isearch.babylon aus dem IE entfernen
 

Obwohl ich Google als Startseite definiert habe, startet der IE immer mit der Seite:
"hxxp://isearch.babylon.com/?affID=111583&babsrc=lnkry"

Ich habe in der Systemsteuerung alle Babylon Programme entfernt, ohne diese doofe Seite loszuwerden.:heulen:

Kann mir da jemand helfen??



Nachfolgend das Ergebnis des Scan's mit AdwCleaner:

# AdwCleaner v2.112 - Datei am 23/02/2013 um 17:02:12 erstellt
# Aktualisiert am 10/02/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : ***** - *******-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\*****\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T2RO318I\adwcleaner0.exe
# Option [Suche]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Datei Infected : C:\Users\*****\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk ( arg. : hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=CH&userid=600d7cf5-7a1b-4acf-ba0f-cc82ec363acd&affid=111583&searchtype=sc&babsrc=lnkry)
Datei Infected : C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( arg. : hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=CH&userid=600d7cf5-7a1b-4acf-ba0f-cc82ec363acd&affid=111583&searchtype=sc&babsrc=lnkry)
Datei Infected : C:\Users\*****\Desktop\Internet Explorer.lnk ( arg. : hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=CH&userid=600d7cf5-7a1b-4acf-ba0f-cc82ec363acd&affid=111583&searchtype=sc&babsrc=lnkry)

***** [Registrierungsdatenbank] *****

Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKU\S-1-5-21-902269738-3445035301-2392996301-1001\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}

***** [Internet Browser] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Die Registrierungsdatenbank ist sauber.

-\\ Mozilla Firefox v18.0.1 (de)

Datei : C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\o6lkk0hd.default\prefs.js

[OK] Die Datei ist sauber.

-\\ Google Chrome v24.0.1312.57

Datei : C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Die Datei ist sauber.

*************************

AdwCleaner[R1].txt - [26728 octets] - [21/01/2013 21:28:29]
AdwCleaner[R2].txt - [2812 octets] - [23/02/2013 17:02:12]
AdwCleaner[S1].txt - [26802 octets] - [21/01/2013 21:31:02]

########## EOF - C:\AdwCleaner[R2].txt - [2933 octets] ##########

Hi,

mach bitte mal ein OTL-Log:



Lade dir bitte OTL (von Oldtimer) herunter und speichere es auf deinen Desktop.

• Doppelklick auf die OTL.exe.
• Unter Extra Registry, wähle bitte Use SafeList.
• Setze den Haken bei Scan all Users.
• Klicke nun auf Run Scan.
• Wenn der Scan beendet ist, werden 2 Logfiles (OTL.txt und Extras.txt) erstellt.
• Poste den Inhalt dieser Logfiles hier in den Thread.

Hallo Leo

Nachfolgend die Inhalt der beiden Logfiles:
OTL Logfile:
--- --- ---

*****************OTL Logfile:
--- --- ---


Vielen Dank.

Gruss

Hoi,

ist die Startseite denn jetzt immer noch von babylon? Ich seh grad im Moment grad nichts davon..

Hallo Leo

Ja die Startseite ist immer noch Babylon

"hxxp://isearch.babylon.com/?affID=111583&babsrc=lnkry"

Gruss
André

Hoi André,

mach bitte mal das:


Starte bitte die OTL.exe.

• Setze den Haken bei Scan all Users.
• Drücke auf den Quick Scan Button.
• Poste den Inhalt von OTL.txt hier in den Thread.

Hallo Leo

Nachfolgend das OTL Logfile.

Gruss
André


OTL Logfile:
--- --- ---

Hallo André,

immer noch nichts zu sehen, suchen wir mal gründlich danach:


Lade SystemLook (von jpshortstuff) herunter und speichere das Tool auf dem Desktop.

• Doppelklicke auf die SystemLook_x64.exe, um das Tool zu starten.
  Vista und Win7 User: Rechtsklick und "als Administrator starten".
• Kopiere den Inhalt der folgenden Codebox in das Textfeld des Tools:
  
  
  Code:

  ---

  :filefind
*babylon*

:folderfind
*babylon*

:regfind
babylon

  ---

• Klicke nun auf den Button Look, um den Scan zu starten.
• Wenn der Suchlauf beendet ist, wird sich dein Editor mit den Ergebnissen öffnen. Poste diese in deinen Thread.
• Das Log-File wird auch auf dem Desktop als SystemLook.txt gespeichert.

