Clicking on the browsers opens a new window with a website ADV - Virus, Spyware and Malware Removal (2023)

Well since yesterday when I clicked something a new window opened with an ADV website, I ran a full scan with ESET 4.2, SuperAntiSpyware and Malwarebyte'Anti-Malware and everything was fine, then I tried again ran a full scan with malwarebyte and superantispyware in safe mode and i just found some cookies, i deleted them and i still have the same problem... i don't know what to do, i hope you guys can me help :/
The homepage is ok (Google.com.do)

SO: Win7 Home Premium SP1 64 Bit
Notebook hp amd phenom ii x2
Graphics card: AtiHD 4250

These logs are 5 minutes old:

OTL log file created on: 08/08/2011 15:12:29 - Run 1
OTL von OldTimer - Version 3.2.26.1 Folder = C:\Users\owner\Downloads
64bit-Home Premium Edition Service Pack 1 (Version = 6.1.7601) – Typ = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Location: 00000409 | Country: United States | Language: DE | Date format: M/d/yyyy

Total physical storage 3.75 GB | 1.97 GB available physical memory | 52.59% free memory
7.49 GB paging file | 5.15 GB available in paging file | 68.77% free paging file
Paging file location: ?:\pagefile.sys [binaries]

%Systemlaufwerk% = C: | %SystemRoot% = C:\Windows | %Programme% = C:\Programme (x86)
drive C: | 279.16 GB total storage space | 189.99 GB of free space | 68.06% free disk space | Partition type: NTFS
Drive D: | 18.63 GB total storage space | 2.70GB of free disk space | 14.50% free disk space | Partition type: NTFS

Computer name: OWNER-HP | Username: owner | Logged in as administrator.
Boot Mode: Normal | Scan mode: Current user | Include 64-bit checks
Company Name Whitelist: Disabled | Ignore Microsoft Files: Disabled | No company name whitelisting: Enabled | File age = 30 days

========== Processes (SafeList) ==========

RPC - [08.08.2011 15:11:51 | 000.579.584 | ---- | M] (OldTimer Tools) -- C:\Users\proprietário\Downloads\OTL.exe
RPC - [07.08.2011 03:16:28 | 000.924.632 | ---- | M] (Mozilla Corporation) – C:\Programme (x86)\Mozilla Firefox\firefox.exe
RPC - [06.07.2011 19:52:38 | 001.047.656 | ---- | M] (Malwarebytes Corporation) – C:\Arquivos de Programas (x86)\Malwarebytes' Anti-Malware\mbam.exe
RPC - [06.07.2011 19:52:38 | 000.449.584 | ---- | M] (Malwarebytes Corporation) – C:\Arquivos de programas (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
RPC - [06.07.2011 19:52:38 | 000.366.640 | ---- | M] (Malwarebytes Corporation) – C:\Arquivos de Programas (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
RPC - [01.06.2011 08:44:54 | 008.003.448 | ---- | M] (TeamViewer GmbH) -- C:\Programme (x86)\TeamViewer\Version6\TeamViewer.exe
RPC - [01.06.2011 08:44:54 | 002.337.144 | ---- | M] (TeamViewer GmbH) -- C:\Programme (x86)\TeamViewer\Version6\TeamViewer_Service.exe
RPC - [01.06.2011 08:16:32 | 000.108.408 | ---- | M] (TeamViewer GmbH) -- C:\Programme (x86)\TeamViewer\Version6\tv_w32.exe
RPC - [2011/01/12 16:41:42 | 000.810.144 | ---- | M] (ESET) – C:\Programme\ESET\ESET Smart Security\x86\ekrn.exe
RPC - [2010/09/29 02:55:32 | 000.136.488 | ---- | M] (CyberLink) – C:\Programme (x86)\CyberLink\YouCam\YCMMirage.exe
VR China - [2010/09/28 21:08:58 | 000.584.760 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Programme (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
VR China - [2010/09/28 21:08:58 | 000.026.680 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Programme (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
RPC - [17.09.2010 19:45:46 | 000.092.216 | ---- | M] (Hewlett-Packard Company) – C:\Programme (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
RPC - [2010/09/11 04:02:22 | 000.399.344 | ---- | M] (Roxio) – C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe

========== Module (SafeList) ==========

MOD - [08.08.2011 15:11:51 | 000.579.584 | ---- | M] (OldTimer Tools) -- C:\Users\proprietário\Downloads\OTL.exe
MOD - [01.06.2011 08:16:32 | 000.050.040 | ---- | M] (TeamViewer GmbH) -- C:\Arquivos de Programas (x86)\TeamViewer\Version6\tv_w32.dll
MOD - [2010/11/20 07:55:09 | 001.680.896 | ---- | M] (Microsoft Corporation) – C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
MOD - [13.07.2009 21:15:07 | 000.149.019 | ---- | M] (Microsoft Corporation) – C:\Windows\SysWOW64\crtdll.dll

