Clicking on the browsers opens a new window with a website ADV - Virus, Spyware and Malware Removal (2023)

Well since yesterday when I clicked something a new window opened with an ADV website, I ran a full scan with ESET 4.2, SuperAntiSpyware and Malwarebyte'Anti-Malware and everything was fine, then I tried again ran a full scan with malwarebyte and superantispyware in safe mode and i just found some cookies, i deleted them and i still have the same problem... i don't know what to do, i hope you guys can me help :/
The homepage is ok (Google.com.do)

SO: Win7 Home Premium SP1 64 Bit
Notebook hp amd phenom ii x2
Graphics card: AtiHD 4250

These logs are 5 minutes old:

OTL log file created on: 08/08/2011 15:12:29 - Run 1
OTL von OldTimer - Version 3.2.26.1 Folder = C:\Users\owner\Downloads
64bit-Home Premium Edition Service Pack 1 (Version = 6.1.7601) – Typ = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Location: 00000409 | Country: United States | Language: DE | Date format: M/d/yyyy

Total physical storage 3.75 GB | 1.97 GB available physical memory | 52.59% free memory
7.49 GB paging file | 5.15 GB available in paging file | 68.77% free paging file
Paging file location: ?:\pagefile.sys [binaries]

%Systemlaufwerk% = C: | %SystemRoot% = C:\Windows | %Programme% = C:\Programme (x86)
drive C: | 279.16 GB total storage space | 189.99 GB of free space | 68.06% free disk space | Partition type: NTFS
Drive D: | 18.63 GB total storage space | 2.70GB of free disk space | 14.50% free disk space | Partition type: NTFS

Computer name: OWNER-HP | Username: owner | Logged in as administrator.
Boot Mode: Normal | Scan mode: Current user | Include 64-bit checks
Company Name Whitelist: Disabled | Ignore Microsoft Files: Disabled | No company name whitelisting: Enabled | File age = 30 days

========== Processes (SafeList) ==========

RPC - [08.08.2011 15:11:51 | 000.579.584 | ---- | M] (OldTimer Tools) -- C:\Users\proprietário\Downloads\OTL.exe
RPC - [07.08.2011 03:16:28 | 000.924.632 | ---- | M] (Mozilla Corporation) – C:\Programme (x86)\Mozilla Firefox\firefox.exe
RPC - [06.07.2011 19:52:38 | 001.047.656 | ---- | M] (Malwarebytes Corporation) – C:\Arquivos de Programas (x86)\Malwarebytes' Anti-Malware\mbam.exe
RPC - [06.07.2011 19:52:38 | 000.449.584 | ---- | M] (Malwarebytes Corporation) – C:\Arquivos de programas (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
RPC - [06.07.2011 19:52:38 | 000.366.640 | ---- | M] (Malwarebytes Corporation) – C:\Arquivos de Programas (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
RPC - [01.06.2011 08:44:54 | 008.003.448 | ---- | M] (TeamViewer GmbH) -- C:\Programme (x86)\TeamViewer\Version6\TeamViewer.exe
RPC - [01.06.2011 08:44:54 | 002.337.144 | ---- | M] (TeamViewer GmbH) -- C:\Programme (x86)\TeamViewer\Version6\TeamViewer_Service.exe
RPC - [01.06.2011 08:16:32 | 000.108.408 | ---- | M] (TeamViewer GmbH) -- C:\Programme (x86)\TeamViewer\Version6\tv_w32.exe
RPC - [2011/01/12 16:41:42 | 000.810.144 | ---- | M] (ESET) – C:\Programme\ESET\ESET Smart Security\x86\ekrn.exe
RPC - [2010/09/29 02:55:32 | 000.136.488 | ---- | M] (CyberLink) – C:\Programme (x86)\CyberLink\YouCam\YCMMirage.exe
VR China - [2010/09/28 21:08:58 | 000.584.760 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Programme (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
VR China - [2010/09/28 21:08:58 | 000.026.680 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Programme (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
RPC - [17.09.2010 19:45:46 | 000.092.216 | ---- | M] (Hewlett-Packard Company) – C:\Programme (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
RPC - [2010/09/11 04:02:22 | 000.399.344 | ---- | M] (Roxio) – C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe

========== Module (SafeList) ==========

MOD - [08.08.2011 15:11:51 | 000.579.584 | ---- | M] (OldTimer Tools) -- C:\Users\proprietário\Downloads\OTL.exe
MOD - [01.06.2011 08:16:32 | 000.050.040 | ---- | M] (TeamViewer GmbH) -- C:\Arquivos de Programas (x86)\TeamViewer\Version6\tv_w32.dll
MOD - [2010/11/20 07:55:09 | 001.680.896 | ---- | M] (Microsoft Corporation) – C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
MOD - [13.07.2009 21:15:07 | 000.149.019 | ---- | M] (Microsoft Corporation) – C:\Windows\SysWOW64\crtdll.dll

========== Win32 Services (SafeList) ==========

SRV:64 Bit:- [07/18/2011 20:01:47 | 000.146.816 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64 Bit:- [07.07.2011 23:36:06 | 000.365.568 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Läuft] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64 Bit:- [01/12/2011 16:44:02 | 000.042.360 | ---- | M] (ESET) [On_Demand | Paused] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV:64 Bit:- [01/12/2011 16:41:42 | 000.810.144 | ---- | M] (ESET) [Automatic | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:64 Bit:- [30.09.2010 02:49:20 | 000.203.264 | ---- | M] (AMD) [Automatisch | Running] -- C:\Windows\SysNative\atiersrxx.exe -- (AMD External Event Utility)
SRV:64 Bit:- [05/08/2010 22:51:08 | 000.291.896 | ---- | M] (Hewlett-Packard Company) [Auto | Running] - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe - (HPClientSvc)
SRV:64 Bit:- [21.07.2010 17:33:00 | 000.103.992 | ---- | M] (Hewlett-Packard Company) [Auto | Wird ausgeführt] – C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe – (HP Wireless Assistant Service)
SRV:64 Bit:- [06/24/2010 18:24:12 | 000.315.392 | ---- | M] (Realtek Semiconductor Corp.) [Auto | Running] -- C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe -- (RtVOsdService)
SRV:64 Bit:- [2009-11-17 22:14:26 | 000.098.208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64 Bit:- [13.07.2009 21:41:27 | 001.011.712 | ---- | M] (Microsoft Corporation) [On_Demand | Beendet] -- C:\Arquivos de Programas\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [06.07.2011 19:52:38 | 000.366.640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [06/01/2011 08:44:54 | 002.337.144 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6)
SRV - [28.09.2010 21:08:58 | 000.026.680 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Em execução] -- C:\Arquivos de programas (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV - [2010/09/17 19:45:46 | 000.092.216 | ---- | M] (Hewlett-Packard Company) [Auto | On Run] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/09/11 04:02:22 | 000.399.344 | ---- | M] (Roxio) [Automatic | Running] -- C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe -- (RoxioNow Service)
SRV - [01.06.2010 18:31:28 | 002.804.568 | ---- | M] (Symantec Corporation) [Auto | Läuft] -- C:\Programme (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU)
SRV - [2010/03/18 13:16:28 | 000.130.384 | ---- | M] (Microsoft Corporation) [Auto | Beendet] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 17:23:09 | 000.066.384 | ---- | M] (Microsoft Corporation) [Desativado | Beendet] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64 Bit:- [22.07.2011 12:26:56 | 000.014.928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64 Bit:- [07/12/2011 17:55:18 | 000.012.368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64 Bit:- [06.07.2011 19:52:42 | 000.025.912 | ---- | M] (Malwarebytes Corporation) [File System | On request | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64 Bit:- [18.05.2011 18:22:55 | 000.254.528 | ---- | M] (DT Soft Ltd) [Kern | System | Läuft] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64 Bit:- [30.03.2011 14:46:44 | 000.114.704 | ---- | M] (Advanced Microdevices) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64 Bit:- [03/21/2011 13:22:06 | 000.452.200 | ---- | M] (Realtek) [core | On request | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64 Bit:- [03/11/2011 02:41:12 | 000.107.904 | ---- | M] (Advanced Microdevices) [Kernel | On request | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64 Bit:- [03/11/2011 02:41:12 | 000.027.008 | ---- | M] (Advanced Microdevices) [Kernel | Home | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64 Bit:- [21.12.2010 15:04:06 | 000.170.640 | ---- | M] (ESET) [file system | Automatic | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64 Bit:- [21.12.2010 15:04:06 | 000.141.264 | ---- | M] (ESET) [core | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64 Bit:- [21.12.2010 13:47:38 | 000.170.640 | ---- | M] (ESET) [core | Automatic | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:64 Bit:- [21.12.2010 13:47:38 | 000.050.624 | ---- | M] (ESET) [core | Automatic | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:64 Bit:- [21.12.2010 13:47:38 | 000.034.144 | ---- | M] (ESET) [core | On request | Running] -- C:\Windows\SysNative\drivers\epfwndis.sys -- (Epfwndis)
DRV:64 Bit:- [2010/11/20 09:33:35 | 000.078.720 | ---- | M] (Hewlett-Packard Company) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64 Bit:- [2010/11/20 07:07:05 | 000.059.392 | ---- | M] (Microsoft Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64 Bit:- [2010-11-20 05:37:42 | 000.109.056 | ---- | M] (Microsoft Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64 Bit:- [30.09.2010 04:51:14 | 007.767.552 | ---- | M] (ATI Technologies Inc.) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64 Bit:- [30.09.2010 02:13:38 | 000.279.040 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64 Bit:- [09/29/2010 02:55:54 | 000.031.088 | ---- | M] (CyberLink Corporation) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\clwvd.sys -- (clwvd)
DRV:64 Bit:- [09/13/2010 14:00:08 | 001.390.640 | ---- | M] (Synaptics Incorporated) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64 Bit:- [09/02/2010 00:52:50 | 003.065.408 | ---- | M] (Broadcom Corporation) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64 Bit:- [17.06.2010 09:15:36 | 000.016.440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Start | Läuft] -- C:\Windows\SysNative\drivers\AtiPcie64.sys -- (AtiPcie) AMD PCI Express (3GIO)
DRV:64 Bit:- [05/14/2010 22:04:16 | 000.073.856 | ---- | M] (Advanced Microdevices) [Kernel | Home | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64 Bit:- [05/14/2010 22:04:16 | 000.028.800 | ---- | M] (Advanced Microdevices) [Kernel | Home | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64 Bit:- [05/07/2010 15:19:58 | 000.245.792 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64 Bit:- [05/06/2010 09:21:46 | 000.125.456 | ---- | M] (ATI Technologies, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64 Bit:- [2010/04/29 09:43:20 | 000.038.528 | ---- | M] (Advanced Microdevices) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64 Bit:- [02/18/2010 09:18:24 | 000.046.136 | ---- | M] (Advanced Microdevices) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64 Bit:- [07/13/2009 21:52:20 | 000.194.128 | ---- | M] (AMD Technologies Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64 Bit:- [07/13/2009 21:48:04 | 000.065.600 | ---- | M] (LSI Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64 Bit:- [07/13/2009 21:45:55 | 000.024.656 | ---- | M] (Promessa Tecnologia) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64 Bit:- [10.06.2009 17:01:11 | 001.485.312 | ---- | M] (Conexant Systems, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64 Bit:- [10.06.2009 17:01:11 | 000.740.864 | ---- | M] (Conexant Systems, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64 Bit:- [10.06.2009 17:01:11 | 000.292.864 | ---- | M] (Conexant Systems, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64 Bit:- [06/10/2009 16:38:56 | 000.000.308 | ---- | M] () [filesystem | On request | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64 Bit:- [06/10/2009 16:37:05 | 006.108.416 | ---- | M] (Intel Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64 Bit:- [06/10/2009 16:35:33 | 000.389.120 | ---- | M] (Marvell) [Nucleo | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64 Bit:- [06/10/2009 16:35:28 | 005.434.368 | ---- | M] (Intel Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel®
DRV:64 Bit:- [06/10/2009 16:34:33 | 003.286.016 | ---- | M] (Broadcom Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64 Bit:- [06/10/2009 16:34:28 | 000.468.480 | ---- | M] (Broadcom Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64 Bit:- [06/10/2009 16:34:23 | 000.270.848 | ---- | M] (Broadcom Corporation) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64 Bit:- [06/10/2009 16:31:59 | 000.031.232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64 Bit:- [05/18/2009 13:17:08 | 000.034.152 | ---- | M] (GEAR Software Inc.) [Kernel | On request | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64 Bit:- [03/18/2009 17:35:42 | 000.033.856 | -H-- | M] (LogMeIn, Inc.) [Kernel | sobs ask | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)

