Laptop sicher nach BDS/TDSS.95846427.9 ?

Scotland · 08.10.2013, 12:16

Hallo,

nachdem gestern eine mail an meinen Vater zurück gekommen ist und mir mein gmx folgenden Grund gennannt hat:
SMTP error from remote server in greeting:
host: e06-mx1.emea.ibm.com:
Your IP is listed as spammer (212.227.17.20)

hab ich Avira mein System checken lassen dabei ist das folgende rausgekommen

Code:

ATTFilter

Exportierte Ereignisse:

08.10.2013 01:17 [System-Scanner] Malware gefunden
      Die Datei 'C:\Users\Eva\AppData\Local\Temp\jar_cache6406410976939519272.tmp'
      enthielt einen Virus oder unerwünschtes Programm 'Java/Lamar.SLQ.7' [virus].
      Durchgeführte Aktion(en):
      Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '4fd5c2a9.qua' 
      verschoben!

08.10.2013 01:17 [System-Scanner] Malware gefunden
      Die Datei 
      'C:\Users\Eva\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\6f88aa32-41aa7ee
      5'
      enthielt einen Virus oder unerwünschtes Programm 'BDS/TDSS.95846427.9' 
      [backdoor].
      Durchgeführte Aktion(en):
      Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '570ced09.qua' 
      verschoben!

08.10.2013 01:17 [System-Scanner] Malware gefunden
      Die Datei 'C:\Users\Eva\AppData\Local\Temp\99E6.tmp'
      enthielt einen Virus oder unerwünschtes Programm 'BDS/TDSS.95846427.9' 
      [backdoor].
      Durchgeführte Aktion(en):
      Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '1dd798a9.qua' 
      verschoben!

Danach hab ich nen bisschen im Internet rumgeschaut aber nichts zu dem backdoorserver gefunden den ich drauf hatte. Nachdem ich hier im Forum auch noch nen bischen nachgelsen hatte hab ichh mir malewarebytes runtergeladen, die mir eine mega liste von Pup-OptionalSmartbar.A gegeben hat und zweimal Trojan.Spyeyes

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.10.08.03

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Eva :: EVA-PC [administrator]

08.10.2013 11:45:50
mbam-log-2013-10-08 (11-45-50).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 224025
Time elapsed: 5 minute(s), 53 second(s)

Memory Processes Detected: 1
C:\Users\Eva\AppData\Local\Smartbar\Application\QuickShare.exe (PUP.Optional.SmartBar.A) -> 3840 -> Delete on reboot.

Memory Modules Detected: 31
C:\Users\Eva\AppData\Local\Smartbar\Application\MACTrackBarLib.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.Logging.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.GUI.Multimedia.Loader.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.EventManager.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.Base.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.ChromeLocalPlugin.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.DefaultBrowser.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.FireFoxLocalPlugin.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.ShareManagerLocalPlugin.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Personalization.BusinessEntities.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Personalization.BusinessLogic.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Personalization.Settings.UserSettingsManager.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.AutomaticUpdates.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.ProcessDownMonitor.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.SetBrowsersSettings.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.SetBrowsersSettingsAutoUpdater.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.SideBySide.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.Utilities.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 1
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.StartPage) -> Bad: (hxxp://www2.delta-search.com/?affID=120660&babsrc=HP_ss&mntrId=9CAA02F46A6469D6) Good: (hxxp://www.google.com) -> No action taken.

Folders Detected: 32
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\ServicesPlugins (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles\Configs (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles\Profiles (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles\RollBack (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles\RollBack\Profiles (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\QuickShare.exe_StrongName_vuedtbpoockmp1sq45awfxuouevabx0i (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\QuickShare.exe_StrongName_vuedtbpoockmp1sq45awfxuouevabx0i\1.6.1.906 (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Roaming\File Scout (PUP.Optional.FileScout.A) -> No action taken.
C:\Recycle.Bin (Trojan.Spyeyes) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\ar (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Configs (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\de (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\es (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\fr (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\he (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\PublisherImages (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\it (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\nl (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\pt (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\ru (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\tr (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Common (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Common\Configs (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.