Hallo Leo

Hier das Ergebniss:

Gruss
André


SystemLook 30.07.11 by jpshortstuff
Log created at 16:46 on 24/02/2013 by ******
Administrator - Elevation successful

========== filefind ==========

Searching for "*babylon*"
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\4T6SGLC8\131434-isearch-babylon-ie-entfernen[1].htm --a---- 333849 bytes [15:43 24/02/2013] [15:43 24/02/2013] 5E65A85BFF947D8FEC32D323E323BBC1
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\4T6SGLC8\isearch_babylon_com[1].htm --a---- 12269 bytes [14:07 24/02/2013] [14:07 24/02/2013] 4C81FC2F9C58EF57F17C882F76E07A62
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\8F4ZPF7R\123270-search-babylon-com-startseite-laesst-entfernen[1].html --a---- 291 bytes [15:51 23/02/2013] [15:58 23/02/2013] 100C494DD9F659319BBAADE41028FA10
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\915B8LXY\123270-search-babylon-com-startseite-laesst-entfernen[1].htm --a---- 292776 bytes [15:58 23/02/2013] [15:58 23/02/2013] 4A04B4F38E56F801B2FE379F2DDDD043
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\915B8LXY\130846-isearch-babylon[1].html --a---- 291 bytes [15:51 23/02/2013] [15:51 23/02/2013] 100C494DD9F659319BBAADE41028FA10
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\915B8LXY\130846-isearch-babylon[2].htm --a---- 113775 bytes [15:50 23/02/2013] [15:50 23/02/2013] 4F3D8429A42B22F4F01BB113BDD7AFF4
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\915B8LXY\225200-babylon-search-entfernen-neuer-tab-mit-babylon-search-unter-mozilla-firefox[2].html --a---- 584 bytes [15:48 23/02/2013] [15:48 23/02/2013] C59BE8BBD2E9EE81F0BCEB01F9FD8BF3
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\915B8LXY\babylon-toolbar[1] --a---- 52 bytes [15:58 23/02/2013] [15:58 23/02/2013] D3BB43A369420BC6A62C98027811E4BA
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\915B8LXY\isearch-babylon-ie-entfernen_ltr[1].gif --a---- 1035 bytes [20:20 23/02/2013] [20:20 23/02/2013] 279A7CCAE1D652E0EB03D9FB5B067B16
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\915B8LXY\isearch-babylon[1].png --a---- 35471 bytes [15:51 23/02/2013] [15:51 23/02/2013] 93CBF8DB32A389E095355837F6C6465A
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\915B8LXY\isearch-babylon_ltr[1].gif --a---- 1035 bytes [15:49 23/02/2013] [15:49 23/02/2013] 279A7CCAE1D652E0EB03D9FB5B067B16
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\915B8LXY\isearchbabylon-weg-kriegen---hilfe[2] --a---- 519 bytes [15:48 23/02/2013] [15:48 23/02/2013] 219AAC40185D05BD003111EA79AFF048
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\915B8LXY\search-babylon-com-startseite-laesst-entfernen_ltr[1].gif --a---- 1035 bytes [15:58 23/02/2013] [15:58 23/02/2013] 279A7CCAE1D652E0EB03D9FB5B067B16
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9V17XM27\babylon-search-entfernen[1] --a---- 169 bytes [15:48 23/02/2013] [15:48 23/02/2013] 70D4A9D0853A3695335879269E50CAB8
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9V17XM27\how-do-i-remove-isearchbabyloncom[1] --a---- 409 bytes [15:58 23/02/2013] [15:58 23/02/2013] 0B596E677B9D7A78AA9B2AFB617AC335
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9V17XM27\remove-babylon-toolbar[1].html --a---- 171 bytes [15:58 23/02/2013] [15:58 23/02/2013] F8D63B7CD6A57A1DC4A84BF9A8FBCC7E
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\A1SOD1P4\131406-saeuberungsversuch-isearch-babylon[1].htm --a---- 49636 bytes [15:48 23/02/2013] [15:48 23/02/2013] A50567CDBE07DEA0D7D0619FE9F28C28
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\A1SOD1P4\babylon-laesst-sich-nicht-deinstallieren-538506909[1].html --a---- 283 bytes [15:48 23/02/2013] [15:48 23/02/2013] 01373AC4037ED9D2348ABCB0CD45043B
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\A1SOD1P4\babylon-search-entfernen_113694[1].html --a---- 462 bytes [15:48 23/02/2013] [15:48 23/02/2013] 0CF4155F48158B6A9B49B93AF1ED59D9
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\A1SOD1P4\babylon_small[1].jpg --a---- 1660 bytes [09:43 31/01/2013] [09:43 31/01/2013] C95B90725A6D1C67CD44679D6C07BFEC
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\EXHE7CY6\239828-32-babylon-toolbar-loschen[1] --a---- 291 bytes [15:51 23/02/2013] [15:51 23/02/2013] 8644F7F39143852EAD4A2E3E04FCE117
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\TVQFK192\131406-saeuberungsversuch-isearch-babylon[1].html --a---- 291 bytes [15:51 23/02/2013] [15:51 23/02/2013] 100C494DD9F659319BBAADE41028FA10
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\TVQFK192\babylon-search-entfernen-so-klappt-s_73231[1] --a---- 291 bytes [15:48 23/02/2013] [15:48 23/02/2013] ED9FF7EB2B353B399BEAEF85C844497B
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\TVQFK192\isearch-babylon-com[1].html --a---- 112 bytes [15:58 23/02/2013] [15:58 23/02/2013] 1153B82C1BC7BFBFCB3B8F72BEE37174
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\TVQFK192\kill-babylontoolbarsrv-exe[2] --a---- 227 bytes [15:51 23/02/2013] [15:51 23/02/2013] 516E9892BA3947412DC1183E4F3AE43A
C:\Users\******\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\UQWCPRTZ\saeuberungsversuch-isearch-babylon_ltr[1].gif --a---- 1035 bytes [15:48 23/02/2013] [15:48 23/02/2013] 279A7CCAE1D652E0EB03D9FB5B067B16

