| |
| |||||||
Log-Analyse und Auswertung: Recycle.Bin virus auf externer Festplatte, Daten unsichtbarWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
27.09.2013, 13:10
| #1 |
| |  Recycle.Bin virus auf externer Festplatte, Daten unsichtbar Hey ich hab schon in nem anderen Threat gelesen das jemand diesen miesen Virus auf seiner Festplatte hatte. Dementsprechend hab ich alles was er machen sollte auch gemacht also MBAM OTL laufen lassen und ne Textdatei von meinen Programmen gemacht. Wie der Titel schon sagt hab ich das problem das ich nicht an die Daten der Festplatte komme. Ich hab sie mit ubuntu aber sehen können aber aus irgendeinem Grund nicht öffnen können. Naja ich wollte jetzt einfach den Virus bereinigen. Logs füg ich an Danke schon mal im vorraus!!! Malwarebytes Anti-Malware 1.75.0.1300 Malwarebytes : Free Anti-Malware download Database version: v2013.09.27.01 Windows 7 x64 NTFS Internet Explorer 8.0.7600.16385 Internet :: PETER-PC [limited] 27.09.2013 11:21:15 MBAM-log-2013-09-27 (13-23-54).txt Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|L:\|) Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 356690 Time elapsed: 2 hour(s), 9 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 5 HKCR\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} (PUP.Optional.QuickShare.A) -> No action taken. HKCR\IESmartBar.BHO (PUP.Optional.QuickShare.A) -> No action taken. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} (PUP.Optional.QuickShare.A) -> No action taken. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} (PUP.Optional.QuickShare.A) -> No action taken. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} (PUP.Optional.QuickShare.A) -> No action taken. Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 29 C:\Users\Peter\AppData\Local\Smartbar (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\ar (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Configs (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\de (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\es (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\fr (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\he (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\PublisherImages (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\it (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\pt (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\ru (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\tr (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\Configs (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\ServicesPlugins (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles\Configs (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles\Profiles (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles\RollBack (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles\RollBack\Profiles (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\QuickShare.exe_StrongName_vuedtbpoockmp1sq45awfxuouevabx0i (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\QuickShare.exe_StrongName_vuedtbpoockmp1sq45awfxuouevabx0i\1.6.1.696 (PUP.Optional.SmartBar.A) -> No action taken. Files Detected: 575 C:\Users\Internet\Downloads\iLividSetup.exe (PUP.Optional.Bandoo) -> No action taken. C:\Users\Internet\Downloads\iLividSetupV1.exe (PUP.Optional.Bandoo) -> No action taken. D:\Neu-1\Ableton Live v8.3 + Max4Live + Crack (PC)\Ableton Live v8.3 + Max4Live\Ableton Suite v8.3 [PC]\ableton.suite.8.3-osx_win-patches.zip (PUP.RiskwareTool.CK) -> No action taken. D:\Neu-1\Downloads\SoftonicDownloader_fuer_free-wav-to-mp3-converter(2).exe (PUP.OfferBundler.ST) -> No action taken. D:\Neu-1\Downloads-2\KEYGEN.EXE (RiskWare.Tool.CK) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\0Extension.crx (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\1Extension.crx (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\BrowserHelper.exe (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\BrowserHelper.exe.config (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\IEButton.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Interop.SHDocVw.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\MACTrackBarLib.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Microsoft.mshtml.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.Common.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.Logging.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Microsoft.Practices.ObjectBuilder.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\NDde.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\ProductsRemovalTool.exe (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\QuickShare.exe.config (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\RegAsm.exe (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.GUI.Multimedia.Loader.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.EventManager.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.Base.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.ChromeLocalPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.DefaultBrowser.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.FireFoxLocalPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.ShareManagerLocalPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Personalization.BusinessEntities.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Personalization.BusinessLogic.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Personalization.Settings.PersonalizationSettingsManager.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Personalization.Settings.UserSettingsManager.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.AutomaticUpdates.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.BrowserHelperUtils.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.ProcessDownMonitor.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.ProductsRemovalLibary.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.ProductUninstaller.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.SetBrowsersSettings.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.SetBrowsersSettingsAutoUpdater.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.SideBySide.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.XmlSerializers.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.Translations.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.UrlHistorySupplier.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Smartbar.Resources.Utilities.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\SmartbarInstallationIcon.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\SmartbarInternetExplorerBHO.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\SmartbarInternetExplorerExtension.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\SmartbarVersionsHelper.exe (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\SmartbarVersionsHelper.exe.config (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\ar\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Configs\QueryParameters.xml (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\Configs\XmlSideBySideProtocol.xml (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\es\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\fr\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\he\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome.manifest (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\install.rdf (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\externalJS.js (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\FBImagePreview.js (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\FirefoxExtensionMain.css (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\FirefoxExtensionMain.js (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\FirefoxExtensionMain.xul (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\InternalJS.js (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\jquery-1.5.1.min.js (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\publisherDefinitions.js (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\down-1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\down-2.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\down-3.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\down.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\fb.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\fblike.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\gmail.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\googleplus.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\hide-1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\hide-2.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\hide-3.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\left.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\maximize-1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\maximize-2.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\maximize-3.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\mgsplusvideo.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\minimize-1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\minimize-2.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\minimize-3.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\pinit.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\right.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\show-1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\show-2.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\show-3.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\twitter.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\up-1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\up-2.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\up-3.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\up.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\PublisherImages\QuickShare.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\PublisherImages\QuickShare128.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\PublisherImages\QuickShare16.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\ISmartbarFireFoxRemotePlugin.xpt (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_10.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_11.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_12.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_13.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_14.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_15.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_16.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_17.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_18.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_5.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_6.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_7.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_8.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_9.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\it\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\pt\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\ru\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Application\tr\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\Configs\UserInfo.xml (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\00659FA4-2CAD-45fc-A8A0-DB7862840BA9.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\00659FA4-2CAD-45fc-A8A0-DB7862840BA9hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\00659FA4-2CAD-45fc-A8A0-DB7862840BA9press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\07a9a58b-c653-4285-a870-1fa70cb6c00c.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\07a9a58b-c653-4285-a870-1fa70cb6c00chover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\07a9a58b-c653-4285-a870-1fa70cb6c00cPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\0E29BC94-7C9B-4A23-B682-81D0D1A806E1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\0E29BC94-7C9B-4A23-B682-81D0D1A806E1hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\0E29BC94-7C9B-4A23-B682-81D0D1A806E1press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\0FA6F971-16AA-4921-A39F-543C9839CABE.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\0FA6F971-16AA-4921-A39F-543C9839CABEhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\0FA6F971-16AA-4921-A39F-543C9839CABEpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\1A039A19-BD34-4760-8DE0-E9A8E8AA8827.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\1A039A19-BD34-4760-8DE0-E9A8E8AA8827Ehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\1A039A19-BD34-4760-8DE0-E9A8E8AA8827press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\30DFF8F0-BA79-4360-A3EA-51B6D006133C.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\30DFF8F0-BA79-4360-A3EA-51B6D006133CHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\30DFF8F0-BA79-4360-A3EA-51B6D006133CPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\372FF78B-6E4B-4B38-8E3F-797B4680FB98.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\372FF78B-6E4B-4B38-8E3F-797B4680FB98hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\372FF78B-6E4B-4B38-8E3F-797B4680FB98press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\39079B96-6DD1-42DE-89E6-76F79C8BB4E4.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\39079B96-6DD1-42DE-89E6-76F79C8BB4E4Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\39079B96-6DD1-42DE-89E6-76F79C8BB4E4Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\3f9ac55c-6db5-4c01-9d34-a92da2347be6.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\3f9ac55c-6db5-4c01-9d34-a92da2347be6hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\3f9ac55c-6db5-4c01-9d34-a92da2347be6press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\4a110a71-0e7e-4552-af6e-3ef88b2d6511.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\4a110a71-0e7e-4552-af6e-3ef88b2d6511Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\4a110a71-0e7e-4552-af6e-3ef88b2d6511Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5252af60-ef03-41a8-babe-415dba235478.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5252af60-ef03-41a8-babe-415dba235478Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5252af60-ef03-41a8-babe-415dba235478Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\536b9063-fc09-4e82-8769-73c77317aae6.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\536b9063-fc09-4e82-8769-73c77317aae6hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\536b9063-fc09-4e82-8769-73c77317aae6press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\56591C8E-DA35-4A97-AC9B-5055E0F7089E.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\56591C8E-DA35-4A97-AC9B-5055E0F7089Ehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\56591C8E-DA35-4A97-AC9B-5055E0F7089Epress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5D0A6D97-85F2-47E9-8F04-04A747B25A0E.