spero di aver fatto giusto, non vorrei ti alterassi di nuovo...
se fosse possibile vorrei sapere qualcosa di più sulla procedura che ho appena fatto seguendo le tue indicazioni. Grazie
OTL logfile created on: 13/07/2013 23:44:04 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Franco\Desktop\Security programs 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16635) Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy 3,75 Gb Total Physical Memory | 2,33 Gb Available Physical Memory | 62,10% Memory free 7,50 Gb Paging File | 5,93 Gb Available in Paging File | 79,10% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 465,66 Gb Total Space | 345,29 Gb Free Space | 74,15% Space Free | Partition Type: NTFS Drive D: | 189,92 Gb Total Space | 99,19 Gb Free Space | 52,23% Space Free | Partition Type: NTFS Drive I: | 931,51 Gb Total Space | 317,90 Gb Free Space | 34,13% Space Free | Partition Type: NTFS Computer Name: FRANCO-PC | User Name: Franco | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days
========== Processes (SafeList) ========== PRC - C:\Users\Franco\Desktop\Security programs\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe (Google Inc.) PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) PRC - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe (Freemake) PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung) PRC - C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Sun Microsystems, Inc.) PRC - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (MAGIX AG) PRC - C:\Windows\SysWOW64\schtasks.exe (Microsoft Corporation) PRC - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
========== Modules (No Company Name) ========== ========== Services (SafeList) ========== SRV:
64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Akamai) -- c:\program files (x86)\common files\akamai/netsession_win_8fa3539.dll () SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies) SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) SRV - (Freemake Improver) -- C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe (Freemake) SRV - (NisSrv) -- C:\Programmi\Microsoft Security Client\NisSrv.exe (Microsoft Corporation) SRV - (MsMpSvc) -- C:\Programmi\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (ServUpdater) -- C:\Users\Franco\AppData\Local\ServUpdater\ServiceUpd.exe (ServiceUpd) SRV - (FLEXnet Licensing Service 64) -- C:\Programmi\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Acresso Software Inc.) SRV - (Fabs) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (MAGIX AG) SRV - (FirebirdServerMAGIXInstance) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe (MAGIX®) SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.) SRV - (wlidsvc) -- C:\Programmi\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) SRV - (MSCamSvc) -- C:\Programmi\Microsoft LifeCam\MSCamS64.exe (Microsoft Corporation) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (TeamViewer5) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (Adobe Version Cue CS4) -- C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe (Adobe Systems Incorporated)
========== Driver Services (SafeList) ========== DRV:
64bit: - (usb_rndisx) -- C:\Windows\SysNative\drivers\usb8023x.sys (Microsoft Corporation) DRV:
64bit: - (dc3d) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation) DRV:
64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation) DRV:
64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation) DRV:
64bit: - (NuidFltr) -- C:\Windows\SysNative\drivers\nuidfltr.sys (Microsoft Corporation) DRV:
64bit: - (grmnusb) -- C:\Windows\SysNative\drivers\grmnusb.sys (GARMIN Corp.) DRV:
64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:
64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys () DRV:
64bit: - (sscdmdm) -- C:\Windows\SysNative\drivers\sscdmdm.sys (MCCI Corporation) DRV:
64bit: - (sscdbus) -- C:\Windows\SysNative\drivers\sscdbus.sys (MCCI Corporation) DRV:
64bit: - (sscdmdfl) -- C:\Windows\SysNative\drivers\sscdmdfl.sys (MCCI Corporation) DRV:
64bit: - (ssadmdm) -- C:\Windows\SysNative\drivers\ssadmdm.sys (MCCI Corporation) DRV:
64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation) DRV:
64bit: - (ssadserd) -- C:\Windows\SysNative\drivers\ssadserd.sys (MCCI Corporation) DRV:
64bit: - (androidusb) -- C:\Windows\SysNative\drivers\ssadadb.sys (Google Inc) DRV:
64bit: - (ssadmdfl) -- C:\Windows\SysNative\drivers\ssadmdfl.sys (MCCI Corporation) DRV:
64bit: - (pcouffin) -- C:\Windows\SysNative\drivers\pcouffin.sys (VSO Software) DRV:
64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:
64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:
64bit: - (MSHUSBVideo) -- C:\Windows\SysNative\drivers\nx6000.sys (Microsoft Corporation) DRV:
64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:
64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:
64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation) DRV:
64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:
64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:
64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:
64bit: - (NVENETFD) -- C:\Windows\SysNative\drivers\nvm62x64.sys (NVIDIA Corporation) DRV:
64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:
64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:
64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:
64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:
64bit: - (adfs) -- C:\Windows\SysNative\drivers\adfs.sys (Adobe Systems, Inc.) DRV:
64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions) DRV:
64bit: - (MarvinBus) -- C:\Windows\SysNative\drivers\MarvinBus64.sys (Pinnacle Systems GmbH) DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) DRV - (adfs) -- C:\Windows\SysWow64\drivers\adfs.sys (Adobe Systems, Inc.) DRV - (Winsock) -- C:\Windows\SysWow64\WINSOCK.SRG ()
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:
64bit: - HKLM\..\SearchScopes,DefaultScope = IE:
64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{1}: "URL" =
http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://search.findeer.com IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://search.findeer.com IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://search.findeer.com IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://search.findeer.com IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
https://www.google.it/ IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
http://it.msn.com/?ocid=iehp IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = it IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 72 EA 5B 33 D7 BA CB 01 [binary data] IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\..\SearchScopes\{1}: "URL" =
http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\..\SearchScopes\{FDA59469-3994-4982-8901-5D71B47363C6}: "URL" =
http://websearch.ask.com/redirect?client=ie&tb=ATU2&o=14670&src=crm&q={searchTerms}&locale=it_IT&apn_ptnrs=T8&apn_dtid=YYYYYYYYIT&apn_uid=534c3324-295b-48d2-8363-a6ed8761c955&apn_sauid=2A4215CA-8DF7-40E4-AC22-CB6C714824C4 IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-4123084632-688972477-1034230574-1003\..\SearchScopes,DefaultScope =
========== FireFox ========== FF - prefs.js..extensions.enabledAddons: ffxtlbr%40delta.com:1.5.0 FF - prefs.js..extensions.enabledAddons: fmconverter%40gmail.com:1.0.0 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:22.0 FF - user.js - File not found FF:
64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found FF:
64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF:
64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.15.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\emoticoons-toolbar@emoticoons.com: C:\Users\Public\Documents\Emoticoons\emoticoons-toolbar@emoticoons.com [2012/06/16 08:20:50 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fmconverter@gmail.com: C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [2013/02/11 21:41:18 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/07/06 21:36:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/07/06 21:36:30 | 000,000,000 | ---D | M] [2012/07/24 15:11:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Franco\AppData\Roaming\mozilla\Extensions [2012/06/16 08:20:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Franco\AppData\Roaming\mozilla\Extensions\home2@tomtom.com [2013/07/13 19:44:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Franco\AppData\Roaming\mozilla\Firefox\Profiles\4khbqgfk.default\extensions [2013/05/01 17:18:15 | 000,006,549 | ---- | M] () -- C:\Users\Franco\AppData\Roaming\mozilla\firefox\profiles\4khbqgfk.default\searchplugins\babylon.xml [2013/02/28 23:54:56 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions [2013/07/06 21:27:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions [2013/07/06 21:27:45 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013/02/11 21:41:18 | 000,000,000 | ---D | M] (Freemake Video Converter Plugin) -- C:\PROGRAM FILES (X86)\FREEMAKE\FREEMAKE VIDEO CONVERTER\BROWSERPLUGIN\FIREFOX File not found (No name found) -- C:\USERS\FRANCO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4KHBQGFK.DEFAULT\EXTENSIONS\FFXTLBR@DELTA.COM [2011/01/24 20:04:52 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
