33 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-18 23:33 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-18 23:33 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-18 23:33 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-18 23:33 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-18 23:33 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-18 23:33 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-18 23:33 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-18 23:33 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-18 23:33 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-18 23:33 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-18 23:33 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-18 23:33 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-18 23:33 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-18 23:33 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-18 23:33 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-18 23:33 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-18 23:33 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-18 23:33 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-18 23:33 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-18 23:33 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-18 23:33 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-18 23:33 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-18 23:32 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-18 23:32 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-18 23:32 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-18 23:32 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-18 23:32 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-18 23:32 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-18 23:32 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-18 23:32 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-18 23:32 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-18 23:32 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00941272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-10 20:24 - 2014-10-10 20:24 - 11527888 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwsw00.sys
2014-10-10 20:22 - 2014-10-28 11:27 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\IObit
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sports Interactive
2014-10-10 19:37 - 2014-10-10 19:37 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-10 19:12 - 2014-10-30 09:52 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-10 19:12 - 2014-10-10 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-07 23:11 - 2014-10-29 16:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-07 19:55 - 2014-10-07 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-10-07 19:54 - 2014-10-07 19:55 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour-Druckdienste
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\Program Files\Bonjour Print Services
2014-10-03 13:29 - 2014-10-03 13:29 - 00002503 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
2014-10-03 13:29 - 2014-10-03 13:29 - 00000000 ____D () C:\Program Files (x86)\Safari

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-02 11:00 - 2012-04-12 15:13 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-02 10:59 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-02 10:59 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-02 10:49 - 2013-01-11 17:26 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-11-02 10:48 - 2014-06-24 20:30 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job
2014-11-02 10:48 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-02 10:37 - 2011-12-04 02:38 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-11-02 10:37 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2014-11-02 10:02 - 2010-05-25 23:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sonstiges
2014-11-02 10:00 - 2012-04-12 15:13 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-02 10:00 - 2012-04-12 15:13 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-02 10:00 - 2012-02-23 23:27 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-02 09:46 - 2011-02-19 05:24 - 00743788 _____ () C:\Windows\system32\perfh007.dat
2014-11-02 09:46 - 2011-02-19 05:24 - 00164270 _____ () C:\Windows\system32\perfc007.dat
2014-11-02 09:46 - 2009-07-14 06:13 - 01725322 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-30 13:18 - 2012-07-15 18:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\vlc
2014-10-30 12:49 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-30 11:57 - 2011-12-08 23:01 - 00000000 ____D () C:\Windows\Minidump
2014-10-30 11:24 - 2012-06-22 02:38 - 00000000 ____D () C:\Users\Konstantinos Tzontas
2014-10-30 10:47 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Apps\2.0
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0}
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD}
2014-10-30 10:23 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4}
2014-10-30 10:23 - 2014-02-27 14:36 - 00003100 _____ () C:\Windows\System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003042 _____ () C:\Windows\System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653}
2014-10-30 10:22 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B}
2014-10-30 09:50 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Deployment
2014-10-30 00:04 - 2014-08-01 14:07 - 00000097 _____ () C:\Users\Konstantinos Tzontas\AppData\Roaming\WB.CFG
2014-10-29 16:56 - 2012-06-23 16:56 - 00000000 ____D () C:\Program Files\Unlocker
2014-10-28 14:22 - 2012-06-25 18:17 - 00001957 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-28 12:30 - 2012-07-14 17:25 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-10-28 12:01 - 2012-07-19 18:19 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-10-28 11:38 - 2014-06-24 20:30 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9
2014-10-28 11:27 - 2014-08-14 20:38 - 00000000 ____D () C:\Users\Mcx1-KONSTANTINOSTZO
2014-10-28 06:34 - 2011-12-23 15:50 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-23 18:44 - 2013-11-26 17:39 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\F975D96A-6135-4CEB-8114-9FB82F8FD83E.aplzod
2014-10-19 03:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-10-19 02:23 - 2014-05-08 02:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-19 02:04 - 2013-08-15 21:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-19 02:00 - 2011-12-05 16:46 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-10 20:26 - 2012-06-20 21:55 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-10-08 21:31 - 2014-04-13 18:25 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-10-07 19:57 - 2012-07-21 23:33 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\DVDVideoSoft
2014-10-03 13:35 - 2012-10-03 18:46 - 00140380 ____H () C:\Windows\SysWOW64\mlfcache.dat

Some content of TEMP:
====================
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\130590578440535138.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\13059057846203636831.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\130590581423595760.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\13059058144102675774.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\proxy_vole2104173749344083710.dll
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\Quarantine.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-16 20:14