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5D0A6D97-85F2-47E9-8F04-04A747B25A0Ehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5D0A6D97-85F2-47E9-8F04-04A747B25A0Epress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5F488FA5-C35B-44A9-A0E4-2C7B41035780.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5F488FA5-C35B-44A9-A0E4-2C7B41035780hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\5F488FA5-C35B-44A9-A0E4-2C7B41035780press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\65B1A402-FC79-410D-AE1C-AF92E206AC1D.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\65B1A402-FC79-410D-AE1C-AF92E206AC1Dhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\65B1A402-FC79-410D-AE1C-AF92E206AC1Dpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7EC.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7EChover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7ECpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\708d8b1e-6545-474a-9f07-d854acf8ad43.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\708d8b1e-6545-474a-9f07-d854acf8ad43hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\708d8b1e-6545-474a-9f07-d854acf8ad43press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\72CDFC8C-6F2D-4df8-9811-18C4D682C406.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\72CDFC8C-6F2D-4df8-9811-18C4D682C406hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\72CDFC8C-6F2D-4df8-9811-18C4D682C406press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\7fe83ae9-caef-41f0-aa99-d114c0ce3941.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\7fe83ae9-caef-41f0-aa99-d114c0ce3941hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\7fe83ae9-caef-41f0-aa99-d114c0ce3941press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\8217d395-9ebe-4ebb-807c-38cc911a307f.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\8217d395-9ebe-4ebb-807c-38cc911a307fHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\8217d395-9ebe-4ebb-807c-38cc911a307fPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\87442BEF-FD31-405C-A807-650CB7CC8886.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\87442BEF-FD31-405C-A807-650CB7CC8886hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\87442BEF-FD31-405C-A807-650CB7CC8886press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\89582936-094C-4880-B87A-2AF16FC33B2C.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\89582936-094C-4880-B87A-2AF16FC33B2Chover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\89582936-094C-4880-B87A-2AF16FC33B2Cpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\8b3608b1-c2d5-4ad3-a382-33601228c6d3.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\8b3608b1-c2d5-4ad3-a382-33601228c6d3hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\8b3608b1-c2d5-4ad3-a382-33601228c6d3press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\8F4131CE-D4F0-4F08-9102-78C397F3748C.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\8F4131CE-D4F0-4F08-9102-78C397F3748CHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\8F4131CE-D4F0-4F08-9102-78C397F3748CPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\90165d32-a3ef-438c-8625-be9b538b6eba.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\90165d32-a3ef-438c-8625-be9b538b6ebaHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\90165d32-a3ef-438c-8625-be9b538b6ebaPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\929407CC-7E48-47E0-A9F9-A4A167AC24D1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\929407CC-7E48-47E0-A9F9-A4A167AC24D1hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\929407CC-7E48-47E0-A9F9-A4A167AC24D1press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\95ae73f0-9799-46fd-bceb-57efcb7f0537.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\95ae73f0-9799-46fd-bceb-57efcb7f0537hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\95ae73f0-9799-46fd-bceb-57efcb7f0537press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\A75C6A50-13B0-4704-AA87-8DD113E31310.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\A75C6A50-13B0-4704-AA87-8DD113E31310hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\A75C6A50-13B0-4704-AA87-8DD113E31310press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\a94e6710-6021-4cdc-82de-1c001238bd8f.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\a94e6710-6021-4cdc-82de-1c001238bd8fHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\a94e6710-6021-4cdc-82de-1c001238bd8fPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\B1BEF453-913F-4EC4-B057-A2BB21C09DCB.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\B1BEF453-913F-4EC4-B057-A2BB21C09DCBhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\B1BEF453-913F-4EC4-B057-A2BB21C09DCBpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\bc8dcde3-3fd0-4f9b-af5d-15c20f3239ab.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\bc8dcde3-3fd0-4f9b-af5d-15c20f3239ab.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\bc8dcde3-3fd0-4f9b-af5d-15c20f3239abhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\bc8dcde3-3fd0-4f9b-af5d-15c20f3239abpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\c1546a00-e42d-4ce7-aac5-5353a895f3cf.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\c1546a00-e42d-4ce7-aac5-5353a895f3cfhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\c1546a00-e42d-4ce7-aac5-5353a895f3cfpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\CE1500FE-6F59-421C-8005-3E137AC051A2.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\CE1500FE-6F59-421C-8005-3E137AC051A2hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\CE1500FE-6F59-421C-8005-3E137AC051A2press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D2B0680C-17C4-492D-85D7-D4CA3E724D50.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D2B0680C-17C4-492D-85D7-D4CA3E724D50hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D2B0680C-17C4-492D-85D7-D4CA3E724D50press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D469E1BA-B745-45B3-B7EE-378E000E74C8.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D469E1BA-B745-45B3-B7EE-378E000E74C8Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D469E1BA-B745-45B3-B7EE-378E000E74C8Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D5113B95-781C-4737-A26F-3ED3A2CB876F.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D5113B95-781C-4737-A26F-3ED3A2CB876Fhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D5113B95-781C-4737-A26F-3ED3A2CB876Fpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\e2870479-a572-412b-8a8f-5604d19b55cd.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\e2870479-a572-412b-8a8f-5604d19b55cdhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\e2870479-a572-412b-8a8f-5604d19b55cdpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E3345571-EEF9-4041-8C24-F7F5A9331C23.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E3345571-EEF9-4041-8C24-F7F5A9331C23hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E3345571-EEF9-4041-8C24-F7F5A9331C23press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\e357f164-c5d8-4257-aab2-fe0cad41c12e.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\e357f164-c5d8-4257-aab2-fe0cad41c12e.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\e357f164-c5d8-4257-aab2-fe0cad41c12ehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\e357f164-c5d8-4257-aab2-fe0cad41c12epress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E458493F-867F-4712-A3AF-D9664ED47C19.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E458493F-867F-4712-A3AF-D9664ED47C19hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E458493F-867F-4712-A3AF-D9664ED47C19press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E52BEFE7-6535-439c-B168-A3B105E4212E.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E52BEFE7-6535-439c-B168-A3B105E4212Ehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E52BEFE7-6535-439c-B168-A3B105E4212Epress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E8584703-6CA5-4351-82CC-09E40938A066.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E8584703-6CA5-4351-82CC-09E40938A066hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\E8584703-6CA5-4351-82CC-09E40938A066press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\e8967c62-9ea0-4fde-9832-2c10f1d580de.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\e8967c62-9ea0-4fde-9832-2c10f1d580dehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\e8967c62-9ea0-4fde-9832-2c10f1d580depress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\EA99E20A-FBBA-4197-954B-E2013280A29B.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\EA99E20A-FBBA-4197-954B-E2013280A29Bhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\EA99E20A-FBBA-4197-954B-E2013280A29Bpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\f7fd4890-7f89-4c73-8ff2-52105657cbb6.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\f7fd4890-7f89-4c73-8ff2-52105657cbb6Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\f7fd4890-7f89-4c73-8ff2-52105657cbb6Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BD.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BDhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BDpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\fac5189f-f2c7-4eed-bae8-011eca170d7b.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\fac5189f-f2c7-4eed-bae8-011eca170d7bhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\icons\fac5189f-f2c7-4eed-bae8-011eca170d7bpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\00659FA4-2CAD-45fc-A8A0-DB7862840BA9.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\00659FA4-2CAD-45fc-A8A0-DB7862840BA9hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\00659FA4-2CAD-45fc-A8A0-DB7862840BA9press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\07a9a58b-c653-4285-a870-1fa70cb6c00c.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\07a9a58b-c653-4285-a870-1fa70cb6c00c.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\07a9a58b-c653-4285-a870-1fa70cb6c00chover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\07a9a58b-c653-4285-a870-1fa70cb6c00cpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\0DB19630-EB33-4B18-8357-78FC2687C788.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\0DB19630-EB33-4B18-8357-78FC2687C788hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\0DB19630-EB33-4B18-8357-78FC2687C788press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\0E29BC94-7C9B-4A23-B682-81D0D1A806E1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\0E29BC94-7C9B-4A23-B682-81D0D1A806E1hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\0E29BC94-7C9B-4A23-B682-81D0D1A806E1press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\0FA6F971-16AA-4921-A39F-543C9839CABE.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\0FA6F971-16AA-4921-A39F-543C9839CABEhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\0FA6F971-16AA-4921-A39F-543C9839CABEpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE081313.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE081313hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE081313press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE08E613.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE08E613hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE08E613press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE131313.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE131313hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE131313press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\1A039A19-BD34-4760-8DE0-E9A8E8AA8827.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\1A039A19-BD34-4760-8DE0-E9A8E8AA8827hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\1A039A19-BD34-4760-8DE0-E9A8E8AA8827press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\2141A104-423C-43EF-A27A-CA0DADB7B9BC.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\2141A104-423C-43EF-A27A-CA0DADB7B9BChover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\2141A104-423C-43EF-A27A-CA0DADB7B9BCpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\28E2C7BC-F857-44D5-A42F-7DD66FAB5EE6.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\28E2C7BC-F857-44D5-A42F-7DD66FAB5EE6hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\28E2C7BC-F857-44D5-A42F-7DD66FAB5EE6press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\30DEBC8A-1CC6-4480-B3E5-C55E214043A8.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\30DEBC8A-1CC6-4480-B3E5-C55E214043A8Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\30DEBC8A-1CC6-4480-B3E5-C55E214043A8Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\30DFF8F0-BA79-4360-A3EA-51B6D006133C.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\30DFF8F0-BA79-4360-A3EA-51B6D006133CHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\30DFF8F0-BA79-4360-A3EA-51B6D006133CPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\372FF78B-6E4B-4B38-8E3F-797B4680FB98.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\372FF78B-6E4B-4B38-8E3F-797B4680FB98hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\372FF78B-6E4B-4B38-8E3F-797B4680FB98press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\39079B96-6DD1-42DE-89E6-76F79C8BB4E4.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\39079B96-6DD1-42DE-89E6-76F79C8BB4E4Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\39079B96-6DD1-42DE-89E6-76F79C8BB4E4Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\3f9ac55c-6db5-4c01-9d34-a92da2347be6.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\3f9ac55c-6db5-4c01-9d34-a92da2347be6.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\3f9ac55c-6db5-4c01-9d34-a92da2347be6hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\3f9ac55c-6db5-4c01-9d34-a92da2347be6press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\47BFF758-9581-4C68-9293-1181A70CDEE8.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\47BFF758-9581-4C68-9293-1181A70CDEE8Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\47BFF758-9581-4C68-9293-1181A70CDEE8Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\48A9C19C-5A4C-4652-A6E7-1C17AEE45675.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\48A9C19C-5A4C-4652-A6E7-1C17AEE45675Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\48A9C19C-5A4C-4652-A6E7-1C17AEE45675Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\4a110a71-0e7e-4552-af6e-3ef88b2d6511.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\4a110a71-0e7e-4552-af6e-3ef88b2d6511.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\4a110a71-0e7e-4552-af6e-3ef88b2d6511Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\4a110a71-0e7e-4552-af6e-3ef88b2d6511Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\511B6809-2468-4A36-A6FC-FC24F05499BE.