| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows 7: Internet funktionieren nach CCleaner nich mehrWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
30.10.2014, 11:48
| #1 |
 |  Windows 7: Internet funktionieren nach CCleaner nich mehr Guten Tag, bei den Versuch meinen Asus Notebook (Windows 7) aufzuräumen, habe ich wahrscheinlich etwas gelöscht bzw. verstellt. Egal ob man mit Chrome, Safari, Firefox oder Iexplorer versucht eine Seite zu öffnen schlägt es fehl. Bei Chrome steht unten "Host auflösen" und anschließend kommt die Fehlermeldung "Diese Website ist nicht verfügbar". Das Wlan funtioniert teils einwandfrei teils erscheint ein Ausrufezeichen. Das Internet funktioniert ohne Probleme über das Ipad, Iphone und anderen Notebook mit Windows 8. Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-10-2014
Ran by Konstantinos Tzontas at 2014-10-30 11:33:18
Running from C:\Users\Konstantinos Tzontas\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3monkey (HKCU\...\7202e20a3ee22bab) (Version: 1.0.0.4 - 3monkey.me)
64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.6.0.393 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.3 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.9.900.117 - Adobe Systems Incorporated)
Adobe InCopy CC (HKLM-x32\...\{2606D96F-C1A3-1014-9A8F-E3561A1AC78D}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe InDesign CC (HKLM-x32\...\{BC448016-6F11-1014-B0EA-97CEE6E26CB6}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}) (Version: 11.0 - Adobe Systems, Inc.)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
AMPLUS Vokabel-Trainer 1.2 (HKLM-x32\...\AMPLUS Vokabel-Trainer 1.2) (Version: - )
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
B110 (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
calibre (HKLM-x32\...\{A2A971DE-C864-4CF0-8FCA-FF7F569D8476}) (Version: 1.43.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.1.4003 - CDBurnerXP)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.41 - DivX, LLC)
Elevated Installer (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.1.13904 - Landesfinanzdirektion Thüringen)
ESET Smart Security (HKLM\...\{F5A3E880-A737-48F2-A124-6F5D4CEA6AB4}) (Version: 7.0.302.26 - ESET, spol s r. o.)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Football Manager 2014 (HKLM-x32\...\Steam App 231670) (Version: - Sports Interactive)
Free ISO Create Wizard 6.0.7 (HKLM-x32\...\Free ISO Create Wizard_is1) (Version: - FreeAudioVideoSoftTech, Inc.)
Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version: - )
Free YouTube to MP3 Converter version 3.12.46.923 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.46.923 - DVDVideoSoft Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin with myGarmin Agent (HKLM-x32\...\{92A70E71-4F0E-4C05-A777-16424E89F162}) (Version: 2.9.2 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{b43ffffb-1adc-4bcb-b277-7844ebff94da}) (Version: 3.2.17.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel PROSet Wireless (x32 Version: - ) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{3C41721F-AF0F-4086-AA1C-4C7F29076228}) (Version: 14.01.1000 - Intel Corporation)
Intel(R) Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.400.4 - Intel)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM-x32\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Shutdown4U (HKLM-x32\...\Shutdown4U) (Version: - )
SolutionCenter (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.17.0 - Synaptics Incorporated)
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
System Requirements Lab CYRI (64-bit) (HKLM\...\{15AD6738-23E8-4AE6-93E9-434E717EECB2}) (Version: 4.5.1.0 - Husdawg, LLC)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Unlocker 1.9.1-x64 (HKLM\...\Unlocker) (Version: 1.9.1 - Cedrick Collomb)
USB Safely Remove 5.2 (HKLM-x32\...\USB Safely Remove_is1) (Version: - SafelyRemove.com)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtua Tennis 4 (x32 Version: 1.0.0001.130 - Sega) Hidden
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 3.6 - Bazis)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
==================== Restore Points =========================
29-10-2014 23:08:24 Installed Rosetta Stone TOTALe
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-09-06 09:56 - 2014-09-18 18:16 - 00000000 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {00115E0E-E600-458A-BD95-77DF42AFCABC} - System32\Tasks\{13920426-8421-44B0-A012-30BC09F29C47} => C:\Program Files (x86)\Garmin\Express\Express.exe
Task: {04F7608B-393D-4072-AB70-81F7BD2F07E1} - System32\Tasks\{55619592-4FD9-4558-AAE0-58DF071A7F8B} => C:\Users\Konstantinos Tzontas\Downloads\FileFormatConverters (2).exe
Task: {2FC8D407-727C-434D-AA03-30AEAB73C763} - System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {33D04F6C-C7D6-423A-A9F9-1AFFFB6DD9E4} - System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {36418EFA-2350-47B7-B11A-306DE675131B} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-KONSTANTINOSTZO => C:\Windows\ehome\McxTask.exe [2009-07-14] (Microsoft Corporation)
Task: {39B24B34-D5EF-4668-A2F2-C23ED6650C8C} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {3FFB913A-5FC1-4B01-B255-555F7A7F3016} - System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {44E3FD51-3D3C-48F8-8765-91CF8548DF31} - System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {47EB376D-703D-4040-A24D-7168172FA8D1} - System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {4A2C04C4-092F-4FB6-9E1D-63C3F2F25504} - System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {586A8884-CAB5-41CA-A6E2-B92036545416} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS)
Task: {5AF39471-8B18-44ED-A697-9824FF6C2167} - System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {6418B7BD-1E71-4D08-B196-B6F86BE89901} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-30] (Adobe Systems Incorporated)
Task: {6E7D8AE9-C4FC-4979-A75A-18A9CFF903D4} - System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {816DBEAA-A770-41BC-A9E9-9A058C81C0AD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {853C9EE0-7B2E-44F5-BCB1-4F3933E7E2FE} - \Express FilesUpdate No Task File <==== ATTENTION
Task: {8BA604DF-7EA1-45DA-A322-CB66520A93B5} - System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {922C5FD8-CA79-406F-9565-C6DB0FE9F3D6} - System32\Tasks\Rocket Updater => C:\Users\Konstantinos Tzontas\AppData\Roaming\RocketUpdater\UpdateProc\UpdateTask.exe [2013-04-12] ()
Task: {983A1A1E-B681-440E-A4E8-53C65D93468D} - System32\Tasks\GarminUpdaterTask => D:\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-08-07] ()
Task: {9CB1000D-B3A7-45C7-B375-5045EE6DD826} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {9E913592-CF76-47D1-8B8E-BDCF53413BC7} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.)
Task: {A4FD6F60-56A7-4570-A75D-F1F3274A0998} - System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {A804DBE7-30ED-4752-8275-408542907BD0} - System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4} => C:\Users\Konstantinos Tzontas\Desktop\Rosetta.Stone.TOTALe.v4.1.15.1\Rosetta Stone V4.1.10.exe
Task: {AD791F25-ACEA-44B1-AB36-4D199CCF3AC8} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {B42406A0-0510-4619-A737-55587556012B} - System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {B8183F47-2B43-4015-9456-EA267E2E949A} - System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653} => D:\Roseta Stones\Rosetta Stone TOTALe v 4.1.15 Windows\update.exe [2013-02-18] (Rosetta Stone, Ltd.)
Task: {BF4344DE-FE65-4BC8-994A-05087127ECE6} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {C73BCC69-90CB-4993-8480-EA429F741280} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {C9F173F3-9640-43DB-90F5-3795F8576D27} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-28] (Google Inc.)
Task: {E986BE8F-0B3C-4D8A-9F0E-4220FC8899BF} - System32\Tasks\AdobeAAMUpdater-1.0-KonstantinosTzo-Konstantinos Tzontas => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {F43261AA-FAE7-4FF4-B3D2-9EDA81433EC1} - System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {F592EE46-D815-46C9-91D2-56A1B63D4A76} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)
Task: {FCA08906-2160-4164-A4EC-4EF46645C134} - \dsmonitor No Task File <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002Core.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002UA.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Rocket Updater.job => C:\Users\KONSTA~1\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2014-05-23 01:10 - 2014-05-23 01:10 - 00671904 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2010-07-15 05:44 - 2010-07-15 05:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2010-07-15 00:11 - 2010-07-15 00:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll
2010-04-03 03:21 - 2008-10-01 07:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2011-07-07 07:10 - 2013-04-14 15:22 - 00057640 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
2011-07-07 07:12 - 2011-01-27 01:11 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-08-21 18:49 - 2014-08-21 18:49 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2014-10-30 10:14 - 2014-09-25 17:07 - 00020288 _____ () C:\Program Files\CCleaner\branding.dll
2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-14 00:51 - 2013-09-14 00:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 00:50 - 2013-09-14 00:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2014-10-29 11:14 - 2014-10-29 11:14 - 00380416 _____ () C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (DOS).EML:OECustomProperty
AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (Windows).EML:OECustomProperty
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk => C:\Windows\pss\FancyStart daemon.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Versandhelfer.lnk => C:\Windows\pss\Versandhelfer.lnk.Startup
MSCONFIG\startupreg: 118CF3A891E607F144F4054B8F0D96A24F7C1710._service_run => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: ASUSPRP => "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: BingDesktop => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
MSCONFIG\startupreg: ccleaner => "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
MSCONFIG\startupreg: chromium => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: com.apple.dav.bookmarks.daemon => C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
MSCONFIG\startupreg: DATAMNGR => C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: egui => "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
MSCONFIG\startupreg: Garmin Lifetime Updater => C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82 => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: ISUSPM => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: MyGarminAgent => C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe
MSCONFIG\startupreg: Nuance PDF Reader-reminder => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RapidDrive => C:\Program Files (x86)\RAPIDSHARE AG\RapidDrive\VirtualDrive.exe -autostart
MSCONFIG\startupreg: Setwallpaper => c:\programdata\SetWallpaper.cmd
MSCONFIG\startupreg: SonicMasterTray => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: Trend Micro Titanium => C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none"
MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
MSCONFIG\startupreg: VideoDownloadConverter Home Page Guard 64 bit => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\AppIntegrator64.exe"
MSCONFIG\startupreg: VideoDownloadConverter Search Scope Monitor => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
MSCONFIG\startupreg: VizorHtmlDialog.exe => "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF"
MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
========================= Accounts: ==========================
Administrator (S-1-5-21-2101622981-3415369606-3063477934-500 - Administrator - Disabled)
Gast (S-1-5-21-2101622981-3415369606-3063477934-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2101622981-3415369606-3063477934-1005 - Limited - Enabled)
Konstantinos Tzontas (S-1-5-21-2101622981-3415369606-3063477934-1002 - Administrator - Enabled) => C:\Users\Konstantinos Tzontas
Mcx1-KONSTANTINOSTZO (S-1-5-21-2101622981-3415369606-3063477934-1010 - Limited - Enabled) => C:\Users\Mcx1-KONSTANTINOSTZO
UpdatusUser (S-1-5-21-2101622981-3415369606-3063477934-1000 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
Name: Microsoft-Adapter für Miniports virtueller WiFis
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
System errors:
=============
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2014-07-18 22:04:25.422
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.391
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.251
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.204
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.998
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.977
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.895
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.849
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-06-23 16:26:49.699
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-06-23 16:26:49.529
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Percentage of memory in use: 24%
Total physical RAM: 8102.7 MB
Available physical RAM: 6146.3 MB
Total Pagefile: 16203.57 MB
Available Pagefile: 14191.73 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:195.35 GB) (Free:60.8 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:245.41 GB) (Free:99.29 GB) NTFS
Drive f: () (Removable) (Total:7.45 GB) (Free:7.45 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 496B9619)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=195.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=245.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 7.5 GB) (Disk ID: 41A39127)
Partition 1: (Not Active) - (Size=7.5 GB) - (Type=0B)
==================== End Of Log ============================
FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-10-2014
Ran by Konstantinos Tzontas (administrator) on KONSTANTINOSTZO on 30-10-2014 11:29:30
Running from C:\Users\Konstantinos Tzontas\Downloads
Loaded Profile: Konstantinos Tzontas (Available profiles: UpdatusUser & Konstantinos Tzontas & Mcx1-KONSTANTINOSTZO)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSRService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Garmin Ltd or its subsidiaries) D:\Garmin\Express Tray\ExpressTray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
(Farbar) C:\Users\Konstantinos Tzontas\Downloads\FRST64 (1).exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2816808 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-02] (Intel(R) Corporation)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [98088 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191312 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [GarminExpressTrayApp] => D:\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6462744 2014-08-21] (Piriform Ltd)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82] => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\MountPoints2: {d842016a-97d6-11e2-9017-50465de1d8c8} - F:\AutoRun.exe
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: ,C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
SSODL: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.babylon.com/?babsrc=HP_ss&mntrId=2089dd9000000000000000ffb1fa234f&tlver=1.4.19.19&affID=16553
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=4805876640124690&q={searchTerms}
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKLM-x32 - {686AA630-8AA4-DFDA-9B6F-4E87A3269C04} URL = hxxp://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10053&barid={2F80D314-011A-11E3-9D76-50465DE1D8C8}
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=58&CUI=&UM=6&UP=SP6003E2BB-4B7E-4949-AB8B-41840FC79D75&q={searchTerms}&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=58&CUI=&UM=6&UP=SP6003E2BB-4B7E-4949-AB8B-41840FC79D75&q={searchTerms}&SSPV=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL =
SearchScopes: HKCU - {1F096B29-E9DA-4D64-8D63-936BE7762CC5} URL = hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=2089dd9000000000000000ffb1fa234f&tlver=1.4.19.19&affID=16553
SearchScopes: HKCU - {900C6BAE-AEC8-40E9-BA9F-6F9D5981B598} URL = hxxp://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_ir_14_27_ch&cd=2XzuyEtN2Y1L1QzuyBzzzytBzy0CyEyDtBtA0Azy0D0DzytDtN0D0Tzu0SzytCzztN1L2XzutBtFtBtCtFtCyEtFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyD0FyCyCyDyEyEtBtG0ByDtCtAtGtCzytAyBtGyB0BtBzytGtAtCyB0ByDtA0EtDyC0ByCtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzy0E0Fzy0A0F0BtG0E0A0E0FtGzzyEtC0BtGtDtCtA0DtGyD0C0DtDyE0Dzzzy0Ezz0Bzz2Q&cr=264594833&ir=
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=o0&geo=DE&ver=21&locale=de_DE&gct=kwd&qsrc=2869
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: NetCrawl -> {0916584a-ee96-4386-bdbf-b66197b080e4} -> No File
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{3397BB0D-EE26-42CB-9BEB-420E9F33ECF6}: [NameServer] 198.18.0.1,198.18.0.2
FireFox:
========
FF ProfilePath: C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default
FF DefaultSearchUrl:
FF Homepage: hxxp://wmportal.wmkat.de/
FF NetworkProxy: "gopher", ""
FF NetworkProxy: "gopher_port", 0
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "type", 0
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll No File
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF user.js: detected! => C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Download videos and MP3s from YouTube - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} [2014-10-07]
FF Extension: Rocket New Tab - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\{ecaa9181-d92a-47b9-8e14-bef9680f204b} [2014-07-17]
FF Extension: NetCrawl - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\firefox@netcrawl.info.xpi [2014-07-03]
FF Extension: Real Hide IP - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\support@real-hide-ip.com.xpi [2014-07-17]
FF Extension: Babylon - C:\Program Files (x86)\Mozilla Firefox\extensions\ffxtlbr@babylon.com [2014-10-29]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-02-27]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-05-26]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-10-07]
FF Extension: No Name - C:\Program Files (x86)\IObit Apps Toolbar\FF [Not Found]
FF Extension: No Name - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\extensions\iobitascsurfingprotection@iobit.com [Not Found]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV="
CHR Profile: C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-12]
CHR Extension: (MindMeister) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2013-11-29]
CHR Extension: (iCloud) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdilfkhpgihcibbahmoggdaeciachopd [2014-02-26]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-06]
CHR Extension: (YouTube) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-12]
