ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7587
# api_version=3.0.2
# EOSSerial=9e52952d060e904aa74fd15cba193b80
# engine=18879
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-06-26 08:03:21
# local_time=2014-06-26 10:03:21 (+0100, Romance (zomertijd))
# country="Belgium"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='avast! Antivirus'
# compatibility_mode=783 16777213 100 95 931108 8344411 0 0
# compatibility_mode_1='Microsoft Security Essentials'
# compatibility_mode=5895 16777213 100 100 130537 97947411 0 0
# scanned=342311
# found=34
# cleaned=32
# scan_time=50609
sh=168A3F2B9AB8C712B98AC0288AB012784D6224D4 ft=1 fh=c71c001198f425ea vn="Win32/InstalleRex.M potentially unwanted application" ac=I fn="C:\Users\All Users\InstallMate\{531CCBEE-1F2D-48A0-AA4B-570F88FFE918}\Custom.dll"
sh=3AEF532A0211CE7869F0EB51E940D9E0C7CAE321 ft=1 fh=c7560653d3ee2314 vn="a variant of Win32/Adware.Yontoo.B application" ac=I fn="C:\Users\All Users\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll"
sh=C91AF5CAA0124DB8E8ABA4FF9D26B809DE2388D7 ft=1 fh=ef14a3601f34443f vn="a variant of Win32/Toolbar.BitCocktail.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Program Files\Web Assistant\ExtensionUpdaterService.exe"
sh=01FC06DE42A276DF95321928A5A0310EE556E574 ft=1 fh=c71c001100d15137 vn="a variant of Win32/Toolbar.BitCocktail.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Program Files\Web Assistant\InstallerHelper.dll"
sh=97BCCD25561F44E9B13F05F6EEF083C9CE9BA529 ft=1 fh=641f1fb3d2e699c4 vn="Win32/Toolbar.Conduit.Y potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Program Files (x86)\Conduit\Community Alerts\Alert.dll"
sh=E5AD99CE7C7362CA566156033ECB0F04F9437CA7 ft=1 fh=f45d83e01e1c8734 vn="Win32/Toolbar.Conduit.Q potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Program Files (x86)\express-files\express-filesToolbarHelper.exe"
sh=C2C7BD3BD6C75D5DBCCA298C785C208AB6C73CF0 ft=1 fh=154117e7567d41ef vn="a variant of Win32/Toolbar.Conduit.P potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Program Files (x86)\express-files\ldrtbexpr.dll"
sh=5C684D51F07A183EEA13D66F5C7E9630C48D93B5 ft=1 fh=53be76e80c29ad73 vn="a variant of Win32/Toolbar.Conduit.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Program Files (x86)\express-files\tbexpr.dll"
sh=71CD50AAAE5D0878461DBBDCF578421A745F41D3 ft=1 fh=c373ebba2dd6fb96 vn="Win32/Toolbar.Besttoolbars.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Program Files (x86)\Smiley Bar for Facebook\AddonsFramework.dll"
sh=168A3F2B9AB8C712B98AC0288AB012784D6224D4 ft=1 fh=c71c001198f425ea vn="Win32/InstalleRex.M potentially unwanted application (deleted - quarantined)" ac=C fn="C:\ProgramData\InstallMate\{531CCBEE-1F2D-48A0-AA4B-570F88FFE918}\Custom.dll"
sh=3AEF532A0211CE7869F0EB51E940D9E0C7CAE321 ft=1 fh=c7560653d3ee2314 vn="a variant of Win32/Adware.Yontoo.B application (cleaned by deleting - quarantined)" ac=C fn="C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll"
sh=E5AD99CE7C7362CA566156033ECB0F04F9437CA7 ft=1 fh=f45d83e01e1c8734 vn="Win32/Toolbar.Conduit.Q potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Conduit\CT3176921\express-filesAutoUpdateHelper.exe"
sh=1D52422B873FB6C5D70D308BD855D5F95D319578 ft=1 fh=d8322e4cff737963 vn="Win32/InstalleRex.M potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000"
sh=B21A7DF08C750073B5375646ECAEF29D3D1E2C4A ft=1 fh=170ba658db64cf10 vn="a variant of Win32/AdWare.MultiPlug.R application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F1HAWPM4\3XducbwoCj[1].exe"
sh=E11F217A64480ECD9E41B9E59AE499FD29D4D43B ft=1 fh=b4d611ac9e7dde61 vn="a variant of Win32/AdWare.MultiPlug.R application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F1HAWPM4\qFGP9[1].exe"