========== Default Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64 Bit:- HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =http://g.msn.com/HPNOT/1
IE:64 Bit:- HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Página inicial =http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Página inicial =http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant=http://start.facemoo...searchTerms}&f=4

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =http://g.msn.com/HPNOT/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Página inicial =http://google.com.do/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== Firefox ==========

FF - prefs.js..browser.startup.homepage: "google.com.do"

FF:64 Bit:- HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF – HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@photoproduct.rocketlife.com/RocketLife App Viewer;Version=0.8: File not found
FF – HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/08/07 19:35:41 | 000.000.000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [04.08.2011 15:07:51 | 000.000.000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Programme\ESET\ESET Smart Security\Mozilla Thunderbird [17.07.2011 13:17:57 | 000.000.000 | ---D | M]

[18.05.2011 14:23:24 | 000.000.000 | ---D | M] (Nenhum nome encontrado) – C:\Users\owner\AppData\Roaming\Mozilla\Extensions
[04.08.2011 13:47:07 | 000.000.000 | ---D | M] (Nenhum nome encontrado) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\k2weukm6.default\extensions
[18.05.2011 18:22:43 | 000.002.055 | ---- | M] () -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\k2weukm6.default\searchplugins\daemon-search.xml
[08/07/2011 19:35:41 | 000,000,000 | ---D | M] (No name found) - C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/05/22 14:40:53 | 000.000.000 | ---D | M] (Java-Konsole) – C:\Programme (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
[14.06.2011 19:41:07 | 000.000.000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) --
() (Nenhum nome encontrado) -- C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\K2WEUKM6.DEFAULT\EXTENSIONS\{20CC25E2-48C9-45E1-9A1F-1CCC1882B81B}.XPI
() (Nenhum nome encontrado) -- C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\K2WEUKM6.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (Nenhum nome encontrado) -- C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\K2WEUKM6.DEFAULT\EXTENSIONS\{EF4E370E-D9F0-4E00-B93E-A4F274CFDD5A}.XPI
[08.07.2011 03:16:28 | 000.142.296 | ---- | M] (Mozilla Foundation) – C:\Arquivos de Programas (x86)\mozilla firefox\components\browsercomps.dll
[04.05.2011 04:52:23 | 000.476.904 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[01.01.2010 04:00:00 | 000.002.252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[31.05.2011 19:12:06 | 000.002.048 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml

Arquivo O1 HOSTS: ([2009/06/10 17:00:26 | 000.000.824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64 Bit:- BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O3:64 Bit:- HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4:64 Bit:- HKLM..\Run: [egui] C:\Programme\ESET\ESET Smart Security\egui.exe (ESET)
O4:64 Bit:- HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (Neustart)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Programme\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O10:64 Bit:- NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - Gopher prefix: absent
O13 - Gopher prefix: absent
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}http://java.sun.com/...indows-i586.cab(Plugin Java 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}http://java.sun.com/...indows-i586.cab(Plugin Java 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}http://java.sun.com/...indows-i586.cab(Plugin Java 1.6.0_26)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D}http://content.syste...ri_4.4.21.0.cab(class SysInfo)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 196.3.81.5 200.88.127.22
O18:64 Bit:- Log\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Registry error: key error. file not found
O18:64 Bit:- Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Registration error: key error. file not found
O18:64 Bit:- Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} -Registration error: key error. file not found
O18:64 Bit:- Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Registration error: key error. file not found
O18:64 Bit:- Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Registry error: key error. file not found
O18:64 Bit:- Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Registry error: key error. file not found
O20:64 Bit:- HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64 Bit:- HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64 Bit:- HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64 Bit:- SSDL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or file not found.
O21 - SSDL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or file not found.
O32 - HKLM-CD-Rom: AutoRun - 1
O33 - MountPoints2\{53f0b8cc-8186-11e0-a1e3-984be19b0753}\Shell - "" = AutoRun
O33 - MountPoints2\{53f0b8cc-8186-11e0-a1e3-984be19b0753}\Shell\AutoRun\command - "" = G:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64 Bit:- HKLM\..comfile [open] -- "%1" %*
O35:64 Bit:- HKLM\..exefile [abrir] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [abrir] -- "%1" %*
O37:64 Bit:- HKLM\...com [@ = comfile] -- "%1" %*
O37:64 Bit:- HKLM\...exe [@ = exe-Datei] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exe file] -- "%1" %*