Files Detected: 654
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\0E29BC94-7C9B-4A23-B682-81D0D1A806E1.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\0E29BC94-7C9B-4A23-B682-81D0D1A806E1hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\0E29BC94-7C9B-4A23-B682-81D0D1A806E1press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\0FA6F971-16AA-4921-A39F-543C9839CABE.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\0FA6F971-16AA-4921-A39F-543C9839CABEhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\0FA6F971-16AA-4921-A39F-543C9839CABEpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\101FF2F5-9F51-405F-ACBB-D4A5F3601679.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\101FF2F5-9F51-405F-ACBB-D4A5F3601679hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\101FF2F5-9F51-405F-ACBB-D4A5F3601679press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\1A039A19-BD34-4760-8DE0-E9A8E8AA8827.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\1A039A19-BD34-4760-8DE0-E9A8E8AA8827Ehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\1A039A19-BD34-4760-8DE0-E9A8E8AA8827press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\1FFDDB6E-8EB3-4CE0-9C2B-44910A3C5975.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\1FFDDB6E-8EB3-4CE0-9C2B-44910A3C5975hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\1FFDDB6E-8EB3-4CE0-9C2B-44910A3C5975press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\30657846-199A-4D0D-984D-BE588084F1F6.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\30657846-199A-4D0D-984D-BE588084F1F6hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\30657846-199A-4D0D-984D-BE588084F1F6press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\30DFF8F0-BA79-4360-A3EA-51B6D006133C.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\30DFF8F0-BA79-4360-A3EA-51B6D006133CHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\30DFF8F0-BA79-4360-A3EA-51B6D006133CPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\372FF78B-6E4B-4B38-8E3F-797B4680FB98.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\372FF78B-6E4B-4B38-8E3F-797B4680FB98hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\372FF78B-6E4B-4B38-8E3F-797B4680FB98press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\39028511-3F15-4442-9188-DDC86BE1BBD0.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\39028511-3F15-4442-9188-DDC86BE1BBD0hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\39028511-3F15-4442-9188-DDC86BE1BBD0press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\39079B96-6DD1-42DE-89E6-76F79C8BB4E4.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\39079B96-6DD1-42DE-89E6-76F79C8BB4E4Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\39079B96-6DD1-42DE-89E6-76F79C8BB4E4Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\3C610B86-19DE-4757-B46A-871C9C27FF0A.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\3C610B86-19DE-4757-B46A-871C9C27FF0AHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\3C610B86-19DE-4757-B46A-871C9C27FF0APress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\3f9ac55c-6db5-4c01-9d34-a92da2347be6.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\3f9ac55c-6db5-4c01-9d34-a92da2347be6hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\3f9ac55c-6db5-4c01-9d34-a92da2347be6press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\412D5531-A3E1-40BB-B0C3-71E3C45A4E13.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\412D5531-A3E1-40BB-B0C3-71E3C45A4E13hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\412D5531-A3E1-40BB-B0C3-71E3C45A4E13press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\4a110a71-0e7e-4552-af6e-3ef88b2d6511.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\4a110a71-0e7e-4552-af6e-3ef88b2d6511Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\4a110a71-0e7e-4552-af6e-3ef88b2d6511Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5252af60-ef03-41a8-babe-415dba235478.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5252af60-ef03-41a8-babe-415dba235478Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5252af60-ef03-41a8-babe-415dba235478Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\536b9063-fc09-4e82-8769-73c77317aae6.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\536b9063-fc09-4e82-8769-73c77317aae6hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\536b9063-fc09-4e82-8769-73c77317aae6press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\56591C8E-DA35-4A97-AC9B-5055E0F7089E.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\56591C8E-DA35-4A97-AC9B-5055E0F7089Ehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\56591C8E-DA35-4A97-AC9B-5055E0F7089Epress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5D0A6D97-85F2-47E9-8F04-04A747B25A0E.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5D0A6D97-85F2-47E9-8F04-04A747B25A0Ehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5D0A6D97-85F2-47E9-8F04-04A747B25A0Epress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5F488FA5-C35B-44A9-A0E4-2C7B41035780.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5F488FA5-C35B-44A9-A0E4-2C7B41035780hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\5F488FA5-C35B-44A9-A0E4-2C7B41035780press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\65B1A402-FC79-410D-AE1C-AF92E206AC1D.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\65B1A402-FC79-410D-AE1C-AF92E206AC1Dhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\65B1A402-FC79-410D-AE1C-AF92E206AC1Dpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7EC.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7EChover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7ECpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\708d8b1e-6545-474a-9f07-d854acf8ad43.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\708d8b1e-6545-474a-9f07-d854acf8ad43hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\708d8b1e-6545-474a-9f07-d854acf8ad43press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\72CDFC8C-6F2D-4df8-9811-18C4D682C406.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\72CDFC8C-6F2D-4df8-9811-18C4D682C406hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\72CDFC8C-6F2D-4df8-9811-18C4D682C406press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\7CF3BACC-BF1C-4860-BB4E-F1A8440250FE.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\7CF3BACC-BF1C-4860-BB4E-F1A8440250FEhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\7CF3BACC-BF1C-4860-BB4E-F1A8440250FEpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\7fe83ae9-caef-41f0-aa99-d114c0ce3941.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\7fe83ae9-caef-41f0-aa99-d114c0ce3941hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\7fe83ae9-caef-41f0-aa99-d114c0ce3941press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\8217d395-9ebe-4ebb-807c-38cc911a307f.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\8217d395-9ebe-4ebb-807c-38cc911a307fHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\8217d395-9ebe-4ebb-807c-38cc911a307fPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\87442BEF-FD31-405C-A807-650CB7CC8886.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\87442BEF-FD31-405C-A807-650CB7CC8886hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\87442BEF-FD31-405C-A807-650CB7CC8886press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\89582936-094C-4880-B87A-2AF16FC33B2C.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\89582936-094C-4880-B87A-2AF16FC33B2Chover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\89582936-094C-4880-B87A-2AF16FC33B2Cpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\8b3608b1-c2d5-4ad3-a382-33601228c6d3.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\8b3608b1-c2d5-4ad3-a382-33601228c6d3hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\8b3608b1-c2d5-4ad3-a382-33601228c6d3press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\8F4131CE-D4F0-4F08-9102-78C397F3748C.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\8F4131CE-D4F0-4F08-9102-78C397F3748CHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\8F4131CE-D4F0-4F08-9102-78C397F3748CPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\90165d32-a3ef-438c-8625-be9b538b6eba.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\90165d32-a3ef-438c-8625-be9b538b6ebaHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\90165d32-a3ef-438c-8625-be9b538b6ebaPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\929407CC-7E48-47E0-A9F9-A4A167AC24D1.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\929407CC-7E48-47E0-A9F9-A4A167AC24D1hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\929407CC-7E48-47E0-A9F9-A4A167AC24D1press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\95ae73f0-9799-46fd-bceb-57efcb7f0537.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\95ae73f0-9799-46fd-bceb-57efcb7f0537hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\95ae73f0-9799-46fd-bceb-57efcb7f0537press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\A1D51ECC-DBD7-4C7E-9A75-364B8E2F1D8C.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\A1D51ECC-DBD7-4C7E-9A75-364B8E2F1D8Chover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\A1D51ECC-DBD7-4C7E-9A75-364B8E2F1D8Cpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\A75C6A50-13B0-4704-AA87-8DD113E31310.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\A75C6A50-13B0-4704-AA87-8DD113E31310hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\A75C6A50-13B0-4704-AA87-8DD113E31310press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\a94e6710-6021-4cdc-82de-1c001238bd8f.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\a94e6710-6021-4cdc-82de-1c001238bd8fHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\a94e6710-6021-4cdc-82de-1c001238bd8fPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\B1BEF453-913F-4EC4-B057-A2BB21C09DCB.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\B1BEF453-913F-4EC4-B057-A2BB21C09DCBhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\B1BEF453-913F-4EC4-B057-A2BB21C09DCBpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\B1FE90EC-CEDA-4467-86CE-6CD7F1D3D55F.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\B1FE90EC-CEDA-4467-86CE-6CD7F1D3D55Fhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\B1FE90EC-CEDA-4467-86CE-6CD7F1D3D55Fpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\B81443D4-15F7-4B97-9DC8-3645A012C817.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\B81443D4-15F7-4B97-9DC8-3645A012C817hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\B81443D4-15F7-4B97-9DC8-3645A012C817press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\bc8dcde3-3fd0-4f9b-af5d-15c20f3239ab.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\bc8dcde3-3fd0-4f9b-af5d-15c20f3239ab.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\bc8dcde3-3fd0-4f9b-af5d-15c20f3239abhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\bc8dcde3-3fd0-4f9b-af5d-15c20f3239abpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\C0AC006A-9C65-42F9-AE11-D675DCCC6840.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\C0AC006A-9C65-42F9-AE11-D675DCCC6840hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\C0AC006A-9C65-42F9-AE11-D675DCCC6840press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\c1546a00-e42d-4ce7-aac5-5353a895f3cf.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\c1546a00-e42d-4ce7-aac5-5353a895f3cfhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\c1546a00-e42d-4ce7-aac5-5353a895f3cfpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\CCEE5A80-8C88-4BB1-89BF-4A7EFF93E452.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\CCEE5A80-8C88-4BB1-89BF-4A7EFF93E452hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\CCEE5A80-8C88-4BB1-89BF-4A7EFF93E452press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\CE1500FE-6F59-421C-8005-3E137AC051A2.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\CE1500FE-6F59-421C-8005-3E137AC051A2hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\CE1500FE-6F59-421C-8005-3E137AC051A2press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D2B0680C-17C4-492D-85D7-D4CA3E724D50.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D2B0680C-17C4-492D-85D7-D4CA3E724D50hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D2B0680C-17C4-492D-85D7-D4CA3E724D50press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D469E1BA-B745-45B3-B7EE-378E000E74C8.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D469E1BA-B745-45B3-B7EE-378E000E74C8Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D469E1BA-B745-45B3-B7EE-378E000E74C8Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D5113B95-781C-4737-A26F-3ED3A2CB876F.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D5113B95-781C-4737-A26F-3ED3A2CB876Fhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D5113B95-781C-4737-A26F-3ED3A2CB876Fpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\e2870479-a572-412b-8a8f-5604d19b55cd.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\e2870479-a572-412b-8a8f-5604d19b55cdhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\e2870479-a572-412b-8a8f-5604d19b55cdpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E3345571-EEF9-4041-8C24-F7F5A9331C23.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E3345571-EEF9-4041-8C24-F7F5A9331C23hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E3345571-EEF9-4041-8C24-F7F5A9331C23press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\e357f164-c5d8-4257-aab2-fe0cad41c12e.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\e357f164-c5d8-4257-aab2-fe0cad41c12e.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\e357f164-c5d8-4257-aab2-fe0cad41c12ehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\e357f164-c5d8-4257-aab2-fe0cad41c12epress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E458493F-867F-4712-A3AF-D9664ED47C19.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E458493F-867F-4712-A3AF-D9664ED47C19hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E458493F-867F-4712-A3AF-D9664ED47C19press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E52BEFE7-6535-439c-B168-A3B105E4212E.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E52BEFE7-6535-439c-B168-A3B105E4212Ehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E52BEFE7-6535-439c-B168-A3B105E4212Epress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E8584703-6CA5-4351-82CC-09E40938A066.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E8584703-6CA5-4351-82CC-09E40938A066hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\E8584703-6CA5-4351-82CC-09E40938A066press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\e8967c62-9ea0-4fde-9832-2c10f1d580de.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\e8967c62-9ea0-4fde-9832-2c10f1d580dehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\e8967c62-9ea0-4fde-9832-2c10f1d580depress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\EA99E20A-FBBA-4197-954B-E2013280A29B.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\EA99E20A-FBBA-4197-954B-E2013280A29Bhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\EA99E20A-FBBA-4197-954B-E2013280A29Bpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\F5297DBC-3B3B-4744-A54D-308EAD98D223.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\F5297DBC-3B3B-4744-A54D-308EAD98D223hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\F5297DBC-3B3B-4744-A54D-308EAD98D223press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\f7fd4890-7f89-4c73-8ff2-52105657cbb6.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\f7fd4890-7f89-4c73-8ff2-52105657cbb6Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\f7fd4890-7f89-4c73-8ff2-52105657cbb6Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BD.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BDhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BDpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\FA3DE5E1-19AC-42FA-8E77-C25C60E60EC7.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\FA3DE5E1-19AC-42FA-8E77-C25C60E60EC7hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\FA3DE5E1-19AC-42FA-8E77-C25C60E60EC7press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\fac5189f-f2c7-4eed-bae8-011eca170d7b.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\fac5189f-f2c7-4eed-bae8-011eca170d7bhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\fac5189f-f2c7-4eed-bae8-011eca170d7bpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\00659FA4-2CAD-45fc-A8A0-DB7862840BA9.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\00659FA4-2CAD-45fc-A8A0-DB7862840BA9hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\00659FA4-2CAD-45fc-A8A0-DB7862840BA9press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\07a9a58b-c653-4285-a870-1fa70cb6c00c.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\07a9a58b-c653-4285-a870-1fa70cb6c00c.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\07a9a58b-c653-4285-a870-1fa70cb6c00chover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\07a9a58b-c653-4285-a870-1fa70cb6c00cpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\0DB19630-EB33-4B18-8357-78FC2687C788.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\0DB19630-EB33-4B18-8357-78FC2687C788hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\0DB19630-EB33-4B18-8357-78FC2687C788press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\0E29BC94-7C9B-4A23-B682-81D0D1A806E1.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\0E29BC94-7C9B-4A23-B682-81D0D1A806E1hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\0E29BC94-7C9B-4A23-B682-81D0D1A806E1press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\0FA6F971-16AA-4921-A39F-543C9839CABE.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\0FA6F971-16AA-4921-A39F-543C9839CABEhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\0FA6F971-16AA-4921-A39F-543C9839CABEpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\101FF2F5-9F51-405F-ACBB-D4A5F3601679.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\101FF2F5-9F51-405F-ACBB-D4A5F3601679hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\101FF2F5-9F51-405F-ACBB-D4A5F3601679press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE081313.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE081313hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE081313press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE08E613.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE08E613hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE08E613press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE131313.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE131313hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\139D15A7-C5E1-4C5E-ABF2-484DBE131313press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\1A039A19-BD34-4760-8DE0-E9A8E8AA8827.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\1A039A19-BD34-4760-8DE0-E9A8E8AA8827hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\1A039A19-BD34-4760-8DE0-E9A8E8AA8827press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\1FFDDB6E-8EB3-4CE0-9C2B-44910A3C5975.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\1FFDDB6E-8EB3-4CE0-9C2B-44910A3C5975hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\1FFDDB6E-8EB3-4CE0-9C2B-44910A3C5975press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\2141A104-423C-43EF-A27A-CA0DADB7B9BC.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\2141A104-423C-43EF-A27A-CA0DADB7B9BChover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\2141A104-423C-43EF-A27A-CA0DADB7B9BCpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\28E2C7BC-F857-44D5-A42F-7DD66FAB5EE6.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\28E2C7BC-F857-44D5-A42F-7DD66FAB5EE6hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\28E2C7BC-F857-44D5-A42F-7DD66FAB5EE6press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\30657846-199A-4D0D-984D-BE588084F1F6.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\30657846-199A-4D0D-984D-BE588084F1F6hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\30657846-199A-4D0D-984D-BE588084F1F6press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\30DEBC8A-1CC6-4480-B3E5-C55E214043A8.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\30DEBC8A-1CC6-4480-B3E5-C55E214043A8Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\30DEBC8A-1CC6-4480-B3E5-C55E214043A8Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\30DFF8F0-BA79-4360-A3EA-51B6D006133C.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\30DFF8F0-BA79-4360-A3EA-51B6D006133CHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\30DFF8F0-BA79-4360-A3EA-51B6D006133CPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\372FF78B-6E4B-4B38-8E3F-797B4680FB98.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\372FF78B-6E4B-4B38-8E3F-797B4680FB98hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\372FF78B-6E4B-4B38-8E3F-797B4680FB98press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\39028511-3F15-4442-9188-DDC86BE1BBD0.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\39028511-3F15-4442-9188-DDC86BE1BBD0hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\39028511-3F15-4442-9188-DDC86BE1BBD0press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\39079B96-6DD1-42DE-89E6-76F79C8BB4E4.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\39079B96-6DD1-42DE-89E6-76F79C8BB4E4Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\39079B96-6DD1-42DE-89E6-76F79C8BB4E4Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\3C610B86-19DE-4757-B46A-871C9C27FF0A.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\3C610B86-19DE-4757-B46A-871C9C27FF0AHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\3C610B86-19DE-4757-B46A-871C9C27FF0APress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\3f9ac55c-6db5-4c01-9d34-a92da2347be6.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\3f9ac55c-6db5-4c01-9d34-a92da2347be6.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\3f9ac55c-6db5-4c01-9d34-a92da2347be6hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\3f9ac55c-6db5-4c01-9d34-a92da2347be6press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\412D5531-A3E1-40BB-B0C3-71E3C45A4E13.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\412D5531-A3E1-40BB-B0C3-71E3C45A4E13hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\412D5531-A3E1-40BB-B0C3-71E3C45A4E13press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\47BFF758-9581-4C68-9293-1181A70CDEE8.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\47BFF758-9581-4C68-9293-1181A70CDEE8Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\47BFF758-9581-4C68-9293-1181A70CDEE8Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\48A9C19C-5A4C-4652-A6E7-1C17AEE45675.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\48A9C19C-5A4C-4652-A6E7-1C17AEE45675Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\48A9C19C-5A4C-4652-A6E7-1C17AEE45675Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\4a110a71-0e7e-4552-af6e-3ef88b2d6511.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\4a110a71-0e7e-4552-af6e-3ef88b2d6511.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\4a110a71-0e7e-4552-af6e-3ef88b2d6511Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\4a110a71-0e7e-4552-af6e-3ef88b2d6511Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\511B6809-2468-4A36-A6FC-FC24F05499BE.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\511B6809-2468-4A36-A6FC-FC24F05499BEHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\511B6809-2468-4A36-A6FC-FC24F05499BEPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5252af60-ef03-41a8-babe-415dba235478.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5252af60-ef03-41a8-babe-415dba235478.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5252af60-ef03-41a8-babe-415dba235478Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5252af60-ef03-41a8-babe-415dba235478Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\536b9063-fc09-4e82-8769-73c77317aae6.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\536b9063-fc09-4e82-8769-73c77317aae6.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\536b9063-fc09-4e82-8769-73c77317aae6hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\536b9063-fc09-4e82-8769-73c77317aae6press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5558C4C6-18C1-4AF3-8F8D-0E2CF70D19C8press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\56591C8E-DA35-4A97-AC9B-5055E0F7089E.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\56591C8E-DA35-4A97-AC9B-5055E0F7089Ehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\56591C8E-DA35-4A97-AC9B-5055E0F7089Epress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5D0A6D97-85F2-47E9-8F04-04A747B25A0E.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5D0A6D97-85F2-47E9-8F04-04A747B25A0Ehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5D0A6D97-85F2-47E9-8F04-04A747B25A0Epress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5F1B269B-7C66-474F-A473-BE7FA51BE5B2.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5F1B269B-7C66-474F-A473-BE7FA51BE5B2hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5F1B269B-7C66-474F-A473-BE7FA51BE5B2press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5F488FA5-C35B-44A9-A0E4-2C7B41035780.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5F488FA5-C35B-44A9-A0E4-2C7B41035780hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\5F488FA5-C35B-44A9-A0E4-2C7B41035780press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\65B1A402-FC79-410D-AE1C-AF92E206AC1D.