========== Chrome ========== CHR - default_search_provider: () CHR - default_search_provider: search_url = CHR - default_search_provider: suggest_url = CHR - homepage:
http://search.babylon.com/?affID=120860&tl=gpn46314&tt=190313_wo3&babsrc=HP_ss_din2g&mntrId=84AD001966A79E15 CHR - Extension: No name found = C:\Users\Franco\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj\1.0.0_0\ CHR - Extension: No name found = C:\Users\Franco\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncapomajoehhoogiooemilfafoicepmc\4.0.1938.5_0\ Hosts file not found O2:
64bit: - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitBHO64.dll (TechSmith Corporation) O2:
64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2:
64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3:
64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3:
64bit: - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitIEAddin64.dll (TechSmith Corporation) O3:
64bit: - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O4:
64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:
64bit: - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Microsoft Corporation) O4:
64bit: - HKLM..\Run: [IntelliType Pro] c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation) O4:
64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [CompeGPSDev] File not found O4 - HKLM..\Run: [LifeCam] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-4123084632-688972477-1034230574-1000..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung) O4 - HKU\S-1-5-21-4123084632-688972477-1034230574-1000..\Run: [AdobeBridge] File not found O4 - HKU\S-1-5-21-4123084632-688972477-1034230574-1003..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-21-4123084632-688972477-1034230574-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKU\S-1-5-21-4123084632-688972477-1034230574-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8:
64bit: - Extra context menu item: Aggiungi destinazione link a PDF esistente - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html File not found O8 - Extra context menu item: Aggiungi destinazione link a PDF esistente - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html File not found O10:
64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Programmi\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:
64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Programmi\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:
64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Programmi\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O13
64bit: - gopher Prefix: missing O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{37B1029D-FCA0-4F1E-BE36-88453DD33953}: NameServer = 8.8.8.8,8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{452F9384-062F-4F26-BD94-EA30129BE214}: NameServer = 8.8.8.8,8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}: NameServer = 8.8.8.8,8.8.4.4 O18:
64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:
64bit: - Protocol\Handler\livecall - No CLSID value found O18:
64bit: - Protocol\Handler\ms-help - No CLSID value found O18:
64bit: - Protocol\Handler\msnim - No CLSID value found O18:
64bit: - Protocol\Handler\skype4com - No CLSID value found O18:
64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll File not found O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll File not found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18:
64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programmi\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - AppInit_DLLs: (c:\progra~3\browse~1\261339~1.144\{c16c1~1\browse~1.dll) - File not found O20:
64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:
64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O21:
64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{e901afab-8c62-11e0-b617-001966a79e15}\Shell - "" = AutoRun O33 - MountPoints2\{e901afab-8c62-11e0-b617-001966a79e15}\Shell\AutoRun\command - "" = H:\LaunchU3.exe O33 - MountPoints2\L\Shell - "" = AutoRun O33 - MountPoints2\L\Shell\AutoRun\command - "" = L:\LaunchU3.exe -a O34 - HKLM BootExecute: (autocheck autochk *) O35:
64bit: - HKLM\..comfile [open] -- "%1" %* O35:
64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:
64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:
64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 60 Days ========== [2013/07/13 11:04:58 | 000,000,000 | ---D | C] -- C:\ProgramData\CompeGPSDownloader [2013/07/13 11:04:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CompeGPSDownloader [2013/07/11 14:44:55 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013/07/11 14:44:54 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013/07/11 14:44:53 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013/07/11 14:44:53 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2013/07/11 14:44:52 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2013/07/11 14:44:52 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2013/07/11 14:44:52 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe [2013/07/11 14:44:52 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe [2013/07/11 14:44:52 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013/07/11 14:44:52 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013/07/11 14:44:52 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2013/07/11 14:44:50 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013/07/11 14:44:49 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013/07/11 14:44:49 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013/07/11 14:44:48 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013/07/11 10:11:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Pixelgarde [2013/07/11 10:11:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pixelgarde [2013/07/11 09:24:21 | 001,887,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL [2013/07/11 09:24:21 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll [2013/07/11 09:24:21 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll [2013/07/11 09:24:20 | 001,620,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL [2013/07/11 09:23:54 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll [2013/06/17 16:39:17 | 000,163,328 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerUpdateService.exe [2013/06/14 20:47:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP3 to SWF Converter [2013/06/14 20:47:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HooTech MP3 to SWF Converter [2013/06/12 15:48:14 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll [2013/06/12 15:48:13 | 000,492,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll [2013/06/12 15:48:09 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll [2013/06/12 15:48:09 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll [2013/06/12 15:47:51 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll [2013/06/12 15:47:48 | 001,464,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll [2013/06/12 15:47:48 | 001,192,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe [2013/06/12 15:47:48 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe [2013/06/12 15:47:47 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll [2013/06/12 15:47:46 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certenc.dll [2013/06/12 15:47:46 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certenc.dll [2013/06/12 15:47:20 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll [2013/06/12 15:47:20 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll [2013/05/25 13:39:24 | 001,054,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe [2013/05/25 13:39:24 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll [2013/05/25 13:39:24 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll [2013/05/25 13:39:23 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll [2013/05/25 13:39:23 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll [2013/05/25 13:39:23 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe [2013/05/25 13:39:23 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe [2013/05/25 13:39:23 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll [2013/05/25 13:39:23 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013/05/25 13:39:23 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll [2013/05/25 13:39:22 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013/05/25 13:39:22 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll [2013/05/25 13:39:22 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2013/05/25 13:39:22 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll [2013/05/25 13:39:22 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe [2013/05/25 13:39:22 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll [2013/05/25 13:39:22 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2013/05/25 13:39:21 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013/05/25 13:39:21 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat [2013/05/25 