CHR Extension: (Adblock Plus) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-28]
CHR Extension: (Google-Suche) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-12]
CHR Extension: (Search by Image (by Google)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-11-29]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2013-04-12]
CHR Extension: (Google Play Music) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2014-06-13]
CHR Extension: (iCloud-Lesezeichen) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2014-07-09]
CHR Extension: (Rechtschreibprüfung) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gehceilhofkogkifpjmgdhciddpbcboo [2013-04-12]
CHR Extension: (Vimeo Couch Mode) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjkdhkejcnlmkfdodbkdkelefnkobfif [2013-04-12]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-04-17]
CHR Extension: (Rocket New Tab) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibnjmihbbanannlbobkbmnmckjnmdnom [2014-07-06]
CHR Extension: (Finanzen100) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpobenbpfkbhiccbdifogbiachenpie [2013-04-12]
CHR Extension: (WEB.DE MailCheck) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaogepninmlbinccpbiakcgiolijlllo [2014-09-14]
CHR Extension: (Autodesk Homestyler) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2013-11-29]
CHR Extension: (Google Maps) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2013-04-12]
CHR Extension: (Der Planer der Räume) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2013-11-29]
CHR Extension: (Google Wallet) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-06]
CHR Extension: (Click&Clean App) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2013-11-29]
CHR Extension: (Google Mail) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-12]
CHR HKLM-x32\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbar.crx []
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
CHR StartMenuInternet: Google Chrome - chrome.exe
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 Garmin Core Update Service; D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [253568 2009-11-18] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [137344 2009-11-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2282272 2014-08-19] (IObit)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-02] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [569024 2014-02-08] (Valve Corporation) [File not signed]
R2 USBSafelyRemoveService; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [1522488 2014-03-25] (Crystal Rich Ltd)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
R1 cbfs4-0; C:\Program Files (x86)\Common Files\CBFS\cbfs4.sys [385728 2013-03-01] (EldoS Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2011-10-24] (TCT International Mobile Ltd) [File not signed]
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2014-10-10] (Intel Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-09-04] (Synaptics Incorporated)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [868848 2014-07-09] (Duplex Secure Ltd.)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
U3 axqoqpob; \??\C:\Users\KONSTA~1\AppData\Local\Temp\axqoqpob.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-30 11:29 - 2014-10-30 11:32 - 00030776 _____ () C:\Users\Konstantinos Tzontas\Downloads\FRST.txt
2014-10-30 11:29 - 2014-10-30 11:30 - 00000000 ____D () C:\FRST
2014-10-30 11:24 - 2014-10-30 11:24 - 00000020 _____ () C:\Users\Konstantinos Tzontas\defogger_reenable
2014-10-30 11:19 - 2014-10-30 11:19 - 00265863 _____ () C:\Users\Konstantinos Tzontas\Desktop\Windows Netzwerkdiagnose.xps
2014-10-30 11:19 - 2014-10-30 11:19 - 00010568 _____ () C:\Users\Konstantinos Tzontas\Desktop\Windows Netzwerkdiagnose.txt
2014-10-30 10:26 - 2014-10-30 10:26 - 00002358 _____ () C:\Windows\System32\Tasks\CCleanerClean
2014-10-30 10:26 - 2014-10-30 10:26 - 00000258 _____ () C:\Windows\Tasks\CCleanerClean.job
2014-10-30 10:10 - 2014-10-30 10:16 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-30 10:10 - 2014-10-30 10:12 - 00000784 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-10-30 10:10 - 2014-10-30 10:10 - 00002802 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-30 10:10 - 2014-10-30 10:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-30 10:10 - 2014-09-25 17:08 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Desktop\CCleaner Pro & Business v4.17.4808
2014-10-30 10:09 - 2014-10-30 10:09 - 10956458 _____ () C:\Users\Konstantinos Tzontas\Downloads\CCleaner Pro & Business v4.17.4808.rar
2014-10-30 09:58 - 2014-10-30 09:58 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\CrashDumps
2014-10-30 09:38 - 2014-10-30 09:38 - 02113536 _____ (Farbar) C:\Users\Konstantinos Tzontas\Downloads\FRST64 (1).exe
2014-10-30 09:38 - 2014-10-30 09:38 - 01998336 _____ () C:\Users\Konstantinos Tzontas\Downloads\AdwCleaner_4.002.exe
2014-10-30 09:38 - 2014-10-30 09:38 - 01706144 _____ (Thisisu) C:\Users\Konstantinos Tzontas\Downloads\JRT.exe
2014-10-30 09:32 - 2014-10-30 09:32 - 00090239 _____ () C:\Users\Konstantinos Tzontas\Downloads\Eset.zip
2014-10-30 09:32 - 2014-10-30 09:32 - 00090239 _____ () C:\Users\Konstantinos Tzontas\Downloads\Eset (1).zip
2014-10-30 09:27 - 2014-10-30 09:27 - 00048403 _____ () C:\Users\Konstantinos Tzontas\Downloads\ Malwarebytes Anti-Malware .txt
2014-10-30 09:26 - 2014-10-30 09:26 - 00012756 _____ () C:\Users\Konstantinos Tzontas\Downloads\JRT.txt
2014-10-30 09:25 - 2014-10-30 09:25 - 00033939 _____ () C:\Users\Konstantinos Tzontas\Downloads\Combofix.txt
2014-10-30 00:08 - 2014-10-30 00:08 - 00001121 _____ () C:\Users\Public\Desktop\Rosetta Stone TOTALe.lnk
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone Backups
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\Rosetta Stone
2014-10-29 20:34 - 2014-10-29 20:39 - 00000000 ____D () C:\Program Files (x86)\CAO-Faktura
2014-10-29 20:32 - 2014-10-29 20:33 - 22974052 _____ () C:\Users\Konstantinos Tzontas\Downloads\cao_faktura_f_setup_1_4.zip
2014-10-29 20:24 - 2014-10-29 20:25 - 05745152 _____ () C:\Users\Konstantinos Tzontas\Downloads\archpr_5455setup_en.msi
2014-10-29 20:22 - 2014-10-29 20:22 - 05208701 _____ () C:\Users\Konstantinos Tzontas\Downloads\Dometrix KFZ Werkstatt v3.5.1.0.zip
2014-10-29 20:20 - 2014-10-29 20:20 - 00393072 _____ (Softonic ) C:\Users\Konstantinos Tzontas\Downloads\SoftonicDownloader_fuer_dometrix-kfz-werkstatt.exe
2014-10-29 16:57 - 2014-10-29 16:57 - 00001111 _____ () C:\Users\Public\Desktop\USB Safely Remove.lnk
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\USBSRService
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Safely Remove
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\Program Files (x86)\USB Safely Remove
2014-10-29 16:56 - 2014-10-29 16:56 - 06002584 _____ (SafelyRemove.com ) C:\Users\Konstantinos Tzontas\Downloads\usbsafelyremovesetup_5-2-3.exe
2014-10-29 16:56 - 2014-10-29 16:56 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-10-29 16:55 - 2014-10-29 16:55 - 01681749 _____ () C:\Users\Konstantinos Tzontas\Downloads\unlocker_25947.exe
2014-10-29 16:43 - 2014-10-29 16:43 - 00059865 _____ () C:\Users\Konstantinos Tzontas\Downloads\29775_kme20beta2.zip
2014-10-29 14:58 - 2014-10-30 11:24 - 00000612 _____ () C:\Users\Konstantinos Tzontas\Desktop\defogger_disable.log
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\Program Files\7-Zip
2014-10-29 14:54 - 2014-10-29 14:54 - 01376768 _____ () C:\Users\Konstantinos Tzontas\Downloads\7z920-x64.msi
2014-10-29 13:12 - 2014-10-29 13:12 - 00002260 _____ () C:\Users\Konstantinos Tzontas\Desktop\JDownloader 2.lnk
2014-10-29 13:12 - 2014-10-29 13:12 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-10-29 13:07 - 2014-10-29 19:14 - 00000000 ____D () C:\ProgramData\Norton
2014-10-29 13:04 - 2014-10-29 14:44 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\JDownloader v2.0
2014-10-29 12:18 - 2014-10-29 12:18 - 00452384 _____ () C:\Users\Konstantinos Tzontas\Downloads\DLG_free_driver_scout_chip_default.exe
2014-10-29 11:18 - 2014-10-29 11:18 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Konstantinos Tzontas\Downloads\mbam-setup-2.0.3.1025.exe
2014-10-29 11:14 - 2014-10-29 11:14 - 02113536 _____ (Farbar) C:\Users\Konstantinos Tzontas\Downloads\FRST64.exe
2014-10-29 11:14 - 2014-10-29 11:14 - 00380416 _____ () C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe
2014-10-29 11:13 - 2014-10-29 11:13 - 00050477 _____ () C:\Users\Konstantinos Tzontas\Downloads\Defogger.exe
2014-10-28 20:38 - 2014-10-28 21:04 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\dvdcss
2014-10-28 20:19 - 2014-10-28 20:19 - 00000000 ____D () C:\ProgramData\IObit
2014-10-28 13:20 - 2014-10-28 13:22 - 17398460 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part2.rar
2014-10-28 12:35 - 2014-10-28 13:10 - 110000000 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part1.rar
2014-10-28 12:31 - 2014-10-28 12:44 - 256441633 _____ () C:\Users\Konstantinos Tzontas\Downloads\toRo.setup.win.rar
2014-10-28 12:30 - 2014-10-30 00:12 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-10-28 12:02 - 2014-10-28 12:02 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\NoVirusThanks
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files\iTunes
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-10-28 12:01 - 2014-10-28 12:01 - 00000000 ____D () C:\Program Files\iPod
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files\Bonjour
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-10-28 11:38 - 2014-10-28 11:39 - 122418480 _____ (Apple Inc.) C:\Users\Konstantinos Tzontas\Downloads\iTunes64Setup.exe
2014-10-28 11:28 - 2014-10-28 11:28 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\ProductData
2014-10-28 11:26 - 2014-10-28 11:30 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-28 11:26 - 2014-10-28 11:26 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-10-27 19:51 - 2014-10-27 19:51 - 00369152 _____ () C:\Users\Konstantinos Tzontas\Downloads\Präsentation2.ppt
2014-10-18 23:33 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-18 23:33 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-18 23:33 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-18 23:33 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-18 23:33 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-18 23:33 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-18 23:33 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-18 23:33 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-18 23:33 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-18 23:33 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-18 23:33 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-18 23:33 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-18 23:33 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-18 23:33 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-18 23:33 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-18 23:33 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-18 23:33 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-18 23:33 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-18 23:33 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-18 23:33 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-18 23:33 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-18 23:33 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-18 23:33 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-18 23:33 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-18 23:33 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-18 23:33 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-18 23:32 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-18 23:32 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-18 23:32 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-18 23:32 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-18 23:32 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-18 23:32 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-18 23:32 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-18 23:32 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-18 23:32 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-18 23:32 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00941272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-10 20:24 - 2014-10-10 20:24 - 11527888 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwsw00.sys
2014-10-10 20:22 - 2014-10-28 11:27 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\IObit
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sports Interactive
2014-10-10 19:37 - 2014-10-10 19:37 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-10 19:12 - 2014-10-30 09:52 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-10 19:12 - 2014-10-10 19:12 - 00000969 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-10-10 19:12 - 2014-10-10 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-07 23:11 - 2014-10-29 16:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-07 19:55 - 2014-10-07 19:55 - 00001538 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-10-07 19:55 - 2014-10-07 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-10-07 19:54 - 2014-10-07 19:55 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour-Druckdienste
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\Program Files\Bonjour Print Services
2014-10-03 13:29 - 2014-10-03 13:29 - 00002503 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
2014-10-03 13:29 - 2014-10-03 13:29 - 00002491 _____ () C:\Users\Public\Desktop\Safari.lnk
2014-10-03 13:29 - 2014-10-03 13:29 - 00000000 ____D () C:\Program Files (x86)\Safari
2014-10-01 20:04 - 2014-10-01 20:04 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\PDF24
2014-10-01 19:32 - 2014-10-01 19:33 - 16319576 _____ (Geek Software GmbH ) C:\Users\Konstantinos Tzontas\Downloads\pdf24-creator-6.7.0.exe
2014-10-01 18:30 - 2014-09-25 03:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-01 18:30 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-30 11:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2014-10-30 11:27 - 2013-01-11 17:26 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-10-30 11:26 - 2014-06-24 20:30 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job
2014-10-30 11:25 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-30 11:24 - 2012-06-22 02:38 - 00000000 ____D () C:\Users\Konstantinos Tzontas
2014-10-30 11:00 - 2012-04-12 15:13 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-30 10:56 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-30 10:56 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-30 10:52 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-30 10:47 - 2014-07-06 17:07 - 00000328 _____ () C:\Windows\Tasks\Rocket Updater.job
2014-10-30 10:47 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Apps\2.0
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0}
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD}
2014-10-30 10:23 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4}
2014-10-30 10:23 - 2014-02-27 14:36 - 00003100 _____ () C:\Windows\System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003042 _____ () C:\Windows\System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653}
2014-10-30 10:22 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B}
2014-10-30 10:21 - 2014-07-06 17:07 - 00003314 _____ () C:\Windows\System32\Tasks\Rocket Updater
2014-10-30 10:21 - 2012-04-12 15:13 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-10-30 09:50 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Deployment
2014-10-30 00:21 - 2011-02-19 05:24 - 00743788 _____ () C:\Windows\system32\perfh007.dat
2014-10-30 00:21 - 2011-02-19 05:24 - 00164270 _____ () C:\Windows\system32\perfc007.dat
2014-10-30 00:21 - 2009-07-14 06:13 - 01725322 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-30 00:04 - 2014-08-01 14:07 - 00000097 _____ () C:\Users\Konstantinos Tzontas\AppData\Roaming\WB.CFG
2014-10-29 16:56 - 2012-06-23 16:56 - 00000000 ____D () C:\Program Files\Unlocker
2014-10-29 12:16 - 2012-07-15 18:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\vlc
2014-10-28 14:22 - 2012-06-25 18:17 - 00001957 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-28 12:30 - 2012-07-14 17:25 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-10-28 12:01 - 2012-07-19 18:19 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-10-28 11:38 - 2014-06-24 20:30 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9
2014-10-28 11:27 - 2014-08-14 20:38 - 00000000 ____D () C:\Users\Mcx1-KONSTANTINOSTZO
2014-10-23 18:44 - 2013-11-26 17:39 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\F975D96A-6135-4CEB-8114-9FB82F8FD83E.aplzod
2014-10-19 03:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-10-19 02:23 - 2014-05-08 02:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-19 02:04 - 2013-08-15 21:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-19 02:00 - 2011-12-05 16:46 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-10 20:26 - 2012-06-20 21:55 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-10-08 21:31 - 2014-04-13 18:25 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-10-08 20:53 - 2011-12-04 02:38 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-10-07 19:57 - 2012-07-21 23:33 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\DVDVideoSoft
2014-10-05 18:36 - 2010-05-25 23:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sonstiges
2014-10-03 13:35 - 2012-10-03 18:46 - 00140380 ____H () C:\Windows\SysWOW64\mlfcache.dat
2014-10-02 22:15 - 2012-06-23 16:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-10-02 22:15 - 2012-06-22 22:11 - 00000000 ____D () C:\Program Files (x86)\HP
2014-10-02 22:10 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-02 22:04 - 2014-08-10 21:17 - 00000590 _____ () C:\Windows\wiso.ini
2014-10-02 22:04 - 2014-08-10 21:15 - 00000000 ____D () C:\Program Files (x86)\WISO
2014-10-02 22:04 - 2014-07-18 21:16 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-02 22:03 - 2014-06-30 20:50 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Dropbox
2014-10-02 20:27 - 2014-06-30 20:52 - 00000000 ___RD () C:\Users\Konstantinos Tzontas\Dropbox
2014-10-02 14:53 - 2011-12-23 15:50 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
Some content of TEMP:
====================
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\130590578440535138.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\13059057846203636831.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\130590581423595760.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\13059058144102675774.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\MyBabylonTB.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\proxy_vole2104173749344083710.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-10-16 20:14
==================== End Of Log ============================
Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 11:24 on 30/10/2014 (Konstantinos Tzontas)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