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\511B6809-2468-4A36-A6FC-FC24F05499BEHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\511B6809-2468-4A36-A6FC-FC24F05499BEPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5252af60-ef03-41a8-babe-415dba235478.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5252af60-ef03-41a8-babe-415dba235478.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5252af60-ef03-41a8-babe-415dba235478Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5252af60-ef03-41a8-babe-415dba235478Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\536b9063-fc09-4e82-8769-73c77317aae6.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\536b9063-fc09-4e82-8769-73c77317aae6.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\536b9063-fc09-4e82-8769-73c77317aae6hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\536b9063-fc09-4e82-8769-73c77317aae6press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\56591C8E-DA35-4A97-AC9B-5055E0F7089E.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\56591C8E-DA35-4A97-AC9B-5055E0F7089Ehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\56591C8E-DA35-4A97-AC9B-5055E0F7089Epress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5D0A6D97-85F2-47E9-8F04-04A747B25A0E.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5D0A6D97-85F2-47E9-8F04-04A747B25A0Ehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5D0A6D97-85F2-47E9-8F04-04A747B25A0Epress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5F1B269B-7C66-474F-A473-BE7FA51BE5B2.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5F1B269B-7C66-474F-A473-BE7FA51BE5B2hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5F1B269B-7C66-474F-A473-BE7FA51BE5B2press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5F488FA5-C35B-44A9-A0E4-2C7B41035780.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5F488FA5-C35B-44A9-A0E4-2C7B41035780hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\5F488FA5-C35B-44A9-A0E4-2C7B41035780press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\65B1A402-FC79-410D-AE1C-AF92E206AC1D.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\65B1A402-FC79-410D-AE1C-AF92E206AC1Dhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\65B1A402-FC79-410D-AE1C-AF92E206AC1Dpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7EC.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7EChover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7ECpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\708d8b1e-6545-474a-9f07-d854acf8ad43.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\708d8b1e-6545-474a-9f07-d854acf8ad43.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\708d8b1e-6545-474a-9f07-d854acf8ad43hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\708d8b1e-6545-474a-9f07-d854acf8ad43press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\72CDFC8C-6F2D-4df8-9811-18C4D682C406.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\72CDFC8C-6F2D-4df8-9811-18C4D682C406hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\72CDFC8C-6F2D-4df8-9811-18C4D682C406press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\7fe83ae9-caef-41f0-aa99-d114c0ce3941.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\7fe83ae9-caef-41f0-aa99-d114c0ce3941.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\7fe83ae9-caef-41f0-aa99-d114c0ce3941hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\7fe83ae9-caef-41f0-aa99-d114c0ce3941press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8217d395-9ebe-4ebb-807c-38cc911a307f.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8217d395-9ebe-4ebb-807c-38cc911a307f.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8217d395-9ebe-4ebb-807c-38cc911a307fHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8217d395-9ebe-4ebb-807c-38cc911a307fPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\87442BEF-FD31-405C-A807-650CB7CC8886.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\87442BEF-FD31-405C-A807-650CB7CC8886hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\87442BEF-FD31-405C-A807-650CB7CC8886press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\89582936-094c-4880-b87a-2af16fc31313.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\89582936-094c-4880-b87a-2af16fc31313Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\89582936-094c-4880-b87a-2af16fc31313Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\89582936-094C-4880-B87A-2AF16FC33B2C.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\89582936-094C-4880-B87A-2AF16FC33B2Chover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\89582936-094C-4880-B87A-2AF16FC33B2Cpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8b3608b1-c2d5-4ad3-a382-33601228c6d3.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8b3608b1-c2d5-4ad3-a382-33601228c6d3hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8b3608b1-c2d5-4ad3-a382-33601228c6d3press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8D338D8F-3189-41AB-BCFF-2958D48AAA6A.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8D338D8F-3189-41AB-BCFF-2958D48AAA6AHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8D338D8F-3189-41AB-BCFF-2958D48AAA6APress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8F4131CE-D4F0-4F08-9102-78C397F3748C.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8F4131CE-D4F0-4F08-9102-78C397F3748CHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\8F4131CE-D4F0-4F08-9102-78C397F3748CPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\90165d32-a3ef-438c-8625-be9b538b6eba.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\90165d32-a3ef-438c-8625-be9b538b6eba.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\90165d32-a3ef-438c-8625-be9b538b6ebaHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\90165d32-a3ef-438c-8625-be9b538b6ebaPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\929407CC-7E48-47E0-A9F9-A4A167AC24D1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\929407CC-7E48-47E0-A9F9-A4A167AC24D1hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\929407CC-7E48-47E0-A9F9-A4A167AC24D1press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\95ae73f0-9799-46fd-bceb-57efcb7f0537.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\95ae73f0-9799-46fd-bceb-57efcb7f0537.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\95ae73f0-9799-46fd-bceb-57efcb7f0537hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\95ae73f0-9799-46fd-bceb-57efcb7f0537press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\95D9E2EA-40AD-40B8-95D0-58209F584BBE.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\95D9E2EA-40AD-40B8-95D0-58209F584BBEHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\95D9E2EA-40AD-40B8-95D0-58209F584BBEPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\A46C5E77-16B5-42A0-8761-C6F861D22308.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\A46C5E77-16B5-42A0-8761-C6F861D22308Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\A46C5E77-16B5-42A0-8761-C6F861D22308Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\A75C6A50-13B0-4704-AA87-8DD113E31310.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\A75C6A50-13B0-4704-AA87-8DD113E31310hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\A75C6A50-13B0-4704-AA87-8DD113E31310press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\a94e6710-6021-4cdc-82de-1c001238bd8f.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\a94e6710-6021-4cdc-82de-1c001238bd8f.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\a94e6710-6021-4cdc-82de-1c001238bd8fHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\a94e6710-6021-4cdc-82de-1c001238bd8fPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\B1BEF453-913F-4EC4-B057-A2BB21C09DCB.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\B1BEF453-913F-4EC4-B057-A2BB21C09DCB.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\B1BEF453-913F-4EC4-B057-A2BB21C09DCBhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\B1BEF453-913F-4EC4-B057-A2BB21C09DCBpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\BC303DD4-37E7-4242-8DDD-8DEE2171066B.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\BC303DD4-37E7-4242-8DDD-8DEE2171066Bhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\BC303DD4-37E7-4242-8DDD-8DEE2171066Bpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\bc8dcde3-3fd0-4f9b-af5d-15c20f3239ab.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\bc8dcde3-3fd0-4f9b-af5d-15c20f3239ab.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\bc8dcde3-3fd0-4f9b-af5d-15c20f3239abhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\bc8dcde3-3fd0-4f9b-af5d-15c20f3239abpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\BE3608B1-C2D5-4AD3-A382-45635338C6D1.PNG (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\BE3608B1-C2D5-4AD3-A382-45635338C6D1HOVER.PNG (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\BE3608B1-C2D5-4AD3-A382-45635338C6D1PRESS.PNG (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\c1546a00-e42d-4ce7-aac5-5353a895f3cf.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\c1546a00-e42d-4ce7-aac5-5353a895f3cf.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\c1546a00-e42d-4ce7-aac5-5353a895f3cfhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\c1546a00-e42d-4ce7-aac5-5353a895f3cfpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\C41AD485-FE91-4EFE-A613-66CB2BA96EAB.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\C41AD485-FE91-4EFE-A613-66CB2BA96EABHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\C41AD485-FE91-4EFE-A613-66CB2BA96EABPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\CE1500FE-6F59-421C-8005-3E137AC051A2.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\CE1500FE-6F59-421C-8005-3E137AC051A2hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\CE1500FE-6F59-421C-8005-3E137AC051A2press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D2B0680C-17C4-492D-85D7-D4CA3E724D50.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D2B0680C-17C4-492D-85D7-D4CA3E724D50hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D2B0680C-17C4-492D-85D7-D4CA3E724D50press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D469E1BA-B745-45B3-B7EE-378E000E74C8.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D469E1BA-B745-45B3-B7EE-378E000E74C8Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D469E1BA-B745-45B3-B7EE-378E000E74C8Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D5113B95-781C-4737-A26F-3ED3A2CB876F.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D5113B95-781C-4737-A26F-3ED3A2CB876FHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D5113B95-781C-4737-A26F-3ED3A2CB876FPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e2870479-a572-412b-8a8f-5604d19b55cd.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e2870479-a572-412b-8a8f-5604d19b55cdhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e2870479-a572-412b-8a8f-5604d19b55cdpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E3345571-EEF9-4041-8C24-F7F5A9331C23.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E3345571-EEF9-4041-8C24-F7F5A9331C23hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E3345571-EEF9-4041-8C24-F7F5A9331C23press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e357f164-c5d8-4257-aab2-fe0cad41c12e.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e357f164-c5d8-4257-aab2-fe0cad41c12e.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e357f164-c5d8-4257-aab2-fe0cad41c12ehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e357f164-c5d8-4257-aab2-fe0cad41c12epress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e3c610dc-deed-47cd-acc0-493d71556c16.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e3c610dc-deed-47cd-acc0-493d71556c16Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e3c610dc-deed-47cd-acc0-493d71556c16Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E458493F-867F-4712-A3AF-D9664ED47C19.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E458493F-867F-4712-A3AF-D9664ED47C19hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E458493F-867F-4712-A3AF-D9664ED47C19press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E52BEFE7-6535-439c-B168-A3B105E4212E.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E52BEFE7-6535-439c-B168-A3B105E4212Ehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E52BEFE7-6535-439c-B168-A3B105E4212Epress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E8584703-6CA5-4351-82CC-09E40938A066.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E8584703-6CA5-4351-82CC-09E40938A066hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\E8584703-6CA5-4351-82CC-09E40938A066press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e8967c62-9ea0-4fde-9832-2c10f1d580de.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e8967c62-9ea0-4fde-9832-2c10f1d580de.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e8967c62-9ea0-4fde-9832-2c10f1d580dehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\e8967c62-9ea0-4fde-9832-2c10f1d580depress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\EA99E20A-FBBA-4197-954B-E2013280A29B.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\EA99E20A-FBBA-4197-954B-E2013280A29Bhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\EA99E20A-FBBA-4197-954B-E2013280A29Bpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\EC116BC4-0583-4E07-908A-9D2AD3647177.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\EC116BC4-0583-4E07-908A-9D2AD3647177Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\EC116BC4-0583-4E07-908A-9D2AD3647177Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\f41901a8-2a78-4794-b455-d53a24b37aef.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\f41901a8-2a78-4794-b455-d53a24b37aefHover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\f41901a8-2a78-4794-b455-d53a24b37aefPress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\f7fd4890-7f89-4c73-8ff2-52105657cbb6.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\f7fd4890-7f89-4c73-8ff2-52105657cbb6.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\f7fd4890-7f89-4c73-8ff2-52105657cbb6Hover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\f7fd4890-7f89-4c73-8ff2-52105657cbb6Press.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BD.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BDhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BDpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\fac5189f-f2c7-4eed-bae8-011eca170d7b.ico (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\fac5189f-f2c7-4eed-bae8-011eca170d7b.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\fac5189f-f2c7-4eed-bae8-011eca170d7bhover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\fac5189f-f2c7-4eed-bae8-011eca170d7bpress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\youtube.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\youtubehover.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\iconsWide\youtubepress.png (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.DMP.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.MessengerPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.NotepadPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.ScreenCapturePlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.UninstallProductsPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.WeatherPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.WordPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.YoutubeDownloadPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles\Configs\IconsSettings.xml (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles\Configs\LocalMethods.xml (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles\Configs\ProfileManager.xml (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles\Configs\PublisherSettings.xml (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles\Configs\UserSettings.xml (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\DistributionFiles\Profiles\13131313-1313-1313-1313-131313131313.xml (PUP.Optional.SmartBar.A) -> No action taken. C:\Users\Peter\AppData\Local\Smartbar\QuickShare.exe_StrongName_vuedtbpoockmp1sq45awfxuouevabx0i\1.6.1.696\user.config (PUP.Optional.SmartBar.A) -> No action taken. (end) OTL Logfile: Code:
ATTFilter OTL logfile created on: 27.09.2013 13:36:38 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Internet\Desktop 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 1,73 Gb Total Physical Memory | 0,38 Gb Available Physical Memory | 21,79% Memory free 3,46 Gb Paging File | 1,74 Gb Available in Paging File | 50,21% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 48,83 Gb Total Space | 7,13 Gb Free Space | 14,59% Space Free | Partition Type: NTFS Drive D: | 93,13 Gb Total Space | 9,78 Gb Free Space | 10,50% Space Free | Partition Type: NTFS Drive E: | 109,87 Gb Total Space | 10,48 Gb Free Space | 9,53% Space Free | Partition Type: NTFS Drive H: | 614,91 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF Drive J: | 465,11 Gb Total Space | 280,08 Gb Free Space | 60,22% Space Free | Partition Type: NTFS Computer Name: PETER-PC | User Name: Peter | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Internet\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) PRC - C:\Program Files (x86)\Opera\opera.exe (Opera Software) PRC - C:\Program Files (x86)\PDF24\pdf24.exe (Geek Software GmbH) PRC - C:\Program Files (x86)\AVG Secure Search\vprot.exe () PRC - C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe (Sony Corporation) PRC - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation) PRC - C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\Program Files (x86)\AVG Secure Search\vprot.exe () MOD - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\SiteSafety.dll () ========== Services (SafeList) ========== SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD) SRV:64bit: - (AMD FUEL Service) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Advanced Micro Devices, Inc.) SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SRV - (avgwd) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) SRV - (AVGIDSAgent) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.) SRV - (FLEXnet Licensing Service 64) -- C:\Programme\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Acresso Software Inc.) SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.) SRV - (vToolbarUpdater14.2.0) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe () SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (SbieSvc) -- C:\Programme\Sandboxie\SbieSvc.exe (SANDBOXIE L.T.D) SRV - (PMBDeviceInfoProvider) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV:64bit: - (Avgrkx64) -- C:\Windows\SysNative\drivers\avgrkx64.sys (AVG Technologies CZ, s.r.o.) DRV:64bit: - (Avgloga) -- C:\Windows\SysNative\drivers\avgloga.sys (AVG Technologies CZ, s.r.o.) DRV:64bit: - (AVGIDSDriver) -- C:\Windows\SysNative\drivers\avgidsdrivera.sys (AVG Technologies CZ, s.r.o.) DRV:64bit: - (AVGIDSHA) -- C:\Windows\SysNative\drivers\avgidsha.sys (AVG Technologies CZ, s.r.o.) DRV:64bit: - (Avgldx64) -- C:\Windows\SysNative\drivers\avgldx64.sys (AVG Technologies CZ, s.r.o.) DRV:64bit: - (Avgmfx64) -- C:\Windows\SysNative\drivers\avgmfx64.sys (AVG Technologies CZ, s.r.o.) DRV:64bit: - (Avgtdia) -- C:\Windows\SysNative\drivers\avgtdia.sys (AVG Technologies CZ, s.r.o.) DRV:64bit: - (avgtp) -- C:\Windows\SysNative\drivers\avgtpx64.sys (AVG Technologies) DRV:64bit: - (netr7364) -- C:\Windows\SysNative\drivers\netr7364.sys (Ralink Technology, Corp.) DRV:64bit: - (andnetndis) -- C:\Windows\SysNative\drivers\lgandnetndis64.sys (LG Electronics Inc.) DRV:64bit: - (andnetadb) -- C:\Windows\SysNative\drivers\lgandnetadb.sys (Google Inc) DRV:64bit: - (ANDNetModem) -- C:\Windows\SysNative\drivers\lgandnetmodem64.sys (LG Electronics Inc.) DRV:64bit: - (AndNetDiag) -- C:\Windows\SysNative\drivers\lgandnetdiag64.sys (LG Electronics Inc.) DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.) DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys () DRV:64bit: - (L1C) -- C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.) DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.) DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.) DRV:64bit: - (Tpkd) -- C:\Windows\SysNative\drivers\Tpkd.sys (PACE Anti-Piracy, Inc.) DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.) DRV:64bit: - (amdiox64) -- C:\Windows\SysNative\drivers\amdiox64.sys (Advanced Micro Devices) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (adfs) -- C:\Windows\SysNative\drivers\adfs.sys (Adobe Systems, Inc.) DRV - (SbieDrv) -- C:\Programme\Sandboxie\SbieDrv.sys (SANDBOXIE L.T.D) DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) DRV - (adfs) -- C:\Windows\SysWow64\drivers\adfs.sys (Adobe Systems, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bigseekpro.com/pivotstickfigure/{F6E6D089-8ECC-41D3-A991-398866994A42} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4 IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Facemoods Search IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 2B F7 1F 23 17 7E CC 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {0D7562AE-8EF6-416d-A838-AB665251703A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = hxxp://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4 IE - HKCU\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = hxxp://www.bigseekpro.com/search/browser/pivotstickfigure/{F6E6D089-8ECC-41D3-A991-398866994A42}?q={searchTerms} IE - HKCU\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = hxxp://www.daemon-search.com/search?q={searchTerms} IE - HKCU\..\SearchScopes\{E9E9C1EC-F879-43D6-AD13-DE81BC48B532}: "URL" = hxxp://websearch.ask.com/redirect?client=ie&tb=IMB&o=15785&src=crm&q={searchTerms}&locale=&apn_ptnrs=^HQ&apn_dtid=^YYYYYY^YY^DE&apn_uid=b1b63829-6865-4ffb-bcf1-1af9c57592c2&apn_sauid=6BAD4B1A-9F3E-428A-B75B-2035398643B4 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search" FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search" FF - prefs.js..browser.startup.homepage: "hxxp://isearch.avg.com/?cid={A0F99C3C-5362-473F-8764-F953BB42AB7E}&mid=abcbe6bedc1847d19abc6939b262b28a-0db1d975af31f3a6733ad6033136bb49778aa70e&lang=de&ds=AVG&pr=fr&d=&v=&pid=avg&sg=&sap=hp" FF - prefs.js..browser.search.defaultenginename: "Google" FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_278.dll File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll () FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\14.2.0.1 [2013.02.18 15:40:01 | 000,000,000 | ---D | M] [2011.09.28 23:03:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Peter\AppData\Roaming\mozilla\Extensions [2013.01.09 14:03:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Peter\AppData\Roaming\mozilla\Firefox\Profiles\6oqqi8ag.default\extensions [2012.10.29 18:19:52 | 000,002,333 | ---- | M] () -- C:\Users\Peter\AppData\Roaming\mozilla\firefox\profiles\6oqqi8ag.default\searchplugins\askcom.xml [2012.01.18 00:12:12 | 000,002,055 | ---- | M] () -- C:\Users\Peter\AppData\Roaming\mozilla\firefox\profiles\6oqqi8ag.default\searchplugins\daemon-search.xml [2012.12.19 21:46:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2012.04.08 09:52:56 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011.12.18 03:23:33 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} [2013.01.07 16:16:35 | 000,002,048 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml O1 HOSTS File: ([2013.03.12 13:56:04 | 000,001,365 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 activate.adobe.com O1 - Hosts: 127.0.0.1 practivate.adobe.com O1 - Hosts: 127.0.0.1 ereg.adobe.com O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com O1 - Hosts: 127.0.0.1 wip3.adobe.com O1 - Hosts: 127.0.0.1 3dns-3.adobe.com O1 - Hosts: 127.0.0.1 3dns-2.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com O1 - Hosts: 127.0.0.1 activate-sea.adobe.com O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com O1 - Hosts: 127.0.0.1 adobe.activate.com O2:64bit: - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found. O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll () O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O3:64bit: - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found. O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [PDFPrint] C:\Program Files (x86)\PDF24\pdf24.exe (Geek Software GmbH) O4 - HKLM..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe (Sony Corporation) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe () O4 - HKCU..\Run: [Browser Infrastructure Helper] C:\Users\Peter\AppData\Local\Smartbar\Application\QuickShare.exe startup File not found O4 - HKCU..\Run: [SandboxieControl] C:\Program Files\Sandboxie\SbieCtrl.exe (SANDBOXIE L.T.D) O4 - HKLM..\RunOnce: [ Malwarebytes Anti-Malware ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16:64bit: - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{167AB8BB-B558-4E98-9F9A-A84C7B6F148D}: NameServer = 8.26.56.26,156.154.70.22 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{433456AA-D765-434B-9383-48451A528351}: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EF7B3349-48B3-45C2-913A-AEF9BD38A9FA}: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EF7B3349-48B3-45C2-913A-AEF9BD38A9FA}: NameServer = 8.26.56.26,156.154.70.22 O18:64bit: - Protocol\Handler\linkscanner - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found O18 - Protocol\Handler\linkscanner - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\14.2.0\ViProtocol.dll () O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009.06.18 23:12:18 | 000,000,088 | ---- | M] () - H:\autorun.inf -- [ UDF ] O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.09.27 10:50:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner [2013.09.27 10:49:45 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2013.09.27 10:47:23 | 000,000,000 | ---D | C] -- C:\Users\Peter\AppData\Roaming\Malwarebytes [2013.09.27 10:46:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2013.09.27 10:46:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2013.09.27 10:46:49 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2013.09.27 10:46:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2013.09.14 16:08:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast [2013.09.14 16:08:24 | 000,000,000 | ---D | C] -- C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast [2013.09.14 16:08:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SopCast [2013.09.12 18:23:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG [2013.09.05 01:43:42 | 000,045,880 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgrkx64.sys [2013.02.21 20:06:04 | 000,233,472 | ---- | C] (Propellerhead Software AB) -- C:\Users\Peter\AppData\Roaming\REX Shared Library.dll [2013.02.21 20:06:04 | 000,225,280 | ---- | C] (Propellerhead Software AB) -- C:\Users\Peter\AppData\Roaming\Rewire.dll [2012.11.06 21:14:59 | 001,398,680 | ---- | C] (BitTorrent, Inc.) -- C:\Program Files (x86)\BitTorrent.exe ========== Files - Modified Within 30 Days ========== [2013.09.27 11:24:14 | 001,486,084 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013.09.27 11:24:14 | 000,648,704 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2013.09.27 11:24:14 | 000,611,332 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013.09.27 11:24:14 | 000,128,930 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2013.09.27 11:24:14 | 000,105,512 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013.09.27 11:16:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.09.27 11:16:13 | 1392,693,248 | -HS- | M] () -- C:\hiberfil.sys [2013.09.27 10:50:00 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2013.09.27 10:46:57 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.09.14 16:08:26 | 000,000,995 | ---- | M] () -- C:\Users\Peter\Desktop\SopCast.lnk [2013.09.12 18:23:03 | 000,000,981 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2013.lnk [2013.09.05 01:43:42 | 000,045,880 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgrkx64.sys ========== Files Created - No Company Name ========== [2013.09.27 10:50:00 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2013.09.27 10:46:57 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.09.14 16:08:26 | 000,000,995 | ---- | C] () -- C:\Users\Peter\Desktop\SopCast.lnk [2013.01.09 13:35:25 | 000,000,000 | ---- | C] () -- C:\Users\Peter\adb [2012.12.05 21:20:21 | 000,017,408 | ---- | C] () -- C:\Windows\SysWow64\minimp3.exe [2012.09.26 09:37:24 | 000,200,704 | ---- | C] () -- C:\Windows\SysWow64\UpdateDriver.exe [2012.09.26 09:37:22 | 000,005,224 | ---- | C] () -- C:\Windows\SysWow64\ucuiinfo.ini [2012.01.18 00:49:31 | 000,000,619 | ---- | C] () -- C:\Windows\eReg.dat [2011.09.28 22:20:17 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2011.09.28 21:40:08 | 000,003,144 | ---- | C] () -- C:\Windows\Sandboxie.ini ========== ZeroAccess Check ========== [2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2010.07.27 16:59:11 | 014,162,944 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2010.07.27 16:03:24 | 012,867,584 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2012.10.08 18:06:37 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\Ableton [2012.09.26 12:38:35 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\AVG [2012.12.11 21:13:10 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\AVG2013 [2012.11.06 21:15:15 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\BitTorrent [2012.09.02 05:26:52 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\DAEMON Tools Lite [2013.01.09 19:53:03 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\Fighters [2012.12.14 05:50:19 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\GlarySoft [2012.11.30 19:57:19 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\ImgBurn [2013.01.09 18:16:03 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\LG Electronics [2011.09.28 23:52:05 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\LibreOffice [2013.01.09 13:30:19 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\Opera [2013.02.21 20:08:51 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\Propellerhead Software [2013.03.19 20:39:51 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\TuneUp Software [2012.04.12 03:49:16 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\WinAVI ========== Purity Check ========== ========== Files - Unicode (All) ========== [2012.12.06 00:43:37 | 077,980,275 | ---- | M] ()(C:\Users\Peter\Desktop\??f??.mp4) -- C:\Users\Peter\Desktop\Δάφνη.mp4 [2012.12.06 00:38:01 | 077,980,275 | ---- | C] ()(C:\Users\Peter\Desktop\??f??.mp4) -- C:\Users\Peter\Desktop\Δάφνη.mp4 < End of report > |