13:39:21 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2013/05/25 13:39:21 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2013/05/25 13:39:21 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013/05/25 13:39:21 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll [2013/05/25 13:39:21 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx [2013/05/25 13:39:21 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2013/05/25 13:39:20 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat [2013/05/25 13:39:20 | 000,905,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll [2013/05/25 13:39:20 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2013/05/25 13:39:20 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll [2013/05/25 13:39:20 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2013/05/25 13:39:20 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll [2013/05/25 13:39:20 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013/05/25 13:39:20 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll [2013/05/25 13:39:20 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll [2013/05/25 13:39:20 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll [2013/05/25 13:39:19 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013/05/25 13:39:19 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013/05/25 13:39:19 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013/05/25 13:39:19 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe [2013/05/25 13:39:19 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll [2013/05/25 13:39:19 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe [2013/05/25 13:39:19 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2013/05/25 13:39:19 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll [2013/05/25 13:39:19 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll [2013/05/25 13:39:19 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013/05/25 13:39:19 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll [2013/05/25 13:39:19 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll [2013/05/25 13:39:19 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2013/05/25 13:39:19 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe [2013/05/25 13:39:19 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2013/05/25 13:39:18 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe [2013/05/25 13:39:18 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx [2013/05/25 13:39:18 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll [2013/05/15 13:25:27 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys [2013/05/15 13:25:27 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll [2013/05/15 13:25:15 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll [2013/05/15 13:25:15 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll [2013/05/15 13:25:14 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll [2013/05/15 13:25:14 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe [2013/05/15 13:25:02 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll [2011/05/04 23:20:06 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\Franco\AppData\Roaming\pcouffin.sys
========== Files - Modified Within 60 Days ========== [2013/07/13 23:38:33 | 000,016,848 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013/07/13 23:38:33 | 000,016,848 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013/07/13 23:38:01 | 000,000,978 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013/07/13 23:32:57 | 000,001,146 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013/07/13 23:32:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013/07/13 23:32:29 | 3019,350,016 | -HS- | M] () -- C:\hiberfil.sys [2013/07/13 20:07:00 | 000,001,150 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013/07/13 11:04:56 | 000,000,994 | ---- | M] () -- C:\Users\Franco\Desktop\CompeGPS LAND.lnk [2013/07/12 20:04:50 | 001,562,176 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013/07/12 20:04:50 | 000,705,650 | ---- | M] () -- C:\Windows\SysNative\perfh010.dat [2013/07/12 20:04:50 | 000,623,078 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013/07/12 20:04:50 | 000,130,860 | ---- | M] () -- C:\Windows\SysNative\perfc010.dat [2013/07/12 20:04:50 | 000,109,200 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013/07/11 16:57:30 | 005,168,280 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013/07/10 11:23:07 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI [2013/07/06 19:35:43 | 000,001,287 | ---- | M] () -- C:\Users\Franco\Desktop\Freemake Video Converter.lnk [2013/07/02 11:03:48 | 000,001,246 | ---- | M] () -- C:\Users\Franco\Desktop\Microsoft Gif Animator.lnk [2013/06/22 23:17:34 | 000,036,352 | ---- | M] () -- C:\Windows\SysWow64\COMDLG32.oca [2013/06/14 20:47:07 | 000,001,003 | ---- | M] () -- C:\Users\Public\Desktop\MP3 to SWF Converter.lnk [2013/06/12 11:41:56 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013/06/12 11:41:56 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013/06/12 01:43:00 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013/06/12 01:42:58 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013/06/12 01:42:58 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2013/06/12 01:42:58 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2013/06/12 01:42:58 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2013/06/12 01:26:36 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013/06/12 01:25:29 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013/06/12 01:25:16 | 003,958,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013/06/12 01:25:16 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013/06/12 01:25:13 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013/06/12 01:25:13 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2013/06/12 01:25:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013/06/12 01:25:13 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013/06/12 00:51:45 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe [2013/06/12 00:50:58 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe [2013/06/09 12:36:33 | 000,001,227 | ---- | M] () -- C:\Users\Franco\Desktop\Agenda ritrovamenti.exe - collegamento.lnk [2013/06/09 12:32:35 | 000,063,488 | ---- | M] () -- C:\Windows\SysWow64\DBGRID32.oca [2013/06/04 08:00:13 | 000,624,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll [2013/06/04 06:53:07 | 000,509,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll [2013/05/28 15:05:16 | 000,163,328 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerUpdateService.exe [2013/05/25 13:39:24 | 001,054,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe [2013/05/25 13:39:24 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll [2013/05/25 13:39:24 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll [2013/05/25 13:39:23 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll [2013/05/25 13:39:23 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll [2013/05/25 13:39:23 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe [2013/05/25 13:39:23 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe [2013/05/25 13:39:23 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll [2013/05/25 13:39:23 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013/05/25 13:39:23 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll [2013/05/25 13:39:22 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013/05/25 13:39:22 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll [2013/05/25 13:39:22 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2013/05/25 13:39:22 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll [2013/05/25 13:39:22 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe [2013/05/25 13:39:22 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx [2013/05/25 13:39:22 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll [2013/05/25 13:39:22 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2013/05/25 13:39:21 | 001,441,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013/05/25 13:39:21 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat [2013/05/25 13:39:21 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2013/05/25 13:39:21 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2013/05/25 13:39:21 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013/05/25 13:39:21 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll [2013/05/25 13:39:21 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll [2013/05/25 13:39:21 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf [2013/05/25 13:39:21 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2013/05/25 13:39:20 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat [2013/05/25 13:39:20 | 000,905,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll [2013/05/25 13:39:20 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2013/05/25 13:39:20 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll [2013/05/25 13:39:20 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2013/05/25 13:39:20 | 000,281,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll [2013/05/25 13:39:20 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013/05/25 13:39:20 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll [2013/05/25 13:39:20 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll [2013/05/25 13:39:20 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf [2013/05/25 13:39:19 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013/05/25 13:39:19 | 000,599,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013/05/25 13:39:19 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013/05/25 13:39:19 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe [2013/05/25 13:39:19 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll [2013/05/25 13:39:19 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe [2013/05/25 13:39:19 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2013/05/25 13:39:19 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll [2013/05/25 13:39:19 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll [2013/05/25 13:39:19 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013/05/25 13:39:19 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll [2013/05/25 13:39:19 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll [2013/05/25 13:39:19 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2013/05/25 13:39:19 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe [2013/05/25 13:39:19 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2013/05/25 13:39:18 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe [2013/05/25 13:39:18 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx [2013/05/25 13:39:18 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
========== Files Created - No Company Name ========== [2013/07/13 11:04:56 | 000,000,994 | ---- | C] () -- C:\Users\Franco\Desktop\CompeGPS LAND.lnk [2013/07/06 19:35:43 | 000,001,287 | ---- | C] () -- C:\Users\Franco\Desktop\Freemake Video Converter.lnk [2013/07/02 11:03:48 | 000,001,246 | ---- | C] () -- C:\Users\Franco\Desktop\Microsoft Gif Animator.lnk [2013/06/14 20:47:07 | 000,001,003 | ---- | C] () -- C:\Users\Public\Desktop\MP3 to SWF Converter.lnk [2013/06/09 12:36:33 | 000,001,227 | ---- | C] () -- C:\Users\Franco\Desktop\Agenda ritrovamenti.exe - collegamento.lnk [2013/05/25 13:39:21 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf [2013/05/25 13:39:20 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf [2013/04/13 16:30:37 | 000,004,093 | ---- | C] () -- C:\Users\Franco\.recently-used.xbel [2013/03/24 14:32:27 | 000,268,800 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat [2012/05/06 15:55:23 | 000,009,816 | ---- | C] () -- C:\Users\Franco\AppData\Local\recently-used.xbel [2012/03/26 22:46:15 | 000,000,008 | ---- | C] () -- C:\Windows\SysWow64\PROTOCOL.INI [2011/11/29 17:38:18 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe [2011/11/29 17:38:12 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll [2011/11/29 17:38:12 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll [2011/11/29 17:38:12 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll [2011/11/29 17:38:12 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll [2011/11/13 22:21:15 | 000,000,028 | ---- | C] () -- C:\Windows\Robota.INI [2011/09/23 14:08:38 | 000,000,165 | -HS- | C] () -- C:\ProgramData\.zreglib [2011/05/04 23:20:06 | 000,099,384 | ---- | C] () -- C:\Users\Franco\AppData\Roaming\inst.exe [2011/05/04 23:20:06 | 000,007,859 | ---- | C] () -- C:\Users\Franco\AppData\Roaming\pcouffin.cat [2011/05/04 23:20:06 | 000,001,167 | ---- | C] () -- C:\Users\Franco\AppData\Roaming\pcouffin.inf [2011/01/24 23:14:04 | 000,208,896 | ---- | C] () -- C:\Users\Franco\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
========== ZeroAccess Check ========== [2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ========== [2011/09/24 09:39:55 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\AnvSoft [2013/07/10 11:50:15 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Applian FLV and Media Player [2013/06/14 20:35:50 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Audacity [2012/07/20 15:14:18 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Bradsoft.com [2011/01/23 12:59:05 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Canneverbe Limited [2011/04/11 21:31:04 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 [2012/01/26 19:42:40 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\DAEMON Tools Lite [2011/01/24 20:10:33 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Digipeeks [2012/08/06 14:53:12 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Dropbox [2011/12/16 14:49:31 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\DVDFab [2012/06/16 08:23:25 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\EmoticoonsToolbar [2011/11/26 11:48:28 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\EurekaLog [2012/07/17 21:00:28 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\firstobject [2012/07/24 15:11:35 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\FreeBurner [2012/06/27 10:58:43 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\FreeVideoConverter [2011/03/26 15:20:17 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\GARMIN [2011/04/17 13:24:17 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\GianPaoloSaliola [2011/03/31 15:48:38 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\GPS Utility [2012/06/16 08:23:25 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\IEToolbar [2012/12/20 13:01:32 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\ImTOO [2012/05/06 16:00:12 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\inkscape [2012/11/04 10:55:45 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\IrfanView [2012/12/20 12:53:31 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\iSpring Solutions [2012/11/18 10:17:17 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Jasc [2011/01/27 23:35:57 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Kristanix Software [2012/02/02 22:54:07 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\MAGIX [2013/02/24 15:59:29 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\ObviousIdea [2013/01/21 20:29:45 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\PhotoFiltre Studio X [2012/02/10 10:24:46 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\proDAD [2012/09/13 15:48:12 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Samsung [2011/03/22 18:02:23 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\SmartDraw [2013/04/07 18:30:50 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\TeamViewer [2013/02/16 11:43:16 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\TechSmith [2012/04/19 14:44:32 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Temp [2012/06/16 08:20:47 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\TomTom [2013/06/26 19:36:49 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\VideoReDoPlus [2011/05/04 23:42:57 | 000,000,000 | ---D | M] -- C:\Users\Franco\AppData\Roaming\Vso
========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 72 bytes -> C:\Windows:A138BF979CD02024 @Alternate Data Stream - 191 bytes -> C:\ProgramData\TEMP:0888F409 @Alternate Data Stream - 163 bytes -> C:\ProgramData\TEMP:FB1B13D8 @Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:5F64C164 @Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:806222FC @Alternate Data Stream - 105 bytes -> C:\ProgramData\TEMP:054B9966 < End of report >
OTL Extras logfile created on: 13/07/2013 23:44:04 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Franco\Desktop\Security programs 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16635) Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy 3,75 Gb Total Physical Memory | 2,33 Gb Available Physical Memory | 62,10% Memory free 7,50 Gb Paging File | 5,93 Gb Available in Paging File | 79,10% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 465,66 Gb Total Space | 345,29 Gb Free Space | 74,15% Space Free | Partition Type: NTFS Drive D: | 189,92 Gb Total Space | 99,19 Gb Free Space | 52,23% Space Free | Partition Type: NTFS Drive I: | 931,51 Gb Total Space | 317,90 Gb Free Space | 34,13% Space Free | Partition Type: NTFS Computer Name: FRANCO-PC | User Name: Franco | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days
========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-4123084632-688972477-1034230574-1000\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) jsfile [edit] -- "C:\Program Files (x86)\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1" (Macromedia, Inc.) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- "C:\Users\Franco\AppData\Roaming\File Scout\filescout.exe" /open "%1" Directory [AddToPlaylistApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --playlist-enqueue "%1" () Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan) Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) jsfile [edit] -- "C:\Program Files (x86)\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1" (Macromedia, Inc.) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- "C:\Users\Franco\AppData\Roaming\File Scout\filescout.exe" /open "%1" Directory [AddToPlaylistApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --playlist-enqueue "%1" () Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan) Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1