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\65B1A402-FC79-410D-AE1C-AF92E206AC1Dhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\65B1A402-FC79-410D-AE1C-AF92E206AC1Dpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7EC.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7EChover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\69C7DFE3-CDAE-4A22-B753-93ABF8BAE7ECpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\708d8b1e-6545-474a-9f07-d854acf8ad43.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\708d8b1e-6545-474a-9f07-d854acf8ad43.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\708d8b1e-6545-474a-9f07-d854acf8ad43hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\708d8b1e-6545-474a-9f07-d854acf8ad43press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\72CDFC8C-6F2D-4df8-9811-18C4D682C406.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\72CDFC8C-6F2D-4df8-9811-18C4D682C406hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\72CDFC8C-6F2D-4df8-9811-18C4D682C406press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\7CF3BACC-BF1C-4860-BB4E-F1A8440250FE.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\7CF3BACC-BF1C-4860-BB4E-F1A8440250FEhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\7CF3BACC-BF1C-4860-BB4E-F1A8440250FEpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\7fe83ae9-caef-41f0-aa99-d114c0ce3941.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\7fe83ae9-caef-41f0-aa99-d114c0ce3941.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\7fe83ae9-caef-41f0-aa99-d114c0ce3941hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\7fe83ae9-caef-41f0-aa99-d114c0ce3941press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8217d395-9ebe-4ebb-807c-38cc911a307f.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8217d395-9ebe-4ebb-807c-38cc911a307f.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8217d395-9ebe-4ebb-807c-38cc911a307fHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8217d395-9ebe-4ebb-807c-38cc911a307fPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\83B4B6FE-910D-412E-BED4-E3AFA6E5CA61press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\87442BEF-FD31-405C-A807-650CB7CC8886.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\87442BEF-FD31-405C-A807-650CB7CC8886hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\87442BEF-FD31-405C-A807-650CB7CC8886press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\89582936-094c-4880-b87a-2af16fc31313.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\89582936-094c-4880-b87a-2af16fc31313Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\89582936-094c-4880-b87a-2af16fc31313Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\89582936-094C-4880-B87A-2AF16FC33B2C.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\89582936-094C-4880-B87A-2AF16FC33B2Chover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\89582936-094C-4880-B87A-2AF16FC33B2Cpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8b3608b1-c2d5-4ad3-a382-33601228c6d3.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8b3608b1-c2d5-4ad3-a382-33601228c6d3hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8b3608b1-c2d5-4ad3-a382-33601228c6d3press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8D338D8F-3189-41AB-BCFF-2958D48AAA6A.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8D338D8F-3189-41AB-BCFF-2958D48AAA6AHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8D338D8F-3189-41AB-BCFF-2958D48AAA6APress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8F4131CE-D4F0-4F08-9102-78C397F3748C.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8F4131CE-D4F0-4F08-9102-78C397F3748CHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\8F4131CE-D4F0-4F08-9102-78C397F3748CPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\90165d32-a3ef-438c-8625-be9b538b6eba.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\90165d32-a3ef-438c-8625-be9b538b6eba.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\90165d32-a3ef-438c-8625-be9b538b6ebaHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\90165d32-a3ef-438c-8625-be9b538b6ebaPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\929407CC-7E48-47E0-A9F9-A4A167AC24D1.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\929407CC-7E48-47E0-A9F9-A4A167AC24D1hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\929407CC-7E48-47E0-A9F9-A4A167AC24D1press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\95ae73f0-9799-46fd-bceb-57efcb7f0537.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\95ae73f0-9799-46fd-bceb-57efcb7f0537.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\95ae73f0-9799-46fd-bceb-57efcb7f0537hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\95ae73f0-9799-46fd-bceb-57efcb7f0537press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\95D9E2EA-40AD-40B8-95D0-58209F584BBE.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\95D9E2EA-40AD-40B8-95D0-58209F584BBEHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\95D9E2EA-40AD-40B8-95D0-58209F584BBEPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A1D51ECC-DBD7-4C7E-9A75-364B8E2F1D8C.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A1D51ECC-DBD7-4C7E-9A75-364B8E2F1D8Chover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A1D51ECC-DBD7-4C7E-9A75-364B8E2F1D8Cpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A1F75F5D-1D24-4F7A-9ABC-BDA55E332E67press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A46C5E77-16B5-42A0-8761-C6F861D22308.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A46C5E77-16B5-42A0-8761-C6F861D22308Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A46C5E77-16B5-42A0-8761-C6F861D22308Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A75C6A50-13B0-4704-AA87-8DD113E31310.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A75C6A50-13B0-4704-AA87-8DD113E31310hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\A75C6A50-13B0-4704-AA87-8DD113E31310press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\a94e6710-6021-4cdc-82de-1c001238bd8f.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\a94e6710-6021-4cdc-82de-1c001238bd8f.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\a94e6710-6021-4cdc-82de-1c001238bd8fHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\a94e6710-6021-4cdc-82de-1c001238bd8fPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\B1BEF453-913F-4EC4-B057-A2BB21C09DCB.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\B1BEF453-913F-4EC4-B057-A2BB21C09DCB.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\B1BEF453-913F-4EC4-B057-A2BB21C09DCBhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\B1BEF453-913F-4EC4-B057-A2BB21C09DCBpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\B1FE90EC-CEDA-4467-86CE-6CD7F1D3D55F.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\B1FE90EC-CEDA-4467-86CE-6CD7F1D3D55Fhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\B1FE90EC-CEDA-4467-86CE-6CD7F1D3D55Fpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\B81443D4-15F7-4B97-9DC8-3645A012C817.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\B81443D4-15F7-4B97-9DC8-3645A012C817hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\B81443D4-15F7-4B97-9DC8-3645A012C817press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\bbf677d4-d0bc-4a59-be4a-6a6cfd3c6c28press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\BC303DD4-37E7-4242-8DDD-8DEE2171066B.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\BC303DD4-37E7-4242-8DDD-8DEE2171066Bhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\BC303DD4-37E7-4242-8DDD-8DEE2171066Bpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\bc8dcde3-3fd0-4f9b-af5d-15c20f3239ab.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\bc8dcde3-3fd0-4f9b-af5d-15c20f3239ab.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\bc8dcde3-3fd0-4f9b-af5d-15c20f3239abhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\bc8dcde3-3fd0-4f9b-af5d-15c20f3239abpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\BCE4103A-6273-4E49-8B43-2BDEDA1C91B0press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\BE3608B1-C2D5-4AD3-A382-45635338C6D1.PNG (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\BE3608B1-C2D5-4AD3-A382-45635338C6D1HOVER.PNG (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\BE3608B1-C2D5-4AD3-A382-45635338C6D1PRESS.PNG (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\C0AC006A-9C65-42F9-AE11-D675DCCC6840.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\C0AC006A-9C65-42F9-AE11-D675DCCC6840hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\C0AC006A-9C65-42F9-AE11-D675DCCC6840press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\c1546a00-e42d-4ce7-aac5-5353a895f3cf.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\c1546a00-e42d-4ce7-aac5-5353a895f3cf.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\c1546a00-e42d-4ce7-aac5-5353a895f3cfhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\c1546a00-e42d-4ce7-aac5-5353a895f3cfpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\C41AD485-FE91-4EFE-A613-66CB2BA96EAB.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\C41AD485-FE91-4EFE-A613-66CB2BA96EABHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\C41AD485-FE91-4EFE-A613-66CB2BA96EABPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\CCEE5A80-8C88-4BB1-89BF-4A7EFF93E452.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\CCEE5A80-8C88-4BB1-89BF-4A7EFF93E452hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\CCEE5A80-8C88-4BB1-89BF-4A7EFF93E452press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\CE1500FE-6F59-421C-8005-3E137AC051A2.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\CE1500FE-6F59-421C-8005-3E137AC051A2hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\CE1500FE-6F59-421C-8005-3E137AC051A2press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D2B0680C-17C4-492D-85D7-D4CA3E724D50.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D2B0680C-17C4-492D-85D7-D4CA3E724D50hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D2B0680C-17C4-492D-85D7-D4CA3E724D50press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D469E1BA-B745-45B3-B7EE-378E000E74C8.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D469E1BA-B745-45B3-B7EE-378E000E74C8Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D469E1BA-B745-45B3-B7EE-378E000E74C8Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D5113B95-781C-4737-A26F-3ED3A2CB876F.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D5113B95-781C-4737-A26F-3ED3A2CB876FHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D5113B95-781C-4737-A26F-3ED3A2CB876FPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35c1Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\d65acfc2-6ab9-4b66-84fc-ecc7813e35d0Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\D8043E67-EBD0-4ABD-A5A4-63CF4DADFC85press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\DBE2517B-67B8-4D8B-A7CC-B66F8FE52D82press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e2870479-a572-412b-8a8f-5604d19b55cd.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e2870479-a572-412b-8a8f-5604d19b55cdhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e2870479-a572-412b-8a8f-5604d19b55cdpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E3345571-EEF9-4041-8C24-F7F5A9331C23.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E3345571-EEF9-4041-8C24-F7F5A9331C23hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E3345571-EEF9-4041-8C24-F7F5A9331C23press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e357f164-c5d8-4257-aab2-fe0cad41c12e.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e357f164-c5d8-4257-aab2-fe0cad41c12e.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e357f164-c5d8-4257-aab2-fe0cad41c12ehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e357f164-c5d8-4257-aab2-fe0cad41c12epress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e3c610dc-deed-47cd-acc0-493d71556c16.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e3c610dc-deed-47cd-acc0-493d71556c16Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e3c610dc-deed-47cd-acc0-493d71556c16Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E458493F-867F-4712-A3AF-D9664ED47C19.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E458493F-867F-4712-A3AF-D9664ED47C19hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E458493F-867F-4712-A3AF-D9664ED47C19press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E52BEFE7-6535-439c-B168-A3B105E4212E.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E52BEFE7-6535-439c-B168-A3B105E4212Ehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E52BEFE7-6535-439c-B168-A3B105E4212Epress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E8584703-6CA5-4351-82CC-09E40938A066.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E8584703-6CA5-4351-82CC-09E40938A066hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\E8584703-6CA5-4351-82CC-09E40938A066press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e8967c62-9ea0-4fde-9832-2c10f1d580de.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e8967c62-9ea0-4fde-9832-2c10f1d580de.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e8967c62-9ea0-4fde-9832-2c10f1d580dehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\e8967c62-9ea0-4fde-9832-2c10f1d580depress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\EA99E20A-FBBA-4197-954B-E2013280A29B.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\EA99E20A-FBBA-4197-954B-E2013280A29Bhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\EA99E20A-FBBA-4197-954B-E2013280A29Bpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\EC116BC4-0583-4E07-908A-9D2AD3647177.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\EC116BC4-0583-4E07-908A-9D2AD3647177Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\EC116BC4-0583-4E07-908A-9D2AD3647177Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\f41901a8-2a78-4794-b455-d53a24b37aef.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\f41901a8-2a78-4794-b455-d53a24b37aefHover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\f41901a8-2a78-4794-b455-d53a24b37aefPress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\F5297DBC-3B3B-4744-A54D-308EAD98D223.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\F5297DBC-3B3B-4744-A54D-308EAD98D223hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\F5297DBC-3B3B-4744-A54D-308EAD98D223press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\f7fd4890-7f89-4c73-8ff2-52105657cbb6.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\f7fd4890-7f89-4c73-8ff2-52105657cbb6.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\f7fd4890-7f89-4c73-8ff2-52105657cbb6Hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\f7fd4890-7f89-4c73-8ff2-52105657cbb6Press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BD.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BDhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\F84A3FBA-7CF5-4F44-A080-C26C04D0E3BDpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\FA3DE5E1-19AC-42FA-8E77-C25C60E60EC7.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\FA3DE5E1-19AC-42FA-8E77-C25C60E60EC7hover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\FA3DE5E1-19AC-42FA-8E77-C25C60E60EC7press.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\fac5189f-f2c7-4eed-bae8-011eca170d7b.ico (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\fac5189f-f2c7-4eed-bae8-011eca170d7b.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\fac5189f-f2c7-4eed-bae8-011eca170d7bhover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\fac5189f-f2c7-4eed-bae8-011eca170d7bpress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\youtube.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\youtubehover.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\iconsWide\youtubepress.png (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.DMP.dll (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.MessengerPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.NotepadPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.ScreenCapturePlugin.dll (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.UninstallProductsPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.WeatherPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.WordPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\Common\ServicesPlugins\Smartbar.Personalization.ServicesPlugins.YoutubeDownloadPlugin.dll (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles\Configs\IconsSettings.xml (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles\Configs\LocalMethods.xml (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles\Configs\ProfileManager.xml (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles\Configs\PublisherSettings.xml (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles\Configs\UserSettings.xml (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\DistributionFiles\Profiles\13131313-1313-1313-1313-131313131313.xml (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Local\Smartbar\QuickShare.exe_StrongName_vuedtbpoockmp1sq45awfxuouevabx0i\1.6.1.906\user.config (PUP.Optional.SmartBar.A) -> No action taken.
C:\Users\Eva\AppData\Roaming\File Scout\uninst.exe (PUP.Optional.FileScout.A) -> No action taken.
C:\Recycle.Bin\10D4B3FB2C51430 (Trojan.Spyeyes) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\1Extension.crx (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\BrowserHelper.exe (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\BrowserHelper.exe.config (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\IEButton.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Interop.SHDocVw.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\MACTrackBarLib.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Microsoft.mshtml.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.Common.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.Logging.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Microsoft.Practices.ObjectBuilder.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\NDde.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\ProductsRemovalTool.exe (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\QuickShare.exe (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\QuickShare.exe.config (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\RegAsm.exe (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.GUI.Multimedia.Loader.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.EventManager.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.Base.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.ChromeLocalPlugin.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.DefaultBrowser.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.FireFoxLocalPlugin.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.ShareManagerLocalPlugin.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Personalization.BusinessEntities.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Personalization.BusinessLogic.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Personalization.Settings.PersonalizationSettingsManager.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Personalization.Settings.UserSettingsManager.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.AutomaticUpdates.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.BrowserHelperUtils.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.ProcessDownMonitor.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.ProductsRemovalLibary.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.ProductUninstaller.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.SetBrowsersSettings.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.SetBrowsersSettingsAutoUpdater.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.ShortcutsLibrary.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.SideBySide.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.XmlSerializers.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.Translations.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.UninstallScreen.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.UrlHistorySupplier.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Smartbar.Resources.Utilities.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\SmartbarInstallationIcon.ico (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\SmartbarInternetExplorerBHO.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\SmartbarInternetExplorerBHO2.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\SmartbarInternetExplorerExtension.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\SmartbarInternetExplorerExtension2.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\SmartbarShortcutIcon.ico (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\SmartbarVersionsHelper.exe (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\SmartbarVersionsHelper.exe.config (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\System.Data.SQLite.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\ar\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Configs\QueryParameters.xml (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\Configs\XmlSideBySideProtocol.xml (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Delete on reboot.
C:\Users\Eva\AppData\Local\Smartbar\Application\es\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\fr\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\he\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome.manifest (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\install.rdf (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\BackPageRemove.js (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\externalJS.js (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\FBImagePreview.js (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\FirefoxExtensionMain.css (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\FirefoxExtensionMain.js (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\FirefoxExtensionMain.xul (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\InternalJS.js (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\jquery-1.5.1.min.js (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\publisherDefinitions.js (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\down-1.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\down-2.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\down-3.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\down.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\fb.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\fblike.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\gmail.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\googleplus.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\hide-1.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\hide-2.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\hide-3.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\left.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\maximize-1.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\maximize-2.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\maximize-3.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\mgsplusvideo.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\minimize-1.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\minimize-2.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\minimize-3.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\pinit.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\right.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\show-1.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\show-2.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\show-3.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\twitter.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\up-1.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\up-2.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\up-3.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\images\up.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\PublisherImages\QuickShare.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\PublisherImages\QuickShare128.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\chrome\PublisherImages\QuickShare16.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\ISmartbarFireFoxRemotePlugin.xpt (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_16.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_17.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_18.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_19.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_20.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\it\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\nl\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\pt\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\ru\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Application\tr\Smartbar.Resources.LanguageSettings.resources.dll (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Common\Configs\UserInfo.xml (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\00659FA4-2CAD-45fc-A8A0-DB7862840BA9.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\00659FA4-2CAD-45fc-A8A0-DB7862840BA9hover.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\00659FA4-2CAD-45fc-A8A0-DB7862840BA9press.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\07a9a58b-c653-4285-a870-1fa70cb6c00c.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\07a9a58b-c653-4285-a870-1fa70cb6c00chover.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.
C:\Users\Eva\AppData\Local\Smartbar\Common\icons\07a9a58b-c653-4285-a870-1fa70cb6c00cPress.png (PUP.Optional.SmartBar.A) -> Quarantined and deleted successfully.