==================== End Of Log ============================
         
--- --- ---


FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-11-2014
Ran by Konstantinos Tzontas at 2014-11-02 11:02:49
Running from C:\Users\Konstantinos Tzontas\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 7.0 (Disabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Disabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal Firewall (Disabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3monkey (HKCU\...\7202e20a3ee22bab) (Version: 1.0.0.4 - 3monkey.me)
64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.6.0.393 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.3 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe InCopy CC (HKLM-x32\...\{2606D96F-C1A3-1014-9A8F-E3561A1AC78D}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe InDesign CC (HKLM-x32\...\{BC448016-6F11-1014-B0EA-97CEE6E26CB6}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}) (Version: 11.0 - Adobe Systems, Inc.)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
AMPLUS Vokabel-Trainer 1.2 (HKLM-x32\...\AMPLUS Vokabel-Trainer 1.2) (Version:  - )
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
B110 (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
calibre (HKLM-x32\...\{A2A971DE-C864-4CF0-8FCA-FF7F569D8476}) (Version: 1.43.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.1.4003 - CDBurnerXP)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.41 - DivX, LLC)
Elevated Installer (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.1.13904 - Landesfinanzdirektion Thüringen)
ESET Smart Security (HKLM\...\{F5A3E880-A737-48F2-A124-6F5D4CEA6AB4}) (Version: 7.0.302.26 - ESET, spol s r. o.)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Football Manager 2014 (HKLM-x32\...\Steam App 231670) (Version:  - Sports Interactive)
Free ISO Create Wizard 6.0.7 (HKLM-x32\...\Free ISO Create Wizard_is1) (Version:  - FreeAudioVideoSoftTech, Inc.)
Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version:  - )
Free YouTube to MP3 Converter version 3.12.46.923 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.46.923 - DVDVideoSoft Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin with myGarmin Agent (HKLM-x32\...\{92A70E71-4F0E-4C05-A777-16424E89F162}) (Version: 2.9.2 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{b43ffffb-1adc-4bcb-b277-7844ebff94da}) (Version: 3.2.17.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel PROSet Wireless (x32 Version:  - ) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{3C41721F-AF0F-4086-AA1C-4C7F29076228}) (Version: 14.01.1000 - Intel Corporation)
Intel(R) Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.400.4 - Intel)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM-x32\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Shutdown4U (HKLM-x32\...\Shutdown4U) (Version:  - )
SolutionCenter (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.17.0 - Synaptics Incorporated)
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
System Requirements Lab CYRI (64-bit) (HKLM\...\{15AD6738-23E8-4AE6-93E9-434E717EECB2}) (Version: 4.5.1.0 - Husdawg, LLC)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Unlocker 1.9.1-x64 (HKLM\...\Unlocker) (Version: 1.9.1 - Cedrick Collomb)
USB Safely Remove 5.2 (HKLM-x32\...\USB Safely Remove_is1) (Version:  - SafelyRemove.com)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtua Tennis 4 (x32 Version: 1.0.0001.130 - Sega) Hidden
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 3.6 - Bazis)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)

==================== Restore Points  =========================

02-11-2014 08:46:10 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-09-06 09:56 - 2014-09-18 18:16 - 00000000 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00115E0E-E600-458A-BD95-77DF42AFCABC} - System32\Tasks\{13920426-8421-44B0-A012-30BC09F29C47} => C:\Program Files (x86)\Garmin\Express\Express.exe
Task: {04F7608B-393D-4072-AB70-81F7BD2F07E1} - System32\Tasks\{55619592-4FD9-4558-AAE0-58DF071A7F8B} => C:\Users\Konstantinos Tzontas\Downloads\FileFormatConverters (2).exe
Task: {2FC8D407-727C-434D-AA03-30AEAB73C763} - System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {33D04F6C-C7D6-423A-A9F9-1AFFFB6DD9E4} - System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {36418EFA-2350-47B7-B11A-306DE675131B} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-KONSTANTINOSTZO => C:\Windows\ehome\McxTask.exe [2009-07-14] (Microsoft Corporation)
Task: {39B24B34-D5EF-4668-A2F2-C23ED6650C8C} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {3FFB913A-5FC1-4B01-B255-555F7A7F3016} - System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {44E3FD51-3D3C-48F8-8765-91CF8548DF31} - System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {47EB376D-703D-4040-A24D-7168172FA8D1} - System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {4A2C04C4-092F-4FB6-9E1D-63C3F2F25504} - System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {586A8884-CAB5-41CA-A6E2-B92036545416} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS)
Task: {5AF39471-8B18-44ED-A697-9824FF6C2167} - System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {6418B7BD-1E71-4D08-B196-B6F86BE89901} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-02] (Adobe Systems Incorporated)
Task: {6E7D8AE9-C4FC-4979-A75A-18A9CFF903D4} - System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {816DBEAA-A770-41BC-A9E9-9A058C81C0AD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {8BA604DF-7EA1-45DA-A322-CB66520A93B5} - System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {983A1A1E-B681-440E-A4E8-53C65D93468D} - System32\Tasks\GarminUpdaterTask => D:\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-08-07] ()
Task: {9CB1000D-B3A7-45C7-B375-5045EE6DD826} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {9E913592-CF76-47D1-8B8E-BDCF53413BC7} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.)
Task: {A4FD6F60-56A7-4570-A75D-F1F3274A0998} - System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {A804DBE7-30ED-4752-8275-408542907BD0} - System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4} => C:\Users\Konstantinos Tzontas\Desktop\Rosetta.Stone.TOTALe.v4.1.15.1\Rosetta Stone V4.1.10.exe
Task: {AD791F25-ACEA-44B1-AB36-4D199CCF3AC8} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {B42406A0-0510-4619-A737-55587556012B} - System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {B8183F47-2B43-4015-9456-EA267E2E949A} - System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653} => D:\Roseta Stones\Rosetta Stone TOTALe v 4.1.15 Windows\update.exe [2013-02-18] (Rosetta Stone, Ltd.)
Task: {BF4344DE-FE65-4BC8-994A-05087127ECE6} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {C73BCC69-90CB-4993-8480-EA429F741280} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {C9F173F3-9640-43DB-90F5-3795F8576D27} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-28] (Google Inc.)
Task: {E986BE8F-0B3C-4D8A-9F0E-4220FC8899BF} - System32\Tasks\AdobeAAMUpdater-1.0-KonstantinosTzo-Konstantinos Tzontas => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {F43261AA-FAE7-4FF4-B3D2-9EDA81433EC1} - System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {F592EE46-D815-46C9-91D2-56A1B63D4A76} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002Core.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002UA.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2010-07-15 00:11 - 2010-07-15 00:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll
2010-04-03 03:21 - 2008-10-01 07:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2011-07-07 07:10 - 2013-04-14 15:22 - 00057640 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
2014-05-23 01:10 - 2014-05-23 01:10 - 00671904 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2011-07-07 07:12 - 2011-01-27 01:11 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-08-21 18:49 - 2014-08-21 18:49 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2014-10-30 10:14 - 2014-09-25 17:07 - 00020288 _____ () C:\Program Files\CCleaner\branding.dll
2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-08-31 14:33 - 2011-08-31 14:33 - 00208384 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
2013-09-14 00:51 - 2013-09-14 00:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 00:50 - 2013-09-14 00:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 01098056 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\libglesv2.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 00174408 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\libegl.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 08577864 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\pdf.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 00331592 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\ppGoogleNaClPluginChrome.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 01660232 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (DOS).EML:OECustomProperty
AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (Windows).EML:OECustomProperty