SPTD -> Disabled (Service running -> reboot required)
-=E.O.F=-
Geändert von Iraklis (30.10.2014 um 11:49 Uhr) Grund: verschrieben |
|
30.10.2014, 12:35
| #2 |
| | Windows 7: Internet funktionieren nach CCleaner nich mehrCode:
ATTFilter Start ups
Ja HKLM:Run SynTPEnh Synaptics Incorporated Alle Benutzer %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
Ja HKLM:Run SynAsusAcpi Synaptics Incorporated Alle Benutzer %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
Ja HKLM:Run RtHDVCpl Realtek Semiconductor Alle Benutzer C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
Ja HKLM:Run RtHDVBg Realtek Semiconductor Alle Benutzer C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SF3
Ja HKLM:Run Persistence Intel Corporation Alle Benutzer "C:\Windows\system32\igfxpers.exe"
Ja HKLM:Run iTunesHelper Apple Inc. Alle Benutzer "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
Ja HKLM:Run IntelTBRunOnce Microsoft Corporation Alle Benutzer wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
Ja HKLM:Run IntelPAN Intel(R) Corporation Alle Benutzer "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
Ja HKLM:Run IgfxTray Intel Corporation Alle Benutzer "C:\Windows\system32\igfxtray.exe"
Ja HKLM:Run HotKeysCmds Intel Corporation Alle Benutzer "C:\Windows\system32\hkcmd.exe"
Ja HKLM:Run HControlUser ASUS Alle Benutzer C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
Ja HKLM:Run egui ESET Alle Benutzer "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
Ja HKLM:Run ATKOSD2 ASUSTek Computer Inc. Alle Benutzer C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
Ja HKLM:Run ATKMEDIA ASUSTek Computer Inc. Alle Benutzer C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
Ja HKCU:Run iCloudServices Apple Inc. Konstantinos Tzontas C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
Ja HKCU:Run GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82 Google Inc. Konstantinos Tzontas "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
Ja HKCU:Run GarminExpressTrayApp Garmin Ltd or its subsidiaries Konstantinos Tzontas "D:\Garmin\Express Tray\ExpressTray.exe"
Ja HKCU:Run CCleaner Monitoring Piriform Ltd Konstantinos Tzontas "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Ja HKCU:Run ApplePhotoStreams Apple Inc. Konstantinos Tzontas C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
Nein Startup User Versandhelfer.lnk Konstantinos Tzontas C:\PROGRA~2\VERSAN~1\VERSAN~1.EXE
Nein Startup User Dropbox.lnk Konstantinos Tzontas C:\Users\KONSTA~1\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup
Nein Startup Common HP Digital Imaging Monitor.lnk Hewlett-Packard Co. Alle Benutzer C:\PROGRA~2\HP\DIGITA~1\bin\hpqtra08.exe
Nein Startup Common FancyStart daemon.lnk Alle Benutzer C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe -d
Nein Startup Common AsusVibeLauncher.lnk ASUSTeK Computer Inc. Alle Benutzer C:\PROGRA~2\ASUS\AsusVibe\ASUSVI~2.EXE /start
Nein HKLM:Run XboxStat Microsoft Corporation Alle Benutzer "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
Nein HKLM:Run VizorHtmlDialog.exe Alle Benutzer "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF"
Nein HKLM:Run VideoDownloadConverter Search Scope Monitor Alle Benutzer "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
Nein HKLM:Run VideoDownloadConverter Home Page Guard 64 bit Alle Benutzer "C:\PROGRA~2\VIDEOD~2\bar\1.bin\AppIntegrator64.exe"
Nein HKLM:Run UpdateP2GoShortCut Alle Benutzer "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
Nein HKLM:Run UpdateLBPShortCut Alle Benutzer "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
Nein HKLM:Run Trend Micro Titanium Alle Benutzer C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none"
Nein HKLM:Run SwitchBoard Alle Benutzer C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
Nein HKLM:Run SunJavaUpdateSched Oracle Corporation Alle Benutzer "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Nein HKLM:Run SonicMasterTray Virage Logic Corporation / Sonic Focus Alle Benutzer C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
Nein HKLM:Run Setwallpaper Alle Benutzer c:\programdata\SetWallpaper.cmd
Nein HKLM:Run QuickTime Task Apple Inc. Alle Benutzer "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
Nein HKLM:Run Nuance PDF Reader-reminder Nuance Communications, Inc. Alle Benutzer "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
Nein HKLM:Run MyGarminAgent Garmin International Alle Benutzer C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe
Nein HKLM:Run HP Software Update Alle Benutzer C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
Nein HKLM:Run Garmin Lifetime Updater Alle Benutzer C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized
Nein HKLM:Run DivXUpdate DivX, LLC Alle Benutzer "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
Nein HKLM:Run DivXMediaServer DivX, LLC Alle Benutzer C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
Nein HKLM:Run DATAMNGR Alle Benutzer C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE
Nein HKLM:Run CLMLServer Alle Benutzer "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
Nein HKLM:Run BingDesktop Alle Benutzer C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
Nein HKLM:Run BCSSync Alle Benutzer "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
Nein HKLM:Run ASUSWebStorage Alle Benutzer C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
Nein HKLM:Run ASUSPRP ASUSTek Computer Inc. Alle Benutzer "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
Nein HKLM:Run APSDaemon Apple Inc. Alle Benutzer "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Nein HKLM:Run AdobeCS6ServiceManager Alle Benutzer "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
Nein HKLM:Run AdobeAAMUpdater-1.0 Adobe Systems Incorporated Alle Benutzer "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
Nein HKLM:Run Adobe Creative Cloud Adobe Systems Incorporated Alle Benutzer "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
Nein HKLM:Run Adobe ARM Adobe Systems Incorporated Alle Benutzer "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Nein HKCU:Run Steam Valve Corporation Alle Benutzer "C:\Program Files (x86)\Steam\steam.exe" -silent
Nein HKCU:Run RapidDrive Alle Benutzer C:\Program Files (x86)\RAPIDSHARE AG\RapidDrive\VirtualDrive.exe -autostart
Nein HKCU:Run ISUSPM Alle Benutzer C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
Nein HKCU:Run iCloudServices Apple Inc. Alle Benutzer C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
Nein HKCU:Run Google Update Google Inc. Konstantinos Tzontas "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
Nein HKCU:Run GarminExpressTrayApp Alle Benutzer "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
Nein HKCU:Run com.apple.dav.bookmarks.daemon Alle Benutzer C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
Nein HKCU:Run chromium Google Inc. Konstantinos Tzontas C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window
Nein HKCU:Run ccleaner Piriform Ltd Alle Benutzer "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
Nein HKCU:Run ApplePhotoStreams Apple Inc. Alle Benutzer C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
Nein HKCU:Run 118CF3A891E607F144F4054B8F0D96A24F7C1710._service_run Google Inc. Konstantinos Tzontas "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
Code:
ATTFilter Geplante Aufträge
Ja Task Adobe Flash Player Updater Adobe Systems Incorporated Alle Benutzer C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Nein Task AdobeAAMUpdater-1.0-KonstantinosTzo-Konstantinos Tzontas Adobe Systems Incorporated Konstantinos Tzontas C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
Ja Task Apple Diagnostics Apple Inc. Konstantinos Tzontas C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Ja Task ASUS Live Update ASUSTeK Computer Inc. Administratoren C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
Ja Task CCleanerClean Piriform Ltd Konstantinos Tzontas C:\Program Files\CCleaner\CCleaner.exe /AUTO
Ja Task CCleanerSkipUAC Piriform Ltd Konstantinos Tzontas "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Ja Task GarminUpdaterTask Garmin International, Inc. Alle Benutzer D:\Garmin\Express Self Updater\ExpressSelfUpdater.exe
Ja Task GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9 Google Inc. Alle Benutzer C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Nein Task Rocket Updater Konstantinos Tzontas C:\Users\KONSTA~1\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE /Check
Ja Task {13920426-8421-44B0-A012-30BC09F29C47} Konstantinos Tzontas C:\Program Files (x86)\Garmin\Express\Express.exe
Nein Task {30BCE388-8E53-4FCC-AF97-BDE23401A653} Rosetta Stone, Ltd. Konstantinos Tzontas D:\Roseta Stones\Rosetta Stone TOTALe v 4.1.15 Windows\update.exe
Ja Task {55619592-4FD9-4558-AAE0-58DF071A7F8B} Konstantinos Tzontas C:\Users\Konstantinos Tzontas\Downloads\FileFormatConverters (2).exe
Nein Task {5D5B944F-8084-42CF-B890-B81904544AB4} Konstantinos Tzontas C:\Users\Konstantinos Tzontas\Desktop\Rosetta.Stone.TOTALe.v4.1.15.1\Rosetta Stone V4.1.10.exe
Nein Task {694E8CCD-50F9-4834-8E96-EE78E59B82E2} Rosetta Stone Ltd. Konstantinos Tzontas C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein Task {6ADAF23E-B677-49F3-9B04-2FCA1181B30D} Rosetta Stone Ltd. Konstantinos Tzontas C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein Task {6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B} Rosetta Stone Ltd. Konstantinos Tzontas C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein Task {73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC} Rosetta Stone Ltd. Konstantinos Tzontas C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein Task {7EC83B54-EA03-4126-9481-B7EB33069936} Rosetta Stone Ltd. Konstantinos Tzontas C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein Task {93EFF320-D6AC-42AB-882B-0550380DFDA5} Konstantinos Tzontas D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Nein Task {A126F916-BC71-4EF7-8EB5-28D246A7061A} Rosetta Stone Ltd. Konstantinos Tzontas C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein Task {A1ACADF2-8BB4-426A-83A2-99905DE229A7} Rosetta Stone Ltd. Konstantinos Tzontas C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Nein Task {B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0} Konstantinos Tzontas D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Nein Task {CD92F89F-6D26-42B4-904A-94FC273D87CD} Rosetta Stone Ltd. Konstantinos Tzontas C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Ja Task {D294A0E7-752B-4174-981D-62E011EE89B8} Microsoft Corporation Konstantinos Tzontas C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Downloader\Downloader.exe" -d "C:\Program Files (x86)\Downloader\lang"
Nein Task {E966EC84-A555-40E9-8760-C1CE4AE6E3F4} Rosetta Stone Ltd. Konstantinos Tzontas C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Ja Task {F0D118FC-544D-4E5E-95C5-8B6B75862A81} Microsoft Corporation Konstantinos Tzontas C:\Windows\system32\pcalua.exe -a "C:\Users\Konstantinos Tzontas\Downloads\fsh106-pshare.exe" -d "C:\Users\Konstantinos Tzontas\Downloads"
Nein Task {FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E} Rosetta Stone Ltd. Konstantinos Tzontas C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe
Code:
ATTFilter Windows Netzwerkdiagnose
DruckenWindows-Netzwerkdiagnose Herausgeberdetails
Gefundene Probleme
Es ist keine Kommunikation mit dem Gerät bzw. der Ressource (primärer DNS-Server) möglich.Es ist keine Kommunikation mit dem Gerät bzw. der Ressource (primärer DNS-Server) möglich.
Das Gerät bzw. die Ressource antwortet nicht auf Anforderungen. Ermittelt Ermittelt
Wenden Sie sich an den Netzwerkadministrator oder Internetdienstanbieter (Internet Service Provider, ISP). Abgeschlossen
Gefundene Probleme Erkennungsdetails
6 Es ist keine Kommunikation mit dem Gerät bzw. der Ressource (primärer DNS-Server) möglich. Ermittelt Ermittelt
Das Gerät bzw. die Ressource antwortet nicht auf Anforderungen.
Wenden Sie sich an den Netzwerkadministrator oder Internetdienstanbieter (Internet Service Provider, ISP). Abgeschlossen
Es ist keine Kommunikation mit dem Gerät bzw. der Ressource (primärer DNS-Server) möglich. Wenn Sie zuhause sind, wenden Sie sich an den Internetdienstanbieter. Wenden Sie sich andernfalls an den Netzwerkadministrator, um Hilfe zu erhalten.
Erkennungsdetails Erweitern
InformationenDiagnoseinformationen (Netzwerkadapter)
Details zu Netzwerkadapter Diagnose:
Treiberinformationen für Netzwerkadapter Drahtlosnetzwerkverbindung:
Beschreibung . . . . . . . . . . : Intel(R) Centrino(R) Wireless-N 100
Hersteller . . . . . . . . . : Intel Corporation
Anbieter . . . . . . . . . . . : Intel
Version . . . . . . . . . . . : 14.1.1.3
INF-Dateiname . . . . . . . . . : C:\Windows\INF\oem22.inf
INF-Dateidatum . . . . . . . . . : Sonntag, 1. Mai 2011 12:00:24
Abschnittsname . . . . . . . . . : Install_MPCIEX_GEN_0100_BGN_1x1_HMC_WIN7_64_BGN
Hardware-ID . . . . . . . . . . : pci\ven_8086&dev_08ae&subsys_10058086
Instanzstatusflags . . . . . : 0x180200a
Geräte-Manager-Statuscode . . : 0
Schnittstellentyp . . . . . . . . . . . . : 71
Typ des physikalischen Mediums . . . . . . : 9
InformationenDiagnoseinformationen (Drahtloskonnektivität)
Details zu Drahtloskonnektivität Diagnose:
Informationen zur Verbindung, die momentan diagnostiziert wird
Schnittstellen-GUID: 3397bb0d-ee26-42cb-9beb-420e9f33ecf6
Schnittstellenname: Intel(R) Centrino(R) Wireless-N 100
Schnittstellentyp: Systemeigenes WiFi
Es wurde eine Verbindungsstörung diagnostiziert.
ID für die automatische Konfiguration 1
Verbindungs-ID 1
Zusammenfassung für den Verbindungsstatus
Verbindung wurde gestartet um: 2014-10-30 10:47:02-160
Profilübereinstimmung: Erfolg
Präzuordnung: Erfolg
Zuordnung: Erfolg
Sicherheit und Authentifizierung: Erfolg
Liste der sichtbaren Zugriffspunkte: 6 Element(e) insgesamt, 6 Element(e) angezeigt
BSSID BSS-Typ PHY Signal(dB) Kan./Freq. SSID
-------------------------------------------------------------------------
00-1A-4F-37-07-83 Infra g -86 11 WLAN-001A4F370783
34-08-04-25-E2-70 Infra g -82 13 ESRA
34-31-C4-69-C0-DC Infra <unbekannt> -56 1 FRITZ!Box Fon WLAN 7390
08-96-D7-A9-8D-AD Infra <unbekannt> -85 1 FRITZ!Box Fon WLAN 7360
9C-C7-A6-8E-22-24 Infra <unbekannt> -85 1 FRITZ!Box 7312
50-7E-5D-57-26-E8 Infra g -87 9 jungfrau
Verbindungsverlauf
Informationen zur ID für die automatische Konfiguration 1
Liste der sichtbaren Netzwerke: 6 Element(e) insgesamt, 6 Element(e) angezeigt
BSS-Typ PHY Sicherheit Signal(RSSI) Kompatibel SSID
------------------------------------------------------------------------------
Infra g Ja 23 Ja WLAN-001A4F370783
Infra g Ja 21 Ja ESRA
Infra <unbekannt> Ja 99 Ja FRITZ!Box Fon WLAN 7390
Infra <unbekannt> Ja 23 Ja FRITZ!Box Fon WLAN 7360
Infra <unbekannt> Ja 25 Ja FRITZ!Box 7312
Infra <unbekannt> Ja 18 Ja belkin.32ce
Liste der bevorzugten Netzwerke: 11 Element(e)
Profil: WLAN-09F940
SSID: WLAN-09F940
SSID-Länge: 11
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Nein
Ursache: 0x00028002
Profil: FRITZ!Box Fon WLAN 7390
SSID: FRITZ!Box Fon WLAN 7390
SSID-Länge: 23
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Ja
Profil: WLAN-6AE086
SSID: WLAN-6AE086
SSID-Länge: 11
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Nein
Ursache: 0x00028002
Profil: Sdf
SSID: Sdf
SSID-Länge: 3
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Nein
Ursache: 0x00028002
Profil: WLAN-49DE84
SSID: WLAN-49DE84
SSID-Länge: 11
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Nein
Ursache: 0x00028002
Profil: WLAN-818076
SSID: WLAN-818076
SSID-Länge: 11
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Nein
Ursache: 0x00028002
Profil: WLAN-AFE100
SSID: WLAN-AFE100
SSID-Länge: 11
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Nein
Ursache: 0x00028002
Profil: IraklisGate10’s iPhone
SSID: IraklisGate10’s iPhone
SSID-Länge: 24
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Nein
Ursache: 0x00028002
Profil: WLAN-Kostas
SSID: WLAN-Kostas
SSID-Länge: 11
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Nein
Ursache: 0x00028002
Profil: FRITZ!Box 7330 SL
SSID: FRITZ!Box 7330 SL
SSID-Länge: 17
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Nein
Ursache: 0x00028002
Profil: WLAN-AA0118
SSID: WLAN-AA0118
SSID-Länge: 11
Verbindungsmodus: Infra
Sicherheit: Ja
Nach Gruppenrichtlinie festlegen: Nein
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Verbindbar: Nein
Ursache: 0x00028002
Informationen zur Verbindungs-ID 1
Verbindung wurde gestartet um: 2014-10-30 10:47:02-160
ID für die automatische Konfiguration 1
Profil: FRITZ!Box Fon WLAN 7390
SSID: FRITZ!Box Fon WLAN 7390
SSID-Länge: 23
Verbindungsmodus: Infra
Sicherheit: Ja
Vorzuordnung und Zuordnung
Die vom Hardwarehersteller bereitgestellten Konnektivitätseinstellungen (IHV): Nein
Die vom Hardwarehersteller bereitgestellten Sicherheitseinstellungen (IHV): Nein
Das Profil entspricht den Netzwerkanforderungen: Erfolg
Vorzuordnungsstatus: Erfolg
Zuordnungsstatus: Erfolg
Letzter Zugriffspunkt: 34-31-c4-69-c0-dc
Sicherheit und Authentifizierung
Konfigurierter Sicherheitstyp: WPA2-PSK
Konfigurierter Verschlüsselungstyp: CCMP(AES)
802.1X-Protokoll: Nein
Der Schlüsselaustausch wurde initiiert: Ja
Unicastschlüssel empfangen. Ja
Multicastschlüssel empfangen: Ja
Anzahl von empfangenen Sicherheitspaketen: 0
Anzahl von gesendeten Sicherheitspaketen: 0
Status des Sicherheitsversuch: Erfolg
Konnektivität
Paketstatistiken
Ndis Rx: 387
Ndis Tx: 1866
Erfolg bei Unicastentschlüsselung: 21
Erfolg bei Multicastentschlüsselung: 0
Fehler bei Unicastentschlüsselung: 0
Fehler bei Multicastentschlüsselung: 0
Rx-Erfolg: 605
Rx-Fehler: 0
Tx-Erfolg: 378
Tx-Fehler: 0
Tx-Wiederholung: 0
Tx-Mehrfachwiederholung: 0
Tx: maximale Gültigkeitsdauer überschritten: 0
Tx-Bestätigungsfehler: 0
Verlauf der Serverspeicherung: 0 Element(e)
InformationenDiagnoseinformationen (Drahtloskonnektivität)
Details zu Drahtloskonnektivität Diagnose:
Vollständige Informationen zu dieser Sitzung finden Sie im Drahtloskonnektivitäts-Informationsereignis.
Hilfsprogrammklasse: Automatische Konfiguration
Initialisierungsstatus: Erfolg
Informationen zur Verbindung, die momentan diagnostiziert wird
Schnittstellen-GUID: 3397bb0d-ee26-42cb-9beb-420e9f33ecf6
Schnittstellenname: Intel(R) Centrino(R) Wireless-N 100
Schnittstellentyp: Systemeigenes WiFi
Ergebnis der Diagnose: Möglicherweise besteht ein Problem.
InformationenDiagnoseinformationen (Drahtlosnetzwerkadapter)
Details zu Drahtlosnetzwerkadapter Diagnose:
Vollständige Informationen zu dieser Sitzung finden Sie im Drahtloskonnektivitäts-Informationsereignis.
Hilfsprogrammklasse: Systemeigene WiFi-MSM
Initialisierungsstatus: Erfolg
Informationen zur Verbindung, die momentan diagnostiziert wird
Schnittstellen-GUID: 3397bb0d-ee26-42cb-9beb-420e9f33ecf6
Schnittstellenname: Intel(R) Centrino(R) Wireless-N 100
Schnittstellentyp: Systemeigenes WiFi
Profil: FRITZ!Box Fon WLAN 7390
SSID: FRITZ!Box Fon WLAN 7390
SSID-Länge: 23
Verbindungsmodus: Infra
Sicherheit: Ja
Verbindung herstellen, selbst wenn das Netzwerk keinen Broadcast sendet: Nein
Ergebnis der Diagnose: Möglicherweise besteht ein Problem.