(end)

Meine Frage ist jetzt ob ich meinen Laptop sicher benuzen kann. ich habe mich vorsichtshalber nirgendwo eingeloggt nur bei gmx um den fehlerbericht zu kopieren.
Ich wäre wirklich dankbar wenn es eine Lösung gibt die nicht invlviert meinen Laptop neu aufzusetzen weil ich viele viele Daten habe die ich noch brauch und keine Sicherheitskopie meines Systems.

schrauber · 08.10.2013, 12:48

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Scotland · 08.10.2013, 13:07

Hier die beiden logs

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by Eva (administrator) on EVA-PC on 08-10-2013 13:03:43
Running from C:\Users\Eva\Downloads
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
( ) C:\Windows\system32\lxctcoms.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NTI, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
() C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe
(Lexmark International Inc.) C:\Program Files (x86)\Lexmark 5400 Series\ezprint.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Spotify Ltd) C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Eva\AppData\Roaming\Spotify\spotify.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Futuredial Inc.) C:\Program Files (x86)\ASUS\ASUS Sync\asusUPCTLoader.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerEvent.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11046504 2010-07-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2103912 2010-07-13] (Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [320000 2009-04-09] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [ODDPwr] - C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [223264 2010-04-22] (Acer Incorporated)
HKLM\...\Run: [mwlDaemon] - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-05-27] (Egis Technology Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2107176 2010-03-11] (Synaptics Incorporated)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [594080 2010-07-29] (Atheros Communications)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [377504 2010-07-29] (Atheros Commnucations)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [496160 2010-06-11] (Acer Incorporated)
HKLM\...\Run: [lxctmon.exe] - C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe [291760 2006-11-22] ()
HKLM\...\Run: [EzPrint] - C:\Program Files (x86)\Lexmark 5400 Series\ezprint.exe [82864 2006-11-22] (Lexmark International Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844168 2013-06-08] (Samsung)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1561968 2013-04-23] (Samsung)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1140736 2013-10-04] (Spotify Ltd)
HKCU\...\Run: [Spotify] - C:\Users\Eva\AppData\Roaming\Spotify\Spotify.exe [4736000 2013-10-04] (Spotify Ltd)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844168 2013-06-08] (Samsung)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
MountPoints2: {e9038821-09cc-11e0-988a-806e6f6e6963} - E:\Installer.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-05-27] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [265984 2010-06-28] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-10-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [975952 2010-08-10] (Dritek System Inc.)
HKLM-x32\...\Run: [MDS_Menu] - C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe [124136 2010-06-25] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2011-01-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2011-06-09] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-04-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Lexmark 5400 Series] - C:\Program Files (x86)\Lexmark 5400 Series\fm3032.exe [304048 2006-11-22] ()
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-05-30] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776 2012-06-07] (Apple Inc.)
HKLM-x32\...\Run: [AllShareAgent] - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-02] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [ASUS Sync Loader] - C:\Program Files (x86)\ASUS\ASUS Sync\asusUPCTLoader.exe [638976 2012-06-15] (Futuredial Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-20] (Avira Operations GmbH & Co. KG)
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-15] ()
Startup: C:\Users\Eva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www2.delta-search.com/?affID=120660&babsrc=HP_ss&mntrId=9CAA02F46A6469D6
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://findgala.com/?&uid=5886&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://findgala.com/?&uid=5886&q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www2.delta-search.com/?q={searchTerms}&affID=120660&babsrc=SP_ss&mntrId=9CAA02F46A6469D6
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
BHO: QuickShare WidgetEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - QuickShare Widget - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - QuickShare Widget - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 139.153.30.1 139.153.30.2
Tcpip\..\Interfaces\{87D62344-26F9-46B7-8EF6-D9E344F6108A}: [NameServer]139.153.30.1 139.153.30.2

FireFox:
========
FF ProfilePath: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default
FF user.js: detected! => C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\searchplugins\BrowserProtect.xml
FF SearchPlugin: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\searchplugins\search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-en-GB.xml
FF Extension: No Name - C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKCU\...\Firefox\Extensions: [{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}] - C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi

Chrome: 
=======
CHR HomePage: hxxp://www2.delta-search.com/?affID=120660&babsrc=HP_ss&mntrId=9CAA02F46A6469D6
CHR RestoreOnStartup: "hxxp://google/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (QuickShare Widget) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl\1.4_1
CHR Extension: (Google Docs) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.4_0
CHR Extension: (Google Search) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [821792 2010-06-11] (Acer Incorporated)
R2 lxct_device; C:\Windows\system32\lxctcoms.exe [566192 2006-11-22] ( )
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
R2 NTISchedulerSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640 2010-04-17] (NTI, Inc.)
R2 ODDPwrSvc; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [171040 2010-04-22] (Acer Incorporated)
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904 2010-02-03] ()
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-30] (Acer Incorporated)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-08-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-08-05] (Avira Operations GmbH & Co. KG)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-04-18] ()
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-04-18] ()
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-08 13:02 - 2013-10-08 13:02 - 00000000 ____D C:\FRST
2013-10-08 13:01 - 2013-10-08 13:01 - 01954124 _____ (Farbar) C:\Users\Eva\Downloads\FRST64.exe
2013-10-08 12:12 - 2013-10-08 12:12 - 00002258 _____ C:\Users\Eva\Documents\Trojaner Board.txt
2013-10-08 12:02 - 2013-10-08 12:02 - 99859239 _____ C:\Windows\SysWOW64\ꠢ殑!
2013-10-08 11:59 - 2013-10-08 11:59 - 00038902 _____ C:\Windows\PFRO.log
2013-10-08 11:59 - 2013-10-08 11:59 - 00000056 _____ C:\Windows\setupact.log
2013-10-08 11:59 - 2013-10-08 11:59 - 00000000 _____ C:\Windows\setuperr.log
2013-10-08 11:34 - 2013-10-08 11:34 - 00001117 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-08 11:34 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-08 11:33 - 2013-10-08 11:33 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Eva\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-01 11:42 - 2013-10-01 11:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 21:14 - 2013-09-30 21:14 - 00001934 _____ C:\Users\Eva\Desktop\CampusNet Connect.lnk
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Users\Eva\AppData\Roaming\PDF reDirect
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Program Files (x86)\PDF reDirect
2013-09-16 18:16 - 2013-09-16 18:16 - 00002224 _____ C:\Users\Public\Desktop\Adobe Digital Editions 2.0.lnk
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\Documents\My Digital Editions
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\AppData\Local\Adobe_Systems_Incorporate
2013-09-16 18:15 - 2013-09-16 18:15 - 00000120 _____ C:\Windows\wininit.ini
2013-09-16 18:14 - 2013-09-16 18:15 - 05889712 _____ (Adobe Systems Incorporated) C:\Users\Eva\Downloads\ADE_2.0_Installer.exe
2013-09-13 14:29 - 2013-09-15 18:17 - 97671483 _____ C:\Windows\SysWOW64\屾@
2013-09-09 23:33 - 2013-10-07 12:11 - 00000000 ____D C:\Users\Eva\Documents\University

==================== One Month Modified Files and Folders =======

2013-10-08 13:02 - 2013-10-08 13:02 - 00000000 ____D C:\FRST
2013-10-08 13:01 - 2013-10-08 13:01 - 01954124 _____ (Farbar) C:\Users\Eva\Downloads\FRST64.exe
2013-10-08 13:00 - 2013-04-01 16:47 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-08 13:00 - 2011-03-08 23:55 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Skype
2013-10-08 12:56 - 2012-05-07 18:14 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-08 12:36 - 2010-12-17 12:04 - 01718670 _____ C:\Windows\WindowsUpdate.log
2013-10-08 12:20 - 2012-09-22 20:47 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Spotify
2013-10-08 12:12 - 2013-10-08 12:12 - 00002258 _____ C:\Users\Eva\Documents\Trojaner Board.txt
2013-10-08 12:07 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-08 12:07 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-08 12:02 - 2013-10-08 12:02 - 99859239 _____ C:\Windows\SysWOW64\ꠢ殑!
2013-10-08 12:01 - 2011-05-09 00:10 - 00000000 ____D C:\Users\Eva\AppData\Local\CrashDumps
2013-10-08 12:00 - 2010-12-17 12:36 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2013-10-08 11:59 - 2013-10-08 11:59 - 00038902 _____ C:\Windows\PFRO.log
2013-10-08 11:59 - 2013-10-08 11:59 - 00000056 _____ C:\Windows\setupact.log
2013-10-08 11:59 - 2013-10-08 11:59 - 00000000 _____ C:\Windows\setuperr.log
2013-10-08 11:59 - 2013-04-01 16:47 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-08 11:59 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-08 11:45 - 2013-06-18 14:28 - 00000000 ____D C:\Users\Eva\AppData\Roaming\File Scout
2013-10-08 11:34 - 2013-10-08 11:34 - 00001117 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-08 11:33 - 2013-10-08 11:33 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Eva\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-07 12:11 - 2013-09-09 23:33 - 00000000 ____D C:\Users\Eva\Documents\University
2013-10-07 12:02 - 2012-09-22 20:47 - 00000000 ____D C:\Users\Eva\AppData\Local\Spotify
2013-10-05 17:05 - 2013-04-01 16:48 - 00002187 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-04 20:56 - 2012-05-07 18:14 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-04 20:56 - 2012-05-07 18:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-04 20:56 - 2012-02-25 18:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-04 20:31 - 2013-08-30 17:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-04 20:31 - 2013-08-04 19:42 - 00000000 ____D C:\Program Files (x86)\CampusNet
2013-10-01 16:06 - 2011-03-08 20:59 - 00000000 ____D C:\Users\Eva\AppData\Local\Mozilla
2013-10-01 11:42 - 2013-10-01 11:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 21:14 - 2013-09-30 21:14 - 00001934 _____ C:\Users\Eva\Desktop\CampusNet Connect.lnk
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Users\Eva\AppData\Roaming\PDF reDirect
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Program Files (x86)\PDF reDirect
2013-09-29 22:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-23 02:30 - 2011-03-08 21:39 - 00000000 ____D C:\Users\Eva\Documents\Eigene Dateien
2013-09-17 00:53 - 2012-08-25 21:12 - 00000000 ____D C:\Users\Eva\AppData\Roaming\vlc
2013-09-16 18:16 - 2013-09-16 18:16 - 00002224 _____ C:\Users\Public\Desktop\Adobe Digital Editions 2.0.lnk
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\Documents\My Digital Editions
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\AppData\Local\Adobe_Systems_Incorporate
2013-09-16 18:16 - 2010-09-08 03:23 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-09-16 18:15 - 2013-09-16 18:15 - 00000120 _____ C:\Windows\wininit.ini
2013-09-16 18:15 - 2013-09-16 18:14 - 05889712 _____ (Adobe Systems Incorporated) C:\Users\Eva\Downloads\ADE_2.0_Installer.exe
2013-09-15 18:17 - 2013-09-13 14:29 - 97671483 _____ C:\Windows\SysWOW64\屾@
2013-09-09 14:09 - 2011-05-01 22:12 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-09-09 14:09 - 2011-03-08 23:55 - 00000000 ____D C:\ProgramData\Skype