========== Files/Folders - created in 30 days ==========

[08/08/2011 15:09:35 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{56E13713-90E3-4B5B-B465-7C00A508FED9}
[08/08/2011 15:09:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{86A07FF7-BF32-4F76-93A1-90756BAED860}
[08/07/2011 21:54:06 | 000,000,000 | ---D | C] – C:\Users\Owner\AppData\Roaming\SUPERAntiSpyware.com
[07.08.2011 21:53:17 | 000.000.000 | ---D | C] -- C:\ProgramData\!SASCORE
[08/07/2011 21:53:16 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[07.08.2011 21:53:15 | 000.000.000 | ---D | C] – C:\ProgramData\SUPERAntiSpyware.com
[07.08.2011 21:53:15 | 000.000.000 | ---D | C] – C:\Programme\SUPERAntiSpyware
[07.08.2011 21:52:57 | 000.000.000 | ---D | C] -- C:\ProgramData\SUPERSetup
[07.08.2011 21:14:36​​| 000,000,000 | ---D | C] – C:\Users\Owner\AppData\Roaming\Malwarebytes
[07.08.2011 21:14:03 | 000.041.272 | ---- | C] (Malwarebytes Corporation) – C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[07.08.2011 21:14:03 | 000.000.000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Menu Iniciar\Programas\Malwarebytes' Anti-Malware
[07.08.2011 21:14:02 | 000,000,000 | ---D | C] – C:\ProgramData\Malwarebytes
[07.08.2011 21:13:59 | 000.025.912 | ---- | C] (Malwarebytes Corporation) – C:\Windows\SysNative\drivers\mbam.sys
[07.08.2011 21:13:59 | 000.000.000 | ---D | C] – C:\Arquivos de Programas (x86)\Malwarebytes' Anti-Malware
[07.08.2011 13:23:30 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{D88C0951-FF5D-4740-A216-60769E3358F5}
[08/07/2011 13:23:10 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{7C4929CD-B37E-4C44-B97A-95D7A692B341}
[08/06/2011 12:04:57 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{5B345569-C478-46D4-8BB0-E72824D21ACA}
[08/06/2011 12:04:44 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{CF2EDEEF-B2CD-4629-A1F6-A0E24C4609FF}
[08/05/2011 21:37:52 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{15D4F15B-72A5-440A-A820-F5E197FF4F14}
[08/05/2011 21:37:41 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C94B6E01-29B3-4A18-A5F8-7D2CB1554EBB}
[05/08/2011 09:37:16 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{83151196-AAF8-43E7-9E88-311238751F60}
[08/05/2011 09:36:39 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{224397EF-F103-4308-97BC-1502A2BDED68}
[05.08.2011 08:50:14 | 000.000.000 | ---D | C] -- C:\Windows\pt
[05.08.2011 08:47:32 | 000.000.000 | ---D | C] – C:\Programme\Windows Live
[05.08.2011 08:46:47 | 000.000.000 | -HSD | C] -- C:\Config.Msi
[08/05/2011 08:10:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C205B1FE-70F3-4D17-A160-A3FAA4276DFF}
[04.08.2011 21:34:02 | 000.000.000 | ---D | C] -- C:\Benutzer\Eigentümer\AppData\Local\{32DCBC33-9174-44B9-9F56-B34A33B11AFA}
[08/04/2011 21:33:25 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{04480357-417E-4059-8903-86B64AECE022}
[08/04/2011 15:09:31 | 000,000,000 | ---D | C] – C:\Users\Owner\AppData\Roaming\Apple Computers
[08/04/2011 15:09:31 | 000,000,000 | ---D | C] - C:\Users\Owner\AppData\Local\Apple Computer
[04.08.2011 15:09:28 | 000.000.000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\MenuIniciar\Programas\iTunes
[04.08.2011 15:09:02 | 000.126.312 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\GEARAspi64.dll
[04.08.2011 15:09:02 | 000.107.368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysWow64\GEARAspi.dll
[04.08.2011 15:09:02 | 000.034.152 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[04.08.2011 15:08:37 | 000.000.000 | ---D | C] – C:\Programme\iPod
[04.08.2011 15:08:36 | 000.000.000 | ---D | C] – C:\Programme\iTunes
[04.08.2011 15:08:36 | 000.000.000 | ---D | C] – C:\Programme (x86)\iTunes
[04.08.2011 15:08:36 | 000.000.000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[04.08.2011 15:07:46 | 000.000.000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\MenuIniciar\Programas\QuickTime
[04.08.2011 15:07:41 | 000.000.000 | ---D | C] – C:\Programme (x86)\QuickTime
[04.08.2011 15:07:41 | 000.000.000 | ---D | C] – C:\ProgramData\Apple-Computer
[08/04/2011 15:07:34 | 000,000,000 | ---D | C] – C:\Users\owner\AppData\Local\Apple
[04.08.2011 15:07:33 | 000.000.000 | ---D | C] – C:\Programme (x86)\Apple Software Update
[08/04/2011 15:07:23 | 000,000,000 | ---D | C] – C:\Program Files\Common Files\Apple
[04.08.2011 15:07:12 | 000.000.000 | ---D | C] -- C:\Programme\Hallo
[04.08.2011 15:07:12 | 000.000.000 | ---D | C] – C:\Programme (x86)\Hallo
[04.08.2011 15:07:04 | 000.000.000 | ---D | C] – C:\ProgramData\Apple
[08/04/2011 15:07:04 | 000,000,000 | ---D | C] – C:\Program Files (x86)\Common Files\Apple
[08/04/2011 09:33:01 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{DF7CA301-3998-48C4-B669-79DD4FEC3D35}
[08/03/2011 09:09:57 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{63E620A2-D41D-4479-A893-EFB2A52780F5}
[08/02/2011 16:36:48 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{5884AFFB-7C99-477D-A706-FFD3343D3E80}
[02.08.2011 14:52:13 | 000.000.000 | ---D | C] – C:\Programme (x86)\JDownloader
[08/01/2011 13:00:02 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{1B71FA4E-D42D-49D7-ACAB-A8E1FD794F2B}
[31.07.2011 20:25:25 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{484A95F6-0214-412D-BDCA-030520CDACB8}
[31.07.2011 08:25:01 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{6A460271-2CA3-4D47-89C9-3940FF23655D}
[30.07.2011 14:44:37 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{83EAD1BB-F96F-491D-9D0A-484B8E4B9129}
[2011/07/29 8:01:57 PM | 000,000,000 | ---D | C] -- C:\Users\Properties\AppData\Local\{44351DCC-CFCC-4BCA-8A5A-C45F98DC225B}
[2011/07/29 08:01:34 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{BECEE4A2-5FC3-4997-9DB3-9F20255B906D}
[07/28/2011 8:45:51 PM | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[28.07.2011 20:45:49 | 000.000.000 | ---D | C] – C:\Programme (x86)\AMD APP
[28.07.2011 20:45:40 | 000.000.000 | ---D | C] – C:\ProgramData\Microsoft\Windows\Menu Iniciar\Programas\AMD VISION Engine Control Center
[2011-07-28 16:24:36 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{A6E29F4C-7DE4-4390-A1C0-0C980BEFE03F}
[2011-07-28 14:58:14 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{AC726331-210B-44F7-B786-E0E523F50C09}
[2011/07/27 12:31:14 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{94FA4AB6-68FB-4270-83E2-20CA6D189C29}
[2011/07/26 12:10:19 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{0CF510A9-F3D4-4D4A-B0C6-B8B5AEFCE0D2}
[2011/07/25 12:41:18 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{63EAC8AA-A38D-4E55-9696-128A4A9B5146}
[2011/07/24 10:10:26 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{0C5E3998-AC9B-4563-9AF6-839B195E3F4E}
[2011-07-23 12:34:54 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C6C41EDF-72C8-44FE-9360-7E75301423B7}
[2011/07/22 12:52:17 AM | 000,000,000 | ---D | C] -- C:\Users\Properties\AppData\Local\{499EC1AB-DE74-4981-A1FF-28605B1FAFFE}
[2011-07-21 12:22:40 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{9FAB3528-58D3-40A0-B743-3EC6118CCDBC}
[2011/07/20 14:18:22 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C799B645-240F-44E9-BC82-139C694761F7}
[2011/07/20 13:43:28 | 000.000.000 | ---D | C] – C:\Programme (x86)\Oak Systems
[07/19/2011 12:34:42 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{DA7D0130-F18B-4C17-9A48-1DF29CDCFA39}
[07/18/2011 12:34:03 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{4C2747B4-43DB-420C-9B63-A572E5D5DD83}
[07/17/2011 20:36:29 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{12FCB963-CF57-4393-AF72-ACFE6FA5595B}
[2011/07/17 13:19:12 | 000,000,000 | ---D | C] – C:\Users\Owner\AppData\Roaming\ESET
[2011/07/17 13:19:12 | 000,000,000 | ---D | C] - C:\Users\owner\AppData\Local\ESET
[07/17/2011 13:17:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[07/17/2011 1:17:56 PM | 000,000,000 | ---D | C] – C:\ProgramData\ESET
[17.07.2011 13:17:56 | 000.000.000 | ---D | C] – C:\Programme\ESET
[07/17/2011 08:35:53 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{16D329D6-838A-4D95-B1F2-21F46E5B00B1}
[07/16/2011 12:57:38 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{F5536361-0EB3-46D8-AC8F-3A8F1ACCC6F8}
[15.07.2011 13:39:48 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{010698E6-9C39-490C-858E-A81745AF723F}
[2011/07/14 13:05:23 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{49C594DB-1B98-4646-8F3B-9692FAFD7AEA}
[2011/07/13 22:10:02 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{24D203F6-B04E-4828-BA42-37926287BC07}
[13.07.2011 10:23:25 | 000.421.888 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\KernelBase.dll
[13.07.2011 10:23:23 | 000.006.144 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[13.07.2011 10:23:23 | 000.005.120 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[13.07.2011 10:23:23 | 000.005.120 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.608 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.608 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.608 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[13.07.2011 10:23:23 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[13.07.2011 10:23:23 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[13.07.2011 10:23:22 | 000.006.144 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[13.07.2011 10:23:22 | 000.004.608 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[13.07.2011 10:23:22 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[13.07.2011 10:23:22 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[13.07.2011 10:23:22 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.584 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[13.07.2011 10:23:22 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2011/07/13 10:23:21 | 000.004.096 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2011/07/13 10:23:21 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2011/07/13 10:23:21 | 000.003.072 | -H-- | C] (Microsoft Corporation) – C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2011/07/13 10:23:09 | 002.565.632 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\esent.dll
[2011/07/13 10:23:09 | 001.699.328 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\esent.dll
[2011/07/13 10:23:09 | 000.189.824 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\drivers\storport.sys
[2011/07/13 10:23:09 | 000.107.904 | ---- | C] (Advanced Micro Devices) – C:\Windows\SysNative\drivers\amdsata.sys
[2011/07/13 10:23:09 | 000.096.768 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\fsutil.exe
[2011/07/13 10:23:09 | 000.074.240 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\fsutil.exe
[2011/07/13 10:23:09 | 000.027.008 | ---- | C] (Advanced Micro Devices) – C:\Windows\SysNative\drivers\amdxata.sys
[13.07.2011 10:22:52 | 001.162.752 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\kernel32.dll
[13.07.2011 10:22:52 | 000.362.496 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\wow64win.dll
[13.07.2011 10:22:52 | 000.338.944 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\conhost.exe
[13.07.2011 10:22:52 | 000.214.528 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\winsrv.dll
[13.07.2011 10:22:51 | 000.243.200 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\wow64.dll
[13.07.2011 10:22:51 | 000.025.600 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\setup16.exe
[13.07.2011 10:22:51 | 000.016.384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[13.07.2011 10:22:51 | 000.014.336 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\ntvdm64.dll
[13.07.2011 10:22:51 | 000.013.312 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\wow64cpu.dll
[13.07.2011 10:22:51 | 000.007.680 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\instnm.exe
[13.07.2011 10:22:51 | 000.005.120 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\wow32.dll
[13.07.2011 10:22:51 | 000.002.048 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\user.exe
[13.07.2011 10:22:48 | 000.325.120 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\drivers\usbport.sys
[13.07.2011 10:22:48 | 000.007.936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[07/13/2011 10:09:24 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{EDC37762-241E-46D8-8AA7-C9ECEE35A235}
[2011/07/12 19:00:34 | 000.124.688 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\mswinsck.ocx
[2011/07/12 12:48:36 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{5358E9F0-204E-4B35-9095-8FE3B12D2497}
[2011/07/12 11:34:00 | 000.212.840 | ---- | C] (Apple Inc.) – C:\Windows\SysNative\dnssdX.dll
[2011/07/12 11:34:00 | 000.096.104 | ---- | C] (Apple Inc.) – C:\Windows\SysNative\dns-sd.exe
[2011/07/12 11:34:00 | 000.085.864 | ---- | C] (Apple Inc.) – C:\Windows\SysNative\dnssd.dll
[2011/07/12 11:34:00 | 000.061.288 | ---- | C] (Apple Inc.) – C:\Windows\SysNative\jdns_sd.dll
[2011/07/12 11:20:54 | 000.178.536 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\dnssdX.dll
[2011/07/12 11:20:54 | 000.083.816 | ---- | C] (Apple Inc.) – C:\Windows\SysWow64\dns-sd.exe
[2011/07/12 11:20:54 | 000.073.064 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\dnssd.dll
[2011/07/12 11:20:54 | 000.050.536 | ---- | C] (Apple Inc.) – C:\Windows\SysWow64\jdns_sd.dll
[2011/07/11 11:51:03 PM | 000,000,000 | ---D | C] -- C:\Users\Properties\AppData\Local\{EDDE4898-EC60-4EF3-8CAA-1028A9649AC5}
[2011/07/10 20:04:18 | 000,000,000 | ---D | C] -- C:\Users\Properties\AppData\Local\{47634FFD-E87C-4DA6-8FEE-875BAE8A1ECE}
[10.07.2011 07:50:48 | 000.000.000 | ---D | C] -- C:\Benutzer\Eigentümer\AppData\Local\{EF0CAC2F-DE18-4D05-B190-CA234C7E1EE2}
[09.07.2011 17:21:27 | 000.000.000 | ---D | C] – C:\Windows\Minidump
[2011/06/10 20:10:02 | 000.082.816 | ---- | C] (VSO-Software) – C:\Users\owner\AppData\Roaming\pcouffin.sys