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk => C:\Windows\pss\FancyStart daemon.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Versandhelfer.lnk => C:\Windows\pss\Versandhelfer.lnk.Startup
MSCONFIG\startupreg: 118CF3A891E607F144F4054B8F0D96A24F7C1710._service_run => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: ASUSPRP => "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: BingDesktop => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
MSCONFIG\startupreg: ccleaner => "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
MSCONFIG\startupreg: chromium => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: com.apple.dav.bookmarks.daemon => C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
MSCONFIG\startupreg: DATAMNGR => C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: egui => "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
MSCONFIG\startupreg: Garmin Lifetime Updater => C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82 => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: ISUSPM => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: MyGarminAgent => C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe
MSCONFIG\startupreg: Nuance PDF Reader-reminder => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RapidDrive => C:\Program Files (x86)\RAPIDSHARE AG\RapidDrive\VirtualDrive.exe -autostart
MSCONFIG\startupreg: Setwallpaper => c:\programdata\SetWallpaper.cmd
MSCONFIG\startupreg: SonicMasterTray => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: Trend Micro Titanium => C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none"
MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
MSCONFIG\startupreg: VideoDownloadConverter Home Page Guard 64 bit => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\AppIntegrator64.exe"
MSCONFIG\startupreg: VideoDownloadConverter Search Scope Monitor => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
MSCONFIG\startupreg: VizorHtmlDialog.exe => "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF"
MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun

========================= Accounts: ==========================

Administrator (S-1-5-21-2101622981-3415369606-3063477934-500 - Administrator - Disabled)
Gast (S-1-5-21-2101622981-3415369606-3063477934-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2101622981-3415369606-3063477934-1005 - Limited - Enabled)
Konstantinos Tzontas (S-1-5-21-2101622981-3415369606-3063477934-1002 - Administrator - Enabled) => C:\Users\Konstantinos Tzontas
Mcx1-KONSTANTINOSTZO (S-1-5-21-2101622981-3415369606-3063477934-1010 - Limited - Enabled) => C:\Users\Mcx1-KONSTANTINOSTZO
UpdatusUser (S-1-5-21-2101622981-3415369606-3063477934-1000 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Faulty Device Manager Devices =============

Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft-Adapter für Miniports virtueller WiFis
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-07-18 22:04:25.422
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.391
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.251
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.204
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.998
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.977
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.895
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.849
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-06-23 16:26:49.699
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-06-23 16:26:49.529
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Percentage of memory in use: 30%
Total physical RAM: 8102.7 MB
Available physical RAM: 5633.3 MB
Total Pagefile: 16203.57 MB
Available Pagefile: 13361.41 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:195.35 GB) (Free:61.03 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:245.41 GB) (Free:99.29 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 496B9619)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=195.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=245.4 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
--- --- ---

Alt 02.11.2014, 17:06   #7
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7: Internet funktionieren nach CCleaner nich mehr - Standard

Windows 7: Internet funktionieren nach CCleaner nich mehr




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 04.11.2014, 21:58   #8
Iraklis
 
Windows 7: Internet funktionieren nach CCleaner nich mehr - Standard

Windows 7: Internet funktionieren nach CCleaner nich mehr



Ich habe zusätzlich den WLan treiber neu installiert.
Und jetzt funktioniert alles Einwandfrei.
Vielen Dank für deine Hilfe und Mühe.

Code:
ATTFilter
C:\Windows\assembly\GAC_MSIL\Interop.SHDocVw\1.1.0.0__84542ff99aed6a4d\Interop.SHDocVw.dll	Variante von Win32/Toolbar.Linkury.G evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\Smartbar.Resources.HistoryAndStatsWrapper.dll	Variante von MSIL/Toolbar.Linkury.I evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\Smartbar.Resources.LanguageSettings.resources.dll	Variante von MSIL/Toolbar.Linkury.E evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\spbe.dll	Variante von MSIL/Toolbar.Linkury.I evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\spbl.dll	Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\sppsm.dll	Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\spusm.dll	Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\srbs.dll	Variante von MSIL/Toolbar.Linkury.C evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\srbu.dll	Variante von MSIL/Toolbar.Linkury.F evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\srpt.dll	Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\srpu.dll	Variante von MSIL/Toolbar.Linkury.I evtl. unerwünschte Anwendung	gelöscht - in Quarantäne kopiert
         
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2014
Ran by Konstantinos Tzontas at 2014-11-04 22:55:46
Running from C:\Users\Konstantinos Tzontas\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3monkey (HKCU\...\7202e20a3ee22bab) (Version: 1.0.0.4 - 3monkey.me)
64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.6.0.393 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.3 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe InCopy CC (HKLM-x32\...\{2606D96F-C1A3-1014-9A8F-E3561A1AC78D}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe InDesign CC (HKLM-x32\...\{BC448016-6F11-1014-B0EA-97CEE6E26CB6}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}) (Version: 11.0 - Adobe Systems, Inc.)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
AMPLUS Vokabel-Trainer 1.2 (HKLM-x32\...\AMPLUS Vokabel-Trainer 1.2) (Version:  - )
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
B110 (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
calibre (HKLM-x32\...\{A2A971DE-C864-4CF0-8FCA-FF7F569D8476}) (Version: 1.43.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.1.4003 - CDBurnerXP)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.41 - DivX, LLC)
Elevated Installer (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.1.13904 - Landesfinanzdirektion Thüringen)
ESET Smart Security (HKLM\...\{F5A3E880-A737-48F2-A124-6F5D4CEA6AB4}) (Version: 7.0.302.26 - ESET, spol s r. o.)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Football Manager 2014 (HKLM-x32\...\Steam App 231670) (Version:  - Sports Interactive)
Free ISO Create Wizard 6.0.7 (HKLM-x32\...\Free ISO Create Wizard_is1) (Version:  - FreeAudioVideoSoftTech, Inc.)
Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version:  - )
Free YouTube to MP3 Converter version 3.12.46.923 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.46.923 - DVDVideoSoft Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin with myGarmin Agent (HKLM-x32\...\{92A70E71-4F0E-4C05-A777-16424E89F162}) (Version: 2.9.2 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{b43ffffb-1adc-4bcb-b277-7844ebff94da}) (Version: 3.2.17.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.28 - Intel) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3517 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.400.4 - Intel)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Intel® Driver Update Utility (HKLM-x32\...\{b7a9966b-b4d6-468e-9f50-ecf4ac2c6ce4}) (Version: 2.0.0.28 - Intel)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM-x32\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Shutdown4U (HKLM-x32\...\Shutdown4U) (Version:  - )
SolutionCenter (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.17.0 - Synaptics Incorporated)
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
System Requirements Lab CYRI (64-bit) (HKLM\...\{15AD6738-23E8-4AE6-93E9-434E717EECB2}) (Version: 4.5.1.0 - Husdawg, LLC)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Unlocker 1.9.1-x64 (HKLM\...\Unlocker) (Version: 1.9.1 - Cedrick Collomb)
USB Safely Remove 5.2 (HKLM-x32\...\USB Safely Remove_is1) (Version:  - SafelyRemove.com)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtua Tennis 4 (x32 Version: 1.0.0001.130 - Sega) Hidden
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 3.6 - Bazis)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)