Some content of TEMP:
====================
C:\Users\Gast\AppData\Local\Temp\AskSLib.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-21 19:33

==================== End Of Log ============================

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2013
Ran by Eva at 2013-10-08 13:04:25
Running from C:\Users\Eva\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

7-Zip 9.20 (x32)
Acer Arcade Deluxe (x32 Version: 4.0.8012)
Acer Arcade Movie (x32 Version: 9.0.6625)
Acer Backup Manager (x32 Version: 2.0.0.68)
Acer Crystal Eye webcam (x32 Version: 1.0.4.5)
Acer eRecovery Management (x32 Version: 4.05.3013)
Acer GameZone Console (x32 Version: 6.1.0.9)
Acer PowerSmart Manager (x32 Version: 5.02.3004)
Acer Registration (x32 Version: 1.03.3003)
Acer ScreenSaver (x32 Version: 1.1.0222.2010)
Acer Updater (x32 Version: 1.02.3001)
Acer VCM (x32 Version: 4.05.3002)
Acrobat.com (x32 Version: 1.6.65)
Adobe AIR (x32 Version: 3.3.0.3650)
Adobe Digital Editions 2.0 (x32 Version: 2.0.1)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.175)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.168)
Adobe Reader X (10.0.1) - Deutsch (x32 Version: 10.0.1)
Airport Mania First Flight (x32)
Alcor Micro USB Card Reader (x32 Version: 1.2.17.05001)
Amazonia (x32)
Apple Application Support (x32 Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (x32 Version: 2.1.3.127)
ASUS Android USB Drivers (Version: 1.0.6351)
ASUS Sync (x32 Version: 1.0.83)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 1.0.0.35)
ATI Catalyst Install Manager (Version: 3.0.778.0)
Audiograbber 1.83 SE  (x32 Version: 1.83 SE)
Avira Free Antivirus (x32 Version: 13.0.0.4052)
Backup Manager Basic (x32 Version: 2.0.0.68)
Bluetooth Win7 Suite (64) (Version: 7.02.000.6)
Bonjour (Version: 3.0.0.10)
Cake Mania (x32)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.1021.531.7998)
Catalyst Control Center InstallProxy (x32 Version: 2010.1021.531.7998)
Catalyst Control Center Localization All (x32 Version: 2010.1021.531.7998)
CCC Help Chinese Standard (x32 Version: 2010.1021.0530.7998)
CCC Help Chinese Traditional (x32 Version: 2010.1021.0530.7998)
CCC Help Czech (x32 Version: 2010.1021.0530.7998)
CCC Help Danish (x32 Version: 2010.1021.0530.7998)
CCC Help Dutch (x32 Version: 2010.1021.0530.7998)
CCC Help English (x32 Version: 2010.1021.0530.7998)
CCC Help Finnish (x32 Version: 2010.1021.0530.7998)
CCC Help French (x32 Version: 2010.1021.0530.7998)
CCC Help German (x32 Version: 2010.1021.0530.7998)
CCC Help Greek (x32 Version: 2010.1021.0530.7998)
CCC Help Hungarian (x32 Version: 2010.1021.0530.7998)
CCC Help Italian (x32 Version: 2010.1021.0530.7998)
CCC Help Japanese (x32 Version: 2010.1021.0530.7998)
CCC Help Korean (x32 Version: 2010.1021.0530.7998)
CCC Help Norwegian (x32 Version: 2010.1021.0530.7998)
CCC Help Polish (x32 Version: 2010.1021.0530.7998)
CCC Help Portuguese (x32 Version: 2010.1021.0530.7998)
CCC Help Russian (x32 Version: 2010.1021.0530.7998)
CCC Help Spanish (x32 Version: 2010.1021.0530.7998)
CCC Help Swedish (x32 Version: 2010.1021.0530.7998)
CCC Help Thai (x32 Version: 2010.1021.0530.7998)
CCC Help Turkish (x32 Version: 2010.1021.0530.7998)
ccc-core-static (x32 Version: 2010.1021.531.7998)
ccc-utility64 (Version: 2010.1021.531.7998)
CCleaner (Version: 4.05)
Disney-Pixar Ratatouille (x32 Version: 1.00.0000)
Dream Day First Home (x32)
eBay Worldwide (x32 Version: 2.1.0901)
eSobi v2 (x32 Version: 2.0.4.000274)
Farm Frenzy 2 (x32)
FaxRedist (x32 Version: 1.0.0)
Galapago (x32)
Google Chrome (x32 Version: 30.0.1599.69)
Google Update Helper (x32 Version: 1.3.21.153)
Heroes of Hellas (x32)
Identity Card (x32 Version: 1.00.3003)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Management Engine Components (x32 Version: 6.0.0.1179)
Intel(R) Rapid Storage Technology (x32 Version: 9.6.0.1014)
Intel(R) Turbo Boost Technology Driver (x32 Version: 01.01.01.1007)
iTunes (Version: 10.6.3.25)
Java Auto Updater (x32 Version: 2.0.6.1)
Java(TM) 6 Update 30 (x32 Version: 6.0.300)
Junk Mail filter update (x32 Version: 14.0.8117.416)
Launch Manager (x32 Version: 4.0.14)
Lexmark 5400 Series
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)
MediaShow Espresso (x32 Version: 5.5.1403_23691)
Merriam Websters Spell Jam (x32)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (x32 Version: 2.0.48.0)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Silverlight (x32 Version: 4.0.50401.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 24.0 (x86 en-GB) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
MSVCRT (x32 Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
MyFreeCodec (HKCU)
MyWinLocker (x32 Version: 3.1.212.0)
MyWinLocker Suite (x32 Version: 3.1.212.0)
NTI Backup Now 5 (x32 Version: 5.1.2.630)
NTI Backup Now Standard (x32 Version: 5.1.2.630)
NTI Media Maker 8 (x32 Version: 8.0.12.6636)
OpenOffice.org 3.3 (x32 Version: 3.3.9567)
Optical Drive Power Management (x32 Version: 1.01.3007)
PDF reDirect (remove only) (x32 Version: v2.2.8)
Poker Pop (x32)
PX Profile Update (x32 Version: 1.00.1.)
QuickShare (x32 Version: 1.6.1.906)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6156)
Samsung AllShare (x32 Version: 2.1.0.12031_10)
Samsung Kies (x32 Version: 2.3.0.12035_16)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.23.0)
Shredder (Version: 2.0.8.3)
Shredder (x32 Version: 2.0.8.3)
Skype Click to Call (x32 Version: 6.3.11079)
Skype™ 6.6 (x32 Version: 6.6.106)
Spin & Win (x32)
Spotify (HKCU Version: 0.9.4.178.g259772ba)
Synaptics Pointing Device Driver (Version: 15.0.12.0)
Überwachungstool für die Intel® Turbo-Boost-Technik (Version: 1.0.186.6)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
VLC media player 2.0.8 (x32 Version: 2.0.8)
Welcome Center (x32 Version: 1.02.3004)
Windows Live Anmelde-Assistent (x32 Version: 5.000.818.5)
Windows Live Call (x32 Version: 14.0.8117.0416)
Windows Live Communications Platform (x32 Version: 14.0.8117.416)
Windows Live Essentials (x32 Version: 14.0.8117.0416)
Windows Live Essentials (x32 Version: 14.0.8117.416)
Windows Live Fotogalerie (x32 Version: 14.0.8117.416)
Windows Live Mail (x32 Version: 14.0.8117.0416)
Windows Live Messenger (x32 Version: 14.0.8117.0416)
Windows Live Movie Maker (x32 Version: 14.0.8117.0416)
Windows Live Sync (x32 Version: 14.0.8117.416)
Windows Live Writer (x32 Version: 14.0.8117.0416)
Windows Live-Uploadtool (x32 Version: 14.0.8014.1029)

==================== Restore Points  =========================

15-09-2013 16:57:41 Geplanter Prüfpunkt
17-09-2013 11:24:29 Removed CampusNet
17-09-2013 11:24:39 Removed CampusNet
17-09-2013 11:24:39 Removed CampusNet
17-09-2013 11:24:39 Removed CampusNet
17-09-2013 11:24:39 Removed CampusNet
17-09-2013 11:24:40 Removed CampusNet
17-09-2013 11:24:40 Removed CampusNet
17-09-2013 11:24:40 Removed CampusNet
17-09-2013 11:26:45 Installed CampusNet
19-09-2013 14:22:30 Windows Update
24-09-2013 03:57:29 Windows Update
29-09-2013 21:20:59 Removed CampusNet
29-09-2013 21:21:21 Removed CampusNet
29-09-2013 21:25:30 Installed CampusNet
30-09-2013 19:53:08 Windows Update
30-09-2013 20:08:30 Removed CampusNet
30-09-2013 20:13:54 Installed CampusNet
04-10-2013 19:28:43 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {44200ACA-E897-4928-BB67-83DE5431B2CE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-04] (Adobe Systems Incorporated)
Task: {5862645F-084C-4D7F-AAD1-B80FA4731439} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {69AD0366-B71C-46A9-91F5-645A77041981} - System32\Tasks\Launch ASUS Sync Loader => C:\Program Files (x86)\ASUS\ASUS Sync\asusUPCTLoader.exe [2012-06-15] (Futuredial Inc.)
Task: {7069E76C-8B83-43A7-BA35-0258D35DF011} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-01] (Google Inc.)
Task: {96D4DCED-C636-46F5-A0B7-CC353A793139} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-01] (Google Inc.)
Task: {D3C4E7FD-3AE7-4EF2-AD96-824A696CD9DD} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {E0CA23E6-43DB-4A16-955F-78CBC6BC552D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-08-05 23:55 - 2013-08-05 23:50 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2012-05-30 20:06 - 2012-05-30 20:06 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-05-30 20:06 - 2012-05-30 20:06 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-06-28 23:20 - 2010-06-28 23:20 - 00465576 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2010-06-28 23:12 - 2010-06-28 23:12 - 01081600 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2012-06-09 23:08 - 2006-08-08 15:54 - 00278528 _____ () C:\Program Files (x86)\Lexmark 5400 Series\lxctscw.dll
2012-06-09 23:08 - 2006-05-25 16:20 - 00241664 _____ () C:\Program Files (x86)\Lexmark 5400 Series\iptk.dll
2012-09-22 20:47 - 2013-10-04 20:33 - 34604032 _____ () C:\Users\Eva\AppData\Roaming\Spotify\Data\libcef.dll
2011-01-17 16:19 - 2011-03-09 10:49 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2010-11-19 18:45 - 2011-03-09 10:49 - 00170496 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxslt.dll
2010-09-08 03:37 - 2009-05-20 07:02 - 00072200 _____ () C:\Program Files (x86)\Launch Manager\CdDirIo.dll
2012-06-15 12:01 - 2012-06-15 12:01 - 00516599 _____ () C:\Program Files (x86)\ASUS\ASUS Sync\sqlite3.dll
2012-06-15 12:01 - 2012-06-15 12:01 - 00094208 _____ () C:\Program Files (x86)\ASUS\ASUS Sync\fdHttpd.dll
2012-06-15 12:01 - 2012-06-15 12:01 - 00352256 _____ () C:\Program Files (x86)\ASUS\ASUS Sync\asusDetect.dll
2012-06-15 12:01 - 2012-06-15 12:01 - 00147456 _____ () C:\Program Files (x86)\ASUS\ASUS Sync\asusDetectLegend.dll
2012-06-15 12:01 - 2012-06-15 12:01 - 00559244 _____ () C:\Program Files (x86)\ASUS\ASUS Sync\sqlite3.7.dll
2012-06-15 12:01 - 2012-06-15 12:01 - 00139264 _____ () C:\Program Files (x86)\ASUS\ASUS Sync\asusDisk.dll
2013-01-16 10:28 - 2013-01-16 10:28 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\d89f0252d910d617de1de783a812f840\IsdiInterop.ni.dll
2010-09-08 02:52 - 2010-03-04 04:08 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2013-10-01 11:42 - 2013-10-01 11:42 - 03279768 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-09-29 16:23 - 2013-10-04 20:33 - 00747008 _____ () C:\Users\Eva\AppData\Roaming\Spotify\Data\libglesv2.dll
2013-09-29 16:23 - 2013-10-04 20:33 - 00137216 _____ () C:\Users\Eva\AppData\Roaming\Spotify\Data\libegl.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:0B9176C0
AlternateDataStreams: C:\ProgramData\Temp:4D066AD2
AlternateDataStreams: C:\ProgramData\Temp:5D7E5A8F
AlternateDataStreams: C:\ProgramData\Temp:CDFF58FE
AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D
AlternateDataStreams: C:\ProgramData\Temp:E36F5B57