========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{011961EC-8357-4226-9C63-B8150F7A0E59}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe | "{0D3B5E59-FACE-410C-BAF5-E913E4F66B9E}" = rport=137 | protocol=17 | dir=out | app=system | "{20F3DA9D-6CE5-48EA-9290-5320E7C0F9F7}" = lport=49169 | protocol=6 | dir=in | name=akamai netsession interface | "{2124AC55-3083-4A7B-8A65-94EE4101BF6D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{23DD0EC1-220C-4924-99B0-A5E367417AFA}" = lport=137 | protocol=17 | dir=in | app=system | "{26538979-F299-4366-802E-0E69C5DDD893}" = rport=445 | protocol=6 | dir=out | app=system | "{2ECEE0A7-FB13-457C-86B4-23FB1BED69AF}" = lport=51001 | protocol=6 | dir=in | name=adobe version cue cs4 server | "{3E4DE3F6-7CE1-4837-A67F-F99D39CCD1BC}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{4112F668-28DC-472D-BDFD-8185DA5CC7FE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{4DD04C5F-67A8-4CED-9A9D-03D5CB641B40}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 | "{4F10DB9D-BFDB-4829-B376-E7E281E22B4F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{52A662A4-100D-4079-9B99-5C7827A0CE4E}" = lport=445 | protocol=6 | dir=in | app=system | "{5D2A989F-163F-431D-8598-0CF109D1C839}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{703D15D5-82DC-4637-8645-8CBA4FD22C79}" = lport=3703 | protocol=6 | dir=in | name=adobe version cue cs4 server | "{738CF798-2B5B-4CAE-B772-86D0D60F1810}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{7BF9495D-850C-45DC-848C-2F89E6563CC5}" = lport=139 | protocol=6 | dir=in | app=system | "{84048E46-A0E2-437C-94FC-7BE4F459E126}" = lport=2869 | protocol=6 | dir=in | app=system | "{8954C089-71E5-4048-97EB-B4406181FB9C}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{8C5E0218-D433-4646-A294-CA4CA196F919}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{8F58396C-8204-4E02-B591-8644038A6AC3}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{962059BC-8A16-4621-B6EC-7BC7149F8453}" = rport=139 | protocol=6 | dir=out | app=system | "{AAA881D4-156D-4C66-9736-FC48242DB9FB}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{AD2C55E2-E11F-414E-89EF-FB048006FCCB}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{AE04B2AE-D30D-4CB8-AF12-76D57A80B0DD}" = rport=138 | protocol=17 | dir=out | app=system | "{BC560BC8-37B0-4AD7-A38A-FBB63243CF60}" = lport=138 | protocol=17 | dir=in | app=system | "{C67FB375-A9E1-4578-98E1-1EAF10764916}" = lport=51000 | protocol=6 | dir=in | name=adobe version cue cs4 server | "{C7076D36-6CD2-4A17-A8C4-0F7B6C07705E}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | "{CB5AB5FE-C470-41C2-9806-50A9828D87BF}" = rport=10243 | protocol=6 | dir=out | app=system | "{CCE8994C-223C-4C11-9238-641FF0BC1D9B}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface | "{D9EFCCBA-65CD-4E77-A1A7-1AD8BA0C0D59}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{DACA3635-3CF6-499C-94CA-73D3FBC6FE8C}" = lport=3704 | protocol=6 | dir=in | name=adobe version cue cs4 server | "{E228341C-95F5-4BCA-B210-FF187E09E151}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{F8486F18-4EEA-48BD-A780-24809EF59289}" = lport=10243 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0377F7C4-C813-40C9-A0A3-0246600BF1DD}" = protocol=6 | dir=out | app=system | "{059F69C0-307E-41FD-A950-BFECF5CC878F}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\adobe\adobe version cue cs4\server\bin\versioncuecs4.exe | "{0F3FECFD-89EB-4204-B387-B53C811221DB}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{0FE38C39-BB7A-4B36-8C41-814579CD7115}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe | "{17C07033-83FE-4E67-AB40-6E63F7E2E993}" = protocol=17 | dir=in | app=c:\windows\syswow64\muzapp.exe | "{1B3D1ED1-1620-4F76-8F2E-4DBC9F5E5531}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{1EA55346-4C9C-4580-9873-874BB701048C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{27F5600B-3370-4E46-8728-6606A56FB67F}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe | "{2C0FF341-B4E0-43B2-AD89-083344576CC5}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{3056386A-5236-4096-A8AD-8AFAD0D55E67}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe | "{384B35A8-9735-4397-8B12-76D799DAA548}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{3A19F8D4-4CF3-442B-BA49-96701D69A83A}" = protocol=17 | dir=in | app=c:\program files\hp\hp deskjet 3050 j610 series\bin\hpnetworkcommunicator.exe | "{3B4B5D62-BD81-4746-BBD0-05E42BC5CB3E}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\rm.exe | "{43608BA3-176F-4BEE-A57C-010B491A64B0}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | "{4A0CDA74-8F12-4810-B261-00D0D86E5AC2}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{5198C740-E7EF-4B3B-92E4-D458BFE885F2}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{590724C8-CC0C-42B5-8213-B31D81745C78}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe | "{5FF9E208-FC04-4A5A-9C37-CA0A12160B19}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\umi.exe | "{6A05DC9D-B327-4EAB-A9F0-C2DB99E21A09}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{6A9E6133-E689-4E0D-B45E-2F9429C47738}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{7704BBF3-2648-47F4-8A46-C98850AE6FCC}" = protocol=17 | dir=in | app=c:\program files\hp\hp deskjet 3050 j610 series\bin\devicesetup.exe | "{77E97256-EA1F-480E-9C26-E0414EC1850B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{78A49C07-063D-44E8-B5CA-B688E86CF8CA}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\adobe\adobe version cue cs4\server\bin\versioncuecs4.exe | "{88E3F1C1-1E88-4B11-89FA-C9662D036D01}" = protocol=6 | dir=in | app=c:\program files\hp\hp deskjet 3050 j610 series\bin\devicesetup.exe | "{8DF0B19B-9B66-435B-8183-2BA21F0E2F47}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe | "{9193085E-31BA-4885-9F23-891FFA1B2E9C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{96851B68-7EFD-444E-97B1-F597C7E9CA15}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{9D1CAF00-18A7-4249-9E82-81A671382C72}" = protocol=6 | dir=in | app=c:\program files\hp\hp deskjet 3050 j610 series\bin\hpnetworkcommunicator.exe | "{9E0FA4F3-7A41-43E5-8112-0E31817F18A2}" = protocol=6 | dir=in | app=c:\windows\syswow64\muzapp.exe | "{A721A1D8-3EA7-40EA-B50F-8E863E9728E9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{ABA5E61A-272C-461E-B05F-897748CC0A1B}" = dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe | "{AC4B486D-7B89-4943-9AF1-6E7F25629878}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\umi.exe | "{B15166A7-46A6-4247-8EA2-D8B1F7677A43}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{B8C304D4-D65E-42EF-8112-1E7E9AA0D372}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\rm.exe | "{B94D0EF5-A1BD-4201-AE1B-C446078A2CFF}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe | "{C1CB4336-0A9D-4FFF-BD11-99F1873B53C8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{CD042CA9-7186-4BF9-880F-74BFC85DB67C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{CFDA8813-DD63-4F2C-A7E9-C2AB925F7582}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe | "{D03071AE-7A9B-4BE7-8ED5-2D8BA81AC46B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{DF7F0D07-155A-4CCA-B65D-9415AE5D5C0E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{E0371A42-EB39-49D1-AECE-9783F38FB24F}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe | "{F9D049A8-DF07-4AE4-B3CD-AB86179C9E25}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | "{F9E0FDDB-2F03-47E0-9C10-EC572A6BBD70}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "TCP Query User{0203C32F-B646-4298-B7D2-717FA0A82F2A}C:\program files (x86)\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files (x86)\emule\emule.exe | "TCP Query User{1CB56D1A-186A-4D3A-8CFE-ADCB62547273}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe | "TCP Query User{AB93121D-40CA-4018-94BF-8C23E1661886}C:\users\franco\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\franco\appdata\local\akamai\netsession_win.exe | "TCP Query User{B0BF35A5-E12D-49C4-BEE6-9B3ADBFF7D72}C:\users\franco\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\franco\appdata\local\akamai\netsession_win.exe | "TCP Query User{B1A4A32E-9F2E-4D05-922D-B8512F558144}C:\program files (x86)\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files (x86)\emule\emule.exe | "UDP Query User{14DBA60D-C22C-4315-A497-D3463EAA65F0}C:\program files (x86)\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files (x86)\emule\emule.exe | "UDP Query User{2250AA4C-55F4-4A65-A27A-CCCB77CC49DA}C:\users\franco\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\franco\appdata\local\akamai\netsession_win.exe | "UDP Query User{7BBD7955-9A7D-4078-97C9-0F3616BCC8AC}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe | "UDP Query User{D159D4E9-6CBF-410B-8B61-4954A8C52979}C:\program files (x86)\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files (x86)\emule\emule.exe | "UDP Query User{FDE22133-60B7-40DC-9E25-01D561F3B3B7}C:\users\franco\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\franco\appdata\local\akamai\netsession_win.