==================== Restore Points  =========================

02-11-2014 18:05:23 Intel® Driver Update Utility
02-11-2014 18:55:39 Removed Intel(R) PROSet/Wireless WiFi Software.

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-09-06 09:56 - 2014-09-18 18:16 - 00000000 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00115E0E-E600-458A-BD95-77DF42AFCABC} - System32\Tasks\{13920426-8421-44B0-A012-30BC09F29C47} => C:\Program Files (x86)\Garmin\Express\Express.exe
Task: {04F7608B-393D-4072-AB70-81F7BD2F07E1} - System32\Tasks\{55619592-4FD9-4558-AAE0-58DF071A7F8B} => C:\Users\Konstantinos Tzontas\Downloads\FileFormatConverters (2).exe
Task: {25844C6E-661C-44C9-B639-ACE4DD3ECB4A} - System32\Tasks\P4GIntlCtrl => C:\Program Files\P4G\IntlDPST.exe [2010-12-02] ()
Task: {2FC8D407-727C-434D-AA03-30AEAB73C763} - System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {33D04F6C-C7D6-423A-A9F9-1AFFFB6DD9E4} - System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {36418EFA-2350-47B7-B11A-306DE675131B} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-KONSTANTINOSTZO => C:\Windows\ehome\McxTask.exe [2009-07-14] (Microsoft Corporation)
Task: {39B24B34-D5EF-4668-A2F2-C23ED6650C8C} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {3FFB913A-5FC1-4B01-B255-555F7A7F3016} - System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {44E3FD51-3D3C-48F8-8765-91CF8548DF31} - System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {47EB376D-703D-4040-A24D-7168172FA8D1} - System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {4A2C04C4-092F-4FB6-9E1D-63C3F2F25504} - System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {586A8884-CAB5-41CA-A6E2-B92036545416} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS)
Task: {5AF39471-8B18-44ED-A697-9824FF6C2167} - System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {6418B7BD-1E71-4D08-B196-B6F86BE89901} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-02] (Adobe Systems Incorporated)
Task: {6E7D8AE9-C4FC-4979-A75A-18A9CFF903D4} - System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {816DBEAA-A770-41BC-A9E9-9A058C81C0AD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {8BA604DF-7EA1-45DA-A322-CB66520A93B5} - System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {983A1A1E-B681-440E-A4E8-53C65D93468D} - System32\Tasks\GarminUpdaterTask => D:\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-08-07] ()
Task: {9CB1000D-B3A7-45C7-B375-5045EE6DD826} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {9E913592-CF76-47D1-8B8E-BDCF53413BC7} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.)
Task: {A4FD6F60-56A7-4570-A75D-F1F3274A0998} - System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {A804DBE7-30ED-4752-8275-408542907BD0} - System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4} => C:\Users\Konstantinos Tzontas\Desktop\Rosetta.Stone.TOTALe.v4.1.15.1\Rosetta Stone V4.1.10.exe
Task: {AD791F25-ACEA-44B1-AB36-4D199CCF3AC8} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {B42406A0-0510-4619-A737-55587556012B} - System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {B8183F47-2B43-4015-9456-EA267E2E949A} - System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653} => D:\Roseta Stones\Rosetta Stone TOTALe v 4.1.15 Windows\update.exe [2013-02-18] (Rosetta Stone, Ltd.)
Task: {BF4344DE-FE65-4BC8-994A-05087127ECE6} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {C73BCC69-90CB-4993-8480-EA429F741280} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {C9F173F3-9640-43DB-90F5-3795F8576D27} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-28] (Google Inc.)
Task: {E986BE8F-0B3C-4D8A-9F0E-4220FC8899BF} - System32\Tasks\AdobeAAMUpdater-1.0-KonstantinosTzo-Konstantinos Tzontas => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {F43261AA-FAE7-4FF4-B3D2-9EDA81433EC1} - System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {F592EE46-D815-46C9-91D2-56A1B63D4A76} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002Core.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002UA.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-12-04 19:00 - 2013-08-21 19:50 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-23 01:10 - 2014-05-23 01:10 - 00671904 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2010-07-15 00:11 - 2010-07-15 00:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll
2010-04-03 03:21 - 2008-10-01 07:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2011-07-07 07:10 - 2013-04-14 15:22 - 00057640 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
2011-07-07 07:12 - 2011-01-27 01:11 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-08-21 18:49 - 2014-08-21 18:49 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2014-10-30 10:14 - 2014-09-25 17:07 - 00020288 _____ () C:\Program Files\CCleaner\branding.dll
2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-08-31 14:33 - 2011-08-31 14:33 - 00208384 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
2013-09-14 00:51 - 2013-09-14 00:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 00:50 - 2013-09-14 00:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 01098056 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\libglesv2.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 00174408 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\libegl.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 08577864 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\pdf.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 00331592 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\ppGoogleNaClPluginChrome.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 01660232 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (DOS).EML:OECustomProperty
AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (Windows).EML:OECustomProperty