========== folderfind ==========

Searching for "*babylon*"
No folders found.

========== regfind ==========

Searching for "babylon"
[HKEY_CURRENT_USER\Software\Microsoft\Office\12.0\Common\Internet]
"UseRWHlinkNavigation"="http://www.trojaner-board.de/131434-...new-post.html"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}]
"DllName"="BabylonToolbar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}]
"DllName"="BabylonToolbar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}]
"DllName"="BabylonToolbarTlbr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}]
"DllName"="BabylonToolbar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}]
"DllName"="BabylonToolbar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}]
"DllName"="BabylonToolbarTlbr.dll"
[HKEY_USERS\S-1-5-21-902269738-3445035301-2392996301-1001\Software\Microsoft\Office\12.0\Common\Internet]
"UseRWHlinkNavigation"="http://www.trojaner-board.de/131434-...new-post.html"

Searching for " "
[HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe"="FreeStudioManager "
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\2]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\3]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell]
"ConfigXML"=" <PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="1" XmlRenderingType="text" > <InitializationParameters> <Param Name="PSVersion" Value="2.0"/> </InitializationParameters> <Resources> <Resource ResourceUri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell" SupportsOptions="true" ExactMatch="true"> <Security xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Uri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell" ExactMatch="true" Sddl="O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)"/> <Capability Type="Shell"/> </Resource> </Res
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell32]
"ConfigXML"="<PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell32" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="1" XmlRenderingType="text" Architecture="32" > <InitializationParameters> <Param Name="PSVersion" Value="2.0"/> </InitializationParameters> <Resources> <Resource ResourceUri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell32" SupportsOptions="true" ExactMatch="true"> <Security xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Uri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell32" ExactMatch="true" Sddl="O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)"/>
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_&PROD_&REV_#11050651020160&0#]
"DeviceDesc"=" "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_APPLE&PROD_IPOD&REV_1.62#000A27001A243 56C&0#]
"DeviceDesc"="iPod "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_GENERIC-&PROD_SD#MMC&REV_1.00#20060413092100000&2#]
"DeviceDesc"="SD/MMC "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_&PROD_&REV_#11050651020160&0#]
"DeviceDesc"=" "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_APPLE&PROD_IPOD&REV_1.62#000A27001A243 56C&0#]
"DeviceDesc"="iPod "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_GENERIC-&PROD_SD#MMC&REV_1.00#20060413092100000&2#]
"DeviceDesc"="SD/MMC "
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_&PROD_&REV_#11050651020160&0#]
"DeviceDesc"=" "
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_APPLE&PROD_IPOD&REV_1.62#000A27001 A24356C&0#]
"DeviceDesc"="iPod "
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_GENERIC-&PROD_SD#MMC&REV_1.00#20060413092100000&2#]
"DeviceDesc"="SD/MMC "
[HKEY_USERS\S-1-5-21-902269738-3445035301-2392996301-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe"="FreeStudioManager "
[HKEY_USERS\S-1-5-21-902269738-3445035301-2392996301-1001_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe"="FreeStudioManager "

-= EOF =-

Hallo André,

• Gehe zu Start --> Systemsteuerung und öffne Programme und Funktionen.
• Suche und deinstalliere dort der Reihe nach folgende Einträge:
  • Linkury Smartbar
  • Linkury Smartbar Engine
• Schliesse das Fenster wieder und führe einen Neustart durch.