========== Files - Changed in 30 days ==========

[08.08.2011 15:13:43 | 000.023.248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[08.08.2011 15:13:43 | 000.023.248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[08.08.2011 15:06:00 | 000.067.584 | --S- | M] () -- C:\Windows\bootstat.dat
[08.08.2011 15:05:46 | 3015.888.896 | -HS- | M] () -- C:\hiberfil.sys
[08/07/2011 21:53:16 | 000.001.808 | ---- | M] () -- C:\Users\ownership\Desktop\SUPERAntiSpyware Free Edition.lnk
[08/07/2011 21:14:03 | 000.001.073 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[08/07/2011 19:35:42 | 000.001.102 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[07.08.2011 14:14:09 | 000.001.117 | ---- | M] () -- C:\Users\owner\Desktop\Youtube Downloader HD.lnk
[08.06.2011 14:15:53​ | 000726316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[06.08.2011 14:15:53 ​​​​| 000.624.178 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[06.08.2011 14:15:53 ​​​​| 000.106.522 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[04.08.2011 14:43:17 | 000.001.189 | ---- | M] () -- C:\Users\owner\AppData\Roaming\vso_ts_preview.xml
[2011-07-26 16:46:38 | 000.000.822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011-07-21 17:57:42 | 000.001.183 | ---- | M] () -- C:\Users\Public\Desktop\Brain Trainer 3.lnk
[17.07.2011 17:17:21 | 000.000.342 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForOWNER-HP$.job
[14.07.2011 17:24:08 | 000.001.169 | -H-- | M] () -- C:\Users\owner\Desktop\CoreTemp.ini
[13.07.2011 10:29:46 | 000.424.440 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/07/12 17:11:10 | 000.007.594 | ---- | M] () -- C:\Users\owner\AppData\Local\Resmon.ResmonCfg
[2011/07/12 11:34:00 | 000.212.840 | ---- | M] (Apple Inc.) – C:\Windows\SysNative\dnssdX.dll
[2011/07/12 11:34:00 | 000.096.104 | ---- | M] (Apple Inc.) – C:\Windows\SysNative\dns-sd.exe
[2011/07/12 11:34:00 | 000.085.864 | ---- | M] (Apple Inc.) – C:\Windows\SysNative\dnssd.dll
[2011/07/12 11:34:00 | 000.061.288 | ---- | M] (Apple Inc.) – C:\Windows\SysNative\jdns_sd.dll
[2011/07/12 11:20:54 | 000.178.536 | ---- | M] (Apple Inc.) -- C:\Windows\SysWow64\dnssdX.dll
[2011/07/12 11:20:54 | 000.083.816 | ---- | M] (Apple Inc.) – C:\Windows\SysWow64\dns-sd.exe
[2011/07/12 11:20:54 | 000.073.064 | ---- | M] (Apple Inc.) -- C:\Windows\SysWow64\dnssd.dll
[2011/07/12 11:20:54 | 000.050.536 | ---- | M] (Apple Inc.) -- C:\Windows\SysWow64\jdns_sd.dll

========== Files Created - No Company Name ==========

[08/07/2011 21:53:16 | 000.001.808 | ---- | C] () -- C:\Users\ownership\Desktop\SUPERAntiSpyware Free Edition.lnk
[07.08.2011 21:14:03 | 000.001.073 | ---- | C] () -- C:\Users\Público\Desktop\Malwarebytes' Anti-Malware.lnk
[08/07/2011 19:35:42 | 000.001.102 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[08/07/2011 14:14:09 | 000.001.117 | ---- | C] () -- C:\Users\Owner\Desktop\Youtube Downloader HD.lnk
[04.08.2011 15:07:33 | 000.002.519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\MenuIniciar\Programas\Apple Software Update.lnk
[08/02/2011 14:52:47 | 000.001.930 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[02.08.2011 14:52:47 | 000.001.909 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\MenuIniciar\Programas\JDownloader Uninstaller.lnk
[02.08.2011 14:52:47 | 000.001.888 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\MenuIniciar\Programas\JDownloader Update.lnk
[2011/06/27 16:23:20 | 000.053.760 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
[2011/06/19 11:25:12 | 000,000,801 | ---- | C] () -- C:\Windows\ARPR.INI
[2011/06/10 20:10:02 | 000.099.384 | ---- | C] () -- C:\Users\owner\AppData\Roaming\inst.exe
[2011/06/10 20:10:02 | 000.007.859 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\pcouffin.cat
[2011/06/10 20:10:02 | 000.001.167 | ---- | C] () -- C:\Users\owner\AppData\Roaming\pcouffin.inf
[07.06.2011 12:59:08 | 000.001.189 | ---- | C] () -- C:\Users\owner\AppData\Roaming\vso_ts_preview.xml
[07.06.2011 12:48:01 | 000.175.616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[07.06.2011 12:48:00 | 000.631.808 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[07.06.2011 12:48:00 | 000.243.200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[07.06.2011 12:48:00 | 000.080.896 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[06.07.2011 12:48:00 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[18.05.2011 18:30:10 | 000.007.594 | ---- | C] () -- C:\Users\owner\AppData\Local\Resmon.ResmonCfg
[05.04.2011 04:44:40 | 000.000.000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[04.05.2011 04:37:15 | 000,000,268 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog2.ini
[04.05.2011 04:37:15 | 000,000,209 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog.ini
[20.10.2010 02:44:40 | 000.000.188 | ---- | C] () -- C:\Windows\SysWow64\HPWA.ini
[21.09.2010 13:30:44 | 000.007.736 | ---- | C] () -- C:\Windows\hpDSTRES.DLL
[15.06.2010 22:28:54 | 000.002.857 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[14.07.2009 01:38:36 | 000.067.584 | --S- | C] () -- C:\Windows\bootstat.dat
[13.07.2009 22:35:51 | 000.000.741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[13.07.2009 22:34:42 | 000.215.943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[13.07.2009 20:10:29 | 000.043.131 | ---- | C] () -- C:\Windows\mib.bin
[13.07.2009 19:42:10 | 000.064.000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[13.07.2009 17:59:36 | 001.498.564 | ---- | C] () -- C:\Windows\SysWow64\igkrng400.bin
[13.07.2009 17:03:59 | 000.364.544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[10.06.2009 17:26:10 | 000.673.088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[17.12.2007 16:32:44 | 000.053.248 | ---- | C] () -- C:\Windows\SysWow64\ArmAccess.dll