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk => C:\Windows\pss\FancyStart daemon.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Versandhelfer.lnk => C:\Windows\pss\Versandhelfer.lnk.Startup
MSCONFIG\startupreg: 118CF3A891E607F144F4054B8F0D96A24F7C1710._service_run => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: ASUSPRP => "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: BingDesktop => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
MSCONFIG\startupreg: ccleaner => "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
MSCONFIG\startupreg: chromium => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: com.apple.dav.bookmarks.daemon => C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
MSCONFIG\startupreg: DATAMNGR => C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: egui => "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
MSCONFIG\startupreg: Garmin Lifetime Updater => C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82 => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: ISUSPM => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: MyGarminAgent => C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe
MSCONFIG\startupreg: Nuance PDF Reader-reminder => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RapidDrive => C:\Program Files (x86)\RAPIDSHARE AG\RapidDrive\VirtualDrive.exe -autostart
MSCONFIG\startupreg: Setwallpaper => c:\programdata\SetWallpaper.cmd
MSCONFIG\startupreg: SonicMasterTray => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: Trend Micro Titanium => C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none"
MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
MSCONFIG\startupreg: VideoDownloadConverter Home Page Guard 64 bit => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\AppIntegrator64.exe"
MSCONFIG\startupreg: VideoDownloadConverter Search Scope Monitor => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
MSCONFIG\startupreg: VizorHtmlDialog.exe => "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF"
MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun

========================= Accounts: ==========================

Administrator (S-1-5-21-2101622981-3415369606-3063477934-500 - Administrator - Disabled)
Gast (S-1-5-21-2101622981-3415369606-3063477934-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2101622981-3415369606-3063477934-1005 - Limited - Enabled)
Konstantinos Tzontas (S-1-5-21-2101622981-3415369606-3063477934-1002 - Administrator - Enabled) => C:\Users\Konstantinos Tzontas
Mcx1-KONSTANTINOSTZO (S-1-5-21-2101622981-3415369606-3063477934-1010 - Limited - Enabled) => C:\Users\Mcx1-KONSTANTINOSTZO
UpdatusUser (S-1-5-21-2101622981-3415369606-3063477934-1000 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Faulty Device Manager Devices =============

Name: TAP-Win32 Adapter V9
Description: TAP-Win32 Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft Virtual WiFi Miniport Adapter #3
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Realtek PCIe GBE Family Controller
Description: Realtek PCIe GBE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8167
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 138388

Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 138388

Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1045

Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1045

Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path name Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0

Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path name Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0

Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path name Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0

Error: (11/03/2014 00:23:36 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (11/04/2014 07:11:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (11/04/2014 07:11:31 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (11/04/2014 07:09:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Garmin Core Update Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (11/04/2014 07:09:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Garmin Core Update Service erreicht.

Error: (11/02/2014 07:51:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (11/02/2014 07:51:17 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (11/02/2014 07:48:40 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet: 
%%-2147024809

Error: (11/02/2014 07:15:54 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "FRITZ-NAS",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{70F80DF2-E91A-461D-B6C7-AEF1D9FCC421}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (11/02/2014 07:03:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Lavalys EVEREST Kernel Driver" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (11/02/2014 07:03:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Lavalys EVEREST Kernel Driver" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577


Microsoft Office Sessions:
=========================
Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 138388

Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 138388

Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1045

Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1045

Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Eap method DLL path name43900

Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Eap method DLL path name25900

Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Eap method DLL path name17900

Error: (11/03/2014 00:23:36 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe


CodeIntegrity Errors:
===================================
  Date: 2014-11-02 19:03:27.719
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-02 19:03:27.613
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-02 19:03:27.427
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-02 19:03:27.317
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.422
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.391
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.251
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-07-18 22:04:25.204
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.998
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-12-10 15:54:19.977
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Percentage of memory in use: 32%
Total physical RAM: 8102.7 MB
Available physical RAM: 5507.89 MB
Total Pagefile: 16203.57 MB
Available Pagefile: 13281.13 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:195.35 GB) (Free:59.07 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:245.41 GB) (Free:99.19 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 496B9619)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=195.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=245.4 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-11-2014
Ran by Konstantinos Tzontas (administrator) on KONSTANTINOSTZO on 04-11-2014 22:55:00
Running from C:\Users\Konstantinos Tzontas\Downloads
Loaded Profile: Konstantinos Tzontas (Available profiles: UpdatusUser & Konstantinos Tzontas & Mcx1-KONSTANTINOSTZO)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSRService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Garmin Ltd or its subsidiaries) D:\Garmin\Express Tray\ExpressTray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Garmin Ltd or its subsidiaries) D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2816808 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [98088 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191312 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [GarminExpressTrayApp] => D:\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6462744 2014-08-21] (Piriform Ltd)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [Akamai NetSession Interface] => "C:\Users\Konstantinos Tzontas\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\MountPoints2: {d842016a-97d6-11e2-9017-50465de1d8c8} - F:\AutoRun.exe
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
SSODL: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=4805876640124690&q={searchTerms}
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKCU - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL = 
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default
FF DefaultSearchUrl: 
FF Homepage: hxxp://wmportal.wmkat.de/
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll No File
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Download videos and MP3s from YouTube - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} [2014-10-07]
FF Extension: Real Hide IP - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\support@real-hide-ip.com.xpi [2014-07-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-02-27]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-05-26]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-10-07]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV="
CHR Profile: C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-12]
CHR Extension: (MindMeister) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2013-11-29]
CHR Extension: (iCloud) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdilfkhpgihcibbahmoggdaeciachopd [2014-02-26]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-06]
CHR Extension: (YouTube) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-12]
CHR Extension: (Adblock Plus) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-28]
CHR Extension: (Google-Suche) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-12]
CHR Extension: (Search by Image (by Google)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-11-29]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2013-04-12]
CHR Extension: (Google Play Music) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2014-06-13]
CHR Extension: (iCloud-Lesezeichen) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2014-07-09]
CHR Extension: (Rechtschreibprüfung) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gehceilhofkogkifpjmgdhciddpbcboo [2013-04-12]
CHR Extension: (Vimeo Couch Mode) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjkdhkejcnlmkfdodbkdkelefnkobfif [2013-04-12]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-04-17]
CHR Extension: (Finanzen100) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpobenbpfkbhiccbdifogbiachenpie [2013-04-12]
CHR Extension: (WEB.DE MailCheck) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaogepninmlbinccpbiakcgiolijlllo [2014-09-14]
CHR Extension: (Autodesk Homestyler) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2013-11-29]
CHR Extension: (Google Maps) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2013-04-12]
CHR Extension: (Der Planer der Räume) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2013-11-29]
CHR Extension: (Ghostery) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2014-11-02]
CHR Extension: (Google Wallet) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-06]
CHR Extension: (Click&Clean App) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2013-11-29]
CHR Extension: (Google Mail) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-12]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
CHR StartMenuInternet: Google Chrome - chrome.exe