========== Win32 Services (SafeList) ==========

SRV:64 Bit:- [07/18/2011 20:01:47 | 000.146.816 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64 Bit:- [07.07.2011 23:36:06 | 000.365.568 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Läuft] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64 Bit:- [01/12/2011 16:44:02 | 000.042.360 | ---- | M] (ESET) [On_Demand | Paused] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV:64 Bit:- [01/12/2011 16:41:42 | 000.810.144 | ---- | M] (ESET) [Automatic | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:64 Bit:- [30.09.2010 02:49:20 | 000.203.264 | ---- | M] (AMD) [Automatisch | Running] -- C:\Windows\SysNative\atiersrxx.exe -- (AMD External Event Utility)
SRV:64 Bit:- [05/08/2010 22:51:08 | 000.291.896 | ---- | M] (Hewlett-Packard Company) [Auto | Running] - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe - (HPClientSvc)
SRV:64 Bit:- [21.07.2010 17:33:00 | 000.103.992 | ---- | M] (Hewlett-Packard Company) [Auto | Wird ausgeführt] – C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe – (HP Wireless Assistant Service)
SRV:64 Bit:- [06/24/2010 18:24:12 | 000.315.392 | ---- | M] (Realtek Semiconductor Corp.) [Auto | Running] -- C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe -- (RtVOsdService)
SRV:64 Bit:- [2009-11-17 22:14:26 | 000.098.208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64 Bit:- [13.07.2009 21:41:27 | 001.011.712 | ---- | M] (Microsoft Corporation) [On_Demand | Beendet] -- C:\Arquivos de Programas\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [06.07.2011 19:52:38 | 000.366.640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [06/01/2011 08:44:54 | 002.337.144 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6)
SRV - [28.09.2010 21:08:58 | 000.026.680 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Em execução] -- C:\Arquivos de programas (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV - [2010/09/17 19:45:46 | 000.092.216 | ---- | M] (Hewlett-Packard Company) [Auto | On Run] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/09/11 04:02:22 | 000.399.344 | ---- | M] (Roxio) [Automatic | Running] -- C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe -- (RoxioNow Service)
SRV - [01.06.2010 18:31:28 | 002.804.568 | ---- | M] (Symantec Corporation) [Auto | Läuft] -- C:\Programme (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU)
SRV - [2010/03/18 13:16:28 | 000.130.384 | ---- | M] (Microsoft Corporation) [Auto | Beendet] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 17:23:09 | 000.066.384 | ---- | M] (Microsoft Corporation) [Desativado | Beendet] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64 Bit:- [22.07.2011 12:26:56 | 000.014.928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64 Bit:- [07/12/2011 17:55:18 | 000.012.368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64 Bit:- [06.07.2011 19:52:42 | 000.025.912 | ---- | M] (Malwarebytes Corporation) [File System | On request | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64 Bit:- [18.05.2011 18:22:55 | 000.254.528 | ---- | M] (DT Soft Ltd) [Kern | System | Läuft] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64 Bit:- [30.03.2011 14:46:44 | 000.114.704 | ---- | M] (Advanced Microdevices) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64 Bit:- [03/21/2011 13:22:06 | 000.452.200 | ---- | M] (Realtek) [core | On request | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64 Bit:- [03/11/2011 02:41:12 | 000.107.904 | ---- | M] (Advanced Microdevices) [Kernel | On request | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64 Bit:- [03/11/2011 02:41:12 | 000.027.008 | ---- | M] (Advanced Microdevices) [Kernel | Home | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64 Bit:- [21.12.2010 15:04:06 | 000.170.640 | ---- | M] (ESET) [file system | Automatic | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64 Bit:- [21.12.2010 15:04:06 | 000.141.264 | ---- | M] (ESET) [core | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64 Bit:- [21.12.2010 13:47:38 | 000.170.640 | ---- | M] (ESET) [core | Automatic | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:64 Bit:- [21.12.2010 13:47:38 | 000.050.624 | ---- | M] (ESET) [core | Automatic | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:64 Bit:- [21.12.2010 13:47:38 | 000.034.144 | ---- | M] (ESET) [core | On request | Running] -- C:\Windows\SysNative\drivers\epfwndis.sys -- (Epfwndis)
DRV:64 Bit:- [2010/11/20 09:33:35 | 000.078.720 | ---- | M] (Hewlett-Packard Company) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64 Bit:- [2010/11/20 07:07:05 | 000.059.392 | ---- | M] (Microsoft Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64 Bit:- [2010-11-20 05:37:42 | 000.109.056 | ---- | M] (Microsoft Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64 Bit:- [30.09.2010 04:51:14 | 007.767.552 | ---- | M] (ATI Technologies Inc.) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64 Bit:- [30.09.2010 02:13:38 | 000.279.040 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64 Bit:- [09/29/2010 02:55:54 | 000.031.088 | ---- | M] (CyberLink Corporation) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\clwvd.sys -- (clwvd)
DRV:64 Bit:- [09/13/2010 14:00:08 | 001.390.640 | ---- | M] (Synaptics Incorporated) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64 Bit:- [09/02/2010 00:52:50 | 003.065.408 | ---- | M] (Broadcom Corporation) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64 Bit:- [17.06.2010 09:15:36 | 000.016.440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Start | Läuft] -- C:\Windows\SysNative\drivers\AtiPcie64.sys -- (AtiPcie) AMD PCI Express (3GIO)
DRV:64 Bit:- [05/14/2010 22:04:16 | 000.073.856 | ---- | M] (Advanced Microdevices) [Kernel | Home | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64 Bit:- [05/14/2010 22:04:16 | 000.028.800 | ---- | M] (Advanced Microdevices) [Kernel | Home | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64 Bit:- [05/07/2010 15:19:58 | 000.245.792 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64 Bit:- [05/06/2010 09:21:46 | 000.125.456 | ---- | M] (ATI Technologies, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64 Bit:- [2010/04/29 09:43:20 | 000.038.528 | ---- | M] (Advanced Microdevices) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64 Bit:- [02/18/2010 09:18:24 | 000.046.136 | ---- | M] (Advanced Microdevices) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64 Bit:- [07/13/2009 21:52:20 | 000.194.128 | ---- | M] (AMD Technologies Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64 Bit:- [07/13/2009 21:48:04 | 000.065.600 | ---- | M] (LSI Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64 Bit:- [07/13/2009 21:45:55 | 000.024.656 | ---- | M] (Promessa Tecnologia) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64 Bit:- [10.06.2009 17:01:11 | 001.485.312 | ---- | M] (Conexant Systems, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64 Bit:- [10.06.2009 17:01:11 | 000.740.864 | ---- | M] (Conexant Systems, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64 Bit:- [10.06.2009 17:01:11 | 000.292.864 | ---- | M] (Conexant Systems, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64 Bit:- [06/10/2009 16:38:56 | 000.000.308 | ---- | M] () [filesystem | On request | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64 Bit:- [06/10/2009 16:37:05 | 006.108.416 | ---- | M] (Intel Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64 Bit:- [06/10/2009 16:35:33 | 000.389.120 | ---- | M] (Marvell) [Nucleo | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64 Bit:- [06/10/2009 16:35:28 | 005.434.368 | ---- | M] (Intel Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel®
DRV:64 Bit:- [06/10/2009 16:34:33 | 003.286.016 | ---- | M] (Broadcom Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64 Bit:- [06/10/2009 16:34:28 | 000.468.480 | ---- | M] (Broadcom Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64 Bit:- [06/10/2009 16:34:23 | 000.270.848 | ---- | M] (Broadcom Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64 Bit:- [06/10/2009 16:31:59 | 000.031.232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64 Bit:- [05/18/2009 13:17:08 | 000.034.152 | ---- | M] (GEAR Software Inc.) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64 Bit:- [03/18/2009 17:35:42 | 000.033.856 | -H-- | M] (LogMeIn, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)

========== Default Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64 Bit:- HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =http://g.msn.com/HPNOT/1
IE:64 Bit:- HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Página inicial =http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Página inicial =http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant=http://start.facemoo...searchTerms}&f=4

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =http://g.msn.com/HPNOT/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Página inicial =http://google.com.do/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== Firefox ==========

FF - prefs.js..browser.startup.homepage: "google.com.do"

FF:64 Bit:- HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF – HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@photoproduct.rocketlife.com/RocketLife App Viewer;Version=0.8: File not found
FF – HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/08/07 19:35:41 | 000.000.000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [04.08.2011 15:07:51 | 000.000.000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Programme\ESET\ESET Smart Security\Mozilla Thunderbird [17.07.2011 13:17:57 | 000.000.000 | ---D | M]

[18.05.2011 14:23:24 | 000.000.000 | ---D | M] (Nenhum nome encontrado) – C:\Users\owner\AppData\Roaming\Mozilla\Extensions
[04.08.2011 13:47:07 | 000.000.000 | ---D | M] (Nenhum nome encontrado) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\k2weukm6.default\extensions
[18.05.2011 18:22:43 | 000.002.055 | ---- | M] () -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\k2weukm6.default\searchplugins\daemon-search.xml
[08/07/2011 19:35:41 | 000,000,000 | ---D | M] (No name found) - C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/05/22 14:40:53 | 000.000.000 | ---D | M] (Java-Konsole) – C:\Programme (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
[14.06.2011 19:41:07 | 000.000.000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) --
() (Nenhum nome encontrado) -- C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\K2WEUKM6.DEFAULT\EXTENSIONS\{20CC25E2-48C9-45E1-9A1F-1CCC1882B81B}.XPI
() (Nenhum nome encontrado) -- C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\K2WEUKM6.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (Nenhum nome encontrado) -- C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\K2WEUKM6.DEFAULT\EXTENSIONS\{EF4E370E-D9F0-4E00-B93E-A4F274CFDD5A}.XPI
[08.07.2011 03:16:28 | 000.142.296 | ---- | M] (Mozilla Foundation) – C:\Arquivos de Programas (x86)\mozilla firefox\components\browsercomps.dll
[04.05.2011 04:52:23 | 000.476.904 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[01.01.2010 04:00:00 | 000.002.252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[31.05.2011 19:12:06 | 000.002.048 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml

Arquivo O1 HOSTS: ([2009/06/10 17:00:26 | 000.000.824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64 Bit:- BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O3:64 Bit:- HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4:64 Bit:- HKLM..\Run: [egui] C:\Programme\ESET\ESET Smart Security\egui.exe (ESET)
O4:64 Bit:- HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (Neustart)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Programme\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O10:64 Bit:- NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - Gopher prefix: absent
O13 - Gopher prefix: absent
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}http://java.sun.com/...indows-i586.cab(Plugin Java 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}http://java.sun.com/...indows-i586.cab(Plugin Java 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}http://java.sun.com/...indows-i586.cab(Plugin Java 1.6.0_26)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D}http://content.syste...ri_4.4.21.0.cab(class SysInfo)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 196.3.81.5 200.88.127.22
O18:64 Bit:- Log\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Registry error: key error. file not found
O18:64 Bit:- Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Registration error: key error. file not found
O18:64 Bit:- Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} -Registration error: key error. file not found
O18:64 Bit:- Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Registration error: key error. file not found
O18:64 Bit:- Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Registry error: key error. file not found
O18:64 Bit:- Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Registry error: key error. file not found
O20:64 Bit:- HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64 Bit:- HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64 Bit:- HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64 Bit:- SSDL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or file not found.
O21 - SSDL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or file not found.
O32 - HKLM-CD-Rom: AutoRun - 1
O33 - MountPoints2\{53f0b8cc-8186-11e0-a1e3-984be19b0753}\Shell - "" = AutoRun
O33 - MountPoints2\{53f0b8cc-8186-11e0-a1e3-984be19b0753}\Shell\AutoRun\command - "" = G:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64 Bit:- HKLM\..comfile [open] -- "%1" %*
O35:64 Bit:- HKLM\..exefile [abrir] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [abrir] -- "%1" %*
O37:64 Bit:- HKLM\...com [@ = comfile] -- "%1" %*
O37:64 Bit:- HKLM\...exe [@ = exe-Datei] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exe file] -- "%1" %*