< end of report >

Extra:

OTL Extras log file created on: 08/08/2011 15:12:29 - Run 1
OTL von OldTimer - Version 3.2.26.1 Folder = C:\Users\owner\Downloads
64bit-Home Premium Edition Service Pack 1 (Version = 6.1.7601) – Typ = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Location: 00000409 | Country: United States | Language: DE | Date format: M/d/yyyy

Total physical storage 3.75 GB | 1.97 GB available physical memory | 52.59% free memory
7.49 GB paging file | 5.15 GB available in paging file | 68.77% free paging file
Paging file location: ?:\pagefile.sys [binaries]

%Systemlaufwerk% = C: | %SystemRoot% = C:\Windows | %Programme% = C:\Programme (x86)
drive C: | 279.16 GB total storage space | 189.99 GB of free space | 68.06% free disk space | Partition type: NTFS
Drive D: | 18.63 GB total storage space | 2.70GB of free disk space | 14.50% free disk space | Partition type: NTFS

Computer name: OWNER-HP | Username: owner | Logged in as administrator.
Boot Mode: Normal | Scan mode: Current user | Include 64-bit checks
Company Name Whitelist: Disabled | Ignore Microsoft Files: Disabled | No company name whitelisting: Enabled | File age = 30 days

========== Additional Registration (SafeList) =================

========== File associations =================

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] – C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] – C:\Programme (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawn =================

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<chave>\shell\[comando]\comando]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [abrir] - Registry error: key error.
inffile [Instalar] – %SystemRoot%\System32\InfDefaultInstall.exe „%1“ (Microsoft Corporation)
InternetShortcut [abrir] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [opened] -- "%1" %* File not found
regfile [merge] - Registry error: key error.
scrfile [config] -- "%1" file not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l file not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] - Registry error: key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Verzeichnis [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
[Find] directory – %SystemRoot%\Explorer.exe (Microsoft Corporation)
Pasta [aberta] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[Browse] Folder - Registry Error: Value Error.
[Find] Drive - %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<chave>\shell\[comando]\comando]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exe file [open] -- "%1" %*
helpfile [abrir] - Registry error: key error.
inffile [Instalar] – %SystemRoot%\System32\InfDefaultInstall.exe „%1“ (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] - Registry error: key error.
scrfile [config] -- "%1"
scrfile [Instalar] -- rundll32.exe desk.cpl, InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] - Registry error: key error.
Desconhecido [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Verzeichnis [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
[Find] directory – %SystemRoot%\Explorer.exe (Microsoft Corporation)
Pasta [aberta] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[Browse] Folder - Registry Error: Value Error.
[Find] Drive - %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings =================

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64 Bit:[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall settings =================

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"Disable notifications" = 0
"HabilitarFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"Disable notifications" = 0
"HabilitarFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"Disable notifications" = 0
"HabilitarFirewall" = 0

========== List of Authorized Apps =================

========== HKEY_LOCAL_MACHINE uninstall list ==========

64-Bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Desinstalar]
"{091A0130-A82F-4A6D-9C61-3BBBB3289030}" = RtVOsd
„{13DCC2C7-454D-42F0-A892-E0E9A5DE4E67}“ = HP Wireless Assistant
"{180C8888-50F1-426B-A9DC-AB83A1989C65}" = Language selection for Windows Live
"{1A0D7FAB-1A1D-4AFE-8E53-9A155B73BC08}" = ESET Smart Security
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Sign-in Assistant for Windows Live ID
„{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}“ = HP Client-Dienste
"{439760BC-7737-4386-9B1D-A90A3E8A22EA}" = Apple mobile device support
„{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}“ = Microsoft Visual C++ 2008 Redistribuível – x64 9.0.30729.4148
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK runtime
„{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}“ = Microsoft Visual C++ 2008 Redistribuível – x64 9.0.30729.6161
"{6966E87A-91BA-4D4B-B7DA-A4610FAA31E0}" = ATI Catalyst-Installationsmanager
„{8220EEFE-38CD-377E-8595-13398D740ACE}“ = Microsoft Visual C++ 2008 Redistribuível – x64 9.0.30729.17
„{8338783A-0968-3B85-AFC7-BAAE0A63DC50}“ = Microsoft Visual C++ 2008 Redistribuível – KB2467174 – x64 9.0.30729.5570
"{90120000-002A-0000-1000-0000000FF1CE}" = Components for Microsoft Office Office 64 bit 2007
„{90120000-002A-0C0A-1000-0000000FF1CE}“ = Microsoft Office 2007 64-Bit Shared MUI (Spanisch)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{AFCA7057-581F-9CE2-A1BD-65371995C64F}" = Combustive AMD
“{B613A9BB-2B34-4824-A4BE-2427653D59D6}” = iTunes
"{BCC08D47-60ED-FA7F-241B-34BC9947D9FF}" = ccc-utility64
"{CA0D2F09-F811-48D4-843E-C87696C6A9D9}" = Hallo
„{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}“ = HP Auto
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME-IFilter
„{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}“ = Microsoft Visual C++ 2010 x64 Redistribuível – 10.0.30319
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Running Client Microsoft .NET Framework 4
„Broadcom 802.11 WLAN-Adapter“ = Broadcom 802.11 WLAN-Adapter
"CCleaner" = CCleaner
"Defragmentierer" = Defragmentierer
"Microsoft .NET Framework 4 Customer Profile" = Microsoft .NET Framework 4 Customer Profile
"SynTPDeinstKey" = Synaptics-Zeigegerätetreiber
"WinRAR Archiver" = WinRAR 4.01 (64 Bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Deinstallar]
„{01FB4998-33C4-4431-85ED-079E3EEFE75D}“ = CyberLink YouCam
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP customer experience improvements
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Install Windows Live
"{0EDEB615-1A60-425E-8306-0E10519C7B55}" = RoxioNow player
„{19A492A0-888F-44A0-9B21-D91700763F62}“ = Catalyst Control Center – Branding
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
„{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}“ = Microsoft Visual C++ 2008 Redistribuível – x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk-E-Mail-Filteraktualisierung
"{1F77C418-2C90-459C-BD33-B56A4182B9FA}" = CYRI System Requirements Lab
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD-Suite
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE settings
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core-Komponenten 10
"{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
"{264FE20A-757B-492a-B0C3-4009E2997D8A}" = PictureMover
"{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java 6 Update 26
“{274AE2D3-08C1-4F5C-9A56-C675345D6DE2}” = Documentation HP
„{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}“ = Windows Live Messenger
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Fotogalerie von Windows Live
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Fotogalerie von Windows Live
"{3877C901-7B90-4727-A639-B6ED2DD59D43}" = ESU for Microsoft Windows 7
„{3B834B54-EC4B-48E2-BFC6-03FF5DA06F62}“ = Adobe Shockwave Player 11.5
"{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}" = Norton Online-Sicherung
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{44B2A0AB-412E-4F8C-B058-D1E8AECDFF5}" = Recovery Manager
"{491ADA37-04EE-2ECE-9F86-DDC0106047AC}" = Times Reader
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
“{53469506-A37E-4314-A9D9-38724EC23A75}” = HP konfigurieren
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = language pack for the Windows Live UX platform
"{57ABE5FC-9E26-49E0-00A3-CF45D750B1AB}" = MVP Beisebol 2005
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Component HPAsset for HP Active Support Library
„{682B3E4F-696A-42DE-A41C-4C07EA1678B4}“ = Windows Live SOXE
"{6B114F59-6732-4EA5-A33E-ACC6DEC49B61}" = Software creation by HP
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistribuível
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistribuível
„{770657D0-A123-3C07-8E44-1C83EC895118}“ = Microsoft Visual C++ 2005 ATL-Update kb973923 – x86 8.0.50727.4053
„{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}“ = Apple-Softwareaktualisierung
"{7B6F2F56-CDF4-4ACB-95A2-DBB21E529CE9}" = Brain Trainer 3
"{801EFC7D-AA66-F889-030D-C96E99F884A4}" = InstallProxy for Catalyst Control Center
„{80E158EA-7181-40FE-A701-301CE6BE64AB}“ = CyberLink MediaShow
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistribuível
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Plattform Windows Live PIMT
"{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II
„{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}“ = Microsoft Visual C++ 2008 Redistribuível – KB2467174 – x86 9.0.30729.5570
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Driver to control Realtek Ethernet for Windows 7
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
„{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}“ = Microsoft Silverlight
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
„{90120000-0015-0C0A-0000-0000000FF1CE}“ = Microsoft Office Access MUI (Spanisch) 2007
"{90120000-0015-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0C0A-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Spanisch) 2007
"{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
„{90120000-0018-0C0A-0000-0000000FF1CE}“ = Microsoft Office PowerPoint MUI (Spanisch) 2007
"{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
„{90120000-0019-0C0A-0000-0000000FF1CE}“ = Microsoft Office Publisher MUI (Spanisch) 2007
"{90120000-0019-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0C0A-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Spanisch) 2007
"{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
„{90120000-001B-0C0A-0000-0000000FF1CE}“ = Microsoft Office Word MUI (Spanisch) 2007
"{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0403-0000-0000000FF1CE}" = Proof of Microsoft Office (Catalan) 2007
"{90120000-001F-0403-0000-0000000FF1CE}_ENTERPRISE_{4B47C31E-46B0-462B-BEE4-DC383B6A1F2A}" = Microsoft Office Korrekturhilfen 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Proof of Microsoft Office (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Korrekturhilfen 2007 Service Pack 2 (SP2)
„{90120000-001F-040C-0000-0000000FF1CE}“ = Microsoft Office Proof (franz.) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Korrekturhilfen 2007 Service Pack 2 (SP2)
"{90120000-001F-0416-0000-0000000FF1CE}" = Microsoft Office Proof (Português (Brasilien)) 2007
"{90120000-001F-0416-0000-0000000FF1CE}_ENTERPRISE_{75EBE365-7FC5-4720-A7D3-804BF550D1BC}" = Microsoft Office Korrekturhilfen 2007 Service Pack 2 (SP2)
„{90120000-001F-042D-0000-0000000FF1CE}“ = Microsoft Office Proof (basco) 2007
"{90120000-001F-0456-0000-0000000FF1CE}" = Testing Microsoft Office (Galian) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (spanisch) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Korrekturhilfen 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0C0A-1000-0000000FF1CE}_ENTERPRISE_{6113C11D-BACA-4D8E-8002-03C8D06FD5E6}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0C0A-0000-0000000FF1CE}" = Microsoft Office Proofing (Spanisch) 2007
„{90120000-0030-0000-0000-0000000FF1CE}“ = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for 2007 Microsoft Office System (972581)
"{90120000-0044-0C0A-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Spanisch) 2007
"{90120000-0044-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
„{90120000-006E-0C0A-0000-0000000FF1CE}“ = Microsoft Office (Spanisch) 2007 Shared MUI
"{90120000-006E-0C0A-0000-0000000FF1CE}_ENTERPRISE_{6113C11D-BACA-4D8E-8002-03C8D06FD5E6}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0C0A-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Spanisch) 2007
"{90120000-00A1-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0C0A-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Spanisch) 2007
"{90120000-00BA-0C0A-0000-0000000FF1CE}_ENTERPRISE_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C}" = Microsoft Office 2007 Service Pack 2 (SP2)
„{92EA4134-10D1-418A-91E1-5A0453131A38}“ = Windows Live Movie Maker
"{936783CC-73D3-F125-71A4-BC0697B48167}" = CCC Help English
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
„{95140000-0070-0000-0000-0000000FF1CE}“ = Microsoft Office 2010
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 card reader
"{98890E89-0353-D7BB-594D-26A17055A42B}" = Catalyst Control Center general chart views
„{9A25302D-30C0-39D9-BD6F-21E6EC160475}“ = Microsoft Visual C++ 2008 Redistribuível – x86 9.0.30729.17
„{9BE518E6-ECC6-35A9-88E4-87755C07200F}“ = Microsoft Visual C++ 2008 Redistribuível – x86 9.0.30729.6161
„{9D56775A-93F3-44A3-8092-840E3826DE30}“ = Windows Live Mail
"{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}" = Need for Speed ​​​​O mais procurado
„{A726AE06-AAA3-43D1-87E3-70F510314F04}“ = Windows Live Writer
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
„{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}“ = Windows Live Writer
„{AAF454FC-82CA-4F29-AB31-6A109485E76E}“ = Windows Live Writer
„{AC76BA86-7AD7-FFFF-7B44-A91000000001}“ = Adobe Reader 9.4.5 MUI
"{AE856388-AFAD-4753-81DF-D96B19D0A17C}" = HP Configuration Manager
„{AF306BD8-F9D1-4627-89B9-246E59074A05}“ = HP Power Manager
„{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}“ = Adobe AIR
"{B1A4A13D-4665-4ED3-9DFE-F845725FBBD8}" = HP Support Assistant
"{B3575D00-27EF-49C2-B9E0-14B3D954E992}" = Apple Application Support
„{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}“ = Logotipo Digital Energy Star
“{C59C179C-668D-49A9-B6EA-0121CCFC1243}” = LabelPrint
„{C66824E4-CBB3-4851-BB3F-E8CFD6350923}“ = Windows Live Mail
„{CB099890-1D5F-11D5-9EA9-0050BAE317E1}“ = PowerDirector
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady-PC-Laufzeit x86
„{CCF9FABA-FF1F-AA77-60F5-8A6FD53E78E3}“ = AMD VISION Engine Control Center
„{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}“ = Plattform Windows Live UX
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D36DD326-7280-11D8-97C8-000129760CBE}" = FotoAgora!
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Comum
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communication Platform
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.1.19.365
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Recursions from Windows Live Writer
“{E09C4DB7-630C-4F06-A631-8EA7239923AF}” = D3DX10
“{E3E71D07-CD27-46CB-8448-16D4FB29AA13}” = Microsoft WSE 3.0-Laufzeit
„{E5B21F11-6933-4E0B-A25C-7963E3C07D11}“ = Windows Live Messenger
"{EF682D1C-591D-48B5-9803-628DA622C281}" = HP Quick Start
„{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}“ = Microsoft SQL Server 2005 Compact Edition [DEU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio-Treiber
„{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}“ = Windows Live Essentials
"{FE83F463-7E61-4B18-9FA0-B94B90A0B6B9}" = Nero Burning ROM 10
"1489-3350-5074-6281" = JDownloader 0.9
„82A44D22-9452-49FB-00FB-CEC7DCAF7E23“ = EA SPORTS online 2005
„Adobe AIR“ = Adobe AIR
„Adobe Flash Player ActiveX“ = Adobe Flash Player 10 ActiveX
"Plug-in for Adobe Flash Player" = Plug-in for Adobe Flash Player 10
"Ares" = Ares 2.1.7
"com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1" = Times Reader
„DAEMON Tools Lite“ = DAEMON Tools Lite
"DFX for Windows Media Player" = DFX for Windows Media Player
"Dziobas Rar Player_is1" = Dziobas Rar Player 0.009.52
„ENTERPRISE“ = Microsoft Office Enterprise 2007
"Fraps" = Fraps
„HP Photo Creations“ = HP Photo Creations
„InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}“ = CyberLink YouCam
„InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}“ = CyberLink DVD Suite
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
„InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}“ = CyberLink MediaShow
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.1.0 (complete)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware Version 1.51.1.1800
„Mozilla Firefox 5.0.1 (x86 en-US)“ = Mozilla Firefox 5.0.1 (x86 en-US)
"Shockwave" = Schockwelle
„TeamViewer 6“ = TeamViewer 6
„WinLiveSuite“ = Windows Live Essentials
„Youtube-Downloader HD_is1“ = Youtube-Downloader HD v. 2.6
"YTdetect" = Yahoo! recognition
"ZumoDrive" = HP CloudDrive