sh=C7DD38CC39CB31E5288DDDD7EC842D7CFC4248F3 ft=1 fh=4baf465fb3d3cb44 vn="a variant of Win32/AdWare.MultiPlug.R application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F1HAWPM4\ynyJScF[1].exe"
sh=6D04D56668E67E0D634A6914E54F503EC43CAC8D ft=1 fh=c71c001194990d1f vn="a variant of Win32/SProtector.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KOGJSM3G\tpq[1].exe"
sh=042381C63A2D10D70267D6AB2EB8DEF00E830C98 ft=1 fh=5d72a20e362fe900 vn="a variant of Win32/AdWare.MultiPlug.R application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OYZ6ROVL\H79K9HWQ8[1].exe"
sh=DE0854A3CF9399C7D6928650A21F2D94649D59AF ft=1 fh=98c04d91e6e560fb vn="a variant of Win32/AdWare.MultiPlug.R application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R3XFJKKE\76R7b[1].exe"
sh=DB4D32D7FAD2EBB94A419CC3FD1EC203273EBB96 ft=1 fh=e27b9fb91d50bfe5 vn="a variant of Win32/AdWare.MultiPlug.R application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R3XFJKKE\rpH[1].exe"
sh=71435DDB11E00D0243380C4902324853FE4ECE8F ft=1 fh=12b0cd2dde452d65 vn="a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application (deleted - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Temp\AskSLib.dll"
sh=92E84D2216A7763D580E42FA2493CCF67D0D0560 ft=1 fh=e8efc42494afd9f6 vn="a variant of Win32/Toolbar.Conduit.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Temp\tbBitt.dll"
sh=92E84D2216A7763D580E42FA2493CCF67D0D0560 ft=1 fh=e8efc42494afd9f6 vn="a variant of Win32/Toolbar.Conduit.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Temp\tbedrs.dll"
sh=63D8A233223061D42538AD5F8A1552A86C0420CA ft=1 fh=0b75d8cb754ba137 vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Temp\toolbar9558196.exe"
sh=F44C70DC44F860E7AF6AE8AE6B4D7DA51E2813CD ft=1 fh=4dfad80b35e863f5 vn="a variant of Win32/Toolbar.Conduit potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Temp\utt7EA5.tmp.exe"
sh=D841842880FFA183DCD7A94AB256195B2C73A7A9 ft=1 fh=bfe6523760a68cee vn="a variant of Win32/Toolbar.Babylon.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Temp\E5728D6A-BAB0-7891-B2E9-4FEF7F062F22\Setup.exe"
sh=DE0854A3CF9399C7D6928650A21F2D94649D59AF ft=1 fh=98c04d91e6e560fb vn="a variant of Win32/AdWare.MultiPlug.R application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Temp\{531CCBEE-1F2D-48A0-AA4B-570F88FFE918}\Addons\setupnt.exe"
sh=B21A7DF08C750073B5375646ECAEF29D3D1E2C4A ft=1 fh=170ba658db64cf10 vn="a variant of Win32/AdWare.MultiPlug.R application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Ani\AppData\Local\Temp\{531CCBEE-1F2D-48A0-AA4B-570F88FFE918}\Addons\setupytb.exe"
sh=C2C7BD3BD6C75D5DBCCA298C785C208AB6C73CF0 ft=1 fh=154117e7567d41ef vn="a variant of Win32/Toolbar.Conduit.P potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\AppData\LocalLow\express-files\ldrtbexpr.dll"
sh=5C684D51F07A183EEA13D66F5C7E9630C48D93B5 ft=1 fh=53be76e80c29ad73 vn="a variant of Win32/Toolbar.Conduit.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\AppData\LocalLow\express-files\tbexpr.dll"
sh=21565FAD8AA3740ADD68A5DCEED92F05E3775219 ft=1 fh=0a36748dc1cdc438 vn="a variant of Win32/Toolbar.Perion.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\Downloads\backups\backup-20121026-161532-299.dll"
sh=C7390942D0D6579CC2C17DCAA8E20F6025F996CF ft=1 fh=a6330ef3ed504e0e vn="a variant of Win32/Adware.Yontoo.A application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Ani\Downloads\backups\backup-20121026-161532-542.dll"
sh=55AF8B1A47CCC1AE26CCFEF58EAB3CCA3C884E82 ft=1 fh=dfbbad7840972edf vn="a variant of Win32/Toolbar.Escort.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\Downloads\backups\backup-20121026-161532-641.dll"
sh=75C71A768DE70CEBCA7C47ED974E830FBB7B3117 ft=1 fh=07ea162017421b85 vn="Win32/Toolbar.SearchSuite potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Ani\Music\new\iLividSetup.exe"