========== Files/Folders - created in 30 days ==========

[08/08/2011 15:09:35 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{56E13713-90E3-4B5B-B465-7C00A508FED9}
[08/08/2011 15:09:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{86A07FF7-BF32-4F76-93A1-90756BAED860}
[08/07/2011 21:54:06 | 000,000,000 | ---D | C] – C:\Users\Owner\AppData\Roaming\SUPERAntiSpyware.com
[07.08.2011 21:53:17 | 000.000.000 | ---D | C] -- C:\ProgramData\!SASCORE
[08/07/2011 21:53:16 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[07.08.2011 21:53:15 | 000.000.000 | ---D | C] – C:\ProgramData\SUPERAntiSpyware.com
[07.08.2011 21:53:15 | 000.000.000 | ---D | C] – C:\Programme\SUPERAntiSpyware
[07.08.2011 21:52:57 | 000.000.000 | ---D | C] -- C:\ProgramData\SUPERSetup
[07.08.2011 21:14:36​​| 000,000,000 | ---D | C] – C:\Users\Owner\AppData\Roaming\Malwarebytes
[07.08.2011 21:14:03 | 000.041.272 | ---- | C] (Malwarebytes Corporation) – C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[07.08.2011 21:14:03 | 000.000.000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Menu Iniciar\Programas\Malwarebytes' Anti-Malware
[07.08.2011 21:14:02 | 000,000,000 | ---D | C] – C:\ProgramData\Malwarebytes
[07.08.2011 21:13:59 | 000.025.912 | ---- | C] (Malwarebytes Corporation) – C:\Windows\SysNative\drivers\mbam.sys
[07.08.2011 21:13:59 | 000.000.000 | ---D | C] – C:\Arquivos de Programas (x86)\Malwarebytes' Anti-Malware
[07.08.2011 13:23:30 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{D88C0951-FF5D-4740-A216-60769E3358F5}
[08/07/2011 13:23:10 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{7C4929CD-B37E-4C44-B97A-95D7A692B341}
[08/06/2011 12:04:57 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{5B345569-C478-46D4-8BB0-E72824D21ACA}
[08/06/2011 12:04:44 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{CF2EDEEF-B2CD-4629-A1F6-A0E24C4609FF}
[08/05/2011 21:37:52 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{15D4F15B-72A5-440A-A820-F5E197FF4F14}
[08/05/2011 21:37:41 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C94B6E01-29B3-4A18-A5F8-7D2CB1554EBB}
[05/08/2011 09:37:16 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{83151196-AAF8-43E7-9E88-311238751F60}
[08/05/2011 09:36:39 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{224397EF-F103-4308-97BC-1502A2BDED68}
[05.08.2011 08:50:14 | 000.000.000 | ---D | C] -- C:\Windows\pt
[05.08.2011 08:47:32 | 000.000.000 | ---D | C] – C:\Programme\Windows Live
[05.08.2011 08:46:47 | 000.000.000 | -HSD | C] -- C:\Config.Msi
[08/05/2011 08:10:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C205B1FE-70F3-4D17-A160-A3FAA4276DFF}
[04.08.2011 21:34:02 | 000.000.000 | ---D | C] -- C:\Benutzer\Eigentümer\AppData\Local\{32DCBC33-9174-44B9-9F56-B34A33B11AFA}
[08/04/2011 21:33:25 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{04480357-417E-4059-8903-86B64AECE022}
[08/04/2011 15:09:31 | 000,000,000 | ---D | C] – C:\Users\Owner\AppData\Roaming\Apple Computers
[08/04/2011 15:09:31 | 000,000,000 | ---D | C] - C:\Users\Owner\AppData\Local\Apple Computer
[04.08.2011 15:09:28 | 000.000.000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\MenuIniciar\Programas\iTunes
[04.08.2011 15:09:02 | 000.126.312 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\GEARAspi64.dll
[04.08.2011 15:09:02 | 000.107.368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysWow64\GEARAspi.dll
[04.08.2011 15:09:02 | 000.034.152 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[04.08.2011 15:08:37 | 000.000.000 | ---D | C] – C:\Programme\iPod
[04.08.2011 15:08:36 | 000.000.000 | ---D | C] – C:\Programme\iTunes
[04.08.2011 15:08:36 | 000.000.000 | ---D | C] – C:\Programme (x86)\iTunes
[04.08.2011 15:08:36 | 000.000.000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[04.08.2011 15:07:46 | 000.000.000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\MenuIniciar\Programas\QuickTime
[04.08.2011 15:07:41 | 000.000.000 | ---D | C] – C:\Programme (x86)\QuickTime
[04.08.2011 15:07:41 | 000.000.000 | ---D | C] – C:\ProgramData\Apple-Computer
[08/04/2011 15:07:34 | 000,000,000 | ---D | C] – C:\Users\owner\AppData\Local\Apple
[04.08.2011 15:07:33 | 000.000.000 | ---D | C] – C:\Programme (x86)\Apple Software Update
[08/04/2011 15:07:23 | 000,000,000 | ---D | C] – C:\Program Files\Common Files\Apple
[04.08.2011 15:07:12 | 000.000.000 | ---D | C] -- C:\Programme\Hallo
[04.08.2011 15:07:12 | 000.000.000 | ---D | C] – C:\Programme (x86)\Hallo
[04.08.2011 15:07:04 | 000.000.000 | ---D | C] – C:\ProgramData\Apple
[08/04/2011 15:07:04 | 000,000,000 | ---D | C] – C:\Program Files (x86)\Common Files\Apple
[08/04/2011 09:33:01 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{DF7CA301-3998-48C4-B669-79DD4FEC3D35}
[08/03/2011 09:09:57 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{63E620A2-D41D-4479-A893-EFB2A52780F5}
[08/02/2011 16:36:48 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{5884AFFB-7C99-477D-A706-FFD3343D3E80}
[02.08.2011 14:52:13 | 000.000.000 | ---D | C] – C:\Programme (x86)\JDownloader
[08/01/2011 13:00:02 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{1B71FA4E-D42D-49D7-ACAB-A8E1FD794F2B}
[31.07.2011 20:25:25 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{484A95F6-0214-412D-BDCA-030520CDACB8}
[31.07.2011 08:25:01 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{6A460271-2CA3-4D47-89C9-3940FF23655D}
[30.07.2011 14:44:37 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{83EAD1BB-F96F-491D-9D0A-484B8E4B9129}
[2011/07/29 8:01:57 PM | 000,000,000 | ---D | C] -- C:\Users\Properties\AppData\Local\{44351DCC-CFCC-4BCA-8A5A-C45F98DC225B}
[2011/07/29 08:01:34 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{BECEE4A2-5FC3-4997-9DB3-9F20255B906D}
[07/28/2011 8:45:51 PM | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[28.07.2011 20:45:49 | 000.000.000 | ---D | C] – C:\Programme (x86)\AMD APP
[28.07.2011 20:45:40 | 000.000.000 | ---D | C] – C:\ProgramData\Microsoft\Windows\Menu Iniciar\Programas\AMD VISION Engine Control Center
[2011-07-28 16:24:36 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{A6E29F4C-7DE4-4390-A1C0-0C980BEFE03F}
[2011-07-28 14:58:14 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{AC726331-210B-44F7-B786-E0E523F50C09}
[2011/07/27 12:31:14 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{94FA4AB6-68FB-4270-83E2-20CA6D189C29}
[2011/07/26 12:10:19 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{0CF510A9-F3D4-4D4A-B0C6-B8B5AEFCE0D2}
[2011/07/25 12:41:18 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{63EAC8AA-A38D-4E55-9696-128A4A9B5146}
[2011/07/24 10:10:26 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{0C5E3998-AC9B-4563-9AF6-839B195E3F4E}
[2011-07-23 12:34:54 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C6C41EDF-72C8-44FE-9360-7E75301423B7}
[2011/07/22 12:52:17 AM | 000,000,000 | ---D | C] -- C:\Users\Properties\AppData\Local\{499EC1AB-DE74-4981-A1FF-28605B1FAFFE}
[2011-07-21 12:22:40 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{9FAB3528-58D3-40A0-B743-3EC6118CCDBC}
[2011/07/20 14:18:22 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C799B645-240F-44E9-BC82-139C694761F7}
[2011/07/20 13:43:28 | 000.000.000 | ---D | C] – C:\Programme (x86)\Oak Systems
[07/19/2011 12:34:42 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{DA7D0130-F18B-4C17-9A48-1DF29CDCFA39}
[07/18/2011 12:34:03 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{4C2747B4-43DB-420C-9B63-A572E5D5DD83}
[07/17/2011 20:36:29 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{12FCB963-CF57-4393-AF72-ACFE6FA5595B}
[2011/07/17 13:19:12 | 000,000,000 | ---D | C] – C:\Users\Owner\AppData\Roaming\ESET
[2011/07/17 13:19:12 | 000,000,000 | ---D | C] - C:\Users\owner\AppData\Local\ESET
[07/17/2011 13:17:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[07/17/2011 1:17:56 PM | 000,000,000 | ---D | C] – C:\ProgramData\ESET
[17.07.2011 13:17:56 | 000.000.000 | ---D | C] – C:\Programme\ESET
[07/17/2011 08:35:53 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{16D329D6-838A-4D95-B1F2-21F46E5B00B1}
[07/16/2011 12:57:38 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{F5536361-0EB3-46D8-AC8F-3A8F1ACCC6F8}
[15.07.2011 13:39:48 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{010698E6-9C39-490C-858E-A81745AF723F}
[2011/07/14 13:05:23 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{49C594DB-1B98-4646-8F3B-9692FAFD7AEA}
[2011/07/13 22:10:02 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{24D203F6-B04E-4828-BA42-37926287BC07}
[13.07.2011 10:23:25 | 000.421.888 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\KernelBase.dll
[13.07.2011 10:23:23 | 000.006.144 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[13.07.2011 10:23:23 | 000.005.120 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[13.07.2011 10:23:23 | 000.005.120 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.608 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.608 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.608 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[13.07.2011 10:23:22 | 000.006.144 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[13.07.2011 10:23:22 | 000.004.608 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[13.07.2011 10:23:22 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[13.07.2011 10:23:22 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[13.07.2011 10:23:22 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2011/07/13 10:23:21 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2011/07/13 10:23:21 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2011/07/13 10:23:21 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2011/07/13 10:23:09 | 002.565.632 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\esent.dll
[2011/07/13 10:23:09 | 001.699.328 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\esent.dll
[2011/07/13 10:23:09 | 000.189.824 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\drivers\storport.sys
[2011/07/13 10:23:09 | 000.107.904 | ---- | C] (Advanced Micro Devices) – C:\Windows\SysNative\drivers\amdsata.sys
[2011/07/13 10:23:09 | 000.096.768 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\fsutil.exe
[2011/07/13 10:23:09 | 000.074.240 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\fsutil.exe
[2011/07/13 10:23:09 | 000.027.008 | ---- | C] (Advanced Micro Devices) – C:\Windows\SysNative\drivers\amdxata.sys
[13.07.2011 10:22:52 | 001.162.752 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\kernel32.dll
[13.07.2011 10:22:52 | 000.362.496 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\wow64win.dll
[13.07.2011 10:22:52 | 000.338.944 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\conhost.exe
[13.07.2011 10:22:52 | 000.214.528 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\winsrv.dll
[13.07.2011 10:22:51 | 000.243.200 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\wow64.dll
[13.07.2011 10:22:51 | 000.025.600 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\setup16.exe
[13.07.2011 10:22:51 | 000.016.384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[13.07.2011 10:22:51 | 000.014.336 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\ntvdm64.dll
[13.07.2011 10:22:51 | 000.013.312 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\wow64cpu.dll
[13.07.2011 10:22:51 | 000.007.680 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\instnm.exe
[13.07.2011 10:22:51 | 000.005.120 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\wow32.dll
[13.07.2011 10:22:51 | 000.002.048 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\user.exe
[13.07.2011 10:22:48 | 000.325.120 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\drivers\usbport.sys
[13.07.2011 10:22:48 | 000.007.936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[07/13/2011 10:09:24 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{EDC37762-241E-46D8-8AA7-C9ECEE35A235}
[2011/07/12 19:00:34 | 000.124.688 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\mswinsck.ocx
[2011/07/12 12:48:36 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{5358E9F0-204E-4B35-9095-8FE3B12D2497}
[2011/07/12 11:34:00 | 000.212.840 | ---- | C] (Apple Inc.) – C:\Windows\SysNative\dnssdX.dll
[2011/07/12 11:34:00 | 000.096.104 | ---- | C] (Apple Inc.) – C:\Windows\SysNative\dns-sd.exe
[2011/07/12 11:34:00 | 000.085.864 | ---- | C] (Apple Inc.) – C:\Windows\SysNative\dnssd.dll
[2011/07/12 11:34:00 | 000.061.288 | ---- | C] (Apple Inc.) – C:\Windows\SysNative\jdns_sd.dll
[2011/07/12 11:20:54 | 000.178.536 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\dnssdX.dll
[2011/07/12 11:20:54 | 000.083.816 | ---- | C] (Apple Inc.) – C:\Windows\SysWow64\dns-sd.exe
[2011/07/12 11:20:54 | 000.073.064 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\dnssd.dll
[2011/07/12 11:20:54 | 000.050.536 | ---- | C] (Apple Inc.) – C:\Windows\SysWow64\jdns_sd.dll
[2011/07/11 11:51:03 PM | 000,000,000 | ---D | C] -- C:\Users\Properties\AppData\Local\{EDDE4898-EC60-4EF3-8CAA-1028A9649AC5}
[2011/07/10 20:04:18 | 000,000,000 | ---D | C] -- C:\Users\Properties\AppData\Local\{47634FFD-E87C-4DA6-8FEE-875BAE8A1ECE}
[10.07.2011 07:50:48 | 000.000.000 | ---D | C] -- C:\Benutzer\Eigentümer\AppData\Local\{EF0CAC2F-DE18-4D05-B190-CA234C7E1EE2}
[09.07.2011 17:21:27 | 000.000.000 | ---D | C] – C:\Windows\Minidump
[2011/06/10 20:10:02 | 000.082.816 | ---- | C] (VSO-Software) – C:\Users\owner\AppData\Roaming\pcouffin.sys