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 Garmin Core Update Service; D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2282272 2014-08-19] (IObit)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
R2 USBSafelyRemoveService; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [1522488 2014-03-25] (Crystal Rich Ltd)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
R1 cbfs4-0; C:\Program Files (x86)\Common Files\CBFS\cbfs4.sys [385728 2013-03-01] (EldoS Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2011-10-24] (TCT International Mobile Ltd) [File not signed]
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2014-10-10] (Intel Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-09-04] (Synaptics Incorporated)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [868848 2014-07-09] (Duplex Secure Ltd.)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-04 22:55 - 2014-11-04 22:55 - 00026740 _____ () C:\Users\Konstantinos Tzontas\Downloads\FRST.txt
2014-11-04 22:54 - 2014-11-04 22:54 - 02114560 _____ (Farbar) C:\Users\Konstantinos Tzontas\Downloads\FRST64.exe
2014-11-04 19:10 - 2014-11-04 19:10 - 00003210 _____ () C:\Windows\System32\Tasks\P4GIntlCtrl
2014-11-03 07:16 - 2014-11-03 07:16 - 00001691 _____ () C:\Users\Konstantinos Tzontas\Desktop\eset.txt
2014-11-02 22:12 - 2014-11-02 22:12 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Net2Phone Dialer
2014-11-02 19:56 - 2014-11-02 19:56 - 00003114 _____ () C:\Windows\DPINST.LOG
2014-11-02 19:54 - 2014-11-02 19:54 - 00000294 _____ () C:\WirelessDiagLog.csv
2014-11-02 19:48 - 2014-11-02 19:49 - 05106392 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-02 19:40 - 2014-11-02 19:40 - 00001139 _____ () C:\Users\Konstantinos Tzontas\Desktop\checkup.txt
2014-11-02 19:15 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2014-11-02 19:15 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2014-11-02 19:12 - 2014-11-02 19:12 - 00000000 ____D () C:\Intel
2014-11-02 19:12 - 2014-04-09 12:59 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2014-11-02 19:12 - 2014-03-26 10:05 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-11-02 19:12 - 2014-03-26 10:05 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2014-11-02 19:12 - 2014-03-26 10:04 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3517.dll
2014-11-02 19:12 - 2014-03-20 08:48 - 00017074 _____ () C:\Windows\system32\iglhxs64.vp
2014-11-02 19:12 - 2014-03-20 08:41 - 11176448 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 09007616 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 05363520 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-11-02 19:12 - 2014-03-20 08:40 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00440320 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00432128 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00431104 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00429056 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00428544 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00410624 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00384512 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00175104 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2014-11-02 19:12 - 2014-03-20 08:40 - 00099328 _____ () C:\Windows\system32\igdde64.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00078848 _____ () C:\Windows\SysWOW64\igdde32.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00009728 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2014-11-02 19:12 - 2014-03-20 08:39 - 00330752 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2014-11-02 19:12 - 2014-03-20 08:39 - 00025088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2014-11-02 19:12 - 2014-03-20 08:37 - 13031424 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2014-11-02 19:12 - 2014-03-20 08:37 - 10812928 _____ (Intel Corporation) C:\Windows\SysWOW64\ig4icd32.dll
2014-11-02 19:10 - 2014-11-02 19:10 - 00000000 ____D () C:\ProgramData\IntelDLM
2014-11-02 19:06 - 2014-11-02 19:06 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Intel
2014-11-02 19:05 - 2014-11-02 19:10 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-02 19:05 - 2014-11-02 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2014-11-02 19:05 - 2014-11-02 19:05 - 00000000 ____D () C:\Program Files (x86)\Intel Driver Update Utility
2014-11-02 19:01 - 2014-11-04 19:07 - 00000318 _____ () C:\Windows\setupact.log
2014-11-02 19:01 - 2014-11-02 19:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-02 18:51 - 2014-11-02 18:51 - 00110368 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-02 10:56 - 2014-11-02 10:56 - 00000000 ____D () C:\Windows\ERUNT
2014-11-02 09:56 - 2014-11-02 10:41 - 00000000 ____D () C:\Program Files (x86)\FileHippo.com
2014-11-02 09:48 - 2014-11-02 09:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-02 09:47 - 2014-11-02 10:47 - 00000000 ____D () C:\AdwCleaner
2014-10-30 11:32 - 2014-11-04 19:42 - 00345010 _____ () C:\Windows\WindowsUpdate.log
2014-10-30 11:29 - 2014-11-04 22:55 - 00000000 ____D () C:\FRST
2014-10-30 11:24 - 2014-10-30 11:24 - 00000020 _____ () C:\Users\Konstantinos Tzontas\defogger_reenable
2014-10-30 10:26 - 2014-10-30 10:26 - 00002358 _____ () C:\Windows\System32\Tasks\CCleanerClean
2014-10-30 10:26 - 2014-10-30 10:26 - 00000258 _____ () C:\Windows\Tasks\CCleanerClean.job
2014-10-30 10:10 - 2014-10-30 10:16 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-30 10:10 - 2014-10-30 10:12 - 00000784 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-10-30 10:10 - 2014-10-30 10:10 - 00002802 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-30 10:10 - 2014-10-30 10:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-30 10:10 - 2014-09-25 17:08 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Downloads\CCleaner Pro & Business v4.17.4808
2014-10-30 10:09 - 2014-10-30 10:09 - 10956458 _____ () C:\Users\Konstantinos Tzontas\Downloads\CCleaner Pro & Business v4.17.4808.rar
2014-10-30 09:58 - 2014-10-30 09:58 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\CrashDumps
2014-10-30 00:08 - 2014-10-30 00:08 - 00001121 _____ () C:\Users\Public\Desktop\Rosetta Stone TOTALe.lnk
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone Backups
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\Rosetta Stone
2014-10-29 20:34 - 2014-10-29 20:39 - 00000000 ____D () C:\Program Files (x86)\CAO-Faktura
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\USBSRService
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Safely Remove
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\Program Files (x86)\USB Safely Remove
2014-10-29 16:56 - 2014-10-29 16:56 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\Program Files\7-Zip
2014-10-29 13:12 - 2014-10-29 13:12 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-10-29 13:07 - 2014-10-29 19:14 - 00000000 ____D () C:\ProgramData\Norton
2014-10-29 13:04 - 2014-10-29 14:44 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\JDownloader v2.0
2014-10-28 20:38 - 2014-10-28 21:04 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\dvdcss
2014-10-28 20:19 - 2014-10-28 20:19 - 00000000 ____D () C:\ProgramData\IObit
2014-10-28 13:20 - 2014-10-28 13:22 - 17398460 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part2.rar
2014-10-28 12:35 - 2014-10-28 13:10 - 110000000 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part1.rar
2014-10-28 12:31 - 2014-10-28 12:44 - 256441633 _____ () C:\Users\Konstantinos Tzontas\Downloads\toRo.setup.win.rar
2014-10-28 12:30 - 2014-10-30 00:12 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-10-28 12:02 - 2014-10-28 12:02 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\NoVirusThanks
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files\iTunes
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-10-28 12:01 - 2014-10-28 12:01 - 00000000 ____D () C:\Program Files\iPod
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files\Bonjour
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-10-28 11:28 - 2014-10-28 11:28 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\ProductData
2014-10-28 11:26 - 2014-10-28 11:30 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-28 11:26 - 2014-10-28 11:26 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-10-27 19:51 - 2014-10-27 19:51 - 00369152 _____ () C:\Users\Konstantinos Tzontas\Downloads\Präsentation2.ppt
2014-10-18 23:33 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-18 23:33 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-18 23:33 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-18 23:33 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-18 23:33 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-18 23:33 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-18 23:33 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-18 23:33 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-18 23:33 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-18 23:33 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-18 23:33 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-18 23:33 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-18 23:33 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-18 23:33 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-18 23:33 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-18 23:33 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-18 23:33 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-18 23:33 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-18 23:33 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-18 23:33 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-18 23:33 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-18 23:33 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-18 23:33 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-18 23:33 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-18 23:33 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-18 23:33 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-18 23:32 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-18 23:32 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-18 23:32 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-18 23:32 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-18 23:32 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-18 23:32 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-18 23:32 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-18 23:32 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-18 23:32 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-18 23:32 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00941272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-10 20:24 - 2014-10-10 20:24 - 11527888 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwsw00.sys
2014-10-10 20:22 - 2014-10-28 11:27 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\IObit
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sports Interactive
2014-10-10 19:37 - 2014-10-10 19:37 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-10 19:12 - 2014-10-30 09:52 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-10 19:12 - 2014-10-10 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-07 23:11 - 2014-10-29 16:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-07 19:55 - 2014-10-07 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-10-07 19:54 - 2014-10-07 19:55 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour-Druckdienste
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\Program Files\Bonjour Print Services