InformationenNetzwerkdiagnoseprotokoll
Dateiname: CA2A99B4-C5B3-4B31-AB47-30B53617F83B.Diagnose.Admin.0.etl
InformationenAndere Netzwerkkonfiguration und Protokolle
Dateiname: NetworkConfiguration.cab
Sammlungsinformationen
Computername: KONSTANTINOSTZO
Windows-Version: 6.1
Architektur: amd64
Zeit: Donnerstag, 30. Oktober 2014 10:50:52
Herausgeberdetails Erweitern
Windows-Netzwerkdiagnose
Ermittelt Probleme mit der Netzwerkkonnektivität.
Paketversion: 1.0
Herausgeber: Microsoft Windows
Code:
ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-10-30 12:34:03
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD50 rev.01.0 465,76GB
Running: Gmer-19357.exe; Driver: C:\Users\KONSTA~1\AppData\Local\Temp\axqoqpob.sys
---- User code sections - GMER 2.1 ----
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe[1380] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[1696] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\KERNELBASE.dll!FreeLibrary 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW 000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW 000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo 000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\dxgi.dll!CreateDXGIFactory 000007fef849dc88 5 bytes JMP 000007fff84700d8
.text C:\Windows\system32\Dwm.exe[1736] C:\Windows\system32\dxgi.dll!CreateDXGIFactory1 000007fef849de10 5 bytes JMP 000007fff8470110
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[1904] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe[2008] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[836] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\KERNELBASE.dll!FreeLibrary 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW 000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW 000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo 000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\ole32.dll!CoCreateInstance 000007fefdd97490 11 bytes JMP 000007fffcad0228
.text C:\Windows\system32\taskeng.exe[1464] C:\Windows\system32\ole32.dll!CoSetProxyBlanket 000007fefddabf00 7 bytes JMP 000007fffcad0260
.text C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[1048] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter 00000000766d8791 4 bytes [C2, 04, 00, 00]
.text C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[1048] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69 00000000760e1465 2 bytes [0E, 76]
.text C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[1048] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155 00000000760e14bb 2 bytes [0E, 76]
.text ... * 2
.text C:\Program Files\P4G\BatteryLife.exe[1184] C:\Windows\system32\ole32.dll!CoCreateInstance 000007fefdd97490 11 bytes JMP 000007fffcad0228
.text C:\Program Files\P4G\BatteryLife.exe[1184] C:\Windows\system32\ole32.dll!CoSetProxyBlanket 000007fefddabf00 7 bytes JMP 000007fffcad0260
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe[1368] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!RegSetValueExW 0000000076b9a400 7 bytes JMP 000000016fff0260
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!RegQueryValueExW 0000000076ba3f20 5 bytes JMP 000000016fff01b8
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!RegDeleteValueW 0000000076bbffb0 5 bytes JMP 000000016fff01f0
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW 0000000076bcf2e0 5 bytes JMP 000000016fff0148
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx 0000000076bf9a30 7 bytes JMP 000000016fff00d8
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!K32GetModuleInformation 0000000076c094c0 5 bytes JMP 000000016fff0180
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW 0000000076c09630 5 bytes JMP 000000016fff0110
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\kernel32.dll!RegSetValueExA 0000000076c287e0 7 bytes JMP 000000016fff0228
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\KERNELBASE.dll!FreeLibrary 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW 000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW 000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo 000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\ole32.dll!CoCreateInstance 000007fefdd97490 11 bytes JMP 000007fffcad0228
.text C:\Program Files\ESET\ESET Smart Security\egui.exe[2380] C:\Windows\system32\ole32.dll!CoSetProxyBlanket 000007fefddabf00 7 bytes JMP 000007fffcad0260
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!RegSetValueExW 0000000076b9a400 7 bytes JMP 000000016fff0260
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!RegQueryValueExW 0000000076ba3f20 5 bytes JMP 000000016fff01b8
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!RegDeleteValueW 0000000076bbffb0 5 bytes JMP 000000016fff01f0
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW 0000000076bcf2e0 5 bytes JMP 000000016fff0148
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx 0000000076bf9a30 7 bytes JMP 000000016fff00d8
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!K32GetModuleInformation 0000000076c094c0 5 bytes JMP 000000016fff0180
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW 0000000076c09630 5 bytes JMP 000000016fff0110
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\kernel32.dll!RegSetValueExA 0000000076c287e0 7 bytes JMP 000000016fff0228
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\KERNELBASE.dll!FreeLibrary 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW 000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW 000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo 000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\ole32.dll!CoCreateInstance 000007fefdd97490 11 bytes JMP 000007fffcad0228
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2392] C:\Windows\system32\ole32.dll!CoSetProxyBlanket 000007fefddabf00 7 bytes JMP 000007fffcad0260
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\KERNELBASE.dll!FreeLibrary 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW 000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW 000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo 000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[2492] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\KERNELBASE.dll!FreeLibrary 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW 000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW 000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo 000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\ole32.dll!CoCreateInstance 000007fefdd97490 11 bytes JMP 000007fffcad0228
.text C:\Windows\System32\igfxpers.exe[2508] C:\Windows\system32\ole32.dll!CoSetProxyBlanket 000007fefddabf00 7 bytes JMP 000007fffcad0260
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!RegSetValueExW 0000000076b9a400 7 bytes JMP 000000016fff0260
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!RegQueryValueExW 0000000076ba3f20 5 bytes JMP 000000016fff01b8
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!RegDeleteValueW 0000000076bbffb0 5 bytes JMP 000000016fff01f0
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW 0000000076bcf2e0 5 bytes JMP 000000016fff0148
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx 0000000076bf9a30 7 bytes JMP 000000016fff00d8
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!K32GetModuleInformation 0000000076c094c0 5 bytes JMP 000000016fff0180
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW 0000000076c09630 5 bytes JMP 000000016fff0110
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\kernel32.dll!RegSetValueExA 0000000076c287e0 7 bytes JMP 000000016fff0228
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\KERNELBASE.dll!FreeLibrary 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW 000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW 000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo 000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\ole32.dll!CoCreateInstance 000007fefdd97490 11 bytes JMP 000007fffcad0228
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[2696] C:\Windows\system32\ole32.dll!CoSetProxyBlanket 000007fefddabf00 7 bytes JMP 000007fffcad0260
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!RegSetValueExW 0000000076b9a400 7 bytes JMP 000000016fff0260
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!RegQueryValueExW 0000000076ba3f20 5 bytes JMP 000000016fff01b8
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!RegDeleteValueW 0000000076bbffb0 5 bytes JMP 000000016fff01f0
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW 0000000076bcf2e0 5 bytes JMP 000000016fff0148
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx 0000000076bf9a30 7 bytes JMP 000000016fff00d8
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!K32GetModuleInformation 0000000076c094c0 5 bytes JMP 000000016fff0180
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW 0000000076c09630 5 bytes JMP 000000016fff0110
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\kernel32.dll!RegSetValueExA 0000000076c287e0 7 bytes JMP 000000016fff0228
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\KERNELBASE.dll!FreeLibrary 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW 000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW 000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\ole32.dll!CoCreateInstance 000007fefdd97490 11 bytes JMP 000007fffcad0228
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\ole32.dll!CoSetProxyBlanket 000007fefddabf00 7 bytes JMP 000007fffcad0260
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo 000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[2752] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000760e1465 2 bytes [0E, 76]
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe[2876] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000760e14bb 2 bytes [0E, 76]
.text ... * 2
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!RegSetValueExW 0000000076b9a400 7 bytes JMP 000000016fff0260
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!RegQueryValueExW 0000000076ba3f20 5 bytes JMP 000000016fff01b8
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!RegDeleteValueW 0000000076bbffb0 5 bytes JMP 000000016fff01f0
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!K32GetMappedFileNameW 0000000076bcf2e0 5 bytes JMP 000000016fff0148
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!K32EnumProcessModulesEx 0000000076bf9a30 7 bytes JMP 000000016fff00d8
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!K32GetModuleInformation 0000000076c094c0 5 bytes JMP 000000016fff0180
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!K32GetModuleFileNameExW 0000000076c09630 5 bytes JMP 000000016fff0110
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNEL32.dll!RegSetValueExA 0000000076c287e0 7 bytes JMP 000000016fff0228
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNELBASE.dll!FreeLibrary 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW 000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW 000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo 000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text D:\Garmin\Express Tray\ExpressTray.exe[2932] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3252] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[3284] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Program Files (x86)\iTunes\iTunesHelper.exe[3308] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\KERNELBASE.dll!FreeLibrary 000007fefcae2db0 5 bytes JMP 000007fffcad0180
.text C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW 000007fefcae37d0 7 bytes JMP 000007fffcad00d8
.text C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW 000007fefcae8ef0 6 bytes JMP 000007fffcad0148
.text C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW 000007fefcafaf60 5 bytes JMP 000007fffcad0110
.text C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo 000007fefe5a89f0 8 bytes JMP 000007fffcad01f0
.text C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList 000007fefe5abe50 8 bytes JMP 000007fffcad01b8
.text C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\ole32.dll!CoCreateInstance 000007fefdd97490 11 bytes JMP 000007fffcad0228
.text C:\Windows\SysWOW64\ACEngSvr.exe[3416] C:\Windows\system32\ole32.dll!CoSetProxyBlanket 000007fefddabf00 7 bytes JMP 000007fffcad0260
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000760e1465 2 bytes [0E, 76]
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe[4044] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000760e14bb 2 bytes [0E, 76]
.text ... * 2
.text D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe[5732] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000760e1465 2 bytes [0E, 76]
.text D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe[5732] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000760e14bb 2 bytes [0E, 76]
.text ... * 2
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW 00000000766d1f0e 7 bytes JMP 00000001724f168b
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!RegSetValueExW 00000000766d5bad 7 bytes JMP 00000001724f11a4
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!RegSetValueExA 00000000766e1409 7 bytes JMP 00000001724f1280
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW 00000000766eea45 7 bytes JMP 00000001724f123a
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW 00000000766fb21b 5 bytes JMP 00000001724f15a0
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx 0000000076778e24 7 bytes JMP 00000001724f132f
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation 0000000076778ea9 5 bytes JMP 00000001724f16cc
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW 00000000767791ff 1 byte JMP 00000001724f1703
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW + 2 0000000076779201 3 bytes {JMP 0xfffffffffbd78504}
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW 00000000760a1d29 5 bytes JMP 00000001724f11bd
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW 00000000760a1dd7 5 bytes JMP 00000001724f1014
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW 00000000760a2ab1 5 bytes JMP 00000001724f154b
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary 00000000760a2d17 5 bytes JMP 00000001724f1267
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList 0000000074e7e96b 5 bytes JMP 00000001724f15b9
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo 0000000074e7eba5 5 bytes JMP 00000001724f1181
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\USER32.dll!CreateWindowExW 00000000751f8a29 5 bytes JMP 00000001724f171c
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA 0000000075204572 5 bytes JMP 00000001724f10a0
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW 000000007521e567 5 bytes JMP 00000001724f140b
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo 0000000075257a5c 5 bytes JMP 00000001724f15c8
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket 0000000075f45ea5 5 bytes JMP 00000001724f15f0
.text C:\Users\Konstantinos Tzontas\Downloads\Gmer-19357.exe[5212] C:\Windows\syswow64\ole32.dll!CoCreateInstance 0000000075f79d0b 5 bytes JMP 00000001724f1217
---- Threads - GMER 2.1 ----
Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [4336:4476] 000007fefa8c2bf8
Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [4336:5356] 000007fee54a4830
Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [4336:5488] 000007fefb0d5124
Thread C:\Windows\System32\svchost.exe [5828:4552] 000007fedf569688
---- Registry - GMER 2.1 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\0025d3b2962e
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x93 0x55 0xA8 0x0E ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\0025d3b2962e (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x93 0x55 0xA8 0x0E ...
---- EOF - GMER 2.1 ----
|
|
31.10.2014, 11:35
| #3 |
| /// the machine /// TB-Ausbilder    | Windows 7: Internet funktionieren nach CCleaner nich mehr hi,
__________________Downloade dir bitte Farbar's MiniToolBox auf deinen Desktop und starte das Tool Setze einen Haken bei folgenden Einträgen
__________________ |
|
31.10.2014, 17:46
| #4 |
| | Windows 7: Internet funktionieren nach CCleaner nich mehrCode:
ATTFilter MiniToolBox by Farbar Version: 21-07-2014
Ran by Konstantinos Tzontas (administrator) on 31-10-2014 at 17:42:45
Running from "C:\Users\Konstantinos Tzontas\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
========================= Flush DNS: ===================================
Windows-IP-Konfiguration
Der DNS-Aufl�sungscache wurde geleert.
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= FF Proxy Settings: ==============================
"network.proxy.gopher", ""
"network.proxy.gopher_port", 0
"network.proxy.share_proxy_settings", true
"network.proxy.type", 0
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
========================= Hosts content: =================================
========================= IP Configuration: ================================
Intel(R) Centrino(R) Wireless-N 100 = Drahtlosnetzwerkverbindung (Connected)
Microsoft Virtual WiFi Miniport Adapter = Drahtlosnetzwerkverbindung 2 (Hardware not present)
Realtek PCIe GBE Family Controller = LAN-Verbindung (Media disconnected)
TAP-Win32 Adapter V9 = LAN-Verbindung 3 (Media disconnected)
# ----------------------------------
# IPv4-Konfiguration
# ----------------------------------
pushd interface ipv4
reset
set global icmpredirects=enabled
popd
# Ende der IPv4-Konfiguration
Windows-IP-Konfiguration
Hostname . . . . . . . . . . . . : KonstantinosTzo
Prim�res DNS-Suffix . . . . . . . :
Knotentyp . . . . . . . . . . . . : Hybrid
IP-Routing aktiviert . . . . . . : Nein
WINS-Proxy aktiviert . . . . . . : Nein
DNS-Suffixsuchliste . . . . . . . : fritz.box
Ethernet-Adapter LAN-Verbindung 3:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : TAP-Win32 Adapter V9
Physikalische Adresse . . . . . . : 00-FF-B1-FA-23-4F
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
Drahtlos-LAN-Adapter Drahtlosnetzwerkverbindung:
Verbindungsspezifisches DNS-Suffix: fritz.box
Beschreibung. . . . . . . . . . . : Intel(R) Centrino(R) Wireless-N 100
Physikalische Adresse . . . . . . : 78-92-9C-45-23-A8
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
Verbindungslokale IPv6-Adresse . : fe80::6c0b:883:3fe0:6a3c%12(Bevorzugt)
IPv4-Adresse . . . . . . . . . . : 192.168.178.24(Bevorzugt)
Subnetzmaske . . . . . . . . . . : 255.255.255.0
Lease erhalten. . . . . . . . . . : Freitag, 31. Oktober 2014 16:49:38
Lease l�uft ab. . . . . . . . . . : Montag, 10. November 2014 17:40:40
Standardgateway . . . . . . . . . : 192.168.178.1
DHCP-Server . . . . . . . . . . . : 192.168.178.1
DHCPv6-IAID . . . . . . . . . . . : 309891740
DHCPv6-Client-DUID. . . . . . . . : 00-01-00-01-18-AE-78-8D-50-46-5D-E1-D8-C8
DNS-Server . . . . . . . . . . . : fe80::1%12
198.18.0.1
198.18.0.2
NetBIOS �ber TCP/IP . . . . . . . : Aktiviert
Ethernet-Adapter LAN-Verbindung:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physikalische Adresse . . . . . . : 50-46-5D-E1-D8-C8
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
Tunneladapter LAN-Verbindung* 3:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Tunneladapter isatap.{B1FA234F-FD20-4968-8046-DBDC70C762C3}:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter #2
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Tunneladapter Reusable ISATAP Interface {7192C78D-DE42-40EA-8DEF-2390009E2EA8}:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix: fritz.box
Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter #4
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Tunneladapter isatap.{70F80DF2-E91A-461D-B6C7-AEF1D9FCC421}:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter #5
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: fe80::1
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Ping-Anforderung konnte Host "google.com" nicht finden. �berpr�fen Sie den Namen, und versuchen Sie es erneut.
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: fe80::1
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Ping-Anforderung konnte Host "yahoo.com" nicht finden. �berpr�fen Sie den Namen, und versuchen Sie es erneut.
Ping wird ausgef�hrt f�r 127.0.0.1 mit 32 Bytes Daten:
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Ping-Statistik f�r 127.0.0.1:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 0ms, Maximum = 0ms, Mittelwert = 0ms
===========================================================================
Schnittstellenliste
19...00 ff b1 fa 23 4f ......TAP-Win32 Adapter V9
12...78 92 9c 45 23 a8 ......Intel(R) Centrino(R) Wireless-N 100
11...50 46 5d e1 d8 c8 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
20...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
22...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter #2
24...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter #4
23...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter #5
===========================================================================
IPv4-Routentabelle
===========================================================================
Aktive Routen:
Netzwerkziel Netzwerkmaske Gateway Schnittstelle Metrik
0.0.0.0 0.0.0.0 192.168.178.1 192.168.178.24 25
127.0.0.0 255.0.0.0 Auf Verbindung 127.0.0.1 306
127.0.0.1 255.255.255.255 Auf Verbindung 127.0.0.1 306
127.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
192.168.178.0 255.255.255.0 Auf Verbindung 192.168.178.24 281
192.168.178.24 255.255.255.255 Auf Verbindung 192.168.178.24 281
192.168.178.255 255.255.255.255 Auf Verbindung 192.168.178.24 281
224.0.0.0 240.0.0.0 Auf Verbindung 127.0.0.1 306
224.0.0.0 240.0.0.0 Auf Verbindung 192.168.178.24 281
255.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
255.255.255.255 255.255.255.255 Auf Verbindung 192.168.178.24 281
===========================================================================
St�ndige Routen:
Keine
IPv6-Routentabelle
===========================================================================
Aktive Routen:
If Metrik Netzwerkziel Gateway
1 306 ::1/128 Auf Verbindung
12 281 fe80::/64 Auf Verbindung
12 281 fe80::6c0b:883:3fe0:6a3c/128
Auf Verbindung
1 306 ff00::/8 Auf Verbindung
12 281 ff00::/8 Auf Verbindung
===========================================================================
St�ndige Routen:
Keine
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
========================= Event log errors: ===============================
Application errors:
==================
Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2090
Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2090
Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1014
Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1014
Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3089
Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3089
Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (10/31/2014 05:04:22 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2044
System errors:
=============
Error: (10/31/2014 04:53:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (10/31/2014 04:53:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (10/31/2014 04:50:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Garmin Core Update Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (10/31/2014 04:50:35 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Garmin Core Update Service erreicht.