========== Files - Changed in 30 days ==========

[08.08.2011 15:13:43 | 000.023.248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[08.08.2011 15:13:43 | 000.023.248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[08.08.2011 15:06:00 | 000.067.584 | --S- | M] () -- C:\Windows\bootstat.dat
[08.08.2011 15:05:46 | 3015.888.896 | -HS- | M] () -- C:\hiberfil.sys
[08/07/2011 21:53:16 | 000.001.808 | ---- | M] () -- C:\Users\ownership\Desktop\SUPERAntiSpyware Free Edition.lnk
[08/07/2011 21:14:03 | 000.001.073 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[08/07/2011 19:35:42 | 000.001.102 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[07.08.2011 14:14:09 | 000.001.117 | ---- | M] () -- C:\Users\owner\Desktop\Youtube Downloader HD.lnk
[08.06.2011 14:15:53​ | 000726316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[06.08.2011 14:15:53 ​​​​| 000.624.178 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[06.08.2011 14:15:53 ​​​​| 000.106.522 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[04.08.2011 14:43:17 | 000.001.189 | ---- | M] () -- C:\Users\owner\AppData\Roaming\vso_ts_preview.xml
[2011-07-26 16:46:38 | 000.000.822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011-07-21 17:57:42 | 000.001.183 | ---- | M] () -- C:\Users\Public\Desktop\Brain Trainer 3.lnk
[17.07.2011 17:17:21 | 000.000.342 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForOWNER-HP$.job
[14.07.2011 17:24:08 | 000.001.169 | -H-- | M] () -- C:\Users\owner\Desktop\CoreTemp.ini
[13.07.2011 10:29:46 | 000.424.440 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/07/12 17:11:10 | 000.007.594 | ---- | M] () -- C:\Users\owner\AppData\Local\Resmon.ResmonCfg
[2011/07/12 11:34:00 | 000.212.840 | ---- | M] (Apple Inc.) – C:\Windows\SysNative\dnssdX.dll
[2011/07/12 11:34:00 | 000.096.104 | ---- | M] (Apple Inc.) – C:\Windows\SysNative\dns-sd.exe
[2011/07/12 11:34:00 | 000.085.864 | ---- | M] (Apple Inc.) – C:\Windows\SysNative\dnssd.dll
[2011/07/12 11:34:00 | 000.061.288 | ---- | M] (Apple Inc.) – C:\Windows\SysNative\jdns_sd.dll
[2011/07/12 11:20:54 | 000.178.536 | ---- | M] (Apple Inc.) -- C:\Windows\SysWow64\dnssdX.dll
[2011/07/12 11:20:54 | 000.083.816 | ---- | M] (Apple Inc.) – C:\Windows\SysWow64\dns-sd.exe
[2011/07/12 11:20:54 | 000.073.064 | ---- | M] (Apple Inc.) -- C:\Windows\SysWow64\dnssd.dll
[2011/07/12 11:20:54 | 000.050.536 | ---- | M] (Apple Inc.) -- C:\Windows\SysWow64\jdns_sd.dll

========== Files Created - No Company Name ==========

[08/07/2011 21:53:16 | 000.001.808 | ---- | C] () -- C:\Users\ownership\Desktop\SUPERAntiSpyware Free Edition.lnk
[07.08.2011 21:14:03 | 000.001.073 | ---- | C] () -- C:\Users\Público\Desktop\Malwarebytes' Anti-Malware.lnk
[08/07/2011 19:35:42 | 000.001.102 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[08/07/2011 14:14:09 | 000.001.117 | ---- | C] () -- C:\Users\Owner\Desktop\Youtube Downloader HD.lnk
[04.08.2011 15:07:33 | 000.002.519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\MenuIniciar\Programas\Apple Software Update.lnk
[08/02/2011 14:52:47 | 000.001.930 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[02.08.2011 14:52:47 | 000.001.909 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\MenuIniciar\Programas\JDownloader Uninstaller.lnk
[02.08.2011 14:52:47 | 000.001.888 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\MenuIniciar\Programas\JDownloader Update.lnk
[2011/06/27 16:23:20 | 000.053.760 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
[2011/06/19 11:25:12 | 000,000,801 | ---- | C] () -- C:\Windows\ARPR.INI
[2011/06/10 20:10:02 | 000.099.384 | ---- | C] () -- C:\Users\owner\AppData\Roaming\inst.exe
[2011/06/10 20:10:02 | 000.007.859 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\pcouffin.cat
[2011/06/10 20:10:02 | 000.001.167 | ---- | C] () -- C:\Users\owner\AppData\Roaming\pcouffin.inf
[07.06.2011 12:59:08 | 000.001.189 | ---- | C] () -- C:\Users\owner\AppData\Roaming\vso_ts_preview.xml
[07.06.2011 12:48:01 | 000.175.616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[07.06.2011 12:48:00 | 000.631.808 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[07.06.2011 12:48:00 | 000.243.200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[07.06.2011 12:48:00 | 000.080.896 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[06.07.2011 12:48:00 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[18.05.2011 18:30:10 | 000.007.594 | ---- | C] () -- C:\Users\owner\AppData\Local\Resmon.ResmonCfg
[05.04.2011 04:44:40 | 000.000.000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[04.05.2011 04:37:15 | 000,000,268 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog2.ini
[04.05.2011 04:37:15 | 000,000,209 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog.ini
[20.10.2010 02:44:40 | 000.000.188 | ---- | C] () -- C:\Windows\SysWow64\HPWA.ini
[21.09.2010 13:30:44 | 000.007.736 | ---- | C] () -- C:\Windows\hpDSTRES.DLL
[15.06.2010 22:28:54 | 000.002.857 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[14.07.2009 01:38:36 | 000.067.584 | --S- | C] () -- C:\Windows\bootstat.dat
[13.07.2009 22:35:51 | 000.000.741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[13.07.2009 22:34:42 | 000.215.943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[13.07.2009 20:10:29 | 000.043.131 | ---- | C] () -- C:\Windows\mib.bin
[13.07.2009 19:42:10 | 000.064.000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[13.07.2009 17:59:36 | 001.498.564 | ---- | C] () -- C:\Windows\SysWow64\igkrng400.bin
[13.07.2009 17:03:59 | 000.364.544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[10.06.2009 17:26:10 | 000.673.088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[17.12.2007 16:32:44 | 000.053.248 | ---- | C] () -- C:\Windows\SysWow64\ArmAccess.dll