========== Last 10 event log errors =================

[App Events]
Error - 07/12/2011 16:07:34 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Exception Code: 0xc0000005 Error Compensation: 0x00aa0537 Error
Process ID: 0x1558 Application start time failed: 0x01cc40ccfb61a9a2 Application error
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Konfigurationsdatei: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince
de Persia.exe Berichts-ID: 948d1332-acc2-11e0-99e3-984be19b0753

Error - 07/13/2011 10:35:15 | computer name = owner-hp | Source = Microsoft-Windows-RestartManager | ID=10007
Description = The application or service "Nero Update" could not be restarted.

Error - 07/13/2011 17:44:38 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Exception Code: 0xc0000005 Error Compensation: 0x00aa0537 Error
Process ID: 0x13ec Faulting application start time: 0x01cc41a2edccaf3a Faulting application
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Konfigurationsdatei: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince
Persia.exe Berichts-ID: 4e54ccb1-ad99-11e0-b677-984be19b0753

Error - 07/13/2011 20:40:06 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Exception Code: 0xc0000005 Error Compensation: 0x00aa0537 Error
Process ID: 0x7f8 Bad application start time: 0x01cc41b917288afb Bad application
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Konfigurationsdatei: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince
Persia.exe Berichts-ID: d170ced4-adb1-11e0-b677-984be19b0753

Error - 07/14/2011 13:55:52 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Exception Code: 0xc0000005 Error Compensation: 0x00aa0537 Error
Process ID: 0x14dc Bad application start time: 0x01cc424c038789ad Bad application
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Konfigurationsdatei: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince
de Persia.exe Report ID: 8366fd06-ae42-11e0-9c1a-984be19b0753

Error - 07/14/2011 20:07:24 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: ntdll.dll, version: 6.1.7601.17514,
Timestamp: 0x4ce7ba58 Exception Code: 0xc0000005 Error Compensation: 0x00038da9 Error
Process ID: 0xad0 Failing application start time: 0x01cc427f7752d6e6 Failing application
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Module Path: C:\Windows\SysWOW64\ntdll.dll Report ID: 6a2f80fb-ae76-11e0-9c1a-984be19b0753

Error - 07/15/2011 14:23:29 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: Prince of Persia.exe, version: 1.0.0.0,
Timestamp: 0x4bef2f23 Faulting module name: ntdll.dll, version: 6.1.7601.17514,
Timestamp: 0x4ce7ba58 Exception Code: 0xc0000005 Error Compensation: 0x00038da9 Error
Process ID: 0x151c Bad application start time: 0x01cc431ab59ff00b Bad application
caminho: C:\Program Files (x86)\Prince of Persia The Forgotten Sands\Prince of Persia.exe
failed
Module Path: C:\Windows\SysWOW64\ntdll.dll Report ID: 897efbec-af0f-11e0-bc0a-984be19b0753

Error - 07/16/2011 19:07:57 | computer name = owner-hp | origin = service1 | id=0
Description = The service cannot be started. The service process could not connect
the service controller