Error: (10/31/2014 11:08:25 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (10/31/2014 11:08:25 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (10/31/2014 11:04:42 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Garmin Core Update Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (10/31/2014 11:04:42 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Garmin Core Update Service erreicht.
Error: (10/30/2014 00:58:56 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (10/30/2014 00:58:56 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Microsoft Office Sessions:
=========================
Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2090
Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2090
Error: (10/31/2014 05:33:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1014
Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1014
Error: (10/31/2014 05:33:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3089
Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3089
Error: (10/31/2014 05:04:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (10/31/2014 05:04:22 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2044
CodeIntegrity Errors:
===================================
Date: 2014-07-18 22:04:25.422
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.391
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.251
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.204
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.998
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.977
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.895
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.849
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-06-23 16:26:49.699
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-06-23 16:26:49.529
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
=========================== Installed Programs ============================
3monkey (HKCU\...\7202e20a3ee22bab) (Version: 1.0.0.4 - 3monkey.me)
64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.6.0.393 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.3 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.3 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.9.900.117 - Adobe Systems Incorporated)
Adobe InCopy CC (HKLM-x32\...\{2606D96F-C1A3-1014-9A8F-E3561A1AC78D}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe InDesign CC (HKLM-x32\...\{BC448016-6F11-1014-B0EA-97CEE6E26CB6}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}) (Version: 11.0 - Adobe Systems, Inc.)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
AMPLUS Vokabel-Trainer 1.2 (HKLM-x32\...\AMPLUS Vokabel-Trainer 1.2) (Version: - )
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
B110 (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
calibre (HKLM-x32\...\{A2A971DE-C864-4CF0-8FCA-FF7F569D8476}) (Version: 1.43.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.1.4003 - CDBurnerXP)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.41 - DivX, LLC)
Elevated Installer (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.1.13904 - Landesfinanzdirektion Thüringen)
ESET Smart Security (HKLM\...\{F5A3E880-A737-48F2-A124-6F5D4CEA6AB4}) (Version: 7.0.302.26 - ESET, spol s r. o.)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Football Manager 2014 (HKLM-x32\...\Steam App 231670) (Version: - Sports Interactive)
Free ISO Create Wizard 6.0.7 (HKLM-x32\...\Free ISO Create Wizard_is1) (Version: - FreeAudioVideoSoftTech, Inc.)
Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version: - )
Free YouTube to MP3 Converter version 3.12.46.923 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.46.923 - DVDVideoSoft Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin with myGarmin Agent (HKLM-x32\...\{92A70E71-4F0E-4C05-A777-16424E89F162}) (Version: 2.9.2 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{b43ffffb-1adc-4bcb-b277-7844ebff94da}) (Version: 3.2.17.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel PROSet Wireless (Version: - ) Hidden
Intel PROSet Wireless (x32 Version: - ) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{3C41721F-AF0F-4086-AA1C-4C7F29076228}) (Version: 14.01.1000 - Intel Corporation)
Intel(R) Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.400.4 - Intel)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NVIDIA Install Application (Version: 2.1002.130.849 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.11.3 (Version: 1.11.3 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Systemsteuerung 326.84 (Version: 326.84 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM-x32\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Shutdown4U (HKLM-x32\...\Shutdown4U) (Version: - )
SolutionCenter (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.17.0 - Synaptics Incorporated)
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
System Requirements Lab CYRI (64-bit) (HKLM\...\{15AD6738-23E8-4AE6-93E9-434E717EECB2}) (Version: 4.5.1.0 - Husdawg, LLC)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Unlocker 1.9.1-x64 (HKLM\...\Unlocker) (Version: 1.9.1 - Cedrick Collomb)
USB Safely Remove 5.2 (HKLM-x32\...\USB Safely Remove_is1) (Version: - SafelyRemove.com)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtua Tennis 4 (x32 Version: 1.0.0001.130 - Sega) Hidden
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 3.6 - Bazis)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - ?????????? ??????????) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ???? (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ??? (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se?? (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
S?????? f?t???af??? t?? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
???????? ?????????? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
????? Windows Live (x32 Version: 15.4.3502.0922 - ?????????? ??????????) Hidden
?????????? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
??????? ?????????? Windows Live Mesh ActiveX ??? ????????? ??????????? (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
?????? ??????? ?? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
??? ActiveX ?? Windows Live Mesh ???? ??????? ??????? (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
???? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ??????? (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
???? ??? Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
??????? Windows Live Mesh ActiveX ??? (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
========================= Memory info: ===================================
Percentage of memory in use: 26%
Total physical RAM: 8102.7 MB
Available physical RAM: 5985.66 MB
Total Pagefile: 16203.57 MB
Available Pagefile: 13735.93 MB
Total Virtual: 4095.88 MB
Available Virtual: 3978.55 MB
========================= Partitions: =====================================
1 Drive c: (OS) (Fixed) (Total:195.35 GB) (Free:63.24 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:245.41 GB) (Free:99.29 GB) NTFS
4 Drive f: () (Removable) (Total:7.45 GB) (Free:7.43 GB) FAT32
========================= Users: ========================================
Benutzerkonten fr \\KONSTANTINOSTZO
Administrator Gast Konstantinos Tzontas
Mcx1-KONSTANTINOSTZO UpdatusUser
Der Befehl wurde erfolgreich ausgefhrt.
========================= Minidump Files ==================================
No minidump file found
**** End of log ****
|
|
01.11.2014, 12:27
| #5 |
| /// the machine /// TB-Ausbilder | Windows 7: Internet funktionieren nach CCleaner nich mehr Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Tcpip\..\Interfaces\{3397BB0D-EE26-42CB-9BEB-420E9F33ECF6}: [NameServer] 198.18.0.1,198.18.0.2
cmd: ipconfig /flushdns
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.11.2014, 11:06
| #6 |
| | Windows 7: Internet funktionieren nach CCleaner nich mehrCode:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-11-2014
Ran by Konstantinos Tzontas at 2014-11-02 09:45:41 Run:1
Running from C:\Users\Konstantinos Tzontas\Desktop
Loaded Profile: Konstantinos Tzontas (Available profiles: UpdatusUser & Konstantinos Tzontas & Mcx1-KONSTANTINOSTZO)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Tcpip\..\Interfaces\{3397BB0D-EE26-42CB-9BEB-420E9F33ECF6}: [NameServer] 198.18.0.1,198.18.0.2
cmd: ipconfig /flushdns
*****************
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{3397BB0D-EE26-42CB-9BEB-420E9F33ECF6}\\NameServer => value deleted successfully.
========= ipconfig /flushdns =========
Windows-IP-Konfiguration
Der DNS-Aufl�sungscache wurde geleert.
========= End of CMD: =========
==== End of Fixlog ====
Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Protection, 02.11.2014 09:49:02, SYSTEM, KONSTANTINOSTZO, Protection, Malware Protection, Starting, Protection, 02.11.2014 09:49:02, SYSTEM, KONSTANTINOSTZO, Protection, Malware Protection, Started, Protection, 02.11.2014 09:49:02, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Starting, Protection, 02.11.2014 09:49:04, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Started, Update, 02.11.2014 09:49:08, SYSTEM, KONSTANTINOSTZO, Manual, Rootkit Database, 2014.9.18.1, 2014.11.1.2, Update, 02.11.2014 09:49:15, SYSTEM, KONSTANTINOSTZO, Manual, Malware Database, 2014.9.19.5, 2014.11.2.3, Protection, 02.11.2014 09:49:15, SYSTEM, KONSTANTINOSTZO, Protection, Refresh, Starting, Protection, 02.11.2014 09:49:15, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Stopping, Protection, 02.11.2014 09:49:15, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Stopped, Protection, 02.11.2014 09:49:19, SYSTEM, KONSTANTINOSTZO, Protection, Refresh, Success, Protection, 02.11.2014 09:49:19, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Starting, Protection, 02.11.2014 09:49:20, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Started, Scan, 02.11.2014 10:34:02, SYSTEM, KONSTANTINOSTZO, Manual, Start: % 1 "% 2", Dauer: % 1 min 34 Sekunden, Bedrohungs-Suchlauf, Abgeschlossen, 0 Malwareerkennung, 1374-Malwareerkennung, Protection, 02.11.2014 10:37:28, SYSTEM, KONSTANTINOSTZO, Protection, Malware Protection, Starting, Protection, 02.11.2014 10:37:28, SYSTEM, KONSTANTINOSTZO, Protection, Malware Protection, Started, Protection, 02.11.2014 10:37:28, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Starting, Protection, 02.11.2014 10:39:15, SYSTEM, KONSTANTINOSTZO, Protection, Malicious Website Protection, Started, (end) Code:
ATTFilter # AdwCleaner v4.002 - Bericht erstellt am 02/11/2014 um 10:47:24
# DB v2014-10-26.6
# Aktualisiert 27/10/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Konstantinos Tzontas - KONSTANTINOSTZO
# Gestartet von : C:\Users\Konstantinos Tzontas\Downloads\AdwCleaner_4.002.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\Users\Konstantinos Tzontas\AppData\Roaming\RocketUpdater
Ordner Gelöscht : C:\Program Files (x86)\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Ordner Gelöscht : C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm
Datei Gelöscht : C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\user.js
***** [ Tasks ] *****
Task Gelöscht : dsmonitor
Task Gelöscht : Express FilesUpdate
Task Gelöscht : Rocket Updater
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{78888F8B-D5E4-43CE-89F5-C8C18223AF64}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8B8558F6-DC26-4F39-8417-34B8934AA459}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9E393F82-2644-4AB6-B994-1AD39D6C59EE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A3A2A5C0-1306-4D1A-A093-9CECA4230002}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\Rocket Browser
Schlüssel Gelöscht : HKCU\Software\RocketUpdater
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17344
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
-\\ Mozilla Firefox v32.0.3 (x86 de)
-\\ Google Chrome v
*************************
AdwCleaner[R3].txt - [5983 octets] - [02/11/2014 10:45:58]
AdwCleaner[S2].txt - [5140 octets] - [02/11/2014 10:47:24]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [5200 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.5 (10.31.2014:1)
OS: Windows 7 Home Premium x64
Ran by Konstantinos Tzontas on 02.11.2014 at 10:56:57,84
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{900C6BAE-AEC8-40E9-BA9F-6F9D5981B598}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{686AA630-8AA4-DFDA-9B6F-4E87A3269C04}
~~~ Files
Successfully deleted: [File] C:\Windows\prefetch\DRIVERBOOSTER.EXE-51D78DCC.pf
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\free window registry repair"
Successfully deleted: [Folder] "C:\Users\Konstantinos Tzontas\AppData\Roaming\microsoft\windows\start menu\programs\free window registry repair"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
~~~ FireFox
Successfully deleted: [Folder] C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\firefox\profiles\cror15bd.default\extensions\staged
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02.11.2014 at 11:00:57,78
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-11-2014
Ran by Konstantinos Tzontas (administrator) on KONSTANTINOSTZO on 02-11-2014 11:02:00
Running from C:\Users\Konstantinos Tzontas\Desktop
Loaded Profile: Konstantinos Tzontas (Available profiles: UpdatusUser & Konstantinos Tzontas & Mcx1-KONSTANTINOSTZO)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSRService.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Garmin Ltd or its subsidiaries) D:\Garmin\Express Tray\ExpressTray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Garmin Ltd or its subsidiaries) D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2816808 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-02] (Intel(R) Corporation)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [98088 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191312 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [GarminExpressTrayApp] => D:\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6462744 2014-08-21] (Piriform Ltd)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82] => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\MountPoints2: {d842016a-97d6-11e2-9017-50465de1d8c8} - F:\AutoRun.exe
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
SSODL: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=4805876640124690&q={searchTerms}
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKCU - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default
FF DefaultSearchUrl:
FF Homepage: hxxp://wmportal.wmkat.de/
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll No File
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Download videos and MP3s from YouTube - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} [2014-10-07]
FF Extension: Real Hide IP - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\support@real-hide-ip.com.xpi [2014-07-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-02-27]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-05-26]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-10-07]
FF Extension: No Name - C:\Program Files (x86)\IObit Apps Toolbar\FF [Not Found]
FF Extension: No Name - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\extensions\iobitascsurfingprotection@iobit.com [Not Found]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV="
CHR Profile: C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-12]
CHR Extension: (MindMeister) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2013-11-29]
CHR Extension: (iCloud) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdilfkhpgihcibbahmoggdaeciachopd [2014-02-26]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-06]
CHR Extension: (YouTube) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-12]
CHR Extension: (Adblock Plus) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-28]
CHR Extension: (Google-Suche) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-12]
CHR Extension: (Search by Image (by Google)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-11-29]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2013-04-12]
CHR Extension: (Google Play Music) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2014-06-13]
CHR Extension: (iCloud-Lesezeichen) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2014-07-09]
CHR Extension: (Rechtschreibprüfung) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gehceilhofkogkifpjmgdhciddpbcboo [2013-04-12]
CHR Extension: (Vimeo Couch Mode) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjkdhkejcnlmkfdodbkdkelefnkobfif [2013-04-12]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-04-17]
CHR Extension: (Finanzen100) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpobenbpfkbhiccbdifogbiachenpie [2013-04-12]
CHR Extension: (WEB.DE MailCheck) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaogepninmlbinccpbiakcgiolijlllo [2014-09-14]
CHR Extension: (Autodesk Homestyler) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2013-11-29]
CHR Extension: (Google Maps) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2013-04-12]
CHR Extension: (Der Planer der Räume) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2013-11-29]
CHR Extension: (Ghostery) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2014-11-02]
CHR Extension: (Google Wallet) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-06]
CHR Extension: (Click&Clean App) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2013-11-29]
CHR Extension: (Google Mail) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-12]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
CHR StartMenuInternet: Google Chrome - chrome.exe
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 Garmin Core Update Service; D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2282272 2014-08-19] (IObit)
S2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-02] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
R2 USBSafelyRemoveService; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [1522488 2014-03-25] (Crystal Rich Ltd)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
R1 cbfs4-0; C:\Program Files (x86)\Common Files\CBFS\cbfs4.sys [385728 2013-03-01] (EldoS Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2011-10-24] (TCT International Mobile Ltd) [File not signed]
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-10-01] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2014-10-10] (Intel Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-09-04] (Synaptics Incorporated)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [868848 2014-07-09] (Duplex Secure Ltd.)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-02 11:02 - 2014-11-02 11:02 - 00027334 _____ () C:\Users\Konstantinos Tzontas\Desktop\FRST.txt
2014-11-02 11:00 - 2014-11-02 11:00 - 00001505 _____ () C:\Users\Konstantinos Tzontas\Desktop\JRT.txt
2014-11-02 10:56 - 2014-11-02 10:56 - 00000000 ____D () C:\Windows\ERUNT
2014-11-02 10:53 - 2014-11-02 10:53 - 00005364 _____ () C:\Users\Konstantinos Tzontas\Desktop\AdwCleaner[S2].txt
2014-11-02 10:36 - 2014-11-02 10:48 - 00299640 _____ () C:\Windows\PFRO.log
2014-11-02 10:33 - 2014-11-02 10:42 - 00001942 _____ () C:\Users\Konstantinos Tzontas\Desktop\mbam.txt.txt
2014-11-02 09:58 - 2014-11-02 09:58 - 00858432 _____ (SlimWare Utilities, Inc.) C:\Users\Konstantinos Tzontas\Downloads\SlimDrivers-setup_32705.exe
2014-11-02 09:56 - 2014-11-02 10:41 - 00000000 ____D () C:\Program Files (x86)\FileHippo.com
2014-11-02 09:55 - 2014-11-02 09:55 - 00269490 _____ () C:\Users\Konstantinos Tzontas\Downloads\FHSetup41.exe
2014-11-02 09:49 - 2014-11-02 10:53 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-02 09:48 - 2014-11-02 09:48 - 01706359 _____ (Thisisu) C:\Users\Konstantinos Tzontas\Downloads\JRT.exe