< end of report >

Extra:

OTL Extras log file created on: 08/08/2011 15:12:29 - Run 1
OTL von OldTimer - Version 3.2.26.1 Folder = C:\Users\owner\Downloads
64bit-Home Premium Edition Service Pack 1 (Version = 6.1.7601) – Typ = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Location: 00000409 | Country: United States | Language: DE | Date format: M/d/yyyy

Total physical storage 3.75 GB | 1.97 GB available physical memory | 52.59% free memory
7.49 GB paging file | 5.15 GB available in paging file | 68.77% free paging file
Paging file location: ?:\pagefile.sys [binaries]

%Systemlaufwerk% = C: | %SystemRoot% = C:\Windows | %Programme% = C:\Programme (x86)
drive C: | 279.16 GB total storage space | 189.99 GB of free space | 68.06% free disk space | Partition type: NTFS
Drive D: | 18.63 GB total storage space | 2.70GB of free disk space | 14.50% free disk space | Partition type: NTFS

Computer name: OWNER-HP | Username: owner | Logged in as administrator.
Boot Mode: Normal | Scan mode: Current user | Include 64-bit checks
Company Name Whitelist: Disabled | Ignore Microsoft Files: Disabled | No company name whitelisting: Enabled | File age = 30 days

========== Additional Registration (SafeList) =================

========== File associations =================

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] – C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] – C:\Programme (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawn =================

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<chave>\shell\[comando]\comando]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [abrir] - Registry error: key error.
inffile [Instalar] – %SystemRoot%\System32\InfDefaultInstall.exe „%1“ (Microsoft Corporation)
InternetShortcut [abrir] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [opened] -- "%1" %* File not found
regfile [merge] - Registry error: key error.
scrfile [config] -- "%1" file not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l file not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] - Registry error: key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Verzeichnis [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
[Find] directory – %SystemRoot%\Explorer.exe (Microsoft Corporation)
Pasta [aberta] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[Browse] Folder - Registry Error: Value Error.
[Find] Drive - %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<chave>\shell\[comando]\comando]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exe file [open] -- "%1" %*
helpfile [abrir] - Registry error: key error.
inffile [Instalar] – %SystemRoot%\System32\InfDefaultInstall.exe „%1“ (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] - Registry error: key error.
scrfile [config] -- "%1"
scrfile [Instalar] -- rundll32.exe desk.cpl, InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] - Registry error: key error.
Desconhecido [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Verzeichnis [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
[Find] directory – %SystemRoot%\Explorer.exe (Microsoft Corporation)
Pasta [aberta] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[Browse] Folder - Registry Error: Value Error.
[Find] Drive - %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings =================

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall settings =================

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"Disable notifications" = 0
"HabilitarFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"Disable notifications" = 0
"HabilitarFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"Disable notifications" = 0
"HabilitarFirewall" = 0