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-04 22:00 - 2012-04-12 15:13 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-04 21:57 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-04 21:57 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-04 21:52 - 2011-02-19 05:24 - 00743788 _____ () C:\Windows\system32\perfh007.dat
2014-11-04 21:52 - 2011-02-19 05:24 - 00164270 _____ () C:\Windows\system32\perfc007.dat
2014-11-04 21:52 - 2009-07-14 06:13 - 01725322 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-04 19:09 - 2013-01-11 17:26 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-11-04 19:08 - 2014-06-24 20:30 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job
2014-11-04 19:08 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-02 19:59 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-02 19:57 - 2012-06-20 21:53 - 00000000 ____D () C:\ProgramData\Intel
2014-11-02 19:56 - 2012-06-22 02:38 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Intel
2014-11-02 19:56 - 2012-06-20 21:56 - 00000000 ____D () C:\Program Files\Intel
2014-11-02 19:56 - 2012-06-20 21:50 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-11-02 19:49 - 2011-10-26 17:01 - 00015854 _____ () C:\Windows\system32\results.xml
2014-11-02 19:48 - 2013-09-04 20:11 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-11-02 19:48 - 2013-09-04 20:11 - 00000000 ____D () C:\Windows\system32\NV
2014-11-02 19:48 - 2011-12-04 02:38 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-11-02 19:16 - 2012-06-20 21:46 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-11-02 18:42 - 2011-12-08 23:01 - 00000000 ____D () C:\Windows\Minidump
2014-11-02 10:37 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2014-11-02 10:02 - 2010-05-25 23:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sonstiges
2014-11-02 10:00 - 2012-04-12 15:13 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-02 10:00 - 2012-04-12 15:13 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-02 10:00 - 2012-02-23 23:27 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-30 13:18 - 2012-07-15 18:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\vlc
2014-10-30 11:24 - 2012-06-22 02:38 - 00000000 ____D () C:\Users\Konstantinos Tzontas
2014-10-30 10:47 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Apps\2.0
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0}
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD}
2014-10-30 10:23 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4}
2014-10-30 10:23 - 2014-02-27 14:36 - 00003100 _____ () C:\Windows\System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003042 _____ () C:\Windows\System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653}
2014-10-30 10:22 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B}
2014-10-30 09:50 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Deployment
2014-10-30 00:04 - 2014-08-01 14:07 - 00000097 _____ () C:\Users\Konstantinos Tzontas\AppData\Roaming\WB.CFG
2014-10-29 16:56 - 2012-06-23 16:56 - 00000000 ____D () C:\Program Files\Unlocker
2014-10-28 14:22 - 2012-06-25 18:17 - 00001957 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-28 12:30 - 2012-07-14 17:25 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-10-28 12:01 - 2012-07-19 18:19 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-10-28 11:38 - 2014-06-24 20:30 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9
2014-10-28 11:27 - 2014-08-14 20:38 - 00000000 ____D () C:\Users\Mcx1-KONSTANTINOSTZO
2014-10-28 06:34 - 2011-12-23 15:50 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-23 18:44 - 2013-11-26 17:39 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\F975D96A-6135-4CEB-8114-9FB82F8FD83E.aplzod
2014-10-19 03:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-10-19 02:23 - 2014-05-08 02:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-19 02:04 - 2013-08-15 21:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-19 02:00 - 2011-12-05 16:46 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-10 20:26 - 2012-06-20 21:55 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-10-08 21:31 - 2014-04-13 18:25 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-10-07 19:57 - 2012-07-21 23:33 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\DVDVideoSoft