2014-11-02 09:48 - 2014-11-02 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-11-02 09:48 - 2014-11-02 09:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-02 09:48 - 2014-11-02 09:48 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-11-02 09:48 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-02 09:48 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-02 09:48 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-11-02 09:47 - 2014-11-02 10:47 - 00000000 ____D () C:\AdwCleaner
2014-11-02 09:47 - 2014-11-02 09:47 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Konstantinos Tzontas\Downloads\mbam-setup-2.0.3.1025.exe
2014-11-02 09:47 - 2014-11-02 09:47 - 01998336 _____ () C:\Users\Konstantinos Tzontas\Downloads\AdwCleaner_4.002.exe
2014-11-02 09:45 - 2014-11-02 09:45 - 02114048 _____ (Farbar) C:\Users\Konstantinos Tzontas\Desktop\FRST64.exe
2014-10-30 11:57 - 2014-11-02 10:48 - 00000392 _____ () C:\Windows\setupact.log
2014-10-30 11:57 - 2014-10-30 11:59 - 00287280 _____ () C:\Windows\Minidump\103014-92040-01.dmp
2014-10-30 11:57 - 2014-10-30 11:57 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-30 11:56 - 2014-10-30 12:01 - 05106392 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-30 11:56 - 2014-10-30 11:56 - 702961335 _____ () C:\Windows\MEMORY.DMP
2014-10-30 11:33 - 2014-10-30 11:33 - 00110368 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-30 11:32 - 2014-11-02 10:55 - 00200350 _____ () C:\Windows\WindowsUpdate.log
2014-10-30 11:29 - 2014-11-02 11:02 - 00000000 ____D () C:\FRST
2014-10-30 11:24 - 2014-10-30 11:24 - 00000020 _____ () C:\Users\Konstantinos Tzontas\defogger_reenable
2014-10-30 10:26 - 2014-10-30 10:26 - 00002358 _____ () C:\Windows\System32\Tasks\CCleanerClean
2014-10-30 10:26 - 2014-10-30 10:26 - 00000258 _____ () C:\Windows\Tasks\CCleanerClean.job
2014-10-30 10:10 - 2014-10-30 10:16 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-30 10:10 - 2014-10-30 10:12 - 00000784 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-10-30 10:10 - 2014-10-30 10:10 - 00002802 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-30 10:10 - 2014-10-30 10:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-30 10:10 - 2014-09-25 17:08 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Downloads\CCleaner Pro & Business v4.17.4808
2014-10-30 10:09 - 2014-10-30 10:09 - 10956458 _____ () C:\Users\Konstantinos Tzontas\Downloads\CCleaner Pro & Business v4.17.4808.rar
2014-10-30 09:58 - 2014-10-30 09:58 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\CrashDumps
2014-10-30 09:32 - 2014-10-30 09:32 - 00090239 _____ () C:\Users\Konstantinos Tzontas\Downloads\Eset.zip
2014-10-30 00:08 - 2014-10-30 00:08 - 00001121 _____ () C:\Users\Public\Desktop\Rosetta Stone TOTALe.lnk
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone Backups
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\Rosetta Stone
2014-10-29 20:34 - 2014-10-29 20:39 - 00000000 ____D () C:\Program Files (x86)\CAO-Faktura
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\USBSRService
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Safely Remove
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\Program Files (x86)\USB Safely Remove
2014-10-29 16:56 - 2014-10-29 16:56 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\Program Files\7-Zip
2014-10-29 13:12 - 2014-10-29 13:12 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-10-29 13:07 - 2014-10-29 19:14 - 00000000 ____D () C:\ProgramData\Norton
2014-10-29 13:04 - 2014-10-29 14:44 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\JDownloader v2.0
2014-10-28 20:38 - 2014-10-28 21:04 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\dvdcss
2014-10-28 20:19 - 2014-10-28 20:19 - 00000000 ____D () C:\ProgramData\IObit
2014-10-28 13:20 - 2014-10-28 13:22 - 17398460 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part2.rar
2014-10-28 12:35 - 2014-10-28 13:10 - 110000000 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part1.rar
2014-10-28 12:31 - 2014-10-28 12:44 - 256441633 _____ () C:\Users\Konstantinos Tzontas\Downloads\toRo.setup.win.rar
2014-10-28 12:30 - 2014-10-30 00:12 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-10-28 12:02 - 2014-10-28 12:02 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\NoVirusThanks
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files\iTunes
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-10-28 12:01 - 2014-10-28 12:01 - 00000000 ____D () C:\Program Files\iPod
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files\Bonjour
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-10-28 11:38 - 2014-10-28 11:39 - 122418480 _____ (Apple Inc.) C:\Users\Konstantinos Tzontas\Downloads\iTunes64Setup.exe
2014-10-28 11:28 - 2014-10-28 11:28 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\ProductData
2014-10-28 11:26 - 2014-10-28 11:30 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-28 11:26 - 2014-10-28 11:26 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-10-27 19:51 - 2014-10-27 19:51 - 00369152 _____ () C:\Users\Konstantinos Tzontas\Downloads\Präsentation2.ppt
2014-10-18 23:33 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-18 23:33 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-18 23:33 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-18 23:33 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-18 23:33 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-18 23:33 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-18 23:33 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-18 23:33 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-18 23:33 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-18 23:33 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-18 23:33 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-18 23:33 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-18 23:33 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-18 23:33 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-18 23:33 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-18 23:33 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-18 23:33 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-18 23:33 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-18 23:33 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-18 23:33 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-18 23:33 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-18 23:33 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-18 23:33 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-18 23:33 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-18 23:33 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-18 23:33 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-18 23:32 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-18 23:32 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-18 23:32 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-18 23:32 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-18 23:32 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-18 23:32 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-18 23:32 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-18 23:32 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-18 23:32 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-18 23:32 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00941272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-10 20:24 - 2014-10-10 20:24 - 11527888 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwsw00.sys
2014-10-10 20:22 - 2014-10-28 11:27 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\IObit
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sports Interactive
2014-10-10 19:37 - 2014-10-10 19:37 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-10 19:12 - 2014-10-30 09:52 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-10 19:12 - 2014-10-10 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-07 23:11 - 2014-10-29 16:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-07 19:55 - 2014-10-07 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-10-07 19:54 - 2014-10-07 19:55 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour-Druckdienste
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\Program Files\Bonjour Print Services
2014-10-03 13:29 - 2014-10-03 13:29 - 00002503 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
2014-10-03 13:29 - 2014-10-03 13:29 - 00000000 ____D () C:\Program Files (x86)\Safari
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-02 11:00 - 2012-04-12 15:13 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-02 10:59 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-02 10:59 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-02 10:49 - 2013-01-11 17:26 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-11-02 10:48 - 2014-06-24 20:30 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job
2014-11-02 10:48 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-02 10:37 - 2011-12-04 02:38 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-11-02 10:37 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2014-11-02 10:02 - 2010-05-25 23:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sonstiges
2014-11-02 10:00 - 2012-04-12 15:13 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-02 10:00 - 2012-04-12 15:13 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-02 10:00 - 2012-02-23 23:27 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-02 09:46 - 2011-02-19 05:24 - 00743788 _____ () C:\Windows\system32\perfh007.dat
2014-11-02 09:46 - 2011-02-19 05:24 - 00164270 _____ () C:\Windows\system32\perfc007.dat
2014-11-02 09:46 - 2009-07-14 06:13 - 01725322 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-30 13:18 - 2012-07-15 18:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\vlc
2014-10-30 12:49 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-30 11:57 - 2011-12-08 23:01 - 00000000 ____D () C:\Windows\Minidump
2014-10-30 11:24 - 2012-06-22 02:38 - 00000000 ____D () C:\Users\Konstantinos Tzontas
2014-10-30 10:47 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Apps\2.0
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0}
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD}
2014-10-30 10:23 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4}
2014-10-30 10:23 - 2014-02-27 14:36 - 00003100 _____ () C:\Windows\System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003042 _____ () C:\Windows\System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653}
2014-10-30 10:22 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B}
2014-10-30 09:50 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Deployment
2014-10-30 00:04 - 2014-08-01 14:07 - 00000097 _____ () C:\Users\Konstantinos Tzontas\AppData\Roaming\WB.CFG
2014-10-29 16:56 - 2012-06-23 16:56 - 00000000 ____D () C:\Program Files\Unlocker
2014-10-28 14:22 - 2012-06-25 18:17 - 00001957 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-28 12:30 - 2012-07-14 17:25 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-10-28 12:01 - 2012-07-19 18:19 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-10-28 11:38 - 2014-06-24 20:30 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9
2014-10-28 11:27 - 2014-08-14 20:38 - 00000000 ____D () C:\Users\Mcx1-KONSTANTINOSTZO
2014-10-28 06:34 - 2011-12-23 15:50 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-23 18:44 - 2013-11-26 17:39 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\F975D96A-6135-4CEB-8114-9FB82F8FD83E.aplzod
2014-10-19 03:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-10-19 02:23 - 2014-05-08 02:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-19 02:04 - 2013-08-15 21:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-19 02:00 - 2011-12-05 16:46 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-10 20:26 - 2012-06-20 21:55 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-10-08 21:31 - 2014-04-13 18:25 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-10-07 19:57 - 2012-07-21 23:33 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\DVDVideoSoft
2014-10-03 13:35 - 2012-10-03 18:46 - 00140380 ____H () C:\Windows\SysWOW64\mlfcache.dat
Some content of TEMP:
====================
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\130590578440535138.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\13059057846203636831.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\130590581423595760.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\13059058144102675774.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\proxy_vole2104173749344083710.dll
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\Quarantine.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-10-16 20:14
==================== End Of Log ============================
FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-11-2014
Ran by Konstantinos Tzontas at 2014-11-02 11:02:49
Running from C:\Users\Konstantinos Tzontas\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Smart Security 7.0 (Disabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Disabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal Firewall (Disabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3monkey (HKCU\...\7202e20a3ee22bab) (Version: 1.0.0.4 - 3monkey.me)
64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.6.0.393 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.3 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe InCopy CC (HKLM-x32\...\{2606D96F-C1A3-1014-9A8F-E3561A1AC78D}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe InDesign CC (HKLM-x32\...\{BC448016-6F11-1014-B0EA-97CEE6E26CB6}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}) (Version: 11.0 - Adobe Systems, Inc.)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
AMPLUS Vokabel-Trainer 1.2 (HKLM-x32\...\AMPLUS Vokabel-Trainer 1.2) (Version: - )
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
B110 (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
calibre (HKLM-x32\...\{A2A971DE-C864-4CF0-8FCA-FF7F569D8476}) (Version: 1.43.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.1.4003 - CDBurnerXP)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.41 - DivX, LLC)
Elevated Installer (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.1.13904 - Landesfinanzdirektion Thüringen)
ESET Smart Security (HKLM\...\{F5A3E880-A737-48F2-A124-6F5D4CEA6AB4}) (Version: 7.0.302.26 - ESET, spol s r. o.)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Football Manager 2014 (HKLM-x32\...\Steam App 231670) (Version: - Sports Interactive)
Free ISO Create Wizard 6.0.7 (HKLM-x32\...\Free ISO Create Wizard_is1) (Version: - FreeAudioVideoSoftTech, Inc.)
Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version: - )
Free YouTube to MP3 Converter version 3.12.46.923 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.46.923 - DVDVideoSoft Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin with myGarmin Agent (HKLM-x32\...\{92A70E71-4F0E-4C05-A777-16424E89F162}) (Version: 2.9.2 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{b43ffffb-1adc-4bcb-b277-7844ebff94da}) (Version: 3.2.17.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel PROSet Wireless (x32 Version: - ) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{3C41721F-AF0F-4086-AA1C-4C7F29076228}) (Version: 14.01.1000 - Intel Corporation)
Intel(R) Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.400.4 - Intel)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM-x32\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Shutdown4U (HKLM-x32\...\Shutdown4U) (Version: - )
SolutionCenter (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.17.0 - Synaptics Incorporated)
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
System Requirements Lab CYRI (64-bit) (HKLM\...\{15AD6738-23E8-4AE6-93E9-434E717EECB2}) (Version: 4.5.1.0 - Husdawg, LLC)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Unlocker 1.9.1-x64 (HKLM\...\Unlocker) (Version: 1.9.1 - Cedrick Collomb)
USB Safely Remove 5.2 (HKLM-x32\...\USB Safely Remove_is1) (Version: - SafelyRemove.com)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtua Tennis 4 (x32 Version: 1.0.0001.130 - Sega) Hidden
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 3.6 - Bazis)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
==================== Restore Points =========================
02-11-2014 08:46:10 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-09-06 09:56 - 2014-09-18 18:16 - 00000000 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {00115E0E-E600-458A-BD95-77DF42AFCABC} - System32\Tasks\{13920426-8421-44B0-A012-30BC09F29C47} => C:\Program Files (x86)\Garmin\Express\Express.exe
Task: {04F7608B-393D-4072-AB70-81F7BD2F07E1} - System32\Tasks\{55619592-4FD9-4558-AAE0-58DF071A7F8B} => C:\Users\Konstantinos Tzontas\Downloads\FileFormatConverters (2).exe
Task: {2FC8D407-727C-434D-AA03-30AEAB73C763} - System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {33D04F6C-C7D6-423A-A9F9-1AFFFB6DD9E4} - System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {36418EFA-2350-47B7-B11A-306DE675131B} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-KONSTANTINOSTZO => C:\Windows\ehome\McxTask.exe [2009-07-14] (Microsoft Corporation)
Task: {39B24B34-D5EF-4668-A2F2-C23ED6650C8C} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {3FFB913A-5FC1-4B01-B255-555F7A7F3016} - System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {44E3FD51-3D3C-48F8-8765-91CF8548DF31} - System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {47EB376D-703D-4040-A24D-7168172FA8D1} - System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {4A2C04C4-092F-4FB6-9E1D-63C3F2F25504} - System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {586A8884-CAB5-41CA-A6E2-B92036545416} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS)
Task: {5AF39471-8B18-44ED-A697-9824FF6C2167} - System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {6418B7BD-1E71-4D08-B196-B6F86BE89901} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-02] (Adobe Systems Incorporated)
Task: {6E7D8AE9-C4FC-4979-A75A-18A9CFF903D4} - System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {816DBEAA-A770-41BC-A9E9-9A058C81C0AD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {8BA604DF-7EA1-45DA-A322-CB66520A93B5} - System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {983A1A1E-B681-440E-A4E8-53C65D93468D} - System32\Tasks\GarminUpdaterTask => D:\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-08-07] ()
Task: {9CB1000D-B3A7-45C7-B375-5045EE6DD826} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {9E913592-CF76-47D1-8B8E-BDCF53413BC7} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.)
Task: {A4FD6F60-56A7-4570-A75D-F1F3274A0998} - System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {A804DBE7-30ED-4752-8275-408542907BD0} - System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4} => C:\Users\Konstantinos Tzontas\Desktop\Rosetta.Stone.TOTALe.v4.1.15.1\Rosetta Stone V4.1.10.exe
Task: {AD791F25-ACEA-44B1-AB36-4D199CCF3AC8} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {B42406A0-0510-4619-A737-55587556012B} - System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {B8183F47-2B43-4015-9456-EA267E2E949A} - System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653} => D:\Roseta Stones\Rosetta Stone TOTALe v 4.1.15 Windows\update.exe [2013-02-18] (Rosetta Stone, Ltd.)
Task: {BF4344DE-FE65-4BC8-994A-05087127ECE6} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {C73BCC69-90CB-4993-8480-EA429F741280} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {C9F173F3-9640-43DB-90F5-3795F8576D27} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-28] (Google Inc.)