|
27.09.2013, 13:11
| #2 |
| | Recycle.Bin virus auf externer Festplatte, Daten unsichtbar OTL EXTRAS Logfile:
__________________Code:
ATTFilter OTL Extras logfile created on: 27.09.2013 13:36:38 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Internet\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1,73 Gb Total Physical Memory | 0,38 Gb Available Physical Memory | 21,79% Memory free
3,46 Gb Paging File | 1,74 Gb Available in Paging File | 50,21% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 48,83 Gb Total Space | 7,13 Gb Free Space | 14,59% Space Free | Partition Type: NTFS
Drive D: | 93,13 Gb Total Space | 9,78 Gb Free Space | 10,50% Space Free | Partition Type: NTFS
Drive E: | 109,87 Gb Total Space | 10,48 Gb Free Space | 9,53% Space Free | Partition Type: NTFS
Drive H: | 614,91 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF
Drive J: | 465,11 Gb Total Space | 280,08 Gb Free Space | 60,22% Space Free | Partition Type: NTFS
Computer Name: PETER-PC | User Name: Peter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04256B9E-7143-4E97-B4D5-3C0C9C6E9AFD}" = rport=138 | protocol=17 | dir=out | app=system |
"{052C67ED-8091-4825-80CE-24E3092F96FC}" = lport=137 | protocol=17 | dir=in | app=system |
"{1868E7CA-C662-4FF4-B84D-D97AAAD93108}" = rport=137 | protocol=17 | dir=out | app=system |
"{21B0D0D4-71B4-4503-AF13-BF37BEB6D4F4}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{2C8BA062-3EA9-4E1E-9B4D-040241708976}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{3E18C313-5404-4803-B314-290DF0B77611}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{44BB709B-9B4E-4D8A-8850-3691ABAC5498}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{4E353AB6-E2F7-433A-83A1-7C2D44DAA4FF}" = rport=139 | protocol=6 | dir=out | app=system |
"{59083E83-B9FF-4E78-B458-5367389311E5}" = lport=139 | protocol=6 | dir=in | app=system |
"{5AC069D5-8B88-4F7A-9181-B9BB2ADAA9A3}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{76195A7F-EB1D-4CF7-B8AC-D76006D27798}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7D77B8B1-CD7D-49E1-A1C8-39D8AD71B9BE}" = rport=445 | protocol=6 | dir=out | app=system |
"{886DF5BD-E89E-4220-8DC0-427AFBF86A9D}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{9932AED6-9D5E-4756-9141-780B71AE1039}" = lport=138 | protocol=17 | dir=in | app=system |
"{A24E60B2-9725-42D6-BD05-D4320830734B}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B933D4BE-9C5E-4634-A894-B0643D34DCB2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BBC869CF-57A9-43D4-B33E-3CF602598E3A}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{BF36C282-E1A9-42CD-A890-201798ACB4CE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DA23DBD1-80BE-434F-B9E6-AE83379F59EB}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{DCF9AE4B-8706-4C1E-BFC9-DEB089592EC7}" = lport=445 | protocol=6 | dir=in | app=system |
"{FB38F579-DDEB-40F7-B528-75B229235837}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00B01975-E33E-464B-9E0C-E33C47F71F52}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{0D89100E-B73F-44B9-B91F-392E262AB1FE}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{14B1EB38-783B-4BF9-BEE9-BF893FD876FB}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{1573126F-5E46-47ED-805B-6BD51E612677}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{186B4345-23EE-4CC6-8372-72A4D0DE2A79}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{2029A594-567E-4EC4-84E3-6D86669A5C70}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{240FF581-16A9-460D-B6E6-6462CD652D3F}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{34B49DBA-1B70-43D0-9984-8A19F9FDDB9E}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{51A85487-D4EB-4A07-8F3B-62D4800BD587}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{5347BA9B-4D6C-450F-B9BD-9FD2BC6F2920}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{717CFB87-1B61-4197-87F6-2BB51CD25F65}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgnsa.exe |
"{83FD4EE4-D309-41FD-B4E1-0D72A095A5EC}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{8B1A2D0C-6F50-4261-87D5-475CE68B53F6}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{91B468CE-2D8F-4144-AFD0-61A592430F01}" = protocol=17 | dir=in | app=c:\program files (x86)\bittorrent.exe |
"{A13A0E64-8AF7-4A08-BA0C-97FB7B9E4ACF}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{A6E6EE22-725D-4A9B-8B2B-64D1FE0B2B6A}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{A94A72C5-82D0-4E3E-82F8-DB93E469DE71}" = protocol=6 | dir=in | app=c:\program files (x86)\bittorrent.exe |
"{C7F4D425-D7FF-431C-9D73-71963F29E004}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{CD65F79B-6540-4C69-9718-874D009B9442}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{D1F109AC-DBAF-4CA6-A309-72D575C74D6C}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{D9E75185-3384-4A5C-A79E-F71D66304E23}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{E85ECDD8-2067-469C-8566-CFAA83E97B95}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgnsa.exe |
"TCP Query User{2DE06D2E-BAF2-4BFE-A894-9C3090913354}C:\users\internet\downloads\bittorrent.exe" = protocol=6 | dir=in | app=c:\users\internet\downloads\bittorrent.exe |
"TCP Query User{2DF0CAFD-88B8-4FF2-9DC6-87565E0A900C}C:\users\internet\downloads\operator\opera\opera.exe" = protocol=6 | dir=in | app=c:\users\internet\downloads\operator\opera\opera.exe |
"TCP Query User{3D423C29-C15D-4D55-9E4E-A767AC4F02E5}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{6218AD36-D466-4A61-9773-70ED2010984E}C:\program files (x86)\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe |
"TCP Query User{FBE5368C-0268-4412-903A-9851EFE46A53}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{3C3AEBEE-E54F-4292-907E-9652E2AAFDE5}C:\users\internet\downloads\bittorrent.exe" = protocol=17 | dir=in | app=c:\users\internet\downloads\bittorrent.exe |
"UDP Query User{93770B36-62FD-4874-9693-77FDE4DB1202}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{C518618D-FA51-4DD1-A074-EC0C64E2317F}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{D5662C3C-F95F-49E1-9544-36CE0C8F4352}C:\users\internet\downloads\operator\opera\opera.exe" = protocol=17 | dir=in | app=c:\users\internet\downloads\operator\opera\opera.exe |
"UDP Query User{E071C108-E99D-4FBA-A612-3DD5F9358DDE}C:\program files (x86)\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1ED09A2E-9CB0-4694-B108-BD414AD32C2F}" = Max 5.1.9
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{26F8AE36-AC4D-A641-9BA5-8ED97E74CC51}" = ccc-utility64
"{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64
"{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64
"{4A35302C-A6D3-DDE5-38BA-55E7BABA9670}" = AMD Catalyst Install Manager
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64
"{6B02D047-A56D-4994-B1F1-53DA6B9885AB}" = AVG 2013
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64
"{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4
"{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4
"{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64
"{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4
"{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64
"{AB505D2E-B7C7-4D42-91E2-A130963CC963}" = MAGIX Speed burnR (MSI)
"{BC20D4CC-C409-42A9-A783-B3ACBD5ABE91}" = AVG 2013
"{C5823264-8DFC-6E63-9D69-A35B1A98B537}" = AMD Media Foundation Decoders
"{CDFFF800-E7AB-D678-4D8E-53B8D57AE925}" = AMD Fuel
"{CFA5BA6D-D6BB-AE1B-E61E-5B1ACFC8F0BB}" = AMD Drag and Drop Transcoding
"{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit)
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"AVG" = AVG 2013
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Sandboxie" = Sandboxie 3.58 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{17C515BE-9EA8-BB8C-28FB-13731C5FD301}" = AMD VISION Engine Control Center
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{19A492A0-888F-44A0-9B21-D91700763F62}" = Catalyst Control Center - Branding
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216030FF}" = Java(TM) 6 Update 30
"{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}" = LG United Mobile Driver
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}" = Steinberg Cubase 5
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{5C785836-A576-444B-9DD0-74E878695A56}" = CCC Help English
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1" = PDF24 Creator 5.3.0
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Deutsch
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}" = PMB
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CD068533-1A20-47F6-B1A2-196725B1320F}" = LibreOffice 3.3
"{E25E9970-864D-2AE6-70A2-51D9C6FEF480}" = Catalyst Control Center InstallProxy
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E8F817ED-7F1D-05A5-1374-C6D115BC9051}" = Catalyst Control Center Graphics Previews Common
"{EBE030DD-D404-4D92-85E9-8C3624820808}_is1" = Light Image Resizer 4.0.9.8
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F1D49A81-DFD1-4580-B7B3-B5990F64C0EC}" = QuickShare
"{F3759A9F-7AFA-4FB4-8DF1-53F26B979DEE}" = Belkin 54Mbps Wireless Network Adapter
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Absolute Uninstaller_is1" = Absolute Uninstaller 2.9.0.722
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"ASIO4ALL" = ASIO4ALL
"AVG Secure Search" = AVG Security Toolbar
"BitTorrent" = BitTorrent
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"ImgBurn" = ImgBurn
"LG PC Suite" = LG PC Suite
"MAGIX_{AB505D2E-B7C7-4D42-91E2-A130963CC963}" = MAGIX Speed burnR (MSI)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.75.0.1300
"Native Instruments FM8 v1.0.1.002 VSTi DXi RTAS" = Native Instruments FM8 v1.0.1.002 VSTi DXi RTAS
"Native Instruments Massive v1.0.1.008 VSTi DXi RTAS" = Native Instruments Massive v1.0.1.008 VSTi DXi RTAS
"Reason_is1" = Reason 3.0
"SopCast" = SopCast 3.8.2
"VLC media player" = VLC media player 1.1.11
"WinAVI All in One Converter" = WinAVI All in One Converter
"WinRAR archiver" = WinRAR archiver
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Opera 12.12.1707" = Opera 12.12
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 16.09.2013 21:11:36 | Computer Name = Peter-PC | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files
(x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder
Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll" in Zeile 3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error - 16.09.2013 21:12:04 | Computer Name = Peter-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "c:\program files
(x86)\lg electronics\lg pc suite\LGPCSuite.exe". Fehler in Manifest- oder Richtliniendatei
"" in Zeile . Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:.
Komponente
1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error - 22.09.2013 20:07:49 | Computer Name = Peter-PC | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files
(x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder
Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll" in Zeile 3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error - 22.09.2013 20:09:17 | Computer Name = Peter-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "c:\program files
(x86)\lg electronics\lg pc suite\LGPCSuite.exe". Fehler in Manifest- oder Richtliniendatei
"" in Zeile . Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:.
Komponente
1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error - 24.09.2013 15:10:35 | Computer Name = Peter-PC | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files
(x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder
Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll" in Zeile 3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error - 24.09.2013 15:12:57 | Computer Name = Peter-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "c:\program files
(x86)\lg electronics\lg pc suite\LGPCSuite.exe". Fehler in Manifest- oder Richtliniendatei
"" in Zeile . Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:.
Komponente
1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error - 27.09.2013 04:47:09 | Computer Name = Peter-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
(x86)\LG Electronics\LG PC Suite\LGPCSuite.exe". Fehler in Manifest- oder Richtliniendatei
"" in Zeile . Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:.
Komponente
1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error - 27.09.2013 04:47:09 | Computer Name = Peter-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
(x86)\LG Electronics\LG PC Suite\LGPCSuite.exe". Fehler in Manifest- oder Richtliniendatei
"" in Zeile . Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:.
Komponente
1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error - 27.09.2013 04:50:08 | Computer Name = Peter-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
(x86)\LG Electronics\LG PC Suite\LGPCSuite.exe". Fehler in Manifest- oder Richtliniendatei
"" in Zeile . Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:.
Komponente
1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error - 27.09.2013 04:50:13 | Computer Name = Peter-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
(x86)\LG Electronics\LG PC Suite\LGPCSuite.exe". Fehler in Manifest- oder Richtliniendatei
"" in Zeile . Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:.
Komponente
1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
[ System Events ]
Error - 26.09.2013 10:29:10 | Computer Name = Peter-PC | Source = bowser | ID = 8003
Description =
Error - 26.09.2013 17:46:20 | Computer Name = Peter-PC | Source = Service Control Manager | ID = 7011
Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung
von Dienst LanmanServer erreicht.