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector "{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant "{1E520158-4E94-44C9-98B7-C46D822DAE66}" = Software di base della periferica HP Deskjet 3050 J610 series "{1ECAF2BC-6131-412F-87AE-A1D1955840D6}" = GlobalMapper 13 (64-bit) "{25B473DB-CC8D-384A-ACE7-7CFB119B7E03}" = Microsoft .NET Framework 4 Client Profile ITA Language Pack "{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64 "{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64 "{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support "{5CE7E3F5-9803-4F32-AA89-2D8848A80109}" = Microsoft LifeCam "{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64 "{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Driver Pinnacle Video "{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour "{7462E859-C453-4E08-BE0D-7D5E13E4CD1F}" = Microsoft Antimalware Service IT-IT Language Pack "{7AB6F8D7-7804-4662-BE8C-1AFCCD602D9F}" = Centro gestione Mouse e Tastiere Microsoft "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64 "{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4 "{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64 "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-0410-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Italian) 2007 "{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4 "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{9C5A08BF-BB99-4998-81BD-F6CC32483B34}" = Microsoft Corporation "{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Pannello di controllo NVIDIA 307.83 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Driver grafico 307.83 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aggiornamenti NVIDIA 1.10.8 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{B37A99DD-88E2-4ED0-80B4-1E054AB354BF}" = Adobe InDesign CS4 Icon Handler x64 "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit) "{D954C6C2-544B-4091-A47F-11E77162883E}" = Microsoft Security Client "{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter "{DC911ADF-7B60-40F2-A112-FB1EB6402D07}" = Microsoft Security Client IT-IT Language Pack "{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4 "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "49CF605F02C7954F4E139D18828DE298CD59217C" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile ITA Language Pack" = Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) "Microsoft Mouse and Keyboard Center" = Centro gestione Mouse e Tastiere Microsoft "Microsoft Security Client" = Microsoft Security Essentials [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{0148E87C-C6E3-4AB9-8993-FB234305C595}" = MAGIX Movie Edit Pro MX Premium Download Version (Introductory videos) "{01917945-5143-4A7A-B7CC-6E5D40AA0161}" = MAGIX Video deluxe MX Premium Download-Version "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86 "{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4 "{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4 "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86 "{09790B90-535E-44F5-B6D7-1B90E9954B39}" = MAGIX Music Maker 17 Premium Download-Version "{098727E1-775A-4450-B573-3F441F1CA243}" = kuler "{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4 "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer "{0CCDFBDD-0DF4-4B02-B261-995FEDE1C631}" = MAGIX Movie Edit Pro MX Premium (Red Giant Magic Bullet Quick Looks) "{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4 "{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4 "{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4 "{103FA994-406C-4643-9EA3-C0E841D836E0}" = MAGIX Video deluxe MX Premium Download-Version (stili Fotoshow Maker 1) "{14291118-0C19-45EA-A4FA-5C1C0F5FDE09}" = Primo "{14F70205-1940-4000-88C7-BE799A6B2CAD}" = Adobe Soundbooth CS4 "{15BF7AAF-846C-4A6D-80E1-5D1FC7FB461B}" = Adobe SGM CS4 "{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4 "{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4 "{17B8AC4D-9CAA-4823-9B4E-1818F6EE556D}" = Sketch "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser "{1B7C06E1-4888-47A6-992A-0990B9683486}" = Adobe Version Cue CS4 Server "{1B8FE958-A304-4902-BF7A-4E2F0F5B7017}_is1" = GPSBabel 1.4.2 "{1CF0861B-B2EA-45F0-9C52-B48B0C570421}" = MAGIX Screenshare "{1DCA3EAA-6EB5-4563-A970-EA14D75037BA}" = Adobe InDesign CS4 "{1E04CB54-AF4E-4AC3-B4B7-C0A160BE57F1}" = Adobe InDesign CS4 Icon Handler "{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions "{22FC7536-BE5C-4E88-8069-C24689D34EC5}" = Snagit 10.0.1 "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{26A24AE4-039D-4CA4-87B4-2F83217015FF}" = Java 7 Update 15 "{297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}" = Adobe CS4 American English Speech Analysis Models "{2BAF2B96-7560-48B4-87D4-10178DDBE217}" = Adobe InDesign CS4 Application Feature Set Files (Roman) "{30C8AA56-4088-426F-91D1-0EDFD3A25678}" = Adobe Dreamweaver CS4 "{32B8F4FE-80E3-47CD-BB8D-2DACD43E74A2}" = Macromedia Dreamweaver 8 "{359FCAA7-B544-4147-AE3B-8C8A526E2427}" = Sony Image Data Suite "{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4 "{39FF0964-98B2-4DC2-8153-B853DF1740FD}" = MAGIX Video deluxe MX Premium Download-Version (effetti dissolvenza) "{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4 "{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4 "{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin "{40BFD84C-64CD-42CC-9909-8734C50429C6}" = Windows Live UX Platform Language Pack "{426B698A-ADA8-4BA6-8FC0-0480C36B5F9A}" = SearchToolbar "{4412F224-3849-4461-A3E9-DEEF8D252790}" = Visual Studio C++ 10.0 Runtime "{45A1BF92-700A-4408-B95E-79F462E3D67D}" = Studio 11 Bonus DVD "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis "{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}" = Google Earth "{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4A52555C-032A-4083-BDD9-6A85ABFB39A8}" = Adobe SING CS4 "{4CC5BA76-4F22-4010-834D-E40DE027F3FB}" = MAGIX Video deluxe MX Premium Download-Version (modelli di filmati) "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.5 "{510D2239-6C2E-457B-9590-485EC552D94D}" = Garmin USB Drivers "{52232EF4-CC12-4C21-ABCF-ADB79618302D}" = Adobe Soundbooth CS4 Codecs "{561968FD-56A1-49FD-9ED0-F55482C7C5BC}" = Adobe Media Encoder CS4 Exporter "{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Supporto applicazioni Apple "{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support "{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}" = Adobe Creative Suite 4 Master Collection "{62963D16-D25A-4CCA-AC3B-9484AFFC4D04}" = MAGIX Video deluxe MX Premium Download-Version (stili Fotoshow Maker 2) "{635E8116-E451-4E27-BF28-AD11C489D28E}_is1" = MyPcCleaner versione 1.0 "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86 "{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4 "{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support "{677AAD91-1790-4FC5-B285-0E6A9D65F7DC}" = Windows Live Mail "{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content "{67B9AF41-C0B9-4960-84D9-A61D23DE85D8}" = Garmin Trip and Waypoint Manager v4 "{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4 "{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE "{6A297274-55E2-4D95-9C6C-B575043EBC78}" = Land Navigator Italia "{6C5F8503-55D2-4398-858C-362B7A7AF51C}" = Firebird SQL Server - MAGIX Edition "{6D84AE16-DA77-47CA-B1A0-D035F7BF78AD}" = MAGIX Video deluxe MX Premium Download-Version (Progetto demo) "{6E8AFC13-F7B8-41D8-88AB-F1D0CFC56305}" = Windows Live Messenger "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{72E13122-5B72-4626-99D1-735AAFCAF65B}" = MAGIX Video deluxe MX Premium Download-Version (effetti testo) "{73FC3510-6421-40F7-9503-EDAE4D0CF70D}" = Windows Live Photo Common "{7406DF60-016D-476B-A2C7-55D997592047}" = Adobe OnLocation CS4 "{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{787D1A33-A97B-4245-87C0-7174609A540C}" = HP Update "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{7CC7BDD5-6F10-4724-96A1-EAC7D9F2831C}" = Adobe InDesign CS4 Common Base Files "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{80602166-B4F0-4106-908E-0CAA4395999B}" = MAGIX Speed burnR (MSI) "{8186FF34-D389-4B7E-9A2F-C197585BCFBD}" = Adobe Media Encoder CS4 Importer "{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4 "{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4 "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform "{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4 "{859E2F1F-53A9-431E-9395-6D41BBCBC007}" = MAGIX Video deluxe MX Premium Download-Version (modelli menu individuali) "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{90120000-0015-0410-0000-0000000FF1CE}" = Microsoft Office Access MUI (Italian) 2007 "{90120000-0015-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0016-0410-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Italian) 2007 "{90120000-0016-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0018-0410-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Italian) 