Error - 07/23/2011 18:29:44 | computer name = owner-hp | Source = Application Error | ID=1000
Description=Faulting application name: Ares.exe, version: 2.1.7.3041, timestamp:
0x2a425e19 Faulting module name: ntdll.dll, version: 6.1.7601.17514, timestamp:
0x4ce7ba58 Exception Code: 0xc0000374 Error Compensation: 0x000ce653 Bad Process ID:
0x1784 Faulting application start time: 0x01cc498433516e47 Faulting application path:
C:\Program Files (x86)\Ares\Ares.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
report
ID: 436a65a1-b57b-11e0-a28b-984be19b0753

Error - 07/26/2011 18:55:52 | computer name = owner-hp | Source = Application Error | ID=1000
Description = Faulting application name: speed.exe, version: 0.0.0.0, timestamp:
0x438e4c8c Faulting module name: speed.exe, version: 0.0.0.0, timestamp: 0x438e4c8c
exception
Code: 0xc0000005 Error Compensation: 0x000549bf Error Process ID: 0x1470 Bad Application
Start Time: 0x01cc4be6a0cd1280 Bad Application Path: C:\Program Files (x86)\EA
GAMES\Need for Speed ​​Most Wanted\speed.exe Pfad des fehlerhaften Moduls: C:\Program Files
(x86)\EA GAMES\Need for Speed ​​​​Most Wanted\speed.exe ID do relation: 692d1535-b7da-11e0-8e62-984be19b0753

[Hewlett-Packard Events]
Error - 06/03/2011 19:05:47 | computer name = owner-hp | Source = Hewlett Packard | id=0
Beschreibung = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\061103070544.xml
File not created by asset agent

[Events Run HP Wireless Assistant]
Error - 06/05/2011 04:36:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:37:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:38:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:39:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:40:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:41:13 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:42:14 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:43:14 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:44:14 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 06/05/2011 04:45:14 | computer name = owner-hp | Source = HP WA Service | id=0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) in System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) in System.Management.ManagementScope.InitializeGuts(Object
o) in System.Management.ManagementScope.Initialize() in System.Management.ManagementObject.Initialize(Boolean
getObject) in System.Management.ManagementBaseObject.get_Properties() in System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) em HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

[system events]
Error - 08/08/2011 12:17:57 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:58 | computer name = owner-hp | Source = DCOM | ID=10005
Description =

Error - 08/08/2011 12:17:58 | computer name = owner-hp | Source = DCOM | ID=10005
Description =

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:17:59 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

Error - 08/08/2011 12:19:28 | computer name = owner-hp | Source = Service Control Manager | ID=7001
Description = The Network List Service depends on Network Location Awareness
The service failed to start due to the following error: %%1068

< end of report >

Edited by SweetTech, Aug 9, 2011 - 9:20 am.

FAQs

Can clicking ads expose your computer to malware? ›

You can fall victim to malware by either clicking on an infected ad or even just by visiting a website that is home to a corrupted ad. This second type of malware attack, known as drive-by downloads, is especially troubling. An infected ad only has to finish loading before it will harm your computer.

What happens when you click adware? ›

Adware, or advertising supported software, is software that displays unwanted advertisements on your computer. Adware programs will tend to serve you pop-up ads, can change your browser's homepage, add spyware and just bombard your device with advertisements.

What type of malware can cause unwanted ads to pop-up on screen? ›

Adware is a form of malware that hides on your device and serves you advertisements. Some adware also monitors your behavior online so it can target you with specific ads.

Can a browser be infected with malware? ›

A browser hijacker is a malware program that modifies web browser settings without the user's permission and redirects the user to websites the user had not intended to visit. It is often called a browser redirect virus because it redirects the browser to other, usually malicious, websites.

How do I know if I have malware on my phone? ›

Signs of malware may show up in the following ways:
  1. Your phone is too slow.
  2. Apps take longer to load.
  3. The battery drains faster than expected.
  4. There are too many pop-up ads.
  5. Your phone has apps that you don't remember downloading.
  6. Unexplained data usage and large phone bills.

How do you know if you have malware on your PC? ›

Here are a few telltale signs that you have malware on your system:
  1. Your computer slows down. ...
  2. Your screen is inundated with annoying ads. ...
  3. Your system crashes. ...
  4. You notice a mysterious loss of disk space. ...
  5. There's a weird increase in your system's Internet activity. ...
  6. Your browser settings change.

What is the difference between malware and adware? ›

Malware is a malicious program that is purposefully designed to harm a device or a network. Adware is a program that contains ads and can collect user activity information for Ads purpose. Malware is always harmful. Adwares are generally safe to use.

How do you know if you have adware? ›

Computer adware infection signs
  1. An unexpected change in your web browser home page.
  2. Web pages that you visit not displaying correctly.
  3. Being overwhelmed with pop-up ads — sometimes even if not browsing the internet.
  4. Slow device performance.
  5. Device crashing.
  6. Reduced internet speeds.
  7. Redirected internet searches.

What problems can adware cause? ›

Adware (or advertising software) is the term used for various pop-up advertisements that show up on your computer or mobile device. Adware has the potential to become malicious and harm your device by slowing it down, hijacking your browser and installing viruses and/or spyware.

How do I get rid of unwanted ads pop-ups and malware? ›

If you're seeing annoying notifications from a website, turn off the permission:
  1. On your Android phone or tablet, open the Chrome app .
  2. Go to a webpage.
  3. To the right of the address bar, tap More Info .
  4. Tap Site settings.
  5. Under "Permissions," tap Notifications. ...
  6. Turn the setting off.

How do I get rid of ad malware? ›

How do I get rid of it?
  1. Uninstall the adware: Click the Start , then go to Settings > Apps > Apps & Features. ...
  2. Reset web browser settings to remove alterations the adware did on your web browsers.
  3. Delete web browser cache and cookies to get rid of remaining files the adware saved on your computer.
Oct 31, 2022

How do I protect my browser from malware? ›

How to prevent malware
  1. Keep your computer and software updated. ...
  2. Use a non-administrator account whenever possible. ...
  3. Think twice before clicking links or downloading anything. ...
  4. Be careful about opening email attachments or images. ...
  5. Don't trust pop-up windows that ask you to download software. ...
  6. Limit your file-sharing.

How can I tell if a website has malware? ›

Visit the SiteCheck website at sitecheck.sucuri.net and click Scan Website. If the site is infected, review the warning message to look for any payloads and locations. You can click More Details at the top to review the iFrames, links, scripts, and embedded objects to identify unfamiliar or suspicious elements.

What if a website has malware? ›

Causes of the "The site ahead contains Malware" error
  1. Step 1: Scan the website. ...
  2. Step 2: Remove the malware. ...
  3. Step 3: Resubmit your website to google. ...
  4. Step 1: Remove the malware. ...
  5. Step 2: Change your passwords and update software. ...
  6. Step 3: Request a malware review. ...
  7. Step 1: Identify the cause for the error.
Sep 1, 2022

How do I find hidden malware on my phone? ›

How to check for malware on Android
  1. Go to the Google Play Store app.
  2. Open the menu button. You can do this by tapping on the three-line icon found in the top-left corner of your screen.
  3. Select Play Protect.
  4. Tap Scan. ...
  5. If your device uncovers harmful apps, it will provide an option for removal.

Can malware Turn off your phone? ›

The malware, which affects Android KitKat and older versions of Google's mobile operating system, basically works by hijacking the device shutdown process.

How can I tell if my phone has spyware and malware? ›

The best way to check for malware on your phone is to use a mobile security app like free AVG Antivirus for Android. Run a scan. After installing AVG Antivirus, open the app and run an antivirus scan to find malware hidden in your device's system.

How can I tell if my computer has spyware or malware? ›

How to detect spyware
  1. Increasing sluggishness and slow response.
  2. Unexpected advertising messages or pop-ups (spyware is often packaged with adware).
  3. New toolbars, search engines and internet home pages that you don't remember installing.
  4. Batteries becoming depleted more quickly than usual.

How I know if my PC is hacked? ›

If your computer is hacked, you might notice some of the following symptoms: Frequent pop-up windows, especially the ones that encourage you to visit unusual sites, or download antivirus or other software. Changes to your home page. Mass emails being sent from your email account.

Can malware go undetected? ›

Malware can go undetected for extended periods of time. Many users are only aware of a malware attack if they receive an antimalware alert, see pop-up ads, are redirected to malicious websites, or experience slow computer speeds or frequent crashes. Malware exploits devices to benefit threat actors.

What are the 3 most common types of malware? ›

Malware comes in many forms but the most common types are: Viruses. Keyloggers. Worms.

How do I get rid of adware on my phone? ›

Remove adware manually
  1. Press and hold the power button.
  2. Press and hold down the Restart or Power Off icon until a new option to reboot in safe mode appears.
  3. Tap on Safe Mode. ...
  4. After restarting your device in Safe Mode, go to Settings > Apps. ...
  5. Tap on the icon of the app you want to remove and select Uninstall.
Nov 30, 2022

Can adware spy on you? ›

Adware may monitor you to sell data to advertisers or serve deceptive malicious ads. Tracking cookie files can be implanted by a website to follow you across the internet. System monitors track any activity on a computer, capturing sensitive data such as keystrokes, sites visited, emails, and more.

What is Fireball adware? ›

Fireball is a browser hijacking malware discovered by the security company Check Point. It takes over target browsers and turns them into zombies.

Can adware steal passwords? ›

Can adware steal passwords? Some adware variants act like spyware. Besides monitoring your browser activity and serving you annoying ads, they steal your personal information like your passwords. Since adware monitors your browser activity, cybercriminals can see your username and password when you login.