Error - 26.09.2013 17:57:36 | Computer Name = Peter-PC | Source = bowser | ID = 8003
Description =
Error - 26.09.2013 18:45:40 | Computer Name = Peter-PC | Source = bowser | ID = 8003
Description =
Error - 26.09.2013 19:28:30 | Computer Name = Peter-PC | Source = Service Control Manager | ID = 7006
Description = Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden
Fehlers fehlgeschlagen: %%5
Error - 27.09.2013 04:10:00 | Computer Name = Peter-PC | Source = Service Control Manager | ID = 7006
Description = Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden
Fehlers fehlgeschlagen: %%5
Error - 27.09.2013 05:13:38 | Computer Name = Peter-PC | Source = bowser | ID = 8003
Description =
Error - 27.09.2013 05:14:34 | Computer Name = Peter-PC | Source = DCOM | ID = 10010
Description =
Error - 27.09.2013 05:14:48 | Computer Name = Peter-PC | Source = Service Control Manager | ID = 7006
Description = Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden
Fehlers fehlgeschlagen: %%5
Error - 27.09.2013 07:38:02 | Computer Name = Peter-PC | Source = bowser | ID = 8003
Description =
< End of report >
Absolute Uninstaller 2.9.0.722 Glarysoft.com 14.12.2012 4,82 MB Adobe AIR Adobe Systems Inc. 12.03.2013 1.1.0.5790 Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 26.02.2013 6,00 MB 11.6.602.168 Adobe Flash Player 11 Plugin Adobe Systems Incorporated 02.10.2012 6,00 MB 11.4.402.278 Adobe Media Player Adobe Systems Incorporated 12.03.2013 1.1 Adobe Photoshop CS4 Adobe Systems Incorporated 12.03.2013 2,03 GB 11.0 Adobe Reader X (10.1.3) - Deutsch Adobe Systems Incorporated 15.07.2012 121 MB 10.1.3 AMD Catalyst Install Manager Advanced Micro Devices, Inc. 28.09.2011 22,6 MB 3.0.838.0 ASIO4ALL Michael Tippach 25.11.2012 2.10 Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Atheros Communications Inc. 28.09.2011 1.0.0.39 AVG 2013 AVG Technologies 12.09.2013 2013.0.3408 AVG Security Toolbar AVG Technologies 18.02.2013 14.2.0.1 Belkin 54Mbps Wireless Network Adapter Belkin 26.09.2012 1.00.01 BitTorrent BitTorrent Inc. 06.11.2012 7.7.0.27987 CCleaner Piriform 19.09.2013 4.06 ImgBurn LIGHTNING UK! 30.11.2012 2.5.7.0 Java(TM) 6 Update 30 Oracle 18.12.2011 95,1 MB 6.0.300 JDownloader 0.9 AppWork GmbH 07.01.2013 0.9 LG PC Suite LG Electronics 09.01.2013 5.2.11.20121025 LG United Mobile Driver LG Electronics 09.01.2013 3.8.1 LibreOffice 3.3 LibreOffice 28.09.2011 465 MB 3.3.401 Light Image Resizer 4.0.9.8 ObviousIdea 29.11.2011 35,1 MB 4.0.9.8 MAGIX Speed burnR (MSI) MAGIX AG 06.11.2012 7.0.1.27 Malwarebytes Anti-Malware Version 1.75.0.1300 Malwarebytes Corporation 27.09.2013 19,2 MB 1.75.0.1300 Max 5.1.9 Cycling '74 05.11.2012 280 MB 135.1.9 Microsoft .NET Framework 4 Client Profile Microsoft Corporation 20.09.2012 38,8 MB 4.0.30319 Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 09.01.2013 2,69 MB 8.0.59193 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 28.09.2011 788 KB 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 03.11.2012 1,41 MB 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 28.09.2011 596 KB 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 28.09.2011 596 KB 9.0.30729.4148 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 Microsoft Corporation 28.09.2011 13,6 MB 10.0.30319 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 11.12.2012 11,1 MB 10.0.40219 MSXML 4.0 SP3 Parser Microsoft Corporation 05.10.2011 1,47 MB 4.30.2100.0 Native Instruments FM8 v1.0.1.002 VSTi DXi RTAS 05.12.2012 Native Instruments Massive v1.0.1.008 VSTi DXi RTAS 05.12.2012 Opera 12.10 Opera Software ASA 19.12.2012 12.10.1652 Opera 12.14 Opera Software ASA 04.03.2013 12.14.1738 PDF24 Creator 5.3.0 PDF24.org 23.02.2013 41,4 MB PMB Sony Corporation 05.10.2011 282 MB 5.5.02.12220 Realtek USB 2.0 Card Reader Realtek Semiconductor Corp. 30.09.2011 6.1.7600.30122 Reason 3.0 Propellerhead Software AB 21.02.2013 3.0 Sandboxie 3.58 (64-bit) 28.09.2011 Skype Click to Call Skype Technologies S.A. 08.04.2012 12,4 MB 5.9.9216 Skype™ 5.10 Skype Technologies S.A. 26.08.2012 35,7 MB 5.10.116 SopCast 3.8.2 SopCast - Free P2P internet TV | live football, NBA, cricket 14.09.2013 3.8.2 Steinberg Cubase 5 Steinberg Media Technologies GmbH 16.03.2013 217 MB 5.1.2 Visual Studio 2008 x64 Redistributables AVG Technologies 29.09.2011 11,7 MB 10.0.0.2 Visual Studio 2010 x64 Redistributables AVG Technologies 11.12.2012 12,4 MB 13.0.0.1 VLC media player 1.1.11 VideoLAN 28.09.2011 1.1.11 WinAVI All in One Converter ZJMedia Digital Technology Ltd. 12.04.2012 72,4 MB 1.6.3.4360 WinRAR archiver 03.12.2011 |
|
29.09.2013, 13:36
| #3 |
| /// the machine /// TB-Ausbilder    | Recycle.Bin virus auf externer Festplatte, Daten unsichtbar hi,
__________________ So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
30.09.2013, 08:14
| #4 |
| | Recycle.Bin virus auf externer Festplatte, Daten unsichtbarCode:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-09-2013 02
Ran by Internet at 2013-09-30 09:09:43
Running from C:\Users\Internet\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: AVG AntiVirus Free Edition 2013 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2013 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
==================== Installed Programs ======================
Absolute Uninstaller 2.9.0.722 (x32)
Adobe AIR (x32 Version: 1.1.0.5790)
Adobe Anchor Service CS4 (x32 Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Bridge CS4 (x32 Version: 3)
Adobe CMaps CS4 (x32 Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (x32 Version: 2.0)
Adobe Color EU Extra Settings CS4 (x32 Version: 2.0)
Adobe Color JA Extra Settings CS4 (x32 Version: 2.0)
Adobe Color NA Recommended Settings CS4 (x32 Version: 2.0)
Adobe Color Video Profiles CS CS4 (x32 Version: 2.0)
Adobe CSI CS4 (x32 Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (x32 Version: 2.0)
Adobe Device Central CS4 (x32 Version: 2)
Adobe Drive CS4 (x32 Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe ExtendScript Toolkit CS4 (x32 Version: 3.0.0)
Adobe Extension Manager CS4 (x32 Version: 2.0)
Adobe Flash Player 11 ActiveX (x32 Version: 11.6.602.168)
Adobe Flash Player 11 Plugin (x32 Version: 11.4.402.278)
Adobe Fonts All (x32 Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Linguistics CS4 (x32 Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Player (x32 Version: 0.0.0)
Adobe Media Player (x32 Version: 1.1)
Adobe Output Module (x32 Version: 2.0)
Adobe PDF Library Files CS4 (x32 Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (x32 Version: 11.0)
Adobe Photoshop CS4 Support (x32 Version: 11.0)
Adobe Reader X (10.1.3) - Deutsch (x32 Version: 10.1.3)
Adobe Search for Help (x32 Version: 1.0)
Adobe Service Manager Extension (x32 Version: 1.0)
Adobe Setup (x32 Version: 2.0)
Adobe Type Support CS4 (x32 Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (x32 Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (x32 Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (x32 Version: 2.0)
AdobeColorCommonSetCMYK (x32 Version: 2.0)
AdobeColorCommonSetRGB (x32 Version: 2.0)
AMD APP SDK Runtime (Version: 2.5.709.2)
AMD Catalyst Install Manager (Version: 3.0.838.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2011.0728.1756.30366)
AMD Media Foundation Decoders (Version: 1.0.60728.1742)
AMD VISION Engine Control Center (x32 Version: 2011.0728.1756.30366)
ASIO4ALL (x32 Version: 2.10)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 1.0.0.39)
AVG 2013 (Version: 13.0.3222)
AVG 2013 (Version: 13.0.3408)
AVG 2013 (Version: 2013.0.3408)
AVG Security Toolbar (x32 Version: 14.2.0.1)
Belkin 54Mbps Wireless Network Adapter (x32 Version: 1.00.01)
BitTorrent (x32 Version: 7.7.0.27987)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0728.1756.30366)
Catalyst Control Center InstallProxy (x32 Version: 2011.0728.1756.30366)
CCC Help English (x32 Version: 2011.0728.1755.30366)
ccc-utility64 (Version: 2011.0728.1756.30366)
CCleaner (Version: 4.06)
Connect (x32 Version: 1.0.0.1)
ImgBurn (x32 Version: 2.5.7.0)
Java Auto Updater (x32 Version: 2.0.6.1)
Java(TM) 6 Update 30 (x32 Version: 6.0.300)
JDownloader 0.9 (HKCU Version: 0.9)
kuler (x32 Version: 2.0)
LG PC Suite (x32 Version: 5.2.11.20121025)
LG United Mobile Driver (x32 Version: 3.8.1)
LibreOffice 3.3 (x32 Version: 3.3.401)
Light Image Resizer 4.0.9.8 (x32 Version: 4.0.9.8)
MAGIX Speed burnR (MSI) (Version: 7.0.1.27)
MAGIX Speed burnR (MSI) (x32 Version: 7.0.1.27)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Max 5.1.9 (Version: 135.1.9)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
Native Instruments FM8 v1.0.1.002 VSTi DXi RTAS (x32)
Native Instruments Massive v1.0.1.008 VSTi DXi RTAS (x32)
Opera 12.10 (HKCU Version: 12.10.1652)
Opera 12.14 (HKCU Version: 12.14.1738)
PDF Settings CS4 (x32 Version: 9.0)
PDF24 Creator 5.3.0 (x32)
Photoshop Camera Raw (x32 Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
PMB (x32 Version: 5.5.02.12220)
QuickShare (x32 Version: 1.6.1.696)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30122)
Reason 3.0 (x32 Version: 3.0)
Sandboxie 3.58 (64-bit)
Skype Click to Call (x32 Version: 5.9.9216)
Skype™ 5.10 (x32 Version: 5.10.116)
SopCast 3.8.2 (x32 Version: 3.8.2)
Steinberg Cubase 5 (x32 Version: 5.1.2)
Suite Shared Configuration CS4 (x32 Version: 1.0)
Text-To-Speech-Runtime (x32 Version: 1.0.0.0)
Visual Studio 2008 x64 Redistributables (x32 Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 1.1.11 (x32 Version: 1.1.11)
WinAVI All in One Converter (x32 Version: 1.6.3.4360)
WinRAR archiver (x32)
==================== Restore Points =========================
Could not list Restore Points.