Some content of TEMP:
====================
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\Quarantine.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-02 20:55

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Alt 05.11.2014, 16:44   #9
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7: Internet funktionieren nach CCleaner nich mehr - Standard

Windows 7: Internet funktionieren nach CCleaner nich mehr



Fertig

Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.



Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun

Hier noch ein paar Tipps zur Absicherung deines Systems.


Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.


Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.


Zusätzlicher Schutz
  • MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.
  • WinPatrol
    Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.


Sicheres Browsen
  • SpywareBlaster
    Eine kurze Einführung findest du Hier
  • MVPs hosts file
    Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
  • WOT (Web of trust)
    Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.


Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
  • Opera
  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
    • AdblockPlus
      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
      Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )



Don'ts
  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Windows 7: Internet funktionieren nach CCleaner nich mehr
4d36e972-e325-11ce-bfc1-08002be10318, adware, chromium, computer, converter, desktop, device driver, dvdvideosoft ltd., fehler 0x00028002, fehlermeldung, flash player, helper, homepage, iexplore.exe, installation, internet, monitor, registry, required, scan, server, software, ursache: 0x00028002, vergewissern sie sich, windows, wlan



Ähnliche Themen: Windows 7: Internet funktionieren nach CCleaner nich mehr


  1. Einige Treiber funktionieren nicht mehr nach Update von Windows 8.1
    Alles rund um Windows - 27.05.2014 (0)
  2. Windows 7: nation zoom nach cc cleaner Installation von dieser Seite: http://www.ccleaner.de/
    Log-Analyse und Auswertung - 05.01.2014 (14)
  3. Windows 7: Programme funktionieren nicht mehr, Internet unsicher
    Plagegeister aller Art und deren Bekämpfung - 23.11.2013 (3)
  4. Hillfe,nach malwarebytes ausführung startet Windows nich mehr richtig
    Plagegeister aller Art und deren Bekämpfung - 31.08.2013 (3)
  5. nach Malware-Support funktionieren DVD-Laufwerk u.a. nicht mehr
    Alles rund um Windows - 31.03.2013 (10)
  6. nach CCleaner kein Bootvorgang /kein BIOS mehr
    Alles rund um Windows - 19.02.2010 (27)
  7. Nach Hijack This und CCleaner funktionieren nur FF2.0 und IE 6
    Log-Analyse und Auswertung - 06.01.2010 (9)
  8. Antivirus Programme funktionieren nicht mehr und Internet wurde langsam
    Plagegeister aller Art und deren Bekämpfung - 19.12.2008 (3)
  9. USB Devices funktionieren nach Akkuabzug nicht mehr
    Alles rund um Windows - 12.12.2008 (0)
  10. Kein COM Anschluss mehr, CDROM, webcam u. wireless internet funktionieren nicht
    Log-Analyse und Auswertung - 25.09.2008 (1)
  11. Nach Virus auf dem PC wird der wlan-router nich mehr angezeigt
    Plagegeister aller Art und deren Bekämpfung - 12.09.2008 (0)
  12. Internet Explorer und Firefox funktionieren nich!
    Alles rund um Windows - 20.05.2008 (9)
  13. hilfe internet verbindung funktioniert nich mehr...kein server oder DNS gefunden
    Log-Analyse und Auswertung - 31.10.2007 (6)
  14. Nach ca. 5 funktionieren IE und Outlook Express nicht mehr
    Alles rund um Windows - 01.08.2007 (4)
  15. Kein Internet mehr, Anti Virenprogramme funktionieren nicht mehr
    Log-Analyse und Auswertung - 24.06.2007 (5)
  16. internet fällt aus, codecs funktionieren nicht mehr; alles in unregelmäßigen abstände
    Log-Analyse und Auswertung - 14.08.2006 (3)
  17. Internet geht nach entvirifizitung GAR nich mehr...Hilfe
    Log-Analyse und Auswertung - 28.06.2004 (4)

Zum Thema Windows 7: Internet funktionieren nach CCleaner nich mehr - Guten Tag, bei den Versuch meinen Asus Notebook (Windows 7) aufzuräumen, habe ich wahrscheinlich etwas gelöscht bzw. verstellt. Egal ob man mit Chrome, Safari, Firefox oder Iexplorer versucht eine Seite - Windows 7: Internet funktionieren nach CCleaner nich mehr...
Archiv
Du betrachtest: Windows 7: Internet funktionieren nach CCleaner nich mehr auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.