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/08/2013 01:03:33 PM) (Source: Application Hang) (User: )
Description: Programm FRST64.exe, Version 3.3.8.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 11b0

Startzeit: 01cec41e41540e86

Endzeit: 5

Anwendungspfad: C:\Users\Eva\Downloads\FRST64.exe

Berichts-ID: 9990f9e2-3011-11e3-8956-60eb69a9da08

Error: (10/08/2013 00:02:04 PM) (Source: SamsungAllShareV2.0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
   bei AllShareDmsUtil.Configuration.ConfigurationManager.GetSharingFolderList()
   bei AllShareDmsUtil.Manager.AllShareDmsManager.LoadSharingFolderList()
   bei AllShareDmsUtil.Manager.AllShareDmsManager.InitContentsDirectoryManager()
   bei AllShareDmsUtil.Manager.AllShareDmsManager.Initialize()
   bei AllShareDmsUtil.Manager.AllShareDmsManager..ctor()
   bei AllShareDmsUtil.Manager.AllShareDmsManager.get_Instance()
   bei AllShareDMS.AllShareDMS.DoStart()
   bei AllShareDMS.AllShareDMS.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (10/08/2013 00:01:24 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Kies.exe, Version: 1.0.0.1328, Zeitstempel: 0x51761237
Name des fehlerhaften Moduls: MACSSDK.dll, Version: 3.2.2009.1028, Zeitstempel: 0x4ae81513
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00020cd0
ID des fehlerhaften Prozesses: 0xe18
Startzeit der fehlerhaften Anwendung: 0xKies.exe0
Pfad der fehlerhaften Anwendung: Kies.exe1
Pfad des fehlerhaften Moduls: Kies.exe2
Berichtskennung: Kies.exe3

Error: (10/08/2013 00:01:14 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Kies.exe, Version: 1.0.0.1328, Zeitstempel: 0x51761237
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x3e34682f
ID des fehlerhaften Prozesses: 0xe18
Startzeit der fehlerhaften Anwendung: 0xKies.exe0
Pfad der fehlerhaften Anwendung: Kies.exe1
Pfad des fehlerhaften Moduls: Kies.exe2
Berichtskennung: Kies.exe3

Error: (10/08/2013 11:59:51 AM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/08/2013 11:59:51 AM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/08/2013 11:59:51 AM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/08/2013 11:59:51 AM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)

Error: (10/08/2013 11:59:50 AM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.JetPropStore> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/08/2013 11:59:50 AM) (Source: Windows Search Service) (User: )
Description: Die Eigenschaftenspeicherdaten können von Windows Search nicht geladen werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Die Inhaltsindexdatenbank ist fehlerhaft.  (HRESULT : 0xc0041800) (0xc0041800)


System errors:
=============
Error: (10/08/2013 00:00:23 PM) (Source: Service Control Manager) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056

Error: (10/08/2013 11:59:51 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/08/2013 11:59:51 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.

Error: (10/08/2013 11:56:41 AM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (10/07/2013 06:09:13 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{CA2DA490-9623-4F27-A52E-1F46E6DFF7EC}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.

Error: (10/07/2013 03:14:40 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{CA2DA490-9623-4F27-A52E-1F46E6DFF7EC}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.

Error: (10/07/2013 00:26:28 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{C2AED957-455B-4569-839C-D560DC6FABD8}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.

Error: (10/07/2013 00:02:43 PM) (Source: DCOM) (User: )
Description: {4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (10/06/2013 03:53:53 PM) (Source: NetBT) (User: )
Description: Der Name "WORKGROUP      :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.145.76
registriert werden. Der Computer mit IP-Adresse 192.168.145.70 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.

Error: (10/05/2013 02:37:38 PM) (Source: RasSstp) (User: )
Description: CoId={45611AD4-9C51-47AC-8C17-3ADBDA5295D4}: Die anfängliche SSTP-Anforderung konnte nicht erfolgreich an den Server gesendet werden. Dies kann auf Netzwerkverbindungsprobleme oder auf Zertifikatprobleme (Vertrauensstellung) zurückzuführen sein. Unten wird die detaillierte Fehlermeldung angezeigt. Beheben Sie das Problem, und wiederholen Sie den Vorgang.

Ein Verbindungsversuch ist fehlgeschlagen, da die Gegenstelle nach einer bestimmten Zeitspanne nicht richtig reagiert hat, oder die hergestellte Verbindung war fehlerhaft, da der verbundene Host nicht reagiert hat.


Microsoft Office Sessions:
=========================
Error: (10/08/2013 01:03:33 PM) (Source: Application Hang)(User: )
Description: FRST64.exe3.3.8.111b001cec41e41540e865C:\Users\Eva\Downloads\FRST64.exe9990f9e2-3011-11e3-8956-60eb69a9da08

Error: (10/08/2013 00:02:04 PM) (Source: SamsungAllShareV2.0)(User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
   bei AllShareDmsUtil.Configuration.ConfigurationManager.GetSharingFolderList()
   bei AllShareDmsUtil.Manager.AllShareDmsManager.LoadSharingFolderList()
   bei AllShareDmsUtil.Manager.AllShareDmsManager.InitContentsDirectoryManager()
   bei AllShareDmsUtil.Manager.AllShareDmsManager.Initialize()
   bei AllShareDmsUtil.Manager.AllShareDmsManager..ctor()
   bei AllShareDmsUtil.Manager.AllShareDmsManager.get_Instance()
   bei AllShareDMS.AllShareDMS.DoStart()
   bei AllShareDMS.AllShareDMS.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (10/08/2013 00:01:24 PM) (Source: Application Error)(User: )
Description: Kies.exe1.0.0.132851761237MACSSDK.dll3.2.2009.10284ae81513c000000500020cd0e1801cec41584f6c49fC:\Program Files (x86)\Samsung\Kies\Kies.exeC:\Program Files (x86)\Samsung\Kies\External\MACSSDK.dllf888ad62-3008-11e3-8956-60eb69a9da08

Error: (10/08/2013 00:01:14 PM) (Source: Application Error)(User: )
Description: Kies.exe1.0.0.132851761237unknown0.0.0.000000000c00000053e34682fe1801cec41584f6c49fC:\Program Files (x86)\Samsung\Kies\Kies.exeunknownf24a8542-3008-11e3-8956-60eb69a9da08

Error: (10/08/2013 11:59:51 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/08/2013 11:59:51 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/08/2013 11:59:51 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/08/2013 11:59:51 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (10/08/2013 11:59:50 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (10/08/2013 11:59:50 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Die Inhaltsindexdatenbank ist fehlerhaft.  (HRESULT : 0xc0041800) (0xc0041800)


CodeIntegrity Errors:
===================================
  Date: 2013-06-08 17:53:26.107
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-06-08 17:53:26.010
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-06-08 17:53:23.545
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-06-08 17:53:23.415
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-06-08 17:53:21.278
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-06-08 17:53:21.178
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-06-08 17:53:19.045
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-06-08 17:53:18.959
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-06-08 17:53:16.834
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-06-08 17:53:16.748
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 57%
Total physical RAM: 3766.69 MB
Available physical RAM: 1604.23 MB
Total Pagefile: 7531.51 MB
Available Pagefile: 4782.67 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:684.54 GB) (Free:597.14 GB) NTFS
Drive e: (CampusNet) (CDROM) (Total:0.42 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: A931292D)
Partition 1: (Not Active) - (Size=14 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=685 GB) - (Type=07 NTFS)

==================== End Of Log ============================

schrauber · 09.10.2013, 07:47

Nur Reste.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Scotland · 09.10.2013, 10:34

Danke für deine Hilfe! Hie die weiteren logs:

AdwCleaner:

Code:

ATTFilter

# AdwCleaner v3.006 - Bericht erstellt am 09/10/2013 um 10:17:23
# Updated 01/10/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium  (64 bits)
# Benutzername : Eva - EVA-PC
# Gestartet von : C:\Users\Eva\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\ProgramData\ICQ\ICQToolbar
Ordner Gelöscht : C:\Program Files (x86)\ICQ6Toolbar
Ordner Gelöscht : C:\Users\Eva\AppData\LocalLow\Smartbar
Ordner Gelöscht : C:\Users\Eva\AppData\Roaming\file scout
Ordner Gelöscht : C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Users\Public\Desktop\eBay.lnk
Datei Gelöscht : C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\\invalidprefs.js
Datei Gelöscht : C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\bProtector_extensions.rdf
Datei Gelöscht : C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\searchplugins\Babylon.xml
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
Datei Gelöscht : C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\searchplugins\BrowserProtect.xml
Datei Gelöscht : C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\searchplugins\delta.xml
Datei Gelöscht : C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\searchplugins\icqplugin.xml
Datei Gelöscht : C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\searchplugins\search.xml
Datei Gelöscht : C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\user.js

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKCU\Software\Mozilla\Firefox\Extensions [{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}]
Schlüssel Gelöscht : HKCU\Software\Google\Chrome\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.BandObjectAttribute
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\iesmartbar.dockingpanel
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBarBandObject
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarDisplayState
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\iesmartbar.smartbarmenuform
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasmancs
Schlüssel Gelöscht : HKCU\Software\52558f88e039e547
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : HKCU\Software\BabSolution
Schlüssel Gelöscht : HKCU\Software\smartbar
Schlüssel Gelöscht : HKCU\Software\smartbarbackup
Schlüssel Gelöscht : HKCU\Software\smartbarlog
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\ICQ\ICQToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

***** [ Browser ] *****

-\\ Internet Explorer v8.0.7600.17267

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v24.0 (en-GB)

[ Datei : C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\prefs.js ]

Zeile gelöscht : user_pref("extensions.delta.admin", false);
Zeile gelöscht : user_pref("extensions.delta.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Zeile gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.dfltLng", "en");
Zeile gelöscht : user_pref("extensions.delta.excTlbr", false);
Zeile gelöscht : user_pref("extensions.delta.ffxUnstlRst", true);
Zeile gelöscht : user_pref("extensions.delta.id", "9caad59600000000000002f46a6469d6");
Zeile gelöscht : user_pref("extensions.delta.instlDay", "15819");
Zeile gelöscht : user_pref("extensions.delta.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.delta.newTab", false);
Zeile gelöscht : user_pref("extensions.delta.prdct", "delta");
Zeile gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Zeile gelöscht : user_pref("extensions.delta.rvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.delta.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Zeile gelöscht : user_pref("extensions.delta.vrsn", "1.8.16.16");
Zeile gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.16.1616:35:52");
Zeile gelöscht : user_pref("extensions.delta.vrsni", "1.8.16.16");

-\\ Google Chrome v30.0.1599.69

[ Datei : C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht : homepage

[ Datei : C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [11214 octets] - [09/10/2013 10:16:14]
AdwCleaner[S0].txt - [10004 octets] - [09/10/2013 10:17:23]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10065 octets] ##########

JRT

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.4 (10.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Eva on 09.10.2013 at 10:26:14,60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-4062995147-3320449069-3410223965-1001\Software\SweetIM