========== List of Authorized Apps =================

========== HKEY_LOCAL_MACHINE uninstall list ==========

64-Bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Desinstalar]
"{091A0130-A82F-4A6D-9C61-3BBBB3289030}" = RtVOsd
„{13DCC2C7-454D-42F0-A892-E0E9A5DE4E67}“ = HP Wireless Assistant
"{180C8888-50F1-426B-A9DC-AB83A1989C65}" = Language selection for Windows Live
"{1A0D7FAB-1A1D-4AFE-8E53-9A155B73BC08}" = ESET Smart Security
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Sign-in Assistant for Windows Live ID
„{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}“ = HP Client-Dienste
"{439760BC-7737-4386-9B1D-A90A3E8A22EA}" = Apple mobile device support
„{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}“ = Microsoft Visual C++ 2008 Redistribuível – x64 9.0.30729.4148
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK runtime
„{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}“ = Microsoft Visual C++ 2008 Redistribuível – x64 9.0.30729.6161
"{6966E87A-91BA-4D4B-B7DA-A4610FAA31E0}" = ATI Catalyst-Installationsmanager
„{8220EEFE-38CD-377E-8595-13398D740ACE}“ = Microsoft Visual C++ 2008 Redistribuível – x64 9.0.30729.17
„{8338783A-0968-3B85-AFC7-BAAE0A63DC50}“ = Microsoft Visual C++ 2008 Redistribuível – KB2467174 – x64 9.0.30729.5570
"{90120000-002A-0000-1000-0000000FF1CE}" = Components for Microsoft Office Office 64 bit 2007
„{90120000-002A-0C0A-1000-0000000FF1CE}“ = Microsoft Office 2007 64-Bit Shared MUI (Spanisch)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{AFCA7057-581F-9CE2-A1BD-65371995C64F}" = Combustive AMD
“{B613A9BB-2B34-4824-A4BE-2427653D59D6}” = iTunes
"{BCC08D47-60ED-FA7F-241B-34BC9947D9FF}" = ccc-utility64
"{CA0D2F09-F811-48D4-843E-C87696C6A9D9}" = Hallo
„{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}“ = HP Auto
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME-IFilter
„{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}“ = Microsoft Visual C++ 2010 x64 Redistribuível – 10.0.30319
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Running Client Microsoft .NET Framework 4
„Broadcom 802.11 WLAN-Adapter“ = Broadcom 802.11 WLAN-Adapter
"CCleaner" = CCleaner
"Defragmentierer" = Defragmentierer
"Microsoft .NET Framework 4 Customer Profile" = Microsoft .NET Framework 4 Customer Profile
"SynTPDeinstKey" = Synaptics-Zeigegerätetreiber
"WinRAR Archiver" = WinRAR 4.01 (64 Bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Deinstallar]
„{01FB4998-33C4-4431-85ED-079E3EEFE75D}“ = CyberLink YouCam
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP customer experience improvements
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Install Windows Live
"{0EDEB615-1A60-425E-8306-0E10519C7B55}" = RoxioNow player
„{19A492A0-888F-44A0-9B21-D91700763F62}“ = Catalyst Control Center – Branding
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
„{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}“ = Microsoft Visual C++ 2008 Redistribuível – x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk-E-Mail-Filteraktualisierung
"{1F77C418-2C90-459C-BD33-B56A4182B9FA}" = CYRI System Requirements Lab
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD-Suite
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE settings
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core-Komponenten 10
"{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
"{264FE20A-757B-492a-B0C3-4009E2997D8A}" = PictureMover
"{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java 6 Update 26
“{274AE2D3-08C1-4F5C-9A56-C675345D6DE2}” = Documentation HP
„{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}“ = Windows Live Messenger
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Fotogalerie von Windows Live
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Fotogalerie von Windows Live
"{3877C901-7B90-4727-A639-B6ED2DD59D43}" = ESU for Microsoft Windows 7
„{3B834B54-EC4B-48E2-BFC6-03FF5DA06F62}“ = Adobe Shockwave Player 11.5
"{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}" = Norton Online-Sicherung
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{44B2A0AB-412E-4F8C-B058-D1E8AECDFF5}" = Recovery Manager
"{491ADA37-04EE-2ECE-9F86-DDC0106047AC}" = Times Reader
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
“{53469506-A37E-4314-A9D9-38724EC23A75}” = HP konfigurieren
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = language pack for the Windows Live UX platform
"{57ABE5FC-9E26-49E0-00A3-CF45D750B1AB}" = MVP Beisebol 2005
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Component HPAsset for HP Active Support Library
„{682B3E4F-696A-42DE-A41C-4C07EA1678B4}“ = Windows Live SOXE
"{6B114F59-6732-4EA5-A33E-ACC6DEC49B61}" = Software creation by HP
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistribuível
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistribuível
„{770657D0-A123-3C07-8E44-1C83EC895118}“ = Microsoft Visual C++ 2005 ATL-Update kb973923 – x86 8.0.50727.4053
„{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}“ = Apple-Softwareaktualisierung
"{7B6F2F56-CDF4-4ACB-95A2-DBB21E529CE9}" = Brain Trainer 3
"{801EFC7D-AA66-F889-030D-C96E99F884A4}" = InstallProxy for Catalyst Control Center
„{80E158EA-7181-40FE-A701-301CE6BE64AB}“ = CyberLink MediaShow
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistribuível
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Plattform Windows Live PIMT
"{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II
„{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}“ = Microsoft Visual C++ 2008 Redistribuível – KB2467174 – x86 9.0.30729.5570
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Driver to control Realtek Ethernet for Windows 7
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
„{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}“ = Microsoft Silverlight
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
„{90120000-0015-0C0A-0000-0000000FF1CE}“ = Microsoft Office Access MUI (Spanisch) 2007
"{90120000-0015-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0C0A-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Spanisch) 2007
"{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
„{90120000-0018-0C0A-0000-0000000FF1CE}“ = Microsoft Office PowerPoint MUI (Spanisch) 2007
"{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
„{90120000-0019-0C0A-0000-0000000FF1CE}“ = Microsoft Office Publisher MUI (Spanisch) 2007
"{90120000-0019-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0C0A-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Spanisch) 2007
"{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
„{90120000-001B-0C0A-0000-0000000FF1CE}“ = Microsoft Office Word MUI (Spanisch) 2007
"{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0403-0000-0000000FF1CE}" = Proof of Microsoft Office (Catalan) 2007
"{90120000-001F-0403-0000-0000000FF1CE}_ENTERPRISE_{4B47C31E-46B0-462B-BEE4-DC383B6A1F2A}" = Microsoft Office Korrekturhilfen 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Proof of Microsoft Office (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Korrekturhilfen 2007 Service Pack 2 (SP2)
„{90120000-001F-040C-0000-0000000FF1CE}“ = Microsoft Office Proof (franz.) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Korrekturhilfen 2007 Service Pack 2 (SP2)
"{90120000-001F-0416-0000-0000000FF1CE}" = Microsoft Office Proof (Português (Brasilien)) 2007
"{90120000-001F-0416-0000-0000000FF1CE}_ENTERPRISE_{75EBE365-7FC5-4720-A7D3-804BF550D1BC}" = Microsoft Office Korrekturhilfen 2007 Service Pack 2 (SP2)
„{90120000-001F-042D-0000-0000000FF1CE}“ = Microsoft Office Proof (basco) 2007
"{90120000-001F-0456-0000-0000000FF1CE}" = Testing Microsoft Office (Galian) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (spanisch) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Korrekturhilfen 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0C0A-1000-0000000FF1CE}_ENTERPRISE_{6113C11D-BACA-4D8E-8002-03C8D06FD5E6}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0C0A-0000-0000000FF1CE}" = Microsoft Office Proofing (Spanisch) 2007
„{90120000-0030-0000-0000-0000000FF1CE}“ = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for 2007 Microsoft Office System (972581)
"{90120000-0044-0C0A-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Spanisch) 2007
"{90120000-0044-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
„{90120000-006E-0C0A-0000-0000000FF1CE}“ = Microsoft Office (Spanisch) 2007 Shared MUI
"{90120000-006E-0C0A-0000-0000000FF1CE}_ENTERPRISE_{6113C11D-BACA-4D8E-8002-03C8D06FD5E6}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0C0A-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Spanisch) 2007
"{90120000-00A1-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0C0A-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Spanisch) 2007
"{90120000-00BA-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
„{92EA4134-10D1-418A-91E1-5A0453131A38}“ = Windows Live Movie Maker
"{936783CC-73D3-F125-71A4-BC0697B48167}" = CCC Help English
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
„{95140000-0070-0000-0000-0000000FF1CE}“ = Microsoft Office 2010
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 card reader
"{98890E89-0353-D7BB-594D-26A17055A42B}" = Catalyst Control Center general chart views
„{9A25302D-30C0-39D9-BD6F-21E6EC160475}“ = Microsoft Visual C++ 2008 Redistribuível – x86 9.0.30729.17
„{9BE518E6-ECC6-35A9-88E4-87755C07200F}“ = Microsoft Visual C++ 2008 Redistribuível – x86 9.0.30729.6161
„{9D56775A-93F3-44A3-8092-840E3826DE30}“ = Windows Live Mail
"{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}" = Need for Speed ​​​​O mais procurado
„{A726AE06-AAA3-43D1-87E3-70F510314F04}“ = Windows Live Writer
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
„{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}“ = Windows Live Writer
„{AAF454FC-82CA-4F29-AB31-6A109485E76E}“ = Windows Live Writer
„{AC76BA86-7AD7-FFFF-7B44-A91000000001}“ = Adobe Reader 9.4.5 MUI
"{AE856388-AFAD-4753-81DF-D96B19D0A17C}" = HP Configuration Manager
„{AF306BD8-F9D1-4627-89B9-246E59074A05}“ = HP Power Manager
„{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}“ = Adobe AIR
"{B1A4A13D-4665-4ED3-9DFE-F845725FBBD8}" = HP Support Assistant
"{B3575D00-27EF-49C2-B9E0-14B3D954E992}" = Apple Application Support
„{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}“ = Logotipo Digital Energy Star
“{C59C179C-668D-49A9-B6EA-0121CCFC1243}” = LabelPrint
„{C66824E4-CBB3-4851-BB3F-E8CFD6350923}“ = Windows Live Mail
„{CB099890-1D5F-11D5-9EA9-0050BAE317E1}“ = PowerDirector
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady-PC-Laufzeit x86
„{CCF9FABA-FF1F-AA77-60F5-8A6FD53E78E3}“ = AMD VISION Engine Control Center
„{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}“ = Plattform Windows Live UX
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D36DD326-7280-11D8-97C8-000129760CBE}" = FotoAgora!
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Comum
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communication Platform
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.1.19.365
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Recursions from Windows Live Writer
“{E09C4DB7-630C-4F06-A631-8EA7239923AF}” = D3DX10
“{E3E71D07-CD27-46CB-8448-16D4FB29AA13}” = Microsoft WSE 3.0-Laufzeit
„{E5B21F11-6933-4E0B-A25C-7963E3C07D11}“ = Windows Live Messenger
"{EF682D1C-591D-48B5-9803-628DA622C281}" = HP Quick Start
„{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}“ = Microsoft SQL Server 2005 Compact Edition [DEU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio-Treiber
„{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}“ = Windows Live Essentials
"{FE83F463-7E61-4B18-9FA0-B94B90A0B6B9}" = Nero Burning ROM 10
"1489-3350-5074-6281" = JDownloader 0.9
„82A44D22-9452-49FB-00FB-CEC7DCAF7E23“ = EA SPORTS online 2005
„Adobe AIR“ = Adobe AIR
„Adobe Flash Player ActiveX“ = Adobe Flash Player 10 ActiveX
"Plug-in for Adobe Flash Player" = Plug-in for Adobe Flash Player 10
"Ares" = Ares 2.1.7
"com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1" = Times Reader
„DAEMON Tools Lite“ = DAEMON Tools Lite
"DFX for Windows Media Player" = DFX for Windows Media Player
"Dziobas Rar Player_is1" = Dziobas Rar Player 0.009.52
„ENTERPRISE“ = Microsoft Office Enterprise 2007
"Fraps" = Fraps
„HP Photo Creations“ = HP Photo Creations
„InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}“ = CyberLink YouCam
„InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}“ = CyberLink DVD Suite
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
„InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}“ = CyberLink MediaShow
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.1.0 (complete)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware Version 1.51.1.1800
„Mozilla Firefox 5.0.1 (x86 en-US)“ = Mozilla Firefox 5.0.1 (x86 en-US)
"Shockwave" = Schockwelle
„TeamViewer 6“ = TeamViewer 6
„WinLiveSuite“ = Windows Live Essentials
„Youtube-Downloader HD_is1“ = Youtube-Downloader HD v. 2.6
"YTdetect" = Yahoo! recognition
"ZumoDrive" = HP CloudDrive