==================== Hosts content: ==========================
2009-07-14 04:34 - 2013-03-12 13:56 - 00001365 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
==================== Loaded Modules (whitelisted) =============
2011-12-03 05:17 - 2009-06-01 14:15 - 00051200 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2011-07-28 17:44 - 2011-07-28 17:44 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2011-07-28 17:55 - 2011-07-28 17:55 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Internet\Lokale Einstellungen:bcp5cI30QMIlyVQy1lp
AlternateDataStreams: C:\Users\Internet\Lokale Einstellungen:vUjICCTLiJaWHOTIWfBrZ
AlternateDataStreams: C:\Users\Internet\AppData\Local:bcp5cI30QMIlyVQy1lp
AlternateDataStreams: C:\Users\Internet\AppData\Local:vUjICCTLiJaWHOTIWfBrZ
AlternateDataStreams: C:\Users\Internet\AppData\Local\Anwendungsdaten:bcp5cI30QMIlyVQy1lp
AlternateDataStreams: C:\Users\Internet\AppData\Local\Anwendungsdaten:vUjICCTLiJaWHOTIWfBrZ
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: USB-Root-Hub
Description: USB-Root-Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service: usbhub
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/27/2013 03:41:38 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error: (09/27/2013 03:41:13 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (09/27/2013 10:50:13 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error: (09/27/2013 10:50:08 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error: (09/27/2013 10:47:09 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error: (09/27/2013 10:47:09 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error: (09/24/2013 09:12:57 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error: (09/24/2013 09:10:35 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (09/23/2013 02:09:17 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Error: (09/23/2013 02:07:49 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
System errors:
=============
Error: (09/29/2013 02:49:55 AM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (09/27/2013 03:50:13 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "EASYBOX",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{EF7B3349-48B3-45C2-913A-AEF9BD38A9FA}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (09/27/2013 03:47:38 PM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (09/27/2013 03:47:18 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (09/27/2013 03:26:18 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (09/27/2013 01:38:02 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "EASYBOX",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{EF7B3349-48B3-45C2-913A-AEF9BD38A9FA}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (09/27/2013 11:14:48 AM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (09/27/2013 11:14:34 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (09/27/2013 11:13:38 AM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "EASYBOX",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{EF7B3349-48B3-45C2-913A-AEF9BD38A9FA}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (09/27/2013 10:10:00 AM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Microsoft Office Sessions:
=========================
Error: (09/27/2013 03:41:38 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestc:\program files (x86)\lg electronics\lg pc suite\LGPCSuite.exe
Error: (09/27/2013 03:41:13 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (09/27/2013 10:50:13 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe
Error: (09/27/2013 10:50:08 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe
Error: (09/27/2013 10:47:09 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe
Error: (09/27/2013 10:47:09 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe
Error: (09/24/2013 09:12:57 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestc:\program files (x86)\lg electronics\lg pc suite\LGPCSuite.exe
Error: (09/24/2013 09:10:35 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (09/23/2013 02:09:17 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestc:\program files (x86)\lg electronics\lg pc suite\LGPCSuite.exe
Error: (09/23/2013 02:07:49 AM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
CodeIntegrity Errors:
===================================
Date: 2012-12-19 18:18:54.272
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files\Common Files\ATI Technologies\Multimedia\AMDMFTDecoder_64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 71%
Total physical RAM: 1770.9 MB
Available physical RAM: 500.25 MB
Total Pagefile: 3541.8 MB
Available Pagefile: 1701.2 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:48.83 GB) (Free:6.5 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: () (Fixed) (Total:93.13 GB) (Free:9.78 GB) NTFS
Drive e: () (Fixed) (Total:109.87 GB) (Free:10.48 GB) NTFS
Drive h: (WD SmartWare) (CDROM) (Total:0.6 GB) (Free:0 GB) UDF
Drive j: (Oxana) (Fixed) (Total:465.11 GB) (Free:280.08 GB) NTFS
==================== MBR & Partition Table ==================
==================== End Of Log ============================
FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-09-2013 02 Ran by Internet (ATTENTION: The logged in user is not administrator) on PETER-PC on 30-09-2013 09:07:03 Running from C:\Users\Internet\Desktop Windows 7 Ultimate (X64) OS Language: German Standard Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SbieCtrl.exe (Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe () C:\Program Files (x86)\AVG Secure Search\vprot.exe (Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SandboxieRpcSs.exe (SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe (Opera Software) C:\Program Files (x86)\Opera\opera.exe (SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SandboxieCrypto.exe ==================== Registry (Whitelisted) ================== HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware ] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation) HKCU\...\Run: [SandboxieControl] - C:\Program Files\Sandboxie\SbieCtrl.exe [638736 2011-08-27] (SANDBOXIE L.T.D) MountPoints2: {12ecfe9e-0899-11e2-9f8b-b870f4865b79} - L:\Autorun.exe MountPoints2: {a599578f-1dcc-11e2-bafb-b870f4865b79} - H:\Virbagest.exe MountPoints2: {adb6e253-2469-11e3-a709-b870f4865b79} - "H:\WD SmartWare.exe" autoplay=true MountPoints2: {b9f60dde-14cf-11e2-b420-b870f4865b79} - J:\Virbagest.exe HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-07-28] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [648032 2010-11-27] (Sony Corporation) HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411440 2013-08-15] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [1151152 2013-02-18] () HKLM-x32\...\Run: [PDFPrint] - C:\Program Files (x86)\PDF24\pdf24.exe [162856 2013-02-19] (Geek Software GmbH) HKLM-x32\...\Run: [AdobeCS4ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2009-06-08] (Adobe Systems Incorporated) AppInit_DLLs: [0 ] () AppInit_DLLs-x32: [0 ] () ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bigseekpro.com/pivotstickfigure/{F6E6D089-8ECC-41D3-A991-398866994A42} HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB80917B83F98CC01 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bigseekpro.com/pivotstickfigure/{F6E6D089-8ECC-41D3-A991-398866994A42} URLSearchHook: ATTENTION ==> Default URLSearchHook is missing. URLSearchHook: (No Name) - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No File StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={A0F99C3C-5362-473F-8764-F953BB42AB7E}&mid=abcbe6bedc1847d19abc6939b262b28a-0db1d975af31f3a6733ad6033136bb49778aa70e&lang=de&ds=AVG&pr=fr&d=2013-01-22 18:57:57&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms} BHO: QuickShare WidgetEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No File BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO-x32: QuickShare WidgetEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation) BHO-x32: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) BHO-x32: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll () BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) Toolbar: HKLM - DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File Toolbar: HKLM - QuickShare Widget - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) Toolbar: HKLM-x32 - QuickShare Widget - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation) Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll () DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\14.2.0\ViProtocol.dll () Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{167AB8BB-B558-4E98-9F9A-A84C7B6F148D}: [NameServer]8.26.56.26,156.154.70.22 Tcpip\..\Interfaces\{EF7B3349-48B3-45C2-913A-AEF9BD38A9FA}: [NameServer]8.26.56.26,156.154.70.22 FireFox: ======== FF ProfilePath: C:\Users\Internet\AppData\Roaming\Mozilla\Firefox\Profiles\0x5byzr9.default FF user.js: detected! => C:\Users\Internet\AppData\Roaming\Mozilla\Firefox\Profiles\0x5byzr9.default\user.js FF DefaultSearchEngine: AVG Secure Search FF SearchEngineOrder.1: Ask.com FF SelectedSearchEngine: AVG Secure Search FF Homepage: hxxp://isearch.avg.com/?cid={A0F99C3C-5362-473F-8764-F953BB42AB7E}&mid=abcbe6bedc1847d19abc6939b262b28a-0db1d975af31f3a6733ad6033136bb49778aa70e&lang=de&ds=AVG&pr=fr&d=2013-01-22 18:57:57&v=14.2.0.1&pid=avg&sg=&sap=hp FF Keyword.URL: hxxp://isearch.avg.com/search?cid={A0F99C3C-5362-473F-8764-F953BB42AB7E}&mid=abcbe6bedc1847d19abc6939b262b28a-0db1d975af31f3a6733ad6033136bb49778aa70e&lang=de&ds=AVG&pr=fr&d=2013-01-22 18:57:57&pid=avg&sg=&v=14.0.0.14&sap=ku&q= FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_278.dll () FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll () FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll (AVG Technologies) FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml FF Extension: Pivot Stickfigure Toolbar - C:\Users\Internet\AppData\Roaming\Mozilla\Firefox\Profiles\0x5byzr9.default\Extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC} FF Extension: DownloadHelper - C:\Users\Internet\AppData\Roaming\Mozilla\Firefox\Profiles\0x5byzr9.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} FF Extension: No Name - C:\Users\Internet\AppData\Roaming\Mozilla\Firefox\Profiles\0x5byzr9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\14.2.0.1 FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\14.2.0.1 Chrome: ======= CHR HomePage: hxxp://isearch.avg.com/?cid={A0F99C3C-5362-473F-8764-F953BB42AB7E}&mid=abcbe6bedc1847d19abc6939b262b28a-0db1d975af31f3a6733ad6033136bb49778aa70e&lang=de&ds=AVG&pr=fr&d=2013-01-22 18:57:57&v=14.2.0.1&pid=avg&sg=&sap=hp CHR RestoreOnStartup: "sync_promo":{"startup_count":10,"view_count":10},"translate_accepted_count":{"en":0},"translate_denied_count":{"en":3},"translate_language_blacklist":["en" CHR Extension: (Facemoods) - C:\Users\Internet\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0 CHR Extension: (AVG Safe Search) - C:\Users\Internet\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2210_0 CHR Extension: (AVG Do Not Track) - C:\Users\Internet\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\12.0.0.2166_0 CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\14.2.0.1\avg.crx ==================== Services (Whitelisted) ================= R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2011-07-28] (Advanced Micro Devices, Inc.) R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.) R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [94992 2011-08-27] (SANDBOXIE L.T.D) S4 vToolbarUpdater14.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe [968880 2013-02-18] () ==================== Drivers (Whitelisted) ==================== S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2012-07-03] (Google Inc) S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.) S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.) S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis64.sys [93184 2012-07-04] (LG Electronics Inc.