Wie sieht es nach dem Neustart aus?

Hallo Leo

Ich kann die beiden Einträge nicht löschen. Sie verbleiben auch nach dem Löschungsversuch und Neustart in der Programmliste.

Gruss
André

Hallo André,

der ist jetzt hartnäckig..
Bitte danach auch wieder testen, ob es schon weg ist.


Schritt 1

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

• Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
• Drücke eine beliebige Taste, um das Tool zu starten.
• Je nach System kann der Scan eine Weile dauern.
• Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
• Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

Schritt 2

Lade SystemLook (von jpshortstuff) herunter und speichere das Tool auf dem Desktop.

• Doppelklicke auf die SystemLook_x64.exe, um das Tool zu starten.
  Vista und Win7 User: Rechtsklick und "als Administrator starten".
• Kopiere den Inhalt der folgenden Codebox in das Textfeld des Tools:
  
  
  Code:

  ---

  :filefind
*linkury*

:folderfind
*linkury*

:regfind
linkury

  ---

• Klicke nun auf den Button Look, um den Scan zu starten.
• Wenn der Suchlauf beendet ist, wird sich dein Editor mit den Ergebnissen öffnen. Poste diese in deinen Thread.
• Das Log-File wird auch auf dem Desktop als SystemLook.txt gespeichert.

Bitte poste in deiner nächsten Antwort:

• Log von JRT
• Log von SystemLook

Hallo Leo

Ich habe vergeblich versucht die beiden Einträge zu löschen. Sie verbleiben auch nach einem neuen Systemstart in der Programmliste.

Gruss
André

Hast du die beiden Schritte wie zuvor angegeben schon ausgeführt?

Hallo Leo

Hier die beiden Logfiles.

Gruss
André

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.5 (02.18.2013:1)
OS: Windows 7 Home Premium x64
Ran by *****‚ on 24.02.2013 at 22:09:50.60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] hkey_current_user\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_users\.default\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_users\s-1-5-18\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_users\s-1-5-19\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_users\s-1-5-20\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_users\S-1-5-21-902269738-3445035301-2392996301-1001\software\microsoft\internet explorer\searchscopes\\DefaultScope



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\smartbar
Successfully deleted: [Registry Key] hkey_local_machine\software\classes\applications\ilividsetup.exe
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{6a1806cd-94d4-4689-ba73-e35ea1ea9990}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{6a1806cd-94d4-4689-ba73-e35ea1ea9990}



~~~ Files

Successfully repaired: [Shortcut] C:\Users\*****‚\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
Successfully repaired: [Shortcut] C:\Users\*****‚\AppData\Roaming\microsoft\windows\start menu\Programs\Internet Explorer.lnk
Successfully repaired: [Shortcut] C:\Users\*****‚\desktop\Internet Explorer.lnk