========== Last 10 event log errors =================

[App Events]
Error - 07/12/2011 16:07:34 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Exception Code: 0xc0000005 Error Compensation: 0x00aa0537 Error
Process ID: 0x1558 Application start time failed: 0x01cc40ccfb61a9a2 Application error
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Konfigurationsdatei: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince
de Persia.exe Berichts-ID: 948d1332-acc2-11e0-99e3-984be19b0753

Error - 07/13/2011 10:35:15 | computer name = owner-hp | Source = Microsoft-Windows-RestartManager | ID=10007
Description = The application or service "Nero Update" could not be restarted.

Error - 07/13/2011 17:44:38 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Exception Code: 0xc0000005 Error Compensation: 0x00aa0537 Error
Process ID: 0x13ec Faulting application start time: 0x01cc41a2edccaf3a Faulting application
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Konfigurationsdatei: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince
Persia.exe Berichts-ID: 4e54ccb1-ad99-11e0-b677-984be19b0753

Error - 07/13/2011 20:40:06 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Exception Code: 0xc0000005 Error Compensation: 0x00aa0537 Error
Process ID: 0x7f8 Bad application start time: 0x01cc41b917288afb Bad application
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Konfigurationsdatei: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince
Persia.exe Berichts-ID: d170ced4-adb1-11e0-b677-984be19b0753

Error - 07/14/2011 13:55:52 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Exception Code: 0xc0000005 Error Compensation: 0x00aa0537 Error
Process ID: 0x14dc Bad application start time: 0x01cc424c038789ad Bad application
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Konfigurationsdatei: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince
de Persia.exe Report ID: 8366fd06-ae42-11e0-9c1a-984be19b0753

Error - 07/14/2011 20:07:24 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: ntdll.dll, version: 6.1.7601.17514,
Timestamp: 0x4ce7ba58 Exception Code: 0xc0000005 Error Compensation: 0x00038da9 Error
Process ID: 0xad0 Failing application start time: 0x01cc427f7752d6e6 Failing application
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Module Path: C:\Windows\SysWOW64\ntdll.dll Report ID: 6a2f80fb-ae76-11e0-9c1a-984be19b0753

Error - 07/15/2011 14:23:29 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: ntdll.dll, version: 6.1.7601.17514,
Timestamp: 0x4ce7ba58 Exception Code: 0xc0000005 Error Compensation: 0x00038da9 Error
Process ID: 0x151c Bad application start time: 0x01cc431ab59ff00b Bad application
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Module Path: C:\Windows\SysWOW64\ntdll.dll Report ID: 897efbec-af0f-11e0-bc0a-984be19b0753

Error - 07/16/2011 19:07:57 | computer name = owner-hp | origin = service1 | id=0
Description = The service cannot be started. The service process could not connect
the service controller

Error - 07/23/2011 18:29:44 | computer name = owner-hp | Source = Application Error | ID=1000
Description=Faulting application name: Ares.exe, version: 2.1.7.3041, timestamp:
0x2a425e19 Faulting module name: ntdll.dll, version: 6.1.7601.17514, timestamp:
0x4ce7ba58 Exception Code: 0xc0000374 Error Compensation: 0x000ce653 Bad Process ID:
0x1784 Faulting application start time: 0x01cc498433516e47 Faulting application path:
C:\Program Files (x86)\Ares\Ares.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
report
ID: 436a65a1-b57b-11e0-a28b-984be19b0753

Error - 07/26/2011 18:55:52 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: speed.exe, version: 0.0.0.0, timestamp:
0x438e4c8c Faulting module name: speed.exe, version: 0.0.0.0, timestamp: 0x438e4c8c
exception
Code: 0xc0000005 Error Compensation: 0x000549bf Error Process ID: 0x1470 Bad Application
Start Time: 0x01cc4be6a0cd1280 Bad Application Path: C:\Program Files (x86)\EA
GAMES\Need for Speed ​​Most Wanted\speed.exe Pfad des fehlerhaften Moduls: C:\Program Files
(x86)\EA GAMES\Need for Speed ​​​​Most Wanted\speed.exe ID do relation: 692d1535-b7da-11e0-8e62-984be19b0753

[Hewlett-Packard Events]
Error - 06/03/2011 19:05:47 | computer name = owner-hp | Source = Hewlett Packard | id=0
Beschreibung = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\061103070544.xml
File not created by asset agent

[Events Run HP Wireless Assistant]
Error - 06/05/2011 04:36:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:37:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:38:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:39:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:40:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:41:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:42:14 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:43:14 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:44:14 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:45:14 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

[system events]
Error - 08/08/2011 12:17:57 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:58 | computer name = owner-hp | Source = DCOM | ID=10005
Description =

Error - 08/08/2011 12:17:58 | computer name = owner-hp | Source = DCOM | ID=10005
Description =

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:19:28 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

< end of report >

Edited by SweetTech, Aug 9, 2011 - 9:20 am.