2007 "{90120000-0018-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0019-0410-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Italian) 2007 "{90120000-0019-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001A-0410-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Italian) 2007 "{90120000-001A-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001B-0410-0000-0000000FF1CE}" = Microsoft Office Word MUI (Italian) 2007 "{90120000-001B-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007 "{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-002A-0410-1000-0000000FF1CE}_ENTERPRISE_{C0C7E58F-D0A1-4102-855B-0B7AA2E8F1C1}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-002C-0410-0000-0000000FF1CE}" = Microsoft Office Proofing (Italian) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0044-0410-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Italian) 2007 "{90120000-0044-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-006E-0410-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Italian) 2007 "{90120000-006E-0410-0000-0000000FF1CE}_ENTERPRISE_{C0C7E58F-D0A1-4102-855B-0B7AA2E8F1C1}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00A1-0410-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Italian) 2007 "{90120000-00A1-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00BA-0410-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Italian) 2007 "{90120000-00BA-0410-0000-0000000FF1CE}_ENTERPRISE_{7F40286D-09A7-4DC0-A2A4-AA18D026D369}" = Microsoft Office 2007 Service Pack 3 (SP3) "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86 "{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4 "{93E464B3-D075-4989-87FD-A828B5C308B1}" = Windows Live Writer Resources "{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4 "{984C51B3-2D77-4085-A392-3550413928DC}" = MAGIX Video deluxe MX Premium Download-Version (proDAD VitaScene 2 MAGIX Edition) "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer "{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14 "{AC76BA86-7AD7-1040-7B44-AA1000000001}" = Adobe Reader X (10.1.5) - Italiano "{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}" = Garmin MapSource "{B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7}" = Adobe Premiere Pro CS4 Functional Content "{B29AD377-CC12-490A-A480-1452337C618D}" = Connect "{B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}" = Microsoft Corporation "{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4 "{B95B1BA9-F887-4B3C-8D3A-CCD4C4675120}" = Microsoft Default Manager "{B9F4561A-924D-4510-A85A-BB0960C338CB}" = Adobe Asset Services CS4 "{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module "{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}" = Adobe Media Encoder CS4 Additional Exporter "{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4 "{C6B01AEA-4FB0-4DA1-B037-12BCD372B253}" = MAGIX Video deluxe MX Premium Download-Version (elementi design) "{C83A4C07-C0A1-4D72-9793-3C078AAE5D19}_is1" = MP3 to SWF Converter v3.0 build 968 "{C86E7C99-E4AD-79C7-375B-1AEF9A91EC2B}" = Acrobat.com "{C938BE91-3BB5-4B84-9EF6-88F0505D0038}" = Adobe Premiere Pro CS4 Third Party Content "{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw "{CD916DAB-2D43-49DE-AFB0-470A1D705621}" = MAGIX Video deluxe MX Premium Download-Version (Pacchetto Start-up proDAD Adorage) "{CE2121C6-C94D-4A73-8EA4-6943F33EE335}" = Music Transfer "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform "{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64 "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86 "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform "{D499F8DE-3F31-4900-9157-61061613704B}" = Adobe Premiere Pro CS4 "{D5068583-D569-468B-9755-5FBF5848F46F}" = Sony Picture Utility "{D6196911-9EFC-4F80-85C7-0A8CB42AE5B5}" = Macromedia Extension Manager "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86 "{DABF43D9-1104-4764-927B-5BED1274A3B0}" = Runtime "{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player "{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}" = Adobe Media Encoder CS4 "{DEF91E0F-D266-453D-B6F2-1BA002B40CB6}" = Windows Live Essentials "{DF79A36B-62DE-460A-8307-DBC6EC44716A}" = MAGIX Video deluxe MX Premium Download-Version (modelli menu 2) "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E19CB40D-3BD6-496D-A752-690EC4DEC280}" = MAGIX Video deluxe MX Premium Download-Version (modelli menu 1) "{E4C27ADB-3345-4299-82F8-9250DFF47156}" = MAGIX Music Maker 17 Premium (Demo songs) "{E5720A0A-7951-48CC-BBE5-3A9333AC25F2}" = MAGIX Video deluxe MX Premium Download-Version (NewBlueFX Light Blends) "{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger "{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}" = Adobe Setup "{EE353798-E875-42E0-B58D-7E6696182EA8}" = Adobe Media Encoder CS4 Dolby "{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help "{F40B0B58-23AB-49A9-9477-6BF3FF99CC5C}" = MAGIX Video deluxe MX Premium Download-Version (stili Soundtrack Maker) "{F5C372A1-40F3-49DA-A049-F75CDE9177DC}" = Pinnacle Studio Ultimate Collection Plugins "{F7632A9B-661E-4FD9-B1A4-3B86BC99847F}" = HP Deskjet 3050 J610 series ? "{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4 "{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4 "{FB2A5FCC-B81B-48C2-A009-7804694D83E9}" = Adobe Encore CS4 Codecs "{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "5513-1208-7298-9440" = JDownloader 0.9 "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe_b2d6abde968e6f277ddbfd501383e02" = Adobe Creative Suite 4 Master Collection "Aerocut Pro 3.0.1" = Aerocut Pro 3.0.1 "Akamai" = Akamai NetSession Interface Service "Applian FLV and Media Player" = Applian FLV and Media Player 3.1.1.12 "Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.13 (Unicode) "Audacity_is1" = Audacity 1.2.6 "CCleaner" = CCleaner "ColorPic" = ColorPic "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player "com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com "CompeGPS LAND 7.3.1" = CompeGPS LAND 7.3.1 "CompeGPS LAND_is1" = CompeGPS LAND 7.3.1 "CompeGPS_is1" = CompeGPS LAND 7.5.2 "CompeGPSDownloader_is1" = CompeGPSDownloader version 1.13 "DVDFab 6_is1" = DVDFab 6.2.1.8 (31/12/2009) "eMule" = eMule "ENTERPRISE" = Microsoft Office Enterprise 2007 "FastStone Image Viewer" = FastStone Image Viewer 4.3 "FFmpeg for Audacity_is1" = FFmpeg v0.6.2 for Audacity "firstobject XML Editor_is1" = firstobject XML Editor version 2.4.2 "FLV Player" = FLV Player 2.0 (build 25) "Google Chrome" = Google Chrome "GPSMapEdit_is1" = GPSMapEdit versione 1.1.75.2 "HP Photo Creations" = HP Photo Creations "Image Composer" = Microsoft Image Composer 1.5 "Inkscape" = Inkscape 0.48.2 "InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "IrfanView" = IrfanView (remove only) "LADSPA_plugins-win_is1" = LADSPA_plugins-win-0.4.15 "LAME for Audacity_is1" = LAME v3.98.2 for Audacity "MAGIX_MSI_mm17dlx" = MAGIX Music Maker 17 Premium Download-Version "MAGIX_MSI_Videodeluxe18_premium" = MAGIX Video deluxe MX Premium Download-Version "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versione 1.75.0.1300 "Mozilla Firefox 22.0 (x86 it)" = Mozilla Firefox 22.0 (x86 it) "MozillaMaintenanceService" = Mozilla Maintenance Service "MP3 Converter Simple" = MP3 Converter Simple "proDAD-Heroglyph-2.5" = proDAD Heroglyph 2.5 "proDAD-Vitascene-1.0" = proDAD Vitascene 1.0 "Red Giant ToonIt Studio" = Red Giant ToonIt Studio "ST6UNST #1" = Caracters counter "TeamViewer 5" = TeamViewer 5 "The Logo Creator v4" = The Logo Creator v4 "The Logo Creator v5" = The Logo Creator v5 "Total Video Converter 3.10_is1" = Total Video Converter 3.10 "Trapcode 3DStroke Studio" = Trapcode 3DStroke Studio "Trapcode Particular Studio" = Trapcode Particular Studio "Trapcode Shine Studio" = Trapcode Shine Studio "Ultra Video Splitter_is1" = Ultra Video Splitter 5.4.0104 "VideoReDo-Plus_is1" = VideoReDo/Plus Version 2.5.6.512 "Visual Basic 6.0 Edizione Professional (ita)" = Microsoft Visual Basic 6.0 Edizione Professional (Italiano) "WebPost" = Pubblicazione guidata sul Web 1.53 "WinLiveSuite" = Windows Live Essentials "WinRAR archiver" = WinRAR gestione archivi
========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-4123084632-688972477-1034230574-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Akamai" = Akamai NetSession Interface "MyFreeCodec" = MyFreeCodec "PhotoFiltre Studio X" = PhotoFiltre Studio X