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\myfree codec"



~~~ FireFox

Successfully deleted: [File] C:\Users\Eva\AppData\Roaming\mozilla\firefox\profiles\ld4wzbao.default\invalidprefs.js
Emptied folder: C:\Users\Eva\AppData\Roaming\mozilla\firefox\profiles\ld4wzbao.default\minidumps [131 files]



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Eva\appdata\local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09.10.2013 at 10:31:54,01
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by Eva (administrator) on EVA-PC on 09-10-2013 10:32:58
Running from C:\Users\Eva\Desktop
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
( ) C:\Windows\system32\lxctcoms.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NTI, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
() C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe
(Lexmark International Inc.) C:\Program Files (x86)\Lexmark 5400 Series\ezprint.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Spotify Ltd) C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Eva\AppData\Roaming\Spotify\spotify.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Futuredial Inc.) C:\Program Files (x86)\ASUS\ASUS Sync\asusUPCTLoader.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerEvent.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) c:\program files\windows defender\MpCmdRun.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11046504 2010-07-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2103912 2010-07-13] (Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [320000 2009-04-09] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [ODDPwr] - C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [223264 2010-04-22] (Acer Incorporated)
HKLM\...\Run: [mwlDaemon] - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-05-27] (Egis Technology Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2107176 2010-03-11] (Synaptics Incorporated)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [594080 2010-07-29] (Atheros Communications)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [377504 2010-07-29] (Atheros Commnucations)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [496160 2010-06-11] (Acer Incorporated)
HKLM\...\Run: [lxctmon.exe] - C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe [291760 2006-11-22] ()
HKLM\...\Run: [EzPrint] - C:\Program Files (x86)\Lexmark 5400 Series\ezprint.exe [82864 2006-11-22] (Lexmark International Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844168 2013-06-08] (Samsung)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1561968 2013-04-23] (Samsung)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1140736 2013-10-04] (Spotify Ltd)
HKCU\...\Run: [Spotify] - C:\Users\Eva\AppData\Roaming\Spotify\Spotify.exe [4736000 2013-10-04] (Spotify Ltd)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844168 2013-06-08] (Samsung)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
MountPoints2: {e9038821-09cc-11e0-988a-806e6f6e6963} - E:\Installer.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-05-27] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [265984 2010-06-28] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-10-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [975952 2010-08-10] (Dritek System Inc.)
HKLM-x32\...\Run: [MDS_Menu] - C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe [124136 2010-06-25] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2011-01-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2011-06-09] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-04-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Lexmark 5400 Series] - C:\Program Files (x86)\Lexmark 5400 Series\fm3032.exe [304048 2006-11-22] ()
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-05-30] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776 2012-06-07] (Apple Inc.)
HKLM-x32\...\Run: [AllShareAgent] - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-02] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [ASUS Sync Loader] - C:\Program Files (x86)\ASUS\ASUS Sync\asusUPCTLoader.exe [638976 2012-06-15] (Futuredial Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-20] (Avira Operations GmbH & Co. KG)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-15] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-15] ()
Startup: C:\Users\Eva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 139.153.30.1 139.153.30.2
Tcpip\..\Interfaces\{87D62344-26F9-46B7-8EF6-D9E344F6108A}: [NameServer]139.153.30.1 139.153.30.2

FireFox:
========
FF ProfilePath: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-en-GB.xml
FF Extension: No Name - C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://google/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.4_0
CHR Extension: (Google Search) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [821792 2010-06-11] (Acer Incorporated)
R2 lxct_device; C:\Windows\system32\lxctcoms.exe [566192 2006-11-22] ( )
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
R2 NTISchedulerSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640 2010-04-17] (NTI, Inc.)
R2 ODDPwrSvc; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [171040 2010-04-22] (Acer Incorporated)
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904 2010-02-03] ()
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-30] (Acer Incorporated)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-08-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-08-05] (Avira Operations GmbH & Co. KG)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-04-18] ()
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-04-18] ()
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-09 10:31 - 2013-10-09 10:31 - 00001709 _____ C:\Users\Eva\Desktop\JRT.txt
2013-10-09 10:26 - 2013-10-09 10:26 - 00000000 ____D C:\Windows\ERUNT
2013-10-09 10:24 - 2013-10-09 10:24 - 01032220 _____ (Thisisu) C:\Users\Eva\Desktop\JRT.exe
2013-10-09 10:15 - 2013-10-09 10:17 - 00000000 ____D C:\AdwCleaner
2013-10-09 10:14 - 2013-10-09 10:14 - 01045226 _____ C:\Users\Eva\Desktop\adwcleaner.exe
2013-10-08 13:05 - 2013-10-08 13:05 - 00031746 _____ C:\Users\Eva\Downloads\FRST.txt
2013-10-08 13:04 - 2013-10-08 13:05 - 00029447 _____ C:\Users\Eva\Downloads\Addition.txt
2013-10-08 13:02 - 2013-10-08 13:02 - 00000000 ____D C:\FRST
2013-10-08 13:01 - 2013-10-08 13:01 - 01954124 _____ (Farbar) C:\Users\Eva\Desktop\FRST64.exe
2013-10-08 12:12 - 2013-10-08 12:12 - 00002258 _____ C:\Users\Eva\Documents\Trojaner Board.txt
2013-10-08 12:02 - 2013-10-08 12:02 - 99859239 _____ C:\Windows\SysWOW64\ꠢ殑!
2013-10-08 11:59 - 2013-10-09 10:19 - 00000224 _____ C:\Windows\setupact.log
2013-10-08 11:59 - 2013-10-08 11:59 - 00038902 _____ C:\Windows\PFRO.log
2013-10-08 11:59 - 2013-10-08 11:59 - 00000000 _____ C:\Windows\setuperr.log
2013-10-08 11:34 - 2013-10-08 11:34 - 00001117 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-08 11:34 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-08 11:33 - 2013-10-08 11:33 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Eva\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-01 11:42 - 2013-10-01 11:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 21:14 - 2013-09-30 21:14 - 00001934 _____ C:\Users\Eva\Desktop\CampusNet Connect.lnk
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Users\Eva\AppData\Roaming\PDF reDirect
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Program Files (x86)\PDF reDirect
2013-09-16 18:16 - 2013-09-16 18:16 - 00002224 _____ C:\Users\Public\Desktop\Adobe Digital Editions 2.0.lnk
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\Documents\My Digital Editions
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\AppData\Local\Adobe_Systems_Incorporate
2013-09-16 18:15 - 2013-09-16 18:15 - 00000120 _____ C:\Windows\wininit.ini
2013-09-16 18:14 - 2013-09-16 18:15 - 05889712 _____ (Adobe Systems Incorporated) C:\Users\Eva\Downloads\ADE_2.0_Installer.exe
2013-09-13 14:29 - 2013-09-15 18:17 - 97671483 _____ C:\Windows\SysWOW64\屾@
2013-09-09 23:33 - 2013-10-09 10:15 - 00000000 ____D C:\Users\Eva\Documents\University

==================== One Month Modified Files and Folders =======

2013-10-09 10:31 - 2013-10-09 10:31 - 00001709 _____ C:\Users\Eva\Desktop\JRT.txt
2013-10-09 10:27 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-09 10:27 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-09 10:26 - 2013-10-09 10:26 - 00000000 ____D C:\Windows\ERUNT
2013-10-09 10:24 - 2013-10-09 10:24 - 01032220 _____ (Thisisu) C:\Users\Eva\Desktop\JRT.exe
2013-10-09 10:24 - 2012-09-22 20:47 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Spotify
2013-10-09 10:23 - 2011-03-08 23:55 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Skype
2013-10-09 10:22 - 2011-05-09 00:10 - 00000000 ____D C:\Users\Eva\AppData\Local\CrashDumps
2013-10-09 10:21 - 2013-04-01 16:47 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-09 10:21 - 2010-12-17 12:36 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2013-10-09 10:19 - 2013-10-08 11:59 - 00000224 _____ C:\Windows\setupact.log
2013-10-09 10:19 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-09 10:18 - 2010-12-17 12:04 - 01748742 _____ C:\Windows\WindowsUpdate.log
2013-10-09 10:17 - 2013-10-09 10:15 - 00000000 ____D C:\AdwCleaner
2013-10-09 10:15 - 2013-09-09 23:33 - 00000000 ____D C:\Users\Eva\Documents\University
2013-10-09 10:14 - 2013-10-09 10:14 - 01045226 _____ C:\Users\Eva\Desktop\adwcleaner.exe
2013-10-09 10:11 - 2013-04-01 16:47 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-09 10:01 - 2013-04-01 16:47 - 00004100 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-09 10:01 - 2013-04-01 16:47 - 00003848 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-09 10:00 - 2012-05-07 18:14 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-08 19:56 - 2012-05-07 18:14 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-08 19:56 - 2012-05-07 18:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-08 19:56 - 2012-02-25 18:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-08 13:05 - 2013-10-08 13:05 - 00031746 _____ C:\Users\Eva\Downloads\FRST.txt
2013-10-08 13:05 - 2013-10-08 13:04 - 00029447 _____ C:\Users\Eva\Downloads\Addition.txt
2013-10-08 13:02 - 2013-10-08 13:02 - 00000000 ____D C:\FRST
2013-10-08 13:01 - 2013-10-08 13:01 - 01954124 _____ (Farbar) C:\Users\Eva\Desktop\FRST64.exe
2013-10-08 12:12 - 2013-10-08 12:12 - 00002258 _____ C:\Users\Eva\Documents\Trojaner Board.txt
2013-10-08 12:02 - 2013-10-08 12:02 - 99859239 _____ C:\Windows\SysWOW64\ꠢ殑!
2013-10-08 11:59 - 2013-10-08 11:59 - 00038902 _____ C:\Windows\PFRO.log
2013-10-08 11:59 - 2013-10-08 11:59 - 00000000 _____ C:\Windows\setuperr.log
2013-10-08 11:34 - 2013-10-08 11:34 - 00001117 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-08 11:33 - 2013-10-08 11:33 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Eva\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-07 12:02 - 2012-09-22 20:47 - 00000000 ____D C:\Users\Eva\AppData\Local\Spotify
2013-10-05 17:05 - 2013-04-01 16:48 - 00002187 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-04 20:31 - 2013-08-30 17:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-04 20:31 - 2013-08-04 19:42 - 00000000 ____D C:\Program Files (x86)\CampusNet
2013-10-01 16:06 - 2011-03-08 20:59 - 00000000 ____D C:\Users\Eva\AppData\Local\Mozilla
2013-10-01 11:42 - 2013-10-01 11:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 21:14 - 2013-09-30 21:14 - 00001934 _____ C:\Users\Eva\Desktop\CampusNet Connect.lnk
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Users\Eva\AppData\Roaming\PDF reDirect
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Program Files (x86)\PDF reDirect
2013-09-29 22:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-23 02:30 - 2011-03-08 21:39 - 00000000 ____D C:\Users\Eva\Documents\Eigene Dateien
2013-09-17 00:53 - 2012-08-25 21:12 - 00000000 ____D C:\Users\Eva\AppData\Roaming\vlc
2013-09-16 18:16 - 2013-09-16 18:16 - 00002224 _____ C:\Users\Public\Desktop\Adobe Digital Editions 2.0.lnk
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\Documents\My Digital Editions
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\AppData\Local\Adobe_Systems_Incorporate
2013-09-16 18:16 - 2010-09-08 03:23 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-09-16 18:15 - 2013-09-16 18:15 - 00000120 _____ C:\Windows\wininit.ini
2013-09-16 18:15 - 2013-09-16 18:14 - 05889712 _____ (Adobe Systems Incorporated) C:\Users\Eva\Downloads\ADE_2.0_Installer.exe
2013-09-15 18:17 - 2013-09-13 14:29 - 97671483 _____ C:\Windows\SysWOW64\屾@
2013-09-09 14:09 - 2011-05-01 22:12 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-09-09 14:09 - 2011-03-08 23:55 - 00000000 ____D C:\ProgramData\Skype

Some content of TEMP:
====================
C:\Users\Eva\AppData\Local\Temp\Quarantine.exe
C:\Users\Gast\AppData\Local\Temp\AskSLib.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-21 19:33

==================== End Of Log ============================

--- --- ---

schrauber · 09.10.2013, 13:49

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

Scotland · 09.10.2013, 14:41

Erster Scan läuft jetzt.
Habe jedoch jetzt ein neues Problem, wenn ich mit meinem Adobe Reader PDFs von Homepages öffnen will geht das nich direkt ich muss die erst runterladen dann seh ich den text ansponsten seh ich nur die eingefügten grafiken....

Ist das der ESET Log?? Mein Eset hat sich einfach von selber geschlossen von daher bin ich mir nich sicher ob der Scan durchgelaufen ist....

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=90fc1ea850db1d4e921d95bbfe697e44
# engine=15416
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-09 01:26:49
# local_time=2013-10-09 02:26:49 (+0000, Westeuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7600 NT 
# compatibility_mode=1799 16775165 100 94 95056 151992914 48260 0
# compatibility_mode=5893 16776573 100 94 14050 133790259 0 0
# scanned=1596
# found=0
# cleaned=0
# scan_time=642
ESETSmartInstaller@High as downloader log:
all ok

Der Security Check supported leider mein Betriebssystem nicht. Irgendwelche Alternativen? Oder soll ich ich einfach den FRST laufen lassen?

schrauber · 10.10.2013, 08:39

Deinstalliere Adobe und installiere es neu. Frisches FRST log bitte. Sonst noch Probleme?

Scotland · 10.10.2013, 10:13

Okay, dann werd ich den denn mal wirklich Zeit hab. Grade renn ich nur von Vorlesung zur Bücherei und zurück Essays schreiben

Hier der Log

Code:

ATTFilter