~~~ Folders

Successfully deleted: [Folder] "C:\Users\*****‚\AppData\Roaming\dvdvideosoftiehelpers"



~~~ FireFox

Successfully deleted: [Folder] C:\Users\*****‚\AppData\Roaming\mozilla\firefox\profiles\o6lkk0hd.default\extensions\{acaa314b-eeba-48e4-ad47-84e31c44796c}
Emptied folder: C:\Users\*****‚\AppData\Roaming\mozilla\firefox\profiles\o6lkk0hd.default\minidumps [5 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 24.02.2013 at 22:15:06.10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


SystemLook 30.07.11 by jpshortstuff
Log created at 22:21 on 24/02/2013 by *****
Administrator - Elevation successful

========== filefind ==========

Searching for "*linkury*"
No files found.

========== folderfind ==========

Searching for "*linkury*"
No folders found.

========== regfind ==========

Searching for "linkury"
[HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\BD675BE351B3CD24793BC26AB7DD7D4F]
"ProductName"="Linkury Smartbar"
[HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\BD675BE351B3CD24793BC26AB7DD7D4F\SourceList]
"PackageName"="LinkuryInstaller.msi"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6d437e0d-abf5-40c6-9eed-f3814611f341}]
"DisplayName"="Linkury Smartbar Engine"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6d437e0d-abf5-40c6-9eed-f3814611f341}]
"Publisher"="Linkury Inc."
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Linkury_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Linkury_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-902269738-3445035301-2392996301-1001\Products\BD675BE351B3CD24793BC26AB7DD7D4F\InstallProperties]
"HelpLink"="hxxp://www.linkury.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-902269738-3445035301-2392996301-1001\Products\BD675BE351B3CD24793BC26AB7DD7D4F\InstallProperties]
"Publisher"="Linkury Inc."
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-902269738-3445035301-2392996301-1001\Products\BD675BE351B3CD24793BC26AB7DD7D4F\InstallProperties]
"URLInfoAbout"="hxxp://www.linkury.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-902269738-3445035301-2392996301-1001\Products\BD675BE351B3CD24793BC26AB7DD7D4F\InstallProperties]
"DisplayName"="Linkury Smartbar"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\Linkury_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\Linkury_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3EB576DB-3B15-42DC-97B3-2CA67BDDD7F4}]
"HelpLink"="hxxp://www.linkury.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3EB576DB-3B15-42DC-97B3-2CA67BDDD7F4}]
"Publisher"="Linkury Inc."
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3EB576DB-3B15-42DC-97B3-2CA67BDDD7F4}]
"URLInfoAbout"="hxxp://www.linkury.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3EB576DB-3B15-42DC-97B3-2CA67BDDD7F4}]
"DisplayName"="Linkury Smartbar"
[HKEY_USERS\S-1-5-21-902269738-3445035301-2392996301-1001\Software\Microsoft\Installer\Products\BD675BE351B3CD24793BC26AB7DD7D4F]
"ProductName"="Linkury Smartbar"
[HKEY_USERS\S-1-5-21-902269738-3445035301-2392996301-1001\Software\Microsoft\Installer\Products\BD675BE351B3CD24793BC26AB7DD7D4F\SourceList]
"PackageName"="LinkuryInstaller.msi"
[HKEY_USERS\S-1-5-21-902269738-3445035301-2392996301-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6d437e0d-abf5-40c6-9eed-f3814611f341}]
"DisplayName"="Linkury Smartbar Engine"
[HKEY_USERS\S-1-5-21-902269738-3445035301-2392996301-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6d437e0d-abf5-40c6-9eed-f3814611f341}]
"Publisher"="Linkury Inc."

Searching for " "
[HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe"="FreeStudioManager "
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\2]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\3]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell]
"ConfigXML"=" <PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="1" XmlRenderingType="text" > <InitializationParameters> <Param Name="PSVersion" Value="2.0"/> </InitializationParameters> <Resources> <Resource ResourceUri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell" SupportsOptions="true" ExactMatch="true"> <Security xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Uri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell" ExactMatch="true" Sddl="O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)"/> <Capability Type="Shell"/> </Resource> </Res
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell32]
"ConfigXML"="<PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell32" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="1" XmlRenderingType="text" Architecture="32" > <InitializationParameters> <Param Name="PSVersion" Value="2.0"/> </InitializationParameters> <Resources> <Resource ResourceUri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell32" SupportsOptions="true" ExactMatch="true"> <Security xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Uri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell32" ExactMatch="true" Sddl="O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)"/>
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_&PROD_&REV_#11050651020160&0#]
"DeviceDesc"=" "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_APPLE&PROD_IPOD&REV_1.62#000A27001A243 56C&0#]
"DeviceDesc"="iPod "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_GENERIC-&PROD_SD#MMC&REV_1.00#20060413092100000&2#]
"DeviceDesc"="SD/MMC "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_&PROD_&REV_#11050651020160&0#]
"DeviceDesc"=" "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_APPLE&PROD_IPOD&REV_1.62#000A27001A243 56C&0#]
"DeviceDesc"="iPod "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_GENERIC-&PROD_SD#MMC&REV_1.00#20060413092100000&2#]
"DeviceDesc"="SD/MMC "
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_37_-_Intel(R)_Core(TM)_i5_CPU_________650__@_3.20GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_&PROD_&REV_#11050651020160&0#]
"DeviceDesc"=" "
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_APPLE&PROD_IPOD&REV_1.62#000A27001 A24356C&0#]
"DeviceDesc"="iPod "
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_GENERIC-&PROD_SD#MMC&REV_1.00#20060413092100000&2#]
"DeviceDesc"="SD/MMC "
[HKEY_USERS\S-1-5-21-902269738-3445035301-2392996301-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe"="FreeStudioManager "
[HKEY_USERS\S-1-5-21-902269738-3445035301-2392996301-1001_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe"="FreeStudioManager "

-= EOF =-