========== Last 20 Event Log Errors ========== [ Application Events ] Error - 13/07/2013 03:38:01 | Computer Name = Franco-PC | Source = Application Error | ID = 1000 Description = Nome dell'applicazione che ha generato l'errore: FlashPlayerUpdateService.exe, versione: 11.6.602.180, timestamp: 0x51a4ab8c Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.17725, timestamp: 0x4ec49b8f Codice eccezione: 0xc0000005 Offset errore 0x0002e243 ID processo che ha generato l'errore: 0x1378 Ora di avvio dell'applicazione che ha generato l'errore: 0x01ce7f9be65d9838 Percorso dell'applicazione che ha generato l'errore: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Percorso del modulo che ha generato l'errore: C:\Windows\SysWOW64\ntdll.dll ID segnalazione: 24d885a0-eb8f-11e2-b0f2-001966a79e15 Error - 13/07/2013 04:38:00 | Computer Name = Franco-PC | Source = Application Error | ID = 1000 Description = Nome dell'applicazione che ha generato l'errore: FlashPlayerUpdateService.exe, versione: 11.6.602.180, timestamp: 0x51a4ab8c Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.17725, timestamp: 0x4ec49b8f Codice eccezione: 0xc0000005 Offset errore 0x0002e243 ID processo che ha generato l'errore: 0xc44 Ora di avvio dell'applicazione che ha generato l'errore: 0x01ce7fa448190f66 Percorso dell'applicazione che ha generato l'errore: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Percorso del modulo che ha generato l'errore: C:\Windows\SysWOW64\ntdll.dll ID segnalazione: 85e93860-eb97-11e2-b0f2-001966a79e15 Error - 13/07/2013 04:49:14 | Computer Name = Franco-PC | Source = Application Error | ID = 1000 Description = Nome dell'applicazione che ha generato l'errore: CompeGPSLAND.exe, versione: 7.3.0.0, timestamp: 0x00000000 Nome del modulo che ha generato l'errore: unknown, versione: 0.0.0.0, timestamp: 0x00000000 Codice eccezione: 0xc0000005 Offset errore 0x31ddd900 ID processo che ha generato l'errore: 0x1504 Ora di avvio dell'applicazione che ha generato l'errore: 0x01ce7fa5d6343606 Percorso dell'applicazione che ha generato l'errore: C:\Program Files (x86)\CompeGPS\CompeGPSLAND.exe Percorso del modulo che ha generato l'errore: unknown ID segnalazione: 17a59b86-eb99-11e2-b0f2-001966a79e15 Error - 13/07/2013 05:38:03 | Computer Name = Franco-PC | Source = Application Error | ID = 1000 Description = Nome dell'applicazione che ha generato l'errore: FlashPlayerUpdateService.exe, versione: 11.6.602.180, timestamp: 0x51a4ab8c Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.17725, timestamp: 0x4ec49b8f Codice eccezione: 0xc0000005 Offset errore 0x0002e243 ID processo che ha generato l'errore: 0x11e0 Ora di avvio dell'applicazione che ha generato l'errore: 0x01ce7faca9f0b05c Percorso dell'applicazione che ha generato l'errore: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Percorso del modulo che ha generato l'errore: C:\Windows\SysWOW64\ntdll.dll ID segnalazione: e95fd8a8-eb9f-11e2-b0f2-001966a79e15 Error - 13/07/2013 07:38:00 | Computer Name = Franco-PC | Source = Application Error | ID = 1000 Description = Nome dell'applicazione che ha generato l'errore: FlashPlayerUpdateService.exe, versione: 11.6.602.180, timestamp: 0x51a4ab8c Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.17725, timestamp: 0x4ec49b8f Codice eccezione: 0xc0000005 Offset errore 0x0002e243 ID processo che ha generato l'errore: 0x2c0 Ora di avvio dell'applicazione che ha generato l'errore: 0x01ce7fbd6d662140 Percorso dell'applicazione che ha generato l'errore: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Percorso del modulo che ha generato l'errore: C:\Windows\SysWOW64\ntdll.dll ID segnalazione: ab5a7ff2-ebb0-11e2-a3f3-001966a79e15 Error - 13/07/2013 08:38:00 | Computer Name = Franco-PC | Source = Application Error | ID = 1000 Description = Nome dell'applicazione che ha generato l'errore: FlashPlayerUpdateService.exe, versione: 11.6.602.180, timestamp: 0x51a4ab8c Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.17725, timestamp: 0x4ec49b8f Codice eccezione: 0xc0000005 Offset errore 0x0002e243 ID processo che ha generato l'errore: 0x1374 Ora di avvio dell'applicazione che ha generato l'errore: 0x01ce7fc5cf2b21d7 Percorso dell'applicazione che ha generato l'errore: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Percorso del modulo che ha generato l'errore: C:\Windows\SysWOW64\ntdll.dll ID segnalazione: 0cfe45c2-ebb9-11e2-a3f3-001966a79e15 Error - 13/07/2013 09:38:00 | Computer Name = Franco-PC | Source = Application Error | ID = 1000 Description = Nome dell'applicazione che ha generato l'errore: FlashPlayerUpdateService.exe, versione: 11.6.602.180, timestamp: 0x51a4ab8c Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.17725, timestamp: 0x4ec49b8f Codice eccezione: 0xc0000005 Offset errore 0x0002e243 ID processo che ha generato l'errore: 0xf78 Ora di avvio dell'applicazione che ha generato l'errore: 0x01ce7fce30ee7ed0 Percorso dell'applicazione che ha generato l'errore: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Percorso del modulo che ha generato l'errore: C:\Windows\SysWOW64\ntdll.dll ID segnalazione: 6ec10a24-ebc1-11e2-a3f3-001966a79e15 Error - 13/07/2013 13:38:01 | Computer Name = Franco-PC | Source = Application Error | ID = 1000 Description = Nome dell'applicazione che ha generato l'errore: FlashPlayerUpdateService.exe, versione: 11.6.602.180, timestamp: 0x51a4ab8c Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.17725, timestamp: 0x4ec49b8f Codice eccezione: 0xc0000005 Offset errore 0x0002e243 ID processo che ha generato l'errore: 0xfd4 Ora di avvio dell'applicazione che ha generato l'errore: 0x01ce7fefb7ef947f Percorso dell'applicazione che ha generato l'errore: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Percorso del modulo che ha generato l'errore: C:\Windows\SysWOW64\ntdll.dll ID segnalazione: f647c9a9-ebe2-11e2-9e7d-001966a79e15 Error - 13/07/2013 14:38:00 | Computer Name = Franco-PC | Source = Application Error | ID = 1000 Description = Nome dell'applicazione che ha generato l'errore: FlashPlayerUpdateService.exe, versione: 11.6.602.180, timestamp: 0x51a4ab8c Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.17725, timestamp: 0x4ec49b8f Codice eccezione: 0xc0000005 Offset errore 0x0002e243 ID processo che ha generato l'errore: 0xd04 Ora di avvio dell'applicazione che ha generato l'errore: 0x01ce7ff819c6c304 Percorso dell'applicazione che ha generato l'errore: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Percorso del modulo che ha generato l'errore: C:\Windows\SysWOW64\ntdll.dll ID segnalazione: 57ac874e-ebeb-11e2-83b1-001966a79e15 Error - 13/07/2013 17:38:01 | Computer Name = Franco-PC | Source = Application Error | ID = 1000 Description = Nome dell'applicazione che ha generato l'errore: FlashPlayerUpdateService.exe, versione: 11.6.602.180, timestamp: 0x51a4ab8c Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.17725, timestamp: 0x4ec49b8f Codice eccezione: 0xc0000005 Offset errore 0x0002e243 ID processo che ha generato l'errore: 0x13d8 Ora di avvio dell'applicazione che ha generato l'errore: 0x01ce80113f19a49a Percorso dell'applicazione che ha generato l'errore: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Percorso del modulo che ha generato l'errore: C:\Windows\SysWOW64\ntdll.dll ID segnalazione: 7d4571f7-ec04-11e2-ae31-001966a79e15 [ OSession Events ] Error - 23/02/2011 12:11:03 | Computer Name = Franco-PC | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6550.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 14 seconds with 0 seconds of active time. This session ended with a crash. [ System Events ] Error - 13/07/2013 13:46:22 | Computer Name = Franco-PC | Source = Service Control Manager | ID = 7023 Description = Servizio Browser di computer terminato con l'errore: %%1060 Error - 13/07/2013 13:46:31 | Computer Name = Franco-PC | Source = Service Control Manager | ID = 7003 Description = Il servizio Moduli di impostazione chiavi IPSec IKE e Auth-IP dipende dal servizio BFE, che potrebbe non essere installato. Error - 13/07/2013 13:46:32 | Computer Name = Franco-PC | Source = Service Control Manager | ID = 7003 Description = Il servizio Agente criteri IPsec dipende dal servizio BFE, che potrebbe non essere installato. Error - 13/07/2013 13:49:23 | Computer Name = Franco-PC | Source = Service Control Manager | ID = 7024 Description = Servizio Listener Gruppo Home terminato. Errore specifico del servizio %%-2147023143. Error - 13/07/2013 17:32:27 | Computer Name = Franco-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6 Description = Alcune funzionalità di risparmio energia per le prestazioni del processore sono state disattivate per un problema di firmware noto. Per ottenere il firmware aggiornato, rivolgersi al produttore del computer. Error - 13/07/2013 17:32:49 | Computer Name = Franco-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012 Description = Errore durante il tentativo di lettura del file degli host locali. Error - 13/07/2013 17:32:52 | Computer Name = Franco-PC | Source = Service Control Manager | ID = 7023 Description = Servizio Browser di computer terminato con l'errore: %%1060 Error - 13/07/2013 17:33:21 | Computer Name = Franco-PC | Source = Service Control Manager | ID = 7003 Description = Il servizio Moduli di impostazione chiavi IPSec IKE e Auth-IP dipende dal servizio BFE, che potrebbe non essere installato. Error - 13/07/2013 17:33:22 | Computer Name = Franco-PC | Source = Service Control Manager | ID = 7003 Description = Il servizio Agente criteri IPsec dipende dal servizio BFE, che potrebbe non essere installato. Error - 13/07/2013 17:33:51 | Computer Name = Franco-PC | Source = Service Control Manager | ID = 7024 Description = Servizio Listener Gruppo Home terminato. Errore specifico del servizio %%-2147023143. < End of report >