can result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by Eva (administrator) on EVA-PC on 10-10-2013 10:11:42
Running from C:\Users\Eva\Desktop
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
( ) C:\Windows\system32\lxctcoms.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NTI, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
() C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe
(Lexmark International Inc.) C:\Program Files (x86)\Lexmark 5400 Series\ezprint.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Spotify Ltd) C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Eva\AppData\Roaming\Spotify\spotify.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Futuredial Inc.) C:\Program Files (x86)\ASUS\ASUS Sync\asusUPCTLoader.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerEvent.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Microsoft Corporation) C:\Windows\system32\prevhost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
() C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyHelper.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11046504 2010-07-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2103912 2010-07-13] (Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [320000 2009-04-09] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [ODDPwr] - C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [223264 2010-04-22] (Acer Incorporated)
HKLM\...\Run: [mwlDaemon] - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-05-27] (Egis Technology Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2107176 2010-03-11] (Synaptics Incorporated)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [594080 2010-07-29] (Atheros Communications)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [377504 2010-07-29] (Atheros Commnucations)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [496160 2010-06-11] (Acer Incorporated)
HKLM\...\Run: [lxctmon.exe] - C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe [291760 2006-11-22] ()
HKLM\...\Run: [EzPrint] - C:\Program Files (x86)\Lexmark 5400 Series\ezprint.exe [82864 2006-11-22] (Lexmark International Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844168 2013-06-08] (Samsung)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1561968 2013-04-23] (Samsung)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Eva\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1140736 2013-10-04] (Spotify Ltd)
HKCU\...\Run: [Spotify] - C:\Users\Eva\AppData\Roaming\Spotify\Spotify.exe [4736000 2013-10-04] (Spotify Ltd)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844168 2013-06-08] (Samsung)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
MountPoints2: {e9038821-09cc-11e0-988a-806e6f6e6963} - E:\Installer.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-05-27] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [265984 2010-06-28] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-10-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [975952 2010-08-10] (Dritek System Inc.)
HKLM-x32\...\Run: [MDS_Menu] - C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe [124136 2010-06-25] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2011-01-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2011-06-09] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-04-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Lexmark 5400 Series] - C:\Program Files (x86)\Lexmark 5400 Series\fm3032.exe [304048 2006-11-22] ()
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-05-30] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776 2012-06-07] (Apple Inc.)
HKLM-x32\...\Run: [AllShareAgent] - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-02] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [ASUS Sync Loader] - C:\Program Files (x86)\ASUS\ASUS Sync\asusUPCTLoader.exe [638976 2012-06-15] (Futuredial Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-20] (Avira Operations GmbH & Co. KG)
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-15] ()
Startup: C:\Users\Eva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{87D62344-26F9-46B7-8EF6-D9E344F6108A}: [NameServer]139.153.30.1 139.153.30.2

FireFox:
========
FF ProfilePath: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-en-GB.xml
FF Extension: No Name - C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\ld4wzbao.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://google/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.4_0
CHR Extension: (Google Search) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\Users\Eva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [821792 2010-06-11] (Acer Incorporated)
R2 lxct_device; C:\Windows\system32\lxctcoms.exe [566192 2006-11-22] ( )
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
R2 NTISchedulerSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640 2010-04-17] (NTI, Inc.)
R2 ODDPwrSvc; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [171040 2010-04-22] (Acer Incorporated)
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904 2010-02-03] ()
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-30] (Acer Incorporated)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-08-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-08-05] (Avira Operations GmbH & Co. KG)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-04-18] ()
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-04-18] ()
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-09 16:00 - 2013-10-09 16:00 - 100146679 _____ C:\Windows\SysWOW64\璔ꔗ™
2013-10-09 14:43 - 2013-10-09 14:43 - 00891167 _____ C:\Users\Eva\Desktop\SecurityCheck.exe
2013-10-09 14:13 - 2013-10-09 14:13 - 02347384 _____ (ESET) C:\Users\Eva\Desktop\esetsmartinstaller_enu.exe
2013-10-09 10:31 - 2013-10-09 10:31 - 00001709 _____ C:\Users\Eva\Desktop\JRT.txt
2013-10-09 10:26 - 2013-10-09 10:26 - 00000000 ____D C:\Windows\ERUNT
2013-10-09 10:24 - 2013-10-09 10:24 - 01032220 _____ (Thisisu) C:\Users\Eva\Desktop\JRT.exe
2013-10-09 10:15 - 2013-10-09 10:17 - 00000000 ____D C:\AdwCleaner
2013-10-09 10:14 - 2013-10-09 10:14 - 01045226 _____ C:\Users\Eva\Desktop\adwcleaner.exe
2013-10-08 13:05 - 2013-10-08 13:05 - 00031746 _____ C:\Users\Eva\Downloads\FRST.txt
2013-10-08 13:04 - 2013-10-08 13:05 - 00029447 _____ C:\Users\Eva\Downloads\Addition.txt
2013-10-08 13:02 - 2013-10-08 13:02 - 00000000 ____D C:\FRST
2013-10-08 13:01 - 2013-10-08 13:01 - 01954124 _____ (Farbar) C:\Users\Eva\Desktop\FRST64.exe
2013-10-08 12:12 - 2013-10-08 12:12 - 00002258 _____ C:\Users\Eva\Documents\Trojaner Board.txt
2013-10-08 12:02 - 2013-10-08 12:02 - 99859239 _____ C:\Windows\SysWOW64\ꠢ殑!
2013-10-08 11:59 - 2013-10-09 11:25 - 00000336 _____ C:\Windows\setupact.log
2013-10-08 11:59 - 2013-10-08 11:59 - 00038902 _____ C:\Windows\PFRO.log
2013-10-08 11:59 - 2013-10-08 11:59 - 00000000 _____ C:\Windows\setuperr.log
2013-10-08 11:34 - 2013-10-08 11:34 - 00001117 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-08 11:34 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-08 11:33 - 2013-10-08 11:33 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Eva\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-01 11:42 - 2013-10-01 11:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 21:14 - 2013-09-30 21:14 - 00001934 _____ C:\Users\Eva\Desktop\CampusNet Connect.lnk
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Users\Eva\AppData\Roaming\PDF reDirect
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Program Files (x86)\PDF reDirect
2013-09-16 18:16 - 2013-09-16 18:16 - 00002224 _____ C:\Users\Public\Desktop\Adobe Digital Editions 2.0.lnk
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\Documents\My Digital Editions
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\AppData\Local\Adobe_Systems_Incorporate
2013-09-16 18:15 - 2013-09-16 18:15 - 00000120 _____ C:\Windows\wininit.ini
2013-09-16 18:14 - 2013-09-16 18:15 - 05889712 _____ (Adobe Systems Incorporated) C:\Users\Eva\Downloads\ADE_2.0_Installer.exe
2013-09-13 14:29 - 2013-09-15 18:17 - 97671483 _____ C:\Windows\SysWOW64\屾@

==================== One Month Modified Files and Folders =======

2013-10-10 10:11 - 2013-04-01 16:47 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-10 10:11 - 2013-04-01 16:47 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-10 10:11 - 2012-09-22 20:47 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Spotify
2013-10-10 10:11 - 2012-05-07 18:14 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-10 10:11 - 2011-03-08 23:55 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Skype
2013-10-10 10:11 - 2010-12-17 12:36 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2013-10-10 09:32 - 2010-12-17 12:04 - 01753875 _____ C:\Windows\WindowsUpdate.log
2013-10-10 00:09 - 2013-09-09 23:33 - 00000000 ____D C:\Users\Eva\Documents\University
2013-10-09 16:00 - 2013-10-09 16:00 - 100146679 _____ C:\Windows\SysWOW64\璔ꔗ™
2013-10-09 14:43 - 2013-10-09 14:43 - 00891167 _____ C:\Users\Eva\Desktop\SecurityCheck.exe
2013-10-09 14:13 - 2013-10-09 14:13 - 02347384 _____ (ESET) C:\Users\Eva\Desktop\esetsmartinstaller_enu.exe
2013-10-09 11:25 - 2013-10-08 11:59 - 00000336 _____ C:\Windows\setupact.log
2013-10-09 10:57 - 2012-06-21 21:20 - 00000000 ____D C:\Users\Eva\Documents\Uni
2013-10-09 10:31 - 2013-10-09 10:31 - 00001709 _____ C:\Users\Eva\Desktop\JRT.txt
2013-10-09 10:27 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-09 10:27 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-09 10:26 - 2013-10-09 10:26 - 00000000 ____D C:\Windows\ERUNT
2013-10-09 10:24 - 2013-10-09 10:24 - 01032220 _____ (Thisisu) C:\Users\Eva\Desktop\JRT.exe
2013-10-09 10:22 - 2011-05-09 00:10 - 00000000 ____D C:\Users\Eva\AppData\Local\CrashDumps
2013-10-09 10:19 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-09 10:17 - 2013-10-09 10:15 - 00000000 ____D C:\AdwCleaner
2013-10-09 10:17 - 2011-05-01 22:08 - 00000000 ____D C:\ProgramData\ICQ
2013-10-09 10:14 - 2013-10-09 10:14 - 01045226 _____ C:\Users\Eva\Desktop\adwcleaner.exe
2013-10-09 10:01 - 2013-04-01 16:47 - 00004100 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-09 10:01 - 2013-04-01 16:47 - 00003848 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-08 19:56 - 2012-05-07 18:14 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-08 19:56 - 2012-05-07 18:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-08 19:56 - 2012-02-25 18:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-08 13:05 - 2013-10-08 13:05 - 00031746 _____ C:\Users\Eva\Downloads\FRST.txt
2013-10-08 13:05 - 2013-10-08 13:04 - 00029447 _____ C:\Users\Eva\Downloads\Addition.txt
2013-10-08 13:02 - 2013-10-08 13:02 - 00000000 ____D C:\FRST
2013-10-08 13:01 - 2013-10-08 13:01 - 01954124 _____ (Farbar) C:\Users\Eva\Desktop\FRST64.exe
2013-10-08 12:12 - 2013-10-08 12:12 - 00002258 _____ C:\Users\Eva\Documents\Trojaner Board.txt
2013-10-08 12:02 - 2013-10-08 12:02 - 99859239 _____ C:\Windows\SysWOW64\ꠢ殑!
2013-10-08 11:59 - 2013-10-08 11:59 - 00038902 _____ C:\Windows\PFRO.log
2013-10-08 11:59 - 2013-10-08 11:59 - 00000000 _____ C:\Windows\setuperr.log
2013-10-08 11:34 - 2013-10-08 11:34 - 00001117 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-08 11:34 - 2013-10-08 11:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-08 11:33 - 2013-10-08 11:33 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Eva\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-07 12:02 - 2012-09-22 20:47 - 00000000 ____D C:\Users\Eva\AppData\Local\Spotify
2013-10-05 17:05 - 2013-04-01 16:48 - 00002187 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-04 20:31 - 2013-08-30 17:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-04 20:31 - 2013-08-04 19:42 - 00000000 ____D C:\Program Files (x86)\CampusNet
2013-10-01 16:06 - 2011-03-08 20:59 - 00000000 ____D C:\Users\Eva\AppData\Local\Mozilla
2013-10-01 11:42 - 2013-10-01 11:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 21:14 - 2013-09-30 21:14 - 00001934 _____ C:\Users\Eva\Desktop\CampusNet Connect.lnk
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Users\Eva\AppData\Roaming\PDF reDirect
2013-09-29 22:28 - 2013-09-29 22:28 - 00000000 ____D C:\Program Files (x86)\PDF reDirect
2013-09-29 22:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-23 02:30 - 2011-03-08 21:39 - 00000000 ____D C:\Users\Eva\Documents\Eigene Dateien
2013-09-17 00:53 - 2012-08-25 21:12 - 00000000 ____D C:\Users\Eva\AppData\Roaming\vlc
2013-09-16 18:16 - 2013-09-16 18:16 - 00002224 _____ C:\Users\Public\Desktop\Adobe Digital Editions 2.0.lnk
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\Documents\My Digital Editions
2013-09-16 18:16 - 2013-09-16 18:16 - 00000000 ____D C:\Users\Eva\AppData\Local\Adobe_Systems_Incorporate
2013-09-16 18:16 - 2010-09-08 03:23 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-09-16 18:15 - 2013-09-16 18:15 - 00000120 _____ C:\Windows\wininit.ini
2013-09-16 18:15 - 2013-09-16 18:14 - 05889712 _____ (Adobe Systems Incorporated) C:\Users\Eva\Downloads\ADE_2.0_Installer.exe
2013-09-15 18:17 - 2013-09-13 14:29 - 97671483 _____ C:\Windows\SysWOW64\屾@

Some content of TEMP:
====================
C:\Users\Eva\AppData\Local\Temp\Quarantine.exe
C:\Users\Gast\AppData\Local\Temp\AskSLib.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-09 17:18

==================== End Of Log ============================

schrauber · 10.10.2013, 12:43

Fertig

Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software

Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.

Zusätzlicher Schutz

MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
WinPatrol
Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.

Sicheres Browsen

SpywareBlaster
Eine kurze Einführung findest du Hier
MVPs hosts file
Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
WOT (Web of trust)
Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

Opera
Mozilla Firefox.
- Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
- NoScript
  Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
- AdblockPlus
  Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
  Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )

Don'ts

Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

10.10.2013, 08:39	#8
schrauber /// the machine /// TB-Ausbilder	Laptop sicher nach BDS/TDSS.95846427.9 ? Deinstalliere Adobe und installiere es neu. Frisches FRST log bitte. Sonst noch Probleme? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Laptop sicher nach BDS/TDSS.95846427.9 ?

Plagegeister aller Art und deren Bekämpfung: Laptop sicher nach BDS/TDSS.95846427.9 ?