Task: {E986BE8F-0B3C-4D8A-9F0E-4220FC8899BF} - System32\Tasks\AdobeAAMUpdater-1.0-KonstantinosTzo-Konstantinos Tzontas => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {F43261AA-FAE7-4FF4-B3D2-9EDA81433EC1} - System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {F592EE46-D815-46C9-91D2-56A1B63D4A76} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002Core.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002UA.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2010-07-15 00:11 - 2010-07-15 00:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll
2010-04-03 03:21 - 2008-10-01 07:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2011-07-07 07:10 - 2013-04-14 15:22 - 00057640 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
2014-05-23 01:10 - 2014-05-23 01:10 - 00671904 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2011-07-07 07:12 - 2011-01-27 01:11 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-08-21 18:49 - 2014-08-21 18:49 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2014-10-30 10:14 - 2014-09-25 17:07 - 00020288 _____ () C:\Program Files\CCleaner\branding.dll
2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-08-31 14:33 - 2011-08-31 14:33 - 00208384 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
2013-09-14 00:51 - 2013-09-14 00:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 00:50 - 2013-09-14 00:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 01098056 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\libglesv2.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 00174408 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\libegl.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 08577864 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\pdf.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 00331592 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\ppGoogleNaClPluginChrome.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 01660232 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (DOS).EML:OECustomProperty
AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (Windows).EML:OECustomProperty
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk => C:\Windows\pss\FancyStart daemon.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Versandhelfer.lnk => C:\Windows\pss\Versandhelfer.lnk.Startup
MSCONFIG\startupreg: 118CF3A891E607F144F4054B8F0D96A24F7C1710._service_run => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: ASUSPRP => "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: BingDesktop => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
MSCONFIG\startupreg: ccleaner => "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
MSCONFIG\startupreg: chromium => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: com.apple.dav.bookmarks.daemon => C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
MSCONFIG\startupreg: DATAMNGR => C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: egui => "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
MSCONFIG\startupreg: Garmin Lifetime Updater => C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82 => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: ISUSPM => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: MyGarminAgent => C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe
MSCONFIG\startupreg: Nuance PDF Reader-reminder => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RapidDrive => C:\Program Files (x86)\RAPIDSHARE AG\RapidDrive\VirtualDrive.exe -autostart
MSCONFIG\startupreg: Setwallpaper => c:\programdata\SetWallpaper.cmd
MSCONFIG\startupreg: SonicMasterTray => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: Trend Micro Titanium => C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none"
MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
MSCONFIG\startupreg: VideoDownloadConverter Home Page Guard 64 bit => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\AppIntegrator64.exe"
MSCONFIG\startupreg: VideoDownloadConverter Search Scope Monitor => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
MSCONFIG\startupreg: VizorHtmlDialog.exe => "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF"
MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
========================= Accounts: ==========================
Administrator (S-1-5-21-2101622981-3415369606-3063477934-500 - Administrator - Disabled)
Gast (S-1-5-21-2101622981-3415369606-3063477934-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2101622981-3415369606-3063477934-1005 - Limited - Enabled)
Konstantinos Tzontas (S-1-5-21-2101622981-3415369606-3063477934-1002 - Administrator - Enabled) => C:\Users\Konstantinos Tzontas
Mcx1-KONSTANTINOSTZO (S-1-5-21-2101622981-3415369606-3063477934-1010 - Limited - Enabled) => C:\Users\Mcx1-KONSTANTINOSTZO
UpdatusUser (S-1-5-21-2101622981-3415369606-3063477934-1000 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Microsoft-Adapter für Miniports virtueller WiFis
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
System errors:
=============
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2014-07-18 22:04:25.422
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.391
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.251
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.204
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.998
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.977
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.895
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.849
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-06-23 16:26:49.699
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-06-23 16:26:49.529
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Percentage of memory in use: 30%
Total physical RAM: 8102.7 MB
Available physical RAM: 5633.3 MB
Total Pagefile: 16203.57 MB
Available Pagefile: 13361.41 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:195.35 GB) (Free:61.03 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:245.41 GB) (Free:99.29 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 496B9619)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=195.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=245.4 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
02.11.2014, 18:06
| #7 |
| /// the machine /// TB-Ausbilder | Windows 7: Internet funktionieren nach CCleaner nich mehrESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.11.2014, 22:58
| #8 |
| | Windows 7: Internet funktionieren nach CCleaner nich mehr Ich habe zusätzlich den WLan treiber neu installiert. Und jetzt funktioniert alles Einwandfrei. Vielen Dank für deine Hilfe und Mühe. Code:
ATTFilter C:\Windows\assembly\GAC_MSIL\Interop.SHDocVw\1.1.0.0__84542ff99aed6a4d\Interop.SHDocVw.dll Variante von Win32/Toolbar.Linkury.G evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\Smartbar.Resources.HistoryAndStatsWrapper.dll Variante von MSIL/Toolbar.Linkury.I evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\Smartbar.Resources.LanguageSettings.resources.dll Variante von MSIL/Toolbar.Linkury.E evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\spbe.dll Variante von MSIL/Toolbar.Linkury.I evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\spbl.dll Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\sppsm.dll Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\spusm.dll Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\srbs.dll Variante von MSIL/Toolbar.Linkury.C evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\srbu.dll Variante von MSIL/Toolbar.Linkury.F evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\srpt.dll Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
C:\Windows\Installer\MSIAD77.tmp-\srpu.dll Variante von MSIL/Toolbar.Linkury.I evtl. unerwünschte Anwendung gelöscht - in Quarantäne kopiert
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2014
Ran by Konstantinos Tzontas at 2014-11-04 22:55:46
Running from C:\Users\Konstantinos Tzontas\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3monkey (HKCU\...\7202e20a3ee22bab) (Version: 1.0.0.4 - 3monkey.me)
64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.6.0.393 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.3 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe InCopy CC (HKLM-x32\...\{2606D96F-C1A3-1014-9A8F-E3561A1AC78D}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe InDesign CC (HKLM-x32\...\{BC448016-6F11-1014-B0EA-97CEE6E26CB6}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}) (Version: 11.0 - Adobe Systems, Inc.)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
AMPLUS Vokabel-Trainer 1.2 (HKLM-x32\...\AMPLUS Vokabel-Trainer 1.2) (Version: - )
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
B110 (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
calibre (HKLM-x32\...\{A2A971DE-C864-4CF0-8FCA-FF7F569D8476}) (Version: 1.43.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.1.4003 - CDBurnerXP)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.41 - DivX, LLC)
Elevated Installer (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.1.13904 - Landesfinanzdirektion Thüringen)
ESET Smart Security (HKLM\...\{F5A3E880-A737-48F2-A124-6F5D4CEA6AB4}) (Version: 7.0.302.26 - ESET, spol s r. o.)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Football Manager 2014 (HKLM-x32\...\Steam App 231670) (Version: - Sports Interactive)
Free ISO Create Wizard 6.0.7 (HKLM-x32\...\Free ISO Create Wizard_is1) (Version: - FreeAudioVideoSoftTech, Inc.)
Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version: - )
Free YouTube to MP3 Converter version 3.12.46.923 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.46.923 - DVDVideoSoft Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin with myGarmin Agent (HKLM-x32\...\{92A70E71-4F0E-4C05-A777-16424E89F162}) (Version: 2.9.2 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{b43ffffb-1adc-4bcb-b277-7844ebff94da}) (Version: 3.2.17.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.28 - Intel) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3517 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.400.4 - Intel)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Intel® Driver Update Utility (HKLM-x32\...\{b7a9966b-b4d6-468e-9f50-ecf4ac2c6ce4}) (Version: 2.0.0.28 - Intel)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM-x32\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Shutdown4U (HKLM-x32\...\Shutdown4U) (Version: - )
SolutionCenter (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.17.0 - Synaptics Incorporated)
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
System Requirements Lab CYRI (64-bit) (HKLM\...\{15AD6738-23E8-4AE6-93E9-434E717EECB2}) (Version: 4.5.1.0 - Husdawg, LLC)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Unlocker 1.9.1-x64 (HKLM\...\Unlocker) (Version: 1.9.1 - Cedrick Collomb)
USB Safely Remove 5.2 (HKLM-x32\...\USB Safely Remove_is1) (Version: - SafelyRemove.com)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtua Tennis 4 (x32 Version: 1.0.0001.130 - Sega) Hidden
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 3.6 - Bazis)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2101622981-3415369606-3063477934-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
==================== Restore Points =========================
02-11-2014 18:05:23 Intel® Driver Update Utility
02-11-2014 18:55:39 Removed Intel(R) PROSet/Wireless WiFi Software.
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-09-06 09:56 - 2014-09-18 18:16 - 00000000 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {00115E0E-E600-458A-BD95-77DF42AFCABC} - System32\Tasks\{13920426-8421-44B0-A012-30BC09F29C47} => C:\Program Files (x86)\Garmin\Express\Express.exe
Task: {04F7608B-393D-4072-AB70-81F7BD2F07E1} - System32\Tasks\{55619592-4FD9-4558-AAE0-58DF071A7F8B} => C:\Users\Konstantinos Tzontas\Downloads\FileFormatConverters (2).exe
Task: {25844C6E-661C-44C9-B639-ACE4DD3ECB4A} - System32\Tasks\P4GIntlCtrl => C:\Program Files\P4G\IntlDPST.exe [2010-12-02] ()
Task: {2FC8D407-727C-434D-AA03-30AEAB73C763} - System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {33D04F6C-C7D6-423A-A9F9-1AFFFB6DD9E4} - System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {36418EFA-2350-47B7-B11A-306DE675131B} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-KONSTANTINOSTZO => C:\Windows\ehome\McxTask.exe [2009-07-14] (Microsoft Corporation)
Task: {39B24B34-D5EF-4668-A2F2-C23ED6650C8C} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {3FFB913A-5FC1-4B01-B255-555F7A7F3016} - System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {44E3FD51-3D3C-48F8-8765-91CF8548DF31} - System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {47EB376D-703D-4040-A24D-7168172FA8D1} - System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {4A2C04C4-092F-4FB6-9E1D-63C3F2F25504} - System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {586A8884-CAB5-41CA-A6E2-B92036545416} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS)
Task: {5AF39471-8B18-44ED-A697-9824FF6C2167} - System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5} => D:\Roseta Stones\Final\Rosetta.Stone.TOTALe.4.1.15\Rosetta Stone TOTALe (win)\Rosetta Stone V4.1.10.exe
Task: {6418B7BD-1E71-4D08-B196-B6F86BE89901} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-02] (Adobe Systems Incorporated)
Task: {6E7D8AE9-C4FC-4979-A75A-18A9CFF903D4} - System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {816DBEAA-A770-41BC-A9E9-9A058C81C0AD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {8BA604DF-7EA1-45DA-A322-CB66520A93B5} - System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {983A1A1E-B681-440E-A4E8-53C65D93468D} - System32\Tasks\GarminUpdaterTask => D:\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-08-07] ()
Task: {9CB1000D-B3A7-45C7-B375-5045EE6DD826} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {9E913592-CF76-47D1-8B8E-BDCF53413BC7} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.)
Task: {A4FD6F60-56A7-4570-A75D-F1F3274A0998} - System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {A804DBE7-30ED-4752-8275-408542907BD0} - System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4} => C:\Users\Konstantinos Tzontas\Desktop\Rosetta.Stone.TOTALe.v4.1.15.1\Rosetta Stone V4.1.10.exe
Task: {AD791F25-ACEA-44B1-AB36-4D199CCF3AC8} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {B42406A0-0510-4619-A737-55587556012B} - System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {B8183F47-2B43-4015-9456-EA267E2E949A} - System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653} => D:\Roseta Stones\Rosetta Stone TOTALe v 4.1.15 Windows\update.exe [2013-02-18] (Rosetta Stone, Ltd.)
Task: {BF4344DE-FE65-4BC8-994A-05087127ECE6} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {C73BCC69-90CB-4993-8480-EA429F741280} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {C9F173F3-9640-43DB-90F5-3795F8576D27} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-28] (Google Inc.)
Task: {E986BE8F-0B3C-4D8A-9F0E-4220FC8899BF} - System32\Tasks\AdobeAAMUpdater-1.0-KonstantinosTzo-Konstantinos Tzontas => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {F43261AA-FAE7-4FF4-B3D2-9EDA81433EC1} - System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A} => C:\Program Files (x86)\Rosetta Stone\Rosetta Stone TOTALe\RosettaStoneTOTALe.exe [2012-07-24] (Rosetta Stone Ltd.)
Task: {F592EE46-D815-46C9-91D2-56A1B63D4A76} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002Core.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-941940040-1748107881-1359751238-1002UA.job => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-12-04 19:00 - 2013-08-21 19:50 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-23 01:10 - 2014-05-23 01:10 - 00671904 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2010-07-15 00:11 - 2010-07-15 00:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll
2010-04-03 03:21 - 2008-10-01 07:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2011-07-07 07:10 - 2013-04-14 15:22 - 00057640 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
2011-07-07 07:12 - 2011-01-27 01:11 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-08-21 18:49 - 2014-08-21 18:49 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2014-10-30 10:14 - 2014-09-25 17:07 - 00020288 _____ () C:\Program Files\CCleaner\branding.dll
2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-08-31 14:33 - 2011-08-31 14:33 - 00208384 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
2013-09-14 00:51 - 2013-09-14 00:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 00:50 - 2013-09-14 00:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 01098056 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\libglesv2.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 00174408 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\libegl.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 08577864 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\pdf.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 00331592 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\ppGoogleNaClPluginChrome.dll
2014-09-06 20:07 - 2014-08-30 03:49 - 01660232 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (DOS).EML:OECustomProperty
AlternateDataStreams: C:\Users\Konstantinos Tzontas\AppData\Roaming\Kommagetrennte Werte (Windows).EML:OECustomProperty
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk => C:\Windows\pss\FancyStart daemon.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Konstantinos Tzontas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Versandhelfer.lnk => C:\Windows\pss\Versandhelfer.lnk.Startup
MSCONFIG\startupreg: 118CF3A891E607F144F4054B8F0D96A24F7C1710._service_run => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: ASUSPRP => "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: BingDesktop => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
MSCONFIG\startupreg: ccleaner => "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
MSCONFIG\startupreg: chromium => C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: com.apple.dav.bookmarks.daemon => C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
MSCONFIG\startupreg: DATAMNGR => C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: egui => "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
MSCONFIG\startupreg: Garmin Lifetime Updater => C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleChromeAutoLaunch_C29B5BF1723F2228C5282085ECB2AD82 => "C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: ISUSPM => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: MyGarminAgent => C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe
MSCONFIG\startupreg: Nuance PDF Reader-reminder => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RapidDrive => C:\Program Files (x86)\RAPIDSHARE AG\RapidDrive\VirtualDrive.exe -autostart
MSCONFIG\startupreg: Setwallpaper => c:\programdata\SetWallpaper.cmd
MSCONFIG\startupreg: SonicMasterTray => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: Trend Micro Titanium => C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none"
MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
MSCONFIG\startupreg: VideoDownloadConverter Home Page Guard 64 bit => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\AppIntegrator64.exe"
MSCONFIG\startupreg: VideoDownloadConverter Search Scope Monitor => "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
MSCONFIG\startupreg: VizorHtmlDialog.exe => "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF"
MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
========================= Accounts: ==========================
Administrator (S-1-5-21-2101622981-3415369606-3063477934-500 - Administrator - Disabled)
Gast (S-1-5-21-2101622981-3415369606-3063477934-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2101622981-3415369606-3063477934-1005 - Limited - Enabled)
Konstantinos Tzontas (S-1-5-21-2101622981-3415369606-3063477934-1002 - Administrator - Enabled) => C:\Users\Konstantinos Tzontas
Mcx1-KONSTANTINOSTZO (S-1-5-21-2101622981-3415369606-3063477934-1010 - Limited - Enabled) => C:\Users\Mcx1-KONSTANTINOSTZO
UpdatusUser (S-1-5-21-2101622981-3415369606-3063477934-1000 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
Name: TAP-Win32 Adapter V9
Description: TAP-Win32 Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Microsoft Virtual WiFi Miniport Adapter #3
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Realtek PCIe GBE Family Controller
Description: Realtek PCIe GBE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8167
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 138388
Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 138388
Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1045
Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1045
Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path name Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path name Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path name Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (11/03/2014 00:23:36 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
System errors:
=============
Error: (11/04/2014 07:11:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (11/04/2014 07:11:31 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (11/04/2014 07:09:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Garmin Core Update Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (11/04/2014 07:09:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Garmin Core Update Service erreicht.