What is mobile adware? ›

Mobile adware hijacks certain functions in the device in order to spam the user with unwanted ads. Aside from being annoying and ceaseless, the ads themselves can range from harmless to malicious. The most common method by which adware infects a device is through a malicious app.

How do I get rid of adware and malware for free? ›

The easiest way to remove malware from your computer is to use a free virus removal tool like Avast One that will scan for and remove existing malware, as well as prevent future infections. Avast One is compatible with all devices, so you can scan for, detect, and remove malware on Mac, iPhone, and Android too.

How do I get rid of browser hijacker? ›

How do I get rid of browser hijackers in Chrome? To remove browser hijackers in Chrome, remove any suspicious Google Chrome extensions. Then go to the Chrome settings and restore your browser to the default settings. A better way to protect yourself is to use the CyberGhost Private Browser.

Why is my phone redirecting? ›

Why does my phone redirect to unwanted pages? If your device redirects you to unwanted pages, it's probably because pop-up and redirect permissions are turned on in your browser settings. If they're turned off, your device might have been infected with adware.

How do I find third-party apps on my phone? ›

Go to the Security section of your Google Account. Under “Third-party apps with account access,” select Manage third-party access. Select the app or service you want to review.

Should I disable pop-ups? ›

In general, most pop-ups are a nuisance – they are usually advertisements and can even be malware, and most people would prefer not to see them. As a general rule, you should leave your browser's pop-up blocker turned on to avoid getting these pop-ups.

How do I know what apps are causing problems? ›

Some apps that you download can cause issues with your phone.
...
Find problem apps by rebooting to safe mode on Android
  1. Restarting itself.
  2. Freezing.
  3. Crashing.
  4. Running slow.

Why do I get pop-ups saying I have a virus? ›

Have you ever encountered a suspicious pop-up claiming that you have a virus on your device? Wrongdoers create fake pop-ups to scam people and trick them into paying for alleged security software. Clicking on a malicious pop-up sometimes can even trigger malware download.

Will uninstalling Chrome remove malware? ›

After you uninstall and install Chrome again and log into your Google account, it will restore any settings, extensions, and potentially malware from the cloud backup. So if resetting browser settings and removing extensions didn't help, reinstalling Chrome won't remove malware either.

Why am I suddenly getting pop-ups on Google Chrome? ›

You may be getting pop-ups in Chrome because the pop-up blocker program hasn't been properly configured. Chrome features only two pop-up blocker settings: "Allow all sites to show pop-ups" and "Do not allow any site to show pop-ups (recommended)." The latter option must be selected to block pop-ups.

What is the best way to deal with spyware and web bugs? ›

Removing spyware from your computer

Run a scan with your security software: The scan will help to identify and remove malware. Download and run a virus removal tool: A reputable virus removal tool scans for threats that traditional antivirus software may not detect.

Which browser is the safest from malware? ›

Secure Browsers
  • Firefox. Firefox is a robust browser when it comes to both privacy and security. ...
  • Google Chrome. Google Chrome is a very intuitive internet browser. ...
  • Chromium. Google Chromium is the open-source version of Google Chrome for people who want more control over their browser. ...
  • Brave. ...
  • Tor.

What is malware and how can you prevent it? ›

Malware is software that infects computer systems to damage, disable or exploit the computer or network to: Steal, encrypt or delete sensitive information. Hijack or alter core system functions. Monitor user activity without permission. Extort money.

Can clicking on a website give you malware? ›

Yes, you can get a virus just from visiting a website. These days, it's very easy to be overconfident in our abilities to avoid computer viruses. After all, many of us were told that we simply had to avoid files and programs we didn't recognize. If an email came through that looked fishy, we didn't open them.

Can you get malware from clicking on a website? ›

You can fall victim to malware by either clicking on an infected ad or even just by visiting a website that is home to a corrupted ad. This second type of malware attack, known as drive-by downloads, is especially troubling. An infected ad only has to finish loading before it will harm your computer.

What causes malware in website? ›

Malware is often inserted into a website after a successful brute force attack, Cross-Site Scripting (XSS) attack, or SQL injection attack. It might also be added to your website via a vulnerability in a content management system, theme, or plugin. There are many types of malware including: Spyware.

What happens if you open a hacked website? ›

It could scrape sensitive information or even redirect your computer to even more malicious sites, creating a chain reaction that could impact your life. Another widespread phenomenon is malvertising, which is a form of hacking where an ad – one of any of the billions of ads that are online today – is hijacked.

Can ads contain malware? ›

Malvertising, or malicious advertising, is the use of online, malicious advertisements to spread malware and compromise systems. Generally this occurs through the injection of unwanted or malicious code into ads.

Can you get hacked through ads? ›

Unfortunately, there's also a chance that pop-up you saw is part of a trend for 'malvertising' – where malware makes it into ad networks and are distributed among the network's myriad sites. Even reputable sites can be hijacked without site admins realizing.

Is it safe to click on ads? ›

Ads displayed on the most popular websites are screened thoroughly. If you click an ad and arrive on a page, check that the URL used is the legitimate website for the product you are buying. When it comes to checking out, advertiser pages are encrypted so that your bank details are safe.

Can pop-up ads steal your information? ›

While many pop-ups and emails from reputable companies are safe, the adware programs that generate illegitimate malware pop-ups and malware spam are capable of installing spyware to hijack your browser and capture your personal information.

How do I remove adware from my phone? ›

Remove adware manually
  1. Press and hold the power button.
  2. Press and hold down the Restart or Power Off icon until a new option to reboot in safe mode appears.
  3. Tap on Safe Mode. ...
  4. After restarting your device in Safe Mode, go to Settings > Apps. ...
  5. Tap on the icon of the app you want to remove and select Uninstall.
Nov 30, 2022

How do I know if I have adware? ›

How to tell if you have an adware infection
  1. An unexpected change in your web browser home page.
  2. Web pages that you visit not displaying correctly.
  3. Being overwhelmed with pop-up ads — sometimes even if not browsing the internet.
  4. Slow device performance.
  5. Device crashing.
  6. Reduced internet speeds.
  7. Redirected internet searches.

How do I get rid of unwanted malware ads? ›

If you're seeing annoying notifications from a website, turn off the permission:
  1. On your Android phone or tablet, open the Chrome app .
  2. Go to a webpage.
  3. To the right of the address bar, tap More Info .
  4. Tap Site settings.
  5. Under "Permissions," tap Notifications. ...
  6. Turn the setting off.

What do you dial to see if your phone is hacked? ›

Use the code *#21# to see if hackers track your phone with malicious intent. You can also use this code to verify if your calls, messages, or other data are being diverted. It also shows your diverted information's status and the number to which the information is transferred.

Can someone hack into my phone via Bluetooth? ›

You can use it to share files, play media and more with only a wireless connection. But just like with unsecured Wi-Fi networks, hackers can target your Bluetooth-enabled devices to steal personal data, install malware or spam you with messages.

What are signs that your phone is hacked? ›

How to Know If Someone is Hacking Your Phone
  • Your phone loses charge quickly. Malware and fraudulent apps sometimes use malicious code that tends to drain a lot of power.
  • Your phone runs abnormally slowly. ...
  • You notice strange activity on your other online accounts. ...
  • You notice unfamiliar calls or texts in your logs.

What happens if I click on a pop up ad? ›

This means clicking on a pop-up ad can be dangerous because it could download malware to your device. When hackers create fake website pop-up ads to try and infect your device with malware, it's called malvertising. Some malicious pop-up ads are easy to avoid. You don't click the link or call the phone number.

Why should you not click on pop-ups? ›

Malware - Clicking on pop-ups often allows third-parties to download malicious software on your computer; putting your data at risk.

Is it safe to click on Google ad? ›

Google's proprietary technology and malware detection tools are used to regularly scan all creatives. Fourth-party calls or sub-syndication to any uncertified advertisers or vendors are forbidden. Any ad distributing malware is pulled to protect users from harm.

How do you know if a hacker is watching you? ›

How to know if your camera is hacked
  • Check if the camera indicator light is on. ...
  • Check browser extensions. ...
  • Check known and unknown applications. ...
  • See if your webcam process is running. ...
  • Try running the webcam. ...
  • Look for audio and video recordings. ...
  • Run a malware scan. ...
  • Enable firewall.
Jan 19, 2022

Do ads listen to you? ›

Foremost, our phones listen to us to virtually assist us. That's through voice assistant apps, like Siri and “Hey Google,” but also through personalized advertisements that follow conversations had on them.

Do ads track you? ›

What do advertisers do with my data? Advertisers collect your data so that they can target you when other companies pay them to do so. Facebook and other advertisers offer what's called retargeting services, which means they track products you came close to buying but left in your shopping cart instead.

References

Top Articles
Latest Posts
Article information

Author: Cheryll Lueilwitz

Last Updated: 02/01/2024

Views: 5983

Rating: 4.3 / 5 (74 voted)

Reviews: 89% of readers found this page helpful

Author information

Name: Cheryll Lueilwitz

Birthday: 1997-12-23

Address: 4653 O'Kon Hill, Lake Juanstad, AR 65469

Phone: +494124489301

Job: Marketing Representative

Hobby: Reading, Ice skating, Foraging, BASE jumping, Hiking, Skateboarding, Kayaking

Introduction: My name is Cheryll Lueilwitz, I am a sparkling, clean, super, lucky, joyous, outstanding, lucky person who loves writing and wants to share my knowledge and understanding with you.