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.) R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.) R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.) R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.) R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-09-05] (AVG Technologies CZ, s.r.o.) R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.) R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [39768 2013-02-18] (AVG Technologies) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [156288 2011-08-27] (SANDBOXIE L.T.D) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2012-01-18] () U3 aaiwemis; C:\Windows\System32\Drivers\aaiwemis.sys [0 ] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-09-30 09:07 - 2013-09-30 09:07 - 00000000 ____D C:\FRST 2013-09-30 09:06 - 2013-09-30 09:06 - 01953880 _____ (Farbar) C:\Users\Internet\Desktop\FRST64.exe 2013-09-27 14:02 - 2013-09-27 14:02 - 00007406 _____ C:\Users\Internet\Desktop\install.txt 2013-09-27 13:54 - 2013-09-27 13:55 - 00060694 _____ C:\Users\Internet\Desktop\Extras.Txt 2013-09-27 13:51 - 2013-09-27 13:54 - 00056534 _____ C:\Users\Internet\Desktop\OTL.Txt 2013-09-27 11:19 - 2013-09-27 11:19 - 00000000 ____D C:\Users\Internet\AppData\Roaming\Malwarebytes 2013-09-27 10:50 - 2013-09-27 10:50 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk 2013-09-27 10:49 - 2013-09-27 10:50 - 00000000 ____D C:\Program Files\CCleaner 2013-09-27 10:47 - 2013-09-27 10:47 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Malwarebytes 2013-09-27 10:46 - 2013-09-27 10:47 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-09-27 10:46 - 2013-09-27 10:46 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-09-27 10:46 - 2013-09-27 10:46 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-09-27 10:46 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-09-27 10:39 - 2013-09-27 10:39 - 04369632 _____ (Piriform Ltd) C:\Users\Internet\Desktop\ccsetup406.exe 2013-09-27 10:39 - 2013-09-27 10:39 - 00602112 _____ (OldTimer Tools) C:\Users\Internet\Desktop\OTL.exe 2013-09-27 10:38 - 2013-09-27 10:38 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Internet\Desktop\mbam-setup-1.75.0.1300.exe 2013-09-26 23:53 - 2013-09-26 23:53 - 01399788 _____ C:\Users\Internet\Desktop\vlc-media-player-2-0-3-es-en-br-fr-de-it-cn-ubu.deb 2013-09-20 11:30 - 2013-09-20 11:42 - 146782288 _____ C:\Users\Internet\Downloads\1997 - That's Them.rar 2013-09-20 11:25 - 2013-09-20 11:27 - 98303926 _____ C:\Users\Internet\Downloads\Smif-N-Wessun - Dah Shinin (1994).zip 2013-09-14 16:08 - 2013-09-14 16:08 - 00000995 _____ C:\Users\Peter\Desktop\SopCast.lnk 2013-09-14 16:08 - 2013-09-14 16:08 - 00000995 _____ C:\Users\Internet\Desktop\SopCast.lnk 2013-09-14 16:08 - 2013-09-14 16:08 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast 2013-09-14 16:08 - 2013-09-14 16:08 - 00000000 ____D C:\Program Files (x86)\SopCast 2013-09-12 20:08 - 2013-09-17 11:43 - 00014984 _____ C:\Users\Internet\Desktop\Kündigung.odt 2013-09-05 01:43 - 2013-09-05 01:43 - 00045880 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx64.sys ==================== One Month Modified Files and Folders ======= 2013-09-30 09:07 - 2013-09-30 09:07 - 00000000 ____D C:\FRST 2013-09-30 09:06 - 2013-09-30 09:06 - 01953880 _____ (Farbar) C:\Users\Internet\Desktop\FRST64.exe 2013-09-30 09:06 - 2009-07-14 19:58 - 00648704 _____ C:\Windows\system32\perfh007.dat 2013-09-30 09:06 - 2009-07-14 19:58 - 00128930 _____ C:\Windows\system32\perfc007.dat 2013-09-30 09:06 - 2009-07-14 07:13 - 01486084 _____ C:\Windows\system32\PerfStringBackup.INI 2013-09-30 09:02 - 2011-09-28 21:38 - 00000000 ____D C:\ProgramData\MFAData 2013-09-27 17:18 - 2009-07-14 06:51 - 00174488 _____ C:\Windows\setupact.log 2013-09-27 15:51 - 2011-09-28 21:29 - 00000000 ____D C:\Users\Peter 2013-09-27 15:49 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-09-27 14:02 - 2013-09-27 14:02 - 00007406 _____ C:\Users\Internet\Desktop\install.txt 2013-09-27 13:55 - 2013-09-27 13:54 - 00060694 _____ C:\Users\Internet\Desktop\Extras.Txt 2013-09-27 13:54 - 2013-09-27 13:51 - 00056534 _____ C:\Users\Internet\Desktop\OTL.Txt 2013-09-27 11:19 - 2013-09-27 11:19 - 00000000 ____D C:\Users\Internet\AppData\Roaming\Malwarebytes 2013-09-27 11:13 - 2012-12-11 21:06 - 00000000 ____D C:\ProgramData\AVG2013 2013-09-27 10:50 - 2013-09-27 10:50 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk 2013-09-27 10:50 - 2013-09-27 10:49 - 00000000 ____D C:\Program Files\CCleaner 2013-09-27 10:47 - 2013-09-27 10:47 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Malwarebytes 2013-09-27 10:47 - 2013-09-27 10:46 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-09-27 10:46 - 2013-09-27 10:46 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-09-27 10:46 - 2013-09-27 10:46 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-09-27 10:39 - 2013-09-27 10:39 - 04369632 _____ (Piriform Ltd) C:\Users\Internet\Desktop\ccsetup406.exe 2013-09-27 10:39 - 2013-09-27 10:39 - 00602112 _____ (OldTimer Tools) C:\Users\Internet\Desktop\OTL.exe 2013-09-27 10:38 - 2013-09-27 10:38 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Internet\Desktop\mbam-setup-1.75.0.1300.exe 2013-09-26 23:53 - 2013-09-26 23:53 - 01399788 _____ C:\Users\Internet\Desktop\vlc-media-player-2-0-3-es-en-br-fr-de-it-cn-ubu.deb 2013-09-26 17:24 - 2011-12-09 07:34 - 00002321 _____ C:\Users\Internet\Downloads\QuickDic.ini 2013-09-20 11:42 - 2013-09-20 11:30 - 146782288 _____ C:\Users\Internet\Downloads\1997 - That's Them.rar 2013-09-20 11:27 - 2013-09-20 11:25 - 98303926 _____ C:\Users\Internet\Downloads\Smif-N-Wessun - Dah Shinin (1994).zip 2013-09-18 23:10 - 2011-11-29 05:27 - 00148016 _____ C:\Windows\PFRO.log 2013-09-17 11:43 - 2013-09-12 20:08 - 00014984 _____ C:\Users\Internet\Desktop\Kündigung.odt 2013-09-14 16:08 - 2013-09-14 16:08 - 00000995 _____ C:\Users\Peter\Desktop\SopCast.lnk 2013-09-14 16:08 - 2013-09-14 16:08 - 00000995 _____ C:\Users\Internet\Desktop\SopCast.lnk 2013-09-14 16:08 - 2013-09-14 16:08 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast 2013-09-14 16:08 - 2013-09-14 16:08 - 00000000 ____D C:\Program Files (x86)\SopCast 2013-09-12 18:23 - 2012-12-11 21:09 - 00000981 _____ C:\Users\Public\Desktop\AVG 2013.lnk 2013-09-05 01:43 - 2013-09-05 01:43 - 00045880 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx64.sys Some content of TEMP: ==================== C:\Users\Internet\AppData\Local\Temp\i4jdel0.exe C:\Users\Internet\AppData\Local\Temp\SkypeSetup.exe C:\Users\Peter\AppData\Local\Temp\AskSLib.dll C:\Users\Peter\AppData\Local\Temp\talio.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== End Of Log ============================ --- --- --- --- --- --- |
|
30.09.2013, 11:06
| #5 |
| /// the machine /// TB-Ausbilder | Recycle.Bin virus auf externer Festplatte, Daten unsichtbar Platte dran machen und dran lassen. Panda USB Vaccine - Download - Filepony Das laufen lassen zum Absichern der Platte. Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
30.09.2013, 14:26
| #6 |
| | Recycle.Bin virus auf externer Festplatte, Daten unsichtbarCode:
ATTFilter ComboFix 13-09-30.02 - Peter 30.09.2013 14:12:20.1.2 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.49.1031.18.1771.392 [GMT 2:00]
ausgeführt von:: c:\users\Internet\Desktop\ComboFix.exe
AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Internet\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\users\Public\sdelevURL.tmp
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-08-28 bis 2013-09-30 ))))))))))))))))))))))))))))))
.
.
2013-09-30 12:26 . 2013-09-30 12:26 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-09-30 12:26 . 2013-09-30 12:26 -------- d-----w- c:\users\Peter\AppData\Local\temp
2013-09-30 11:58 . 2013-09-30 11:58 -------- d-----w- c:\programdata\Panda Security
2013-09-30 11:58 . 2013-09-30 11:58 -------- d-----w- c:\program files (x86)\Panda USB Vaccine
2013-09-30 07:07 . 2013-09-30 07:07 -------- d-----w- C:\FRST
2013-09-27 09:19 . 2013-09-27 09:19 -------- d-----w- c:\users\Internet\AppData\Roaming\Malwarebytes
2013-09-27 08:49 . 2013-09-27 08:50 -------- d-----w- c:\program files\CCleaner
2013-09-27 08:47 . 2013-09-27 08:47 -------- d-----w- c:\users\Peter\AppData\Roaming\Malwarebytes
2013-09-27 08:46 . 2013-09-27 08:46 -------- d-----w- c:\programdata\Malwarebytes
2013-09-27 08:46 . 2013-09-27 08:47 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-09-27 08:46 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-09-14 14:08 . 2013-09-14 14:08 -------- d-----w- c:\program files (x86)\SopCast
2013-09-04 23:43 . 2013-09-04 23:43 45880 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-19 23:51 . 2013-07-19 23:51 311608 ----a-w- c:\windows\system32\drivers\avgloga.sys
2013-07-19 23:50 . 2013-07-19 23:50 71480 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2013-07-19 23:50 . 2013-07-19 23:50 246072 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2013-07-19 23:50 . 2013-07-19 23:50 206648 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2012-11-06 19:15 . 2012-11-06 19:14 1398680 ----a-w- c:\program files (x86)\BitTorrent.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{31ad400d-1b06-4e33-a59a-90c2c140cba0}]
2009-11-25 10:47 297808 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2013-02-18 13:39 1929392 ----a-w- c:\program files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll" [2013-02-18 1929392]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2011-08-27 638736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-07-28 336384]
"PMBVolumeWatcher"="c:\program files (x86)\Sony\PMB\PMBVolumeWatcher.exe" [2010-11-26 648032]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2013-08-15 4411440]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2013-02-18 1151152]
"PDFPrint"="c:\program files (x86)\PDF24\pdf24.exe" [2013-02-19 162856]
"AdobeCS4ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2009-06-08 611712]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
" Malwarebytes Anti-Malware "="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2013-04-04 532040]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 andnetadb;ADB Interface DriverNet;c:\windows\system32\Drivers\lgandnetadb.sys;c:\windows\SYSNATIVE\Drivers\lgandnetadb.sys [x]
R3 AndNetDiag;LGE AndroidNet USB Serial Port;c:\windows\system32\DRIVERS\lgandnetdiag64.sys;c:\windows\SYSNATIVE\DRIVERS\lgandnetdiag64.sys [x]
R3 ANDNetModem;LGE AndroidNet USB Modem;c:\windows\system32\DRIVERS\lgandnetmodem64.sys;c:\windows\SYSNATIVE\DRIVERS\lgandnetmodem64.sys [x]
R3 andnetndis;LGE AndroidNet NDIS Ethernet Adapter;c:\windows\system32\DRIVERS\lgandnetndis64.sys;c:\windows\SYSNATIVE\DRIVERS\lgandnetndis64.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 netr7364;Belkin Wireless 54G USB Network Adapter Driver for Vista;c:\windows\system32\DRIVERS\netr7364.sys;c:\windows\SYSNATIVE\DRIVERS\netr7364.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R4 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys;c:\windows\SYSNATIVE\Drivers\sptd.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys;c:\windows\SYSNATIVE\drivers\avgtpx64.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
.
.
.
--------- X64 Entries -----------
.
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://start.facemoods.com/?a=ddrnw
mStart Page = hxxp://www.bigseekpro.com/pivotstickfigure/{F6E6D089-8ECC-41D3-A991-398866994A42}
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
mSearchAssistant = hxxp://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
TCP: DhcpNameServer = 192.168.2.1
TCP: Interfaces\{167AB8BB-B558-4E98-9F9A-A84C7B6F148D}: NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{EF7B3349-48B3-45C2-913A-AEF9BD38A9FA}: NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{EF7B3349-48B3-45C2-913A-AEF9BD38A9FA}\373686F6C6C656: NameServer = 8.26.56.26,156.154.70.22
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\14.2.0\ViProtocol.dll
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-Browser Infrastructure Helper - c:\users\Peter\AppData\Local\Smartbar\Application\QuickShare.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_168_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_168_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_168_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_168_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-09-30 14:33:48
ComboFix-quarantined-files.txt 2013-09-30 12:33
.
Vor Suchlauf: 8.713.449.472 Bytes frei
Nach Suchlauf: 9.470.971.904 Bytes frei
.
- - End Of File - - 4A8244BEF6F035AA1F5289A405A1AD0A
A36C5E4F47E84449FF07ED3517B43A31
|
|
30.09.2013, 19:45
| #7 |
| /// the machine /// TB-Ausbilder | Recycle.Bin virus auf externer Festplatte, Daten unsichtbar Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Recycle.Bin virus auf externer Festplatte, Daten unsichtbar |
| andere, anderen, avg security toolbar, bereinige, datei, daten, daten unsichtbar, externer, festplatte, msn deutschland, nicht öffnen, platte, plug-in, problem, programme, programmen, pup.offerbundler.st, pup.optional.bandoo, pup.optional.quickshare.a, pup.optional.smartbar.a, pup.riskwaretool.ck, riskware.tool.ck, secure search, strong, textdatei, threat, ubuntu, unsichtbar, vtoolbarupdater, öffnen |
Linear-Darstellung