Error: (11/02/2014 07:51:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (11/02/2014 07:51:17 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (11/02/2014 07:48:40 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet:
%%-2147024809
Error: (11/02/2014 07:15:54 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "FRITZ-NAS",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{70F80DF2-E91A-461D-B6C7-AEF1D9FCC421}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (11/02/2014 07:03:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Lavalys EVEREST Kernel Driver" wurde aufgrund folgenden Fehlers nicht gestartet:
%%577
Error: (11/02/2014 07:03:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Lavalys EVEREST Kernel Driver" wurde aufgrund folgenden Fehlers nicht gestartet:
%%577
Microsoft Office Sessions:
=========================
Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 138388
Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 138388
Error: (11/04/2014 09:50:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1045
Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1045
Error: (11/04/2014 09:47:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Eap method DLL path name43900
Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Eap method DLL path name25900
Error: (11/04/2014 07:08:02 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Eap method DLL path name17900
Error: (11/03/2014 00:23:36 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe
CodeIntegrity Errors:
===================================
Date: 2014-11-02 19:03:27.719
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-11-02 19:03:27.613
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-11-02 19:03:27.427
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-11-02 19:03:27.317
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.422
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.391
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.251
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-07-18 22:04:25.204
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.998
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-10 15:54:19.977
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\KONSTA~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Percentage of memory in use: 32%
Total physical RAM: 8102.7 MB
Available physical RAM: 5507.89 MB
Total Pagefile: 16203.57 MB
Available Pagefile: 13281.13 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:195.35 GB) (Free:59.07 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:245.41 GB) (Free:99.19 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 496B9619)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=195.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=245.4 GB) - (Type=07 NTFS)
==================== End Of Log ============================
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-11-2014
Ran by Konstantinos Tzontas (administrator) on KONSTANTINOSTZO on 04-11-2014 22:55:00
Running from C:\Users\Konstantinos Tzontas\Downloads
Loaded Profile: Konstantinos Tzontas (Available profiles: UpdatusUser & Konstantinos Tzontas & Mcx1-KONSTANTINOSTZO)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSRService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Garmin Ltd or its subsidiaries) D:\Garmin\Express Tray\ExpressTray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Garmin Ltd or its subsidiaries) D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
(Google Inc.) C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\Application\37.0.2062.103\nacl64.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2816808 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [98088 2013-04-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191312 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [GarminExpressTrayApp] => D:\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6462744 2014-08-21] (Piriform Ltd)
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\Run: [Akamai NetSession Interface] => "C:\Users\Konstantinos Tzontas\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-2101622981-3415369606-3063477934-1002\...\MountPoints2: {d842016a-97d6-11e2-9017-50465de1d8c8} - F:\AutoRun.exe
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-09-04] (NVIDIA Corporation)
SSODL: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator-cbfs4-0 - {7F3ABB24-2410-4181-AB0E-A5461AA4A208} - C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [1EldosIconOverlay-cbfs4-0] -> {334006DD-1ACD-4BE3-B83E-4069C07A5543} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs4-0] -> {C92E037F-67BA-4865-9696-6AD2D343ECF2} => C:\Program Files (x86)\Common Files\CBFS\WOW64\cbfsMntNtf4.dll (EldoS Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=4805876640124690&q={searchTerms}
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKCU - {16B804AC-BAC9-5D8B-95A7-3AAA3D72D92B} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default
FF DefaultSearchUrl:
FF Homepage: hxxp://wmportal.wmkat.de/
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll No File
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Konstantinos Tzontas\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Konstantinos Tzontas\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Download videos and MP3s from YouTube - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} [2014-10-07]
FF Extension: Real Hide IP - C:\Users\Konstantinos Tzontas\AppData\Roaming\Mozilla\Firefox\Profiles\cror15bd.default\Extensions\support@real-hide-ip.com.xpi [2014-07-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-02-27]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-05-26]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-10-07]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3325585&octid=EB_ORIGINAL_CTID&ISID=M2F8E33AD-82E2-4643-B29E-49550FFEE86B&SearchSource=55&CUI=&UM=6&UP=SPDDA5A4E1-9E67-4116-B7EE-08FDE80DFB9E&SSPV="
CHR Profile: C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-12]
CHR Extension: (MindMeister) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2013-11-29]
CHR Extension: (iCloud) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdilfkhpgihcibbahmoggdaeciachopd [2014-02-26]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-06]
CHR Extension: (YouTube) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-12]
CHR Extension: (Adblock Plus) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-28]
CHR Extension: (Google-Suche) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-12]
CHR Extension: (Search by Image (by Google)) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-11-29]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2013-04-12]
CHR Extension: (Google Play Music) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2014-06-13]
CHR Extension: (iCloud-Lesezeichen) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2014-07-09]
CHR Extension: (Rechtschreibprüfung) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gehceilhofkogkifpjmgdhciddpbcboo [2013-04-12]
CHR Extension: (Vimeo Couch Mode) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjkdhkejcnlmkfdodbkdkelefnkobfif [2013-04-12]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-04-17]
CHR Extension: (Finanzen100) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpobenbpfkbhiccbdifogbiachenpie [2013-04-12]
CHR Extension: (WEB.DE MailCheck) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaogepninmlbinccpbiakcgiolijlllo [2014-09-14]
CHR Extension: (Autodesk Homestyler) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2013-11-29]
CHR Extension: (Google Maps) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2013-04-12]
CHR Extension: (Der Planer der Räume) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2013-11-29]
CHR Extension: (Ghostery) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2014-11-02]
CHR Extension: (Google Wallet) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-06]
CHR Extension: (Click&Clean App) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2013-11-29]
CHR Extension: (Google Mail) - C:\Users\Konstantinos Tzontas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-12]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
CHR StartMenuInternet: Google Chrome - chrome.exe
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 Garmin Core Update Service; D:\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2282272 2014-08-19] (IObit)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
R2 USBSafelyRemoveService; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [1522488 2014-03-25] (Crystal Rich Ltd)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
R1 cbfs4-0; C:\Program Files (x86)\Common Files\CBFS\cbfs4.sys [385728 2013-03-01] (EldoS Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2011-10-24] (TCT International Mobile Ltd) [File not signed]
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2014-10-10] (Intel Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-09-04] (Synaptics Incorporated)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [868848 2014-07-09] (Duplex Secure Ltd.)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-04 22:55 - 2014-11-04 22:55 - 00026740 _____ () C:\Users\Konstantinos Tzontas\Downloads\FRST.txt
2014-11-04 22:54 - 2014-11-04 22:54 - 02114560 _____ (Farbar) C:\Users\Konstantinos Tzontas\Downloads\FRST64.exe
2014-11-04 19:10 - 2014-11-04 19:10 - 00003210 _____ () C:\Windows\System32\Tasks\P4GIntlCtrl
2014-11-03 07:16 - 2014-11-03 07:16 - 00001691 _____ () C:\Users\Konstantinos Tzontas\Desktop\eset.txt
2014-11-02 22:12 - 2014-11-02 22:12 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Net2Phone Dialer
2014-11-02 19:56 - 2014-11-02 19:56 - 00003114 _____ () C:\Windows\DPINST.LOG
2014-11-02 19:54 - 2014-11-02 19:54 - 00000294 _____ () C:\WirelessDiagLog.csv
2014-11-02 19:48 - 2014-11-02 19:49 - 05106392 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-02 19:40 - 2014-11-02 19:40 - 00001139 _____ () C:\Users\Konstantinos Tzontas\Desktop\checkup.txt
2014-11-02 19:15 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2014-11-02 19:15 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2014-11-02 19:12 - 2014-11-02 19:12 - 00000000 ____D () C:\Intel
2014-11-02 19:12 - 2014-04-09 12:59 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2014-11-02 19:12 - 2014-04-09 12:59 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2014-11-02 19:12 - 2014-03-26 10:05 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-11-02 19:12 - 2014-03-26 10:05 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2014-11-02 19:12 - 2014-03-26 10:04 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3517.dll
2014-11-02 19:12 - 2014-03-20 08:48 - 00017074 _____ () C:\Windows\system32\iglhxs64.vp
2014-11-02 19:12 - 2014-03-20 08:41 - 11176448 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 09007616 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 05363520 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-11-02 19:12 - 2014-03-20 08:40 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00440320 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00432128 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00431104 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00429056 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00428544 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00410624 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00384512 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2014-11-02 19:12 - 2014-03-20 08:40 - 00175104 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2014-11-02 19:12 - 2014-03-20 08:40 - 00099328 _____ () C:\Windows\system32\igdde64.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00078848 _____ () C:\Windows\SysWOW64\igdde32.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-11-02 19:12 - 2014-03-20 08:40 - 00009728 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2014-11-02 19:12 - 2014-03-20 08:39 - 00330752 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2014-11-02 19:12 - 2014-03-20 08:39 - 00025088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2014-11-02 19:12 - 2014-03-20 08:37 - 13031424 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2014-11-02 19:12 - 2014-03-20 08:37 - 10812928 _____ (Intel Corporation) C:\Windows\SysWOW64\ig4icd32.dll
2014-11-02 19:10 - 2014-11-02 19:10 - 00000000 ____D () C:\ProgramData\IntelDLM
2014-11-02 19:06 - 2014-11-02 19:06 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Intel
2014-11-02 19:05 - 2014-11-02 19:10 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-02 19:05 - 2014-11-02 19:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2014-11-02 19:05 - 2014-11-02 19:05 - 00000000 ____D () C:\Program Files (x86)\Intel Driver Update Utility
2014-11-02 19:01 - 2014-11-04 19:07 - 00000318 _____ () C:\Windows\setupact.log
2014-11-02 19:01 - 2014-11-02 19:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-02 18:51 - 2014-11-02 18:51 - 00110368 _____ () C:\Users\Konstantinos Tzontas\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-02 10:56 - 2014-11-02 10:56 - 00000000 ____D () C:\Windows\ERUNT
2014-11-02 09:56 - 2014-11-02 10:41 - 00000000 ____D () C:\Program Files (x86)\FileHippo.com
2014-11-02 09:48 - 2014-11-02 09:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-02 09:47 - 2014-11-02 10:47 - 00000000 ____D () C:\AdwCleaner
2014-10-30 11:32 - 2014-11-04 19:42 - 00345010 _____ () C:\Windows\WindowsUpdate.log
2014-10-30 11:29 - 2014-11-04 22:55 - 00000000 ____D () C:\FRST
2014-10-30 11:24 - 2014-10-30 11:24 - 00000020 _____ () C:\Users\Konstantinos Tzontas\defogger_reenable
2014-10-30 10:26 - 2014-10-30 10:26 - 00002358 _____ () C:\Windows\System32\Tasks\CCleanerClean
2014-10-30 10:26 - 2014-10-30 10:26 - 00000258 _____ () C:\Windows\Tasks\CCleanerClean.job
2014-10-30 10:10 - 2014-10-30 10:16 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-30 10:10 - 2014-10-30 10:12 - 00000784 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-10-30 10:10 - 2014-10-30 10:10 - 00002802 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-30 10:10 - 2014-10-30 10:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-30 10:10 - 2014-09-25 17:08 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Downloads\CCleaner Pro & Business v4.17.4808
2014-10-30 10:09 - 2014-10-30 10:09 - 10956458 _____ () C:\Users\Konstantinos Tzontas\Downloads\CCleaner Pro & Business v4.17.4808.rar
2014-10-30 09:58 - 2014-10-30 09:58 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\CrashDumps
2014-10-30 00:08 - 2014-10-30 00:08 - 00001121 _____ () C:\Users\Public\Desktop\Rosetta Stone TOTALe.lnk
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone Backups
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosetta Stone
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\RosettaStoneLtdServices
2014-10-30 00:08 - 2014-10-30 00:08 - 00000000 ____D () C:\Program Files (x86)\Rosetta Stone
2014-10-29 20:34 - 2014-10-29 20:39 - 00000000 ____D () C:\Program Files (x86)\CAO-Faktura
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\USBSRService
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Safely Remove
2014-10-29 16:57 - 2014-10-29 16:57 - 00000000 ____D () C:\Program Files (x86)\USB Safely Remove
2014-10-29 16:56 - 2014-10-29 16:56 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-10-29 14:55 - 2014-10-29 14:55 - 00000000 ____D () C:\Program Files\7-Zip
2014-10-29 13:12 - 2014-10-29 13:12 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-10-29 13:07 - 2014-10-29 19:14 - 00000000 ____D () C:\ProgramData\Norton
2014-10-29 13:04 - 2014-10-29 14:44 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\JDownloader v2.0
2014-10-28 20:38 - 2014-10-28 21:04 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\dvdcss
2014-10-28 20:19 - 2014-10-28 20:19 - 00000000 ____D () C:\ProgramData\IObit
2014-10-28 13:20 - 2014-10-28 13:22 - 17398460 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part2.rar
2014-10-28 12:35 - 2014-10-28 13:10 - 110000000 _____ () C:\Users\Konstantinos Tzontas\Downloads\ROST.TOTE.v4.5.5.WIN.part1.rar
2014-10-28 12:31 - 2014-10-28 12:44 - 256441633 _____ () C:\Users\Konstantinos Tzontas\Downloads\toRo.setup.win.rar
2014-10-28 12:30 - 2014-10-30 00:12 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-10-28 12:02 - 2014-10-28 12:02 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\NoVirusThanks
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-10-28 12:02 - 2014-10-28 12:02 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files\iTunes
2014-10-28 12:01 - 2014-10-28 12:02 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-10-28 12:01 - 2014-10-28 12:01 - 00000000 ____D () C:\Program Files\iPod
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files\Bonjour
2014-10-28 11:55 - 2014-10-28 11:55 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-10-28 11:28 - 2014-10-28 11:28 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\ProductData
2014-10-28 11:26 - 2014-10-28 11:30 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-28 11:26 - 2014-10-28 11:26 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-10-27 19:51 - 2014-10-27 19:51 - 00369152 _____ () C:\Users\Konstantinos Tzontas\Downloads\Präsentation2.ppt
2014-10-18 23:33 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-18 23:33 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-18 23:33 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-18 23:33 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-18 23:33 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-18 23:33 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-18 23:33 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-18 23:33 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-18 23:33 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-18 23:33 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-18 23:33 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-18 23:33 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-18 23:33 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-18 23:33 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-18 23:33 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-18 23:33 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-18 23:33 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-18 23:33 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-18 23:33 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-18 23:33 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-18 23:33 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-18 23:33 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-18 23:33 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-18 23:33 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-18 23:33 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-18 23:33 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-18 23:33 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-18 23:33 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-18 23:33 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-18 23:33 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-18 23:33 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-18 23:33 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-18 23:33 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-18 23:33 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-18 23:33 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-18 23:33 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-18 23:33 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-18 23:33 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-18 23:33 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-18 23:33 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-18 23:33 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-18 23:32 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-18 23:32 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-18 23:32 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-18 23:32 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-18 23:32 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-18 23:32 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-18 23:32 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-18 23:32 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-18 23:32 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-18 23:32 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-18 23:32 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-18 23:32 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00941272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-10-10 20:26 - 2014-10-10 20:26 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-10 20:24 - 2014-10-10 20:24 - 11527888 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwsw00.sys
2014-10-10 20:22 - 2014-10-28 11:27 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\IObit
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive
2014-10-10 20:06 - 2014-10-10 20:06 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sports Interactive
2014-10-10 19:37 - 2014-10-10 19:37 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-10 19:12 - 2014-10-30 09:52 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-10 19:12 - 2014-10-10 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-07 23:11 - 2014-10-29 16:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-07 19:55 - 2014-10-07 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-10-07 19:54 - 2014-10-07 19:55 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour-Druckdienste
2014-10-06 18:00 - 2014-10-06 18:00 - 00000000 ____D () C:\Program Files\Bonjour Print Services
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-04 22:00 - 2012-04-12 15:13 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-04 21:57 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-04 21:57 - 2009-07-14 05:45 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-04 21:52 - 2011-02-19 05:24 - 00743788 _____ () C:\Windows\system32\perfh007.dat
2014-11-04 21:52 - 2011-02-19 05:24 - 00164270 _____ () C:\Windows\system32\perfc007.dat
2014-11-04 21:52 - 2009-07-14 06:13 - 01725322 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-04 19:09 - 2013-01-11 17:26 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-11-04 19:08 - 2014-06-24 20:30 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9.job
2014-11-04 19:08 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-02 19:59 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-02 19:57 - 2012-06-20 21:53 - 00000000 ____D () C:\ProgramData\Intel
2014-11-02 19:56 - 2012-06-22 02:38 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\Intel
2014-11-02 19:56 - 2012-06-20 21:56 - 00000000 ____D () C:\Program Files\Intel
2014-11-02 19:56 - 2012-06-20 21:50 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-11-02 19:49 - 2011-10-26 17:01 - 00015854 _____ () C:\Windows\system32\results.xml
2014-11-02 19:48 - 2013-09-04 20:11 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-11-02 19:48 - 2013-09-04 20:11 - 00000000 ____D () C:\Windows\system32\NV
2014-11-02 19:48 - 2011-12-04 02:38 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-11-02 19:16 - 2012-06-20 21:46 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-11-02 18:42 - 2011-12-08 23:01 - 00000000 ____D () C:\Windows\Minidump
2014-11-02 10:37 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2014-11-02 10:02 - 2010-05-25 23:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\Documents\Sonstiges
2014-11-02 10:00 - 2012-04-12 15:13 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-02 10:00 - 2012-04-12 15:13 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-02 10:00 - 2012-02-23 23:27 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-30 13:18 - 2012-07-15 18:11 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\vlc
2014-10-30 11:24 - 2012-06-22 02:38 - 00000000 ____D () C:\Users\Konstantinos Tzontas
2014-10-30 10:47 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Apps\2.0
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{B474A0DB-9F35-4EB5-AAE2-E73DBF3803C0}
2014-10-30 10:24 - 2014-07-08 18:39 - 00003118 _____ () C:\Windows\System32\Tasks\{93EFF320-D6AC-42AB-882B-0550380DFDA5}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{FC9605AD-8C5C-4B9D-85E1-5ED78A8A0A1E}
2014-10-30 10:23 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{CD92F89F-6D26-42B4-904A-94FC273D87CD}
2014-10-30 10:23 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{E966EC84-A555-40E9-8760-C1CE4AE6E3F4}
2014-10-30 10:23 - 2014-02-27 14:36 - 00003100 _____ () C:\Windows\System32\Tasks\{5D5B944F-8084-42CF-B890-B81904544AB4}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A1ACADF2-8BB4-426A-83A2-99905DE229A7}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{A126F916-BC71-4EF7-8EB5-28D246A7061A}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{7EC83B54-EA03-4126-9481-B7EB33069936}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{73BF7EAC-EC2F-4E28-8B1B-735D1E0AA1DC}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{6ADAF23E-B677-49F3-9B04-2FCA1181B30D}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003072 _____ () C:\Windows\System32\Tasks\{694E8CCD-50F9-4834-8E96-EE78E59B82E2}
2014-10-30 10:22 - 2014-07-12 22:38 - 00003042 _____ () C:\Windows\System32\Tasks\{30BCE388-8E53-4FCC-AF97-BDE23401A653}
2014-10-30 10:22 - 2014-07-09 21:10 - 00003072 _____ () C:\Windows\System32\Tasks\{6C12AFBA-2EF6-4D3B-A8F2-9BF342F9C85B}
2014-10-30 09:50 - 2012-06-22 08:02 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\Deployment
2014-10-30 00:04 - 2014-08-01 14:07 - 00000097 _____ () C:\Users\Konstantinos Tzontas\AppData\Roaming\WB.CFG
2014-10-29 16:56 - 2012-06-23 16:56 - 00000000 ____D () C:\Program Files\Unlocker
2014-10-28 14:22 - 2012-06-25 18:17 - 00001957 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-28 12:30 - 2012-07-14 17:25 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-10-28 12:01 - 2012-07-19 18:19 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-10-28 11:38 - 2014-06-24 20:30 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf8fe2ba92f8e9
2014-10-28 11:27 - 2014-08-14 20:38 - 00000000 ____D () C:\Users\Mcx1-KONSTANTINOSTZO
2014-10-28 06:34 - 2011-12-23 15:50 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-23 18:44 - 2013-11-26 17:39 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Local\F975D96A-6135-4CEB-8114-9FB82F8FD83E.aplzod
2014-10-19 03:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-10-19 02:23 - 2014-05-08 02:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-19 02:04 - 2013-08-15 21:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-19 02:00 - 2011-12-05 16:46 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-10 20:26 - 2012-06-20 21:55 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-10-08 21:31 - 2014-04-13 18:25 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-10-07 19:57 - 2012-07-21 23:33 - 00000000 ____D () C:\Users\Konstantinos Tzontas\AppData\Roaming\DVDVideoSoft
Some content of TEMP:
====================
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\Quarantine.exe
C:\Users\Konstantinos Tzontas\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-02 20:55
==================== End Of Log ============================
--- --- --- |
|
05.11.2014, 17:44
| #9 |
| /// the machine /// TB-Ausbilder | Windows 7: Internet funktionieren nach CCleaner nich mehr Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Windows 7: Internet funktionieren nach CCleaner nich mehr |
| 4d36e972-e325-11ce-bfc1-08002be10318, adware, chromium, computer, converter, desktop, device driver, dvdvideosoft ltd., fehler 0x00028002, fehlermeldung, flash player, helper, homepage, iexplore.exe, installation, internet, monitor, registry, required, scan, server, software, ursache: 0x00028002, vergewissern sie sich, windows, wlan |
Linear-Darstellung
